Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/huNhRlivqv1AmQOBBEfa1zjAuSI.roa
File: huNhRlivqv1AmQOBBEfa1zjAuSI.roa (raw, json)
Hash identifier: duOM3B22obxRFnHkKE3vqm7kMK0eY3fOh+zO0oyoK04=
Subject key identifier: 86:E3:61:46:58:AF:AA:FD:40:99:03:81:04:47:DA:D7:38:C0:B9:22
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 018DA7F0A330E68B941EE517A3D2FA42A1ED
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/huNhRlivqv1AmQOBBEfa1zjAuSI.roa
Signing time: Wed 14 Feb 2024 14:06:21 +0000
ROA not before: Wed 14 Feb 2024 14:06:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206065
IP address blocks: 31.217.208.0/21 maxlen: 24
37.19.80.0/20 maxlen: 24
37.114.192.0/18 maxlen: 24
37.114.192.0/20 maxlen: 24
37.114.216.0/22 maxlen: 24
37.114.220.0/22 maxlen: 24
37.114.224.0/22 maxlen: 24
37.114.228.0/22 maxlen: 24
37.114.244.0/22 maxlen: 24
37.114.248.0/21 maxlen: 24
37.114.252.0/24 maxlen: 24
37.114.253.0/24 maxlen: 24
37.114.254.0/24 maxlen: 24
37.114.255.0/24 maxlen: 24
37.221.0.0/18 maxlen: 24
37.235.16.0/20 maxlen: 24
45.128.140.0/22 maxlen: 24
45.144.124.0/22 maxlen: 24
46.32.5.0/24 maxlen: 24
46.32.9.0/24 maxlen: 24
46.32.14.0/24 maxlen: 24
46.34.168.0/21 maxlen: 24
78.158.182.0/23 maxlen: 24
79.132.213.0/24 maxlen: 24
79.132.217.0/24 maxlen: 24
79.132.219.0/24 maxlen: 24
80.71.113.0/24 maxlen: 24
80.71.122.0/23 maxlen: 24
80.71.124.0/23 maxlen: 24
80.71.127.0/24 maxlen: 24
81.29.243.0/24 maxlen: 24
81.29.248.0/21 maxlen: 24
81.29.250.0/23 maxlen: 24
81.29.250.0/24 maxlen: 24
81.29.251.0/24 maxlen: 24
81.29.254.0/24 maxlen: 24
81.91.144.0/20 maxlen: 24
86.109.32.0/23 maxlen: 24
86.109.41.0/24 maxlen: 24
86.109.56.0/23 maxlen: 24
87.247.180.0/23 maxlen: 24
91.184.64.0/20 maxlen: 24
92.61.184.0/21 maxlen: 24
92.119.68.0/22 maxlen: 24
94.139.160.0/20 maxlen: 24
109.230.64.0/21 maxlen: 24
109.230.80.0/20 maxlen: 24
109.230.95.0/24 maxlen: 24
176.221.65.0/24 maxlen: 24
185.12.62.0/24 maxlen: 24
185.21.76.0/22 maxlen: 24
185.30.76.0/22 maxlen: 24
185.70.60.0/22 maxlen: 24
185.104.228.0/24 maxlen: 24
185.142.233.0/24 maxlen: 24
185.142.234.0/23 maxlen: 24
185.172.0.0/22 maxlen: 24
185.190.20.0/22 maxlen: 24
185.197.68.0/22 maxlen: 24
188.75.92.0/24 maxlen: 24
188.75.94.0/24 maxlen: 24
188.75.102.0/23 maxlen: 24
188.75.107.0/24 maxlen: 24
188.75.110.0/23 maxlen: 24
188.75.122.0/23 maxlen: 24
188.121.128.0/19 maxlen: 24
188.121.146.0/24 maxlen: 24
188.136.220.0/23 maxlen: 24
213.207.192.0/20 maxlen: 24
217.66.208.0/24 maxlen: 24
217.66.211.0/24 maxlen: 24
2a0c:100::/29 maxlen: 48
Validation: Failed, certificate revoked on Sat 17 Feb 2024 11:49:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a7:f0:a3:30:e6:8b:94:1e:e5:17:a3:d2:fa:42:a1:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Feb 14 14:06:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=86e3614658afaafd409903810447dad738c0b922
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:97:32:74:3a:5c:95:1a:12:18:4d:eb:bf:c4:
9a:19:0f:4a:b2:b8:e7:69:47:56:eb:b3:6f:dd:87:
20:fc:67:8b:52:36:b6:38:a3:12:d5:86:e4:68:2a:
a7:3a:64:96:73:2c:26:2c:58:24:ff:02:16:0a:8b:
5f:ba:0d:74:c1:8b:ed:42:02:e7:49:f7:d3:44:2f:
fa:b6:e9:92:07:45:c9:eb:71:b9:7a:f2:38:57:7a:
de:b7:24:f5:05:d2:75:38:1c:6f:5a:8f:c4:33:12:
d8:73:e9:95:e7:9f:15:8a:fd:88:03:89:13:2e:a6:
ed:b8:aa:e2:30:5e:e5:5d:9a:99:39:98:4b:4a:b4:
b6:57:27:2f:32:83:52:8b:83:11:cf:7f:00:c8:fa:
2c:b6:43:a7:a6:36:78:f0:da:75:bd:75:f8:3e:45:
76:04:5d:33:25:9e:7e:f9:37:8d:40:e6:a7:61:93:
47:ca:61:1b:d0:16:14:e6:a3:a7:d8:51:21:b0:0f:
5c:37:31:f5:d8:2c:33:fd:81:37:33:fa:31:88:c7:
95:8c:d4:f3:6a:7e:21:93:69:82:e7:18:38:b1:0c:
f7:9d:7a:9e:8d:0b:a7:db:3d:eb:0d:f6:62:b3:72:
88:67:a1:28:c5:53:9a:cb:3e:34:6f:fe:9e:6b:43:
df:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:E3:61:46:58:AF:AA:FD:40:99:03:81:04:47:DA:D7:38:C0:B9:22
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/huNhRlivqv1AmQOBBEfa1zjAuSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.217.208.0/21
37.19.80.0/20
37.114.192.0/18
37.221.0.0/18
37.235.16.0/20
45.128.140.0/22
45.144.124.0/22
46.32.5.0/24
46.32.9.0/24
46.32.14.0/24
46.34.168.0/21
78.158.182.0/23
79.132.213.0/24
79.132.217.0/24
79.132.219.0/24
80.71.113.0/24
80.71.122.0-80.71.125.255
80.71.127.0/24
81.29.243.0/24
81.29.248.0/21
81.91.144.0/20
86.109.32.0/23
86.109.41.0/24
86.109.56.0/23
87.247.180.0/23
91.184.64.0/20
92.61.184.0/21
92.119.68.0/22
94.139.160.0/20
109.230.64.0/21
109.230.80.0/20
176.221.65.0/24
185.12.62.0/24
185.21.76.0/22
185.30.76.0/22
185.70.60.0/22
185.104.228.0/24
185.142.233.0-185.142.235.255
185.172.0.0/22
185.190.20.0/22
185.197.68.0/22
188.75.92.0/24
188.75.94.0/24
188.75.102.0/23
188.75.107.0/24
188.75.110.0/23
188.75.122.0/23
188.121.128.0/19
188.136.220.0/23
213.207.192.0/20
217.66.208.0/24
217.66.211.0/24
IPv6:
2a0c:100::/29
Signature Algorithm: sha256WithRSAEncryption
89:74:2e:0f:17:08:87:91:66:d2:4a:fd:92:7e:15:ad:1f:12:
6a:ed:17:97:4e:17:04:bc:b0:ea:2e:da:e4:4c:1c:be:99:e6:
73:8d:09:a2:75:8f:05:d9:ca:ad:da:69:b4:05:f5:ee:e5:47:
a3:9b:bb:f5:d6:ca:77:8e:5f:c9:38:22:0a:fb:84:6a:09:cd:
2f:f6:4e:8d:f2:33:83:b4:1a:d7:b0:09:94:1b:31:92:23:b4:
1a:8c:0b:33:60:b2:8e:0d:de:90:d6:ff:88:05:2c:38:9e:4a:
5e:14:b2:aa:12:2a:6e:e4:1d:16:bf:bf:2e:98:f2:42:50:9f:
87:94:b8:5d:14:b4:26:05:0c:be:14:d8:59:91:fb:2b:14:2d:
2c:27:6f:1e:bc:e6:a5:25:eb:ae:07:4c:02:14:eb:40:ad:05:
88:4a:e5:ba:2e:9c:21:27:a7:27:dd:d8:fe:c1:ed:e9:0a:95:
b4:75:6b:85:0c:57:ad:1c:e7:12:8c:0b:f1:ad:a6:51:94:eb:
01:ec:de:bd:4a:24:1a:50:6f:71:f9:33:b3:83:1b:0e:2e:ef:
7d:d4:1d:fe:6f:8f:55:31:f4:d1:4b:ae:ab:c5:9d:68:91:b9:
49:df:e1:df:7c:6c:1d:79:5b:8d:11:0d:61:44:2c:05:4d:ff:
4f:8a:c9:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:06 2024 by rpki-client on console-ams.rpki-client.org