Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/baCvqTPq6AV0EPAne-fVn6rt0Vw.roa
File: baCvqTPq6AV0EPAne-fVn6rt0Vw.roa (raw, json)
Hash identifier: 9ZdmI4FDVHIkLHLeYi0JtmHz2xbuqu/9G3edp+ZPmko=
Subject key identifier: 6D:A0:AF:A9:33:EA:E8:05:74:10:F0:27:7B:E7:D5:9F:AA:ED:D1:5C
Certificate issuer: /CN=c44db8b0983acf97a3255152c2ea592adae7735b
Certificate serial: 01872C98E1C1EAAC6D2163B85F8DC983CEA3
Authority key identifier: C4:4D:B8:B0:98:3A:CF:97:A3:25:51:52:C2:EA:59:2A:DA:E7:73:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xE24sJg6z5ejJVFSwupZKtrnc1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/baCvqTPq6AV0EPAne-fVn6rt0Vw.roa
Signing time: Wed 29 Mar 2023 09:00:29 +0000
ROA not before: Wed 29 Mar 2023 09:00:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207990
IP address blocks: 176.223.104.0/22 maxlen: 32
94.139.60.0/23 maxlen: 32
91.92.22.0/23 maxlen: 32
188.241.249.0/24 maxlen: 32
94.176.0.0/23 maxlen: 32
180.149.16.0/20 maxlen: 32
185.66.136.0/22 maxlen: 32
193.142.103.0/24 maxlen: 32
119.12.192.0/21 maxlen: 32
188.240.48.0/23 maxlen: 32
92.114.81.0/24 maxlen: 32
180.235.160.0/20 maxlen: 32
91.92.138.0/24 maxlen: 32
89.40.81.0/24 maxlen: 32
193.200.104.0/23 maxlen: 32
110.238.192.0/19 maxlen: 32
92.114.60.0/22 maxlen: 32
176.223.182.0/23 maxlen: 32
91.92.216.0/23 maxlen: 32
91.92.218.0/24 maxlen: 32
188.241.15.0/24 maxlen: 32
5.62.152.0/21 maxlen: 32
188.212.136.0/21 maxlen: 32
93.113.52.0/23 maxlen: 32
188.241.56.0/23 maxlen: 32
188.94.84.0/22 maxlen: 32
91.92.178.0/23 maxlen: 32
94.139.224.0/20 maxlen: 32
89.38.234.0/24 maxlen: 32
180.149.0.0/20 maxlen: 32
91.192.212.0/22 maxlen: 32
93.115.4.0/23 maxlen: 32
77.81.92.0/22 maxlen: 32
188.211.24.0/23 maxlen: 32
86.106.176.0/23 maxlen: 32
Validation: Failed, certificate revoked on Wed 29 Mar 2023 09:06:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2c:98:e1:c1:ea:ac:6d:21:63:b8:5f:8d:c9:83:ce:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c44db8b0983acf97a3255152c2ea592adae7735b
Validity
Not Before: Mar 29 09:00:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6da0afa933eae8057410f0277be7d59faaedd15c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a8:c6:2e:99:e8:88:7f:09:35:2c:1a:3b:a0:
45:7c:78:1e:17:52:26:31:c1:09:5f:d6:6a:42:9a:
45:d5:a1:94:f7:b4:0d:fb:fc:36:a5:7f:c6:da:00:
4b:70:74:68:d9:ba:cc:24:dc:02:44:4b:b3:6a:e6:
48:f6:14:01:98:eb:b7:6c:97:b2:6a:e8:7b:b1:6d:
ea:4c:6f:51:54:35:92:ce:d5:3e:a7:4a:7c:c1:8a:
5b:20:66:4c:03:b5:87:6c:95:6d:4d:a8:9f:a3:c2:
e2:0d:70:d9:3e:a1:27:fd:66:0c:c8:c6:ab:e0:9e:
fb:c4:2f:ee:0b:18:f8:15:a5:6c:f1:64:38:74:d8:
4f:c6:0d:ff:7e:d7:ad:fd:a2:a6:7d:68:7d:d0:6c:
44:14:27:c7:b1:96:c6:4a:6c:58:37:f2:e0:91:8e:
bc:af:49:16:e8:fd:55:64:c0:38:d4:b6:bc:a4:df:
28:80:e7:05:62:ad:52:22:fb:60:f1:89:e1:e2:5f:
55:1c:8e:94:25:38:d6:06:52:14:a6:7f:50:cc:00:
9e:93:ea:55:45:f2:d1:b3:5e:e3:5f:2b:9a:9d:ae:
87:52:02:af:eb:83:f3:97:eb:77:4c:97:1a:c3:5b:
39:4a:a7:19:86:35:87:a6:ee:1b:3a:87:3d:71:fa:
ca:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:A0:AF:A9:33:EA:E8:05:74:10:F0:27:7B:E7:D5:9F:AA:ED:D1:5C
X509v3 Authority Key Identifier:
keyid:C4:4D:B8:B0:98:3A:CF:97:A3:25:51:52:C2:EA:59:2A:DA:E7:73:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xE24sJg6z5ejJVFSwupZKtrnc1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/baCvqTPq6AV0EPAne-fVn6rt0Vw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/xE24sJg6z5ejJVFSwupZKtrnc1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.62.152.0/21
77.81.92.0/22
86.106.176.0/23
89.38.234.0/24
89.40.81.0/24
91.92.22.0/23
91.92.138.0/24
91.92.178.0/23
91.92.216.0-91.92.218.255
91.192.212.0/22
92.114.60.0/22
92.114.81.0/24
93.113.52.0/23
93.115.4.0/23
94.139.60.0/23
94.139.224.0/20
94.176.0.0/23
110.238.192.0/19
119.12.192.0/21
176.223.104.0/22
176.223.182.0/23
180.149.0.0/19
180.235.160.0/20
185.66.136.0/22
188.94.84.0/22
188.211.24.0/23
188.212.136.0/21
188.240.48.0/23
188.241.15.0/24
188.241.56.0/23
188.241.249.0/24
193.142.103.0/24
193.200.104.0/23
Signature Algorithm: sha256WithRSAEncryption
64:08:01:a8:ef:79:8a:0b:c4:c4:58:67:5c:21:09:6b:ff:5f:
c8:04:00:9b:83:75:81:76:a0:00:de:25:4e:b6:32:d5:1e:e3:
d4:cd:50:06:34:27:bf:c5:27:df:57:15:27:8d:d2:02:f8:b9:
96:4e:fe:42:7c:9e:08:2b:ef:9d:a0:6e:9a:ca:40:8c:57:fe:
78:d3:8c:f7:46:8d:14:b4:29:7a:8b:ca:6b:df:d1:30:d3:f7:
94:f8:9d:32:ea:de:19:2e:b7:b5:0e:6b:a7:4b:5d:e4:e9:a3:
ae:06:ed:a6:74:5e:8b:14:1a:d1:3e:1c:65:0e:89:16:48:40:
08:40:eb:c2:30:f1:3f:04:35:28:ae:d4:ce:5a:07:fb:e4:89:
5a:b7:03:44:76:92:94:b2:29:de:14:fd:25:ea:ef:87:9f:9c:
32:56:9a:12:8f:f0:28:f1:07:9a:86:7a:57:54:88:1e:b6:3a:
69:b6:b9:83:15:ca:13:c1:0a:58:e7:05:96:23:d8:fd:08:fb:
ba:6f:ca:82:d9:91:f0:fa:ce:b5:b7:6a:42:62:24:a4:15:5a:
75:4f:fe:f3:c8:7b:69:32:ce:72:a2:97:8d:64:74:da:6c:15:
ff:b5:99:28:8e:73:91:69:a4:94:70:80:b7:5b:94:dc:e0:1a:
e1:55:7e:38
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:47 2024 by rpki-client on console-fra.rpki-client.org