Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/xLMmMMAKm-4NAN_HkL60D0dc_90.roa
File: xLMmMMAKm-4NAN_HkL60D0dc_90.roa (raw, json)
Hash identifier: eZoyH45fSv4LEPTVMCjXfYCk5rTSjJbPRqP8gbX2u/c=
Subject key identifier: C4:B3:26:30:C0:0A:9B:EE:0D:00:DF:C7:90:BE:B4:0F:47:5C:FF:DD
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 018B5908E069CDB7D0CA91A001D3D4D526E5
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/xLMmMMAKm-4NAN_HkL60D0dc_90.roa
Signing time: Sun 22 Oct 2023 20:17:15 +0000
ROA not before: Sun 22 Oct 2023 20:17:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49666
IP address blocks: 2.188.0.0/24 maxlen: 24
2.188.1.0/24 maxlen: 24
2.188.0.0/16 maxlen: 24
2.188.9.0/24 maxlen: 24
2.188.7.0/24 maxlen: 24
2.188.17.0/24 maxlen: 24
2.188.12.0/22 maxlen: 22
2.188.22.0/24 maxlen: 24
2.188.23.0/24 maxlen: 24
2.188.30.0/24 maxlen: 24
2.188.28.0/24 maxlen: 24
78.39.155.0/24 maxlen: 24
78.39.156.0/24 maxlen: 24
78.39.153.0/24 maxlen: 25
217.218.67.0/24 maxlen: 24
2.188.64.0/21 maxlen: 21
2.188.76.0/24 maxlen: 24
85.185.0.0/16 maxlen: 24
2.185.0.0/16 maxlen: 16
78.38.246.0/24 maxlen: 24
78.38.245.0/24 maxlen: 24
78.38.243.0/24 maxlen: 24
78.38.250.0/24 maxlen: 24
78.38.253.0/24 maxlen: 24
78.38.248.0/24 maxlen: 24
78.38.251.0/24 maxlen: 24
78.38.254.0/24 maxlen: 24
78.39.0.0/16 maxlen: 24
2.177.0.0/16 maxlen: 16
80.191.0.0/16 maxlen: 24
217.218.0.0/16 maxlen: 24
2.181.0.0/16 maxlen: 24
78.39.40.0/24 maxlen: 24
78.39.43.0/24 maxlen: 24
78.39.50.0/24 maxlen: 24
78.39.46.0/24 maxlen: 24
78.39.49.0/24 maxlen: 24
78.39.48.0/24 maxlen: 24
78.39.47.0/24 maxlen: 24
78.39.51.0/24 maxlen: 24
78.39.54.0/24 maxlen: 24
78.39.58.0/24 maxlen: 24
78.39.53.0/24 maxlen: 24
78.39.57.0/24 maxlen: 24
78.39.56.0/24 maxlen: 24
78.39.55.0/24 maxlen: 24
78.39.62.0/23 maxlen: 24
78.39.59.0/24 maxlen: 24
2.176.0.0/17 maxlen: 17
78.38.0.0/16 maxlen: 24
2.176.128.0/17 maxlen: 17
195.146.63.0/24 maxlen: 24
2.189.3.0/24 maxlen: 24
2.189.1.0/24 maxlen: 24
2.189.0.0/16 maxlen: 24
2.188.179.0/24 maxlen: 24
2.188.186.0/24 maxlen: 24
2.188.181.0/24 maxlen: 24
2.188.185.0/24 maxlen: 24
2.188.184.0/24 maxlen: 24
217.219.0.0/16 maxlen: 24
2.188.187.0/24 maxlen: 24
2.182.0.0/16 maxlen: 24
2.189.72.0/24 maxlen: 24
2.189.44.0/24 maxlen: 24
2.189.42.0/24 maxlen: 24
2.189.63.0/24 maxlen: 24
2001:4188:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 22 Oct 2023 20:21:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:59:08:e0:69:cd:b7:d0:ca:91:a0:01:d3:d4:d5:26:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Oct 22 20:17:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c4b32630c00a9bee0d00dfc790beb40f475cffdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0c:38:7b:9a:2e:fe:e8:a5:01:74:b8:15:20:
ed:98:ee:45:78:6b:6e:09:92:96:e7:6c:00:af:54:
cc:fe:fa:ac:e3:f0:f3:50:8d:9e:fe:53:58:2c:cb:
8b:c8:90:a6:3f:07:6f:6e:76:df:c4:03:23:f9:89:
54:1e:bf:3e:05:5a:4e:55:21:9d:1f:1d:19:23:d4:
b8:a9:86:45:68:e3:f6:41:db:25:72:51:dd:58:ca:
c2:5a:43:30:93:a7:25:d5:9c:a8:30:34:d0:9f:eb:
c9:69:69:f4:0e:f5:b6:f5:e0:4b:34:bf:17:b0:91:
45:b0:32:9c:59:8a:64:2b:c9:33:52:49:8d:03:b1:
7d:79:5e:58:43:49:4e:23:41:09:28:e3:e2:4c:6f:
8b:ff:dd:36:6f:43:b7:70:8d:9f:17:fc:1f:3a:d1:
a4:d1:53:09:76:21:b1:19:87:3f:6e:1b:bb:d0:29:
04:61:6d:11:7b:ee:70:d7:71:74:24:0b:05:07:08:
1a:6e:f9:9f:18:df:ee:12:85:17:4a:0f:9e:64:2b:
88:c7:7e:55:b9:3f:45:13:ea:01:60:61:ed:7a:68:
24:91:41:53:92:66:3e:74:3d:a6:9f:7a:fb:11:22:
d7:be:a7:0c:5b:18:31:7b:49:91:45:80:b5:9d:fd:
35:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:B3:26:30:C0:0A:9B:EE:0D:00:DF:C7:90:BE:B4:0F:47:5C:FF:DD
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/xLMmMMAKm-4NAN_HkL60D0dc_90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.176.0.0/15
2.181.0.0-2.182.255.255
2.185.0.0/16
2.188.0.0/15
78.38.0.0/15
80.191.0.0/16
85.185.0.0/16
195.146.63.0/24
217.218.0.0/15
IPv6:
2001:4188:2::/48
Signature Algorithm: sha256WithRSAEncryption
55:8d:c3:60:79:57:21:14:d7:a8:e7:7c:15:23:d5:71:e9:0b:
c1:91:a9:2f:4d:06:2b:f5:07:ab:02:d7:3c:2e:5c:1f:67:f5:
9f:d4:d4:64:69:91:d2:40:11:4b:9c:c9:cb:c7:08:0d:b8:60:
6d:15:c8:83:b1:dc:12:53:6d:78:28:82:c5:ef:53:d8:dd:70:
49:39:32:36:53:a6:ee:2c:c2:7b:06:e4:0f:9a:a9:32:26:71:
64:d3:e6:15:a0:4f:14:4c:4c:f3:d0:58:5f:1c:50:12:e8:45:
c4:81:6f:34:6f:1f:27:46:be:b5:94:6f:16:cc:a1:8f:26:9c:
8f:4e:f1:ef:80:e2:9b:12:3b:5b:e8:28:ec:40:5b:0e:1d:20:
5c:a7:ba:2b:6e:79:48:7c:e2:34:8a:5e:26:cf:4f:dd:a5:1d:
b8:bd:9f:a3:b3:c8:c2:c8:fd:db:36:4d:5b:31:7c:fd:b7:ca:
c4:7b:ec:97:8d:c7:92:d7:ed:25:ba:be:55:79:2f:8d:58:bb:
a1:94:91:18:d4:b6:24:8b:c9:15:53:68:d8:c0:d6:b3:52:f4:
29:a6:f5:b3:f3:a0:7c:7a:14:f5:d1:0a:d8:a2:8a:c0:b5:f6:
95:ae:4a:b0:b5:0a:34:e0:8e:29:69:bc:3c:52:b5:bd:fc:57:
82:82:dd:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:53 2024 by rpki-client on console-ams.rpki-client.org