Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/1Izcdcdqfq8R_adwlRAbALsJwfE.roa
File: 1Izcdcdqfq8R_adwlRAbALsJwfE.roa (raw, json)
Hash identifier: iAU0g2F/WbHUICstwFVLdIqXzQfliCltreVHb4XV0pU=
Subject key identifier: D4:8C:DC:75:C7:6A:7E:AF:11:FD:A7:70:95:10:1B:00:BB:09:C1:F1
Certificate issuer: /CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Certificate serial: 018AAEFB28B4E1B547246A2184BEA808D5C0
Authority key identifier: 31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/1Izcdcdqfq8R_adwlRAbALsJwfE.roa
Signing time: Tue 19 Sep 2023 19:46:50 +0000
ROA not before: Tue 19 Sep 2023 19:46:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398373
IP address blocks: 85.153.12.0/22 maxlen: 22
85.153.24.0/22 maxlen: 22
85.153.29.0/24 maxlen: 24
85.153.32.0/24 maxlen: 24
85.153.34.0/24 maxlen: 24
85.153.35.0/24 maxlen: 24
85.153.36.0/22 maxlen: 22
85.153.41.0/24 maxlen: 24
85.153.42.0/24 maxlen: 24
85.153.40.0/24 maxlen: 24
85.153.52.0/22 maxlen: 22
85.153.59.0/24 maxlen: 24
85.153.60.0/22 maxlen: 22
85.115.204.0/24 maxlen: 24
85.115.207.0/24 maxlen: 24
85.153.4.0/24 maxlen: 24
85.153.125.0/24 maxlen: 24
85.153.124.0/24 maxlen: 24
85.153.121.0/24 maxlen: 24
85.153.123.0/24 maxlen: 24
85.153.122.0/24 maxlen: 24
85.153.120.0/24 maxlen: 24
85.153.119.0/24 maxlen: 24
85.153.68.0/22 maxlen: 22
85.153.66.0/24 maxlen: 24
85.153.65.0/24 maxlen: 24
85.153.67.0/24 maxlen: 24
85.153.73.0/24 maxlen: 24
85.153.72.0/24 maxlen: 24
85.153.82.0/24 maxlen: 24
85.153.84.0/22 maxlen: 22
85.153.80.0/24 maxlen: 24
85.153.81.0/24 maxlen: 24
85.153.88.0/22 maxlen: 22
85.153.94.0/24 maxlen: 24
85.153.95.0/24 maxlen: 24
85.153.92.0/24 maxlen: 24
85.153.108.0/22 maxlen: 22
85.153.113.0/24 maxlen: 24
85.153.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ae:fb:28:b4:e1:b5:47:24:6a:21:84:be:a8:08:d5:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Validity
Not Before: Sep 19 19:46:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d48cdc75c76a7eaf11fda77095101b00bb09c1f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:db:31:bf:61:e8:58:51:22:6a:e3:33:3d:73:
90:b9:67:46:86:9b:a9:42:42:dc:ee:18:47:43:25:
42:0a:00:2f:15:29:4e:2a:fc:30:ce:39:05:91:68:
27:9c:fb:7d:c4:d7:35:d9:9a:65:4e:45:c3:1e:02:
18:ed:e9:71:a4:38:d5:ee:76:21:00:95:98:95:a6:
67:17:82:47:79:53:ca:91:4e:d9:3f:ca:db:7b:8c:
37:cd:73:7f:44:e1:2b:64:dd:f0:a2:13:b7:ad:2f:
d9:11:c2:83:a7:2d:59:81:a4:64:c0:6e:86:5c:ab:
6e:09:a7:9d:ff:10:50:b3:98:c5:b8:68:a7:8c:2e:
9b:c3:3c:04:ab:19:09:2b:62:ae:ca:7f:01:62:58:
ed:21:25:5f:ce:d8:78:9e:9b:f6:be:db:da:b5:f3:
74:bf:6c:e9:9a:9b:b2:61:ac:53:8c:89:78:20:47:
25:f0:b7:14:a1:39:c4:47:12:fb:59:69:d6:a1:f0:
fa:19:67:15:3c:c4:b0:38:ca:05:8f:70:4c:6b:08:
60:21:3c:37:be:76:ac:23:9a:49:0e:33:45:24:9e:
54:f6:57:d0:93:9f:bd:39:d5:60:04:0c:9a:da:2c:
29:1f:75:36:32:92:17:34:af:57:79:e9:47:91:a6:
0e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:8C:DC:75:C7:6A:7E:AF:11:FD:A7:70:95:10:1B:00:BB:09:C1:F1
X509v3 Authority Key Identifier:
keyid:31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/1Izcdcdqfq8R_adwlRAbALsJwfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/MaGF0OsMp4EcWGQl3g6WDhz-ths.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.204.0/24
85.115.207.0/24
85.153.4.0/24
85.153.12.0/22
85.153.24.0/22
85.153.29.0/24
85.153.32.0/24
85.153.34.0-85.153.42.255
85.153.52.0/22
85.153.59.0-85.153.63.255
85.153.65.0-85.153.73.255
85.153.80.0-85.153.82.255
85.153.84.0-85.153.92.255
85.153.94.0/23
85.153.108.0/22
85.153.113.0/24
85.153.118.0-85.153.125.255
Signature Algorithm: sha256WithRSAEncryption
36:dd:fd:e7:d8:6f:e9:b4:eb:be:07:8d:5b:52:3e:ad:d4:95:
cc:13:6a:a2:52:8f:2d:cd:ba:9a:d9:d7:8f:78:b2:66:c3:c4:
ad:cf:cd:6b:b3:21:f9:8a:35:22:c3:55:d5:9a:03:06:91:37:
58:86:47:a4:6a:78:36:ff:e9:36:c2:b9:3a:09:2a:53:9e:a4:
88:8d:09:a1:d2:db:d4:5d:c6:b0:e8:1f:f9:c6:f7:0a:4e:04:
ff:c1:25:d4:2b:ff:f2:6c:c3:22:54:b6:cf:89:fb:63:23:53:
f0:23:fd:6f:18:90:ef:84:e0:40:d8:06:1d:38:3e:6f:90:26:
49:85:53:c1:ff:dd:1c:49:3c:85:37:d8:b8:9a:44:03:a9:c4:
d0:df:81:4e:d8:b5:d9:9f:92:c0:5c:bb:65:e2:b2:46:1d:88:
60:9f:fa:aa:cc:6f:c2:90:49:1d:1d:f9:71:0e:c3:0a:5c:69:
e7:02:fa:97:2d:8b:54:96:fa:e3:3a:af:58:be:a1:40:e8:b6:
0d:62:58:be:32:53:7e:ac:bc:7f:c1:37:85:a4:bc:a8:35:7b:
be:35:ff:50:00:95:56:9d:91:55:b7:23:1b:ef:9e:73:36:0d:
ba:5d:fe:e5:36:3e:b9:91:af:c2:a8:3d:90:c5:3c:ae:63:a8:
8d:6b:32:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:43 2024 by rpki-client on console-fra.rpki-client.org