Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/IHjNGHjB7aJOhJnzyE9D8EYh-hM.roa
File: IHjNGHjB7aJOhJnzyE9D8EYh-hM.roa (raw, json)
Hash identifier: ee+1TlnlVoIUJRje6VCgpgG4P7ZNfrfJvtWId8KP2eo=
Subject key identifier: 20:78:CD:18:78:C1:ED:A2:4E:84:99:F3:C8:4F:43:F0:46:21:FA:13
Certificate issuer: /CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Certificate serial: 018B99FF70303621B53737FC69C0DD806163
Authority key identifier: 66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/IHjNGHjB7aJOhJnzyE9D8EYh-hM.roa
Signing time: Sat 04 Nov 2023 11:02:16 +0000
ROA not before: Sat 04 Nov 2023 11:02:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34170
IP address blocks: 158.181.36.0/24 maxlen: 24
158.181.37.0/24 maxlen: 24
158.181.35.0/24 maxlen: 24
158.181.38.0/24 maxlen: 24
158.181.33.0/24 maxlen: 24
158.181.34.0/24 maxlen: 24
158.181.32.0/24 maxlen: 24
158.181.39.0/24 maxlen: 24
158.181.44.0/23 maxlen: 23
158.181.46.0/23 maxlen: 23
80.69.48.0/24 maxlen: 24
80.69.50.0/24 maxlen: 24
80.69.51.0/24 maxlen: 24
80.69.49.0/24 maxlen: 24
80.69.57.0/24 maxlen: 24
80.69.58.0/24 maxlen: 24
80.69.56.0/24 maxlen: 24
80.69.54.0/24 maxlen: 24
80.69.55.0/24 maxlen: 24
80.69.52.0/24 maxlen: 24
80.69.53.0/24 maxlen: 24
80.69.61.0/24 maxlen: 24
80.69.62.0/24 maxlen: 24
80.69.59.0/24 maxlen: 24
80.69.60.0/24 maxlen: 24
80.69.63.0/24 maxlen: 24
92.39.92.0/24 maxlen: 24
92.39.95.0/24 maxlen: 24
92.39.93.0/24 maxlen: 24
92.39.94.0/24 maxlen: 24
92.39.88.0/24 maxlen: 24
92.39.91.0/24 maxlen: 24
92.39.89.0/24 maxlen: 24
92.39.90.0/24 maxlen: 24
91.135.240.0/24 maxlen: 24
91.135.241.0/24 maxlen: 24
91.135.244.0/24 maxlen: 24
91.135.245.0/24 maxlen: 24
91.135.242.0/24 maxlen: 24
91.135.243.0/24 maxlen: 24
91.135.246.0/24 maxlen: 24
91.135.248.0/24 maxlen: 24
91.135.247.0/24 maxlen: 24
91.135.251.0/24 maxlen: 24
91.135.252.0/24 maxlen: 24
91.135.249.0/24 maxlen: 24
91.135.250.0/24 maxlen: 24
91.135.253.0/24 maxlen: 24
91.135.255.0/24 maxlen: 24
91.135.254.0/24 maxlen: 24
185.105.198.0/24 maxlen: 24
185.105.199.0/24 maxlen: 24
185.105.196.0/24 maxlen: 24
185.105.197.0/24 maxlen: 24
212.47.136.0/22 maxlen: 22
212.47.140.0/22 maxlen: 22
212.47.152.0/24 maxlen: 24
212.47.154.0/24 maxlen: 24
212.47.157.0/24 maxlen: 24
212.47.158.0/24 maxlen: 24
212.47.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Dec 2023 08:15:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:99:ff:70:30:36:21:b5:37:37:fc:69:c0:dd:80:61:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Validity
Not Before: Nov 4 11:02:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2078cd1878c1eda24e8499f3c84f43f04621fa13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:3b:00:43:f6:9d:ec:2e:24:42:92:00:aa:15:
02:b8:b0:57:b6:d0:07:ef:fa:d3:66:ab:f2:27:fd:
2f:94:74:a2:d4:d7:9b:f1:20:94:5a:40:7c:e4:49:
fc:4c:bc:ae:94:d7:04:e3:77:5d:ab:38:32:ed:04:
83:32:19:f4:cd:08:bc:40:44:8d:5a:7c:94:0a:12:
5c:25:02:46:59:54:69:58:8c:9a:8b:79:05:98:bd:
96:fb:f5:ec:13:b4:69:96:71:76:75:af:af:e1:10:
3b:2f:83:ef:79:65:19:43:88:1c:b6:59:3c:01:5f:
8d:15:46:4d:cb:23:e2:fe:34:5e:c2:94:b6:60:98:
fa:5e:f7:1e:ea:0f:56:36:86:3b:19:20:8e:48:a6:
49:71:a7:71:e4:e5:3d:52:56:a7:a1:e5:42:5e:7c:
7c:f0:ab:7d:ec:eb:70:80:90:31:12:4d:71:a2:a7:
c0:77:72:95:b1:77:94:75:00:73:01:61:20:35:db:
81:08:01:67:7f:f1:b1:3b:c3:4e:5b:7d:b0:0f:22:
aa:41:e9:06:ed:0e:1b:fe:1f:13:f9:fb:db:86:04:
21:a2:01:5f:e9:16:5b:f8:e1:17:dd:8d:af:2b:1f:
21:7a:16:91:c7:51:fb:84:7d:7c:1c:ab:a4:3e:da:
69:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:78:CD:18:78:C1:ED:A2:4E:84:99:F3:C8:4F:43:F0:46:21:FA:13
X509v3 Authority Key Identifier:
keyid:66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/IHjNGHjB7aJOhJnzyE9D8EYh-hM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ZmA0ymoWu9AUSr31zyRY-WixWJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.69.48.0/20
91.135.240.0/20
92.39.88.0/21
158.181.32.0/21
158.181.44.0/22
185.105.196.0/22
212.47.136.0/21
212.47.152.0/24
212.47.154.0/24
212.47.157.0-212.47.159.255
Signature Algorithm: sha256WithRSAEncryption
6c:4b:1a:d8:fd:63:05:53:d1:a7:41:fd:ce:57:6c:0f:2f:46:
69:f5:ce:8e:9e:9f:54:06:82:8d:cf:bf:1e:78:af:f1:32:1a:
ac:cd:5a:38:8f:e3:25:bf:e1:f9:e7:19:4f:e6:11:92:08:c3:
e7:75:93:26:45:ed:62:cc:07:64:b4:a5:97:05:77:db:eb:8b:
ff:5a:87:20:5f:bc:23:23:17:0f:60:ec:ea:79:91:0a:2e:53:
e7:32:96:1d:4a:39:c9:3d:2e:d4:0c:5c:15:7d:6e:a0:c0:7e:
1b:cb:60:77:2c:d3:63:c0:8b:50:5c:3a:7b:f4:9e:2a:5a:ba:
58:91:72:57:9b:37:ee:5d:b5:1b:1d:cf:09:d9:11:91:0e:4d:
75:b5:65:95:bd:e2:5e:7d:d8:b5:2b:f8:1b:1b:88:7f:6a:6f:
55:e3:7b:e5:74:5c:7f:49:c7:64:ce:9c:20:f9:7a:c5:f9:75:
5c:2a:5a:75:25:0b:90:da:b0:4a:12:a3:74:98:25:bd:c0:1b:
1f:b6:03:f8:2b:7b:69:91:38:36:55:d6:93:0f:90:46:60:db:
b7:f0:e3:bc:5f:ac:7e:12:5c:bd:27:5b:5e:e9:13:7f:f2:60:
18:5d:ea:26:e5:7e:ae:a0:af:8b:ae:bb:4d:48:1d:18:14:0c:
82:03:dd:37
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:52 2024 by rpki-client on console-fra.rpki-client.org