Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/4bEAAc6Ed3LPWdme7zonglzkIwg.roa
File: 4bEAAc6Ed3LPWdme7zonglzkIwg.roa (raw, json)
Hash identifier: uOIrKPrL0B7+EpuD/lqKsyZZbLBDXZqbTX9GCGOgoX8=
Subject key identifier: E1:B1:00:01:CE:84:77:72:CF:59:D9:9E:EF:3A:27:82:5C:E4:23:08
Certificate issuer: /CN=1ada225cb7f29416e7534695fbfb21762fee93c8
Certificate serial: 018AF6496A7FC8EBA386FB1A97D741705EF2
Authority key identifier: 1A:DA:22:5C:B7:F2:94:16:E7:53:46:95:FB:FB:21:76:2F:EE:93:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtoiXLfylBbnU0aV-_shdi_uk8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/4bEAAc6Ed3LPWdme7zonglzkIwg.roa
Signing time: Tue 03 Oct 2023 16:05:21 +0000
ROA not before: Tue 03 Oct 2023 16:05:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5378
IP address blocks: 212.228.128.0/18 maxlen: 18
83.107.64.0/18 maxlen: 18
212.228.64.0/18 maxlen: 18
83.107.0.0/18 maxlen: 18
62.49.192.0/18 maxlen: 18
212.248.128.0/17 maxlen: 17
212.225.0.0/17 maxlen: 17
83.104.64.0/18 maxlen: 18
212.229.0.0/18 maxlen: 18
83.107.192.0/18 maxlen: 18
83.104.0.0/18 maxlen: 18
83.104.0.0/14 maxlen: 14
83.107.128.0/18 maxlen: 18
212.228.192.0/18 maxlen: 18
195.8.160.0/19 maxlen: 19
193.237.192.0/19 maxlen: 19
83.106.128.0/18 maxlen: 18
193.237.224.0/19 maxlen: 19
193.237.128.0/21 maxlen: 21
193.237.136.0/22 maxlen: 22
193.237.144.0/21 maxlen: 21
193.237.140.0/22 maxlen: 22
193.237.152.0/21 maxlen: 21
83.106.64.0/18 maxlen: 18
62.49.0.0/18 maxlen: 18
193.237.160.0/19 maxlen: 19
62.49.0.0/16 maxlen: 16
212.228.0.0/18 maxlen: 18
83.106.192.0/18 maxlen: 18
62.49.128.0/18 maxlen: 18
62.56.64.0/18 maxlen: 18
212.228.0.0/15 maxlen: 15
62.49.64.0/18 maxlen: 18
62.56.0.0/17 maxlen: 17
62.56.0.0/18 maxlen: 18
83.105.128.0/18 maxlen: 18
77.233.128.0/19 maxlen: 19
193.237.0.0/19 maxlen: 19
193.237.0.0/16 maxlen: 16
83.105.64.0/18 maxlen: 18
80.176.0.0/15 maxlen: 15
195.58.64.0/19 maxlen: 19
193.237.96.0/19 maxlen: 19
83.106.0.0/18 maxlen: 18
193.237.32.0/19 maxlen: 19
83.105.192.0/18 maxlen: 18
193.237.64.0/19 maxlen: 19
212.229.78.0/23 maxlen: 23
212.229.72.0/22 maxlen: 22
212.229.76.0/23 maxlen: 23
212.229.80.0/21 maxlen: 21
212.229.88.0/21 maxlen: 21
212.229.96.0/19 maxlen: 19
83.104.192.0/18 maxlen: 18
83.104.128.0/18 maxlen: 18
212.229.64.0/21 maxlen: 21
212.229.192.0/18 maxlen: 18
212.229.128.0/18 maxlen: 18
83.105.0.0/18 maxlen: 18
2a0a:ef40::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 05 Oct 2023 14:55:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f6:49:6a:7f:c8:eb:a3:86:fb:1a:97:d7:41:70:5e:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ada225cb7f29416e7534695fbfb21762fee93c8
Validity
Not Before: Oct 3 16:05:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1b10001ce847772cf59d99eef3a27825ce42308
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d5:15:8a:9e:d5:3f:74:a7:17:fb:0b:29:21:
40:c5:fb:0d:87:af:9d:4d:7a:af:18:76:11:40:ac:
7c:91:25:2b:35:2e:7b:ff:ea:19:8d:69:c1:08:11:
b5:68:36:27:2c:61:2f:c5:ec:02:a5:22:8b:40:b6:
37:97:91:a2:36:ec:95:1f:e3:4d:8a:14:7c:60:e1:
64:8b:39:ad:d0:42:97:98:93:f2:37:e4:d4:b6:f6:
da:fa:27:43:50:e2:4f:f4:3b:e9:3a:ab:94:7e:4a:
ad:82:f8:52:9d:16:af:00:60:56:17:ee:b8:e8:ef:
69:70:af:21:68:b7:95:ca:95:3c:45:11:49:b3:48:
c1:60:57:bc:d6:db:73:39:15:6f:12:21:21:a4:b0:
ee:1a:a8:07:ad:4c:63:37:9f:d7:60:f9:65:e4:ea:
b8:85:8f:e3:ec:d8:b2:0e:36:ef:80:48:68:25:a6:
2e:a7:85:d1:4f:10:45:db:0a:51:31:ff:1a:42:b7:
8c:00:cb:75:5c:12:59:04:bd:a7:eb:f8:45:ac:bc:
6c:32:2f:ac:92:72:84:d6:fe:8c:59:c1:31:f6:c2:
7a:f0:e6:01:e0:e6:a4:fd:2f:7d:11:1a:d4:b7:59:
5f:e0:d4:6b:83:6a:7f:91:e9:e4:47:cd:22:80:28:
bd:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:B1:00:01:CE:84:77:72:CF:59:D9:9E:EF:3A:27:82:5C:E4:23:08
X509v3 Authority Key Identifier:
keyid:1A:DA:22:5C:B7:F2:94:16:E7:53:46:95:FB:FB:21:76:2F:EE:93:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtoiXLfylBbnU0aV-_shdi_uk8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/4bEAAc6Ed3LPWdme7zonglzkIwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/GtoiXLfylBbnU0aV-_shdi_uk8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.49.0.0/16
62.56.0.0/17
77.233.128.0/19
80.176.0.0/15
83.104.0.0/14
193.237.0.0/16
195.8.160.0/19
195.58.64.0/19
212.225.0.0/17
212.228.0.0/15
212.248.128.0/17
IPv6:
2a0a:ef40::/29
Signature Algorithm: sha256WithRSAEncryption
b8:fe:3c:3d:f2:90:fe:e2:bd:66:90:11:09:9d:5c:cb:14:7e:
7d:ff:5e:ad:e7:cd:2c:9e:31:4f:3f:24:8b:b3:f8:5e:e7:77:
aa:7c:7e:ca:88:fe:e8:78:44:0a:06:2d:82:4b:e9:83:97:63:
5c:8d:64:08:ac:19:4f:b8:96:ef:93:a5:f7:de:37:63:3d:3e:
90:70:ab:87:3a:95:77:fc:e8:50:94:91:92:ae:42:90:98:95:
32:2d:62:2f:dc:c7:40:73:5b:3d:58:87:63:3e:b7:71:e6:42:
46:20:2c:7d:8b:b0:ff:36:3d:47:59:d1:fa:12:b2:b7:54:ea:
c6:40:03:b0:9c:41:22:62:d5:fa:0f:ee:c1:07:e5:f3:62:e8:
33:3f:1e:d9:eb:57:9e:27:a2:3c:60:32:7e:e2:6a:49:15:f6:
2b:2e:da:bf:58:9a:14:50:4a:65:3a:55:ef:cc:a4:49:04:d7:
9f:bd:d7:c8:db:4c:bd:2e:e6:78:44:ae:77:14:2a:31:c2:72:
d1:24:8c:38:c1:8f:09:62:eb:8d:6a:3d:fd:73:44:58:dc:e4:
49:2c:e0:2f:bb:7d:92:37:cf:d1:36:8d:e5:11:32:67:2b:53:
43:45:a5:0c:ff:fe:1f:3e:89:07:2f:51:8c:88:ab:d8:bb:8f:
84:3e:89:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:10 2024 by rpki-client on console-fra.rpki-client.org