Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/bWaRSsjM-nE8sxiBWoqf8IiFt84.roa
File: bWaRSsjM-nE8sxiBWoqf8IiFt84.roa (raw, json)
Hash identifier: 0BFDVLlgDQdiwerx/xTV/PzpNpqymrUVZyJvsRa1aQ4=
Subject key identifier: 6D:66:91:4A:C8:CC:FA:71:3C:B3:18:81:5A:8A:9F:F0:88:85:B7:CE
Certificate issuer: /CN=3b230442feae9fc26b8bd887faa0ed0275827a58
Certificate serial: 0186FE81886F4DACFEF0C6C6840DA806E798
Authority key identifier: 3B:23:04:42:FE:AE:9F:C2:6B:8B:D8:87:FA:A0:ED:02:75:82:7A:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OyMEQv6un8Jri9iH-qDtAnWCelg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/bWaRSsjM-nE8sxiBWoqf8IiFt84.roa
Signing time: Mon 20 Mar 2023 10:12:27 +0000
ROA not before: Mon 20 Mar 2023 10:12:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48951
IP address blocks: 82.210.192.0/18 maxlen: 18
82.210.224.0/19 maxlen: 19
78.140.64.0/24 maxlen: 24
78.140.64.0/21 maxlen: 21
82.210.254.0/24 maxlen: 24
78.140.65.0/24 maxlen: 24
78.140.64.0/18 maxlen: 18
78.140.67.0/24 maxlen: 24
82.210.255.0/24 maxlen: 24
78.140.66.0/24 maxlen: 24
78.140.68.0/24 maxlen: 24
78.140.72.0/22 maxlen: 22
78.140.72.0/24 maxlen: 24
78.140.76.0/24 maxlen: 24
78.140.76.0/22 maxlen: 22
78.140.81.0/24 maxlen: 24
78.140.80.0/23 maxlen: 23
78.140.80.0/24 maxlen: 24
93.122.80.0/22 maxlen: 22
93.122.84.0/22 maxlen: 22
81.7.208.0/22 maxlen: 22
81.7.208.0/21 maxlen: 21
93.122.88.0/22 maxlen: 22
93.122.92.0/22 maxlen: 22
81.7.216.0/21 maxlen: 21
81.7.216.0/22 maxlen: 22
81.7.220.0/22 maxlen: 22
93.122.28.0/22 maxlen: 22
93.122.32.0/22 maxlen: 22
93.122.36.0/22 maxlen: 22
93.122.44.0/22 maxlen: 22
93.122.40.0/22 maxlen: 22
93.122.48.0/22 maxlen: 22
93.122.52.0/22 maxlen: 22
93.122.56.0/22 maxlen: 22
93.122.60.0/22 maxlen: 22
93.122.64.0/22 maxlen: 22
81.7.192.0/19 maxlen: 19
93.122.68.0/22 maxlen: 22
93.122.72.0/21 maxlen: 21
93.122.0.0/17 maxlen: 17
93.122.16.0/22 maxlen: 22
93.122.20.0/22 maxlen: 22
93.122.24.0/22 maxlen: 22
2a01:666:400::/40 maxlen: 40
2a01:666::/40 maxlen: 40
2a01:666::/32 maxlen: 32
2a01:667::/40 maxlen: 40
2a01:667:400::/40 maxlen: 40
2a01:667::/32 maxlen: 32
2a01:664:1200::/40 maxlen: 40
2a01:664:1600::/40 maxlen: 40
2a01:664:1700::/40 maxlen: 40
2a01:664:1800::/40 maxlen: 40
2a01:664:1900::/40 maxlen: 40
2a01:664:1a00::/40 maxlen: 40
2a01:664:1300::/40 maxlen: 40
2a01:664:800::/38 maxlen: 38
2a01:664:1200::/39 maxlen: 39
Validation: Failed, certificate revoked on Wed 29 Mar 2023 08:42:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:fe:81:88:6f:4d:ac:fe:f0:c6:c6:84:0d:a8:06:e7:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b230442feae9fc26b8bd887faa0ed0275827a58
Validity
Not Before: Mar 20 10:12:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d66914ac8ccfa713cb318815a8a9ff08885b7ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:5d:0d:69:ca:ce:39:9e:9b:07:0a:d8:3f:a1:
90:fa:cf:56:80:7b:f7:2f:81:90:21:47:44:cb:a9:
17:26:4a:91:d4:a8:f4:f5:da:b3:e5:ca:5d:82:2b:
1a:46:ae:8c:9f:ed:bb:a1:89:3d:4b:1d:f8:8b:3f:
b9:93:fc:fc:e4:0f:3b:6d:3d:f3:b8:21:df:2d:11:
d5:a7:8d:f5:c0:02:34:12:95:19:6a:80:d3:e0:5a:
7b:95:6e:f9:f1:7f:5d:59:9c:45:10:45:7a:fe:b9:
5f:6d:7d:e7:4d:0e:40:c4:19:76:eb:61:4e:34:8c:
8d:a6:04:73:aa:8b:81:5e:4d:fd:e1:2d:3f:79:c9:
f6:fa:31:2b:0b:ab:3d:b1:bc:36:e1:d7:26:0d:9f:
26:4d:a5:48:89:c6:93:22:ea:37:51:2f:c8:0b:00:
d2:ae:cf:b2:6b:3e:b0:c1:b0:5a:84:b6:3b:65:62:
32:2f:0c:1f:b7:44:06:4f:88:d0:75:df:88:1f:78:
97:42:95:10:f0:26:80:8f:69:48:ea:33:d1:c2:0f:
6d:4f:43:bf:f0:61:e2:74:04:ad:f7:69:f9:a9:8f:
28:87:83:ee:7b:46:a9:23:a1:d3:05:e2:75:ff:a9:
2e:9b:2d:90:65:c1:e3:51:88:cb:92:1e:72:9f:63:
2b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:66:91:4A:C8:CC:FA:71:3C:B3:18:81:5A:8A:9F:F0:88:85:B7:CE
X509v3 Authority Key Identifier:
keyid:3B:23:04:42:FE:AE:9F:C2:6B:8B:D8:87:FA:A0:ED:02:75:82:7A:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OyMEQv6un8Jri9iH-qDtAnWCelg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/bWaRSsjM-nE8sxiBWoqf8IiFt84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/OyMEQv6un8Jri9iH-qDtAnWCelg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.140.64.0/18
81.7.192.0/19
82.210.192.0/18
93.122.0.0/17
IPv6:
2a01:664:800::/38
2a01:664:1200::/39
2a01:664:1600::-2a01:664:1aff:ffff:ffff:ffff:ffff:ffff
2a01:666::/31
Signature Algorithm: sha256WithRSAEncryption
34:f1:03:ab:9e:8b:37:05:b5:17:b6:47:3c:be:3e:5d:a7:74:
e0:fd:24:21:40:d1:9d:21:4e:b0:fa:86:44:eb:85:cb:32:50:
a6:d0:f2:c3:96:22:c1:bb:12:fa:67:12:62:b0:4a:e6:dd:f1:
55:41:19:76:03:3b:03:f5:ce:8b:d5:af:ac:74:b4:2f:fd:2b:
d3:8d:77:c2:29:b9:fa:83:59:b5:a5:20:c3:06:ad:17:9b:8e:
70:6d:7e:d4:f7:36:f1:76:66:23:ca:ed:22:a4:73:b5:2e:0a:
3b:20:3c:74:32:6c:5d:35:1c:ce:46:03:62:9f:8f:38:3d:4b:
fe:cf:20:54:cd:0a:a2:1b:25:37:f2:dc:cd:ae:90:fc:a6:03:
2a:16:74:80:34:c7:fe:3e:94:69:95:8a:ce:1a:16:61:09:44:
4b:05:f3:51:11:30:0b:1d:36:59:d5:fc:ff:4f:aa:23:a2:df:
46:a2:bf:5a:4a:d9:08:bc:16:cc:4b:83:8c:ff:a7:01:b3:ec:
c4:ec:da:0b:49:2b:1f:50:8c:f3:b0:b9:ca:04:92:fb:18:63:
62:6c:c6:06:5a:ef:60:b1:f8:a9:7c:f7:60:a2:0c:3a:8b:77:
80:1c:3f:ff:bf:26:0a:85:9d:a2:8f:c8:8e:8c:0f:de:34:6d:
86:29:3b:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:00 2024 by rpki-client on console-fra.rpki-client.org