Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/12d691-37a4-4b15-a7ea-bd37da0e447c/1/2I821UlzkwBdT1Ty_oW0Om0d6TI.roa
File: 2I821UlzkwBdT1Ty_oW0Om0d6TI.roa (raw, json)
Hash identifier: MHlfWoD6IJfwPHir7fPusz1bHGUqAZPPUjcRPxVEPd0=
Subject key identifier: D8:8F:36:D5:49:73:93:00:5D:4F:54:F2:FE:85:B4:3A:6D:1D:E9:32
Certificate issuer: /CN=fb79c26f31575345159c840ed278a878a9256615
Certificate serial: 01856CCACCDABB2D69A5CD0FBE774FBF4506
Authority key identifier: FB:79:C2:6F:31:57:53:45:15:9C:84:0E:D2:78:A8:78:A9:25:66:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-3nCbzFXU0UVnIQO0nioeKklZhU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/12d691-37a4-4b15-a7ea-bd37da0e447c/1/2I821UlzkwBdT1Ty_oW0Om0d6TI.roa
Signing time: Sun 01 Jan 2023 10:05:08 +0000
ROA not before: Sun 01 Jan 2023 10:05:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51430
IP address blocks: 128.127.104.0/23 maxlen: 23
128.127.108.0/24 maxlen: 24
128.127.110.0/23 maxlen: 23
128.127.109.0/24 maxlen: 24
128.127.106.0/23 maxlen: 23
37.46.112.0/24 maxlen: 24
37.46.117.0/24 maxlen: 24
37.46.118.0/23 maxlen: 23
37.46.114.0/24 maxlen: 24
37.46.113.0/24 maxlen: 24
37.46.116.0/24 maxlen: 24
37.46.115.0/24 maxlen: 24
37.46.124.0/22 maxlen: 22
37.46.121.0/24 maxlen: 24
37.46.120.0/24 maxlen: 24
37.46.123.0/24 maxlen: 24
37.46.122.0/24 maxlen: 24
91.214.44.0/24 maxlen: 24
91.214.47.0/24 maxlen: 24
213.5.64.0/21 maxlen: 21
185.2.31.0/24 maxlen: 24
185.2.29.0/24 maxlen: 24
185.2.28.0/24 maxlen: 24
185.2.30.0/24 maxlen: 24
79.142.79.0/24 maxlen: 24
31.3.152.0/22 maxlen: 22
31.3.158.0/23 maxlen: 23
31.3.157.0/24 maxlen: 24
31.3.156.0/24 maxlen: 24
185.7.35.0/24 maxlen: 24
185.7.34.0/24 maxlen: 24
185.7.32.0/24 maxlen: 24
185.7.33.0/24 maxlen: 24
185.10.56.0/22 maxlen: 22
79.142.64.0/22 maxlen: 24
79.142.71.0/24 maxlen: 24
79.142.69.0/24 maxlen: 24
79.142.68.0/24 maxlen: 24
79.142.70.0/24 maxlen: 24
79.142.78.0/24 maxlen: 24
79.142.76.0/23 maxlen: 23
79.142.72.0/24 maxlen: 24
79.142.74.0/23 maxlen: 23
79.142.73.0/24 maxlen: 24
2a00:7143:101::/48 maxlen: 48
2a00:7145:c1::/48 maxlen: 48
2a00:7147:e3::/48 maxlen: 48
2a00:7147:e6::/48 maxlen: 48
2a00:7143::/32 maxlen: 32
2a00:7145:b1::/48 maxlen: 48
2a00:7145:c2::/48 maxlen: 48
2a00:7147:e9::/48 maxlen: 48
2a00:7147:22::/48 maxlen: 48
2a00:7147:e2::/48 maxlen: 48
2a00:7147:e5::/48 maxlen: 48
2a00:7140::/32 maxlen: 32
2a00:7146::/48 maxlen: 48
2a00:7145::/48 maxlen: 48
2a00:7147:e8::/48 maxlen: 48
2a00:7142::/32 maxlen: 32
2a00:7147:e1::/48 maxlen: 48
2a00:7147:e10::/48 maxlen: 48
2a00:7147:e4::/48 maxlen: 48
2a00:7144::/32 maxlen: 32
2a00:7147:e7::/48 maxlen: 48
2a00:7147:b1::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:cc:da:bb:2d:69:a5:cd:0f:be:77:4f:bf:45:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb79c26f31575345159c840ed278a878a9256615
Validity
Not Before: Jan 1 10:05:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d88f36d5497393005d4f54f2fe85b43a6d1de932
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1d:ff:2c:84:fb:32:ce:01:5d:4c:2f:3d:ef:
0c:a6:b5:f8:29:9d:43:be:73:6c:6d:b5:c5:4a:67:
aa:a3:e6:b7:7a:9f:b5:4e:40:8b:4d:52:4e:9d:29:
16:1d:f5:5d:99:c5:45:f8:37:7a:f0:70:b9:e2:cc:
e0:ce:14:72:06:41:c0:a4:d0:b0:96:a6:0a:ec:02:
64:b4:0b:4a:f1:fc:d8:cb:1f:2a:2f:20:df:20:d5:
72:28:91:46:ad:a2:97:79:f5:0b:32:e1:38:76:0b:
73:a4:24:fc:1f:98:26:4b:07:2d:5a:dd:1f:db:59:
9e:25:c4:6b:a3:a2:f7:45:10:32:8e:e8:51:ff:52:
a7:a7:84:14:cf:28:72:88:c0:86:0c:52:55:f9:f7:
4f:1a:b4:94:e6:68:e7:04:ca:b7:4a:dc:2d:97:45:
59:77:5c:48:49:73:a0:e5:81:0e:4b:0f:ad:28:17:
96:62:10:04:fd:83:c1:fb:52:be:e9:47:3f:a2:90:
bf:97:cf:1d:50:57:67:f9:e4:0f:4d:47:59:50:2b:
36:3a:cb:a1:6c:80:7a:d6:1b:82:b8:5a:9b:fa:88:
a3:27:8c:cd:28:6d:65:fc:e1:77:b3:63:9d:60:25:
df:09:4e:b5:e5:09:44:06:45:26:48:79:79:e8:e8:
29:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:8F:36:D5:49:73:93:00:5D:4F:54:F2:FE:85:B4:3A:6D:1D:E9:32
X509v3 Authority Key Identifier:
keyid:FB:79:C2:6F:31:57:53:45:15:9C:84:0E:D2:78:A8:78:A9:25:66:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-3nCbzFXU0UVnIQO0nioeKklZhU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/12d691-37a4-4b15-a7ea-bd37da0e447c/1/2I821UlzkwBdT1Ty_oW0Om0d6TI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/12d691-37a4-4b15-a7ea-bd37da0e447c/1/1-3nCbzFXU0UVnIQO0nioeKklZhU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.3.152.0/21
37.46.112.0/20
79.142.64.0/20
91.214.44.0/24
91.214.47.0/24
128.127.104.0/21
185.2.28.0/22
185.7.32.0/22
185.10.56.0/22
213.5.64.0/21
IPv6:
2a00:7140::/32
2a00:7142::-2a00:7145:0:ffff:ffff:ffff:ffff:ffff
2a00:7145:b1::/48
2a00:7145:c1::-2a00:7145:c2:ffff:ffff:ffff:ffff:ffff
2a00:7146::/48
2a00:7147:22::/48
2a00:7147:b1::/48
2a00:7147:e1::-2a00:7147:e9:ffff:ffff:ffff:ffff:ffff
2a00:7147:e10::/48
Signature Algorithm: sha256WithRSAEncryption
91:46:25:02:e6:86:cd:ed:42:0c:d1:22:25:6d:33:44:b5:35:
f9:45:49:33:68:05:07:4c:82:79:af:36:ce:91:39:40:47:7d:
51:ba:fe:7a:8c:b4:55:5f:03:c2:59:f7:46:84:d7:51:37:16:
cf:d5:50:bc:60:66:33:ea:45:c6:dd:1f:95:61:87:38:8f:3d:
dc:14:51:05:41:f0:97:ce:44:2d:c8:72:29:2e:7b:42:65:fd:
5b:33:35:f5:7f:26:c9:b7:5d:bc:d5:b5:96:22:b6:62:6a:b1:
09:90:5a:5e:ac:6a:39:3e:25:c2:cc:54:b0:c0:be:52:2c:bb:
1a:99:ba:f5:95:7e:fa:11:9f:b7:83:31:a5:dd:07:94:ba:79:
f2:40:57:7d:0e:50:33:02:89:ed:4c:02:8f:91:9d:1d:a4:c4:
9a:bb:70:61:99:9c:63:2d:75:fa:30:60:22:9a:f0:a3:43:dc:
e4:93:0c:86:99:fb:b5:bf:47:87:d0:38:e8:bf:04:be:4c:2b:
2e:e2:92:ed:38:7b:57:f0:c8:b0:4a:00:69:91:83:60:17:4c:
b0:e2:0c:68:b4:26:4f:ba:2f:59:5f:ac:07:78:47:e7:31:58:
ed:88:0d:35:63:79:33:2d:2c:b1:64:62:66:a4:91:bf:34:0f:
bc:cb:b9:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 5 09:59:02 2023 by rpki-client on console-fra.rpki-client.org