Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/B3eZuFBF1x_JNlLdU306iMNK5tQ.roa
File: B3eZuFBF1x_JNlLdU306iMNK5tQ.roa (raw, json)
Hash identifier: lcmdgYm3JyLXSJLyNbdfGkI01+QdzP9HYT+8RExScp4=
Subject key identifier: 07:77:99:B8:50:45:D7:1F:C9:36:52:DD:53:7D:3A:88:C3:4A:E6:D4
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 018A89791BD8F4CF6CA1AAD3ECB3176B8335
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/B3eZuFBF1x_JNlLdU306iMNK5tQ.roa
Signing time: Tue 12 Sep 2023 12:58:50 +0000
ROA not before: Tue 12 Sep 2023 12:58:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8641
IP address blocks: 213.208.160.0/21 maxlen: 21
213.208.168.0/23 maxlen: 23
213.208.170.0/24 maxlen: 24
213.208.172.0/23 maxlen: 23
213.208.174.0/23 maxlen: 23
213.208.176.0/21 maxlen: 21
213.208.186.0/23 maxlen: 23
213.208.184.0/24 maxlen: 24
213.208.188.0/22 maxlen: 22
81.26.144.0/21 maxlen: 21
81.26.144.0/24 maxlen: 24
81.26.152.0/22 maxlen: 22
81.26.155.0/24 maxlen: 24
185.106.107.0/24 maxlen: 24
77.94.160.0/19 maxlen: 19
84.47.128.0/23 maxlen: 23
84.47.131.0/24 maxlen: 24
77.94.175.0/24 maxlen: 24
84.47.135.0/24 maxlen: 24
84.47.134.0/23 maxlen: 23
84.47.136.0/24 maxlen: 24
84.47.140.0/22 maxlen: 22
84.47.144.0/23 maxlen: 23
84.47.152.0/23 maxlen: 23
84.47.150.0/23 maxlen: 23
85.91.96.0/21 maxlen: 21
84.47.147.0/24 maxlen: 24
84.47.156.0/22 maxlen: 22
84.47.160.0/24 maxlen: 24
84.47.161.0/24 maxlen: 24
84.47.162.0/24 maxlen: 24
84.47.163.0/24 maxlen: 24
85.91.112.0/22 maxlen: 22
84.47.164.0/23 maxlen: 23
84.47.168.0/22 maxlen: 22
85.91.118.0/23 maxlen: 23
213.135.64.0/23 maxlen: 23
84.47.172.0/24 maxlen: 24
213.135.67.0/24 maxlen: 24
213.135.70.0/24 maxlen: 24
84.47.178.0/24 maxlen: 24
85.91.122.0/24 maxlen: 24
85.91.120.0/23 maxlen: 23
84.47.176.0/24 maxlen: 24
213.135.69.0/24 maxlen: 24
84.47.177.0/24 maxlen: 24
84.47.176.0/23 maxlen: 23
84.47.174.0/23 maxlen: 23
84.47.181.0/24 maxlen: 24
213.135.72.0/23 maxlen: 23
84.47.182.0/23 maxlen: 23
84.47.186.0/23 maxlen: 23
213.135.77.0/24 maxlen: 24
213.135.80.0/24 maxlen: 24
84.47.190.0/23 maxlen: 23
213.135.82.0/23 maxlen: 23
213.135.79.0/24 maxlen: 24
213.135.84.0/22 maxlen: 22
213.135.88.0/22 maxlen: 22
2a02:bc8::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 21 Nov 2023 13:27:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:89:79:1b:d8:f4:cf:6c:a1:aa:d3:ec:b3:17:6b:83:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Sep 12 12:58:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=077799b85045d71fc93652dd537d3a88c34ae6d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:f7:8a:68:88:30:4d:0f:fe:c2:d5:41:ce:d0:
df:07:4d:19:20:30:0f:1b:45:43:f9:17:44:9d:58:
41:7c:40:f7:98:bf:a8:4a:03:35:34:cd:73:b2:d1:
3d:fe:f2:f0:bc:2b:a4:f8:ad:3b:04:0b:5c:4d:62:
39:13:02:11:9b:34:cf:3c:b3:d9:04:9c:22:f1:6a:
23:ca:9d:32:2f:2d:75:2d:9f:2a:3b:e6:f9:37:24:
c0:b9:69:32:ed:ad:01:c4:49:c9:55:e2:0f:b4:9a:
54:7d:a9:07:85:c0:f1:a0:13:0d:6a:a1:f5:09:89:
f0:c2:12:4c:78:97:7a:31:ef:ac:4a:9b:ca:79:27:
96:9f:a7:d8:1a:1c:88:a1:61:dd:65:53:4c:db:f2:
f2:c8:10:74:36:b0:3f:3b:8b:23:79:56:8c:fa:ce:
5e:c0:81:7b:18:5f:77:a5:a0:40:d5:96:e1:c1:08:
81:c2:e7:4d:a8:d8:6b:79:28:15:18:54:53:a1:76:
49:b3:30:ca:39:c7:3b:4d:34:8a:33:5b:88:b2:79:
f9:dc:85:99:9e:d1:1c:e4:4d:45:ad:cf:19:15:08:
95:20:ad:79:42:c9:3f:fd:8c:02:0a:31:99:27:63:
66:a5:32:be:6d:64:00:bc:7e:fd:b2:dd:69:ee:53:
fd:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:77:99:B8:50:45:D7:1F:C9:36:52:DD:53:7D:3A:88:C3:4A:E6:D4
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/B3eZuFBF1x_JNlLdU306iMNK5tQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.94.160.0/19
81.26.144.0-81.26.155.255
84.47.128.0/23
84.47.131.0/24
84.47.134.0-84.47.136.255
84.47.140.0-84.47.145.255
84.47.147.0/24
84.47.150.0-84.47.153.255
84.47.156.0-84.47.165.255
84.47.168.0-84.47.172.255
84.47.174.0-84.47.178.255
84.47.181.0-84.47.183.255
84.47.186.0/23
84.47.190.0/23
85.91.96.0/21
85.91.112.0/22
85.91.118.0-85.91.122.255
185.106.107.0/24
213.135.64.0/23
213.135.67.0/24
213.135.69.0-213.135.70.255
213.135.72.0/23
213.135.77.0/24
213.135.79.0-213.135.80.255
213.135.82.0-213.135.91.255
213.208.160.0-213.208.170.255
213.208.172.0-213.208.184.255
213.208.186.0-213.208.191.255
IPv6:
2a02:bc8::/29
Signature Algorithm: sha256WithRSAEncryption
69:4a:d5:89:26:77:86:8a:93:bf:57:c4:43:c5:3b:65:84:29:
10:53:9a:5f:63:34:cf:7d:68:5c:bc:b5:4a:1f:6d:42:7d:f9:
b2:e2:a1:93:03:30:9d:36:bd:6a:19:70:04:98:7e:a6:e6:6c:
20:27:b4:a5:7c:ff:ca:f5:fd:dd:8b:71:8a:7e:ae:23:6c:c4:
21:34:15:f8:50:bb:d4:ba:ac:63:4b:80:87:be:c9:e2:f0:34:
dc:a6:9a:20:ac:9a:f8:69:fb:66:30:2b:08:9d:c1:dc:a5:69:
73:2a:26:b2:3f:4d:5b:60:1b:6c:1f:f0:28:8d:a9:c0:b3:f2:
d2:8e:e8:52:4d:f6:7d:e2:da:ef:b7:3d:94:b0:e0:b0:0f:16:
b6:cb:fd:68:a6:9b:48:62:7d:e5:ed:9d:fe:5d:9d:18:00:08:
42:75:3e:47:0a:c8:9b:16:fa:a9:58:29:24:a6:b0:7d:84:cc:
15:6e:7f:86:43:84:34:0f:3e:07:bb:e1:fb:66:60:14:dd:26:
f9:5e:f9:10:74:0d:b6:97:57:d3:7e:ab:65:92:3d:0b:45:0b:
40:10:0e:ec:b8:0a:fa:9d:11:0b:26:a0:44:a9:69:0b:9b:5f:
76:01:4b:5b:c9:66:b1:b5:6b:6b:03:3b:b1:d2:32:f1:b5:60:
29:73:c5:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:05 2024 by rpki-client on console-ams.rpki-client.org