Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/kJCDqft3L2skQei_En-EYaFTX08.roa
File: kJCDqft3L2skQei_En-EYaFTX08.roa (raw, json)
Hash identifier: Mr8hAMaOkNJrebjSUNyh+rIlfxUo3WxDtXvSCgIglkw=
Subject key identifier: 90:90:83:A9:FB:77:2F:6B:24:41:E8:BF:12:7F:84:61:A1:53:5F:4F
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 0193559A852A37962DBB8A2C9817FBF8C011
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/kJCDqft3L2skQei_En-EYaFTX08.roa
Signing time: Fri 22 Nov 2024 20:40:10 +0000
ROA not before: Fri 22 Nov 2024 20:40:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 91.194.55.0/24 maxlen: 24
93.190.12.0/24 maxlen: 24
93.190.13.0/24 maxlen: 24
109.236.48.0/24 maxlen: 24
109.236.49.0/24 maxlen: 24
109.236.50.0/24 maxlen: 24
109.236.51.0/24 maxlen: 24
160.20.108.0/24 maxlen: 24
160.20.109.0/24 maxlen: 24
185.85.188.0/24 maxlen: 24
185.86.4.0/24 maxlen: 24
185.86.6.0/24 maxlen: 24
185.86.7.0/24 maxlen: 24
185.86.12.0/24 maxlen: 24
185.86.14.0/24 maxlen: 24
185.86.15.0/24 maxlen: 24
185.86.152.0/24 maxlen: 24
185.86.155.0/24 maxlen: 24
185.87.120.0/24 maxlen: 24
185.88.172.0/24 maxlen: 24
185.88.173.0/24 maxlen: 24
185.88.174.0/24 maxlen: 24
185.88.175.0/24 maxlen: 24
185.98.61.0/24 maxlen: 24
185.98.62.0/24 maxlen: 24
185.98.63.0/24 maxlen: 24
185.141.33.0/24 maxlen: 24
185.141.34.0/24 maxlen: 24
185.141.35.0/24 maxlen: 24
185.184.24.0/24 maxlen: 24
185.184.25.0/24 maxlen: 24
185.184.26.0/24 maxlen: 24
185.184.27.0/24 maxlen: 24
185.185.232.0/24 maxlen: 24
185.185.233.0/24 maxlen: 24
185.185.234.0/24 maxlen: 24
185.243.180.0/24 maxlen: 24
185.243.181.0/24 maxlen: 24
185.243.182.0/24 maxlen: 24
185.243.183.0/24 maxlen: 24
185.249.200.0/24 maxlen: 24
185.249.201.0/24 maxlen: 24
185.249.202.0/24 maxlen: 24
185.249.203.0/24 maxlen: 24
185.250.210.0/24 maxlen: 24
185.254.28.0/24 maxlen: 24
185.254.29.0/24 maxlen: 24
185.254.30.0/24 maxlen: 24
185.254.31.0/24 maxlen: 24
185.254.236.0/24 maxlen: 24
185.254.237.0/24 maxlen: 24
185.254.238.0/24 maxlen: 24
185.254.239.0/24 maxlen: 24
193.35.152.0/24 maxlen: 24
193.35.153.0/24 maxlen: 24
193.35.155.0/24 maxlen: 24
193.160.140.0/24 maxlen: 24
193.160.141.0/24 maxlen: 24
193.160.142.0/24 maxlen: 24
193.160.143.0/24 maxlen: 24
193.223.104.0/24 maxlen: 24
193.223.105.0/24 maxlen: 24
193.223.106.0/24 maxlen: 24
193.223.107.0/24 maxlen: 24
194.62.52.0/24 maxlen: 24
194.62.53.0/24 maxlen: 24
194.62.54.0/24 maxlen: 24
194.62.55.0/24 maxlen: 24
2a05:bf00::/29 maxlen: 29
2a07:e700::/29 maxlen: 29
2a0b:2780::/29 maxlen: 29
2a0d:49c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 29 Nov 2024 19:04:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:9a:85:2a:37:96:2d:bb:8a:2c:98:17:fb:f8:c0:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Nov 22 20:40:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=909083a9fb772f6b2441e8bf127f8461a1535f4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d1:57:b4:3c:38:17:d9:1d:10:2b:52:bd:e0:
6f:6c:ed:0f:96:99:55:4c:0d:7f:26:7e:f3:90:79:
c2:ef:d9:fc:07:d2:46:bb:e0:53:4d:e6:57:31:d2:
91:a6:bf:1a:8b:d1:8b:b6:9d:be:f8:aa:db:a1:59:
d4:69:3a:ef:0d:22:74:69:62:4d:9a:56:eb:6b:3b:
55:91:5f:b1:b8:83:02:3a:e3:41:7d:6c:18:f2:9c:
df:8b:00:d8:bf:c5:c5:71:2c:71:73:fb:00:b3:07:
f2:79:8b:54:24:26:7c:53:a8:5b:16:82:27:99:c1:
c0:12:d7:d1:ca:9a:d8:2c:25:e3:38:2a:72:c6:df:
ac:b0:67:d9:e9:c8:11:53:73:73:93:41:f9:8e:1b:
e4:90:f3:0b:2e:d7:36:5c:38:4e:a6:a9:4a:d8:2b:
96:f0:96:0f:94:6a:b8:b5:af:ca:6d:ed:95:f0:7e:
f3:ba:72:f9:f6:46:d4:e2:fa:d3:2f:dc:f1:60:63:
a5:6d:84:a6:df:a9:86:50:f9:dc:e7:96:e0:63:69:
e4:34:a0:b7:a3:5c:60:2f:b6:b8:22:46:a3:e5:38:
53:e0:20:67:09:8e:fc:bc:e2:f1:4e:8b:92:de:07:
f2:d9:43:74:9e:2a:5e:5b:1c:68:d9:e0:54:9d:f9:
f9:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:90:83:A9:FB:77:2F:6B:24:41:E8:BF:12:7F:84:61:A1:53:5F:4F
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/kJCDqft3L2skQei_En-EYaFTX08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.55.0/24
93.190.12.0/23
109.236.48.0/22
160.20.108.0/23
185.85.188.0/24
185.86.4.0/24
185.86.6.0/23
185.86.12.0/24
185.86.14.0/23
185.86.152.0/24
185.86.155.0/24
185.87.120.0/24
185.88.172.0/22
185.98.61.0-185.98.63.255
185.141.33.0-185.141.35.255
185.184.24.0/22
185.185.232.0-185.185.234.255
185.243.180.0/22
185.249.200.0/22
185.250.210.0/24
185.254.28.0/22
185.254.236.0/22
193.35.152.0/23
193.35.155.0/24
193.160.140.0/22
193.223.104.0/22
194.62.52.0/22
IPv6:
2a05:bf00::/29
2a07:e700::/29
2a0b:2780::/29
2a0d:49c0::/29
Signature Algorithm: sha256WithRSAEncryption
4d:6c:08:8a:b1:2f:50:46:e8:43:34:2c:37:7d:d8:9c:0d:b7:
61:3e:0c:9d:30:e6:f3:b9:7b:d8:07:aa:81:fd:c6:e8:8f:4d:
83:af:e4:5f:21:fc:05:4d:b4:ab:f8:f0:9a:4c:d1:24:f0:13:
b5:5b:3c:d1:5a:b6:2c:d5:04:d0:4f:df:8e:2a:9e:b1:98:74:
ab:fe:d0:86:de:e0:58:7f:04:5f:59:c0:dc:23:49:36:e3:a8:
48:47:5e:d2:30:f4:16:41:2e:eb:94:87:1d:9b:d2:11:41:bb:
68:95:37:dd:79:6e:72:f2:cb:0c:f5:78:74:fa:ef:21:ab:15:
a8:51:94:fd:a2:13:e7:d7:8a:58:dc:52:e7:0f:64:af:0a:3d:
5c:99:4a:d1:00:65:d0:e5:48:a6:bd:96:a4:e9:2a:35:2f:4b:
fb:27:d8:da:97:07:19:66:40:4b:09:84:f3:aa:dd:d5:cf:aa:
13:f8:7d:6e:b0:a4:c6:67:c6:b5:2d:6b:56:f2:d9:51:2c:c7:
c7:2d:08:f9:5c:f7:db:8a:df:83:13:6d:1d:41:e9:c1:14:8e:
41:29:e6:e8:d3:e3:f4:5b:75:a7:af:14:bd:ca:e2:bd:90:27:
07:3f:f5:97:30:38:8d:39:0f:d6:2d:66:51:08:e1:b2:28:7e:
1a:f2:5c:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:40:26 2025 by rpki-client