Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/pbeNjc82QRqYC0nRlKXwK1m8tj8.roa
File: pbeNjc82QRqYC0nRlKXwK1m8tj8.roa (raw, json)
Hash identifier: L5zuirCq0gIaQ7YlvHYUb+x/mKpAgGSZUCVZx7wfVWc=
Subject key identifier: A5:B7:8D:8D:CF:36:41:1A:98:0B:49:D1:94:A5:F0:2B:59:BC:B6:3F
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 018C495389AB6D67E75F9E69D9EB6C2048EF
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/pbeNjc82QRqYC0nRlKXwK1m8tj8.roa
Signing time: Fri 08 Dec 2023 12:07:40 +0000
ROA not before: Fri 08 Dec 2023 12:07:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13194
IP address blocks: 84.46.139.0/24 maxlen: 24
89.117.69.0/24 maxlen: 24
89.117.93.0/24 maxlen: 24
89.117.92.0/24 maxlen: 24
89.117.14.0/24 maxlen: 24
82.140.177.0/24 maxlen: 24
82.140.180.0/24 maxlen: 24
217.9.248.0/23 maxlen: 23
89.117.225.0/24 maxlen: 24
89.117.223.0/24 maxlen: 24
89.117.221.0/24 maxlen: 24
89.117.220.0/24 maxlen: 24
89.117.125.0/24 maxlen: 24
89.117.127.0/24 maxlen: 24
84.46.204.0/24 maxlen: 24
89.117.138.0/24 maxlen: 24
84.46.207.0/24 maxlen: 24
89.117.141.0/24 maxlen: 24
89.117.156.0/24 maxlen: 24
89.117.165.0/24 maxlen: 24
86.38.245.0/24 maxlen: 24
89.116.124.0/24 maxlen: 24
89.116.129.0/24 maxlen: 24
89.116.143.0/24 maxlen: 24
89.116.151.0/24 maxlen: 24
89.116.155.0/24 maxlen: 24
86.38.215.0/24 maxlen: 24
86.38.230.0/24 maxlen: 24
86.38.228.0/24 maxlen: 24
86.38.237.0/24 maxlen: 24
89.116.232.0/24 maxlen: 24
89.116.235.0/24 maxlen: 24
82.140.130.0/24 maxlen: 24
82.140.128.0/24 maxlen: 24
82.140.129.0/24 maxlen: 24
82.140.159.0/24 maxlen: 24
89.117.10.0/24 maxlen: 24
89.116.162.0/24 maxlen: 24
89.116.160.0/24 maxlen: 24
89.116.176.0/24 maxlen: 24
89.116.174.0/24 maxlen: 24
89.116.178.0/24 maxlen: 24
86.38.34.0/24 maxlen: 24
86.38.41.0/24 maxlen: 24
86.38.52.0/24 maxlen: 24
86.38.62.0/24 maxlen: 24
86.38.73.0/24 maxlen: 24
86.38.74.0/24 maxlen: 24
86.38.72.0/24 maxlen: 24
86.38.75.0/24 maxlen: 24
86.38.1.0/24 maxlen: 24
213.226.161.0/24 maxlen: 24
185.189.154.0/24 maxlen: 24
86.38.152.0/24 maxlen: 24
84.15.0.0/16 maxlen: 24
86.38.153.0/24 maxlen: 24
86.38.81.0/24 maxlen: 24
86.38.84.0/24 maxlen: 24
86.38.97.0/24 maxlen: 24
213.252.220.0/24 maxlen: 24
213.252.223.0/24 maxlen: 24
213.252.224.0/22 maxlen: 22
213.252.234.0/23 maxlen: 23
213.252.236.0/23 maxlen: 23
213.252.252.0/24 maxlen: 24
213.252.254.0/24 maxlen: 24
89.117.243.0/24 maxlen: 24
89.117.248.0/23 maxlen: 24
89.117.247.0/24 maxlen: 24
213.252.192.0/20 maxlen: 20
89.117.255.0/24 maxlen: 24
213.226.128.0/18 maxlen: 24
2a00:f500::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:49:53:89:ab:6d:67:e7:5f:9e:69:d9:eb:6c:20:48:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: Dec 8 12:07:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5b78d8dcf36411a980b49d194a5f02b59bcb63f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:9d:d8:28:bd:1f:55:77:d6:94:8d:3e:7f:63:
c1:13:0b:6e:f9:c2:1b:b9:b3:71:8e:57:4b:ab:9d:
48:5d:62:ed:e4:e1:58:f6:df:01:2d:7a:58:14:e0:
e1:44:04:5f:6a:6f:54:3a:44:ef:8d:ea:62:82:cb:
28:af:89:54:06:b0:39:55:91:c3:69:91:52:40:61:
6a:f3:89:c8:3f:e5:2e:7c:8c:dd:68:24:e4:ae:ba:
b4:b8:4d:36:1d:6c:10:01:cf:66:38:04:7f:4c:ab:
3d:ff:bd:4e:ac:6d:09:c7:9c:47:86:8c:3b:3b:9f:
cc:ae:1f:0a:c1:42:20:d3:f9:07:c1:dc:e6:c5:c5:
8d:b4:f2:52:db:7c:75:e9:ff:a9:b5:b0:98:66:45:
54:8b:67:5d:be:fd:6e:40:f0:60:15:41:5e:fc:ba:
ce:1c:ae:df:4b:ee:b0:e4:6f:46:4b:13:4c:a6:bd:
1d:52:df:bf:ab:69:ab:24:d4:07:e8:3d:65:0a:0b:
f0:58:7d:e4:49:89:ff:33:e5:07:7f:5a:2d:dd:c2:
e7:a9:7e:e0:32:a6:11:b7:b4:36:16:43:67:d7:3f:
59:ab:42:40:43:a4:3e:90:87:c8:5a:5e:3a:f4:fd:
aa:f3:0a:64:9a:76:25:94:5f:e5:59:19:ec:9f:43:
6a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:B7:8D:8D:CF:36:41:1A:98:0B:49:D1:94:A5:F0:2B:59:BC:B6:3F
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/pbeNjc82QRqYC0nRlKXwK1m8tj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.128.0-82.140.130.255
82.140.159.0/24
82.140.177.0/24
82.140.180.0/24
84.15.0.0/16
84.46.139.0/24
84.46.204.0/24
84.46.207.0/24
86.38.1.0/24
86.38.34.0/24
86.38.41.0/24
86.38.52.0/24
86.38.62.0/24
86.38.72.0/22
86.38.81.0/24
86.38.84.0/24
86.38.97.0/24
86.38.152.0/23
86.38.215.0/24
86.38.228.0/24
86.38.230.0/24
86.38.237.0/24
86.38.245.0/24
89.116.124.0/24
89.116.129.0/24
89.116.143.0/24
89.116.151.0/24
89.116.155.0/24
89.116.160.0/24
89.116.162.0/24
89.116.174.0/24
89.116.176.0/24
89.116.178.0/24
89.116.232.0/24
89.116.235.0/24
89.117.10.0/24
89.117.14.0/24
89.117.69.0/24
89.117.92.0/23
89.117.125.0/24
89.117.127.0/24
89.117.138.0/24
89.117.141.0/24
89.117.156.0/24
89.117.165.0/24
89.117.220.0/23
89.117.223.0/24
89.117.225.0/24
89.117.243.0/24
89.117.247.0-89.117.249.255
89.117.255.0/24
185.189.154.0/24
213.226.128.0/18
213.252.192.0/20
213.252.220.0/24
213.252.223.0-213.252.227.255
213.252.234.0-213.252.237.255
213.252.252.0/24
213.252.254.0/24
217.9.248.0/23
IPv6:
2a00:f500::/29
Signature Algorithm: sha256WithRSAEncryption
78:4c:03:9e:51:e0:34:70:74:a2:81:80:df:a9:72:4d:2e:5a:
7f:f3:e0:af:33:5a:8f:e7:26:e3:57:22:81:75:41:d9:d4:c6:
b1:ea:53:f7:85:de:4a:22:68:4f:77:29:6f:3e:81:82:4d:ff:
d5:30:e5:e9:49:c9:eb:b4:be:bd:f3:ca:9c:4c:94:cd:83:e1:
08:a3:6d:20:2a:93:bb:52:95:1d:89:87:41:26:09:2d:4d:77:
ad:e4:e1:92:0b:7c:96:a7:95:64:51:4c:d3:c6:14:f5:fa:cb:
48:3a:0b:22:3d:1e:9d:60:fc:15:6f:7f:87:88:c2:97:38:03:
59:d3:5b:d5:2b:9e:dc:1e:ef:44:94:09:da:23:e5:be:d2:00:
cb:b4:3e:12:fa:14:6c:8a:74:40:0e:b3:12:41:c1:64:5b:eb:
15:51:43:52:19:d6:7d:62:26:b7:a7:31:15:ab:09:cf:8d:23:
ec:d2:41:f0:b0:58:a3:6f:5b:be:2e:27:3d:7a:5e:bf:d0:80:
26:6f:8a:7d:61:27:12:6f:59:6d:c4:49:93:fb:6b:46:fa:21:
06:90:6e:82:43:02:c0:0d:d9:63:3d:53:1e:c2:ab:53:9d:21:
36:92:2b:13:ec:c3:e2:3f:a8:35:45:8f:a9:30:37:49:d1:9d:
39:f4:53:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:46 2024 by rpki-client on console-fra.rpki-client.org