Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/EwPFCPIDTc2KDMw3J2clpqaFlq4.roa
File: EwPFCPIDTc2KDMw3J2clpqaFlq4.roa (raw, json)
Hash identifier: 8wsM9oWI8l4/uGMmdkx02pt2DA+FfyFlk+5C6ymDMYE=
Subject key identifier: 13:03:C5:08:F2:03:4D:CD:8A:0C:CC:37:27:67:25:A6:A6:85:96:AE
Certificate issuer: /CN=3a5dc2ba5942e04fdd8ba99516a1b93b1e4f9624
Certificate serial: 018BE0E05A6952662E392662FF204877452E
Authority key identifier: 3A:5D:C2:BA:59:42:E0:4F:DD:8B:A9:95:16:A1:B9:3B:1E:4F:96:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ol3CullC4E_di6mVFqG5Ox5PliQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/EwPFCPIDTc2KDMw3J2clpqaFlq4.roa
Signing time: Sat 18 Nov 2023 05:21:21 +0000
ROA not before: Sat 18 Nov 2023 05:21:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48503
IP address blocks: 89.208.123.0/24 maxlen: 24
185.234.26.0/23 maxlen: 23
185.234.60.0/23 maxlen: 23
185.234.60.0/22 maxlen: 22
185.234.62.0/23 maxlen: 23
79.133.184.0/22 maxlen: 22
79.133.188.0/22 maxlen: 22
91.234.208.0/24 maxlen: 24
91.234.209.0/24 maxlen: 24
85.193.120.0/21 maxlen: 21
185.234.24.0/23 maxlen: 23
185.234.24.0/22 maxlen: 22
85.193.96.0/21 maxlen: 21
85.193.104.0/21 maxlen: 21
85.193.112.0/21 maxlen: 21
188.124.232.0/22 maxlen: 22
188.124.236.0/22 maxlen: 22
188.124.244.0/23 maxlen: 23
188.124.246.0/23 maxlen: 23
176.64.0.0/21 maxlen: 21
176.64.8.0/21 maxlen: 21
176.64.16.0/21 maxlen: 21
176.64.24.0/21 maxlen: 21
176.64.32.0/24 maxlen: 24
176.64.34.0/24 maxlen: 24
176.64.33.0/24 maxlen: 24
176.64.35.0/24 maxlen: 24
185.212.246.0/24 maxlen: 24
185.212.245.0/24 maxlen: 24
185.212.244.0/24 maxlen: 24
81.91.180.0/22 maxlen: 22
185.212.247.0/24 maxlen: 24
81.91.184.0/22 maxlen: 22
185.44.84.0/23 maxlen: 23
185.44.86.0/23 maxlen: 23
93.157.176.0/23 maxlen: 23
81.211.150.0/24 maxlen: 24
93.157.178.0/23 maxlen: 23
93.157.181.0/24 maxlen: 24
93.157.180.0/24 maxlen: 24
93.157.183.0/24 maxlen: 24
93.157.182.0/24 maxlen: 24
81.211.172.0/24 maxlen: 24
81.211.196.0/24 maxlen: 24
81.211.195.0/24 maxlen: 24
79.137.171.0/24 maxlen: 24
81.211.198.0/24 maxlen: 24
79.137.170.0/24 maxlen: 24
81.211.197.0/24 maxlen: 24
81.211.199.0/24 maxlen: 24
81.211.194.0/24 maxlen: 24
81.211.193.0/24 maxlen: 24
81.211.130.0/24 maxlen: 24
81.211.133.0/24 maxlen: 24
31.10.3.0/24 maxlen: 24
81.211.201.0/24 maxlen: 24
81.211.203.0/24 maxlen: 24
79.137.176.0/23 maxlen: 23
81.211.202.0/24 maxlen: 24
81.211.204.0/24 maxlen: 24
81.211.206.0/24 maxlen: 24
79.137.178.0/23 maxlen: 23
81.211.208.0/24 maxlen: 24
81.211.207.0/24 maxlen: 24
217.171.144.0/24 maxlen: 24
81.211.251.0/24 maxlen: 24
81.211.253.0/24 maxlen: 24
81.211.250.0/24 maxlen: 24
212.96.64.0/24 maxlen: 24
212.96.67.0/24 maxlen: 24
212.96.66.0/24 maxlen: 24
212.96.68.0/24 maxlen: 24
212.96.70.0/23 maxlen: 23
212.96.69.0/24 maxlen: 24
212.96.65.0/24 maxlen: 24
212.96.72.0/23 maxlen: 23
212.96.74.0/23 maxlen: 23
212.96.77.0/24 maxlen: 24
212.96.76.0/24 maxlen: 24
212.96.78.0/24 maxlen: 24
212.96.80.0/23 maxlen: 23
212.96.82.0/24 maxlen: 24
212.96.84.0/24 maxlen: 24
212.96.83.0/24 maxlen: 24
212.96.85.0/24 maxlen: 24
212.96.79.0/24 maxlen: 24
212.96.86.0/23 maxlen: 23
212.96.88.0/24 maxlen: 24
212.96.91.0/24 maxlen: 24
212.96.90.0/24 maxlen: 24
212.96.95.0/24 maxlen: 24
212.96.94.0/24 maxlen: 24
212.96.93.0/24 maxlen: 24
212.96.92.0/24 maxlen: 24
95.163.145.0/24 maxlen: 24
91.103.104.0/24 maxlen: 24
91.103.105.0/24 maxlen: 24
193.41.131.0/24 maxlen: 24
193.41.130.0/24 maxlen: 24
89.223.112.0/22 maxlen: 22
89.223.116.0/22 maxlen: 22
62.122.104.0/23 maxlen: 23
62.122.106.0/23 maxlen: 23
62.122.108.0/24 maxlen: 24
62.122.109.0/24 maxlen: 24
185.250.30.0/23 maxlen: 23
185.250.28.0/23 maxlen: 23
194.0.244.0/24 maxlen: 24
194.0.245.0/24 maxlen: 24
185.223.188.0/22 maxlen: 22
185.229.84.0/22 maxlen: 22
62.122.4.0/22 maxlen: 22
62.122.0.0/22 maxlen: 22
194.0.188.0/24 maxlen: 24
194.0.189.0/24 maxlen: 24
185.229.121.0/24 maxlen: 24
185.229.120.0/24 maxlen: 24
195.189.49.0/24 maxlen: 24
195.189.48.0/23 maxlen: 23
195.189.48.0/24 maxlen: 24
195.189.51.0/24 maxlen: 24
195.189.50.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:e0:e0:5a:69:52:66:2e:39:26:62:ff:20:48:77:45:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a5dc2ba5942e04fdd8ba99516a1b93b1e4f9624
Validity
Not Before: Nov 18 05:21:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1303c508f2034dcd8a0ccc37276725a6a68596ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:68:e1:29:06:9c:b3:2c:16:4f:be:5d:d8:a3:
cd:9e:42:ce:ca:df:22:9a:0c:9f:b6:26:d8:3c:98:
e3:d7:8f:00:a6:af:13:83:af:9d:fe:f0:97:e4:83:
88:f3:73:ba:7d:58:42:9a:cf:f0:6b:47:05:05:c9:
cf:7e:ae:80:b1:60:25:dc:b8:65:dd:0d:b7:0f:a8:
38:c1:ab:cc:39:de:f0:58:48:14:90:d5:d0:85:09:
a2:c6:37:7f:e5:86:42:fd:d8:0b:2f:97:e2:6b:8c:
d0:10:9c:d3:a0:ed:af:5a:0d:23:c6:8b:cb:9f:23:
95:a5:25:56:2a:05:cf:8c:e3:30:53:e2:19:69:25:
ef:b2:94:80:7e:ca:38:ce:42:fe:32:cf:0c:8b:52:
72:a2:bf:51:1c:55:83:27:12:96:86:48:d6:e1:09:
51:36:ca:ee:76:bf:30:3a:8d:9f:64:b0:f6:cf:e9:
42:22:cd:fe:dd:cb:3d:2b:5e:6c:97:a7:63:34:02:
da:9f:ee:df:a9:12:35:2b:40:e8:f8:b5:09:49:5d:
fd:e7:4e:df:76:49:6e:0e:fc:2f:a5:5f:cc:c8:8d:
df:ba:3b:07:c6:b4:ef:7a:6e:91:aa:28:a3:69:57:
a0:de:40:b6:9f:84:ca:37:29:7b:db:0e:c0:97:a7:
6a:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:03:C5:08:F2:03:4D:CD:8A:0C:CC:37:27:67:25:A6:A6:85:96:AE
X509v3 Authority Key Identifier:
keyid:3A:5D:C2:BA:59:42:E0:4F:DD:8B:A9:95:16:A1:B9:3B:1E:4F:96:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ol3CullC4E_di6mVFqG5Ox5PliQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/EwPFCPIDTc2KDMw3J2clpqaFlq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/Ol3CullC4E_di6mVFqG5Ox5PliQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.10.3.0/24
62.122.0.0/21
62.122.104.0-62.122.109.255
79.133.184.0/21
79.137.170.0/23
79.137.176.0/22
81.91.180.0-81.91.187.255
81.211.130.0/24
81.211.133.0/24
81.211.150.0/24
81.211.172.0/24
81.211.193.0-81.211.199.255
81.211.201.0-81.211.204.255
81.211.206.0-81.211.208.255
81.211.250.0/23
81.211.253.0/24
85.193.96.0/19
89.208.123.0/24
89.223.112.0/21
91.103.104.0/23
91.234.208.0/23
93.157.176.0/21
95.163.145.0/24
176.64.0.0-176.64.35.255
185.44.84.0/22
185.212.244.0/22
185.223.188.0/22
185.229.84.0/22
185.229.120.0/23
185.234.24.0/22
185.234.60.0/22
185.250.28.0/22
188.124.232.0/21
188.124.244.0/22
193.41.130.0/23
194.0.188.0/23
194.0.244.0/23
195.189.48.0/22
212.96.64.0-212.96.88.255
212.96.90.0-212.96.95.255
217.171.144.0/24
Signature Algorithm: sha256WithRSAEncryption
22:a2:39:1b:f6:13:45:f9:68:a5:94:9a:7a:ed:49:8c:55:a6:
3b:11:00:a9:e5:ce:72:53:30:5b:bb:80:0b:93:43:d4:4d:ba:
32:14:cf:03:cd:77:1a:24:d8:02:f1:1c:ac:a3:ac:58:15:c3:
a6:18:1c:77:f2:5f:72:d2:f5:de:ec:a2:d0:f0:94:8c:d6:b8:
7a:82:98:fd:df:53:2a:14:ee:8e:50:bd:19:94:a7:c0:39:f6:
2f:14:34:e8:ff:4c:8a:41:ec:79:a0:60:9b:af:8f:4e:11:ec:
16:84:fc:e7:b5:77:8c:fd:91:90:d6:43:43:13:b6:60:86:68:
7e:e1:70:c5:1c:2d:e9:68:f5:d5:b3:e1:06:a5:bd:59:e2:50:
38:75:b1:76:8c:a7:e3:15:84:de:83:6d:d7:0d:7c:5f:79:3a:
a6:d6:73:f2:96:15:54:2f:ab:41:f2:4a:50:d9:15:de:e6:99:
4c:ae:45:20:46:14:e3:c5:32:2a:3b:60:58:2a:e4:eb:0f:d3:
46:9f:e3:ae:d5:e7:3a:18:db:25:a1:a9:44:36:c1:54:99:f6:
03:e8:e1:2c:bb:9a:58:4b:e6:01:2d:78:da:70:4d:79:b1:42:
cf:79:4e:c3:c0:32:e5:50:4c:2f:98:48:8c:cb:5c:05:9a:83:
e0:cd:d7:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:04 2024 by rpki-client on console-fra.rpki-client.org