Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/XRALEAOSYZom-0XVAEC4ESM6IgY.roa
File: XRALEAOSYZom-0XVAEC4ESM6IgY.roa (raw, json)
Hash identifier: oI9X9pT/kxuc9qqpycXw5I29dzPGG1YOJNqU0r50xy4=
Subject key identifier: 5D:10:0B:10:03:92:61:9A:26:FB:45:D5:00:40:B8:11:23:3A:22:06
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 018B5921991A0A20DC4166F849D520C05AD7
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/XRALEAOSYZom-0XVAEC4ESM6IgY.roa
Signing time: Sun 22 Oct 2023 20:44:15 +0000
ROA not before: Sun 22 Oct 2023 20:44:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49666
IP address blocks: 2.188.0.0/24 maxlen: 24
2.188.1.0/24 maxlen: 24
2.188.0.0/16 maxlen: 24
2.188.9.0/24 maxlen: 24
2.188.7.0/24 maxlen: 24
2.188.17.0/24 maxlen: 24
2.188.12.0/22 maxlen: 22
2.188.22.0/24 maxlen: 24
2.188.23.0/24 maxlen: 24
2.188.30.0/24 maxlen: 24
2.188.28.0/24 maxlen: 24
78.39.155.0/24 maxlen: 24
78.39.156.0/24 maxlen: 24
78.39.153.0/24 maxlen: 25
217.218.67.0/24 maxlen: 24
2.188.64.0/21 maxlen: 21
2.188.76.0/24 maxlen: 24
85.185.0.0/16 maxlen: 24
2.185.0.0/16 maxlen: 16
78.38.246.0/24 maxlen: 24
78.38.245.0/24 maxlen: 24
78.38.243.0/24 maxlen: 24
78.38.250.0/24 maxlen: 24
78.38.253.0/24 maxlen: 24
78.38.248.0/24 maxlen: 24
78.38.251.0/24 maxlen: 24
78.38.254.0/24 maxlen: 24
78.39.0.0/16 maxlen: 24
2.177.0.0/16 maxlen: 16
80.191.0.0/16 maxlen: 24
217.218.0.0/16 maxlen: 24
78.39.40.0/24 maxlen: 24
78.39.43.0/24 maxlen: 24
78.39.50.0/24 maxlen: 24
78.39.46.0/24 maxlen: 24
78.39.49.0/24 maxlen: 24
78.39.48.0/24 maxlen: 24
78.39.47.0/24 maxlen: 24
78.39.51.0/24 maxlen: 24
78.39.54.0/24 maxlen: 24
78.39.58.0/24 maxlen: 24
78.39.53.0/24 maxlen: 24
78.39.57.0/24 maxlen: 24
78.39.56.0/24 maxlen: 24
78.39.55.0/24 maxlen: 24
78.39.62.0/23 maxlen: 24
78.39.59.0/24 maxlen: 24
2.176.0.0/17 maxlen: 17
78.38.0.0/16 maxlen: 24
2.176.128.0/17 maxlen: 17
195.146.63.0/24 maxlen: 24
2.189.3.0/24 maxlen: 24
2.189.1.0/24 maxlen: 24
2.189.0.0/16 maxlen: 24
2.188.179.0/24 maxlen: 24
2.188.186.0/24 maxlen: 24
2.188.181.0/24 maxlen: 24
2.188.185.0/24 maxlen: 24
2.188.184.0/24 maxlen: 24
217.219.0.0/16 maxlen: 24
2.188.187.0/24 maxlen: 24
2.182.0.0/16 maxlen: 24
2.189.72.0/24 maxlen: 24
2.189.44.0/24 maxlen: 24
2.189.42.0/24 maxlen: 24
2.189.63.0/24 maxlen: 24
2001:4188:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:59:21:99:1a:0a:20:dc:41:66:f8:49:d5:20:c0:5a:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Oct 22 20:44:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d100b100392619a26fb45d50040b811233a2206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3d:34:d4:f4:e8:a0:8c:20:19:16:aa:61:56:
41:87:83:15:6a:25:4d:e5:17:42:29:d7:7f:e6:db:
22:44:12:b3:ed:b1:af:a7:0b:84:7e:e8:8e:cd:ac:
e0:17:78:c2:9b:05:6f:7e:0d:dd:bd:90:03:ad:ea:
37:ef:45:1e:c0:eb:6d:5a:66:84:fc:89:4d:23:87:
d0:64:ef:92:0d:58:26:4b:fb:97:cb:03:bb:e1:97:
5f:39:15:96:9e:f7:ba:c4:a9:d4:5a:8d:f8:fc:ff:
b2:b1:93:ed:84:2d:8e:78:08:95:38:15:8b:8e:87:
8d:5d:ce:d3:6f:12:1f:ba:6a:d2:ae:25:5a:23:c7:
9e:9b:3a:98:c5:ae:34:f4:05:16:a8:fa:ed:1f:22:
26:d5:61:e8:d3:d8:9b:11:c5:bd:14:9b:5c:3e:f9:
fb:de:ed:e8:c2:73:11:41:b6:b8:37:0d:38:44:21:
b3:72:1e:5e:2e:3d:5a:eb:7e:5e:7f:00:bd:29:07:
45:88:99:4e:cc:55:3d:44:41:0d:6e:7d:21:2b:e7:
42:86:33:53:fb:d9:e3:ff:f7:f1:93:f7:ac:71:b9:
4a:22:e7:a3:8b:be:15:28:fd:96:63:68:43:22:5c:
5a:e4:1d:af:91:8a:b3:ed:12:de:d9:54:49:a2:57:
25:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:10:0B:10:03:92:61:9A:26:FB:45:D5:00:40:B8:11:23:3A:22:06
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/XRALEAOSYZom-0XVAEC4ESM6IgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.176.0.0/15
2.182.0.0/16
2.185.0.0/16
2.188.0.0/15
78.38.0.0/15
80.191.0.0/16
85.185.0.0/16
195.146.63.0/24
217.218.0.0/15
IPv6:
2001:4188:2::/48
Signature Algorithm: sha256WithRSAEncryption
4a:f9:c9:e3:b5:eb:91:39:33:e1:31:37:61:c8:34:0a:71:fe:
94:c8:1c:45:81:18:d4:26:0a:0f:84:35:e9:e8:b5:6a:58:31:
b5:4b:7e:5c:a1:16:74:d6:c6:54:47:38:e2:89:a0:63:95:cf:
25:a9:73:4d:6f:12:71:b5:b8:20:9f:09:5d:3c:ed:cf:17:05:
1e:d1:9e:73:f6:7d:11:29:5c:8e:f3:aa:f9:dc:0c:f8:1d:2e:
f7:5d:e0:3a:0a:1b:0d:88:c4:15:fd:0b:3a:f8:dd:14:23:8f:
be:01:97:bc:85:84:99:58:9a:9b:80:8a:d3:da:a8:1f:7a:0c:
45:4c:c8:c9:a1:46:a0:27:99:00:df:6e:ae:8c:e1:17:f3:49:
11:0c:66:e9:d6:28:7e:4e:b3:ee:7f:03:42:34:21:9c:c6:c0:
5d:1b:59:6e:b4:37:51:4c:49:45:34:5e:63:d6:de:cb:af:60:
24:c2:fb:e8:37:f4:99:af:1e:33:5a:de:cd:19:af:80:ea:1b:
28:e5:ff:95:5a:d1:93:d3:ec:ba:db:54:9a:7e:1e:52:b3:20:
b6:63:89:ea:da:0f:ab:94:58:c3:c6:5b:c4:a2:16:a7:a6:c7:
5a:5a:4a:74:41:53:39:7a:b8:4a:e2:a4:61:5d:d5:7f:bc:99:
7a:dd:bc:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:47 2024 by rpki-client on console-fra.rpki-client.org