Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/8T_vspTkM9qVMe1xiXSDqzMnMxU.roa
File: 8T_vspTkM9qVMe1xiXSDqzMnMxU.roa (raw, json)
Hash identifier: 9CWqZ+fAhrPP6+aJx+OT/mQRT61GQnJ8ryDGha1qQHE=
Subject key identifier: F1:3F:EF:B2:94:E4:33:DA:95:31:ED:71:89:74:83:AB:33:27:33:15
Certificate issuer: /CN=95a5adf6af1fcc0570adf858fd5bfbe28791a186
Certificate serial: 018573CCF4F5CAE7799FF208BFDC8E44209C
Authority key identifier: 95:A5:AD:F6:AF:1F:CC:05:70:AD:F8:58:FD:5B:FB:E2:87:91:A1:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/laWt9q8fzAVwrfhY_Vv74oeRoYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/8T_vspTkM9qVMe1xiXSDqzMnMxU.roa
Signing time: Mon 02 Jan 2023 18:44:49 +0000
ROA not before: Mon 02 Jan 2023 18:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5413
IP address blocks: 77.73.120.0/21 maxlen: 24
212.103.224.0/19 maxlen: 24
195.70.64.0/19 maxlen: 24
78.141.0.0/18 maxlen: 24
5.22.224.0/21 maxlen: 24
217.67.48.0/20 maxlen: 24
193.242.113.0/24 maxlen: 24
193.242.116.0/24 maxlen: 24
185.3.76.0/22 maxlen: 24
193.242.115.0/24 maxlen: 24
130.185.64.0/21 maxlen: 24
62.232.0.0/16 maxlen: 24
94.30.0.0/17 maxlen: 24
194.154.160.0/19 maxlen: 24
77.107.128.0/18 maxlen: 24
185.8.204.0/22 maxlen: 24
80.234.128.0/17 maxlen: 24
109.170.128.0/17 maxlen: 24
212.102.192.0/19 maxlen: 24
195.224.0.0/16 maxlen: 24
80.89.80.0/20 maxlen: 24
62.69.32.0/19 maxlen: 24
62.72.128.0/19 maxlen: 24
195.200.128.0/19 maxlen: 24
194.1.210.0/24 maxlen: 24
212.241.128.0/17 maxlen: 24
212.19.64.0/19 maxlen: 24
194.79.240.0/22 maxlen: 24
45.83.76.0/22 maxlen: 24
80.69.128.0/20 maxlen: 24
194.143.160.0/19 maxlen: 24
212.35.224.0/19 maxlen: 24
195.147.0.0/16 maxlen: 24
93.95.104.0/21 maxlen: 24
193.38.52.0/24 maxlen: 24
195.38.64.0/19 maxlen: 24
62.105.64.0/18 maxlen: 24
89.145.192.0/18 maxlen: 24
193.41.96.0/21 maxlen: 24
93.92.120.0/21 maxlen: 24
194.126.64.0/19 maxlen: 24
193.28.154.0/24 maxlen: 24
176.35.0.0/16 maxlen: 24
78.41.208.0/21 maxlen: 24
185.196.204.0/22 maxlen: 24
194.153.0.0/19 maxlen: 24
77.44.0.0/17 maxlen: 24
193.192.64.0/19 maxlen: 24
91.236.17.0/24 maxlen: 24
82.195.96.0/19 maxlen: 24
213.205.128.0/18 maxlen: 24
193.192.34.0/23 maxlen: 24
80.64.48.0/20 maxlen: 24
83.219.32.0/19 maxlen: 24
62.44.64.0/19 maxlen: 24
195.226.32.0/19 maxlen: 24
185.138.152.0/22 maxlen: 24
212.88.32.0/19 maxlen: 24
2a00:b300::/32 maxlen: 48
2a04:b2c0::/29 maxlen: 48
2a07:2640::/29 maxlen: 48
2a03:4200::/32 maxlen: 48
2001:b98::/29 maxlen: 48
Validation: Failed, certificate revoked on Wed 04 Jan 2023 09:02:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:cc:f4:f5:ca:e7:79:9f:f2:08:bf:dc:8e:44:20:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95a5adf6af1fcc0570adf858fd5bfbe28791a186
Validity
Not Before: Jan 2 18:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f13fefb294e433da9531ed71897483ab33273315
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:63:2b:22:25:c8:92:f7:f3:52:19:d6:ec:f5:
29:74:50:38:c5:6c:2d:51:29:72:4e:b9:6e:49:94:
ae:89:fa:0a:21:59:01:f2:31:ee:98:1c:78:40:f6:
38:12:8f:3c:99:5d:fd:da:2e:b3:8b:4a:8b:be:aa:
2e:d3:0e:98:52:0a:02:12:c9:c1:41:82:ed:bc:c3:
ee:6a:64:28:12:22:fc:14:c2:c4:8f:92:05:ee:c2:
23:05:71:01:7f:86:54:90:cb:5b:57:37:9c:02:f2:
80:d3:2b:72:8c:7e:ef:0a:c8:eb:1a:25:df:94:62:
2d:4d:ec:8d:4c:3f:8d:c9:53:4a:13:e9:fd:10:6b:
49:09:82:77:7d:9f:75:92:e1:41:dd:aa:d2:0e:9c:
97:a7:2a:2b:81:48:a5:09:09:44:48:74:c7:f8:46:
bc:25:29:a4:2f:f9:11:6c:30:65:67:eb:a7:6d:75:
96:75:5c:b5:88:6f:f4:e3:3d:d3:68:25:68:17:2b:
c9:61:78:8c:55:a9:a8:48:19:7c:c3:aa:cf:f2:2e:
f5:8b:55:56:b2:7f:a5:e5:b2:64:99:83:e6:b0:05:
c9:01:91:79:ac:90:01:fb:e9:5e:2f:d9:71:fc:0c:
c2:73:45:87:fa:ec:b9:c0:88:1a:3d:23:c2:b7:77:
f4:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:3F:EF:B2:94:E4:33:DA:95:31:ED:71:89:74:83:AB:33:27:33:15
X509v3 Authority Key Identifier:
keyid:95:A5:AD:F6:AF:1F:CC:05:70:AD:F8:58:FD:5B:FB:E2:87:91:A1:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/laWt9q8fzAVwrfhY_Vv74oeRoYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/8T_vspTkM9qVMe1xiXSDqzMnMxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/laWt9q8fzAVwrfhY_Vv74oeRoYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.22.224.0/21
45.83.76.0/22
62.44.64.0/19
62.69.32.0/19
62.72.128.0/19
62.105.64.0/18
62.232.0.0/16
77.44.0.0/17
77.73.120.0/21
77.107.128.0/18
78.41.208.0/21
78.141.0.0/18
80.64.48.0/20
80.69.128.0/20
80.89.80.0/20
80.234.128.0/17
82.195.96.0/19
83.219.32.0/19
89.145.192.0/18
91.236.17.0/24
93.92.120.0/21
93.95.104.0/21
94.30.0.0/17
109.170.128.0/17
130.185.64.0/21
176.35.0.0/16
185.3.76.0/22
185.8.204.0/22
185.138.152.0/22
185.196.204.0/22
193.28.154.0/24
193.38.52.0/24
193.41.96.0/21
193.192.34.0/23
193.192.64.0/19
193.242.113.0/24
193.242.115.0-193.242.116.255
194.1.210.0/24
194.79.240.0/22
194.126.64.0/19
194.143.160.0/19
194.153.0.0/19
194.154.160.0/19
195.38.64.0/19
195.70.64.0/19
195.147.0.0/16
195.200.128.0/19
195.224.0.0/16
195.226.32.0/19
212.19.64.0/19
212.35.224.0/19
212.88.32.0/19
212.102.192.0/19
212.103.224.0/19
212.241.128.0/17
213.205.128.0/18
217.67.48.0/20
IPv6:
2001:b98::/29
2a00:b300::/32
2a03:4200::/32
2a04:b2c0::/29
2a07:2640::/29
Signature Algorithm: sha256WithRSAEncryption
71:65:a4:d3:f8:27:16:02:9d:47:1e:44:78:ea:22:73:8e:5b:
15:85:c9:05:39:ee:3f:f4:a6:ee:3e:7a:39:dd:05:2f:d8:1e:
aa:a9:f3:53:79:50:d1:9b:a0:70:e7:5b:c8:07:85:86:c9:29:
25:2a:a7:04:37:7d:4a:55:f7:f1:60:23:c7:22:4b:47:c6:17:
25:2b:4b:6e:80:99:1f:5a:15:55:50:90:d6:af:4c:b5:75:46:
db:47:79:9f:05:af:a7:f0:a7:ef:0a:28:ff:47:fe:6c:09:f8:
23:53:2d:25:57:24:67:75:7c:4d:79:a0:60:56:79:0f:67:d9:
7b:da:13:1e:9c:23:52:b4:7c:f1:55:98:3f:f4:4e:b0:da:dd:
82:93:bf:f7:ee:14:16:92:5a:70:b7:04:e1:61:6b:59:f3:52:
1e:7d:57:74:57:cd:5c:43:9e:0a:d3:bd:82:0e:2c:e1:1a:65:
2a:04:2b:6a:bb:60:fa:1a:ee:fc:18:a6:7d:a2:fb:13:93:7e:
99:0a:8d:4c:88:c9:04:96:b8:af:84:9c:12:6d:42:58:a3:46:
0c:80:e7:c3:57:06:06:e2:a1:90:69:5c:dd:43:e7:03:61:e8:
b6:34:f7:99:e0:16:4f:23:5e:37:fd:71:6a:48:f3:33:53:ac:
66:ec:94:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:34 2024 by rpki-client on console-ams.rpki-client.org