Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/IGyAPQmhnnqkU4DYmDRWfNKi-6I.roa
File: IGyAPQmhnnqkU4DYmDRWfNKi-6I.roa (raw, json)
Hash identifier: L7DCv6LVrS4wgj+9fJ2J5vGTnlZwFg8E10Acfxs1Qr8=
Subject key identifier: 20:6C:80:3D:09:A1:9E:7A:A4:53:80:D8:98:34:56:7C:D2:A2:FB:A2
Certificate issuer: /CN=95a5adf6af1fcc0570adf858fd5bfbe28791a186
Certificate serial: 01857C04B74EEF67E12C35C6CC87932D0AFC
Authority key identifier: 95:A5:AD:F6:AF:1F:CC:05:70:AD:F8:58:FD:5B:FB:E2:87:91:A1:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/laWt9q8fzAVwrfhY_Vv74oeRoYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/IGyAPQmhnnqkU4DYmDRWfNKi-6I.roa
Signing time: Wed 04 Jan 2023 09:02:41 +0000
ROA not before: Wed 04 Jan 2023 09:02:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5413
IP address blocks: 77.73.120.0/21 maxlen: 24
212.103.224.0/19 maxlen: 24
195.70.64.0/19 maxlen: 24
78.141.0.0/18 maxlen: 24
5.22.224.0/21 maxlen: 24
217.67.48.0/20 maxlen: 24
193.242.113.0/24 maxlen: 24
193.242.116.0/24 maxlen: 24
185.3.76.0/22 maxlen: 24
193.242.115.0/24 maxlen: 24
130.185.64.0/21 maxlen: 24
62.232.0.0/16 maxlen: 24
94.30.0.0/17 maxlen: 24
194.154.160.0/19 maxlen: 24
77.107.128.0/18 maxlen: 24
185.8.204.0/22 maxlen: 24
109.170.128.0/17 maxlen: 24
80.234.128.0/17 maxlen: 24
212.102.192.0/19 maxlen: 24
195.224.0.0/16 maxlen: 24
80.89.80.0/20 maxlen: 24
62.69.32.0/19 maxlen: 24
195.200.128.0/19 maxlen: 24
62.72.128.0/19 maxlen: 24
194.1.210.0/24 maxlen: 24
212.241.128.0/17 maxlen: 24
212.19.64.0/19 maxlen: 24
194.79.240.0/22 maxlen: 24
45.83.76.0/22 maxlen: 24
80.69.128.0/20 maxlen: 24
194.143.160.0/19 maxlen: 24
212.35.224.0/19 maxlen: 24
195.147.0.0/16 maxlen: 24
93.95.104.0/21 maxlen: 24
193.38.52.0/24 maxlen: 24
195.38.64.0/19 maxlen: 24
62.105.64.0/18 maxlen: 24
89.145.192.0/18 maxlen: 24
193.41.96.0/21 maxlen: 24
93.92.120.0/21 maxlen: 24
194.126.64.0/19 maxlen: 24
193.28.154.0/24 maxlen: 24
176.35.0.0/16 maxlen: 24
78.41.208.0/21 maxlen: 24
185.196.204.0/22 maxlen: 24
194.153.0.0/19 maxlen: 24
77.44.0.0/17 maxlen: 24
193.192.64.0/19 maxlen: 24
91.236.17.0/24 maxlen: 24
82.195.96.0/19 maxlen: 24
213.205.128.0/18 maxlen: 24
193.192.34.0/23 maxlen: 24
80.64.48.0/20 maxlen: 24
83.219.32.0/19 maxlen: 24
62.44.64.0/19 maxlen: 24
195.226.32.0/19 maxlen: 24
185.138.152.0/22 maxlen: 24
212.88.32.0/19 maxlen: 24
2a00:b300::/29 maxlen: 48
2a04:b2c0::/29 maxlen: 48
2a07:2640::/29 maxlen: 48
2a03:4200::/32 maxlen: 48
2001:b98::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:7c:04:b7:4e:ef:67:e1:2c:35:c6:cc:87:93:2d:0a:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95a5adf6af1fcc0570adf858fd5bfbe28791a186
Validity
Not Before: Jan 4 09:02:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=206c803d09a19e7aa45380d89834567cd2a2fba2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:87:11:7e:4d:51:e9:a8:81:87:7e:ae:e0:81:
3e:41:be:c5:c5:d1:c7:f8:9d:a7:6d:b7:09:c7:25:
f9:3b:fa:b0:ab:f4:04:a8:ca:04:2f:7f:f1:cf:c3:
5b:3d:bd:1d:c8:25:7d:6a:61:5f:fa:b4:a8:52:18:
e8:90:d9:ce:84:2e:1f:32:56:20:f6:48:3c:7c:f4:
a3:f8:b1:3d:bc:53:20:e2:b0:ad:58:2a:0e:76:9d:
d6:1a:81:ff:2e:6d:15:9e:b5:d1:de:16:df:87:6b:
0a:52:a9:d8:24:70:5e:e4:9b:dc:28:fc:6a:c5:19:
5f:61:53:cd:a7:17:fa:60:73:b9:dd:cd:fe:54:d2:
a1:05:14:c1:ba:d3:03:51:00:d9:0a:39:53:5a:cc:
1f:f9:74:a0:e9:c0:1b:47:cb:52:cb:7f:aa:24:47:
bb:f9:c4:6e:35:3f:36:fd:31:2e:59:e9:ee:f3:c9:
7f:82:e9:73:7a:a0:d9:d3:9f:e5:e8:07:6d:5b:d9:
59:49:9d:0a:01:26:e4:e4:3b:33:96:05:80:0f:73:
c4:22:15:0c:13:a8:ee:75:92:3f:a9:68:47:91:44:
7a:86:0a:43:28:b5:d6:ee:3a:98:a6:3a:67:72:15:
1f:51:36:07:99:9e:a3:ec:bc:76:8d:54:89:c3:63:
77:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:6C:80:3D:09:A1:9E:7A:A4:53:80:D8:98:34:56:7C:D2:A2:FB:A2
X509v3 Authority Key Identifier:
keyid:95:A5:AD:F6:AF:1F:CC:05:70:AD:F8:58:FD:5B:FB:E2:87:91:A1:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/laWt9q8fzAVwrfhY_Vv74oeRoYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/IGyAPQmhnnqkU4DYmDRWfNKi-6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/d3f1ba-d9e5-45c5-bca2-1619d08c6965/1/laWt9q8fzAVwrfhY_Vv74oeRoYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.22.224.0/21
45.83.76.0/22
62.44.64.0/19
62.69.32.0/19
62.72.128.0/19
62.105.64.0/18
62.232.0.0/16
77.44.0.0/17
77.73.120.0/21
77.107.128.0/18
78.41.208.0/21
78.141.0.0/18
80.64.48.0/20
80.69.128.0/20
80.89.80.0/20
80.234.128.0/17
82.195.96.0/19
83.219.32.0/19
89.145.192.0/18
91.236.17.0/24
93.92.120.0/21
93.95.104.0/21
94.30.0.0/17
109.170.128.0/17
130.185.64.0/21
176.35.0.0/16
185.3.76.0/22
185.8.204.0/22
185.138.152.0/22
185.196.204.0/22
193.28.154.0/24
193.38.52.0/24
193.41.96.0/21
193.192.34.0/23
193.192.64.0/19
193.242.113.0/24
193.242.115.0-193.242.116.255
194.1.210.0/24
194.79.240.0/22
194.126.64.0/19
194.143.160.0/19
194.153.0.0/19
194.154.160.0/19
195.38.64.0/19
195.70.64.0/19
195.147.0.0/16
195.200.128.0/19
195.224.0.0/16
195.226.32.0/19
212.19.64.0/19
212.35.224.0/19
212.88.32.0/19
212.102.192.0/19
212.103.224.0/19
212.241.128.0/17
213.205.128.0/18
217.67.48.0/20
IPv6:
2001:b98::/29
2a00:b300::/29
2a03:4200::/32
2a04:b2c0::/29
2a07:2640::/29
Signature Algorithm: sha256WithRSAEncryption
59:b9:bf:6b:46:6b:94:32:20:20:bf:a1:aa:9e:d7:c7:49:95:
f2:a6:1a:0a:c6:5b:c6:d4:c3:74:67:2b:63:65:51:b3:62:8b:
7a:9d:5e:04:63:f1:7a:15:71:6a:6a:8c:b7:6a:fa:b8:e0:57:
55:56:37:7d:0f:2b:a1:8a:03:d0:47:67:9a:00:1c:fc:c9:05:
3e:5d:32:e1:01:93:a1:d4:47:f0:b5:1d:00:80:55:11:f0:3b:
41:ce:6f:ee:28:6a:79:7c:c0:56:ff:5d:02:30:c6:72:cf:cb:
bd:cd:a1:5c:8c:4d:f9:68:08:d9:95:53:1f:1f:aa:67:c6:7e:
76:5b:4b:de:33:e7:ba:a0:07:71:ba:0b:8b:4f:dd:d7:41:41:
d0:96:60:55:bb:74:86:09:88:54:3e:78:af:a9:83:8e:f3:44:
11:e0:aa:31:8b:7a:8d:94:59:ca:ad:d0:e6:f9:27:dc:10:85:
4a:00:48:10:52:fb:d9:94:56:40:92:81:a9:07:87:de:52:30:
50:e4:da:ff:a9:3e:10:7f:ce:cf:24:a0:53:bd:72:31:d9:b1:
aa:f0:97:c9:14:90:a2:e4:d9:be:2d:51:55:54:69:73:72:c8:
6a:4a:d9:24:f5:53:09:db:f4:72:56:28:bd:dd:70:00:d2:19:
65:b2:7d:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:22 2024 by rpki-client on console-fra.rpki-client.org