Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/NcGc48Yzgw6XMBVA4hlY1vcz2-o.roa
File: NcGc48Yzgw6XMBVA4hlY1vcz2-o.roa (raw, json)
Hash identifier: +CBsXp2KJhUagz8Tu1s7xY0dW+g4dL7URuAsLeU1MWU=
Subject key identifier: 35:C1:9C:E3:C6:33:83:0E:97:30:15:40:E2:19:58:D6:F7:33:DB:EA
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 01856D53EB2BACAC60B9D4C7E92856584686
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/NcGc48Yzgw6XMBVA4hlY1vcz2-o.roa
Signing time: Sun 01 Jan 2023 12:34:54 +0000
ROA not before: Sun 01 Jan 2023 12:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 5.157.192.0/22 maxlen: 22
5.157.196.0/22 maxlen: 22
5.157.200.0/21 maxlen: 21
5.157.208.0/21 maxlen: 21
5.157.216.0/22 maxlen: 24
5.157.220.0/22 maxlen: 24
178.157.120.0/22 maxlen: 22
5.157.132.0/22 maxlen: 22
5.157.152.0/21 maxlen: 21
5.157.160.0/22 maxlen: 22
5.157.168.0/22 maxlen: 24
5.157.172.0/22 maxlen: 24
5.157.232.0/21 maxlen: 21
5.157.228.0/22 maxlen: 22
5.157.248.0/21 maxlen: 21
188.119.168.0/21 maxlen: 21
188.119.184.0/22 maxlen: 22
188.119.182.0/23 maxlen: 23
188.119.180.0/24 maxlen: 24
188.119.188.0/22 maxlen: 24
178.157.68.0/22 maxlen: 22
178.157.94.0/24 maxlen: 24
178.157.101.0/24 maxlen: 24
178.157.112.0/21 maxlen: 21
185.76.61.0/24 maxlen: 24
185.76.63.0/24 maxlen: 24
188.74.248.0/21 maxlen: 21
37.35.48.0/22 maxlen: 22
37.35.52.0/24 maxlen: 24
188.119.128.0/20 maxlen: 24
188.74.192.0/21 maxlen: 21
188.74.200.0/21 maxlen: 21
62.216.72.0/24 maxlen: 24
62.216.73.0/24 maxlen: 24
62.216.74.0/24 maxlen: 24
62.216.75.0/24 maxlen: 24
188.74.212.0/22 maxlen: 22
62.216.72.0/22 maxlen: 22
62.216.80.0/24 maxlen: 24
62.216.84.0/22 maxlen: 22
62.216.80.0/22 maxlen: 22
62.216.81.0/24 maxlen: 24
62.216.82.0/24 maxlen: 24
62.216.83.0/24 maxlen: 24
62.216.84.0/24 maxlen: 24
62.216.85.0/24 maxlen: 24
188.74.216.0/21 maxlen: 21
62.216.88.0/22 maxlen: 22
188.74.224.0/21 maxlen: 21
62.216.86.0/24 maxlen: 24
62.216.87.0/24 maxlen: 24
62.216.88.0/24 maxlen: 24
62.216.89.0/24 maxlen: 24
62.216.90.0/24 maxlen: 24
62.216.91.0/24 maxlen: 24
188.74.232.0/21 maxlen: 21
62.216.92.0/24 maxlen: 24
62.216.93.0/24 maxlen: 24
62.216.94.0/24 maxlen: 24
62.216.95.0/24 maxlen: 24
188.74.144.0/22 maxlen: 22
188.74.148.0/22 maxlen: 22
188.74.160.0/21 maxlen: 21
188.74.184.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 23 May 2023 12:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:53:eb:2b:ac:ac:60:b9:d4:c7:e9:28:56:58:46:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Jan 1 12:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=35c19ce3c633830e97301540e21958d6f733dbea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:13:76:70:db:86:db:ad:04:02:41:64:fd:bf:
2e:b7:c6:5c:78:50:50:3c:7f:a9:53:81:41:52:72:
c3:46:c4:a6:f6:27:e7:eb:4a:05:83:80:87:9d:c4:
38:93:16:6b:56:8c:60:0e:3b:46:78:2e:fc:6c:07:
ac:a7:18:2e:87:5e:7d:4d:e5:8a:39:d8:58:df:3e:
48:09:a4:fb:e5:30:d3:bc:ca:f1:81:11:f3:24:bc:
da:58:0e:9b:fc:3b:dd:40:eb:b9:2b:aa:32:32:8f:
c1:81:03:7d:6c:4b:0e:85:0e:35:9e:a5:54:c6:95:
11:95:8a:83:cc:fc:e0:d7:05:1e:9d:eb:de:f8:22:
b1:a7:44:c5:52:f5:60:1e:1b:31:15:55:8e:95:68:
99:d5:d4:7c:cc:d3:b3:a5:ba:89:79:46:be:7f:42:
8d:06:04:60:bb:88:bc:74:7a:54:55:23:75:06:af:
cf:b7:50:b7:bb:38:10:d9:d8:32:60:f9:cb:a1:60:
84:3f:8f:c7:6e:52:05:3e:d7:3f:bd:4c:67:e3:0d:
97:c6:61:95:31:c2:91:1a:79:e6:47:e8:29:30:c7:
48:47:c3:13:03:24:c5:80:e7:00:52:33:69:62:15:
26:31:bf:94:21:f2:00:a3:b7:ad:ee:67:bf:96:fe:
82:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:C1:9C:E3:C6:33:83:0E:97:30:15:40:E2:19:58:D6:F7:33:DB:EA
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/NcGc48Yzgw6XMBVA4hlY1vcz2-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.132.0/22
5.157.152.0-5.157.163.255
5.157.168.0/21
5.157.192.0/19
5.157.228.0-5.157.239.255
5.157.248.0/21
37.35.48.0-37.35.52.255
62.216.72.0/22
62.216.80.0/20
178.157.68.0/22
178.157.94.0/24
178.157.101.0/24
178.157.112.0-178.157.123.255
185.76.61.0/24
185.76.63.0/24
188.74.144.0/21
188.74.160.0/21
188.74.184.0/22
188.74.192.0/20
188.74.212.0-188.74.239.255
188.74.248.0/21
188.119.128.0/20
188.119.168.0/21
188.119.180.0/24
188.119.182.0-188.119.191.255
Signature Algorithm: sha256WithRSAEncryption
6e:2b:cf:1c:7a:2d:16:00:00:e5:e1:a5:c1:a6:b4:9c:2c:60:
23:8f:f0:84:95:eb:b6:0e:5b:95:a2:1c:63:1c:5c:b4:e3:6c:
11:dd:7d:7f:2c:6e:64:57:d1:99:1a:f6:7a:c2:33:41:f2:1b:
f3:51:f9:50:c1:e6:35:aa:8c:2c:41:95:d9:17:a9:e4:e6:bc:
7d:e4:75:b2:81:87:ed:96:4c:83:33:1f:fe:c9:f6:14:38:01:
53:8d:ea:be:84:48:81:71:ca:ae:c1:98:71:44:f6:d3:cf:34:
c8:a5:bf:5a:2b:47:66:b5:e7:1c:ad:3c:d7:ab:59:03:7a:8f:
68:4a:8b:75:5d:c9:28:9c:5c:fa:75:f7:fd:d9:34:f2:14:c4:
ad:ef:59:cd:4a:eb:d6:4e:fa:f3:15:9e:67:ec:84:97:cd:90:
57:a1:57:b7:12:47:93:3a:c2:76:df:6e:fc:63:ad:e6:9f:7b:
0e:ff:11:97:8f:6e:37:04:c3:84:0d:41:58:e7:86:cb:37:b4:
be:e6:89:22:05:2b:f3:fd:3d:d8:4c:24:7d:0c:77:cc:6b:82:
b4:cd:49:95:c2:ad:d9:72:af:18:00:2a:4a:bf:84:c1:9e:47:
89:ac:7c:21:6e:a1:43:47:d2:ff:af:1b:c8:89:35:83:6e:4a:
df:ca:cf:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:50 2024 by rpki-client on console-ams.rpki-client.org