Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/IJLJi75FfTfyPUyWtIKFwwlcaE0.roa
File: IJLJi75FfTfyPUyWtIKFwwlcaE0.roa (raw, json)
Hash identifier: 7yKuAT+2zWE8erWhihPzimDRBIYDAodve+gvoppP9es=
Subject key identifier: 20:92:C9:8B:BE:45:7D:37:F2:3D:4C:96:B4:82:85:C3:09:5C:68:4D
Certificate issuer: /CN=e0c8a390dde5e1519a4bd3da754a93e988492d67
Certificate serial: 018FBFD07C79321E5A988248A107B459E068
Authority key identifier: E0:C8:A3:90:DD:E5:E1:51:9A:4B:D3:DA:75:4A:93:E9:88:49:2D:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4MijkN3l4VGaS9PadUqT6YhJLWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/IJLJi75FfTfyPUyWtIKFwwlcaE0.roa
Signing time: Tue 28 May 2024 15:27:42 +0000
ROA not before: Tue 28 May 2024 15:27:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61323
IP address blocks: 31.193.0.0/20 maxlen: 20
37.220.88.0/21 maxlen: 21
45.84.20.0/22 maxlen: 24
45.131.136.0/22 maxlen: 22
45.145.100.0/22 maxlen: 22
45.157.40.0/22 maxlen: 22
46.37.160.0/19 maxlen: 19
78.24.88.0/24 maxlen: 24
78.24.89.0/24 maxlen: 24
78.24.90.0/23 maxlen: 23
78.109.160.0/20 maxlen: 20
78.137.112.0/20 maxlen: 20
80.66.200.0/22 maxlen: 22
80.244.176.0/20 maxlen: 20
81.201.128.0/20 maxlen: 20
94.229.160.0/20 maxlen: 20
109.108.128.0/19 maxlen: 19
159.253.208.0/21 maxlen: 21
176.124.52.0/22 maxlen: 24
178.238.128.0/20 maxlen: 20
185.55.76.0/23 maxlen: 24
185.55.76.0/24 maxlen: 24
185.55.77.0/24 maxlen: 24
185.55.78.0/23 maxlen: 23
185.156.64.0/24 maxlen: 24
185.156.65.0/24 maxlen: 24
185.156.66.0/23 maxlen: 23
185.160.180.0/22 maxlen: 22
185.160.252.0/22 maxlen: 24
185.162.224.0/22 maxlen: 22
185.166.128.0/22 maxlen: 22
185.181.196.0/22 maxlen: 22
185.182.88.0/22 maxlen: 22
185.197.60.0/22 maxlen: 22
185.207.108.0/22 maxlen: 22
185.210.196.0/22 maxlen: 22
185.216.76.0/22 maxlen: 22
185.217.40.0/22 maxlen: 22
185.220.60.0/22 maxlen: 22
185.221.204.0/22 maxlen: 22
185.226.220.0/22 maxlen: 22
185.234.36.0/22 maxlen: 22
185.241.248.0/22 maxlen: 24
192.166.44.0/24 maxlen: 24
192.166.45.0/24 maxlen: 24
192.166.46.0/23 maxlen: 23
193.39.252.0/22 maxlen: 22
194.39.164.0/22 maxlen: 22
195.69.102.0/24 maxlen: 24
2a02:21a8::/48 maxlen: 48
2a02:21a8:1::/48 maxlen: 48
2a02:22d0::/32 maxlen: 32
2a02:22d0:c::/48 maxlen: 48
2a09:b200:6::/48 maxlen: 48
2a09:b600:5::/48 maxlen: 48
2a09:ba00:4::/48 maxlen: 48
2a0c:3dc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 16 Sep 2024 12:49:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:bf:d0:7c:79:32:1e:5a:98:82:48:a1:07:b4:59:e0:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0c8a390dde5e1519a4bd3da754a93e988492d67
Validity
Not Before: May 28 15:27:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2092c98bbe457d37f23d4c96b48285c3095c684d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:23:51:44:f9:18:cf:9b:76:d4:39:62:48:a6:
83:16:d6:91:1d:b9:8f:40:68:9d:67:90:4e:31:49:
75:48:d5:12:89:27:15:1c:d9:04:0b:46:ec:45:c2:
e3:17:1a:69:cd:47:82:09:e1:bc:d9:be:d9:ff:f4:
97:30:4a:8f:2a:c9:a8:bb:ae:dc:9f:ed:8d:99:e0:
18:8a:4f:00:91:29:d2:6e:1e:1c:56:f4:3e:78:10:
25:f4:72:41:56:66:f0:c9:80:ff:d4:5c:23:8a:5d:
1c:73:6d:22:34:68:7e:5b:12:5e:ec:a5:25:d1:45:
02:d6:7a:02:38:6f:19:e9:a5:12:a5:49:9d:da:1a:
8b:82:db:56:1a:6a:95:e8:f1:22:75:a7:23:83:77:
57:3c:f6:e2:36:52:8a:28:f6:96:55:30:d3:59:da:
1c:b7:8f:ec:3d:65:84:5d:db:49:a5:8e:22:2b:d9:
0d:72:4c:88:3a:c3:5f:06:4c:bf:56:1c:11:6d:d3:
bf:4a:01:eb:f2:86:da:e7:87:72:0a:9d:0f:37:02:
91:12:eb:8c:74:de:c8:24:91:ff:df:78:e4:d5:46:
95:3a:e0:c1:68:e3:4c:02:b6:43:4e:b0:d5:1d:4f:
ce:5e:8a:46:03:c3:92:80:cb:82:7d:83:7e:42:9e:
bb:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:92:C9:8B:BE:45:7D:37:F2:3D:4C:96:B4:82:85:C3:09:5C:68:4D
X509v3 Authority Key Identifier:
keyid:E0:C8:A3:90:DD:E5:E1:51:9A:4B:D3:DA:75:4A:93:E9:88:49:2D:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4MijkN3l4VGaS9PadUqT6YhJLWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/IJLJi75FfTfyPUyWtIKFwwlcaE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/869b30-fcd6-48df-8d25-bef3ba21c715/1/4MijkN3l4VGaS9PadUqT6YhJLWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.0.0/20
37.220.88.0/21
45.84.20.0/22
45.131.136.0/22
45.145.100.0/22
45.157.40.0/22
46.37.160.0/19
78.24.88.0/22
78.109.160.0/20
78.137.112.0/20
80.66.200.0/22
80.244.176.0/20
81.201.128.0/20
94.229.160.0/20
109.108.128.0/19
159.253.208.0/21
176.124.52.0/22
178.238.128.0/20
185.55.76.0/22
185.156.64.0/22
185.160.180.0/22
185.160.252.0/22
185.162.224.0/22
185.166.128.0/22
185.181.196.0/22
185.182.88.0/22
185.197.60.0/22
185.207.108.0/22
185.210.196.0/22
185.216.76.0/22
185.217.40.0/22
185.220.60.0/22
185.221.204.0/22
185.226.220.0/22
185.234.36.0/22
185.241.248.0/22
192.166.44.0/22
193.39.252.0/22
194.39.164.0/22
195.69.102.0/24
IPv6:
2a02:21a8::/47
2a02:22d0::/32
2a09:b200:6::/48
2a09:b600:5::/48
2a09:ba00:4::/48
2a0c:3dc0::/29
Signature Algorithm: sha256WithRSAEncryption
c1:d6:35:8c:7f:ae:fa:3c:e4:10:6e:e0:a3:85:4f:ca:58:ae:
a7:4e:65:1d:e8:0b:ee:de:0d:23:1b:e9:8c:a3:ad:1e:9b:44:
15:8c:78:0d:cd:9b:02:7a:d7:a4:32:b6:6c:2d:3f:9e:d1:09:
c1:c2:42:22:7b:a2:51:0d:6d:85:0b:e3:e4:09:e6:52:38:dd:
55:dc:68:3c:73:37:8a:22:a3:a0:96:76:70:1f:f7:64:c8:d9:
f9:19:b9:6c:30:ad:95:26:36:d1:61:b3:e7:6c:a2:f8:82:72:
10:c8:14:cb:77:2f:25:3a:16:5f:bc:3f:a2:30:cb:83:91:88:
6b:6e:d9:3c:d8:df:64:7a:b8:d6:ec:7e:d0:80:84:a3:24:e7:
74:a3:4e:b1:10:c2:a9:44:80:0a:51:f0:c5:9d:7a:3a:c2:f4:
74:3d:71:8c:6b:c2:b0:f5:ba:b5:24:19:07:1a:0b:0f:6b:89:
1c:72:cd:e7:4e:bf:37:c6:1d:10:cf:18:fb:ef:c7:62:d2:f8:
58:91:ed:a7:85:c4:73:53:53:ca:68:ab:2d:4d:92:62:bd:dd:
21:fc:71:e6:94:a9:a0:f2:80:dc:ea:62:23:26:cf:a2:54:da:
f1:79:ac:72:b2:93:17:69:5e:a4:74:b4:ba:f0:1b:fd:2a:38:
83:00:bb:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:39:21 2025 by rpki-client