Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/5HJO80wUYJMdW50s4241TxV7B00.roa
File: 5HJO80wUYJMdW50s4241TxV7B00.roa (raw, json)
Hash identifier: n1LlCJJ6/QJ+O/zM6kzbY7iz6jLyTGAYx1ZVJBPazRo=
Subject key identifier: E4:72:4E:F3:4C:14:60:93:1D:5B:9D:2C:E3:6E:35:4F:15:7B:07:4D
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 018A4217672ACCD46A8FED7D9FCBBF7F11B2
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/5HJO80wUYJMdW50s4241TxV7B00.roa
Signing time: Tue 29 Aug 2023 16:19:04 +0000
ROA not before: Tue 29 Aug 2023 16:19:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8641
IP address blocks: 213.208.160.0/21 maxlen: 21
213.208.168.0/23 maxlen: 23
213.208.170.0/24 maxlen: 24
213.208.172.0/23 maxlen: 23
213.208.174.0/23 maxlen: 23
213.208.176.0/21 maxlen: 21
213.208.186.0/23 maxlen: 23
213.208.184.0/24 maxlen: 24
213.208.188.0/22 maxlen: 22
81.26.144.0/21 maxlen: 21
81.26.144.0/24 maxlen: 24
81.26.152.0/22 maxlen: 22
81.26.155.0/24 maxlen: 24
185.106.107.0/24 maxlen: 24
77.94.160.0/19 maxlen: 19
84.47.128.0/23 maxlen: 23
84.47.131.0/24 maxlen: 24
77.94.175.0/24 maxlen: 24
84.47.135.0/24 maxlen: 24
84.47.134.0/23 maxlen: 23
84.47.136.0/24 maxlen: 24
84.47.142.0/24 maxlen: 24
84.47.140.0/22 maxlen: 22
84.47.140.0/23 maxlen: 23
84.47.144.0/23 maxlen: 23
84.47.152.0/23 maxlen: 23
84.47.150.0/23 maxlen: 23
85.91.96.0/21 maxlen: 21
84.47.147.0/24 maxlen: 24
84.47.156.0/22 maxlen: 22
84.47.160.0/24 maxlen: 24
84.47.161.0/24 maxlen: 24
84.47.162.0/24 maxlen: 24
84.47.163.0/24 maxlen: 24
85.91.112.0/22 maxlen: 22
84.47.164.0/23 maxlen: 23
84.47.168.0/22 maxlen: 22
85.91.118.0/23 maxlen: 23
213.135.64.0/23 maxlen: 23
84.47.172.0/24 maxlen: 24
213.135.67.0/24 maxlen: 24
213.135.70.0/24 maxlen: 24
84.47.178.0/24 maxlen: 24
85.91.122.0/24 maxlen: 24
85.91.120.0/23 maxlen: 23
84.47.176.0/24 maxlen: 24
213.135.69.0/24 maxlen: 24
84.47.177.0/24 maxlen: 24
84.47.176.0/23 maxlen: 23
84.47.174.0/23 maxlen: 23
84.47.181.0/24 maxlen: 24
213.135.72.0/23 maxlen: 23
84.47.182.0/23 maxlen: 23
84.47.186.0/23 maxlen: 23
213.135.77.0/24 maxlen: 24
213.135.80.0/24 maxlen: 24
84.47.190.0/23 maxlen: 23
213.135.82.0/23 maxlen: 23
213.135.79.0/24 maxlen: 24
213.135.84.0/22 maxlen: 22
213.135.88.0/22 maxlen: 22
2a02:bc8::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 12 Sep 2023 12:58:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:42:17:67:2a:cc:d4:6a:8f:ed:7d:9f:cb:bf:7f:11:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Aug 29 16:19:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4724ef34c1460931d5b9d2ce36e354f157b074d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:84:d7:c0:07:53:78:3f:e1:8d:e1:47:d3:fc:
4d:fd:e4:71:6a:04:c5:20:01:b5:45:6b:21:30:35:
db:f1:11:70:b2:1c:e9:7f:a9:6a:a8:a2:68:c3:03:
7e:6e:8a:80:83:05:4a:9f:f6:6d:cc:ef:34:57:6f:
32:ea:08:03:2d:81:54:11:81:1e:c1:91:1c:ce:65:
cf:13:fa:39:fd:5a:d9:bb:00:bb:17:0e:b3:bc:eb:
fe:4b:0d:26:32:6e:f3:7c:70:71:23:09:89:c0:c8:
87:bd:2c:7c:5e:ed:99:dd:e6:66:69:e0:06:49:3c:
68:61:ec:aa:e5:bb:0a:9d:7f:a4:63:05:f0:f6:65:
b6:51:12:9d:88:f0:a9:1e:4b:e3:fd:f8:0b:04:a1:
9f:7a:4b:0b:c8:90:06:e8:61:62:92:bf:7c:e8:43:
ac:f1:69:5a:92:08:f6:92:46:88:c6:6a:e4:6e:7d:
a6:f8:38:af:de:86:29:ee:32:94:39:d4:70:0a:90:
af:eb:e5:1f:8f:61:fb:0f:00:29:19:40:15:54:e0:
49:4b:0d:23:5c:9a:17:ed:91:ae:4f:05:e5:3c:2b:
8a:f5:b7:36:14:9d:13:18:4b:7f:12:36:75:f7:d3:
04:22:0b:2f:80:e0:9b:1e:79:34:40:c7:11:6b:b5:
93:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:72:4E:F3:4C:14:60:93:1D:5B:9D:2C:E3:6E:35:4F:15:7B:07:4D
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/5HJO80wUYJMdW50s4241TxV7B00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.94.160.0/19
81.26.144.0-81.26.155.255
84.47.128.0/23
84.47.131.0/24
84.47.134.0-84.47.136.255
84.47.140.0-84.47.145.255
84.47.147.0/24
84.47.150.0-84.47.153.255
84.47.156.0-84.47.165.255
84.47.168.0-84.47.172.255
84.47.174.0-84.47.178.255
84.47.181.0-84.47.183.255
84.47.186.0/23
84.47.190.0/23
85.91.96.0/21
85.91.112.0/22
85.91.118.0-85.91.122.255
185.106.107.0/24
213.135.64.0/23
213.135.67.0/24
213.135.69.0-213.135.70.255
213.135.72.0/23
213.135.77.0/24
213.135.79.0-213.135.80.255
213.135.82.0-213.135.91.255
213.208.160.0-213.208.170.255
213.208.172.0-213.208.184.255
213.208.186.0-213.208.191.255
IPv6:
2a02:bc8::/29
Signature Algorithm: sha256WithRSAEncryption
62:b0:e1:31:c3:fd:91:6a:ed:58:be:ee:b2:2d:ac:9a:22:0c:
f5:28:a9:40:d3:74:96:f0:98:3e:12:e7:25:ac:fc:f4:34:41:
e5:43:ca:c5:a3:06:34:1b:87:fd:77:4e:54:65:1a:4a:fe:16:
62:ea:30:2b:62:b7:41:15:ec:2a:4e:e1:f0:c8:8d:87:c1:d2:
44:d4:0a:00:c4:96:4f:9a:3b:ac:7a:3c:ca:c7:8c:96:ca:e3:
9d:1d:63:29:c2:bc:62:76:de:ae:34:a6:0d:97:bc:0d:4c:3d:
7e:cd:df:5c:a8:8a:c3:b7:24:51:44:5e:30:9c:85:a4:a7:f9:
e0:50:a0:b6:28:2e:05:63:5d:4f:45:b4:95:51:4f:ef:c6:4d:
ac:a3:d4:a9:50:48:d5:06:7b:f0:dd:b8:a4:08:f1:65:b9:cc:
04:d8:5b:59:aa:88:63:a8:77:72:07:0a:5d:75:d9:1d:13:a3:
0d:b2:57:d5:b8:55:8e:ef:a6:60:39:18:03:46:f1:72:c4:65:
67:1c:6b:b5:87:ab:9a:72:01:eb:96:59:f3:59:5f:19:8e:d5:
d0:c6:90:af:eb:be:fd:cf:28:ed:ad:73:b7:0b:69:25:c4:1b:
54:07:d2:c6:5e:c9:1a:50:8a:b3:8e:cb:cf:f8:36:29:e3:64:
99:db:72:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:05 2024 by rpki-client on console-ams.rpki-client.org