Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/inS5-D54eC_9xDKAWr_Pl1hPTLM.roa
File: inS5-D54eC_9xDKAWr_Pl1hPTLM.roa (raw, json)
Hash identifier: uShW7jhXjWMl03OjFhNzsTmAvifr4w7CDs65xxCxdUM=
Subject key identifier: 8A:74:B9:F8:3E:78:78:2F:FD:C4:32:80:5A:BF:CF:97:58:4F:4C:B3
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 018B05FB18F64E779116FF99DB99E0E957A3
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/inS5-D54eC_9xDKAWr_Pl1hPTLM.roa
Signing time: Fri 06 Oct 2023 17:13:43 +0000
ROA not before: Fri 06 Oct 2023 17:13:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 185.100.58.0/24 maxlen: 24
168.199.200.0/24 maxlen: 24
168.199.201.0/24 maxlen: 24
168.199.202.0/24 maxlen: 24
168.199.203.0/24 maxlen: 24
168.199.240.0/24 maxlen: 24
168.199.241.0/24 maxlen: 24
168.199.242.0/24 maxlen: 24
168.199.243.0/24 maxlen: 24
168.199.244.0/24 maxlen: 24
168.199.245.0/24 maxlen: 24
168.199.246.0/24 maxlen: 24
168.199.247.0/24 maxlen: 24
168.199.248.0/24 maxlen: 24
168.199.249.0/24 maxlen: 24
168.199.250.0/24 maxlen: 24
168.199.251.0/24 maxlen: 24
168.199.252.0/24 maxlen: 24
168.199.253.0/24 maxlen: 24
168.199.146.0/24 maxlen: 24
168.199.147.0/24 maxlen: 24
168.199.148.0/24 maxlen: 24
168.199.149.0/24 maxlen: 24
168.199.150.0/24 maxlen: 24
168.199.151.0/24 maxlen: 24
168.199.152.0/24 maxlen: 24
168.199.153.0/24 maxlen: 24
168.199.154.0/24 maxlen: 24
168.199.155.0/24 maxlen: 24
168.199.156.0/24 maxlen: 24
168.199.157.0/24 maxlen: 24
168.199.158.0/24 maxlen: 24
168.199.159.0/24 maxlen: 24
168.199.164.0/24 maxlen: 24
168.199.165.0/24 maxlen: 24
168.199.166.0/24 maxlen: 24
168.199.167.0/24 maxlen: 24
168.199.168.0/24 maxlen: 24
168.199.169.0/24 maxlen: 24
168.199.170.0/24 maxlen: 24
168.199.171.0/24 maxlen: 24
168.199.172.0/24 maxlen: 24
168.199.173.0/24 maxlen: 24
168.199.174.0/24 maxlen: 24
168.199.175.0/24 maxlen: 24
168.199.176.0/24 maxlen: 24
168.199.177.0/24 maxlen: 24
168.199.178.0/24 maxlen: 24
168.199.179.0/24 maxlen: 24
168.199.180.0/24 maxlen: 24
168.199.181.0/24 maxlen: 24
168.199.182.0/24 maxlen: 24
168.199.183.0/24 maxlen: 24
168.199.184.0/24 maxlen: 24
168.199.185.0/24 maxlen: 24
168.199.186.0/24 maxlen: 24
192.95.80.0/24 maxlen: 24
168.199.188.0/24 maxlen: 24
168.199.187.0/24 maxlen: 24
168.199.189.0/24 maxlen: 24
168.199.190.0/24 maxlen: 24
168.199.191.0/24 maxlen: 24
192.95.82.0/24 maxlen: 24
192.95.83.0/24 maxlen: 24
192.95.84.0/24 maxlen: 24
192.95.85.0/24 maxlen: 24
192.95.87.0/24 maxlen: 24
168.199.197.0/24 maxlen: 24
168.199.196.0/24 maxlen: 24
168.199.198.0/24 maxlen: 24
168.199.199.0/24 maxlen: 24
192.95.86.0/24 maxlen: 24
192.95.91.0/24 maxlen: 24
192.95.88.0/24 maxlen: 24
192.95.89.0/24 maxlen: 24
192.95.90.0/24 maxlen: 24
168.199.254.0/24 maxlen: 24
168.199.255.0/24 maxlen: 24
168.199.132.0/24 maxlen: 24
168.199.133.0/24 maxlen: 24
168.199.134.0/24 maxlen: 24
168.199.135.0/24 maxlen: 24
168.199.136.0/24 maxlen: 24
168.199.137.0/24 maxlen: 24
168.199.138.0/24 maxlen: 24
168.199.139.0/24 maxlen: 24
168.199.140.0/24 maxlen: 24
168.199.141.0/24 maxlen: 24
168.199.142.0/24 maxlen: 24
168.199.143.0/24 maxlen: 24
168.199.144.0/24 maxlen: 24
168.199.145.0/24 maxlen: 24
2001:678:8b4::/48 maxlen: 64
Validation: Failed, certificate revoked on Sat 07 Oct 2023 00:05:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:05:fb:18:f6:4e:77:91:16:ff:99:db:99:e0:e9:57:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Oct 6 17:13:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a74b9f83e78782ffdc432805abfcf97584f4cb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:1e:d6:29:90:60:6d:18:e2:0b:c7:71:59:45:
67:6c:47:9d:0e:46:64:0f:e4:ea:e8:99:a7:f6:0c:
45:84:c9:46:32:43:cb:e2:63:60:65:9d:24:7e:1d:
cd:d8:6a:69:8b:f0:58:1a:60:3b:13:9f:fa:e9:b3:
61:7b:61:6f:e2:c4:40:cf:5a:dd:10:3d:8f:9e:4e:
30:ff:5a:cb:74:1c:9d:4f:2f:25:01:d4:a7:d3:cc:
7f:22:d7:95:5d:78:69:ed:88:f2:c8:ce:7c:e5:ca:
08:6a:91:6c:c0:72:ec:57:9f:fe:aa:92:e7:76:e3:
f1:36:a3:b7:01:9e:3e:13:46:7c:90:38:ce:c9:f7:
1e:84:e9:05:5b:a8:a9:62:84:0c:08:e6:e8:d4:3d:
d1:fd:af:8f:c5:1e:9b:30:4c:85:76:1c:10:44:1b:
96:3d:e3:34:c8:bb:da:bf:a9:d1:04:c7:9e:03:10:
61:18:89:44:3e:68:74:ec:32:6e:a4:a2:a9:30:94:
ac:a6:0c:53:2f:0e:7d:a4:0d:d0:64:5c:55:0a:f0:
81:ac:6e:7f:a1:f9:30:74:8e:41:68:1f:f5:35:d1:
02:02:53:d1:80:05:12:f2:9e:c6:64:13:dd:ec:35:
aa:ab:53:40:e9:f3:8c:97:de:1e:7f:15:1c:32:9e:
e7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:74:B9:F8:3E:78:78:2F:FD:C4:32:80:5A:BF:CF:97:58:4F:4C:B3
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/inS5-D54eC_9xDKAWr_Pl1hPTLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.199.132.0-168.199.159.255
168.199.164.0-168.199.191.255
168.199.196.0-168.199.203.255
168.199.240.0/20
185.100.58.0/24
192.95.80.0/24
192.95.82.0-192.95.91.255
IPv6:
2001:678:8b4::/48
Signature Algorithm: sha256WithRSAEncryption
88:df:c7:c3:e3:fe:2e:e8:0f:31:2d:e6:26:38:a9:45:25:6c:
95:36:72:ff:bc:ee:92:78:59:94:20:c1:25:bb:9b:db:82:1f:
97:3a:f0:43:25:b3:0d:bb:30:5d:2d:e4:f5:97:11:f5:c9:b8:
d9:6d:e3:6c:e3:cc:c8:7a:e5:bb:db:96:db:19:0f:07:25:75:
b5:2b:ba:40:84:d5:01:5d:e4:90:04:42:18:aa:40:d3:69:77:
af:5d:20:0d:99:71:5c:fb:2f:81:ce:c3:fb:11:60:fe:d0:1d:
f4:5a:9c:2c:ae:d8:7e:b0:b9:47:49:11:3f:e9:3b:03:c6:d7:
54:82:74:e2:9c:be:d8:3b:4a:8d:40:c0:79:0b:af:fa:af:d2:
6e:1f:18:45:f8:b4:43:ef:8c:8f:02:3a:ff:4c:1e:ae:28:59:
1d:2e:a7:49:cc:10:6f:68:27:97:24:af:c5:20:ce:e8:b0:c3:
22:ac:14:83:2d:87:fd:79:d3:e3:93:43:05:b9:7b:5b:eb:3c:
04:50:86:3b:5c:63:c5:2b:43:ae:a8:d0:db:4c:d7:15:20:62:
d7:9c:54:5e:06:2d:38:88:5c:e7:9e:57:7f:2e:d4:39:b3:dd:
80:f2:3b:ac:c3:63:8e:54:d8:a8:ca:96:44:b9:20:86:64:c1:
5c:ff:63:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:50 2024 by rpki-client on console-fra.rpki-client.org