Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/peKjNSGKM_0rjHHFvqhm2RDjoHg.roa
File: peKjNSGKM_0rjHHFvqhm2RDjoHg.roa (raw, json)
Hash identifier: 0PeGMSmnF7m+ChpxMdHYb2tZO0sUGO/T39ogtJOQLhs=
Subject key identifier: A5:E2:A3:35:21:8A:33:FD:2B:8C:71:C5:BE:A8:66:D9:10:E3:A0:78
Certificate issuer: /CN=83c103d65a54d6af1efba6ac3e63722028af2bb1
Certificate serial: 018597624A03A553BE6A08F193003F06016E
Authority key identifier: 83:C1:03:D6:5A:54:D6:AF:1E:FB:A6:AC:3E:63:72:20:28:AF:2B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g8ED1lpU1q8e-6asPmNyICivK7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/peKjNSGKM_0rjHHFvqhm2RDjoHg.roa
Signing time: Mon 09 Jan 2023 16:34:39 +0000
ROA not before: Mon 09 Jan 2023 16:34:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49544
IP address blocks: 66.22.245.0/24 maxlen: 24
66.22.244.0/24 maxlen: 24
66.22.246.0/24 maxlen: 24
66.22.242.0/24 maxlen: 24
66.22.241.0/24 maxlen: 24
66.22.243.0/24 maxlen: 24
66.22.248.0/24 maxlen: 24
66.22.247.0/24 maxlen: 24
66.22.196.0/22 maxlen: 22
66.22.200.0/22 maxlen: 22
66.22.204.0/22 maxlen: 22
66.22.208.0/22 maxlen: 22
66.22.212.0/22 maxlen: 22
66.22.216.0/23 maxlen: 23
66.22.218.0/23 maxlen: 23
66.22.220.0/23 maxlen: 23
66.22.222.0/23 maxlen: 23
66.22.224.0/23 maxlen: 23
66.22.226.0/23 maxlen: 23
66.22.231.0/24 maxlen: 24
66.22.230.0/24 maxlen: 24
66.22.233.0/24 maxlen: 24
66.22.232.0/24 maxlen: 24
66.22.235.0/24 maxlen: 24
66.22.234.0/24 maxlen: 24
66.22.236.0/24 maxlen: 24
66.22.238.0/24 maxlen: 24
66.22.237.0/24 maxlen: 24
66.22.240.0/24 maxlen: 24
66.22.239.0/24 maxlen: 24
2a0e:5940:50::/44 maxlen: 44
2a0e:5940:10::/44 maxlen: 44
2a0e:5940:190::/44 maxlen: 44
2a0e:5940:d0::/44 maxlen: 44
2a0e:5940:90::/44 maxlen: 44
2a0e:5940:150::/44 maxlen: 44
2a0e:5940:110::/44 maxlen: 44
2a0e:5940:c0::/44 maxlen: 44
2a0e:5940::/44 maxlen: 44
2a0e:5940:100::/44 maxlen: 44
2a0e:5940:40::/44 maxlen: 44
2a0e:5940:80::/44 maxlen: 44
2a0e:5940:140::/44 maxlen: 44
2a0e:5940:180::/44 maxlen: 44
2a0e:5940:30::/44 maxlen: 44
2a0e:5940:70::/44 maxlen: 44
2a0e:5940:170::/44 maxlen: 44
2a0e:5940:130::/44 maxlen: 44
2a0e:5940:f0::/44 maxlen: 44
2a0e:5940:b0::/44 maxlen: 44
2a0e:5940:e0::/44 maxlen: 44
2a0e:5940:60::/44 maxlen: 44
2a0e:5940:160::/44 maxlen: 44
2a0e:5940:a0::/44 maxlen: 44
2a0e:5940:120::/44 maxlen: 44
2a0e:5940:20::/44 maxlen: 44
Validation: Failed, certificate revoked on Fri 13 Oct 2023 13:21:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:97:62:4a:03:a5:53:be:6a:08:f1:93:00:3f:06:01:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83c103d65a54d6af1efba6ac3e63722028af2bb1
Validity
Not Before: Jan 9 16:34:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5e2a335218a33fd2b8c71c5bea866d910e3a078
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:68:10:8c:aa:7e:8a:62:30:36:fb:bb:20:6b:
65:40:44:04:96:ff:f9:42:48:af:d3:05:ab:b9:f7:
a0:ef:d8:25:23:aa:b0:cb:46:35:94:73:4f:a2:d0:
3c:f8:1d:e8:ad:e6:5b:20:ed:8a:e6:77:92:87:fd:
e0:ec:b2:44:96:b9:a4:b1:f5:8b:05:02:56:f9:be:
95:a0:ed:cf:58:fd:7e:58:69:cc:a8:bf:36:6a:2b:
e0:b9:ff:ee:a3:f8:2d:88:4d:1a:da:4c:9a:28:2d:
cf:ef:77:a0:43:65:3c:14:53:14:ed:d3:92:44:76:
4c:37:83:ca:5a:08:66:97:9d:9a:bd:4b:7f:80:05:
af:cf:ce:02:83:40:f9:2d:f7:81:1a:ce:db:4c:e2:
ac:c1:26:8b:30:a8:51:63:65:40:69:ac:6e:bd:ab:
17:84:45:d3:95:d6:ab:4e:84:24:4d:02:c7:4f:51:
10:b1:fc:8b:3c:55:0c:1c:a9:62:10:f3:74:00:cf:
5f:05:a2:51:65:66:97:f3:b3:10:5a:d1:60:51:28:
58:9b:62:7e:db:7b:1a:67:19:68:02:96:99:52:4a:
34:5a:a2:05:0e:12:b9:87:bc:8d:de:a8:23:24:fb:
ed:3a:cc:fb:d9:6d:df:91:fc:c8:ad:d1:31:a4:2d:
13:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:E2:A3:35:21:8A:33:FD:2B:8C:71:C5:BE:A8:66:D9:10:E3:A0:78
X509v3 Authority Key Identifier:
keyid:83:C1:03:D6:5A:54:D6:AF:1E:FB:A6:AC:3E:63:72:20:28:AF:2B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8ED1lpU1q8e-6asPmNyICivK7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/peKjNSGKM_0rjHHFvqhm2RDjoHg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/g8ED1lpU1q8e-6asPmNyICivK7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.22.196.0-66.22.227.255
66.22.230.0-66.22.248.255
IPv6:
2a0e:5940::-2a0e:5940:19f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
69:de:d9:bc:98:b9:a2:f3:4f:0c:86:39:b7:00:fc:39:aa:98:
c9:06:8d:00:17:4b:3b:76:95:a5:1b:45:73:2e:11:8e:f1:e2:
28:8d:4a:74:2c:01:ab:d4:56:33:10:92:8e:57:30:66:49:1e:
c9:1e:bf:6d:f0:8b:3f:c5:ee:bb:4f:c7:e7:08:a3:2a:28:89:
12:6c:8a:6c:b3:01:d3:00:09:14:c0:15:82:76:9d:5f:59:6c:
39:fd:e6:15:45:fa:b0:bf:df:38:45:74:cc:52:ec:3b:22:bc:
e8:aa:64:56:ba:ab:95:15:50:85:04:8a:5e:9e:fa:02:c5:b5:
eb:bb:b7:09:05:83:7e:16:be:92:9b:05:8d:5a:35:5e:ca:69:
22:b4:b5:a5:1c:df:00:37:c9:7e:c7:4b:24:10:0c:2c:e8:e6:
ef:da:09:98:91:c0:43:3e:8a:47:11:d6:a2:fa:d9:e3:fe:fd:
e6:61:99:29:f7:6a:c6:f9:e9:8f:9b:50:9d:5a:68:6d:40:91:
85:da:33:d9:fc:a5:b6:19:17:ca:33:01:a9:95:ff:93:fa:9d:
16:21:a4:75:99:4b:08:69:a6:21:e8:e5:db:c6:9a:c5:74:71:
6c:c6:af:2b:40:48:2c:c7:63:e0:3f:6e:91:a0:9c:92:8c:a9:
4b:71:17:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:36 2024 by rpki-client on console-fra.rpki-client.org