Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/FVtFLGzmHMtEZY54sa53Qiy5rdc.roa
File: FVtFLGzmHMtEZY54sa53Qiy5rdc.roa (raw, json)
Hash identifier: D+utFaMbx6xUb1UaRwBLMSu87fz7HinlGThTRPHr5bw=
Subject key identifier: 15:5B:45:2C:6C:E6:1C:CB:44:65:8E:78:B1:AE:77:42:2C:B9:AD:D7
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 0188EC89D5CEFE77976C14DC78D25BA4D694
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/FVtFLGzmHMtEZY54sa53Qiy5rdc.roa
Signing time: Sat 24 Jun 2023 08:33:56 +0000
ROA not before: Sat 24 Jun 2023 08:33:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206065
IP address blocks: 185.21.76.0/22 maxlen: 24
217.66.211.0/24 maxlen: 24
217.66.208.0/24 maxlen: 24
185.70.60.0/22 maxlen: 24
79.132.217.0/24 maxlen: 24
79.132.219.0/24 maxlen: 24
188.75.92.0/24 maxlen: 24
188.75.94.0/24 maxlen: 24
188.75.102.0/23 maxlen: 24
188.75.107.0/24 maxlen: 24
188.75.110.0/23 maxlen: 24
81.29.243.0/24 maxlen: 24
81.29.248.0/21 maxlen: 24
86.109.32.0/23 maxlen: 23
81.29.250.0/24 maxlen: 24
81.29.250.0/23 maxlen: 23
81.29.251.0/24 maxlen: 24
81.29.254.0/24 maxlen: 24
86.109.41.0/24 maxlen: 24
188.75.122.0/23 maxlen: 24
185.142.233.0/24 maxlen: 24
86.109.56.0/23 maxlen: 23
79.132.213.0/24 maxlen: 24
185.142.234.0/23 maxlen: 24
185.190.20.0/22 maxlen: 24
37.114.192.0/20 maxlen: 24
37.114.216.0/22 maxlen: 24
37.114.220.0/22 maxlen: 24
37.114.224.0/22 maxlen: 24
78.158.182.0/23 maxlen: 24
46.32.9.0/24 maxlen: 24
46.32.5.0/24 maxlen: 24
46.32.14.0/24 maxlen: 24
87.247.180.0/23 maxlen: 24
176.221.65.0/24 maxlen: 24
80.71.113.0/24 maxlen: 24
80.71.124.0/23 maxlen: 23
80.71.122.0/23 maxlen: 23
80.71.127.0/24 maxlen: 24
37.114.244.0/22 maxlen: 24
185.12.62.0/24 maxlen: 24
37.114.252.0/24 maxlen: 24
188.136.220.0/23 maxlen: 24
37.114.248.0/21 maxlen: 24
37.114.253.0/24 maxlen: 24
37.114.254.0/24 maxlen: 24
185.104.228.0/24 maxlen: 24
37.114.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 16 Aug 2023 08:18:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ec:89:d5:ce:fe:77:97:6c:14:dc:78:d2:5b:a4:d6:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Jun 24 08:33:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=155b452c6ce61ccb44658e78b1ae77422cb9add7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ec:00:5c:f4:85:ce:bc:e1:3a:de:df:9b:a8:
8b:46:23:6f:f2:d5:53:cc:67:c8:24:8d:3e:90:33:
1d:33:2a:66:72:cd:32:45:56:29:1d:aa:0b:a3:6b:
4f:1e:85:4d:dc:7c:2d:23:f5:bb:a8:44:8b:10:79:
2e:8f:6d:7e:2e:05:a4:ea:57:ec:b7:cb:89:c2:81:
fc:6d:40:cd:dc:93:1a:62:bc:fc:6f:16:c1:25:66:
1f:82:83:45:48:69:0f:0b:62:fb:28:49:63:21:cb:
c0:c1:49:b2:00:7d:2c:55:b0:46:53:2d:d5:61:64:
7f:bd:ee:f4:c7:d3:aa:59:16:52:6b:87:8d:47:c4:
45:ec:39:b4:af:b6:c5:01:cb:fd:2f:56:07:1b:5f:
92:7f:c4:63:84:88:09:34:90:46:bc:ba:43:5c:08:
3a:16:1c:90:8c:15:6a:03:f5:cd:c8:2b:60:3d:25:
a4:43:b0:6b:5a:60:6b:96:c8:0f:70:98:0c:a1:f3:
aa:7e:5c:d5:44:dd:eb:cf:08:40:2d:cb:96:a0:02:
c6:09:af:e0:82:e5:b0:22:84:b1:a3:97:99:3a:e7:
e7:0e:b5:e1:79:11:dc:9f:b0:db:bd:70:62:69:8d:
ce:66:bb:0d:f3:9c:48:8a:70:01:84:08:1c:04:21:
8c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:5B:45:2C:6C:E6:1C:CB:44:65:8E:78:B1:AE:77:42:2C:B9:AD:D7
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/FVtFLGzmHMtEZY54sa53Qiy5rdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.192.0/20
37.114.216.0-37.114.227.255
37.114.244.0-37.114.255.255
46.32.5.0/24
46.32.9.0/24
46.32.14.0/24
78.158.182.0/23
79.132.213.0/24
79.132.217.0/24
79.132.219.0/24
80.71.113.0/24
80.71.122.0-80.71.125.255
80.71.127.0/24
81.29.243.0/24
81.29.248.0/21
86.109.32.0/23
86.109.41.0/24
86.109.56.0/23
87.247.180.0/23
176.221.65.0/24
185.12.62.0/24
185.21.76.0/22
185.70.60.0/22
185.104.228.0/24
185.142.233.0-185.142.235.255
185.190.20.0/22
188.75.92.0/24
188.75.94.0/24
188.75.102.0/23
188.75.107.0/24
188.75.110.0/23
188.75.122.0/23
188.136.220.0/23
217.66.208.0/24
217.66.211.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:f1:40:02:c1:6c:33:c8:37:c4:2d:be:3d:14:e8:fd:77:4a:
a4:98:4d:6c:36:3a:bc:ea:d6:46:6b:4f:ff:15:c6:63:02:a4:
ac:d9:3b:de:af:49:82:ea:ea:eb:ad:ec:84:c9:48:4d:ba:03:
08:c5:a1:54:0c:99:e1:8c:d2:2c:4c:0f:88:0f:2c:ec:77:62:
41:1a:11:e8:5d:09:f3:d4:cd:c6:91:fe:0b:b1:fd:6e:a1:19:
be:0b:73:7c:e7:b1:0b:ea:99:0d:7a:2c:9d:ef:de:3d:dd:44:
d8:1f:e4:2f:61:35:92:22:ef:f4:68:66:0c:f2:13:ad:90:14:
c5:28:ad:4c:99:5f:0c:af:76:18:ff:2a:ab:6c:1b:03:42:06:
e2:32:17:b0:58:47:7d:04:ee:83:d2:a8:e0:95:f5:ee:5d:0f:
a5:b2:39:6a:d4:fe:55:e5:51:c4:05:25:be:62:f5:b5:81:8b:
e0:9c:4f:2b:97:a9:64:e3:a6:13:a0:7c:4f:98:c3:d5:fe:49:
67:17:53:18:4f:5d:ca:e9:e6:62:58:3c:4d:e9:cb:66:7c:94:
cc:cb:51:e3:89:57:91:bf:e0:2f:2a:d2:bd:de:ea:67:17:b2:
33:e4:ca:29:d4:5a:55:d9:c4:72:9a:33:2f:0b:de:a3:35:1f:
12:04:c8:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:06 2024 by rpki-client on console-ams.rpki-client.org