Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/D3FP0ZasFI-tpNghfg8Xovpr_5o.roa
File: D3FP0ZasFI-tpNghfg8Xovpr_5o.roa (raw, json)
Hash identifier: znt+HbpRNJCmvu74CwDDbbTmqyh8e05FAubXDNnhcFY=
Subject key identifier: 0F:71:4F:D1:96:AC:14:8F:AD:A4:D8:21:7E:0F:17:A2:FA:6B:FF:9A
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 018867C292336F2C97A1C8B5F57B4240D0EC
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/D3FP0ZasFI-tpNghfg8Xovpr_5o.roa
Signing time: Mon 29 May 2023 13:46:24 +0000
ROA not before: Mon 29 May 2023 13:46:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3214
IP address blocks: 80.66.196.0/22 maxlen: 24
92.60.40.0/23 maxlen: 23
92.60.41.0/24 maxlen: 24
92.60.42.0/24 maxlen: 24
92.60.40.0/24 maxlen: 24
185.255.55.0/24 maxlen: 24
185.255.53.0/24 maxlen: 24
185.255.52.0/22 maxlen: 24
45.80.188.0/22 maxlen: 24
62.133.35.0/24 maxlen: 24
62.133.33.0/24 maxlen: 24
62.133.32.0/24 maxlen: 24
62.133.32.0/22 maxlen: 24
88.214.20.0/22 maxlen: 24
45.147.48.0/24 maxlen: 32
45.147.49.0/24 maxlen: 32
45.153.244.0/22 maxlen: 24
95.214.164.0/22 maxlen: 24
185.248.84.0/22 maxlen: 24
185.194.52.0/22 maxlen: 24
91.200.241.0/24 maxlen: 24
45.11.45.0/24 maxlen: 24
141.98.196.0/22 maxlen: 24
147.78.179.0/24 maxlen: 24
147.78.177.0/24 maxlen: 24
147.78.178.0/24 maxlen: 24
147.78.176.0/24 maxlen: 24
147.78.176.0/22 maxlen: 24
147.78.241.0/24 maxlen: 24
185.200.64.0/22 maxlen: 24
45.139.192.0/22 maxlen: 24
185.254.75.0/24 maxlen: 24
185.254.73.0/24 maxlen: 24
45.92.157.0/24 maxlen: 24
185.254.74.0/24 maxlen: 24
185.213.151.0/24 maxlen: 24
185.213.149.0/24 maxlen: 24
185.213.148.0/22 maxlen: 24
185.213.148.0/24 maxlen: 24
147.78.240.0/24 maxlen: 24
194.124.216.0/24 maxlen: 24
45.131.152.0/22 maxlen: 24
194.124.228.0/24 maxlen: 24
194.124.227.0/24 maxlen: 24
213.232.112.0/22 maxlen: 24
195.245.241.0/24 maxlen: 24
195.245.242.0/24 maxlen: 24
194.104.152.0/22 maxlen: 24
194.124.213.0/24 maxlen: 24
193.111.90.0/23 maxlen: 24
193.177.220.0/22 maxlen: 24
194.36.222.0/23 maxlen: 24
94.124.116.0/22 maxlen: 24
45.90.210.0/24 maxlen: 24
193.111.30.0/23 maxlen: 24
195.245.219.0/24 maxlen: 24
185.49.32.0/22 maxlen: 24
45.130.23.0/24 maxlen: 24
45.130.21.0/24 maxlen: 24
79.143.140.0/22 maxlen: 24
45.130.22.0/24 maxlen: 24
45.130.20.0/24 maxlen: 24
45.130.20.0/22 maxlen: 24
194.36.24.0/24 maxlen: 24
45.143.233.0/24 maxlen: 24
194.36.27.0/24 maxlen: 24
194.36.25.0/24 maxlen: 24
45.143.232.0/22 maxlen: 24
45.143.235.0/24 maxlen: 24
45.143.234.0/24 maxlen: 24
149.62.44.0/22 maxlen: 24
78.142.192.0/22 maxlen: 24
194.169.180.0/23 maxlen: 24
78.142.193.0/24 maxlen: 32
78.142.228.0/22 maxlen: 24
45.13.199.0/24 maxlen: 24
45.13.198.0/24 maxlen: 24
109.94.168.0/22 maxlen: 24
194.169.54.0/24 maxlen: 24
194.169.54.0/23 maxlen: 24
185.222.216.0/21 maxlen: 24
185.222.216.0/22 maxlen: 24
185.222.220.0/24 maxlen: 24
2a06:4fc0::/29 maxlen: 48
2a07:e900::/29 maxlen: 48
2a09:0:7::/48 maxlen: 48
2a06:57c0::/29 maxlen: 48
2a09:0:4::/48 maxlen: 48
2a09::/29 maxlen: 48
2a0b:4080::/32 maxlen: 48
2a0d:3640::/29 maxlen: 48
2a0c:ed40::/29 maxlen: 48
2a09:0:1::/48 maxlen: 48
2a09:0:1337::/48 maxlen: 64
2a0d:de80::/29 maxlen: 48
2a09:0:6::/48 maxlen: 48
2a09:0:9::/48 maxlen: 48
2a07:fa00::/29 maxlen: 48
2a0d:7540::/29 maxlen: 48
2a03:d9c0::/29 maxlen: 48
2a09:0:3::/48 maxlen: 48
2a10:2600::/29 maxlen: 48
2a0c:59c0::/29 maxlen: 48
2a09:0:11::/48 maxlen: 48
2a0b:89c0::/29 maxlen: 48
2a09:0:8::/48 maxlen: 48
2a0d:4340::/29 maxlen: 48
2a09:0:5::/48 maxlen: 48
2a0e:6200::/29 maxlen: 48
2a07:fe00::/29 maxlen: 48
2a0d:1fc0::/29 maxlen: 48
2a03:d9c0:8000::/48 maxlen: 48
2a03:d9c0:c0de::/48 maxlen: 64
2a0d:4bc0::/29 maxlen: 48
2a09:0:2::/48 maxlen: 48
2a10:480::/29 maxlen: 48
Validation: Failed, certificate revoked on Fri 11 Aug 2023 15:27:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:67:c2:92:33:6f:2c:97:a1:c8:b5:f5:7b:42:40:d0:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: May 29 13:46:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f714fd196ac148fada4d8217e0f17a2fa6bff9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:5f:b6:b3:98:f9:36:16:c6:c7:3a:41:c9:c1:
00:55:b3:37:de:e4:49:65:c5:52:e9:de:b6:be:ea:
77:1e:2b:37:4f:1c:83:c5:c0:75:1c:20:7f:4c:fb:
ea:19:3f:06:75:31:55:4f:09:dd:18:78:7b:3b:0d:
73:7a:3e:75:5e:07:54:55:58:ad:d3:39:21:c4:b8:
64:0a:ce:0c:72:c5:96:32:f8:80:73:6b:17:1f:e2:
48:de:fd:50:9e:8f:0d:98:f2:fd:45:d8:87:da:22:
1c:6a:ed:8c:d6:94:4b:15:17:dc:ed:62:00:98:a3:
79:f0:d6:9f:4f:96:9d:0b:c6:be:4e:93:4e:7c:50:
c3:0a:f8:75:68:ae:32:df:96:b0:1a:33:92:bd:47:
49:46:e3:8a:9f:cf:49:35:6f:3e:bc:67:97:58:87:
c8:55:5f:bb:c2:d0:9a:33:f3:fa:81:ce:1c:e1:b6:
c5:5d:f5:95:83:f8:85:de:1d:d9:c4:12:2e:a6:88:
4a:24:df:27:99:cb:b6:16:0f:e6:f3:23:54:0a:93:
da:e0:48:e0:cb:3f:6a:ac:01:a3:78:23:a2:30:45:
dc:24:59:84:4f:43:17:78:07:76:1b:ab:cd:ec:70:
2a:50:33:82:7a:18:92:ca:c1:91:94:19:c4:2c:1a:
54:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:71:4F:D1:96:AC:14:8F:AD:A4:D8:21:7E:0F:17:A2:FA:6B:FF:9A
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/D3FP0ZasFI-tpNghfg8Xovpr_5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.45.0/24
45.13.198.0/23
45.80.188.0/22
45.90.210.0/24
45.92.157.0/24
45.130.20.0/22
45.131.152.0/22
45.139.192.0/22
45.143.232.0/22
45.147.48.0/23
45.153.244.0/22
62.133.32.0/22
78.142.192.0/22
78.142.228.0/22
79.143.140.0/22
80.66.196.0/22
88.214.20.0/22
91.200.241.0/24
92.60.40.0-92.60.42.255
94.124.116.0/22
95.214.164.0/22
109.94.168.0/22
141.98.196.0/22
147.78.176.0/22
147.78.240.0/23
149.62.44.0/22
185.49.32.0/22
185.194.52.0/22
185.200.64.0/22
185.213.148.0/22
185.222.216.0/21
185.248.84.0/22
185.254.73.0-185.254.75.255
185.255.52.0/22
193.111.30.0/23
193.111.90.0/23
193.177.220.0/22
194.36.24.0/23
194.36.27.0/24
194.36.222.0/23
194.104.152.0/22
194.124.213.0/24
194.124.216.0/24
194.124.227.0-194.124.228.255
194.169.54.0/23
194.169.180.0/23
195.245.219.0/24
195.245.241.0-195.245.242.255
213.232.112.0/22
IPv6:
2a03:d9c0::/29
2a06:4fc0::/29
2a06:57c0::/29
2a07:e900::/29
2a07:fa00::/29
2a07:fe00::/29
2a09::/29
2a0b:4080::/32
2a0b:89c0::/29
2a0c:59c0::/29
2a0c:ed40::/29
2a0d:1fc0::/29
2a0d:3640::/29
2a0d:4340::/29
2a0d:4bc0::/29
2a0d:7540::/29
2a0d:de80::/29
2a0e:6200::/29
2a10:480::/29
2a10:2600::/29
Signature Algorithm: sha256WithRSAEncryption
2f:f4:59:63:96:1f:98:3b:f9:e6:c7:ab:7e:4d:8e:60:2e:07:
31:43:e3:6d:3e:f9:b9:78:11:0f:77:89:77:05:c6:31:96:ad:
93:b3:91:28:ec:69:b8:f2:6d:a3:2b:95:67:a7:0e:4e:b4:be:
e0:30:58:87:50:db:6f:60:e7:04:59:18:9b:db:9f:5b:15:b9:
cc:4c:be:71:d1:53:3f:fc:5f:0a:08:c8:2e:21:fc:33:38:ee:
d3:c2:87:2f:77:1d:89:d4:98:b1:2f:0c:f9:7f:f1:19:2a:e6:
ce:81:5a:0b:aa:16:60:bf:c3:71:4a:d0:cf:1e:d7:cc:58:ab:
29:67:7f:95:94:64:d9:2e:f3:ed:12:8c:80:72:f2:e1:05:56:
f0:49:0d:0b:40:97:46:ea:c0:46:81:d9:9e:3e:a5:86:3b:e1:
5f:b3:02:3a:9e:26:66:b5:4c:53:5b:fd:21:50:33:aa:c9:59:
b6:2a:a7:a8:10:a1:a7:e3:8a:13:45:b8:ef:3e:45:39:e9:3e:
4f:25:01:8e:18:ce:2b:1a:f8:21:93:47:64:5c:78:31:03:8a:
b3:e6:05:88:fa:c1:c8:e5:f9:3a:e6:b8:81:76:2d:bb:3a:97:
56:b8:f4:14:8c:7c:a9:cd:f1:96:56:2a:9a:ef:c9:70:fa:f8:
47:ff:54:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:47 2024 by rpki-client on console-fra.rpki-client.org