Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/2PfBVS_pAPmKfv-iU5YxJNivf-I.roa
File: 2PfBVS_pAPmKfv-iU5YxJNivf-I.roa (raw, json)
Hash identifier: 8VqS5oYfdYrqEQV6fpMdv4VUZvnEO0eXNOf0lRk6OlQ=
Subject key identifier: D8:F7:C1:55:2F:E9:00:F9:8A:7E:FF:A2:53:96:31:24:D8:AF:7F:E2
Certificate issuer: /CN=ab8c6c58b607ff23ae7175a61682c75480f1e214
Certificate serial: 018BB3BA5E2A8063284D21F82F72F4D38C77
Authority key identifier: AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/2PfBVS_pAPmKfv-iU5YxJNivf-I.roa
Signing time: Thu 09 Nov 2023 10:56:57 +0000
ROA not before: Thu 09 Nov 2023 10:56:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39737
IP address blocks: 77.93.176.0/20 maxlen: 20
89.46.160.0/22 maxlen: 22
77.93.160.0/23 maxlen: 23
77.93.162.0/24 maxlen: 24
77.93.164.0/22 maxlen: 22
77.93.168.0/22 maxlen: 22
86.107.183.0/24 maxlen: 24
89.43.193.0/24 maxlen: 24
94.177.32.0/21 maxlen: 21
188.247.226.0/23 maxlen: 23
94.177.40.0/21 maxlen: 21
188.247.238.0/24 maxlen: 24
188.247.239.0/24 maxlen: 24
188.247.240.0/21 maxlen: 21
188.247.248.0/21 maxlen: 21
188.247.252.0/22 maxlen: 22
193.58.243.0/24 maxlen: 24
92.55.152.0/24 maxlen: 24
92.55.153.0/24 maxlen: 24
92.55.154.0/24 maxlen: 24
194.102.221.0/24 maxlen: 24
193.254.242.0/23 maxlen: 23
89.44.232.0/22 maxlen: 22
89.18.0.0/21 maxlen: 21
89.18.1.0/24 maxlen: 24
89.18.2.0/24 maxlen: 24
89.18.0.0/20 maxlen: 20
89.18.0.0/24 maxlen: 24
89.18.4.0/24 maxlen: 24
89.18.3.0/24 maxlen: 24
89.18.5.0/24 maxlen: 24
89.18.8.0/24 maxlen: 24
89.18.9.0/24 maxlen: 24
89.18.6.0/24 maxlen: 24
89.18.7.0/24 maxlen: 24
89.18.11.0/24 maxlen: 24
89.18.10.0/24 maxlen: 24
89.18.12.0/24 maxlen: 24
89.18.15.0/24 maxlen: 24
89.18.13.0/24 maxlen: 24
89.18.14.0/24 maxlen: 24
89.38.140.0/22 maxlen: 22
188.247.129.0/24 maxlen: 24
89.35.74.0/23 maxlen: 23
188.247.132.0/23 maxlen: 23
92.55.131.0/24 maxlen: 24
92.55.132.0/24 maxlen: 24
92.55.134.0/24 maxlen: 24
92.55.135.0/24 maxlen: 24
92.55.144.0/21 maxlen: 21
86.105.181.0/24 maxlen: 24
195.20.145.0/24 maxlen: 24
89.47.224.0/21 maxlen: 21
89.37.120.0/21 maxlen: 21
87.243.0.0/21 maxlen: 21
89.34.72.0/23 maxlen: 23
2a00:1480:1::/48 maxlen: 48
2a00:1480:5::/48 maxlen: 48
2a00:1480::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 17 Nov 2023 16:16:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b3:ba:5e:2a:80:63:28:4d:21:f8:2f:72:f4:d3:8c:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab8c6c58b607ff23ae7175a61682c75480f1e214
Validity
Not Before: Nov 9 10:56:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8f7c1552fe900f98a7effa253963124d8af7fe2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:7e:32:9b:02:cd:14:73:88:75:c9:31:22:f4:
99:c5:16:d2:11:0e:49:0d:d3:c6:d0:67:78:f8:ea:
c1:c1:5a:13:46:3a:22:9b:a5:f9:3c:c2:d2:3f:bb:
36:d6:25:13:f5:87:b7:7d:94:2f:fc:93:86:1f:12:
a9:1c:c4:4c:04:0b:ee:92:f4:b5:cb:a3:08:59:15:
4b:3d:75:1d:87:b3:4c:8e:ef:6c:77:b2:6a:32:3d:
74:d9:a2:a9:e0:f1:95:e1:3a:26:8a:bf:b5:d5:4a:
75:6f:2a:0e:a9:b1:a0:16:ec:09:1c:42:a5:8d:a3:
d9:48:da:55:cc:b3:f2:96:fe:0e:d1:7f:e6:6f:9a:
de:6f:59:26:aa:73:44:8f:18:3d:b4:6d:50:86:c4:
48:b1:50:70:38:81:2f:df:37:de:1a:ff:9a:0b:4a:
f8:83:21:8c:b9:ca:e9:88:03:17:59:2e:8b:d8:20:
20:9b:a6:ec:66:59:83:1b:d8:27:bc:f4:42:87:ac:
1b:f0:05:99:33:95:37:14:78:74:87:72:37:aa:a8:
34:28:59:51:86:97:42:85:ef:38:96:71:fd:ce:12:
fa:35:bf:49:8e:0a:2a:c3:a9:0d:96:5a:56:eb:52:
3e:fb:a9:6a:22:04:9c:03:ba:85:90:72:e4:b2:6b:
12:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:F7:C1:55:2F:E9:00:F9:8A:7E:FF:A2:53:96:31:24:D8:AF:7F:E2
X509v3 Authority Key Identifier:
keyid:AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/2PfBVS_pAPmKfv-iU5YxJNivf-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/q4xsWLYH_yOucXWmFoLHVIDx4hQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.93.160.0-77.93.162.255
77.93.164.0-77.93.171.255
77.93.176.0/20
86.105.181.0/24
86.107.183.0/24
87.243.0.0/21
89.18.0.0/20
89.34.72.0/23
89.35.74.0/23
89.37.120.0/21
89.38.140.0/22
89.43.193.0/24
89.44.232.0/22
89.46.160.0/22
89.47.224.0/21
92.55.131.0-92.55.132.255
92.55.134.0/23
92.55.144.0-92.55.154.255
94.177.32.0/20
188.247.129.0/24
188.247.132.0/23
188.247.226.0/23
188.247.238.0-188.247.255.255
193.58.243.0/24
193.254.242.0/23
194.102.221.0/24
195.20.145.0/24
IPv6:
2a00:1480::/47
2a00:1480:5::/48
Signature Algorithm: sha256WithRSAEncryption
c8:a3:17:10:e3:16:fa:ef:3e:14:ea:fa:ee:e5:ec:85:09:43:
88:f6:6c:26:6f:70:a8:58:42:64:98:df:50:d8:5f:5a:d3:d3:
5f:4c:5b:d2:4b:e9:a1:45:4c:94:c7:15:ee:67:13:5b:1f:52:
00:e9:c9:9f:5d:fe:a4:21:f3:1f:9b:6d:99:c6:01:74:6a:34:
e5:91:b9:d1:9c:f8:87:98:ca:eb:e0:9b:51:6c:6c:b0:8a:84:
db:fe:a5:6e:e8:c8:97:dd:b8:2c:ce:b6:94:6f:5a:43:26:ac:
43:26:0f:3a:f5:e4:85:c6:af:a4:9c:66:42:a3:6c:b4:1e:03:
25:da:2e:98:d9:98:53:a4:c9:61:c4:e4:6b:85:f2:44:69:e6:
7e:c5:3f:91:ab:9a:20:30:64:9b:3b:ba:d6:c6:2a:40:c7:b1:
47:b3:ab:26:ac:2a:e1:35:35:9b:cf:ab:3e:e0:b2:50:09:fc:
ef:18:6a:5b:8c:f8:1b:ec:91:a8:ed:39:86:b8:68:7b:0f:4b:
3e:02:22:0f:db:a6:6e:3a:e9:a9:8c:81:22:39:03:bf:8d:10:
08:8a:d4:d5:72:26:46:03:db:be:84:79:16:5d:f3:96:d0:cb:
f6:c4:5a:25:60:52:f5:ba:dc:ee:2d:14:8e:85:59:04:98:12:
71:fc:d2:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:23 2024 by rpki-client on console-fra.rpki-client.org