Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/oSdXVHnK9QWdqQ9Nq22TAXI9G78.roa
File: oSdXVHnK9QWdqQ9Nq22TAXI9G78.roa (raw, json)
Hash identifier: +l1rhgbfw/pqbKx6Ze12yGxV0ynYh0t87VoYoJG1xBo=
Subject key identifier: A1:27:57:54:79:CA:F5:05:9D:A9:0F:4D:AB:6D:93:01:72:3D:1B:BF
Certificate issuer: /CN=174847f8667d52fa2cf9cf9afcc43a07915575ca
Certificate serial: 018CC801709E61582842E81BA5E6782D61A7
Authority key identifier: 17:48:47:F8:66:7D:52:FA:2C:F9:CF:9A:FC:C4:3A:07:91:55:75:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F0hH-GZ9Uvos-c-a_MQ6B5FVdco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/oSdXVHnK9QWdqQ9Nq22TAXI9G78.roa
Signing time: Tue 02 Jan 2024 02:29:46 +0000
ROA not before: Tue 02 Jan 2024 02:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15685
IP address blocks: 82.208.56.0/24 maxlen: 24
82.208.58.0/24 maxlen: 24
109.123.202.0/23 maxlen: 24
109.123.205.0/24 maxlen: 24
82.208.4.0/22 maxlen: 22
109.123.206.0/23 maxlen: 24
82.208.8.0/22 maxlen: 22
109.123.208.0/22 maxlen: 24
109.123.214.0/23 maxlen: 24
82.208.14.0/24 maxlen: 24
109.123.216.0/21 maxlen: 24
82.208.16.0/23 maxlen: 23
82.208.17.0/24 maxlen: 24
82.208.12.0/24 maxlen: 24
82.208.16.0/24 maxlen: 24
82.208.18.0/24 maxlen: 24
82.208.28.0/23 maxlen: 23
82.208.26.0/23 maxlen: 23
82.208.32.0/22 maxlen: 22
82.208.44.0/24 maxlen: 24
82.208.39.0/24 maxlen: 24
82.208.40.0/23 maxlen: 23
82.208.50.0/24 maxlen: 24
82.208.46.0/23 maxlen: 23
82.208.48.0/23 maxlen: 23
217.11.254.0/24 maxlen: 24
217.11.224.0/23 maxlen: 23
217.11.230.0/24 maxlen: 24
217.11.232.0/23 maxlen: 23
217.11.227.0/24 maxlen: 24
217.11.228.0/23 maxlen: 23
217.11.236.0/24 maxlen: 24
217.11.235.0/24 maxlen: 24
217.11.246.0/23 maxlen: 23
217.11.242.0/23 maxlen: 23
217.11.251.0/24 maxlen: 24
217.11.248.0/23 maxlen: 23
109.123.192.0/21 maxlen: 24
81.0.217.0/24 maxlen: 24
81.0.214.0/24 maxlen: 24
81.0.226.0/24 maxlen: 24
81.0.225.0/24 maxlen: 24
81.0.230.0/23 maxlen: 23
77.78.96.0/20 maxlen: 20
81.0.232.0/21 maxlen: 21
77.78.94.0/23 maxlen: 23
81.0.228.0/24 maxlen: 24
81.0.240.0/22 maxlen: 22
77.78.112.0/21 maxlen: 21
81.0.250.0/24 maxlen: 24
77.78.123.0/24 maxlen: 24
77.78.124.0/22 maxlen: 22
81.0.254.0/23 maxlen: 23
85.239.227.0/24 maxlen: 24
81.0.192.0/22 maxlen: 22
81.0.199.0/24 maxlen: 24
81.0.206.0/23 maxlen: 23
77.78.76.0/22 maxlen: 22
85.239.252.0/23 maxlen: 23
81.0.208.0/23 maxlen: 23
81.0.212.0/23 maxlen: 23
2001:1528::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 17 Mar 2024 10:26:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:70:9e:61:58:28:42:e8:1b:a5:e6:78:2d:61:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=174847f8667d52fa2cf9cf9afcc43a07915575ca
Validity
Not Before: Jan 2 02:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a127575479caf5059da90f4dab6d9301723d1bbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:f0:0e:0f:17:ab:ae:a0:4a:b8:bf:64:b2:35:
75:5f:92:93:3e:04:be:48:99:3b:ee:90:74:68:70:
a2:c6:59:62:84:d4:03:d1:c9:2b:b7:44:a4:d4:07:
c6:48:fa:cd:25:fe:8b:15:f6:22:c2:05:96:6a:b0:
36:be:31:f2:91:7e:43:84:2a:0f:7b:02:fa:eb:df:
04:d2:d2:be:3a:35:89:73:f4:91:12:7c:df:1c:26:
dc:ed:3a:d6:e2:a0:68:01:37:6c:90:8d:27:a1:f7:
fc:6c:d4:10:76:85:27:3d:da:b7:d9:4e:cd:ed:45:
13:db:a8:51:d9:f0:12:d4:07:da:0b:f7:c2:c5:53:
88:00:9b:ab:69:52:f8:10:15:56:ca:ee:d2:fc:34:
3b:7e:77:d2:eb:59:0d:57:f9:34:d1:8d:d3:ec:06:
30:03:45:c2:4c:93:fc:a8:fd:d2:3f:cc:6c:c0:68:
50:40:30:85:18:86:90:22:24:57:68:1f:32:3f:39:
19:b0:cf:2a:21:f3:af:ac:12:f2:82:9c:49:e2:d8:
13:d5:34:5d:f9:a8:aa:48:e0:7c:85:26:f9:7d:6f:
22:1f:f7:c4:51:56:fc:db:ee:41:b7:7b:40:6b:f5:
3c:ef:54:73:a8:a6:de:a3:82:0a:18:b4:5d:9f:f1:
c9:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:27:57:54:79:CA:F5:05:9D:A9:0F:4D:AB:6D:93:01:72:3D:1B:BF
X509v3 Authority Key Identifier:
keyid:17:48:47:F8:66:7D:52:FA:2C:F9:CF:9A:FC:C4:3A:07:91:55:75:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F0hH-GZ9Uvos-c-a_MQ6B5FVdco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/oSdXVHnK9QWdqQ9Nq22TAXI9G78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/F0hH-GZ9Uvos-c-a_MQ6B5FVdco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.78.76.0/22
77.78.94.0-77.78.119.255
77.78.123.0-77.78.127.255
81.0.192.0/22
81.0.199.0/24
81.0.206.0-81.0.209.255
81.0.212.0-81.0.214.255
81.0.217.0/24
81.0.225.0-81.0.226.255
81.0.228.0/24
81.0.230.0-81.0.243.255
81.0.250.0/24
81.0.254.0/23
82.208.4.0-82.208.12.255
82.208.14.0/24
82.208.16.0-82.208.18.255
82.208.26.0-82.208.29.255
82.208.32.0/22
82.208.39.0-82.208.41.255
82.208.44.0/24
82.208.46.0-82.208.50.255
82.208.56.0/24
82.208.58.0/24
85.239.227.0/24
85.239.252.0/23
109.123.192.0/21
109.123.202.0/23
109.123.205.0-109.123.211.255
109.123.214.0-109.123.223.255
217.11.224.0/23
217.11.227.0-217.11.230.255
217.11.232.0/23
217.11.235.0-217.11.236.255
217.11.242.0/23
217.11.246.0-217.11.249.255
217.11.251.0/24
217.11.254.0/24
IPv6:
2001:1528::/32
Signature Algorithm: sha256WithRSAEncryption
78:f0:81:67:a9:bd:11:40:4f:41:e6:0a:74:fb:bf:6e:1e:8e:
cc:03:39:ca:6f:20:00:e1:f7:02:94:0f:ec:29:52:e5:3c:db:
dd:3e:4f:26:13:0f:05:60:20:a5:c0:d5:eb:3e:84:58:e0:1f:
74:b0:5a:59:4c:86:cd:d9:db:21:24:24:b6:77:56:65:e6:28:
3b:84:8f:48:03:2b:ca:19:e2:84:5e:60:9b:3e:56:9d:af:79:
27:0b:80:7b:74:fd:10:7a:81:02:72:e2:53:3b:2e:be:b4:ca:
60:26:88:62:d2:14:c3:05:38:5a:03:42:77:7d:45:65:16:f9:
10:5b:ab:36:4e:0c:5a:af:94:f5:ff:4c:6e:a0:b7:97:e6:fd:
68:14:59:23:8e:c7:4e:b9:d0:78:cb:dc:41:01:eb:10:e5:94:
75:bd:84:40:42:60:15:22:4f:f8:52:45:5f:84:03:ed:d8:31:
f6:05:2d:ab:d1:d7:1e:8d:45:9b:8e:bc:bf:4c:07:6c:5c:96:
ca:28:4b:7c:47:d4:e3:bc:aa:3b:71:47:09:2f:54:4d:c0:a5:
58:79:7e:ac:d5:23:d4:7b:db:9e:b0:28:93:82:e2:31:1d:c9:
c3:12:be:4a:ab:fc:b4:92:ac:11:b3:82:fe:44:99:c0:3d:14:
f7:50:1e:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 17 11:22:33 2024 by rpki-client on console-ams.rpki-client.org