Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/rafXbaFe3mLFWnHtOf2IVuafLNI.roa
File: rafXbaFe3mLFWnHtOf2IVuafLNI.roa (raw, json)
Hash identifier: vKKlRUxoQiFAoVSMc+tEcw0dv68M1YaAJc9MTBAgRHg=
Subject key identifier: AD:A7:D7:6D:A1:5E:DE:62:C5:5A:71:ED:39:FD:88:56:E6:9F:2C:D2
Certificate issuer: /CN=24147c8b3f37850e9f9074993845c4e069f8efe2
Certificate serial: 01889508F520A4553173A4623E511B7738B1
Authority key identifier: 24:14:7C:8B:3F:37:85:0E:9F:90:74:99:38:45:C4:E0:69:F8:EF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JBR8iz83hQ6fkHSZOEXE4Gn47-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/rafXbaFe3mLFWnHtOf2IVuafLNI.roa
Signing time: Wed 07 Jun 2023 08:46:12 +0000
ROA not before: Wed 07 Jun 2023 08:46:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 83.144.64.0/19 maxlen: 19
83.144.64.0/18 maxlen: 18
31.178.0.0/16 maxlen: 16
31.178.0.0/15 maxlen: 15
83.144.96.0/19 maxlen: 19
91.150.192.0/20 maxlen: 20
91.150.192.0/19 maxlen: 19
91.150.208.0/20 maxlen: 20
188.93.164.0/22 maxlen: 22
188.93.160.0/21 maxlen: 21
188.93.160.0/22 maxlen: 22
84.10.0.0/17 maxlen: 17
213.134.160.0/20 maxlen: 20
213.134.160.0/19 maxlen: 19
84.10.0.0/16 maxlen: 16
213.134.176.0/20 maxlen: 20
85.222.64.0/18 maxlen: 18
95.158.64.0/18 maxlen: 18
85.222.0.0/18 maxlen: 18
85.222.0.0/17 maxlen: 17
81.18.192.0/20 maxlen: 20
81.18.192.0/21 maxlen: 21
194.187.40.0/22 maxlen: 22
81.18.200.0/21 maxlen: 21
81.18.208.0/20 maxlen: 20
81.18.208.0/21 maxlen: 21
81.18.216.0/21 maxlen: 21
212.76.32.0/20 maxlen: 20
212.76.32.0/19 maxlen: 19
212.76.48.0/20 maxlen: 20
31.187.0.0/18 maxlen: 18
31.187.0.0/19 maxlen: 19
31.187.32.0/19 maxlen: 19
178.73.32.0/19 maxlen: 19
178.73.0.0/18 maxlen: 18
178.73.0.0/19 maxlen: 19
94.75.64.0/19 maxlen: 19
195.34.208.0/22 maxlen: 22
94.75.64.0/18 maxlen: 18
89.72.0.0/13 maxlen: 13
31.186.192.0/19 maxlen: 19
87.207.0.0/16 maxlen: 16
92.244.32.0/20 maxlen: 20
92.244.32.0/19 maxlen: 19
92.244.48.0/20 maxlen: 20
94.75.96.0/19 maxlen: 19
94.172.0.0/17 maxlen: 17
77.236.0.0/20 maxlen: 20
77.236.0.0/19 maxlen: 19
89.64.0.0/13 maxlen: 13
94.172.0.0/16 maxlen: 16
77.236.16.0/20 maxlen: 20
84.10.128.0/17 maxlen: 17
94.172.128.0/17 maxlen: 17
89.64.0.0/12 maxlen: 12
31.179.0.0/16 maxlen: 16
83.175.176.0/20 maxlen: 20
83.175.176.0/21 maxlen: 21
83.175.184.0/21 maxlen: 21
87.206.0.0/16 maxlen: 16
87.206.0.0/15 maxlen: 15
2001:4050::/32 maxlen: 32
2001:4050:8000::/33 maxlen: 33
2001:4050::/33 maxlen: 33
2a02:a300::/28 maxlen: 28
2a02:a310::/28 maxlen: 28
2a02:a300::/27 maxlen: 27
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:95:08:f5:20:a4:55:31:73:a4:62:3e:51:1b:77:38:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24147c8b3f37850e9f9074993845c4e069f8efe2
Validity
Not Before: Jun 7 08:46:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ada7d76da15ede62c55a71ed39fd8856e69f2cd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:17:d9:43:10:c0:28:d5:f0:45:8b:f2:87:41:
70:2f:cf:ce:d9:b9:db:77:78:5b:73:9b:d2:0c:b7:
a0:2b:45:69:2d:03:ef:22:75:67:c2:75:3f:4f:0c:
f5:56:02:6c:c0:9b:b9:1c:4f:e3:13:e6:98:03:82:
6b:56:d8:32:5b:b0:b7:ae:86:6f:bd:3b:fd:64:51:
c4:c8:9f:cf:c0:0c:53:62:25:c9:ad:4a:c0:f3:d8:
36:0c:1d:b9:92:dc:25:56:0a:bb:0c:57:a2:ae:29:
ff:83:c0:5d:fc:aa:b5:42:a7:28:fc:44:10:9e:47:
bc:43:b7:f3:2e:5f:46:32:5b:ff:3c:6e:1d:37:4b:
b8:5a:88:2c:a9:d7:45:b8:c7:3d:29:66:1c:2b:2b:
fb:71:3a:3c:50:a5:78:ff:d6:9c:95:dc:b6:7a:2b:
e4:09:5a:0b:c9:b8:1a:88:99:d7:94:10:be:29:3e:
ca:4c:0c:50:e9:1d:54:4a:a6:ca:73:c2:51:df:fb:
da:dd:d7:1c:d4:c5:f2:bf:a4:c5:04:85:71:0f:b4:
d4:90:4c:19:8b:93:db:fb:9a:1d:67:61:3a:55:67:
41:f8:7c:31:41:35:2f:28:54:29:c5:5a:c7:7a:05:
d3:cb:cb:f2:02:17:fa:12:3a:82:d9:b5:5c:ec:98:
f5:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:A7:D7:6D:A1:5E:DE:62:C5:5A:71:ED:39:FD:88:56:E6:9F:2C:D2
X509v3 Authority Key Identifier:
keyid:24:14:7C:8B:3F:37:85:0E:9F:90:74:99:38:45:C4:E0:69:F8:EF:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JBR8iz83hQ6fkHSZOEXE4Gn47-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/rafXbaFe3mLFWnHtOf2IVuafLNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/JBR8iz83hQ6fkHSZOEXE4Gn47-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.178.0.0/15
31.186.192.0/19
31.187.0.0/18
77.236.0.0/19
81.18.192.0/19
83.144.64.0/18
83.175.176.0/20
84.10.0.0/16
85.222.0.0/17
87.206.0.0/15
89.64.0.0/12
91.150.192.0/19
92.244.32.0/19
94.75.64.0/18
94.172.0.0/16
95.158.64.0/18
178.73.0.0/18
188.93.160.0/21
194.187.40.0/22
195.34.208.0/22
212.76.32.0/19
213.134.160.0/19
IPv6:
2001:4050::/32
2a02:a300::/27
Signature Algorithm: sha256WithRSAEncryption
5d:39:c3:d0:22:e0:98:ce:95:16:5d:25:30:64:6d:47:d1:a3:
85:25:a2:a7:38:9a:3a:f2:f0:df:80:36:4d:05:8b:55:d4:78:
3a:51:12:9b:96:bb:0b:df:46:bb:c2:63:db:66:38:8e:b4:b2:
14:62:a3:4f:8c:6b:b8:8a:10:11:b0:5b:49:4c:07:eb:16:49:
bd:f7:fa:24:d2:dc:ab:24:11:27:14:16:7b:a5:4a:98:55:aa:
2b:af:99:0c:2f:17:f3:53:3b:3d:c6:08:34:da:0e:ac:c8:91:
ec:47:f3:ff:93:17:76:36:dc:7e:55:72:2b:7f:b1:5c:32:db:
4d:72:ad:e4:f4:7b:0a:26:60:1a:7a:ad:db:47:c0:7e:2e:61:
32:9b:bc:f4:76:14:d8:75:3a:8a:a2:db:76:34:47:4b:0c:57:
a0:90:fa:6f:8f:7d:b1:b7:4d:85:fb:65:31:ae:56:e2:22:8f:
6a:b1:41:be:b0:82:7c:7b:98:7d:e8:97:78:b9:5d:da:4a:57:
f5:d8:a9:33:3c:9b:d4:c7:ad:2c:42:7e:09:9f:44:5d:33:1a:
ba:95:e6:11:3b:b9:18:d5:b2:bd:6f:75:5d:a6:a9:ff:44:56:
3e:74:79:40:12:ff:f8:74:c9:89:f8:c7:37:1d:c1:31:f9:16:
ff:3a:64:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 16 07:47:58 2023 by rpki-client on console-ams.rpki-client.org