Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/sP0VpK4lTLlLnze8m8nA-5xRXdU.roa
File: sP0VpK4lTLlLnze8m8nA-5xRXdU.roa (raw, json)
Hash identifier: ckTyI4z7Wk6UQX/RzMhUAI6njmKCo7g62UVEw5NWo+A=
Subject key identifier: B0:FD:15:A4:AE:25:4C:B9:4B:9F:37:BC:9B:C9:C0:FB:9C:51:5D:D5
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 01857030582AC2A5BCE5DED662CFEC25D44C
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/sP0VpK4lTLlLnze8m8nA-5xRXdU.roa
Signing time: Mon 02 Jan 2023 01:54:54 +0000
ROA not before: Mon 02 Jan 2023 01:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5483
IP address blocks: 195.228.112.0/24 maxlen: 24
195.228.135.0/24 maxlen: 24
195.228.152.0/24 maxlen: 24
195.228.156.0/24 maxlen: 24
195.228.155.0/24 maxlen: 24
62.201.64.0/18 maxlen: 18
195.228.76.0/24 maxlen: 24
195.228.75.0/24 maxlen: 24
91.120.128.0/18 maxlen: 18
46.107.0.0/16 maxlen: 16
46.107.14.0/24 maxlen: 24
46.107.15.0/24 maxlen: 24
195.228.85.0/24 maxlen: 24
188.6.0.0/16 maxlen: 16
195.228.87.0/24 maxlen: 24
195.228.86.0/24 maxlen: 24
195.228.247.0/24 maxlen: 24
195.228.255.0/24 maxlen: 24
195.228.254.0/24 maxlen: 24
91.120.57.0/24 maxlen: 24
195.228.4.0/24 maxlen: 24
195.228.0.0/16 maxlen: 16
91.120.64.0/18 maxlen: 18
134.255.0.0/17 maxlen: 17
195.228.24.0/24 maxlen: 24
195.228.34.0/24 maxlen: 24
195.228.45.0/24 maxlen: 24
91.120.0.0/16 maxlen: 16
91.120.16.0/22 maxlen: 22
91.120.27.0/24 maxlen: 24
5.187.128.0/17 maxlen: 17
86.59.128.0/17 maxlen: 17
31.46.0.0/16 maxlen: 16
31.46.19.0/24 maxlen: 24
78.92.0.0/16 maxlen: 16
212.51.110.0/24 maxlen: 24
46.139.0.0/16 maxlen: 16
212.51.125.0/24 maxlen: 24
185.65.8.0/22 maxlen: 22
149.200.0.0/17 maxlen: 17
194.38.96.0/24 maxlen: 24
194.38.96.0/19 maxlen: 19
194.38.104.0/24 maxlen: 24
217.65.96.0/19 maxlen: 19
217.65.96.0/23 maxlen: 23
5.38.128.0/17 maxlen: 17
212.51.64.0/18 maxlen: 18
212.51.79.0/24 maxlen: 24
212.51.91.0/24 maxlen: 24
195.70.32.0/19 maxlen: 19
84.2.226.0/23 maxlen: 24
84.2.230.0/24 maxlen: 24
84.2.231.0/24 maxlen: 24
84.2.228.0/24 maxlen: 24
84.2.227.0/24 maxlen: 24
213.178.96.0/19 maxlen: 19
188.36.248.0/24 maxlen: 24
37.76.0.0/17 maxlen: 17
84.1.236.0/24 maxlen: 24
93.89.160.0/20 maxlen: 20
84.2.24.0/24 maxlen: 24
194.176.224.0/19 maxlen: 19
84.1.226.0/24 maxlen: 24
84.2.79.0/24 maxlen: 24
188.36.0.0/16 maxlen: 16
195.56.0.0/24 maxlen: 24
84.2.35.0/24 maxlen: 24
195.56.0.0/16 maxlen: 16
84.2.39.0/24 maxlen: 24
84.2.42.0/23 maxlen: 24
84.2.51.0/24 maxlen: 24
84.2.50.0/24 maxlen: 24
84.2.52.0/24 maxlen: 24
84.2.54.0/24 maxlen: 24
188.156.0.0/15 maxlen: 15
185.55.12.0/22 maxlen: 22
194.149.36.0/24 maxlen: 24
194.149.32.0/19 maxlen: 19
217.116.32.0/20 maxlen: 20
84.1.102.0/24 maxlen: 24
217.20.128.0/20 maxlen: 20
80.249.164.0/24 maxlen: 24
87.101.112.0/20 maxlen: 20
80.249.171.0/24 maxlen: 24
80.249.172.0/24 maxlen: 24
80.249.170.0/24 maxlen: 24
80.249.168.0/24 maxlen: 24
80.249.167.0/24 maxlen: 24
84.0.0.0/14 maxlen: 14
81.182.0.0/15 maxlen: 15
79.122.0.0/17 maxlen: 17
194.149.0.0/19 maxlen: 19
80.249.173.0/24 maxlen: 24
80.249.174.0/24 maxlen: 24
194.88.32.0/19 maxlen: 19
94.27.128.0/17 maxlen: 17
2001:4c48::/29 maxlen: 29
2a00:10d0::/32 maxlen: 32
2a02:738::/32 maxlen: 32
2001:4c48::/46 maxlen: 48
2001:4c48::/32 maxlen: 32
2a00:1110::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 09 Jan 2023 12:25:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:58:2a:c2:a5:bc:e5:de:d6:62:cf:ec:25:d4:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 2 01:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0fd15a4ae254cb94b9f37bc9bc9c0fb9c515dd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:01:f6:d8:2d:47:89:b0:9f:15:a7:37:df:ed:
22:af:67:c6:3b:bb:8a:25:d1:bc:fe:39:d0:7b:8a:
51:d7:6a:bf:68:dd:02:e3:4f:76:d3:5c:a4:d0:ba:
b4:9f:47:85:06:8f:bc:6b:fe:7c:50:82:96:e3:70:
33:a6:88:43:e2:5c:ec:48:e4:95:a2:90:7b:e2:f8:
51:8b:50:62:87:ec:d4:96:d4:d7:95:6f:04:9a:8c:
e8:e0:8c:e2:95:e5:d8:b0:cc:84:28:ec:16:85:72:
87:1d:19:3a:43:2b:b5:56:67:f2:95:7d:19:4b:41:
7f:c1:03:1b:4f:73:5b:99:72:a1:79:32:e7:73:6a:
be:13:c4:94:bb:27:7e:ab:66:22:6f:94:67:1b:94:
3c:fe:0c:44:30:bb:8a:ab:a8:2e:f5:1a:94:54:87:
17:30:ac:80:ba:8d:7a:61:e6:10:52:ec:8b:c5:8a:
89:d3:55:ba:91:15:fb:3b:d0:07:40:58:fb:9c:41:
f8:1d:7b:c7:e5:18:ef:23:ae:c2:d1:dd:34:fd:b2:
24:6e:96:dc:a2:64:b0:ed:ba:62:09:f2:c6:24:ab:
25:9b:d8:ee:a7:6e:c8:dc:9d:eb:bf:b1:80:e4:51:
02:ad:8d:17:21:ed:c6:af:ac:72:b1:b4:75:8a:22:
28:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:FD:15:A4:AE:25:4C:B9:4B:9F:37:BC:9B:C9:C0:FB:9C:51:5D:D5
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/sP0VpK4lTLlLnze8m8nA-5xRXdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.38.128.0/17
5.187.128.0/17
31.46.0.0/16
37.76.0.0/17
46.107.0.0/16
46.139.0.0/16
62.201.64.0/18
78.92.0.0/16
79.122.0.0/17
80.249.164.0/24
80.249.167.0-80.249.168.255
80.249.170.0-80.249.174.255
81.182.0.0/15
84.0.0.0/14
86.59.128.0/17
87.101.112.0/20
91.120.0.0/16
93.89.160.0/20
94.27.128.0/17
134.255.0.0/17
149.200.0.0/17
185.55.12.0/22
185.65.8.0/22
188.6.0.0/16
188.36.0.0/16
188.156.0.0/15
194.38.96.0/19
194.88.32.0/19
194.149.0.0/18
194.176.224.0/19
195.56.0.0/16
195.70.32.0/19
195.228.0.0/16
212.51.64.0/18
213.178.96.0/19
217.20.128.0/20
217.65.96.0/19
217.116.32.0/20
IPv6:
2001:4c48::/29
2a00:10d0::/32
2a00:1110::/29
2a02:738::/32
Signature Algorithm: sha256WithRSAEncryption
10:43:31:50:4e:cc:bf:77:59:14:0c:16:95:77:7c:60:a1:5c:
4b:5f:00:f5:e3:e0:2a:77:dc:bc:14:00:20:6b:38:1d:0c:f7:
a4:5a:3d:79:64:4f:4d:94:b3:51:6f:b2:7e:b2:7b:f7:e4:0e:
cf:3b:12:af:ef:41:8c:1b:e6:4b:31:c3:4c:75:9a:02:db:22:
ec:23:63:02:8c:03:c7:fc:f9:11:47:28:a8:27:d8:b6:51:de:
d1:7d:02:2c:98:1b:c3:a0:ca:9c:35:9a:b4:92:ef:26:36:9e:
2f:91:13:e1:c5:ed:ae:07:81:1e:c5:7b:c6:3c:b0:00:1d:08:
3b:54:f1:4f:d9:65:06:02:e3:b4:a5:a8:4d:9c:7b:fe:40:cb:
27:3a:bf:a1:c1:7b:04:66:f2:4b:7e:86:93:00:4f:b2:34:7b:
54:07:4d:da:eb:10:98:48:24:88:d9:6b:2d:b1:20:08:74:b9:
61:bd:7f:71:e4:37:7b:1a:fb:36:32:c9:5c:6a:e2:2f:83:c8:
c0:2a:c7:a0:b0:b2:82:f6:f8:f9:80:15:5c:ef:61:1b:5e:c0:
67:b6:bb:5d:2b:1f:20:60:69:67:1c:ff:7e:a3:e9:1c:5f:47:
4c:de:0a:56:77:2f:2f:a0:f9:47:02:93:3f:a1:43:0b:ef:e5:
87:06:18:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:47 2024 by rpki-client on console-fra.rpki-client.org