Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/hLkv5vzjDVZIfAQYZ5k7IxGPgb0.roa
File: hLkv5vzjDVZIfAQYZ5k7IxGPgb0.roa (raw, json)
Hash identifier: HXHEApIrgnjmNZkLunr5tC9expTmB3v/x4hMIyOTB4Q=
Subject key identifier: 84:B9:2F:E6:FC:E3:0D:56:48:7C:04:18:67:99:3B:23:11:8F:81:BD
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 018EBE85A159BD750000D3352236C0154846
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/hLkv5vzjDVZIfAQYZ5k7IxGPgb0.roa
Signing time: Mon 08 Apr 2024 16:23:32 +0000
ROA not before: Mon 08 Apr 2024 16:23:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 5.157.136.0/24 maxlen: 24
5.157.139.0/24 maxlen: 24
37.35.36.0/24 maxlen: 24
37.35.37.0/24 maxlen: 24
37.35.39.0/24 maxlen: 24
62.216.92.0/24 maxlen: 24
62.216.93.0/24 maxlen: 24
91.225.15.0/24 maxlen: 24
146.66.208.0/24 maxlen: 24
146.66.209.0/24 maxlen: 24
146.66.212.0/22 maxlen: 22
146.66.212.0/24 maxlen: 24
146.66.213.0/24 maxlen: 24
146.66.214.0/24 maxlen: 24
146.66.215.0/24 maxlen: 24
146.66.220.0/24 maxlen: 24
146.66.221.0/24 maxlen: 24
146.66.222.0/24 maxlen: 24
146.66.223.0/24 maxlen: 24
178.157.76.0/24 maxlen: 24
178.157.94.0/24 maxlen: 24
178.157.108.0/24 maxlen: 24
178.157.124.0/24 maxlen: 24
178.157.126.0/24 maxlen: 24
188.74.128.0/24 maxlen: 24
188.74.152.0/24 maxlen: 24
188.74.155.0/24 maxlen: 24
188.74.171.0/24 maxlen: 24
188.74.181.0/24 maxlen: 24
188.74.190.0/24 maxlen: 24
188.74.208.0/24 maxlen: 24
188.74.209.0/24 maxlen: 24
188.74.245.0/24 maxlen: 24
188.119.165.0/24 maxlen: 24
188.119.166.0/24 maxlen: 24
188.119.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Apr 2024 16:24:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:be:85:a1:59:bd:75:00:00:d3:35:22:36:c0:15:48:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Apr 8 16:23:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=84b92fe6fce30d56487c041867993b23118f81bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:31:dd:52:2e:6e:e5:e0:c7:fe:38:30:a5:a0:
87:9f:a1:f4:75:e6:8b:31:ea:21:ae:a0:93:94:c2:
cc:45:ff:28:f8:1d:72:66:e2:a0:39:d0:6a:55:db:
c6:ae:b5:82:8c:7e:eb:89:a5:a0:2d:0b:2d:8a:bd:
1a:9d:5b:f9:4e:31:98:09:1d:7f:01:7b:0b:37:1b:
a1:84:95:09:42:bf:a8:9a:58:1d:8a:bf:f1:c8:34:
b3:92:c7:11:2f:a0:20:b8:7e:ba:71:6d:d6:92:db:
28:2e:97:00:0d:f6:fd:dd:f8:69:ab:f8:64:b7:e6:
05:0f:c0:1e:dc:de:b2:cc:22:81:04:66:eb:3d:14:
36:5c:b6:7e:53:8d:1f:58:ad:ee:8b:60:cb:69:b6:
79:d3:ee:13:f6:ab:8f:6b:7d:cd:93:ee:c1:f3:2f:
81:f3:e5:8b:9f:67:cb:e4:80:2a:33:bf:4c:da:7b:
37:6c:b0:b5:ec:5b:b9:67:2a:17:b9:26:42:a1:fb:
9d:2b:a0:e3:c7:22:d9:c9:52:2e:58:81:06:9d:cd:
07:55:79:31:4c:17:3e:52:b0:5d:91:51:31:d2:41:
2d:1d:c1:29:42:b7:41:5e:1e:91:5b:9d:98:a4:3f:
8e:dd:d7:a4:dd:54:e1:e0:78:77:55:cf:12:d7:93:
14:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:B9:2F:E6:FC:E3:0D:56:48:7C:04:18:67:99:3B:23:11:8F:81:BD
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/hLkv5vzjDVZIfAQYZ5k7IxGPgb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.136.0/24
5.157.139.0/24
37.35.36.0/23
37.35.39.0/24
62.216.92.0/23
91.225.15.0/24
146.66.208.0/23
146.66.212.0/22
146.66.220.0/22
178.157.76.0/24
178.157.94.0/24
178.157.108.0/24
178.157.124.0/24
178.157.126.0/24
188.74.128.0/24
188.74.152.0/24
188.74.155.0/24
188.74.171.0/24
188.74.181.0/24
188.74.190.0/24
188.74.208.0/23
188.74.245.0/24
188.119.165.0-188.119.166.255
188.119.181.0/24
Signature Algorithm: sha256WithRSAEncryption
22:d8:58:04:f2:c0:2a:7c:ce:13:7d:62:1a:44:bc:a6:d0:01:
a4:9c:16:82:02:6d:c6:8f:f8:1c:8e:72:e9:4f:71:65:f6:f3:
f5:ee:77:42:ca:17:44:48:a7:aa:c7:01:aa:8a:71:3e:6b:b7:
23:cb:0d:43:b4:6f:dc:0f:c2:ac:21:ce:2f:6d:eb:8d:56:bf:
21:19:c0:49:11:7d:c1:7d:5b:23:de:f2:35:83:45:ed:21:3e:
ef:a8:48:c9:82:d3:c0:d4:38:e4:b0:f8:ff:9f:67:b9:24:cc:
7c:df:c0:e0:ce:be:cd:07:14:af:e9:e9:8c:99:93:ab:f6:a1:
d8:99:23:f5:6f:06:eb:c4:e1:0f:1a:f3:d1:8f:10:b1:f2:15:
ad:4f:e0:21:1e:b1:0d:39:30:8d:b4:bd:26:1b:cd:93:60:c0:
73:09:df:26:36:32:fd:6c:b7:d1:07:00:04:c2:a2:07:56:4d:
73:cc:65:51:79:30:47:40:53:ab:a4:80:68:89:7a:af:b4:71:
06:87:c4:85:1c:0b:ae:68:74:a0:b2:9a:6e:26:6b:fa:52:d1:
22:c9:f8:da:fb:04:f8:ee:cb:56:52:07:61:be:5b:9f:52:07:
94:8f:cc:ee:ed:43:06:ce:2f:b0:a3:8d:bf:a1:de:9b:7b:5e:
75:50:ef:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:16 2024 by rpki-client on console-fra.rpki-client.org