Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/4OAz1RtWfJJSuo4x-I__VzlFnIc.roa
File: 4OAz1RtWfJJSuo4x-I__VzlFnIc.roa (raw, json)
Hash identifier: 1ypBdfJZKzFePQ13Tfp1PyQT12wUylz2MhJJLPJNIUY=
Subject key identifier: E0:E0:33:D5:1B:56:7C:92:52:BA:8E:31:F8:8F:FF:57:39:45:9C:87
Certificate issuer: /CN=edb926f8c603aab79cb46a883bf632564a3faabf
Certificate serial: 01856DDD5C354E3463E54A9ABD09413EF107
Authority key identifier: ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/4OAz1RtWfJJSuo4x-I__VzlFnIc.roa
Signing time: Sun 01 Jan 2023 15:05:01 +0000
ROA not before: Sun 01 Jan 2023 15:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42695
IP address blocks: 86.107.49.0/24 maxlen: 24
86.107.48.0/23 maxlen: 24
185.16.84.0/22 maxlen: 24
89.46.81.0/24 maxlen: 24
89.46.80.0/24 maxlen: 24
89.46.83.0/24 maxlen: 24
89.46.82.0/24 maxlen: 24
89.46.84.0/23 maxlen: 23
89.46.86.0/24 maxlen: 24
89.46.87.0/24 maxlen: 24
185.2.152.0/22 maxlen: 24
188.241.198.0/24 maxlen: 24
188.241.198.0/23 maxlen: 24
188.241.199.0/24 maxlen: 24
89.36.90.0/23 maxlen: 23
45.114.121.0/24 maxlen: 24
45.114.120.0/22 maxlen: 24
45.114.123.0/24 maxlen: 24
45.114.122.0/24 maxlen: 24
141.255.184.0/21 maxlen: 24
37.153.138.0/23 maxlen: 24
185.52.156.0/22 maxlen: 24
37.153.172.0/23 maxlen: 24
89.45.226.0/24 maxlen: 24
89.45.226.0/23 maxlen: 24
188.240.222.0/23 maxlen: 24
91.106.192.0/21 maxlen: 24
91.123.192.0/20 maxlen: 24
89.45.227.0/24 maxlen: 24
185.103.48.0/23 maxlen: 23
185.103.51.0/24 maxlen: 24
185.103.50.0/24 maxlen: 24
89.42.140.0/23 maxlen: 24
185.62.204.0/24 maxlen: 24
185.62.204.0/22 maxlen: 24
185.62.206.0/24 maxlen: 24
185.62.205.0/24 maxlen: 24
185.62.207.0/24 maxlen: 24
31.12.84.0/22 maxlen: 24
116.206.168.0/22 maxlen: 24
188.240.92.0/22 maxlen: 24
31.132.58.0/24 maxlen: 24
31.132.56.0/24 maxlen: 24
31.132.57.0/24 maxlen: 24
77.81.188.0/23 maxlen: 24
188.240.18.0/23 maxlen: 24
188.95.224.0/21 maxlen: 24
46.254.10.0/23 maxlen: 23
46.254.8.0/21 maxlen: 24
46.254.13.0/24 maxlen: 24
46.254.12.0/24 maxlen: 24
46.254.15.0/24 maxlen: 24
46.254.14.0/24 maxlen: 24
188.212.108.0/23 maxlen: 24
103.57.72.0/22 maxlen: 24
103.57.74.0/24 maxlen: 24
86.107.242.0/23 maxlen: 24
77.81.6.0/23 maxlen: 24
103.81.140.0/23 maxlen: 24
103.81.142.0/24 maxlen: 24
103.81.143.0/24 maxlen: 24
89.40.216.0/23 maxlen: 23
2a03:d7c0::/29 maxlen: 48
2a03:b000:200::/40 maxlen: 40
2a03:b000:800::/40 maxlen: 40
2a03:b000:b00::/40 maxlen: 40
2a03:b000:900::/40 maxlen: 40
2a03:b000:600::/40 maxlen: 40
2a03:b000:700::/40 maxlen: 40
2a03:b000:400::/40 maxlen: 40
2a04:f180::/29 maxlen: 48
2a06:2980::/29 maxlen: 48
2a00:16d8::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 21 Feb 2023 08:09:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:5c:35:4e:34:63:e5:4a:9a:bd:09:41:3e:f1:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edb926f8c603aab79cb46a883bf632564a3faabf
Validity
Not Before: Jan 1 15:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e0e033d51b567c9252ba8e31f88fff5739459c87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:73:cf:c3:f5:c2:39:5a:28:e9:af:83:61:50:
f3:59:49:3b:0b:5e:bf:b3:ff:26:db:4e:7a:9d:5f:
91:84:bb:7c:0c:80:96:05:a5:0b:a8:65:3e:91:ed:
77:63:08:8b:78:7f:91:00:18:62:1d:cd:b0:d9:fa:
a1:0c:3c:f9:90:ab:4b:92:2e:7e:ef:02:71:1f:b9:
6e:15:2b:a2:6a:ff:a7:34:5e:ae:9a:4e:99:2c:4d:
ea:b9:6d:c8:d1:68:d2:a3:75:d9:63:b1:d9:fd:bb:
cd:f3:f1:75:cf:4e:6f:54:f5:92:2d:ed:4d:d5:c2:
07:cc:39:60:ca:e3:a7:58:45:58:54:6f:e9:4e:a5:
b1:67:ad:37:53:9d:9a:12:79:23:4a:2f:2d:ae:9b:
29:0b:d1:8b:02:ad:88:8c:99:cf:df:e9:da:a7:48:
a0:59:34:2e:43:7b:9b:a5:1d:7b:e4:89:bd:05:3b:
42:4b:33:c1:9b:b0:b1:20:e3:42:8f:ad:79:ea:78:
b8:98:be:3d:4e:2f:e5:bf:71:51:a4:c3:28:64:61:
1b:b5:0e:64:8f:1d:0c:fd:e3:71:4a:b6:6f:49:d0:
79:04:ae:19:fd:68:3a:69:a6:d0:26:72:ad:c3:de:
45:e6:42:8f:0b:99:d7:83:81:51:88:e3:25:83:f1:
58:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:E0:33:D5:1B:56:7C:92:52:BA:8E:31:F8:8F:FF:57:39:45:9C:87
X509v3 Authority Key Identifier:
keyid:ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/4OAz1RtWfJJSuo4x-I__VzlFnIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/7bkm-MYDqrectGqIO_YyVko_qr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.12.84.0/22
31.132.56.0-31.132.58.255
37.153.138.0/23
37.153.172.0/23
45.114.120.0/22
46.254.8.0/21
77.81.6.0/23
77.81.188.0/23
86.107.48.0/23
86.107.242.0/23
89.36.90.0/23
89.40.216.0/23
89.42.140.0/23
89.45.226.0/23
89.46.80.0/21
91.106.192.0/21
91.123.192.0/20
103.57.72.0/22
103.81.140.0/22
116.206.168.0/22
141.255.184.0/21
185.2.152.0/22
185.16.84.0/22
185.52.156.0/22
185.62.204.0/22
185.103.48.0/22
188.95.224.0/21
188.212.108.0/23
188.240.18.0/23
188.240.92.0/22
188.240.222.0/23
188.241.198.0/23
IPv6:
2a00:16d8::/32
2a03:b000:200::/40
2a03:b000:400::/40
2a03:b000:600::-2a03:b000:9ff:ffff:ffff:ffff:ffff:ffff
2a03:b000:b00::/40
2a03:d7c0::/29
2a04:f180::/29
2a06:2980::/29
Signature Algorithm: sha256WithRSAEncryption
78:ce:79:f0:2b:9f:3e:2e:0c:de:5b:6d:bc:bb:91:9c:b7:84:
e6:8c:44:81:01:35:0c:bb:b1:14:4b:38:53:06:bd:4d:12:45:
69:6f:67:23:fe:b0:99:ad:a1:ad:11:35:82:95:cf:bc:1e:9e:
5f:fb:73:95:cb:98:9a:52:b5:49:40:4a:53:2c:50:c9:8c:87:
9b:a6:b5:2f:16:dd:10:fa:ed:6d:bb:3f:52:24:45:ba:27:af:
92:a7:6b:ba:ea:cc:73:97:7b:47:10:20:18:7d:75:cf:bc:61:
d3:47:c5:33:a7:7a:15:f3:07:63:d0:c8:f4:e7:fe:25:59:3d:
e7:a4:df:97:e9:ad:64:4b:e4:45:9c:fa:61:e8:30:df:5a:3a:
e1:bc:bf:56:d3:e9:b8:7e:4a:09:43:93:7d:83:ac:af:80:d4:
0d:5f:08:be:ef:a1:2d:e0:f6:4a:94:e7:8f:59:a8:b5:a0:3c:
eb:2a:9b:22:e5:e1:46:d2:b8:e9:a0:9e:ae:e0:91:8d:37:f3:
32:9f:7a:8f:bd:fe:c7:a1:3b:80:df:73:4e:d3:16:b9:7e:2a:
12:46:0b:d9:94:1b:4a:a8:e4:8f:2a:4b:88:28:63:47:bd:b0:
d3:b0:a9:2c:07:fd:12:20:a3:dd:aa:aa:31:f8:67:03:14:6a:
a7:d3:17:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:37 2024 by rpki-client on console-fra.rpki-client.org