Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/Bg6JxoYvq_9cKAPduq39zSokYRI.roa
File: Bg6JxoYvq_9cKAPduq39zSokYRI.roa (raw, json)
Hash identifier: YUTfalyeUF8UNCzQEWutIlPq9X/j1XAGKM8q7UD63s0=
Subject key identifier: 06:0E:89:C6:86:2F:AB:FF:5C:28:03:DD:BA:AD:FD:CD:2A:24:61:12
Certificate issuer: /CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Certificate serial: 018C58324CC9E542F645835E99231C1846CB
Authority key identifier: 66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/Bg6JxoYvq_9cKAPduq39zSokYRI.roa
Signing time: Mon 11 Dec 2023 09:25:40 +0000
ROA not before: Mon 11 Dec 2023 09:25:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34170
IP address blocks: 158.181.36.0/24 maxlen: 24
158.181.37.0/24 maxlen: 24
158.181.35.0/24 maxlen: 24
158.181.38.0/24 maxlen: 24
158.181.33.0/24 maxlen: 24
158.181.34.0/24 maxlen: 24
158.181.32.0/24 maxlen: 24
158.181.39.0/24 maxlen: 24
158.181.44.0/23 maxlen: 23
158.181.46.0/23 maxlen: 23
80.69.48.0/24 maxlen: 24
80.69.50.0/24 maxlen: 24
80.69.51.0/24 maxlen: 24
80.69.49.0/24 maxlen: 24
80.69.57.0/24 maxlen: 24
80.69.58.0/24 maxlen: 24
80.69.56.0/24 maxlen: 24
80.69.54.0/24 maxlen: 24
80.69.55.0/24 maxlen: 24
80.69.52.0/24 maxlen: 24
80.69.53.0/24 maxlen: 24
80.69.61.0/24 maxlen: 24
80.69.62.0/24 maxlen: 24
80.69.59.0/24 maxlen: 24
80.69.60.0/24 maxlen: 24
80.69.63.0/24 maxlen: 24
92.39.92.0/24 maxlen: 24
92.39.95.0/24 maxlen: 24
92.39.93.0/24 maxlen: 24
92.39.94.0/24 maxlen: 24
92.39.88.0/24 maxlen: 24
92.39.91.0/24 maxlen: 24
92.39.89.0/24 maxlen: 24
92.39.90.0/24 maxlen: 24
91.135.240.0/24 maxlen: 24
91.135.241.0/24 maxlen: 24
91.135.244.0/24 maxlen: 24
91.135.245.0/24 maxlen: 24
91.135.242.0/24 maxlen: 24
91.135.243.0/24 maxlen: 24
91.135.246.0/24 maxlen: 24
91.135.248.0/24 maxlen: 24
91.135.247.0/24 maxlen: 24
91.135.251.0/24 maxlen: 24
91.135.252.0/24 maxlen: 24
91.135.249.0/24 maxlen: 24
91.135.250.0/24 maxlen: 24
91.135.253.0/24 maxlen: 24
91.135.255.0/24 maxlen: 24
91.135.254.0/24 maxlen: 24
185.105.198.0/24 maxlen: 24
185.105.199.0/24 maxlen: 24
185.105.196.0/24 maxlen: 24
185.105.197.0/24 maxlen: 24
212.47.152.0/24 maxlen: 24
212.47.154.0/24 maxlen: 24
212.47.157.0/24 maxlen: 24
212.47.158.0/24 maxlen: 24
212.47.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Dec 2023 11:38:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:58:32:4c:c9:e5:42:f6:45:83:5e:99:23:1c:18:46:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Validity
Not Before: Dec 11 09:25:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=060e89c6862fabff5c2803ddbaadfdcd2a246112
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:82:8b:74:0e:e9:68:b7:a0:2d:1d:c7:f8:57:
76:d1:47:71:08:68:4a:d3:15:b2:5e:7c:fd:c2:f2:
54:d0:9b:5d:78:b4:c7:6e:ef:db:b2:fa:fe:a3:32:
e6:fc:91:7b:26:c7:c1:88:67:33:65:fd:26:a0:f2:
90:5e:a7:bb:b3:e0:2e:1b:c5:f0:26:2c:58:16:1b:
3f:f1:13:bc:c7:a5:9f:b7:ff:e3:33:ce:90:40:3f:
8e:bc:63:cd:5f:05:e9:06:ac:a4:df:f2:1e:78:bc:
20:f1:41:f2:9b:b3:ff:78:b7:1e:1c:b3:10:ef:70:
73:5c:e0:59:b1:18:e8:68:b4:41:83:11:59:32:de:
40:f8:dd:ec:10:ea:40:ec:75:80:ed:49:6a:f1:41:
15:c5:5e:46:43:2f:ad:8a:e5:3e:ae:6f:04:8d:39:
a2:ea:d2:05:15:a9:46:93:70:89:14:68:20:4b:63:
d4:c8:29:e8:4c:4a:a0:db:8a:7e:06:cd:21:da:4e:
4a:90:b8:40:c1:c1:8c:0e:36:f3:f4:dc:df:2a:59:
14:2c:0d:21:e8:fe:ba:c4:2a:7b:79:6c:b2:42:f4:
fd:f9:40:af:7a:0c:65:c6:fc:af:a1:07:c2:ba:3f:
b8:d9:07:09:8a:3e:71:65:6e:31:95:54:e0:74:9d:
a6:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:0E:89:C6:86:2F:AB:FF:5C:28:03:DD:BA:AD:FD:CD:2A:24:61:12
X509v3 Authority Key Identifier:
keyid:66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/Bg6JxoYvq_9cKAPduq39zSokYRI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ZmA0ymoWu9AUSr31zyRY-WixWJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.69.48.0/20
91.135.240.0/20
92.39.88.0/21
158.181.32.0/21
158.181.44.0/22
185.105.196.0/22
212.47.152.0/24
212.47.154.0/24
212.47.157.0-212.47.159.255
Signature Algorithm: sha256WithRSAEncryption
96:ff:00:f2:59:e8:c0:7f:02:33:5e:e9:c7:9e:d7:5e:45:e7:
be:e0:5c:10:bd:c0:7b:3b:b8:a8:df:5c:b2:6a:3a:d8:e2:57:
88:61:c3:4d:20:9c:b8:39:0d:01:b2:f4:ec:c6:47:c5:22:e4:
54:4f:0c:ae:10:16:67:bb:52:c9:95:19:3c:82:04:f9:fd:50:
ff:89:91:53:2d:c5:9f:4a:05:f8:fb:5f:8f:d0:14:84:51:36:
ca:b8:60:7e:5a:3e:84:d2:b4:43:11:64:db:73:85:17:91:81:
d8:af:ca:0c:f6:a4:1c:06:6d:f5:ee:9e:db:25:26:78:60:a9:
0c:19:d8:5d:32:41:0b:8a:90:7c:cc:cb:68:c7:d6:96:75:45:
45:f1:cf:ca:d5:ab:df:dd:83:c0:55:33:17:be:d7:a3:ba:b8:
1a:7c:4c:fe:67:f0:06:fb:f6:06:df:20:8f:f4:19:70:4a:48:
06:16:02:25:e9:74:53:05:23:23:9d:60:2f:db:2e:c0:72:4d:
f9:e3:02:d7:ef:28:22:37:15:5c:24:0a:82:c3:8c:4e:e8:74:
49:bb:3c:ef:37:53:75:25:1c:eb:ba:ee:e7:1d:fe:42:d9:6d:
ce:a0:09:a8:4b:35:dd:0b:6b:8e:22:44:7c:8d:da:9c:2e:f0:
a5:e3:b3:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:51 2024 by rpki-client on console-ams.rpki-client.org