Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/HVbHvL_NjnhQRbLXLbJBR42tRjE.roa
File: HVbHvL_NjnhQRbLXLbJBR42tRjE.roa (raw, json)
Hash identifier: +dAnEfKDf+NQMGVEejHP9Voq+aFLyXzQLrOWei2dGu0=
Subject key identifier: 1D:56:C7:BC:BF:CD:8E:78:50:45:B2:D7:2D:B2:41:47:8D:AD:46:31
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 01925E194C2F3BAFF10B36ABE40B5C36468D
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/HVbHvL_NjnhQRbLXLbJBR42tRjE.roa
Signing time: Sat 05 Oct 2024 19:12:48 +0000
ROA not before: Sat 05 Oct 2024 19:12:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 91.194.55.0/24 maxlen: 24
93.190.12.0/24 maxlen: 24
93.190.13.0/24 maxlen: 24
109.236.48.0/24 maxlen: 24
109.236.49.0/24 maxlen: 24
109.236.50.0/24 maxlen: 24
109.236.51.0/24 maxlen: 24
160.20.108.0/24 maxlen: 24
160.20.109.0/24 maxlen: 24
185.85.188.0/24 maxlen: 24
185.86.4.0/24 maxlen: 24
185.86.6.0/24 maxlen: 24
185.86.7.0/24 maxlen: 24
185.86.12.0/24 maxlen: 24
185.86.14.0/24 maxlen: 24
185.86.15.0/24 maxlen: 24
185.86.152.0/24 maxlen: 24
185.86.155.0/24 maxlen: 24
185.87.120.0/24 maxlen: 24
185.88.172.0/24 maxlen: 24
185.88.173.0/24 maxlen: 24
185.88.174.0/24 maxlen: 24
185.88.175.0/24 maxlen: 24
185.98.61.0/24 maxlen: 24
185.98.62.0/24 maxlen: 24
185.98.63.0/24 maxlen: 24
185.141.33.0/24 maxlen: 24
185.141.34.0/24 maxlen: 24
185.141.35.0/24 maxlen: 24
185.184.24.0/24 maxlen: 24
185.184.25.0/24 maxlen: 24
185.184.26.0/24 maxlen: 24
185.184.27.0/24 maxlen: 24
185.185.232.0/24 maxlen: 24
185.185.233.0/24 maxlen: 24
185.185.234.0/24 maxlen: 24
185.243.180.0/24 maxlen: 24
185.243.181.0/24 maxlen: 24
185.243.182.0/24 maxlen: 24
185.243.183.0/24 maxlen: 24
185.249.200.0/24 maxlen: 24
185.249.201.0/24 maxlen: 24
185.249.202.0/24 maxlen: 24
185.249.203.0/24 maxlen: 24
185.250.210.0/24 maxlen: 24
185.254.236.0/24 maxlen: 24
185.254.237.0/24 maxlen: 24
185.254.238.0/24 maxlen: 24
185.254.239.0/24 maxlen: 24
193.160.140.0/24 maxlen: 24
193.160.141.0/24 maxlen: 24
193.160.142.0/24 maxlen: 24
193.160.143.0/24 maxlen: 24
193.223.104.0/24 maxlen: 24
193.223.105.0/24 maxlen: 24
193.223.106.0/24 maxlen: 24
193.223.107.0/24 maxlen: 24
194.62.52.0/24 maxlen: 24
194.62.53.0/24 maxlen: 24
194.62.54.0/24 maxlen: 24
194.62.55.0/24 maxlen: 24
2a05:bf00::/29 maxlen: 29
2a07:e700::/29 maxlen: 29
2a0b:2780::/29 maxlen: 29
2a0d:49c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 21 Nov 2024 19:42:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:5e:19:4c:2f:3b:af:f1:0b:36:ab:e4:0b:5c:36:46:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Oct 5 19:12:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1d56c7bcbfcd8e785045b2d72db241478dad4631
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ac:c4:30:f4:62:75:26:fa:98:78:75:69:9e:
06:81:2d:44:cc:d9:ea:b5:43:b6:06:3d:ce:8c:06:
28:c0:7c:dc:83:5b:e1:0e:21:90:8f:cc:db:50:1d:
74:c4:95:7d:4a:76:d8:8a:d6:b9:29:13:9f:2e:37:
74:67:45:e3:15:1a:8e:80:f2:49:82:8a:14:18:e0:
59:c5:82:fe:2d:ce:18:72:ee:db:29:f9:89:66:e4:
00:cb:ee:da:52:8b:b6:d9:30:b2:34:96:a0:33:d9:
24:b4:5b:97:dc:55:2f:ff:34:17:f8:03:b3:29:63:
3b:c7:d2:5e:7d:e3:c0:66:d1:2c:32:79:6a:88:92:
be:ff:2c:db:89:12:bb:87:de:9d:a4:9d:d2:89:bd:
58:ed:27:bc:97:de:e4:d7:df:2d:cd:de:88:8e:41:
89:a8:95:92:1a:96:53:8a:71:72:e6:46:a4:84:5d:
f5:c5:78:99:1c:10:4e:36:93:a9:57:52:65:33:e6:
f1:97:de:79:9e:db:85:4c:74:8a:a3:ed:a5:5c:5e:
e9:a2:b3:35:25:29:e7:80:3a:cb:fd:16:3a:1f:56:
60:8f:3c:e2:39:59:0b:38:69:8e:7f:3d:c8:2e:d4:
3a:8d:6b:2e:56:d9:18:42:ba:dc:2c:1b:e6:d5:5e:
0d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:56:C7:BC:BF:CD:8E:78:50:45:B2:D7:2D:B2:41:47:8D:AD:46:31
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/HVbHvL_NjnhQRbLXLbJBR42tRjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.55.0/24
93.190.12.0/23
109.236.48.0/22
160.20.108.0/23
185.85.188.0/24
185.86.4.0/24
185.86.6.0/23
185.86.12.0/24
185.86.14.0/23
185.86.152.0/24
185.86.155.0/24
185.87.120.0/24
185.88.172.0/22
185.98.61.0-185.98.63.255
185.141.33.0-185.141.35.255
185.184.24.0/22
185.185.232.0-185.185.234.255
185.243.180.0/22
185.249.200.0/22
185.250.210.0/24
185.254.236.0/22
193.160.140.0/22
193.223.104.0/22
194.62.52.0/22
IPv6:
2a05:bf00::/29
2a07:e700::/29
2a0b:2780::/29
2a0d:49c0::/29
Signature Algorithm: sha256WithRSAEncryption
1c:a2:3e:a4:4b:a2:7d:35:47:9b:4b:45:26:6e:ff:64:a2:bc:
48:33:c1:94:0b:ca:9c:40:5b:83:82:c6:53:61:f7:5c:a0:40:
de:f2:29:78:72:7d:38:36:a9:69:bd:ac:34:33:d6:6b:de:f3:
87:c5:97:5c:bd:3f:3b:ca:4a:7f:4f:05:2f:f0:08:08:3b:0c:
35:f3:03:13:77:73:70:ee:10:d9:31:41:86:a8:71:06:45:63:
2e:63:a5:a2:54:98:d2:a8:d1:1a:b1:24:3e:07:6a:61:8a:f8:
2b:9a:a3:6f:fd:4a:f4:86:0e:32:43:a5:02:b5:60:cc:2b:76:
c2:a5:33:c3:25:52:23:45:d5:01:92:54:bf:3a:50:55:d2:49:
38:eb:b8:f0:95:a9:4d:0b:2d:b2:95:93:d2:67:79:51:7c:8c:
aa:07:8e:ee:61:e2:bc:b2:69:bf:bf:95:71:30:f7:ff:a4:41:
24:0f:e1:03:7f:07:09:dc:43:de:12:7f:f0:c5:33:39:a9:e3:
bc:b5:5f:92:72:70:2f:fb:e0:80:21:b7:5a:98:e2:42:90:d1:
9b:59:e0:11:7f:a8:47:de:28:b2:fc:d3:34:4d:ca:71:7b:36:
90:91:d1:76:65:e7:20:c3:55:53:b0:92:d5:40:7b:c0:f4:9c:
b0:e5:7a:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:58:32 2024 by rpki-client on console-ams.rpki-client.org