Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/oeG68Hnj19F18SxXZ6cM4DUCCzE.roa
File: oeG68Hnj19F18SxXZ6cM4DUCCzE.roa (raw, json)
Hash identifier: 16gKNLxiu++cSdYEfQhEf19dWTXtQ2TKG/vDkxYm74c=
Subject key identifier: A1:E1:BA:F0:79:E3:D7:D1:75:F1:2C:57:67:A7:0C:E0:35:02:0B:31
Certificate issuer: /CN=9da140e8028e6d537600e0888a9af5a971c5db46
Certificate serial: 01856D93E8A627380DCE698F3361E3A32327
Authority key identifier: 9D:A1:40:E8:02:8E:6D:53:76:00:E0:88:8A:9A:F5:A9:71:C5:DB:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/naFA6AKObVN2AOCIipr1qXHF20Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/oeG68Hnj19F18SxXZ6cM4DUCCzE.roa
Signing time: Sun 01 Jan 2023 13:44:47 +0000
ROA not before: Sun 01 Jan 2023 13:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1759
IP address blocks: 81.16.64.0/20 maxlen: 20
194.252.0.0/16 maxlen: 24
194.215.0.0/16 maxlen: 24
86.114.0.0/16 maxlen: 16
192.83.96.0/22 maxlen: 24
213.140.160.0/19 maxlen: 19
212.83.96.0/19 maxlen: 24
141.208.0.0/16 maxlen: 16
192.83.100.0/24 maxlen: 24
193.208.0.0/14 maxlen: 24
194.111.0.0/16 maxlen: 24
195.165.0.0/16 maxlen: 24
192.194.0.0/16 maxlen: 24
192.130.0.0/16 maxlen: 24
213.173.128.0/19 maxlen: 19
194.251.0.0/16 maxlen: 24
131.177.0.0/16 maxlen: 16
192.103.92.0/24 maxlen: 24
192.103.105.0/24 maxlen: 24
192.103.106.0/24 maxlen: 24
192.103.112.0/22 maxlen: 24
62.73.32.0/19 maxlen: 24
192.83.64.0/19 maxlen: 24
217.140.128.0/17 maxlen: 17
192.103.116.0/24 maxlen: 24
192.83.0.0/18 maxlen: 24
84.248.0.0/14 maxlen: 24
188.238.0.0/16 maxlen: 24
192.103.85.0/24 maxlen: 24
194.137.0.0/16 maxlen: 24
192.103.86.0/24 maxlen: 24
192.103.91.0/24 maxlen: 24
88.86.128.0/19 maxlen: 24
192.58.80.0/21 maxlen: 24
212.149.64.0/18 maxlen: 18
192.58.88.0/23 maxlen: 24
195.156.0.0/16 maxlen: 24
213.28.0.0/16 maxlen: 24
80.220.0.0/14 maxlen: 24
109.240.0.0/16 maxlen: 24
212.182.192.0/18 maxlen: 24
192.58.42.0/23 maxlen: 24
192.58.44.0/22 maxlen: 24
192.58.48.0/20 maxlen: 24
192.58.64.0/20 maxlen: 24
93.106.0.0/16 maxlen: 24
194.197.0.0/16 maxlen: 24
176.72.0.0/16 maxlen: 24
194.89.0.0/16 maxlen: 24
192.89.0.0/16 maxlen: 24
62.71.0.0/16 maxlen: 24
84.34.0.0/16 maxlen: 16
193.178.133.0/24 maxlen: 24
88.192.0.0/14 maxlen: 24
80.74.192.0/19 maxlen: 24
46.132.0.0/16 maxlen: 24
212.213.0.0/16 maxlen: 24
86.115.0.0/16 maxlen: 24
194.142.0.0/16 maxlen: 24
2001:8b8::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 07 Feb 2023 08:09:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:93:e8:a6:27:38:0d:ce:69:8f:33:61:e3:a3:23:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9da140e8028e6d537600e0888a9af5a971c5db46
Validity
Not Before: Jan 1 13:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a1e1baf079e3d7d175f12c5767a70ce035020b31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e5:21:8c:c4:2c:41:e8:f3:74:30:53:a1:a6:
0c:30:c6:c7:2f:db:00:d2:b1:77:6e:dc:ff:6c:72:
b8:8e:33:df:ed:40:92:28:1e:6e:b2:04:db:24:b6:
72:ad:46:07:c9:7e:3e:e8:08:80:6c:8e:0b:78:ab:
f7:77:dd:1b:27:fd:ef:27:1b:b5:6d:eb:88:cc:a9:
4a:75:1b:d9:98:58:77:2a:37:7e:e8:51:6f:f4:a4:
d0:48:4b:a6:04:23:37:20:c1:02:36:35:ce:4b:50:
95:65:bb:78:ea:54:40:b2:b8:f0:38:e8:ac:44:88:
d6:17:39:f4:5a:0f:22:ab:ff:48:8b:bd:8e:0f:77:
48:72:08:5e:76:8e:07:66:53:7f:66:18:36:e2:d9:
15:ee:45:1a:38:4f:c5:e5:a2:c4:96:be:ba:96:11:
6a:a6:b6:db:35:b6:54:ba:6a:02:a9:38:2f:4b:cf:
8e:ad:ee:0b:d0:8d:6a:5c:d6:22:47:a3:ce:fa:52:
7e:15:0d:9f:06:4c:fd:65:13:9f:e5:c4:fa:2b:fc:
b5:c2:15:b9:7b:ad:83:2e:96:12:91:a7:00:a7:a3:
c4:44:5b:06:a9:ab:5c:7f:ab:bb:54:91:a7:0f:37:
5f:96:61:82:8e:b9:b0:43:3a:13:9b:e6:7d:97:76:
49:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:E1:BA:F0:79:E3:D7:D1:75:F1:2C:57:67:A7:0C:E0:35:02:0B:31
X509v3 Authority Key Identifier:
keyid:9D:A1:40:E8:02:8E:6D:53:76:00:E0:88:8A:9A:F5:A9:71:C5:DB:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/naFA6AKObVN2AOCIipr1qXHF20Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/oeG68Hnj19F18SxXZ6cM4DUCCzE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/naFA6AKObVN2AOCIipr1qXHF20Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.132.0.0/16
62.71.0.0/16
62.73.32.0/19
80.74.192.0/19
80.220.0.0/14
81.16.64.0/20
84.34.0.0/16
84.248.0.0/14
86.114.0.0/15
88.86.128.0/19
88.192.0.0/14
93.106.0.0/16
109.240.0.0/16
131.177.0.0/16
141.208.0.0/16
176.72.0.0/16
188.238.0.0/16
192.58.42.0-192.58.89.255
192.83.0.0-192.83.100.255
192.89.0.0/16
192.103.85.0-192.103.86.255
192.103.91.0-192.103.92.255
192.103.105.0-192.103.106.255
192.103.112.0-192.103.116.255
192.130.0.0/16
192.194.0.0/16
193.178.133.0/24
193.208.0.0/14
194.89.0.0/16
194.111.0.0/16
194.137.0.0/16
194.142.0.0/16
194.197.0.0/16
194.215.0.0/16
194.251.0.0-194.252.255.255
195.156.0.0/16
195.165.0.0/16
212.83.96.0/19
212.149.64.0/18
212.182.192.0/18
212.213.0.0/16
213.28.0.0/16
213.140.160.0/19
213.173.128.0/19
217.140.128.0/17
IPv6:
2001:8b8::/29
Signature Algorithm: sha256WithRSAEncryption
64:2d:b1:30:84:2c:69:87:b9:ea:6d:de:41:e8:96:cc:e9:1a:
51:a4:29:db:0d:ed:f3:26:f5:a5:2e:02:76:ef:23:89:69:72:
73:86:2b:1f:d6:b5:e9:80:66:9a:b7:40:d8:f3:b8:af:b0:6d:
4d:e3:d3:fd:c9:81:d5:85:84:fb:e6:79:2e:13:45:c5:06:8c:
08:69:f5:1b:91:8a:ad:f9:e9:50:71:a2:d4:dc:1a:3f:c6:3a:
78:90:6f:cb:5f:ef:5f:91:2b:e8:4a:3a:6c:70:e1:37:50:51:
73:69:4c:68:cd:5f:4f:7b:5f:22:cd:7f:c4:d9:97:02:90:24:
b2:30:d7:f0:5e:da:df:08:77:d1:10:3f:2a:d9:56:ef:bb:42:
a1:71:04:31:ed:16:60:d8:7a:28:9b:e7:bc:80:2f:94:b5:8e:
bb:80:30:4e:e4:b3:ee:6d:54:a9:c0:a2:2c:77:90:06:45:37:
40:37:e7:80:3e:42:e1:ef:fa:e7:4d:6e:10:34:0e:94:ab:01:
53:a9:bd:f2:33:b9:37:40:5a:7c:a7:e9:10:b9:83:cc:dd:82:
89:e2:68:cc:95:c7:fb:69:5d:9d:33:07:ed:de:2f:ce:0f:8c:
9c:4d:9c:7a:91:80:eb:d1:d5:1a:91:bf:d4:20:23:10:0b:dd:
c4:11:0c:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:43 2024 by rpki-client on console-ams.rpki-client.org