Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/H4qAcECTCOu9_83uH_hDdTUkV-Q.roa
File: H4qAcECTCOu9_83uH_hDdTUkV-Q.roa (raw, json)
Hash identifier: zjtqv8MVricYaXo5iQ2PbApgjH7LOlO7T3MArrC26xE=
Subject key identifier: 1F:8A:80:70:40:93:08:EB:BD:FF:CD:EE:1F:F8:43:75:35:24:57:E4
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 018A560C0BD28E87202FDD995F68DF00558B
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/H4qAcECTCOu9_83uH_hDdTUkV-Q.roa
Signing time: Sat 02 Sep 2023 13:19:04 +0000
ROA not before: Sat 02 Sep 2023 13:19:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206065
IP address blocks: 217.66.211.0/24 maxlen: 24
217.66.208.0/24 maxlen: 24
185.70.60.0/22 maxlen: 24
81.29.243.0/24 maxlen: 24
81.29.248.0/21 maxlen: 24
81.29.250.0/24 maxlen: 24
81.29.250.0/23 maxlen: 23
81.29.251.0/24 maxlen: 24
81.29.254.0/24 maxlen: 24
46.32.9.0/24 maxlen: 24
46.32.5.0/24 maxlen: 24
46.32.14.0/24 maxlen: 24
87.247.180.0/23 maxlen: 24
176.221.65.0/24 maxlen: 24
185.12.62.0/24 maxlen: 24
188.136.220.0/23 maxlen: 24
185.21.76.0/22 maxlen: 24
79.132.217.0/24 maxlen: 24
79.132.219.0/24 maxlen: 24
188.75.92.0/24 maxlen: 24
188.75.94.0/24 maxlen: 24
188.75.102.0/23 maxlen: 24
188.75.107.0/24 maxlen: 24
188.75.110.0/23 maxlen: 24
86.109.32.0/23 maxlen: 23
86.109.41.0/24 maxlen: 24
188.75.122.0/23 maxlen: 24
185.142.233.0/24 maxlen: 24
86.109.56.0/23 maxlen: 23
79.132.213.0/24 maxlen: 24
185.142.234.0/23 maxlen: 24
185.190.20.0/22 maxlen: 24
37.114.192.0/20 maxlen: 24
37.114.192.0/18 maxlen: 24
37.114.216.0/22 maxlen: 24
37.114.220.0/22 maxlen: 24
37.114.224.0/22 maxlen: 24
37.114.228.0/22 maxlen: 24
78.158.182.0/23 maxlen: 24
80.71.113.0/24 maxlen: 24
80.71.124.0/23 maxlen: 23
80.71.122.0/23 maxlen: 23
80.71.127.0/24 maxlen: 24
37.114.244.0/22 maxlen: 24
37.114.252.0/24 maxlen: 24
37.114.248.0/21 maxlen: 24
37.114.253.0/24 maxlen: 24
37.114.254.0/24 maxlen: 24
185.104.228.0/24 maxlen: 24
37.114.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Nov 2023 13:36:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:56:0c:0b:d2:8e:87:20:2f:dd:99:5f:68:df:00:55:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Sep 2 13:19:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f8a8070409308ebbdffcdee1ff84375352457e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:d5:95:e0:1e:81:85:68:09:f1:fe:6c:43:e4:
6a:14:45:98:ea:b4:f6:e2:4c:86:fc:b4:e2:c5:22:
92:f2:a7:06:7b:6f:1e:2d:fc:7d:f9:13:29:ee:ef:
a7:2c:d0:cd:f2:77:ce:87:79:6b:b2:ff:34:a6:2f:
bc:8d:ab:f6:b2:00:27:75:75:ca:23:67:c2:bf:4c:
cc:85:57:26:04:4d:fc:fc:3c:59:c7:83:f5:62:3e:
9f:27:52:66:61:6a:bf:7a:01:f6:71:4a:52:bf:0b:
ae:4f:49:19:1e:93:72:ce:0d:73:6f:1c:bf:c4:91:
db:ce:c6:ec:93:d9:1d:fc:57:68:83:98:13:47:50:
de:68:9d:bf:31:1d:a0:34:8d:8e:f6:e0:6e:f0:63:
53:b4:1d:f0:3e:49:3c:f3:d1:87:1d:45:22:c7:2b:
28:a6:69:0e:84:15:40:55:00:33:8c:9c:6a:d2:a5:
35:85:1b:01:4c:26:73:01:1a:95:1e:da:b0:55:6e:
3b:13:2d:dc:01:c3:fd:6f:78:13:8c:41:ea:bb:0d:
f4:c2:41:8a:f1:8d:da:75:b6:87:60:e3:8f:aa:29:
89:b3:c6:e7:af:95:c2:1b:a9:19:ac:fb:76:0d:ea:
27:38:4b:2f:24:bc:53:cf:5b:bd:7a:3b:bb:8b:4e:
e7:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:8A:80:70:40:93:08:EB:BD:FF:CD:EE:1F:F8:43:75:35:24:57:E4
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/H4qAcECTCOu9_83uH_hDdTUkV-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.192.0/18
46.32.5.0/24
46.32.9.0/24
46.32.14.0/24
78.158.182.0/23
79.132.213.0/24
79.132.217.0/24
79.132.219.0/24
80.71.113.0/24
80.71.122.0-80.71.125.255
80.71.127.0/24
81.29.243.0/24
81.29.248.0/21
86.109.32.0/23
86.109.41.0/24
86.109.56.0/23
87.247.180.0/23
176.221.65.0/24
185.12.62.0/24
185.21.76.0/22
185.70.60.0/22
185.104.228.0/24
185.142.233.0-185.142.235.255
185.190.20.0/22
188.75.92.0/24
188.75.94.0/24
188.75.102.0/23
188.75.107.0/24
188.75.110.0/23
188.75.122.0/23
188.136.220.0/23
217.66.208.0/24
217.66.211.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:5c:4d:1e:b5:5b:0c:04:32:e5:97:d6:f7:44:58:d9:e2:d5:
d1:ce:fc:52:f8:ea:f4:08:f1:e7:89:66:89:2c:68:b1:cb:f2:
1f:16:4b:97:fc:e1:e5:49:93:42:16:ac:3d:1e:7b:26:9e:f5:
0a:7b:97:d2:4f:63:fc:a9:57:12:0d:3b:a5:bb:a5:a0:f7:78:
fc:90:9c:fd:f6:a0:8e:a4:d4:49:1c:cb:92:78:37:0f:6b:77:
7e:2d:84:fd:a9:41:6e:6e:7e:83:a5:e4:11:9c:ee:87:c2:cf:
7c:35:11:87:dc:3b:7e:a9:60:c4:d7:97:1b:29:b9:4e:8d:f0:
59:81:03:98:31:76:6f:c7:6c:b4:a3:9f:d1:05:3f:28:71:cc:
7c:50:2e:1a:54:39:67:50:de:da:b9:02:2c:89:00:60:22:f4:
72:f1:20:fb:b9:61:aa:76:a1:47:46:bb:90:bf:1d:f6:34:84:
5a:5b:81:d1:24:6b:42:fe:fb:86:45:ff:3d:04:83:72:1d:0d:
73:7e:be:b1:54:d0:40:a7:06:91:7a:79:13:d7:41:00:ae:8d:
b7:ec:3d:42:e2:cb:35:03:b8:52:92:94:f4:6c:b4:c0:5c:3f:
aa:c0:8b:e6:34:43:9f:d5:d1:9b:d8:07:e4:73:d8:01:c0:f8:
c4:b9:5c:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:06 2024 by rpki-client on console-ams.rpki-client.org