Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/dRiFub9xof3ldMk1uXZRxSpiaeQ.roa
File: dRiFub9xof3ldMk1uXZRxSpiaeQ.roa (raw, json)
Hash identifier: wbC9/ZcP+HfwBGuWEd4SYQCOfZflr2L2cGLHZQXgIys=
Subject key identifier: 75:18:85:B9:BF:71:A1:FD:E5:74:C9:35:B9:76:51:C5:2A:62:69:E4
Certificate issuer: /CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Certificate serial: 018E7AA08C721926FE5B1C2BD6C231908640
Authority key identifier: 6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/dRiFub9xof3ldMk1uXZRxSpiaeQ.roa
Signing time: Tue 26 Mar 2024 11:58:45 +0000
ROA not before: Tue 26 Mar 2024 11:58:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34164
IP address blocks: 2.16.49.0/24 maxlen: 24
2.18.25.0/24 maxlen: 24
2.20.48.0/24 maxlen: 24
2.21.236.0/24 maxlen: 24
2.21.237.0/24 maxlen: 24
80.67.81.0/24 maxlen: 24
84.53.176.0/24 maxlen: 24
84.53.186.0/24 maxlen: 24
88.221.54.0/23 maxlen: 23
88.221.56.0/24 maxlen: 24
88.221.91.0/24 maxlen: 24
88.221.108.0/24 maxlen: 24
88.221.146.0/23 maxlen: 23
88.221.199.0/24 maxlen: 24
88.221.212.0/24 maxlen: 24
88.221.219.0/24 maxlen: 24
92.122.112.0/24 maxlen: 24
92.122.113.0/24 maxlen: 24
92.122.120.0/23 maxlen: 23
92.122.124.0/24 maxlen: 24
92.122.152.0/24 maxlen: 24
92.122.180.0/24 maxlen: 24
92.122.181.0/24 maxlen: 24
92.122.189.0/24 maxlen: 24
92.122.191.0/24 maxlen: 24
92.122.204.0/23 maxlen: 23
92.123.49.0/24 maxlen: 24
95.100.38.0/24 maxlen: 24
95.100.89.0/24 maxlen: 24
95.100.90.0/24 maxlen: 24
95.100.91.0/24 maxlen: 24
95.100.92.0/24 maxlen: 24
95.101.12.0/24 maxlen: 24
95.101.37.0/24 maxlen: 24
95.101.52.0/23 maxlen: 23
95.101.112.0/24 maxlen: 24
95.101.116.0/24 maxlen: 24
95.101.121.0/24 maxlen: 24
95.101.138.0/23 maxlen: 23
193.108.152.0/24 maxlen: 24
195.245.126.0/24 maxlen: 24
2a02:26f0:a::/48 maxlen: 48
2a02:26f0:1d::/48 maxlen: 48
2a02:26f0:33::/48 maxlen: 48
2a02:26f0:36::/48 maxlen: 48
2a02:26f0:74::/48 maxlen: 48
2a02:26f0:77::/48 maxlen: 48
2a02:26f0:88::/48 maxlen: 48
2a02:26f0:96::/48 maxlen: 48
2a02:26f0:9c::/48 maxlen: 48
2a02:26f0:9d::/48 maxlen: 48
2a02:26f0:a5::/48 maxlen: 48
2a02:26f0:a6::/48 maxlen: 48
2a02:26f0:a7::/48 maxlen: 48
2a02:26f0:bb::/48 maxlen: 48
2a02:26f0:bc::/48 maxlen: 48
2a02:26f0:bd::/48 maxlen: 48
2a02:26f0:c0::/48 maxlen: 48
2a02:26f0:f9::/48 maxlen: 48
2a02:26f0:106::/48 maxlen: 48
2a02:26f0:107::/48 maxlen: 48
2a02:26f0:110::/48 maxlen: 48
2a02:26f0:124::/48 maxlen: 48
2a02:26f0:125::/48 maxlen: 48
2a02:26f0:126::/48 maxlen: 48
2a02:26f0:1600::/48 maxlen: 48
2a02:26f0:1a00::/48 maxlen: 48
2a02:26f0:1e00::/48 maxlen: 48
2a02:26f0:3600::/48 maxlen: 48
2a02:26f0:4500::/48 maxlen: 48
2a02:26f0:4a00::/48 maxlen: 48
2a02:26f0:4d00::/48 maxlen: 48
2a02:26f0:4e00::/48 maxlen: 48
2a02:26f0:5400::/48 maxlen: 48
2a02:26f0:5600::/48 maxlen: 48
2a02:26f0:6200::/48 maxlen: 48
2a02:26f0:6300::/48 maxlen: 48
2a02:26f0:7e00::/48 maxlen: 48
2a02:26f0:8200::/48 maxlen: 48
2a02:26f0:8600::/48 maxlen: 48
2a02:26f0:8a00::/48 maxlen: 48
2a02:26f0:8e00::/48 maxlen: 48
2a02:26f0:9600::/48 maxlen: 48
2a02:26f0:9a00::/48 maxlen: 48
2a02:26f0:9e00::/48 maxlen: 48
2a02:26f0:a200::/48 maxlen: 48
2a02:26f0:a800::/48 maxlen: 48
2a02:26f0:af00::/48 maxlen: 48
2a02:26f0:b000::/48 maxlen: 48
2a02:26f0:bb00::/48 maxlen: 48
2a02:26f0:bd00::/48 maxlen: 48
2a02:26f0:bf00::/48 maxlen: 48
2a02:26f0:c100::/48 maxlen: 48
2a02:26f0:c200::/48 maxlen: 48
2a02:26f0:c500::/48 maxlen: 48
2a02:26f0:cd00::/48 maxlen: 48
2a02:26f0:ce00::/48 maxlen: 48
2a02:26f0:cf00::/48 maxlen: 48
2a02:26f0:d500::/48 maxlen: 48
2a02:26f0:d600::/48 maxlen: 48
2a02:26f0:d700::/48 maxlen: 48
2a02:26f0:da00::/48 maxlen: 48
2a02:26f0:dc00::/48 maxlen: 48
2a02:26f0:e400::/48 maxlen: 48
2a02:26f0:ec00::/48 maxlen: 48
2a02:26f0:f400::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 26 Mar 2024 13:09:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7a:a0:8c:72:19:26:fe:5b:1c:2b:d6:c2:31:90:86:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Validity
Not Before: Mar 26 11:58:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=751885b9bf71a1fde574c935b97651c52a6269e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d1:3b:99:c5:6f:39:27:be:11:22:e1:8a:5a:
a1:02:d3:0d:34:d3:78:33:8a:91:70:c7:0f:02:ba:
98:d1:52:56:10:bc:2d:bb:3f:cb:b2:fa:16:55:7d:
30:8b:a3:49:7e:d7:cf:0a:76:fb:4e:ed:0d:2f:e2:
80:38:6a:c6:b1:fc:b3:31:f9:67:91:b1:ad:70:13:
0a:52:c0:61:17:8a:35:bf:68:46:ba:2b:61:0f:c7:
df:ef:f3:83:e2:4d:38:0e:1e:d7:4c:d3:0a:40:37:
36:e1:12:38:4d:ec:b0:6a:69:e0:4a:e9:b4:cd:40:
4b:df:b4:ea:68:7f:30:3e:9f:d2:43:12:70:99:40:
34:04:9a:4c:c8:bd:0b:35:d3:82:df:c7:10:6f:00:
c2:cb:83:f4:b8:7d:20:24:f7:6c:72:06:eb:76:ae:
33:28:7a:66:7e:80:a2:d8:33:4b:44:94:9c:39:44:
db:4b:f5:89:f9:87:93:1e:69:af:fb:01:fd:13:98:
46:73:bf:01:92:51:86:8d:83:54:e3:51:03:ec:52:
b1:8b:56:89:7b:76:ad:90:a1:c4:18:fe:95:56:57:
31:d1:f5:b0:e9:d1:d5:e2:3b:b6:1b:fd:48:c8:b8:
16:14:40:e0:3e:78:22:d9:d7:ca:60:b8:9b:6a:d0:
3c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:18:85:B9:BF:71:A1:FD:E5:74:C9:35:B9:76:51:C5:2A:62:69:E4
X509v3 Authority Key Identifier:
keyid:6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/dRiFub9xof3ldMk1uXZRxSpiaeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/a1_LvqSJN6RCur2zMCEyxLyb1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.16.49.0/24
2.18.25.0/24
2.20.48.0/24
2.21.236.0/23
80.67.81.0/24
84.53.176.0/24
84.53.186.0/24
88.221.54.0-88.221.56.255
88.221.91.0/24
88.221.108.0/24
88.221.146.0/23
88.221.199.0/24
88.221.212.0/24
88.221.219.0/24
92.122.112.0/23
92.122.120.0/23
92.122.124.0/24
92.122.152.0/24
92.122.180.0/23
92.122.189.0/24
92.122.191.0/24
92.122.204.0/23
92.123.49.0/24
95.100.38.0/24
95.100.89.0-95.100.92.255
95.101.12.0/24
95.101.37.0/24
95.101.52.0/23
95.101.112.0/24
95.101.116.0/24
95.101.121.0/24
95.101.138.0/23
193.108.152.0/24
195.245.126.0/24
IPv6:
2a02:26f0:a::/48
2a02:26f0:1d::/48
2a02:26f0:33::/48
2a02:26f0:36::/48
2a02:26f0:74::/48
2a02:26f0:77::/48
2a02:26f0:88::/48
2a02:26f0:96::/48
2a02:26f0:9c::/47
2a02:26f0:a5::-2a02:26f0:a7:ffff:ffff:ffff:ffff:ffff
2a02:26f0:bb::-2a02:26f0:bd:ffff:ffff:ffff:ffff:ffff
2a02:26f0:c0::/48
2a02:26f0:f9::/48
2a02:26f0:106::/47
2a02:26f0:110::/48
2a02:26f0:124::-2a02:26f0:126:ffff:ffff:ffff:ffff:ffff
2a02:26f0:1600::/48
2a02:26f0:1a00::/48
2a02:26f0:1e00::/48
2a02:26f0:3600::/48
2a02:26f0:4500::/48
2a02:26f0:4a00::/48
2a02:26f0:4d00::/48
2a02:26f0:4e00::/48
2a02:26f0:5400::/48
2a02:26f0:5600::/48
2a02:26f0:6200::/48
2a02:26f0:6300::/48
2a02:26f0:7e00::/48
2a02:26f0:8200::/48
2a02:26f0:8600::/48
2a02:26f0:8a00::/48
2a02:26f0:8e00::/48
2a02:26f0:9600::/48
2a02:26f0:9a00::/48
2a02:26f0:9e00::/48
2a02:26f0:a200::/48
2a02:26f0:a800::/48
2a02:26f0:af00::/48
2a02:26f0:b000::/48
2a02:26f0:bb00::/48
2a02:26f0:bd00::/48
2a02:26f0:bf00::/48
2a02:26f0:c100::/48
2a02:26f0:c200::/48
2a02:26f0:c500::/48
2a02:26f0:cd00::/48
2a02:26f0:ce00::/48
2a02:26f0:cf00::/48
2a02:26f0:d500::/48
2a02:26f0:d600::/48
2a02:26f0:d700::/48
2a02:26f0:da00::/48
2a02:26f0:dc00::/48
2a02:26f0:e400::/48
2a02:26f0:ec00::/48
2a02:26f0:f400::/48
Signature Algorithm: sha256WithRSAEncryption
7f:40:f4:8c:dc:ea:02:79:4c:f9:8a:c9:5b:ae:27:32:81:56:
16:ca:40:54:71:1e:b8:5c:c4:66:0a:20:a3:ad:77:9a:3f:fc:
4f:2b:21:fc:3d:c3:18:17:70:57:08:ff:d4:60:59:c5:2a:5a:
0b:5f:9e:3c:63:0d:51:fc:8f:6b:18:33:d5:63:5a:43:48:59:
0f:aa:1b:c2:90:15:ea:eb:12:2c:26:99:22:36:2d:e6:1f:93:
51:d5:dc:05:bd:8d:07:bf:17:c5:e7:a4:41:33:b4:31:c7:bf:
d5:d2:c9:9c:99:e8:7c:0b:1c:4f:18:a6:28:40:6b:ba:22:2d:
1a:2a:08:54:9f:3e:55:da:e6:2c:be:16:ed:3d:46:ef:22:c8:
ba:3e:14:79:63:f7:43:17:b2:55:44:4a:54:14:42:93:e8:cb:
8f:03:56:a6:f2:30:c5:d9:a2:36:a6:77:92:95:c9:ef:0d:41:
8b:15:b6:25:a0:4a:88:04:76:44:8a:de:ca:a8:dd:57:b1:49:
13:d5:16:40:79:1f:70:5d:08:81:33:b1:f9:18:d1:98:6b:3b:
6c:91:c7:76:ea:99:75:29:0a:81:8f:02:48:83:13:97:a9:85:
9e:c4:4e:10:9c:20:b2:be:93:80:50:02:45:03:5b:9e:5d:97:
9c:c9:b2:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 26 17:45:19 2024 by rpki-client on console-fra.rpki-client.org