Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/8edb82-ce2b-44e1-92cd-2fc9e6b6fc96/1/iqIqNeeAEAb-I6tIL1M4BtmzSzg.roa
File: iqIqNeeAEAb-I6tIL1M4BtmzSzg.roa (raw, json)
Hash identifier: VcI7BoQ2CRIvcx3aEs2gcRLzw+GZat+OyZxXXno6M/o=
Subject key identifier: 8A:A2:2A:35:E7:80:10:06:FE:23:AB:48:2F:53:38:06:D9:B3:4B:38
Certificate issuer: /CN=859b5b6a3d82bd00ed31c6ceb3aea7ad591ee537
Certificate serial: 018B719275028E2117AF707BC2C9C88BEF58
Authority key identifier: 85:9B:5B:6A:3D:82:BD:00:ED:31:C6:CE:B3:AE:A7:AD:59:1E:E5:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hZtbaj2CvQDtMcbOs66nrVke5Tc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/8edb82-ce2b-44e1-92cd-2fc9e6b6fc96/1/iqIqNeeAEAb-I6tIL1M4BtmzSzg.roa
Signing time: Fri 27 Oct 2023 14:38:25 +0000
ROA not before: Fri 27 Oct 2023 14:38:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12392
IP address blocks: 85.26.80.0/20 maxlen: 20
85.201.128.0/20 maxlen: 20
85.26.96.0/20 maxlen: 20
85.201.144.0/20 maxlen: 20
85.26.112.0/20 maxlen: 20
85.201.160.0/20 maxlen: 20
85.26.32.0/20 maxlen: 20
85.201.80.0/20 maxlen: 20
85.26.48.0/20 maxlen: 20
85.201.96.0/20 maxlen: 20
85.26.64.0/20 maxlen: 20
85.201.112.0/20 maxlen: 20
149.154.192.0/18 maxlen: 18
85.201.240.0/20 maxlen: 20
85.201.176.0/20 maxlen: 20
85.201.192.0/20 maxlen: 20
85.201.208.0/20 maxlen: 20
85.201.224.0/20 maxlen: 20
213.213.240.0/20 maxlen: 20
85.201.16.0/20 maxlen: 20
85.201.32.0/20 maxlen: 20
85.26.0.0/17 maxlen: 17
85.26.0.0/20 maxlen: 20
85.201.48.0/20 maxlen: 20
85.26.16.0/20 maxlen: 20
85.201.64.0/20 maxlen: 20
85.201.0.0/20 maxlen: 20
85.201.0.0/16 maxlen: 16
213.213.192.0/20 maxlen: 20
213.213.192.0/18 maxlen: 18
213.213.208.0/20 maxlen: 20
213.213.224.0/20 maxlen: 20
185.3.160.0/22 maxlen: 22
82.212.128.0/20 maxlen: 20
82.212.128.0/18 maxlen: 18
82.212.144.0/20 maxlen: 20
82.212.160.0/20 maxlen: 20
82.212.176.0/20 maxlen: 20
62.197.64.0/18 maxlen: 18
109.89.128.0/20 maxlen: 20
62.197.80.0/20 maxlen: 20
109.89.144.0/20 maxlen: 20
62.197.96.0/20 maxlen: 20
109.89.160.0/20 maxlen: 20
62.197.112.0/20 maxlen: 20
109.89.80.0/20 maxlen: 20
109.89.96.0/20 maxlen: 20
62.197.64.0/20 maxlen: 20
109.89.112.0/20 maxlen: 20
109.89.240.0/20 maxlen: 20
217.15.224.0/20 maxlen: 20
109.89.176.0/20 maxlen: 20
109.89.192.0/20 maxlen: 20
109.89.208.0/20 maxlen: 20
109.89.224.0/20 maxlen: 20
78.129.16.0/20 maxlen: 20
109.88.160.0/20 maxlen: 20
213.189.176.0/20 maxlen: 20
95.182.240.0/20 maxlen: 20
109.88.176.0/20 maxlen: 20
78.129.32.0/20 maxlen: 20
109.88.192.0/20 maxlen: 20
78.129.48.0/20 maxlen: 20
78.129.64.0/20 maxlen: 20
109.88.208.0/20 maxlen: 20
95.182.192.0/20 maxlen: 20
95.182.208.0/20 maxlen: 20
109.88.128.0/19 maxlen: 19
95.182.224.0/20 maxlen: 20
78.129.0.0/17 maxlen: 17
213.189.160.0/19 maxlen: 19
213.189.160.0/20 maxlen: 20
78.129.0.0/20 maxlen: 20
109.89.16.0/20 maxlen: 20
212.68.224.0/20 maxlen: 20
109.89.32.0/20 maxlen: 20
212.68.240.0/20 maxlen: 20
109.89.48.0/20 maxlen: 20
109.89.64.0/20 maxlen: 20
109.88.224.0/20 maxlen: 20
78.129.80.0/20 maxlen: 20
78.129.96.0/20 maxlen: 20
212.68.192.0/20 maxlen: 20
109.88.240.0/20 maxlen: 20
212.68.192.0/18 maxlen: 18
109.89.0.0/20 maxlen: 20
78.129.112.0/20 maxlen: 20
212.68.208.0/20 maxlen: 20
85.27.48.0/20 maxlen: 20
85.27.0.0/17 maxlen: 17
85.27.32.0/20 maxlen: 20
95.182.144.0/20 maxlen: 20
109.88.64.0/20 maxlen: 20
109.88.80.0/20 maxlen: 20
109.88.96.0/19 maxlen: 19
109.88.0.0/20 maxlen: 20
109.88.0.0/15 maxlen: 15
109.88.16.0/20 maxlen: 20
109.88.32.0/20 maxlen: 20
95.182.128.0/17 maxlen: 17
109.88.48.0/20 maxlen: 20
95.182.128.0/20 maxlen: 20
2a02:2788:900::/40 maxlen: 40
2a02:2788:300::/40 maxlen: 40
2a02:2788:600::/40 maxlen: 40
2a02:2788:a00::/40 maxlen: 40
2a02:2788:100::/40 maxlen: 40
2a02:2788:400::/40 maxlen: 40
2a02:2788:700::/40 maxlen: 40
2a02:2788:b00::/40 maxlen: 40
2a02:2788:800::/40 maxlen: 40
2a02:2788:500::/40 maxlen: 40
2a02:2788::/32 maxlen: 32
2a02:2788:e00::/40 maxlen: 40
2a02:2788:c00::/40 maxlen: 40
2a02:2788:f00::/40 maxlen: 40
2a02:2788:200::/40 maxlen: 40
2a02:2788:d00::/40 maxlen: 40
2a02:2788::/40 maxlen: 40
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:71:92:75:02:8e:21:17:af:70:7b:c2:c9:c8:8b:ef:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=859b5b6a3d82bd00ed31c6ceb3aea7ad591ee537
Validity
Not Before: Oct 27 14:38:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8aa22a35e7801006fe23ab482f533806d9b34b38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:c1:1d:c7:50:c3:4a:d6:59:cf:98:b3:ee:62:
0a:c2:7f:ed:4c:88:12:02:df:19:fb:91:15:da:6e:
ac:3a:db:f9:47:2d:56:62:b1:6f:19:2e:26:4f:4c:
24:b1:61:d5:70:7c:21:16:8d:6a:d0:08:de:67:80:
ab:15:11:75:7f:ca:03:ec:8c:ab:0b:aa:7e:e0:97:
23:94:8e:18:f1:1b:a2:10:08:52:e9:60:37:6c:13:
6f:1a:79:ef:5e:f9:8d:95:67:2c:12:b9:ed:23:ac:
e3:75:04:36:8f:ad:f0:0b:41:38:b2:ee:b4:61:9d:
13:7f:90:da:e2:c9:77:58:4b:02:c0:e9:98:87:13:
36:1e:64:19:34:cb:13:d6:d6:2f:fb:06:60:d6:49:
9d:1e:c6:00:7e:89:c6:20:37:2a:30:54:4f:a2:57:
14:95:9d:ba:7f:9c:6e:70:cd:e6:d6:d1:d9:ab:2a:
03:38:cd:a8:82:32:8d:03:e8:16:d8:90:d0:af:f0:
b9:1b:f6:03:60:f0:bf:5d:b8:e6:50:56:05:de:0a:
4d:df:a5:db:09:08:d4:ac:3e:12:94:f8:57:0f:6a:
d1:80:c1:16:b8:3c:63:85:49:74:a2:78:f3:7f:16:
3d:b5:86:cf:e1:83:91:93:cd:c5:15:d6:ab:6f:07:
1b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:A2:2A:35:E7:80:10:06:FE:23:AB:48:2F:53:38:06:D9:B3:4B:38
X509v3 Authority Key Identifier:
keyid:85:9B:5B:6A:3D:82:BD:00:ED:31:C6:CE:B3:AE:A7:AD:59:1E:E5:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hZtbaj2CvQDtMcbOs66nrVke5Tc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/8edb82-ce2b-44e1-92cd-2fc9e6b6fc96/1/iqIqNeeAEAb-I6tIL1M4BtmzSzg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/8edb82-ce2b-44e1-92cd-2fc9e6b6fc96/1/hZtbaj2CvQDtMcbOs66nrVke5Tc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.197.64.0/18
78.129.0.0/17
82.212.128.0/18
85.26.0.0/17
85.27.0.0/17
85.201.0.0/16
95.182.128.0/17
109.88.0.0/15
149.154.192.0/18
185.3.160.0/22
212.68.192.0/18
213.189.160.0/19
213.213.192.0/18
217.15.224.0/20
IPv6:
2a02:2788::/32
Signature Algorithm: sha256WithRSAEncryption
50:45:61:84:8c:db:d0:bf:49:09:80:41:45:a5:5f:65:78:97:
cf:d1:1d:bb:04:de:15:2f:88:21:f8:14:b8:f3:00:c5:a1:3f:
62:f3:4c:c3:85:36:52:d2:3d:c6:68:9c:5c:e2:21:1d:46:a3:
4a:f5:44:6d:96:ae:b9:9f:81:9d:d1:db:8a:b7:c3:69:05:c2:
9d:54:49:e5:71:3e:66:8a:2d:9c:d5:7e:73:18:ae:6f:0c:6d:
2e:c1:6a:df:9c:e5:78:e9:08:b9:6f:f7:76:5e:c3:7c:26:5d:
10:ca:0f:5d:2f:65:00:d8:3b:64:ed:9c:30:f9:f0:db:bd:bb:
13:03:db:74:0c:48:6c:f1:37:ac:12:cd:55:2a:21:fc:04:34:
bd:04:18:6a:b7:89:f1:fe:f8:17:fa:7c:90:2e:be:c7:9d:54:
df:f2:d3:27:7f:33:eb:23:6c:00:9d:1e:e0:6f:63:64:a6:f3:
91:80:fa:ab:eb:bb:4c:eb:5e:42:e0:29:0c:a0:cf:05:c6:7f:
87:32:d3:2a:a6:8a:39:e1:95:4b:3f:bf:ca:b3:6e:47:8f:81:
c1:62:22:4c:26:37:76:15:b8:65:05:b5:26:8e:06:91:02:e0:
c3:70:fe:0d:99:90:10:d5:fb:07:c2:06:28:be:76:af:6e:78:
77:10:1a:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:48 2024 by rpki-client on console-fra.rpki-client.org