Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/9sZ9aeqdvDF7KKXtZpO5GAM5OJY.roa
File: 9sZ9aeqdvDF7KKXtZpO5GAM5OJY.roa (raw, json)
Hash identifier: BXZEDNa0sUi9LM93WFz3k1+0mxRSxnI5p+K3ATku3d8=
Subject key identifier: F6:C6:7D:69:EA:9D:BC:31:7B:28:A5:ED:66:93:B9:18:03:39:38:96
Certificate issuer: /CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Certificate serial: 018E1D71CD2C5E2D0169102AEC832F87A1FB
Authority key identifier: 7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/9sZ9aeqdvDF7KKXtZpO5GAM5OJY.roa
Signing time: Fri 08 Mar 2024 09:43:01 +0000
ROA not before: Fri 08 Mar 2024 09:43:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204601
IP address blocks: 5.8.248.0/24 maxlen: 24
45.81.224.0/22 maxlen: 22
45.82.68.0/22 maxlen: 22
45.82.176.0/22 maxlen: 22
45.87.0.0/22 maxlen: 22
45.136.84.0/24 maxlen: 24
45.136.85.0/24 maxlen: 24
45.136.86.0/24 maxlen: 24
45.136.87.0/24 maxlen: 24
45.137.64.0/22 maxlen: 22
46.18.107.0/24 maxlen: 24
46.21.250.0/24 maxlen: 24
77.220.212.0/22 maxlen: 22
77.220.212.0/24 maxlen: 24
77.220.213.0/24 maxlen: 24
77.220.214.0/24 maxlen: 24
77.220.215.0/24 maxlen: 24
81.31.197.0/24 maxlen: 24
91.201.25.0/24 maxlen: 24
91.208.127.0/24 maxlen: 24
91.209.226.0/24 maxlen: 24
91.228.56.0/24 maxlen: 24
94.124.78.0/24 maxlen: 24
178.159.38.0/24 maxlen: 24
178.159.39.0/24 maxlen: 24
178.159.42.0/24 maxlen: 24
178.159.43.0/24 maxlen: 24
185.23.108.0/24 maxlen: 24
185.51.121.0/24 maxlen: 24
185.51.246.0/24 maxlen: 24
185.51.247.0/24 maxlen: 24
185.93.6.0/24 maxlen: 24
185.107.237.0/24 maxlen: 24
185.201.252.0/24 maxlen: 24
185.204.109.0/24 maxlen: 24
185.229.251.0/24 maxlen: 24
185.232.164.0/24 maxlen: 24
185.235.128.0/24 maxlen: 24
185.235.129.0/24 maxlen: 24
185.235.130.0/24 maxlen: 24
185.235.131.0/24 maxlen: 24
185.237.165.0/24 maxlen: 24
185.241.52.0/24 maxlen: 24
185.241.53.0/24 maxlen: 24
185.241.54.0/24 maxlen: 24
185.241.55.0/24 maxlen: 24
185.241.61.0/24 maxlen: 24
185.244.216.0/22 maxlen: 22
185.244.216.0/24 maxlen: 24
185.244.217.0/24 maxlen: 24
185.244.218.0/24 maxlen: 24
185.244.219.0/24 maxlen: 24
185.250.204.0/24 maxlen: 24
185.250.205.0/24 maxlen: 24
185.250.206.0/24 maxlen: 24
185.250.207.0/24 maxlen: 24
185.251.25.0/24 maxlen: 24
185.253.7.0/24 maxlen: 24
193.3.168.0/24 maxlen: 24
193.22.21.0/24 maxlen: 24
193.56.8.0/24 maxlen: 24
193.163.7.0/24 maxlen: 24
193.163.113.0/24 maxlen: 24
193.169.105.0/24 maxlen: 24
194.15.46.0/24 maxlen: 24
194.29.53.0/24 maxlen: 24
194.62.105.0/24 maxlen: 24
212.8.244.0/24 maxlen: 24
212.8.246.0/24 maxlen: 24
212.23.221.0/24 maxlen: 24
212.86.101.0/24 maxlen: 24
212.86.102.0/24 maxlen: 24
212.86.108.0/24 maxlen: 24
212.86.109.0/24 maxlen: 24
212.86.114.0/24 maxlen: 24
212.86.115.0/24 maxlen: 24
212.162.152.0/22 maxlen: 24
213.166.68.0/24 maxlen: 24
213.166.69.0/24 maxlen: 24
213.166.70.0/24 maxlen: 24
213.166.71.0/24 maxlen: 24
2a07:5980::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 24 Apr 2024 09:15:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:1d:71:cd:2c:5e:2d:01:69:10:2a:ec:83:2f:87:a1:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Validity
Not Before: Mar 8 09:43:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f6c67d69ea9dbc317b28a5ed6693b91803393896
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:4c:1a:ab:a4:ed:b2:1f:15:2e:18:56:8e:5a:
3e:d3:4a:30:04:04:16:3d:15:06:79:8a:07:49:3c:
0d:c1:b8:a8:18:ca:81:fa:3e:b0:45:42:29:28:1f:
8b:91:32:31:9c:a5:c2:48:1e:3a:60:5f:a6:cb:17:
61:65:19:45:8b:cd:8a:a3:19:63:3c:74:49:d0:e0:
45:54:dc:80:21:a7:8f:aa:57:82:e5:10:66:9e:c9:
c1:9d:7a:21:69:8c:52:18:6b:97:cd:f8:f9:c1:c0:
ce:b1:bd:41:6d:18:f4:2b:3b:d7:82:42:25:9a:e1:
22:9f:6a:84:0d:28:c3:bc:23:ba:46:b0:ac:30:7f:
8e:20:1e:26:55:46:5d:21:39:ec:3d:7c:c0:9b:98:
fc:c1:35:9a:c7:6f:ce:6b:b2:6c:f9:fb:02:4f:4b:
be:ac:c8:20:bc:61:56:65:9b:f9:b3:37:5b:a0:f8:
61:cf:26:1b:95:ed:2d:8a:75:ce:e7:48:69:82:18:
40:08:3d:4d:3d:ce:b8:49:a8:0a:7b:f7:6e:ff:ac:
f0:fa:15:20:7f:21:b9:0e:ac:a8:ae:3e:9c:4f:95:
00:a7:cb:b2:b2:74:6d:57:60:ae:6a:8c:1e:69:5a:
9d:5c:0c:33:13:b4:13:30:af:ba:1e:b3:6f:4e:88:
80:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:C6:7D:69:EA:9D:BC:31:7B:28:A5:ED:66:93:B9:18:03:39:38:96
X509v3 Authority Key Identifier:
keyid:7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/9sZ9aeqdvDF7KKXtZpO5GAM5OJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/f8rYnfG_maNvKQzD7w8ee00CdTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.248.0/24
45.81.224.0/22
45.82.68.0/22
45.82.176.0/22
45.87.0.0/22
45.136.84.0/22
45.137.64.0/22
46.18.107.0/24
46.21.250.0/24
77.220.212.0/22
81.31.197.0/24
91.201.25.0/24
91.208.127.0/24
91.209.226.0/24
91.228.56.0/24
94.124.78.0/24
178.159.38.0/23
178.159.42.0/23
185.23.108.0/24
185.51.121.0/24
185.51.246.0/23
185.93.6.0/24
185.107.237.0/24
185.201.252.0/24
185.204.109.0/24
185.229.251.0/24
185.232.164.0/24
185.235.128.0/22
185.237.165.0/24
185.241.52.0/22
185.241.61.0/24
185.244.216.0/22
185.250.204.0/22
185.251.25.0/24
185.253.7.0/24
193.3.168.0/24
193.22.21.0/24
193.56.8.0/24
193.163.7.0/24
193.163.113.0/24
193.169.105.0/24
194.15.46.0/24
194.29.53.0/24
194.62.105.0/24
212.8.244.0/24
212.8.246.0/24
212.23.221.0/24
212.86.101.0-212.86.102.255
212.86.108.0/23
212.86.114.0/23
212.162.152.0/22
213.166.68.0/22
IPv6:
2a07:5980::/29
Signature Algorithm: sha256WithRSAEncryption
19:cf:0e:10:e9:6a:8c:e0:61:b4:dd:b8:c6:18:ce:9d:5c:32:
b9:c2:55:e7:86:0a:77:78:40:dd:bc:1f:ac:5b:04:64:05:9c:
ee:44:84:7a:33:95:79:9c:2d:1e:b2:ca:8c:78:59:06:72:62:
ed:06:a5:35:40:56:55:2b:1a:b8:19:01:89:e0:c6:eb:94:1f:
e6:4c:f2:94:3c:c7:97:4e:7a:61:ba:7a:29:b3:3f:3c:ad:ef:
81:f7:7a:f3:e3:45:b5:f5:65:7a:f2:31:bc:09:78:c7:10:ea:
d6:23:17:15:4b:09:16:bd:b7:c3:8f:b8:09:ec:91:68:34:3d:
10:16:df:b9:5e:6e:b5:65:2f:2e:85:3e:30:e7:ff:34:70:bb:
ec:cd:11:0d:02:ce:ae:65:69:16:95:98:a2:52:86:13:46:24:
32:a6:ba:08:14:3a:74:44:f8:92:b0:dc:86:b0:53:8b:27:ac:
01:4f:98:47:18:11:0d:93:16:3e:a0:5e:3c:b9:19:b2:1e:31:
6b:c3:2c:1b:c6:98:8d:95:c7:b2:e6:21:62:cf:d5:8e:ff:f4:
ca:42:b2:7b:dd:2d:94:e2:62:fc:b5:e6:8e:83:44:7c:5c:b5:
48:2e:48:2d:9a:c9:f1:88:e0:d0:db:03:13:2a:e3:a3:56:1e:
9a:6e:4e:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:20 2024 by rpki-client on console-ams.rpki-client.org