Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/C3itxmGa1DxV7GBvMDdp6Tmjy1I.roa
File: C3itxmGa1DxV7GBvMDdp6Tmjy1I.roa (raw, json)
Hash identifier: mIex98GCxXCThuuayhlZ5VznxGgXgOtr/g6YwShAoLQ=
Subject key identifier: 0B:78:AD:C6:61:9A:D4:3C:55:EC:60:6F:30:37:69:E9:39:A3:CB:52
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 0188A0C4CE0495FB62E26E2BA2BE10307138
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/C3itxmGa1DxV7GBvMDdp6Tmjy1I.roa
Signing time: Fri 09 Jun 2023 15:27:12 +0000
ROA not before: Fri 09 Jun 2023 15:27:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 5.157.192.0/22 maxlen: 22
5.157.196.0/22 maxlen: 22
5.157.200.0/21 maxlen: 21
5.157.208.0/21 maxlen: 21
5.157.216.0/22 maxlen: 24
5.157.220.0/22 maxlen: 24
178.157.120.0/22 maxlen: 22
5.157.132.0/22 maxlen: 22
5.157.152.0/21 maxlen: 21
5.157.168.0/22 maxlen: 24
5.157.172.0/22 maxlen: 24
5.157.232.0/21 maxlen: 21
5.157.228.0/22 maxlen: 22
5.157.248.0/21 maxlen: 21
188.119.168.0/21 maxlen: 21
188.119.184.0/22 maxlen: 22
188.119.182.0/23 maxlen: 23
188.119.180.0/24 maxlen: 24
188.119.188.0/22 maxlen: 24
178.157.68.0/22 maxlen: 22
178.157.94.0/24 maxlen: 24
178.157.101.0/24 maxlen: 24
178.157.112.0/21 maxlen: 21
185.76.61.0/24 maxlen: 24
185.76.63.0/24 maxlen: 24
188.74.248.0/21 maxlen: 21
37.35.48.0/22 maxlen: 22
37.35.52.0/24 maxlen: 24
188.119.128.0/20 maxlen: 24
188.74.192.0/21 maxlen: 21
188.74.200.0/21 maxlen: 21
62.216.72.0/24 maxlen: 24
62.216.73.0/24 maxlen: 24
62.216.74.0/24 maxlen: 24
62.216.75.0/24 maxlen: 24
62.216.72.0/22 maxlen: 22
62.216.80.0/24 maxlen: 24
62.216.81.0/24 maxlen: 24
62.216.82.0/24 maxlen: 24
62.216.83.0/24 maxlen: 24
188.74.216.0/21 maxlen: 21
62.216.80.0/22 maxlen: 22
188.74.224.0/21 maxlen: 21
188.74.232.0/21 maxlen: 21
62.216.92.0/24 maxlen: 24
62.216.93.0/24 maxlen: 24
62.216.94.0/24 maxlen: 24
62.216.95.0/24 maxlen: 24
188.74.144.0/22 maxlen: 22
188.74.148.0/22 maxlen: 22
188.74.160.0/21 maxlen: 21
188.74.184.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:a0:c4:ce:04:95:fb:62:e2:6e:2b:a2:be:10:30:71:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Jun 9 15:27:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b78adc6619ad43c55ec606f303769e939a3cb52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:9a:44:af:41:a5:2f:1d:56:00:97:90:0c:98:
ff:2c:45:07:d3:f8:0c:d0:7f:8e:61:31:2c:0d:f4:
b8:e8:6e:9a:56:20:17:b5:93:3c:2e:6d:8e:73:16:
91:a5:a0:e7:a1:00:4a:b6:1c:10:41:ba:00:d2:e6:
31:0c:51:e7:2a:1c:18:d5:da:8e:a6:7d:43:2b:21:
77:d0:01:fa:84:76:11:90:fc:d1:ea:6f:23:18:ba:
f2:42:c2:2e:62:91:2d:48:74:e0:63:56:39:64:aa:
5b:75:ef:c7:85:e4:5b:ee:1b:8c:2f:f2:b7:1b:86:
19:65:85:46:70:a9:bd:16:5d:c5:23:5c:31:a0:35:
6b:39:ca:4e:45:1e:ab:2f:c2:c0:3a:ab:54:19:36:
67:37:5d:26:c0:cd:b1:8f:d4:15:42:29:8b:6d:8f:
b8:4a:db:6a:ee:d0:aa:2d:1d:dd:1e:98:a1:4d:58:
68:b4:e8:c9:30:d5:30:01:de:ac:39:d3:49:1a:26:
f2:c1:0a:fd:57:aa:00:3c:01:b0:b7:d6:d1:12:f7:
4b:7c:a8:f1:62:8c:d6:9d:f6:c8:22:ea:0c:01:de:
f0:19:b1:aa:14:ba:a8:2c:7a:3f:e5:9b:25:ad:8e:
ea:5b:ac:aa:67:19:56:06:9f:68:50:45:ee:6e:d3:
f2:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:78:AD:C6:61:9A:D4:3C:55:EC:60:6F:30:37:69:E9:39:A3:CB:52
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/C3itxmGa1DxV7GBvMDdp6Tmjy1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.132.0/22
5.157.152.0/21
5.157.168.0/21
5.157.192.0/19
5.157.228.0-5.157.239.255
5.157.248.0/21
37.35.48.0-37.35.52.255
62.216.72.0/22
62.216.80.0/22
62.216.92.0/22
178.157.68.0/22
178.157.94.0/24
178.157.101.0/24
178.157.112.0-178.157.123.255
185.76.61.0/24
185.76.63.0/24
188.74.144.0/21
188.74.160.0/21
188.74.184.0/22
188.74.192.0/20
188.74.216.0-188.74.239.255
188.74.248.0/21
188.119.128.0/20
188.119.168.0/21
188.119.180.0/24
188.119.182.0-188.119.191.255
Signature Algorithm: sha256WithRSAEncryption
7b:f2:b5:8c:57:1b:5f:19:16:a2:6f:04:7b:9d:a1:b4:0b:00:
13:17:87:2d:43:5e:bf:29:dd:23:dd:eb:08:9e:e9:a9:07:05:
eb:79:62:f7:73:41:57:8c:ac:f3:9b:cb:98:93:af:8f:8f:b1:
25:91:ac:3c:40:66:e6:f1:e7:27:27:c5:a8:55:28:24:dc:2c:
6d:ed:f9:a5:74:3a:64:6d:63:ae:75:d2:2d:94:d5:85:c1:9a:
df:50:dc:43:50:72:d1:b2:c7:c6:1c:0c:06:d3:3d:e2:a6:72:
7e:12:45:2a:8a:9c:78:64:94:fe:b4:80:b7:6d:dd:84:4c:34:
ac:6d:43:64:b5:6a:5a:28:a0:de:37:8e:d0:e0:a6:f1:4b:f0:
e6:57:c5:1d:66:ed:e3:4b:be:de:8f:60:7c:ab:93:60:fe:3f:
53:98:12:80:05:6e:94:65:99:51:ce:e9:de:7d:b2:a5:eb:a7:
a4:3e:e0:57:fc:a1:1b:ee:3c:33:67:2d:5b:a3:65:c4:ef:95:
1e:c2:1d:d4:9d:65:25:18:1f:2e:38:e1:73:22:bb:5b:fe:28:
ef:8d:31:92:cc:36:ec:0e:6e:38:ee:15:7e:eb:92:a2:7a:1f:
c7:64:44:32:c6:bc:59:08:d7:83:04:c7:cb:cd:ba:c5:a4:02:
9f:98:4a:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:25 2023 by rpki-client on console-fra.rpki-client.org