Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/NpfoQW_x10M2Q_biUuBtblYf_9o.roa
File: NpfoQW_x10M2Q_biUuBtblYf_9o.roa (raw, json)
Hash identifier: Im9un8Icp8PZLTxtBI6q/seqr/6UmZbetofWg2r4GFM=
Subject key identifier: 36:97:E8:41:6F:F1:D7:43:36:43:F6:E2:52:E0:6D:6E:56:1F:FF:DA
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 01856C53C99A9FA06FC03C392F7644845B92
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/NpfoQW_x10M2Q_biUuBtblYf_9o.roa
Signing time: Sun 01 Jan 2023 07:55:08 +0000
ROA not before: Sun 01 Jan 2023 07:55:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8641
IP address blocks: 213.208.160.0/21 maxlen: 21
213.208.168.0/23 maxlen: 23
213.208.170.0/24 maxlen: 24
213.208.172.0/22 maxlen: 22
213.208.176.0/21 maxlen: 21
213.208.186.0/23 maxlen: 23
213.208.184.0/24 maxlen: 24
213.208.188.0/22 maxlen: 22
81.26.144.0/21 maxlen: 21
81.26.144.0/24 maxlen: 24
81.26.152.0/22 maxlen: 22
81.26.155.0/24 maxlen: 24
185.106.107.0/24 maxlen: 24
77.94.162.0/24 maxlen: 24
77.94.160.0/19 maxlen: 19
84.47.128.0/22 maxlen: 22
77.94.175.0/24 maxlen: 24
84.47.135.0/24 maxlen: 24
84.47.134.0/23 maxlen: 23
84.47.136.0/24 maxlen: 24
84.47.140.0/22 maxlen: 22
84.47.144.0/23 maxlen: 23
84.47.152.0/23 maxlen: 23
85.91.96.0/21 maxlen: 21
84.47.147.0/24 maxlen: 24
77.94.189.0/24 maxlen: 24
84.47.148.0/22 maxlen: 22
84.47.156.0/22 maxlen: 22
84.47.160.0/24 maxlen: 24
84.47.161.0/24 maxlen: 24
84.47.162.0/24 maxlen: 24
84.47.163.0/24 maxlen: 24
84.47.160.0/22 maxlen: 22
85.91.112.0/22 maxlen: 22
84.47.164.0/23 maxlen: 23
84.47.168.0/21 maxlen: 21
85.91.118.0/23 maxlen: 23
213.135.64.0/22 maxlen: 22
213.135.70.0/23 maxlen: 23
84.47.178.0/24 maxlen: 24
85.91.122.0/24 maxlen: 24
84.47.176.0/24 maxlen: 24
213.135.69.0/24 maxlen: 24
84.47.177.0/24 maxlen: 24
84.47.176.0/23 maxlen: 23
85.91.120.0/23 maxlen: 23
84.47.181.0/24 maxlen: 24
213.135.72.0/23 maxlen: 23
84.47.182.0/23 maxlen: 23
84.47.186.0/23 maxlen: 23
213.135.77.0/24 maxlen: 24
213.135.80.0/24 maxlen: 24
84.47.190.0/23 maxlen: 23
213.135.79.0/24 maxlen: 24
213.135.80.0/21 maxlen: 21
213.135.88.0/22 maxlen: 22
2a02:bc8::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 27 Mar 2023 08:43:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:c9:9a:9f:a0:6f:c0:3c:39:2f:76:44:84:5b:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Jan 1 07:55:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3697e8416ff1d7433643f6e252e06d6e561fffda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:4e:8f:ae:c9:f5:b7:d1:e3:fc:46:8d:26:15:
da:f3:9e:8a:bd:96:92:05:66:67:fe:87:24:bc:5c:
6b:52:a4:3f:b3:23:ff:3b:0d:e7:e7:59:ce:ab:c7:
28:08:c0:ac:05:ea:01:cc:1f:57:5a:ed:a5:66:ae:
ef:6f:37:ad:26:85:ac:d3:bf:50:cc:99:52:db:3a:
e8:38:77:69:44:5a:76:78:d8:a9:a3:fe:8e:f5:07:
b0:e0:d3:1c:6e:14:d7:bd:73:bb:ad:88:07:4a:1a:
b0:8f:b4:1c:47:55:01:1a:51:ed:b6:7a:87:56:ba:
c2:8f:eb:f6:6f:89:6c:45:c9:c5:de:e6:69:27:8d:
a9:3d:81:86:26:80:27:7d:46:cc:f3:30:8f:97:57:
de:84:69:d4:11:3c:61:14:2d:ac:13:37:a5:64:ee:
f0:5b:c1:f0:68:50:93:ac:cc:f0:6a:e5:1a:91:5c:
44:e5:95:6c:3e:fe:6b:39:21:d4:30:cc:9e:fa:ef:
0f:9d:0b:e7:8b:40:59:2b:00:20:67:97:da:b1:d0:
e5:1e:da:85:fa:29:75:31:42:f8:d7:e3:bc:e6:a3:
0c:3a:9b:99:a9:76:26:6d:ac:3b:c9:20:0b:3f:ef:
7b:96:6f:65:a1:94:32:1f:bd:30:ce:71:49:f4:27:
a9:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:97:E8:41:6F:F1:D7:43:36:43:F6:E2:52:E0:6D:6E:56:1F:FF:DA
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/NpfoQW_x10M2Q_biUuBtblYf_9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.94.160.0/19
81.26.144.0-81.26.155.255
84.47.128.0/22
84.47.134.0-84.47.136.255
84.47.140.0-84.47.145.255
84.47.147.0-84.47.153.255
84.47.156.0-84.47.165.255
84.47.168.0-84.47.178.255
84.47.181.0-84.47.183.255
84.47.186.0/23
84.47.190.0/23
85.91.96.0/21
85.91.112.0/22
85.91.118.0-85.91.122.255
185.106.107.0/24
213.135.64.0/22
213.135.69.0-213.135.73.255
213.135.77.0/24
213.135.79.0-213.135.91.255
213.208.160.0-213.208.170.255
213.208.172.0-213.208.184.255
213.208.186.0-213.208.191.255
IPv6:
2a02:bc8::/29
Signature Algorithm: sha256WithRSAEncryption
b6:6d:da:4d:da:47:d9:63:06:9c:60:95:72:4f:47:bc:fd:d4:
54:15:4d:01:98:ba:d5:64:3d:ff:47:23:c3:6a:c7:fd:1e:26:
96:8d:59:b0:f7:88:66:05:1b:fe:25:80:ef:dd:31:8e:7b:12:
4e:ff:91:89:d6:59:e6:d4:5b:2b:e6:2d:63:98:8d:c9:82:81:
0e:d2:8d:92:c1:52:db:77:56:ec:d3:8b:b1:e4:b5:27:14:88:
4d:3f:56:13:39:6b:94:74:2b:52:c7:27:f8:5e:f7:b9:e5:c7:
d7:38:5f:3e:32:fa:e6:e8:25:14:bd:1d:b2:87:d5:fe:2f:a9:
c6:ac:ec:88:47:12:81:d0:89:59:f6:24:b5:e4:cd:45:17:9f:
30:41:1d:22:fb:66:00:b1:4c:04:3f:54:3c:7b:a5:f4:93:91:
31:91:35:07:e6:33:74:ad:9a:10:6e:09:00:65:d8:58:a6:7e:
1b:60:49:e5:ea:68:3f:63:b2:2a:91:2e:af:db:56:ed:9a:5e:
c9:36:ee:90:7a:5f:c8:80:96:8b:4a:9a:5e:93:08:9c:19:79:
8b:ab:62:2b:6b:9a:f0:bd:e9:be:b8:06:33:f2:17:b2:b4:00:
ac:66:9e:c9:97:9c:02:48:0f:65:b7:74:48:aa:06:6f:94:5a:
6a:46:c3:77
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:05 2024 by rpki-client on console-ams.rpki-client.org