Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/866599-3fa0-4230-ba9a-19c4ff1877bb/1/AeA5g87AGHst02UJXSbB3ztilZ4.roa
File: AeA5g87AGHst02UJXSbB3ztilZ4.roa (raw, json)
Hash identifier: Yy3SCL5tVrPjk3m+hYt9sE0Qkcnczy6MeUBaQr+Zy7E=
Subject key identifier: 01:E0:39:83:CE:C0:18:7B:2D:D3:65:09:5D:26:C1:DF:3B:62:95:9E
Certificate issuer: /CN=8e3875a80ad233e9c28715988371f77eec3f620c
Certificate serial: 01856EB9196E253CDDD6D6ECA83C8FE0E180
Authority key identifier: 8E:38:75:A8:0A:D2:33:E9:C2:87:15:98:83:71:F7:7E:EC:3F:62:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jjh1qArSM-nChxWYg3H3fuw_Ygw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/866599-3fa0-4230-ba9a-19c4ff1877bb/1/AeA5g87AGHst02UJXSbB3ztilZ4.roa
Signing time: Sun 01 Jan 2023 19:05:02 +0000
ROA not before: Sun 01 Jan 2023 19:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39120
IP address blocks: 185.105.128.0/22 maxlen: 22
213.167.232.0/21 maxlen: 21
185.105.92.0/22 maxlen: 22
185.105.104.0/22 maxlen: 22
45.80.172.0/23 maxlen: 23
89.21.192.0/23 maxlen: 23
89.21.198.0/23 maxlen: 23
89.21.196.0/23 maxlen: 23
89.21.194.0/23 maxlen: 23
89.21.200.0/21 maxlen: 21
89.21.208.0/20 maxlen: 20
83.229.8.0/22 maxlen: 22
217.28.68.0/22 maxlen: 22
185.195.8.0/22 maxlen: 22
185.105.212.0/22 maxlen: 22
185.9.208.0/22 maxlen: 22
78.138.32.0/22 maxlen: 24
185.104.124.0/22 maxlen: 22
195.60.190.0/23 maxlen: 23
94.101.48.0/22 maxlen: 22
94.101.56.0/22 maxlen: 22
94.101.52.0/22 maxlen: 22
94.101.60.0/22 maxlen: 22
185.217.228.0/22 maxlen: 22
93.88.96.0/20 maxlen: 20
2a01:9a81::/32 maxlen: 32
2a01:9a80::/32 maxlen: 32
2a01:9a82::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:b9:19:6e:25:3c:dd:d6:d6:ec:a8:3c:8f:e0:e1:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e3875a80ad233e9c28715988371f77eec3f620c
Validity
Not Before: Jan 1 19:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01e03983cec0187b2dd365095d26c1df3b62959e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:7d:70:37:66:5c:16:aa:7b:23:25:ed:4d:9a:
b3:b8:b7:7a:0d:31:e1:3d:f7:72:df:7f:75:d5:7b:
44:d1:74:61:de:06:5a:b2:f5:02:6d:5a:5d:41:a7:
3b:34:eb:4d:70:e7:2f:b4:50:63:b7:7c:8d:83:45:
aa:58:bd:c7:31:5a:19:91:17:b0:04:7c:4d:04:1f:
61:e0:ab:ff:7d:ca:92:93:bf:a0:ef:1b:62:3c:79:
be:32:b0:7e:7b:29:3c:25:04:49:dd:b4:63:ea:a0:
6c:17:41:02:76:43:7f:86:20:4c:0e:64:30:e6:5a:
34:16:65:19:a3:07:f7:16:5a:5c:59:a8:6e:75:89:
b4:a8:90:1e:6b:5f:f6:e1:33:ad:1b:65:79:2a:da:
e9:ea:d4:02:ec:67:8f:28:49:5a:7e:3b:bb:ad:c1:
24:63:91:8b:14:b5:44:df:78:72:02:bf:29:8e:17:
11:20:41:33:8c:83:c4:19:8d:57:b4:c9:e7:65:0b:
5f:2e:e1:6a:7e:48:ab:c5:14:63:ce:fb:27:ef:10:
a3:01:1b:74:62:94:c8:d4:5a:4c:06:5a:ba:af:1c:
90:cc:78:dd:f8:d8:9d:e4:31:92:3b:e7:d7:65:75:
4a:86:c3:99:e5:64:42:d6:9e:00:5c:c8:44:09:72:
74:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:E0:39:83:CE:C0:18:7B:2D:D3:65:09:5D:26:C1:DF:3B:62:95:9E
X509v3 Authority Key Identifier:
keyid:8E:38:75:A8:0A:D2:33:E9:C2:87:15:98:83:71:F7:7E:EC:3F:62:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jjh1qArSM-nChxWYg3H3fuw_Ygw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/866599-3fa0-4230-ba9a-19c4ff1877bb/1/AeA5g87AGHst02UJXSbB3ztilZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/866599-3fa0-4230-ba9a-19c4ff1877bb/1/jjh1qArSM-nChxWYg3H3fuw_Ygw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.172.0/23
78.138.32.0/22
83.229.8.0/22
89.21.192.0/19
93.88.96.0/20
94.101.48.0/20
185.9.208.0/22
185.104.124.0/22
185.105.92.0/22
185.105.104.0/22
185.105.128.0/22
185.105.212.0/22
185.195.8.0/22
185.217.228.0/22
195.60.190.0/23
213.167.232.0/21
217.28.68.0/22
IPv6:
2a01:9a80::-2a01:9a82:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
69:14:56:33:5d:58:79:90:84:46:e8:18:df:7e:4e:16:0b:0e:
3a:1e:d2:5c:f1:e7:4c:3c:1f:6f:ed:32:8d:72:7d:92:1e:24:
e7:d2:a7:4f:ca:f6:a2:f9:b0:88:77:4b:fd:e3:57:13:ba:06:
ee:e3:42:60:ea:f9:6c:69:bd:c2:72:b6:fd:9c:1f:a1:40:ec:
c0:cb:6f:42:5d:9d:9c:51:ef:df:6b:1f:97:22:9a:01:09:65:
68:9e:d8:3e:b8:73:0f:46:73:f3:72:f2:ec:77:dd:36:ff:35:
a4:34:cb:17:f7:cf:1a:7f:14:25:a9:f1:95:61:71:50:20:a6:
a4:49:f3:c4:ad:00:89:5b:d5:3f:64:6b:8c:86:d0:0f:3c:b5:
72:c9:47:c5:91:ca:6b:48:52:38:e2:82:a4:67:38:de:ca:21:
8f:0c:bb:81:ed:82:dd:63:8a:52:0c:50:4b:73:bf:0e:64:68:
d2:de:1b:09:28:28:34:df:d5:ed:64:3f:66:bf:c4:23:e3:76:
72:0c:3c:29:c9:38:b8:53:5b:b5:25:e4:9e:35:a9:69:61:d3:
4a:bb:4f:25:13:b7:81:a8:15:a5:20:39:10:6d:42:ff:65:e4:
16:46:0c:87:50:6e:1a:0d:0e:05:c4:f5:61:61:b6:45:60:a4:
57:0f:4a:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:49 2024 by rpki-client on console-ams.rpki-client.org