Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/PHQX8oNxuwqe3IBgb5KRPGjAQIQ.roa
File: PHQX8oNxuwqe3IBgb5KRPGjAQIQ.roa (raw, json)
Hash identifier: SLq6MQqcOA8zeiKbREDTV526Ctxzpcml5sAziZDsikk=
Subject key identifier: 3C:74:17:F2:83:71:BB:0A:9E:DC:80:60:6F:92:91:3C:68:C0:40:84
Certificate issuer: /CN=2f8675457594d7e740aaeef2e7d7efd02239c617
Certificate serial: 018949C67FB6BFA6E40EF6BFE9FFE823493F
Authority key identifier: 2F:86:75:45:75:94:D7:E7:40:AA:EE:F2:E7:D7:EF:D0:22:39:C6:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L4Z1RXWU1-dAqu7y59fv0CI5xhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/PHQX8oNxuwqe3IBgb5KRPGjAQIQ.roa
Signing time: Wed 12 Jul 2023 11:04:52 +0000
ROA not before: Wed 12 Jul 2023 11:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47583
IP address blocks: 45.93.136.0/22 maxlen: 22
45.87.80.0/22 maxlen: 22
194.11.214.0/23 maxlen: 23
153.92.4.0/23 maxlen: 23
153.92.3.0/24 maxlen: 24
153.92.2.0/24 maxlen: 24
153.92.1.0/24 maxlen: 24
153.92.7.0/24 maxlen: 24
153.92.6.0/23 maxlen: 23
153.92.6.0/24 maxlen: 24
153.92.11.0/24 maxlen: 24
153.92.10.0/24 maxlen: 24
153.92.9.0/24 maxlen: 24
153.92.8.0/21 maxlen: 21
153.92.8.0/24 maxlen: 24
31.220.17.0/24 maxlen: 24
31.220.16.0/24 maxlen: 24
153.92.15.0/24 maxlen: 24
153.92.14.0/24 maxlen: 24
153.92.13.0/24 maxlen: 24
153.92.12.0/24 maxlen: 24
31.220.23.0/24 maxlen: 24
31.220.20.0/23 maxlen: 23
31.220.22.0/24 maxlen: 24
31.220.21.0/24 maxlen: 24
31.220.19.0/24 maxlen: 24
31.220.18.0/24 maxlen: 24
31.220.20.0/24 maxlen: 24
31.220.48.0/20 maxlen: 20
31.220.108.0/24 maxlen: 24
31.220.107.0/24 maxlen: 24
31.220.106.0/24 maxlen: 24
31.220.111.0/24 maxlen: 24
31.220.110.0/24 maxlen: 24
31.220.109.0/24 maxlen: 24
194.11.154.0/23 maxlen: 23
31.220.104.0/24 maxlen: 24
31.220.105.0/24 maxlen: 24
2.57.90.0/24 maxlen: 24
2.57.88.0/23 maxlen: 23
2.57.91.0/24 maxlen: 24
185.77.97.0/24 maxlen: 24
185.77.96.0/24 maxlen: 24
212.1.212.0/24 maxlen: 24
212.1.212.0/22 maxlen: 22
212.1.211.0/24 maxlen: 24
212.1.210.0/24 maxlen: 24
212.1.208.0/24 maxlen: 24
212.1.208.0/21 maxlen: 21
212.1.215.0/24 maxlen: 24
195.110.58.0/23 maxlen: 23
31.170.160.0/22 maxlen: 22
31.170.164.0/23 maxlen: 23
31.170.164.0/24 maxlen: 24
31.170.165.0/24 maxlen: 24
31.170.166.0/23 maxlen: 23
185.28.21.0/24 maxlen: 24
185.28.20.0/24 maxlen: 24
185.28.23.0/24 maxlen: 24
185.28.22.0/24 maxlen: 24
93.188.160.0/21 maxlen: 21
45.13.132.0/23 maxlen: 23
45.13.134.0/23 maxlen: 23
156.67.208.0/20 maxlen: 20
45.13.252.0/23 maxlen: 23
45.13.254.0/23 maxlen: 23
2a02:4780::/48 maxlen: 48
2a02:4780:11::/48 maxlen: 48
2a02:4780:14::/48 maxlen: 48
2a02:4780:25::/48 maxlen: 48
2a02:4780:e::/48 maxlen: 48
2a02:4780:22::/48 maxlen: 48
2a02:4780:b::/48 maxlen: 48
2a02:4780:1f::/48 maxlen: 48
2a02:4780:8::/48 maxlen: 48
2a02:4780:19::/48 maxlen: 48
2a02:4780:1c::/48 maxlen: 48
2a02:4780:16::/48 maxlen: 48
2a02:4780:2a::/48 maxlen: 48
2a02:4780:5::/48 maxlen: 48
2a02:4780:85::/48 maxlen: 48
2a02:4780:13::/48 maxlen: 48
2a02:4780:27::/48 maxlen: 48
2a02:4780:2::/48 maxlen: 48
2a02:4780:10::/48 maxlen: 48
2a02:4780:21::/48 maxlen: 48
2a02:4780:24::/48 maxlen: 48
2a02:4780:1e::/48 maxlen: 48
2a02:4780:d::/48 maxlen: 48
2a02:4780:1b::/48 maxlen: 48
2a02:4780:a::/48 maxlen: 48
2a02:4780:18::/48 maxlen: 48
2a02:4780:29::/48 maxlen: 48
2a02:4780:26::/48 maxlen: 48
2a02:4780:1::/48 maxlen: 48
2a02:4780:4::/48 maxlen: 48
2a02:4780:84::/48 maxlen: 48
2a02:4780:15::/48 maxlen: 48
2a02:4780:23::/48 maxlen: 48
2a02:4780:12::/48 maxlen: 48
2a02:4780:20::/48 maxlen: 48
2a02:4780:f::/48 maxlen: 48
2a02:4780:9::/48 maxlen: 48
2a02:4780:c::/48 maxlen: 48
2a02:4780:1d::/48 maxlen: 48
2a02:4780:6::/48 maxlen: 48
2a02:4780:1a::/48 maxlen: 48
2a02:4780:28::/48 maxlen: 48
2a02:4780:3::/48 maxlen: 48
2a02:4780:17::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:49:c6:7f:b6:bf:a6:e4:0e:f6:bf:e9:ff:e8:23:49:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f8675457594d7e740aaeef2e7d7efd02239c617
Validity
Not Before: Jul 12 11:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c7417f28371bb0a9edc80606f92913c68c04084
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:bc:4b:64:6e:46:b4:5c:9a:e2:82:d8:d8:41:
bc:77:31:1a:e0:18:81:85:a8:1e:49:1a:fc:83:46:
38:e6:23:d6:46:ca:95:b5:91:48:78:de:23:e5:a2:
34:a7:44:5d:1b:a3:72:5b:38:1a:c3:81:a1:5c:2e:
37:3f:15:d0:0e:e2:00:bd:3f:2b:9e:68:a4:e8:a9:
e3:99:20:d5:b1:c7:91:53:12:9a:a2:87:60:d3:09:
0b:a3:7b:d0:02:13:eb:87:01:98:aa:10:63:4a:da:
30:0a:5f:95:f3:1c:d5:ed:10:b0:5d:6c:d7:c8:59:
aa:6f:d4:2c:c3:04:a1:57:38:9f:97:42:7e:54:c2:
28:f8:e6:1b:54:42:08:14:ff:16:20:07:d0:a2:5e:
37:e4:63:cb:ea:c8:32:b7:ac:96:2f:bc:36:62:14:
b2:2b:81:3e:24:f4:7d:18:61:e7:0b:f1:36:61:38:
76:40:4c:34:e3:c8:53:d7:43:fa:c4:95:a4:9c:56:
3b:7f:f8:ac:0b:9a:ab:7f:6b:77:13:f1:75:f0:cc:
5f:d0:27:e6:47:9e:39:7e:f1:c5:a6:7a:92:90:e9:
cf:88:a8:4d:18:1a:f6:16:92:75:2b:e5:b4:a1:35:
ff:f3:81:1e:81:cd:f3:95:e8:bc:38:15:9a:e7:4b:
26:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:74:17:F2:83:71:BB:0A:9E:DC:80:60:6F:92:91:3C:68:C0:40:84
X509v3 Authority Key Identifier:
keyid:2F:86:75:45:75:94:D7:E7:40:AA:EE:F2:E7:D7:EF:D0:22:39:C6:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L4Z1RXWU1-dAqu7y59fv0CI5xhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/PHQX8oNxuwqe3IBgb5KRPGjAQIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/L4Z1RXWU1-dAqu7y59fv0CI5xhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.88.0/22
31.170.160.0/21
31.220.16.0/21
31.220.48.0/20
31.220.104.0/21
45.13.132.0/22
45.13.252.0/22
45.87.80.0/22
45.93.136.0/22
93.188.160.0/21
153.92.1.0-153.92.15.255
156.67.208.0/20
185.28.20.0/22
185.77.96.0/23
194.11.154.0/23
194.11.214.0/23
195.110.58.0/23
212.1.208.0/21
IPv6:
2a02:4780::-2a02:4780:6:ffff:ffff:ffff:ffff:ffff
2a02:4780:8::-2a02:4780:2a:ffff:ffff:ffff:ffff:ffff
2a02:4780:84::/47
Signature Algorithm: sha256WithRSAEncryption
6e:62:f9:c1:97:52:a5:9f:4e:79:f0:f4:84:7f:0e:95:8d:2f:
6e:53:e9:e1:14:f6:63:b5:53:20:6a:29:bf:70:fa:61:0d:30:
35:41:00:1d:be:22:3c:a5:d3:75:60:77:ce:d7:3c:dc:df:ee:
20:19:b7:62:82:09:3d:6b:12:12:52:17:ef:54:ba:46:eb:29:
b0:09:ca:4e:a2:3c:47:9f:13:02:30:27:10:31:43:be:bb:04:
09:24:d6:ce:98:83:ba:f1:50:d7:c0:45:55:b6:4b:ed:66:a1:
f4:e5:b7:e3:85:d3:81:ae:38:cc:c9:99:ed:d1:91:49:2b:07:
05:07:8a:d2:69:9d:d6:ae:12:42:62:00:3c:25:8c:00:fc:ef:
78:3f:ae:ec:b7:60:08:19:3d:ba:bd:04:2a:2d:b8:e7:5c:9d:
a4:83:0f:22:69:9a:87:09:a4:9a:4d:69:d4:b2:94:53:52:1a:
53:30:b8:3a:90:59:d7:66:6f:f7:02:c2:82:d9:e6:0d:2e:18:
64:58:21:31:41:97:80:26:35:1c:2e:58:0f:3e:a7:c5:e5:cc:
28:7f:8e:16:7a:60:7f:43:84:64:d0:19:82:f7:84:e1:59:fb:
3e:87:e1:2e:71:87:a8:4d:9a:5a:da:5d:73:38:5b:2e:c8:cb:
eb:de:88:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:23 2024 by rpki-client on console-ams.rpki-client.org