Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/_R0EG2X2Dqt-_rnf3xh_OGQQCZ0.roa
File: _R0EG2X2Dqt-_rnf3xh_OGQQCZ0.roa (raw, json)
Hash identifier: c1MWqr3eA4JIEnRQYEIRu0nkTRxRijabWXl6MTFRDXE=
Subject key identifier: FD:1D:04:1B:65:F6:0E:AB:7E:FE:B9:DF:DF:18:7F:38:64:10:09:9D
Certificate issuer: /CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Certificate serial: 018E5C64AC6D7303EFCC97DB78144C972CE8
Authority key identifier: 6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/_R0EG2X2Dqt-_rnf3xh_OGQQCZ0.roa
Signing time: Wed 20 Mar 2024 15:04:45 +0000
ROA not before: Wed 20 Mar 2024 15:04:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34164
IP address blocks: 2.16.49.0/24 maxlen: 24
2.18.25.0/24 maxlen: 24
2.20.48.0/24 maxlen: 24
2.21.236.0/24 maxlen: 24
2.21.237.0/24 maxlen: 24
80.67.81.0/24 maxlen: 24
84.53.176.0/24 maxlen: 24
84.53.186.0/24 maxlen: 24
88.221.54.0/23 maxlen: 23
88.221.56.0/24 maxlen: 24
88.221.91.0/24 maxlen: 24
88.221.108.0/24 maxlen: 24
88.221.146.0/23 maxlen: 23
88.221.199.0/24 maxlen: 24
88.221.212.0/24 maxlen: 24
88.221.219.0/24 maxlen: 24
92.122.120.0/23 maxlen: 23
92.122.152.0/24 maxlen: 24
92.122.191.0/24 maxlen: 24
92.122.204.0/23 maxlen: 23
95.101.12.0/24 maxlen: 24
95.101.121.0/24 maxlen: 24
193.108.152.0/24 maxlen: 24
195.245.126.0/24 maxlen: 24
2a02:26f0:a::/48 maxlen: 48
2a02:26f0:1d::/48 maxlen: 48
2a02:26f0:33::/48 maxlen: 48
2a02:26f0:36::/48 maxlen: 48
2a02:26f0:74::/48 maxlen: 48
2a02:26f0:77::/48 maxlen: 48
2a02:26f0:88::/48 maxlen: 48
2a02:26f0:96::/48 maxlen: 48
2a02:26f0:9c::/48 maxlen: 48
2a02:26f0:9d::/48 maxlen: 48
2a02:26f0:a5::/48 maxlen: 48
2a02:26f0:a6::/48 maxlen: 48
2a02:26f0:a7::/48 maxlen: 48
2a02:26f0:bb::/48 maxlen: 48
2a02:26f0:bc::/48 maxlen: 48
2a02:26f0:bd::/48 maxlen: 48
2a02:26f0:c0::/48 maxlen: 48
2a02:26f0:f9::/48 maxlen: 48
2a02:26f0:106::/48 maxlen: 48
2a02:26f0:107::/48 maxlen: 48
2a02:26f0:110::/48 maxlen: 48
2a02:26f0:124::/48 maxlen: 48
2a02:26f0:125::/48 maxlen: 48
2a02:26f0:126::/48 maxlen: 48
2a02:26f0:1600::/48 maxlen: 48
2a02:26f0:1a00::/48 maxlen: 48
2a02:26f0:1e00::/48 maxlen: 48
2a02:26f0:3600::/48 maxlen: 48
2a02:26f0:4500::/48 maxlen: 48
2a02:26f0:4a00::/48 maxlen: 48
2a02:26f0:4d00::/48 maxlen: 48
2a02:26f0:4e00::/48 maxlen: 48
2a02:26f0:5400::/48 maxlen: 48
2a02:26f0:5600::/48 maxlen: 48
2a02:26f0:6200::/48 maxlen: 48
2a02:26f0:6300::/48 maxlen: 48
2a02:26f0:7e00::/48 maxlen: 48
2a02:26f0:8200::/48 maxlen: 48
2a02:26f0:8600::/48 maxlen: 48
2a02:26f0:8a00::/48 maxlen: 48
2a02:26f0:8e00::/48 maxlen: 48
2a02:26f0:9600::/48 maxlen: 48
2a02:26f0:9a00::/48 maxlen: 48
2a02:26f0:9e00::/48 maxlen: 48
2a02:26f0:a200::/48 maxlen: 48
2a02:26f0:a800::/48 maxlen: 48
2a02:26f0:af00::/48 maxlen: 48
2a02:26f0:b000::/48 maxlen: 48
2a02:26f0:bb00::/48 maxlen: 48
2a02:26f0:bd00::/48 maxlen: 48
2a02:26f0:bf00::/48 maxlen: 48
2a02:26f0:c100::/48 maxlen: 48
2a02:26f0:c200::/48 maxlen: 48
2a02:26f0:c500::/48 maxlen: 48
2a02:26f0:cd00::/48 maxlen: 48
2a02:26f0:ce00::/48 maxlen: 48
2a02:26f0:cf00::/48 maxlen: 48
2a02:26f0:d500::/48 maxlen: 48
2a02:26f0:d600::/48 maxlen: 48
2a02:26f0:d700::/48 maxlen: 48
2a02:26f0:da00::/48 maxlen: 48
2a02:26f0:dc00::/48 maxlen: 48
2a02:26f0:e400::/48 maxlen: 48
2a02:26f0:ec00::/48 maxlen: 48
2a02:26f0:f400::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 21 Mar 2024 14:34:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:5c:64:ac:6d:73:03:ef:cc:97:db:78:14:4c:97:2c:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Validity
Not Before: Mar 20 15:04:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd1d041b65f60eab7efeb9dfdf187f386410099d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9a:0f:57:ce:b7:8d:15:40:2b:35:11:32:7f:
f5:d1:aa:fd:ae:99:06:e9:65:0b:4d:41:af:3f:eb:
e3:91:d7:87:9b:c1:da:95:f3:ab:24:f9:81:88:af:
6e:27:08:46:ee:32:45:81:3b:e7:b3:22:c4:bf:0c:
63:94:51:7c:28:15:2a:1e:09:6c:28:4c:a0:47:7b:
96:45:6c:95:2a:33:03:5b:ae:7c:08:1d:09:07:8c:
54:6d:4e:1e:dc:79:f0:c2:0f:90:9c:c6:97:b5:41:
3d:80:78:1b:ac:ea:6a:75:f7:d9:7f:73:0e:a6:c9:
4d:b0:0c:03:3f:d7:94:b2:f5:bc:68:ba:7d:49:d9:
14:54:de:17:0c:b4:f3:8e:6e:1c:6f:84:6c:67:80:
d2:9f:38:f9:10:85:16:79:b8:9a:6c:6c:c4:11:cb:
be:22:da:e7:f9:97:67:b7:9e:56:ce:32:5b:f7:76:
96:ac:56:2b:9d:9e:0b:ac:c0:53:ad:4e:7f:e3:8c:
aa:8a:f3:9d:d9:dc:10:c7:a1:21:52:42:30:eb:f8:
6a:2a:d1:de:d0:c3:f8:18:c1:12:3e:f0:f2:46:da:
67:0a:03:7d:cf:96:16:74:8f:4e:ba:08:5f:f5:ca:
12:cc:f0:ee:75:e7:19:52:20:63:cc:e4:d3:43:e5:
4e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:1D:04:1B:65:F6:0E:AB:7E:FE:B9:DF:DF:18:7F:38:64:10:09:9D
X509v3 Authority Key Identifier:
keyid:6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/_R0EG2X2Dqt-_rnf3xh_OGQQCZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/a1_LvqSJN6RCur2zMCEyxLyb1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.16.49.0/24
2.18.25.0/24
2.20.48.0/24
2.21.236.0/23
80.67.81.0/24
84.53.176.0/24
84.53.186.0/24
88.221.54.0-88.221.56.255
88.221.91.0/24
88.221.108.0/24
88.221.146.0/23
88.221.199.0/24
88.221.212.0/24
88.221.219.0/24
92.122.120.0/23
92.122.152.0/24
92.122.191.0/24
92.122.204.0/23
95.101.12.0/24
95.101.121.0/24
193.108.152.0/24
195.245.126.0/24
IPv6:
2a02:26f0:a::/48
2a02:26f0:1d::/48
2a02:26f0:33::/48
2a02:26f0:36::/48
2a02:26f0:74::/48
2a02:26f0:77::/48
2a02:26f0:88::/48
2a02:26f0:96::/48
2a02:26f0:9c::/47
2a02:26f0:a5::-2a02:26f0:a7:ffff:ffff:ffff:ffff:ffff
2a02:26f0:bb::-2a02:26f0:bd:ffff:ffff:ffff:ffff:ffff
2a02:26f0:c0::/48
2a02:26f0:f9::/48
2a02:26f0:106::/47
2a02:26f0:110::/48
2a02:26f0:124::-2a02:26f0:126:ffff:ffff:ffff:ffff:ffff
2a02:26f0:1600::/48
2a02:26f0:1a00::/48
2a02:26f0:1e00::/48
2a02:26f0:3600::/48
2a02:26f0:4500::/48
2a02:26f0:4a00::/48
2a02:26f0:4d00::/48
2a02:26f0:4e00::/48
2a02:26f0:5400::/48
2a02:26f0:5600::/48
2a02:26f0:6200::/48
2a02:26f0:6300::/48
2a02:26f0:7e00::/48
2a02:26f0:8200::/48
2a02:26f0:8600::/48
2a02:26f0:8a00::/48
2a02:26f0:8e00::/48
2a02:26f0:9600::/48
2a02:26f0:9a00::/48
2a02:26f0:9e00::/48
2a02:26f0:a200::/48
2a02:26f0:a800::/48
2a02:26f0:af00::/48
2a02:26f0:b000::/48
2a02:26f0:bb00::/48
2a02:26f0:bd00::/48
2a02:26f0:bf00::/48
2a02:26f0:c100::/48
2a02:26f0:c200::/48
2a02:26f0:c500::/48
2a02:26f0:cd00::/48
2a02:26f0:ce00::/48
2a02:26f0:cf00::/48
2a02:26f0:d500::/48
2a02:26f0:d600::/48
2a02:26f0:d700::/48
2a02:26f0:da00::/48
2a02:26f0:dc00::/48
2a02:26f0:e400::/48
2a02:26f0:ec00::/48
2a02:26f0:f400::/48
Signature Algorithm: sha256WithRSAEncryption
a2:86:28:8a:97:b8:5d:fb:ec:81:6e:50:50:eb:93:0a:60:47:
95:83:c1:8f:62:c4:4b:60:a1:96:13:5d:79:5e:f0:d8:17:42:
6f:fb:8d:0a:bd:7c:61:36:c8:ef:4e:8f:fd:e7:87:15:d1:20:
46:14:78:c9:ac:ac:dd:fd:f7:16:27:14:2c:62:3f:d2:30:b2:
bd:51:89:26:48:d6:c2:5a:6d:08:d8:3f:56:0c:1f:70:ba:4c:
87:02:cf:da:70:eb:b2:5e:80:78:ee:0e:8c:7c:04:3a:1c:6d:
63:64:28:7e:36:06:b9:fc:83:60:00:d2:b9:d8:6c:f2:b0:f6:
79:1d:d5:60:d2:e6:2a:56:5d:17:19:c5:6e:12:ba:92:f9:33:
02:91:72:aa:82:0a:4a:6e:06:d7:c6:ce:51:b5:93:67:19:63:
57:6b:28:96:00:d4:f8:6f:03:23:b8:91:f8:64:c4:f4:b2:f4:
be:79:d3:1f:a2:4f:f5:6f:61:c2:61:e2:ec:a9:6c:d2:37:66:
39:69:91:1b:e9:46:0a:40:48:f9:59:a2:f1:6d:21:5d:37:39:
d2:a3:88:4f:05:8f:87:32:9d:bc:6c:87:52:60:a1:e3:1f:4c:
8c:6f:53:98:fb:ce:8d:c2:22:0c:0d:d9:c1:e0:99:00:e8:8c:
7a:03:21:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 21 18:22:42 2024 by rpki-client on console-ams.rpki-client.org