Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/LqhWt60N_y-HZsx3GkK7pceArng.roa
File: LqhWt60N_y-HZsx3GkK7pceArng.roa (raw, json)
Hash identifier: a5iLNRe034bs6ryFON2f5MEaFRc7vl7dXd+KRpFVvpM=
Subject key identifier: 2E:A8:56:B7:AD:0D:FF:2F:87:66:CC:77:1A:42:BB:A5:C7:80:AE:78
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 018DB6E64AF3F20CAEAF0C9D41035F3C085A
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/LqhWt60N_y-HZsx3GkK7pceArng.roa
Signing time: Sat 17 Feb 2024 11:49:21 +0000
ROA not before: Sat 17 Feb 2024 11:49:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206065
IP address blocks: 31.217.208.0/21 maxlen: 24
37.19.80.0/20 maxlen: 24
37.114.192.0/18 maxlen: 24
37.114.192.0/20 maxlen: 24
37.114.216.0/22 maxlen: 24
37.114.220.0/22 maxlen: 24
37.114.224.0/22 maxlen: 24
37.114.228.0/22 maxlen: 24
37.114.244.0/22 maxlen: 24
37.114.248.0/21 maxlen: 24
37.114.252.0/24 maxlen: 24
37.114.253.0/24 maxlen: 24
37.114.254.0/24 maxlen: 24
37.114.255.0/24 maxlen: 24
37.221.0.0/18 maxlen: 24
37.235.16.0/20 maxlen: 24
45.128.140.0/22 maxlen: 24
45.144.124.0/22 maxlen: 24
46.32.5.0/24 maxlen: 24
46.32.9.0/24 maxlen: 24
46.32.14.0/24 maxlen: 24
46.34.168.0/21 maxlen: 24
78.158.182.0/23 maxlen: 24
79.132.213.0/24 maxlen: 24
79.132.217.0/24 maxlen: 24
79.132.219.0/24 maxlen: 24
80.71.113.0/24 maxlen: 24
80.71.122.0/23 maxlen: 24
80.71.124.0/23 maxlen: 24
80.71.127.0/24 maxlen: 24
81.29.243.0/24 maxlen: 24
81.29.248.0/21 maxlen: 24
81.29.250.0/23 maxlen: 24
81.29.250.0/24 maxlen: 24
81.29.251.0/24 maxlen: 24
81.29.254.0/24 maxlen: 24
81.91.144.0/20 maxlen: 24
86.109.32.0/23 maxlen: 24
86.109.41.0/24 maxlen: 24
86.109.56.0/23 maxlen: 24
87.247.180.0/23 maxlen: 24
91.184.64.0/20 maxlen: 24
92.61.184.0/21 maxlen: 24
92.119.68.0/22 maxlen: 24
94.139.160.0/20 maxlen: 24
109.230.64.0/21 maxlen: 24
109.230.80.0/20 maxlen: 24
109.230.94.0/24 maxlen: 24
109.230.95.0/24 maxlen: 24
176.221.65.0/24 maxlen: 24
185.12.62.0/24 maxlen: 24
185.21.76.0/22 maxlen: 24
185.30.76.0/22 maxlen: 24
185.70.60.0/22 maxlen: 24
185.104.228.0/24 maxlen: 24
185.142.233.0/24 maxlen: 24
185.142.234.0/23 maxlen: 24
185.172.0.0/22 maxlen: 24
185.190.20.0/22 maxlen: 24
185.197.68.0/22 maxlen: 24
188.75.92.0/24 maxlen: 24
188.75.94.0/24 maxlen: 24
188.75.102.0/23 maxlen: 24
188.75.107.0/24 maxlen: 24
188.75.110.0/23 maxlen: 24
188.75.122.0/23 maxlen: 24
188.121.128.0/19 maxlen: 24
188.121.146.0/24 maxlen: 24
188.136.220.0/23 maxlen: 24
213.207.192.0/20 maxlen: 24
217.66.208.0/24 maxlen: 24
217.66.211.0/24 maxlen: 24
2a0c:100::/29 maxlen: 48
Validation: Failed, certificate revoked on Wed 21 Feb 2024 15:42:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b6:e6:4a:f3:f2:0c:ae:af:0c:9d:41:03:5f:3c:08:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Feb 17 11:49:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2ea856b7ad0dff2f8766cc771a42bba5c780ae78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:1f:18:2a:af:d8:fb:43:23:e4:c9:d0:0c:77:
02:8b:68:0c:f4:13:ad:87:aa:de:1c:08:c2:d8:5e:
5d:7c:19:1b:ab:93:f1:70:0c:9b:9d:15:03:18:e9:
73:a2:14:82:3d:28:60:2e:4d:7e:92:8c:2b:a7:65:
43:b9:0c:a1:ac:dd:96:3e:d6:3c:ff:ed:2f:c2:02:
68:c8:a0:14:68:29:29:3c:90:a0:b1:01:4c:e0:b9:
bd:e0:3d:e1:99:fd:95:e4:24:ca:e0:76:6f:c1:a4:
03:c3:0e:10:f7:74:ef:a9:94:19:5d:85:1d:d3:49:
70:fe:71:b8:2c:4d:63:83:9d:a9:42:2e:ec:f2:fa:
f6:0f:85:a3:c5:70:77:b0:05:de:3f:ad:7e:ef:78:
ef:38:51:99:6d:e1:c9:69:9b:ff:bb:8a:2a:da:5b:
29:c6:2a:f8:d2:b6:97:18:ba:a7:69:08:87:98:ef:
34:ae:0b:ad:62:1e:62:20:c9:b7:44:25:50:2d:21:
9a:5e:89:ab:eb:b9:3b:32:0f:11:af:fe:18:9a:a7:
0e:f4:04:b4:f2:e3:08:a6:34:5c:84:30:89:e9:a2:
b1:ce:96:e9:2f:05:d7:c7:7c:e7:d9:e3:b6:d2:08:
9b:52:05:89:a1:86:54:7f:e8:7b:80:8f:72:f9:ca:
47:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:A8:56:B7:AD:0D:FF:2F:87:66:CC:77:1A:42:BB:A5:C7:80:AE:78
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/LqhWt60N_y-HZsx3GkK7pceArng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.217.208.0/21
37.19.80.0/20
37.114.192.0/18
37.221.0.0/18
37.235.16.0/20
45.128.140.0/22
45.144.124.0/22
46.32.5.0/24
46.32.9.0/24
46.32.14.0/24
46.34.168.0/21
78.158.182.0/23
79.132.213.0/24
79.132.217.0/24
79.132.219.0/24
80.71.113.0/24
80.71.122.0-80.71.125.255
80.71.127.0/24
81.29.243.0/24
81.29.248.0/21
81.91.144.0/20
86.109.32.0/23
86.109.41.0/24
86.109.56.0/23
87.247.180.0/23
91.184.64.0/20
92.61.184.0/21
92.119.68.0/22
94.139.160.0/20
109.230.64.0/21
109.230.80.0/20
176.221.65.0/24
185.12.62.0/24
185.21.76.0/22
185.30.76.0/22
185.70.60.0/22
185.104.228.0/24
185.142.233.0-185.142.235.255
185.172.0.0/22
185.190.20.0/22
185.197.68.0/22
188.75.92.0/24
188.75.94.0/24
188.75.102.0/23
188.75.107.0/24
188.75.110.0/23
188.75.122.0/23
188.121.128.0/19
188.136.220.0/23
213.207.192.0/20
217.66.208.0/24
217.66.211.0/24
IPv6:
2a0c:100::/29
Signature Algorithm: sha256WithRSAEncryption
a6:a4:34:de:c0:18:2a:74:77:9a:a7:7d:c3:b8:4b:46:3e:ed:
a4:cf:3a:d6:54:13:8f:5f:93:d5:86:a8:a0:97:64:ca:f3:29:
fd:bf:2a:60:1c:0c:47:8a:05:1f:10:8c:26:29:68:2a:d3:d7:
f4:82:71:e6:47:d2:10:57:e8:e0:c2:2a:00:34:44:98:e3:6c:
13:ab:5a:b4:2e:0e:31:b3:53:c3:62:44:e7:f4:29:16:bc:ea:
96:12:0a:5f:4f:aa:6e:37:3c:87:cc:85:73:e5:75:f8:72:06:
4d:61:06:89:52:6a:aa:64:88:5e:11:87:0a:de:ad:4d:ce:ff:
50:0e:61:bd:f6:c7:78:a5:83:a9:cd:ce:19:1c:5c:bf:0a:a2:
35:80:f7:7c:68:4d:6e:c1:6e:55:79:46:fc:da:39:e1:09:4e:
38:1b:74:23:c2:31:8b:02:4f:c4:60:b6:1a:73:ec:90:22:75:
ef:74:32:03:2e:d9:cc:ae:0f:07:62:b0:6a:95:7d:00:ed:2c:
82:12:a5:96:5a:97:1a:29:fe:bf:16:e4:4e:59:b0:6c:f5:54:
ce:c2:84:96:fa:a0:42:0c:80:a9:2d:ff:9e:6b:46:62:03:31:
5d:cb:7e:05:17:59:27:66:29:2d:b7:d5:6b:c1:58:02:54:6a:
61:1a:fc:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:02 2024 by rpki-client on console-fra.rpki-client.org