Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/6UXUdNds505SuG-KATVRyrHcZiw.roa
File: 6UXUdNds505SuG-KATVRyrHcZiw.roa (raw, json)
Hash identifier: QjFYUu6O3G83pLJBWJ6KB2HcSbpl/tKdxctK9oscmjE=
Subject key identifier: E9:45:D4:74:D7:6C:E7:4E:52:B8:6F:8A:01:35:51:CA:B1:DC:66:2C
Certificate issuer: /CN=9da140e8028e6d537600e0888a9af5a971c5db46
Certificate serial: 018BFC46354C56D1F0B9731C3C4D1E81476D
Authority key identifier: 9D:A1:40:E8:02:8E:6D:53:76:00:E0:88:8A:9A:F5:A9:71:C5:DB:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/naFA6AKObVN2AOCIipr1qXHF20Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/6UXUdNds505SuG-KATVRyrHcZiw.roa
Signing time: Thu 23 Nov 2023 13:02:21 +0000
ROA not before: Thu 23 Nov 2023 13:02:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1759
IP address blocks: 81.16.64.0/20 maxlen: 20
194.252.0.0/16 maxlen: 16
194.215.0.0/16 maxlen: 16
86.114.0.0/16 maxlen: 21
192.83.96.0/22 maxlen: 22
212.83.96.0/19 maxlen: 19
213.140.160.0/19 maxlen: 19
192.83.100.0/24 maxlen: 24
141.208.0.0/16 maxlen: 16
193.208.0.0/14 maxlen: 14
194.111.0.0/16 maxlen: 16
195.165.0.0/16 maxlen: 16
192.89.123.0/24 maxlen: 24
194.197.68.0/24 maxlen: 24
192.194.0.0/16 maxlen: 24
192.130.0.0/16 maxlen: 24
213.173.128.0/19 maxlen: 19
194.251.0.0/16 maxlen: 16
131.177.0.0/16 maxlen: 16
192.103.92.0/24 maxlen: 24
192.103.105.0/24 maxlen: 24
192.103.106.0/24 maxlen: 24
192.103.112.0/22 maxlen: 22
62.73.32.0/19 maxlen: 19
217.140.128.0/17 maxlen: 17
192.83.64.0/19 maxlen: 19
192.103.116.0/24 maxlen: 24
192.83.0.0/18 maxlen: 18
84.248.0.0/14 maxlen: 21
188.238.0.0/16 maxlen: 16
192.103.85.0/24 maxlen: 24
194.137.0.0/16 maxlen: 16
192.103.86.0/24 maxlen: 24
192.103.91.0/24 maxlen: 24
88.86.128.0/19 maxlen: 19
212.149.64.0/18 maxlen: 18
192.58.80.0/21 maxlen: 21
192.58.88.0/23 maxlen: 23
195.156.0.0/16 maxlen: 16
213.28.0.0/16 maxlen: 16
80.220.0.0/14 maxlen: 21
193.210.18.0/24 maxlen: 24
193.210.19.0/24 maxlen: 24
109.240.0.0/16 maxlen: 16
212.182.192.0/18 maxlen: 18
192.58.42.0/23 maxlen: 23
192.58.44.0/22 maxlen: 22
192.58.48.0/21 maxlen: 21
192.58.64.0/20 maxlen: 20
93.106.0.0/16 maxlen: 16
194.197.0.0/16 maxlen: 16
176.72.0.0/16 maxlen: 16
192.89.0.0/16 maxlen: 16
194.89.0.0/16 maxlen: 16
62.71.0.0/16 maxlen: 16
84.34.0.0/16 maxlen: 16
193.178.133.0/24 maxlen: 24
88.192.0.0/14 maxlen: 21
80.74.192.0/19 maxlen: 19
46.132.0.0/16 maxlen: 16
212.213.0.0/16 maxlen: 16
86.115.0.0/16 maxlen: 16
194.142.0.0/16 maxlen: 16
2001:8b8::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:fc:46:35:4c:56:d1:f0:b9:73:1c:3c:4d:1e:81:47:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9da140e8028e6d537600e0888a9af5a971c5db46
Validity
Not Before: Nov 23 13:02:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e945d474d76ce74e52b86f8a013551cab1dc662c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:42:f2:92:01:f2:d2:54:71:ae:46:b3:a8:67:
fc:d5:5e:5d:30:a4:a2:bb:59:da:db:7c:76:7c:7b:
12:6b:b5:5c:a0:56:81:b4:ac:fd:80:9d:67:4f:d0:
18:2a:5e:c4:34:0c:cb:e0:e8:ad:d1:01:8e:3c:7b:
c6:3b:7a:3b:95:40:2b:55:ef:39:6b:fe:17:61:bb:
26:a2:5c:54:56:54:41:2b:dc:30:b1:5c:c8:3e:98:
ee:1a:f6:f4:9b:3e:fc:36:12:75:ef:be:bf:7b:11:
db:09:d8:d6:01:c4:9d:29:09:7f:c8:dc:49:26:81:
16:92:ee:87:aa:7b:8a:25:1f:6d:a5:31:29:d6:32:
dd:3a:f6:54:b6:07:fc:60:36:ea:e2:ab:aa:0c:79:
fd:27:7e:ff:e5:51:7b:32:b5:89:aa:fd:4b:65:37:
06:8e:d2:21:0d:a8:fa:58:bf:b8:81:fa:97:79:2d:
cb:76:bc:7a:12:72:c1:86:f9:d7:0c:6f:af:c1:ea:
fd:22:fb:a5:fc:05:78:b4:74:b4:57:e2:ad:00:9d:
b4:73:65:45:d6:63:cf:f3:b8:10:8c:34:e1:13:0f:
e0:a8:f3:14:f4:f8:53:32:cf:2d:8b:24:16:33:fc:
a0:1b:eb:df:4f:8e:dc:a9:40:fa:d2:ef:a7:88:0c:
48:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:45:D4:74:D7:6C:E7:4E:52:B8:6F:8A:01:35:51:CA:B1:DC:66:2C
X509v3 Authority Key Identifier:
keyid:9D:A1:40:E8:02:8E:6D:53:76:00:E0:88:8A:9A:F5:A9:71:C5:DB:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/naFA6AKObVN2AOCIipr1qXHF20Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/6UXUdNds505SuG-KATVRyrHcZiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/naFA6AKObVN2AOCIipr1qXHF20Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.132.0.0/16
62.71.0.0/16
62.73.32.0/19
80.74.192.0/19
80.220.0.0/14
81.16.64.0/20
84.34.0.0/16
84.248.0.0/14
86.114.0.0/15
88.86.128.0/19
88.192.0.0/14
93.106.0.0/16
109.240.0.0/16
131.177.0.0/16
141.208.0.0/16
176.72.0.0/16
188.238.0.0/16
192.58.42.0-192.58.55.255
192.58.64.0-192.58.89.255
192.83.0.0-192.83.100.255
192.89.0.0/16
192.103.85.0-192.103.86.255
192.103.91.0-192.103.92.255
192.103.105.0-192.103.106.255
192.103.112.0-192.103.116.255
192.130.0.0/16
192.194.0.0/16
193.178.133.0/24
193.208.0.0/14
194.89.0.0/16
194.111.0.0/16
194.137.0.0/16
194.142.0.0/16
194.197.0.0/16
194.215.0.0/16
194.251.0.0-194.252.255.255
195.156.0.0/16
195.165.0.0/16
212.83.96.0/19
212.149.64.0/18
212.182.192.0/18
212.213.0.0/16
213.28.0.0/16
213.140.160.0/19
213.173.128.0/19
217.140.128.0/17
IPv6:
2001:8b8::/29
Signature Algorithm: sha256WithRSAEncryption
3a:1a:43:91:f5:ee:72:b8:c2:9b:3f:6b:93:d6:c3:ff:4f:61:
77:84:10:dd:88:7c:0f:57:8e:47:09:e4:66:58:43:96:5c:90:
49:07:7e:a3:d0:39:58:f6:04:ca:6c:9c:b3:12:39:7a:41:ae:
aa:dd:f7:19:e5:3a:52:1c:9d:13:0e:39:d7:34:2f:32:0f:62:
f7:ee:d6:18:96:0c:35:f3:6a:a9:62:0b:e0:88:4a:55:ae:c3:
32:e1:05:46:38:12:45:7a:72:36:bf:0d:a7:6f:6a:16:d8:42:
30:62:8c:07:43:1e:b0:fb:8d:49:79:90:c0:27:92:0c:c0:79:
48:9f:f4:ee:3d:ab:de:ac:30:ee:20:5a:88:7e:4a:45:db:86:
bd:d1:e1:39:49:95:82:f8:dc:71:d0:1a:f8:32:17:09:70:29:
75:7b:4a:6d:de:34:5d:32:71:6a:4f:16:a9:15:92:f0:54:f7:
d2:68:b0:6f:89:b4:91:a5:b1:d8:8a:25:a0:74:fa:6e:9d:8b:
3a:aa:fd:f0:24:45:93:6e:42:c4:6d:89:7b:76:a6:c3:2f:62:
96:2e:0d:38:4c:22:26:46:05:1d:69:b0:0a:66:3f:ef:1b:da:
dc:4b:99:74:12:d8:5f:b8:e4:cf:0b:49:ff:4e:0e:3e:86:3f:
a1:c2:92:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:43 2024 by rpki-client on console-ams.rpki-client.org