Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/I95N4Vk1xYv2x_5373CwuI8fyeM.roa
File: I95N4Vk1xYv2x_5373CwuI8fyeM.roa (raw, json)
Hash identifier: JKjYaJH2avBRc2nbL8YtJVlsRSo8toQvmggOt4we4As=
Subject key identifier: 23:DE:4D:E1:59:35:C5:8B:F6:C7:FE:77:EF:70:B0:B8:8F:1F:C9:E3
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018E08B82240BB9495F251DE32F12F30A689
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/I95N4Vk1xYv2x_5373CwuI8fyeM.roa
Signing time: Mon 04 Mar 2024 09:07:48 +0000
ROA not before: Mon 04 Mar 2024 09:07:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58057
IP address blocks: 31.42.183.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
45.136.136.0/22 maxlen: 24
77.81.50.0/23 maxlen: 24
85.202.203.0/24 maxlen: 24
93.88.200.0/21 maxlen: 24
94.177.122.0/24 maxlen: 24
109.61.104.0/21 maxlen: 24
139.28.96.0/22 maxlen: 24
185.232.117.0/24 maxlen: 24
193.163.85.0/24 maxlen: 24
193.163.86.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
2a04:ccc0:ffff::/48 maxlen: 48
2a04:ccc1::/32 maxlen: 48
2a04:ccc3::/32 maxlen: 48
2a04:ccc4::/32 maxlen: 48
2a04:ccc5::/32 maxlen: 48
2a04:ccc6::/32 maxlen: 48
2a04:ccc7::/32 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0c:3b80::/32 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a0c:3b83::/32 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2a0e:97c0:1d0::/44 maxlen: 44
2a0e:97c0:260::/44 maxlen: 44
2a0e:97c1:200::/40 maxlen: 48
2a0e:97c3:110::/44 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0e:b107:1165::/48 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:b107:21c0::/45 maxlen: 48
2a0e:b107:2220::/45 maxlen: 48
2a0e:b107:2228::/45 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a10:2f00:193::/48 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a10:cc45:130::/44 maxlen: 44
2a10:ccc0:420::/44 maxlen: 48
Validation: Failed, certificate revoked on Fri 08 Mar 2024 11:15:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:08:b8:22:40:bb:94:95:f2:51:de:32:f1:2f:30:a6:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 4 09:07:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=23de4de15935c58bf6c7fe77ef70b0b88f1fc9e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:92:7f:ca:7c:b6:b8:7d:c3:92:f0:7c:a5:a8:
53:44:dd:1e:e5:85:a9:a2:93:d6:56:ce:38:9c:a3:
f2:d7:14:cc:51:e4:8d:10:73:74:58:0e:89:9d:4c:
f9:62:90:b4:b7:61:f1:77:ba:ed:aa:21:56:37:fb:
b0:64:6b:af:e7:51:eb:cb:47:39:ff:91:5d:12:13:
d1:3c:b2:61:72:da:db:3a:b1:a4:f1:cb:d9:3f:57:
33:1d:5c:d8:78:26:2b:03:54:ed:da:7b:f6:2c:cf:
16:79:7b:a8:3b:e2:ec:c2:53:25:a5:d7:cf:75:e9:
17:37:2e:e9:7d:69:d5:fb:5e:61:a0:bc:3a:75:cf:
92:a0:03:9f:00:41:a8:6c:b6:95:b8:4c:0e:16:51:
18:03:e1:00:a8:e0:91:36:90:51:33:40:dd:67:4c:
46:1c:3d:10:90:7a:d3:73:a9:a0:ad:96:3f:fc:c2:
74:08:9c:76:a4:65:4a:96:7f:16:d4:f5:cb:d9:5f:
3f:14:14:85:a0:c0:2e:c1:c8:32:8c:c2:91:70:2f:
41:f0:b7:0f:1f:d1:92:d7:16:b3:99:6f:60:06:a5:
39:28:da:55:bb:80:4e:75:e4:53:73:0a:30:9f:d9:
05:53:dc:73:47:1d:84:a9:e7:4f:83:01:b8:5a:2b:
05:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:DE:4D:E1:59:35:C5:8B:F6:C7:FE:77:EF:70:B0:B8:8F:1F:C9:E3
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/I95N4Vk1xYv2x_5373CwuI8fyeM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.131.184.0/22
45.136.136.0/22
77.81.50.0/23
85.202.203.0/24
93.88.200.0/21
94.177.122.0/24
109.61.104.0/21
139.28.96.0/22
185.232.117.0/24
193.163.85.0-193.163.86.255
194.50.92.0/24
194.50.94.0/24
IPv6:
2a04:ccc0:ffff::-2a04:ccc1:ffff:ffff:ffff:ffff:ffff:ffff
2a04:ccc3::-2a04:ccc7:ffff:ffff:ffff:ffff:ffff:ffff
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:1d0::/44
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0e:b107:21c0::/45
2a0e:b107:2220::/44
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:2f00:193::/48
2a10:cc40:250::/44
2a10:cc45:130::/44
2a10:ccc0:420::/44
Signature Algorithm: sha256WithRSAEncryption
89:c3:1c:0d:94:c3:40:19:05:bd:a6:21:a7:73:a1:96:57:e6:
2d:40:ea:3a:9f:b2:ae:6a:fd:cc:b7:6c:2f:c2:d7:5c:c7:36:
93:12:8b:27:17:ff:cb:88:36:c9:d9:62:8b:53:a2:42:57:22:
08:be:b0:bb:14:c8:17:9e:a5:3e:44:7b:6e:91:5b:0e:18:67:
38:dd:49:8d:fd:3d:f2:51:c7:53:8c:3e:d4:58:4e:83:bf:c5:
5d:2e:12:7d:e0:f7:51:c8:b7:12:c0:34:0d:1b:5e:35:44:cb:
27:76:45:71:08:a8:fa:6e:67:7b:2e:a6:28:3a:2b:39:0c:57:
46:73:2d:0e:29:b2:db:60:7f:79:84:4a:e4:8c:e5:a4:91:bd:
8f:ba:69:73:62:33:9a:53:76:70:b1:f5:38:f2:b3:32:4e:c4:
87:f2:a9:e2:c6:2b:7d:84:91:12:30:eb:d1:16:b5:2e:c7:2c:
a9:db:d5:f9:38:9c:9b:c5:63:c2:92:66:ff:0b:2e:02:ca:f4:
41:73:6a:71:32:0b:ce:04:30:b2:d2:01:b3:33:91:59:43:ad:
98:d1:c1:92:34:2d:6a:d5:11:89:6c:55:a1:1f:02:dd:c1:76:
4e:72:04:97:45:9a:ca:d1:18:ab:92:ca:e1:79:c8:96:90:c9:
94:63:43:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:59 2024 by rpki-client on console-ams.rpki-client.org