Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/P-v2qzIeRtEfdSj90lKEy-5DgVA.roa
File: P-v2qzIeRtEfdSj90lKEy-5DgVA.roa (raw, json)
Hash identifier: v759Afvgxx7b3dHplE1NqcaYio8rUqxtSlLWVAioesg=
Subject key identifier: 3F:EB:F6:AB:32:1E:46:D1:1F:75:28:FD:D2:52:84:CB:EE:43:81:50
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 0188B3EA670783DFC01BCAD825E5C7C1889A
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/P-v2qzIeRtEfdSj90lKEy-5DgVA.roa
Signing time: Tue 13 Jun 2023 08:41:03 +0000
ROA not before: Tue 13 Jun 2023 08:41:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206065
IP address blocks: 185.21.76.0/22 maxlen: 24
217.66.211.0/24 maxlen: 24
217.66.208.0/24 maxlen: 24
185.70.60.0/22 maxlen: 24
79.132.217.0/24 maxlen: 24
79.132.219.0/24 maxlen: 24
188.75.92.0/24 maxlen: 24
188.75.94.0/24 maxlen: 24
188.75.102.0/23 maxlen: 24
188.75.107.0/24 maxlen: 24
188.75.110.0/23 maxlen: 24
81.29.243.0/24 maxlen: 24
81.29.248.0/21 maxlen: 24
86.109.32.0/23 maxlen: 23
81.29.250.0/24 maxlen: 24
81.29.250.0/23 maxlen: 23
81.29.251.0/24 maxlen: 24
81.29.254.0/24 maxlen: 24
86.109.41.0/24 maxlen: 24
188.75.122.0/23 maxlen: 24
185.142.233.0/24 maxlen: 24
86.109.56.0/23 maxlen: 23
79.132.213.0/24 maxlen: 24
185.142.234.0/23 maxlen: 24
185.190.20.0/22 maxlen: 24
37.114.192.0/20 maxlen: 24
37.114.220.0/22 maxlen: 24
37.114.224.0/22 maxlen: 24
78.158.182.0/23 maxlen: 24
46.32.9.0/24 maxlen: 24
46.32.5.0/24 maxlen: 24
46.32.14.0/24 maxlen: 24
87.247.180.0/23 maxlen: 24
176.221.65.0/24 maxlen: 24
80.71.113.0/24 maxlen: 24
80.71.124.0/23 maxlen: 23
80.71.122.0/23 maxlen: 23
80.71.127.0/24 maxlen: 24
37.114.244.0/22 maxlen: 24
185.12.62.0/24 maxlen: 24
37.114.252.0/24 maxlen: 24
188.136.220.0/23 maxlen: 24
37.114.248.0/21 maxlen: 24
37.114.253.0/24 maxlen: 24
37.114.254.0/24 maxlen: 24
185.104.228.0/24 maxlen: 24
37.114.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 24 Jun 2023 08:33:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b3:ea:67:07:83:df:c0:1b:ca:d8:25:e5:c7:c1:88:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Jun 13 08:41:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3febf6ab321e46d11f7528fdd25284cbee438150
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:82:44:b4:51:14:88:de:35:3a:cc:b1:51:1e:
2b:7d:9a:fd:dc:75:e8:52:8e:a8:f1:13:47:9d:c5:
7a:d0:0e:a8:95:a0:21:6a:4c:35:90:2f:aa:b8:0c:
f2:45:9d:c7:70:6a:4f:66:bd:32:cc:92:75:d4:93:
f8:60:cf:d4:26:98:f3:ff:c9:aa:ff:9f:9c:e4:f2:
e8:18:cb:bb:7f:10:db:cb:0a:0c:ff:0d:e6:c6:ee:
99:c5:94:93:f0:32:03:eb:56:1d:a1:e0:0c:6c:3c:
3d:69:2a:ac:b7:0c:6c:44:74:af:5b:cd:db:57:3a:
e1:cf:4f:53:ed:59:0c:0c:36:1f:9a:3b:5c:7e:c7:
63:29:47:95:41:1a:9f:b3:ad:6d:fb:3f:f5:20:9d:
db:5c:d2:e7:88:de:c9:58:e3:93:ed:eb:1f:d7:c7:
ca:28:79:15:7f:92:2a:59:bb:1b:7c:69:1a:71:2d:
b3:0d:22:91:c9:c8:54:7d:0a:ef:a8:a2:59:e7:30:
24:0f:5e:a3:37:9a:8d:6e:2d:5d:f5:80:b4:3a:ef:
6b:63:ca:4e:be:4c:6a:3b:b5:28:4d:ec:59:5a:89:
2c:1d:ea:8e:e1:1b:b4:a7:6b:76:3e:19:72:23:2f:
c1:e0:03:18:ed:c4:ff:84:4f:75:97:eb:11:05:12:
dd:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:EB:F6:AB:32:1E:46:D1:1F:75:28:FD:D2:52:84:CB:EE:43:81:50
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/P-v2qzIeRtEfdSj90lKEy-5DgVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.192.0/20
37.114.220.0-37.114.227.255
37.114.244.0-37.114.255.255
46.32.5.0/24
46.32.9.0/24
46.32.14.0/24
78.158.182.0/23
79.132.213.0/24
79.132.217.0/24
79.132.219.0/24
80.71.113.0/24
80.71.122.0-80.71.125.255
80.71.127.0/24
81.29.243.0/24
81.29.248.0/21
86.109.32.0/23
86.109.41.0/24
86.109.56.0/23
87.247.180.0/23
176.221.65.0/24
185.12.62.0/24
185.21.76.0/22
185.70.60.0/22
185.104.228.0/24
185.142.233.0-185.142.235.255
185.190.20.0/22
188.75.92.0/24
188.75.94.0/24
188.75.102.0/23
188.75.107.0/24
188.75.110.0/23
188.75.122.0/23
188.136.220.0/23
217.66.208.0/24
217.66.211.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:40:86:66:cb:f8:e8:8b:f3:b8:65:93:e6:31:3c:be:8f:b4:
f8:0e:bc:7d:c1:4e:fa:96:5a:69:f5:6a:90:80:3c:5b:10:f2:
4d:c1:e2:81:c7:c9:af:2f:f0:ee:49:4a:b0:80:7d:4b:42:49:
be:53:6a:9f:b9:ab:82:86:f1:ff:ac:32:d7:7a:aa:58:ee:fb:
e2:81:c2:18:09:05:d1:06:cb:74:75:e0:2f:b0:6f:2c:78:da:
97:e1:f1:39:14:b6:de:a5:20:31:a5:02:4b:60:28:52:90:6b:
7b:bd:ce:94:46:b3:68:23:bb:20:f6:8a:96:4d:21:4c:6e:bb:
dd:d9:f2:61:45:6f:de:4c:c0:39:14:d4:1a:f1:b6:77:7b:59:
d2:e9:2f:99:73:fe:cf:1a:51:b3:05:ee:1c:e2:49:c8:1e:9b:
fe:77:23:42:1f:da:25:76:89:2c:6a:6e:1f:1a:8e:34:30:e0:
20:27:7a:51:37:d0:f4:9a:31:86:80:1c:cc:59:2e:9c:fc:66:
93:0f:f5:2a:24:4a:04:f8:23:06:57:f1:21:2c:3c:cc:0d:8c:
2c:90:b7:8c:ff:0a:07:13:25:55:35:a5:97:c8:29:cc:d8:fe:
f4:61:de:e0:cf:5f:e4:46:99:82:c0:d5:c6:2b:fe:c4:69:2b:
ef:06:e2:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:06 2024 by rpki-client on console-ams.rpki-client.org