Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/tFG8rhvNi3Vp7StrGFsU389GDIc.roa
File: tFG8rhvNi3Vp7StrGFsU389GDIc.roa (raw, json)
Hash identifier: wYs0E0T+t0pNY1PFwHysEwwlKhlyemayV/o7BXleZog=
Subject key identifier: B4:51:BC:AE:1B:CD:8B:75:69:ED:2B:6B:18:5B:14:DF:CF:46:0C:87
Certificate issuer: /CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
Certificate serial: 0188DD8BF359E76E8C51E6714BBA81622D01
Authority key identifier: D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/tFG8rhvNi3Vp7StrGFsU389GDIc.roa
Signing time: Wed 21 Jun 2023 10:41:56 +0000
ROA not before: Wed 21 Jun 2023 10:41:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6866
IP address blocks: 87.228.128.0/17 maxlen: 24
62.228.128.0/19 maxlen: 19
87.228.128.0/18 maxlen: 18
87.228.144.0/20 maxlen: 20
62.228.64.0/19 maxlen: 19
62.228.96.0/19 maxlen: 19
62.228.226.0/23 maxlen: 23
87.228.224.0/20 maxlen: 20
87.228.224.0/19 maxlen: 19
62.228.224.0/19 maxlen: 19
62.228.228.0/24 maxlen: 24
62.228.229.0/24 maxlen: 24
62.228.240.0/23 maxlen: 23
87.228.240.0/20 maxlen: 20
83.168.0.0/19 maxlen: 19
83.168.0.0/18 maxlen: 24
62.228.160.0/19 maxlen: 19
87.228.160.0/20 maxlen: 20
87.228.176.0/20 maxlen: 20
87.228.192.0/20 maxlen: 20
62.228.192.0/19 maxlen: 19
83.168.32.0/19 maxlen: 19
87.228.208.0/20 maxlen: 20
31.153.128.0/19 maxlen: 19
176.92.224.0/19 maxlen: 24
31.153.160.0/19 maxlen: 19
31.153.96.0/19 maxlen: 19
62.228.0.0/19 maxlen: 19
62.228.0.0/21 maxlen: 21
62.228.0.0/16 maxlen: 24
62.228.8.0/21 maxlen: 21
62.228.16.0/22 maxlen: 22
62.228.20.0/22 maxlen: 22
62.228.24.0/21 maxlen: 21
62.228.32.0/19 maxlen: 19
31.153.192.0/19 maxlen: 19
31.153.224.0/19 maxlen: 19
212.31.96.0/20 maxlen: 20
212.31.96.0/24 maxlen: 24
212.31.96.0/19 maxlen: 24
212.31.112.0/20 maxlen: 20
81.4.128.0/18 maxlen: 24
81.4.128.0/19 maxlen: 19
212.31.121.0/24 maxlen: 24
212.31.122.0/24 maxlen: 24
212.31.123.0/24 maxlen: 24
212.31.124.0/24 maxlen: 24
212.31.125.0/24 maxlen: 24
81.4.133.0/24 maxlen: 24
212.31.127.0/24 maxlen: 24
31.153.16.0/20 maxlen: 20
31.153.32.0/19 maxlen: 19
31.153.64.0/19 maxlen: 19
81.4.160.0/19 maxlen: 19
81.4.160.0/20 maxlen: 20
81.4.160.0/21 maxlen: 21
81.4.168.0/21 maxlen: 21
81.4.174.0/24 maxlen: 24
81.4.176.0/21 maxlen: 21
31.153.0.0/17 maxlen: 17
31.153.0.0/20 maxlen: 20
31.153.0.0/19 maxlen: 19
31.153.0.0/16 maxlen: 24
46.199.0.0/19 maxlen: 19
46.199.0.0/18 maxlen: 18
46.199.0.0/16 maxlen: 24
46.199.16.0/20 maxlen: 20
46.199.32.0/19 maxlen: 19
46.199.32.0/20 maxlen: 20
46.199.48.0/20 maxlen: 20
46.199.64.0/20 maxlen: 20
46.199.88.0/24 maxlen: 24
46.198.32.0/19 maxlen: 19
46.198.64.0/19 maxlen: 19
46.198.64.0/18 maxlen: 18
46.198.0.0/18 maxlen: 18
46.198.0.0/19 maxlen: 19
46.198.0.0/17 maxlen: 24
46.198.96.0/19 maxlen: 19
93.109.192.0/19 maxlen: 19
93.109.209.0/24 maxlen: 24
93.109.219.0/24 maxlen: 24
93.109.224.0/19 maxlen: 19
93.109.128.0/19 maxlen: 19
93.109.160.0/19 maxlen: 19
185.2.97.0/24 maxlen: 24
185.2.98.0/24 maxlen: 24
185.2.96.0/24 maxlen: 24
185.2.96.0/22 maxlen: 24
185.2.99.0/24 maxlen: 24
93.109.227.0/24 maxlen: 24
93.109.239.0/24 maxlen: 24
213.7.208.0/24 maxlen: 24
195.14.142.0/24 maxlen: 24
195.14.144.0/20 maxlen: 20
213.7.208.0/20 maxlen: 20
195.14.151.0/24 maxlen: 24
195.14.146.0/24 maxlen: 24
213.7.220.0/22 maxlen: 22
213.7.224.0/20 maxlen: 20
195.14.153.0/24 maxlen: 24
213.7.240.0/20 maxlen: 20
93.109.0.0/19 maxlen: 19
93.109.0.0/16 maxlen: 24
128.0.224.0/20 maxlen: 24
213.7.160.0/20 maxlen: 20
213.7.176.0/20 maxlen: 20
128.0.240.0/20 maxlen: 24
213.7.192.0/20 maxlen: 20
195.14.128.0/19 maxlen: 24
195.14.128.0/20 maxlen: 20
213.149.176.0/20 maxlen: 20
93.109.96.0/19 maxlen: 19
93.109.32.0/19 maxlen: 19
213.149.160.0/19 maxlen: 24
213.149.160.0/20 maxlen: 20
93.109.64.0/19 maxlen: 19
213.7.0.0/17 maxlen: 17
213.7.0.0/20 maxlen: 20
213.7.0.0/16 maxlen: 24
213.7.16.0/20 maxlen: 20
213.7.32.0/20 maxlen: 20
213.7.96.0/20 maxlen: 20
213.7.112.0/20 maxlen: 20
213.7.128.0/18 maxlen: 18
213.7.128.0/20 maxlen: 20
128.0.200.0/21 maxlen: 24
128.0.208.0/20 maxlen: 24
37.149.0.0/16 maxlen: 24
213.7.144.0/20 maxlen: 20
128.0.107.0/24 maxlen: 24
213.7.48.0/20 maxlen: 20
213.7.64.0/20 maxlen: 20
213.7.80.0/20 maxlen: 20
2a00:1358:1000::/48 maxlen: 48
2a00:1358:df00::/48 maxlen: 48
2a00:1358::/30 maxlen: 30
2a00:1358:f000::/41 maxlen: 41
2a00:1358:f080::/41 maxlen: 41
2a00:1358::/29 maxlen: 48
2a00:1358:b000::/44 maxlen: 44
2a00:1358:f000::/40 maxlen: 40
2a00:1358:d000::/40 maxlen: 40
Validation: Failed, certificate revoked on Wed 20 Sep 2023 10:08:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:dd:8b:f3:59:e7:6e:8c:51:e6:71:4b:ba:81:62:2d:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
Validity
Not Before: Jun 21 10:41:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b451bcae1bcd8b7569ed2b6b185b14dfcf460c87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:6c:38:43:f8:a4:15:41:53:69:61:0c:c6:46:
ca:c1:9f:c4:ec:69:aa:e9:0e:ae:22:89:1a:d3:98:
95:04:d0:66:03:64:d9:6a:6e:13:d6:f0:7b:21:d1:
41:db:57:ca:11:96:be:18:da:58:b6:2e:59:e0:43:
a6:79:4e:bd:22:f6:59:ea:97:e4:23:a2:8a:b1:a2:
1a:2c:ae:2b:ae:b5:ed:7c:e9:d4:1c:ec:0b:c7:95:
1a:88:18:24:e6:0f:6b:f3:ff:17:6a:47:1b:1b:bc:
d3:b1:ec:dc:2a:df:2f:62:41:25:b7:bd:4b:1c:d1:
b9:7c:f2:4f:d6:fc:37:0e:ce:ff:47:77:ec:d2:22:
4f:30:ce:a8:58:80:87:c4:12:83:3a:da:f1:52:8c:
76:0c:7d:95:e1:ae:e1:a7:34:19:a8:5e:b4:ce:e9:
b8:48:ab:2f:91:ff:97:8f:7a:80:d1:54:10:81:17:
e3:2a:8b:60:3b:de:a8:b3:14:39:4a:db:cb:fa:f2:
22:31:19:83:33:67:bb:09:5f:2d:e1:d9:02:3b:a4:
5e:b8:bc:83:83:fd:67:fe:cd:d8:dc:56:e2:b0:4d:
2c:95:be:41:51:bd:5b:d1:c0:bd:2b:46:36:86:af:
20:53:d4:c9:f0:29:07:5b:fb:70:06:46:3d:32:a3:
18:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:51:BC:AE:1B:CD:8B:75:69:ED:2B:6B:18:5B:14:DF:CF:46:0C:87
X509v3 Authority Key Identifier:
keyid:D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/tFG8rhvNi3Vp7StrGFsU389GDIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/1BGrxMBGirKJHqrK26DcA3eTb9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.153.0.0/16
37.149.0.0/16
46.198.0.0/17
46.199.0.0/16
62.228.0.0/16
81.4.128.0/18
83.168.0.0/18
87.228.128.0/17
93.109.0.0/16
128.0.107.0/24
128.0.200.0-128.0.255.255
176.92.224.0/19
185.2.96.0/22
195.14.128.0/19
212.31.96.0/19
213.7.0.0/16
213.149.160.0/19
IPv6:
2a00:1358::/29
Signature Algorithm: sha256WithRSAEncryption
58:55:25:44:2b:8a:de:6b:74:0d:40:4a:1e:8c:5e:c5:8b:e9:
41:0c:77:bb:e1:8b:9d:31:4a:4e:87:ba:52:85:6f:cb:2e:6b:
18:e6:dc:c0:90:2e:07:1b:c3:ad:fa:40:a7:a9:ce:02:f7:a1:
e3:75:53:58:9b:6c:0f:b3:fe:13:b3:73:41:0f:16:4a:f6:e4:
fc:d6:bd:95:75:f6:ae:15:9e:27:ae:d1:0e:d1:ac:15:e7:8a:
bd:54:bd:01:2d:0c:8e:b8:7e:c7:8c:ab:f9:ab:4c:f5:4f:e0:
85:2c:04:9d:a3:a6:87:02:27:5f:54:6e:e8:63:b7:af:81:e3:
a1:e4:50:e1:32:48:62:40:e2:7a:44:e7:0f:4e:d2:84:d0:cc:
1e:87:38:ac:03:e9:75:de:4b:64:6c:75:ed:a4:22:88:22:aa:
79:69:c2:a3:d4:b5:34:d5:11:45:08:22:4f:be:a8:32:71:5a:
87:cb:97:2e:07:e4:1f:13:4f:61:40:14:89:67:b8:6b:22:5e:
3d:59:d0:36:c7:05:31:d2:5e:07:79:74:bc:2a:db:0e:f6:c8:
ef:79:fc:8a:77:db:ed:49:13:a4:5a:05:80:08:4e:8d:0b:7a:
49:a8:fc:7f:1d:13:c7:dd:b6:c7:77:67:7b:42:38:ac:0f:aa:
de:b8:1d:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:35 2024 by rpki-client on console-fra.rpki-client.org