Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/bwtBiqPruAmVI1y_XHnSwgfwR40.roa
File: bwtBiqPruAmVI1y_XHnSwgfwR40.roa (raw, json)
Hash identifier: 8TeOaCE2ME4zDbUw1mo+VJhTg4vPvQFqnR0+idEDacU=
Subject key identifier: 6F:0B:41:8A:A3:EB:B8:09:95:23:5C:BF:5C:79:D2:C2:07:F0:47:8D
Certificate issuer: /CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Certificate serial: 018CC26CF314B18A1DC70F60CB45AA35D5D9
Authority key identifier: 87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/bwtBiqPruAmVI1y_XHnSwgfwR40.roa
Signing time: Mon 01 Jan 2024 00:29:29 +0000
ROA not before: Mon 01 Jan 2024 00:29:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57809
IP address blocks: 192.214.192.0/19 maxlen: 19
185.87.100.0/22 maxlen: 22
23.90.192.0/18 maxlen: 18
185.20.16.0/22 maxlen: 22
185.134.156.0/22 maxlen: 22
45.133.68.0/22 maxlen: 22
185.133.80.0/22 maxlen: 22
79.99.160.0/21 maxlen: 21
92.119.232.0/22 maxlen: 22
185.197.108.0/22 maxlen: 22
5.183.248.0/22 maxlen: 22
45.89.76.0/22 maxlen: 22
45.92.180.0/22 maxlen: 22
185.48.252.0/22 maxlen: 22
45.129.218.0/24 maxlen: 24
185.163.136.0/22 maxlen: 22
45.129.216.0/24 maxlen: 24
45.129.217.0/24 maxlen: 24
94.187.150.0/24 maxlen: 24
185.241.140.0/22 maxlen: 22
94.154.4.0/24 maxlen: 24
88.218.12.0/22 maxlen: 22
185.191.36.0/22 maxlen: 22
185.163.212.0/22 maxlen: 22
185.86.88.0/22 maxlen: 22
45.86.96.0/22 maxlen: 22
185.163.220.0/22 maxlen: 22
31.204.80.0/21 maxlen: 21
185.163.228.0/22 maxlen: 22
94.187.128.0/19 maxlen: 19
2.59.144.0/22 maxlen: 22
94.187.144.0/22 maxlen: 22
185.186.88.0/22 maxlen: 22
185.169.156.0/22 maxlen: 22
185.132.64.0/22 maxlen: 22
185.135.176.0/22 maxlen: 22
45.142.108.0/22 maxlen: 22
195.216.140.0/22 maxlen: 22
168.220.128.0/19 maxlen: 19
46.18.120.0/22 maxlen: 22
46.18.124.0/24 maxlen: 24
46.18.125.0/24 maxlen: 24
46.18.126.0/23 maxlen: 23
185.254.8.0/22 maxlen: 22
185.138.116.0/22 maxlen: 22
5.10.128.0/21 maxlen: 21
45.80.252.0/22 maxlen: 22
185.98.116.0/22 maxlen: 22
45.152.16.0/22 maxlen: 22
62.192.156.0/22 maxlen: 22
2a00:41e0::/29 maxlen: 32
2a05:b780::/29 maxlen: 29
2a01:648::/29 maxlen: 32
2a00:6780::/29 maxlen: 32
2a05:c100::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 22 Oct 2024 06:58:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6c:f3:14:b1:8a:1d:c7:0f:60:cb:45:aa:35:d5:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Validity
Not Before: Jan 1 00:29:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6f0b418aa3ebb80995235cbf5c79d2c207f0478d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:12:9f:d5:c8:13:95:65:f2:87:65:c8:3a:a9:
c2:cf:25:b7:6f:ac:cf:d7:7a:e5:66:dd:41:88:cb:
11:bd:be:2d:c9:c1:97:2f:f9:09:cb:83:ed:49:66:
ca:40:36:f1:7c:18:62:f6:7f:94:ec:8f:e2:f9:a7:
ff:f0:b4:95:9c:0a:3a:1b:08:2a:00:1a:72:45:fb:
b0:a6:0f:78:9c:4f:4a:ec:1d:05:ad:00:26:a9:97:
74:88:06:3c:7f:c8:d8:c5:20:8f:22:46:7f:a0:94:
17:e5:fc:5f:9d:50:1b:a1:a7:c8:64:a6:6a:07:91:
b8:9e:80:24:ad:bc:8d:5b:9d:fb:fd:ea:be:a0:69:
e0:9c:d2:2e:fb:23:a4:62:11:b1:1f:50:d3:4e:fd:
d2:f4:b7:a5:cc:1c:c9:67:06:06:e2:2a:66:03:48:
63:18:5e:3c:b8:3d:51:cb:73:7e:09:1e:94:ba:5d:
77:e4:b4:02:c9:2d:1a:c1:5d:3a:a4:5c:1d:05:6a:
cf:22:ad:a6:f0:6d:f8:a0:f7:a4:a3:b7:3a:31:28:
9a:3b:de:8e:f8:bc:71:83:55:8f:b1:90:e5:20:50:
3b:80:35:7a:83:76:f5:02:1e:19:33:6d:1f:0a:c6:
fe:1d:6c:e7:28:9c:e2:f9:31:16:99:25:f7:6b:07:
63:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:0B:41:8A:A3:EB:B8:09:95:23:5C:BF:5C:79:D2:C2:07:F0:47:8D
X509v3 Authority Key Identifier:
keyid:87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/bwtBiqPruAmVI1y_XHnSwgfwR40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.144.0/22
5.10.128.0/21
5.183.248.0/22
23.90.192.0/18
31.204.80.0/21
45.80.252.0/22
45.86.96.0/22
45.89.76.0/22
45.92.180.0/22
45.129.216.0-45.129.218.255
45.133.68.0/22
45.142.108.0/22
45.152.16.0/22
46.18.120.0/21
62.192.156.0/22
79.99.160.0/21
88.218.12.0/22
92.119.232.0/22
94.154.4.0/24
94.187.128.0/19
168.220.128.0/19
185.20.16.0/22
185.48.252.0/22
185.86.88.0/22
185.87.100.0/22
185.98.116.0/22
185.132.64.0/22
185.133.80.0/22
185.134.156.0/22
185.135.176.0/22
185.138.116.0/22
185.163.136.0/22
185.163.212.0/22
185.163.220.0/22
185.163.228.0/22
185.169.156.0/22
185.186.88.0/22
185.191.36.0/22
185.197.108.0/22
185.241.140.0/22
185.254.8.0/22
192.214.192.0/19
195.216.140.0/22
IPv6:
2a00:41e0::/29
2a00:6780::/29
2a01:648::/29
2a05:b780::/29
2a05:c100::/29
Signature Algorithm: sha256WithRSAEncryption
20:03:e6:1a:21:43:39:4d:4b:00:55:25:a9:88:94:f1:3c:93:
c1:99:04:99:1a:67:9a:73:4e:8e:73:41:9f:8e:7c:f4:e9:2b:
cc:9d:c5:2f:b6:29:9c:85:85:57:76:24:59:09:e8:01:d8:c6:
b0:ce:39:fd:e1:9b:58:02:a1:85:b8:d0:bb:31:14:9c:fe:08:
c9:d6:19:78:63:be:b9:2e:a5:40:db:0e:8b:c9:81:a2:05:4a:
43:4a:3f:e4:00:c8:bd:f5:dc:3c:c1:a0:ef:a4:81:8e:8c:c0:
59:1b:e9:0c:7f:f9:51:b3:ed:6d:48:92:0e:38:6e:f2:da:5b:
91:f7:da:1f:8e:9d:9d:86:d1:bd:97:9f:16:67:25:02:0a:d5:
a1:c3:de:5f:d9:01:4f:4d:a0:80:a6:75:fb:5f:d5:76:db:fc:
bb:53:a0:6c:50:c5:57:de:26:a0:f2:d9:54:59:06:a7:07:b1:
0d:e0:1f:f6:29:47:3c:1c:88:8c:a4:82:6d:9c:6e:9a:81:8f:
fc:00:f9:b8:ee:99:00:7e:f7:c9:f7:fd:70:13:9f:38:84:da:
96:59:86:12:8a:24:85:ba:e8:de:ee:f9:73:96:5e:ae:62:0c:
60:2d:df:8a:22:e6:0d:b8:2c:2c:82:27:1c:4c:1e:2b:96:12:
ad:6f:21:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 08:30:05 2024 by rpki-client on console-fra.rpki-client.org