Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/F5NHHhKIIi60Bjow9ARPbYou6IE.roa
File: F5NHHhKIIi60Bjow9ARPbYou6IE.roa (raw, json)
Hash identifier: soKg1rol38G0gsp3A/gUyQDTU+hU6Y8ZwDYc97hX5OI=
Subject key identifier: 17:93:47:1E:12:88:22:2E:B4:06:3A:30:F4:04:4F:6D:8A:2E:E8:81
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01856BEEBCEA5FF334BD6B8DD1321556B162
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/F5NHHhKIIi60Bjow9ARPbYou6IE.roa
Signing time: Sun 01 Jan 2023 06:04:45 +0000
ROA not before: Sun 01 Jan 2023 06:04:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43939
IP address blocks: 178.252.0.0/18 maxlen: 25
194.242.0.0/23 maxlen: 24
89.187.224.0/19 maxlen: 24
193.19.122.0/23 maxlen: 24
194.150.238.0/23 maxlen: 24
188.114.95.0/24 maxlen: 24
77.87.136.0/21 maxlen: 24
193.107.196.0/22 maxlen: 22
93.181.128.0/18 maxlen: 24
193.151.64.0/23 maxlen: 23
193.151.64.0/22 maxlen: 24
83.143.96.0/21 maxlen: 24
91.220.225.0/24 maxlen: 24
91.146.192.0/18 maxlen: 24
193.227.100.0/24 maxlen: 24
84.234.32.0/20 maxlen: 24
89.200.152.0/21 maxlen: 24
217.197.64.0/20 maxlen: 24
193.238.40.0/22 maxlen: 24
62.69.192.0/18 maxlen: 18
194.187.180.0/22 maxlen: 24
80.238.64.0/19 maxlen: 25
185.2.36.0/22 maxlen: 24
91.150.128.0/19 maxlen: 24
178.214.128.0/19 maxlen: 19
90.156.0.0/17 maxlen: 24
77.88.128.0/18 maxlen: 24
84.234.0.0/20 maxlen: 24
193.58.232.0/24 maxlen: 24
194.146.128.0/22 maxlen: 24
91.142.192.0/20 maxlen: 24
193.105.180.0/24 maxlen: 24
84.38.96.0/20 maxlen: 24
87.99.0.0/18 maxlen: 24
5.57.128.0/18 maxlen: 20
195.225.248.0/22 maxlen: 24
91.215.228.0/22 maxlen: 24
95.155.64.0/18 maxlen: 24
194.33.185.0/24 maxlen: 24
194.6.204.0/22 maxlen: 24
195.222.100.0/22 maxlen: 24
195.74.56.0/22 maxlen: 24
87.239.72.0/21 maxlen: 21
91.145.128.0/18 maxlen: 25
85.202.208.0/20 maxlen: 24
193.239.224.0/23 maxlen: 24
195.128.180.0/23 maxlen: 24
83.142.56.0/21 maxlen: 21
193.138.140.0/22 maxlen: 22
91.195.232.0/23 maxlen: 24
91.202.172.0/22 maxlen: 24
2a00:1d18::/32 maxlen: 32
2a02:2270::/32 maxlen: 36
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:bc:ea:5f:f3:34:bd:6b:8d:d1:32:15:56:b1:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 06:04:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1793471e1288222eb4063a30f4044f6d8a2ee881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:72:b7:e1:54:b3:e4:22:0d:bc:20:29:a1:77:
ec:1e:e9:08:32:c1:0f:53:ee:68:2d:00:64:b2:a2:
26:85:17:a2:ec:ae:d4:dd:06:6f:50:29:6a:37:71:
b3:73:e7:d9:b9:f4:e1:0a:19:6e:78:88:9d:4d:55:
92:da:21:60:a2:93:39:9e:ea:f6:b7:28:a9:f9:58:
6b:6b:69:17:5a:9f:7e:cb:67:35:1e:aa:bb:a9:b0:
85:5e:95:65:66:a4:63:f0:af:a4:e5:78:ad:32:16:
b5:c4:34:84:39:56:6c:b5:29:f4:c9:af:f6:ba:50:
b9:c4:d2:0b:5d:ab:59:e7:9f:a0:8e:8c:80:d2:b6:
3d:e1:88:ea:96:3f:22:2c:79:2b:0f:d4:45:0a:9e:
e7:16:9a:92:41:77:29:03:ad:ae:01:b7:37:6f:1d:
57:52:29:64:66:73:4a:91:b8:5d:43:34:b1:b5:f4:
e8:d5:75:2e:c6:f9:e6:90:31:43:3c:a4:82:ed:f2:
5c:f8:f2:0a:b2:1f:e4:a1:da:49:4c:4a:5b:d0:d7:
c3:8e:db:08:fc:5e:17:16:46:00:48:d3:ab:4c:32:
65:fe:67:93:29:36:8a:bf:f2:e7:7a:03:ce:cc:bb:
f2:39:e3:74:f9:df:45:b3:af:34:5d:90:66:4e:b1:
0b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:93:47:1E:12:88:22:2E:B4:06:3A:30:F4:04:4F:6D:8A:2E:E8:81
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/F5NHHhKIIi60Bjow9ARPbYou6IE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.128.0/18
62.69.192.0/18
77.87.136.0/21
77.88.128.0/18
80.238.64.0/19
83.142.56.0/21
83.143.96.0/21
84.38.96.0/20
84.234.0.0/20
84.234.32.0/20
85.202.208.0/20
87.99.0.0/18
87.239.72.0/21
89.187.224.0/19
89.200.152.0/21
90.156.0.0/17
91.142.192.0/20
91.145.128.0/18
91.146.192.0/18
91.150.128.0/19
91.195.232.0/23
91.202.172.0/22
91.215.228.0/22
91.220.225.0/24
93.181.128.0/18
95.155.64.0/18
178.214.128.0/19
178.252.0.0/18
185.2.36.0/22
188.114.95.0/24
193.19.122.0/23
193.58.232.0/24
193.105.180.0/24
193.107.196.0/22
193.138.140.0/22
193.151.64.0/22
193.227.100.0/24
193.238.40.0/22
193.239.224.0/23
194.6.204.0/22
194.33.185.0/24
194.146.128.0/22
194.150.238.0/23
194.187.180.0/22
194.242.0.0/23
195.74.56.0/22
195.128.180.0/23
195.222.100.0/22
195.225.248.0/22
217.197.64.0/20
IPv6:
2a00:1d18::/32
2a02:2270::/32
Signature Algorithm: sha256WithRSAEncryption
50:85:3f:a4:f7:c0:88:35:87:17:4f:11:72:13:20:3b:9d:c9:
07:5e:49:4d:e6:0d:d9:38:c4:ad:03:22:4c:85:a9:f0:d9:a0:
a1:95:cd:0d:b1:55:f6:d1:b2:43:c2:59:77:4b:73:ea:63:64:
7c:1a:37:dd:0a:2c:43:2f:36:c8:e0:e9:22:e9:29:0b:04:e4:
17:e0:29:2d:86:58:ba:f6:f9:51:1f:bb:f2:c7:34:ca:b5:81:
7c:bc:ce:03:d1:3b:f5:ec:1d:90:2a:5a:bd:42:c0:96:32:a2:
74:26:90:43:f7:62:08:ec:0f:c0:95:57:24:db:35:6c:f6:37:
3c:1b:d8:e6:6c:92:2e:53:27:38:df:14:3a:3a:c5:70:6b:c2:
67:3f:88:bd:8e:6d:49:fc:59:e9:79:23:10:ea:77:00:1e:35:
6c:fb:74:fb:c1:67:58:d3:83:e3:05:95:a8:c8:9d:cb:34:f4:
a3:4a:5d:b4:00:7b:63:a0:8f:e8:70:46:16:9d:46:15:f4:08:
65:14:20:0a:35:5d:26:1b:e7:02:ff:bd:5f:43:c5:ab:e7:b0:
3e:9a:b2:6c:95:d1:c7:95:72:60:13:2b:63:9c:51:3e:7f:c8:
36:59:7e:13:54:8c:71:91:f5:b8:e4:56:f3:4e:f0:d2:14:56:
9a:98:ca:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org