Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/699e85-1027-4c7e-8ae7-df4a2e760ccb/1/1OzFjd1dGy8wzCERJCbwimpMo-8.roa
File: 1OzFjd1dGy8wzCERJCbwimpMo-8.roa (raw, json)
Hash identifier: p4xVgyMAFu+hZIsQsm0nkJ576Wpn9+fxb1Fy+EB7jts=
Subject key identifier: D4:EC:C5:8D:DD:5D:1B:2F:30:CC:21:11:24:26:F0:8A:6A:4C:A3:EF
Certificate issuer: /CN=e4a2b8e90d157ea022f8e700024a93dc356a514d
Certificate serial: 018B665BB9350F0A7957F0F14C4CFF49172C
Authority key identifier: E4:A2:B8:E9:0D:15:7E:A0:22:F8:E7:00:02:4A:93:DC:35:6A:51:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5KK46Q0VfqAi-OcAAkqT3DVqUU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/699e85-1027-4c7e-8ae7-df4a2e760ccb/1/1OzFjd1dGy8wzCERJCbwimpMo-8.roa
Signing time: Wed 25 Oct 2023 10:22:49 +0000
ROA not before: Wed 25 Oct 2023 10:22:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42910
IP address blocks: 188.132.135.0/24 maxlen: 32
188.132.134.0/24 maxlen: 24
188.132.142.0/24 maxlen: 24
188.132.147.0/24 maxlen: 32
188.132.148.0/24 maxlen: 24
188.132.158.0/24 maxlen: 32
188.132.157.0/24 maxlen: 24
188.132.215.0/24 maxlen: 24
188.132.214.0/24 maxlen: 24
188.132.219.0/24 maxlen: 32
188.132.217.0/24 maxlen: 32
188.132.218.0/24 maxlen: 24
188.132.224.0/24 maxlen: 24
188.132.226.0/24 maxlen: 32
188.132.225.0/24 maxlen: 24
188.132.220.0/24 maxlen: 24
188.132.227.0/24 maxlen: 32
188.132.231.0/24 maxlen: 24
188.132.228.0/24 maxlen: 32
188.132.233.0/24 maxlen: 24
188.132.232.0/24 maxlen: 24
188.132.230.0/24 maxlen: 32
77.92.130.0/24 maxlen: 24
77.92.129.0/24 maxlen: 24
77.92.128.0/24 maxlen: 24
188.132.235.0/24 maxlen: 24
77.92.132.0/24 maxlen: 24
188.132.239.0/24 maxlen: 24
77.92.131.0/24 maxlen: 24
188.132.234.0/24 maxlen: 32
77.92.133.0/24 maxlen: 32
188.132.241.0/24 maxlen: 24
77.92.137.0/24 maxlen: 24
77.92.136.0/24 maxlen: 24
77.92.135.0/24 maxlen: 24
188.132.243.0/24 maxlen: 24
188.132.244.0/24 maxlen: 32
77.92.134.0/24 maxlen: 24
77.92.139.0/24 maxlen: 24
77.92.138.0/24 maxlen: 24
188.132.246.0/24 maxlen: 24
188.132.245.0/24 maxlen: 24
188.132.251.0/24 maxlen: 24
188.132.250.0/24 maxlen: 24
77.92.141.0/24 maxlen: 24
188.132.253.0/24 maxlen: 24
188.132.252.0/24 maxlen: 24
77.92.140.0/24 maxlen: 32
77.92.149.0/24 maxlen: 24
77.92.148.0/24 maxlen: 24
188.132.255.0/24 maxlen: 24
188.132.254.0/24 maxlen: 24
77.92.158.0/24 maxlen: 24
77.92.156.0/24 maxlen: 24
77.92.155.0/24 maxlen: 32
77.92.159.0/24 maxlen: 24
77.92.157.0/24 maxlen: 32
188.132.172.0/24 maxlen: 24
188.132.175.0/24 maxlen: 24
188.132.176.0/24 maxlen: 32
188.132.177.0/24 maxlen: 24
188.132.183.0/24 maxlen: 32
188.132.180.0/24 maxlen: 24
188.132.195.0/24 maxlen: 24
188.132.194.0/24 maxlen: 24
188.132.204.0/24 maxlen: 32
188.132.205.0/24 maxlen: 32
188.132.211.0/24 maxlen: 32
188.132.208.0/24 maxlen: 32
188.132.213.0/24 maxlen: 24
188.132.212.0/24 maxlen: 24
212.68.57.0/24 maxlen: 32
212.68.56.0/24 maxlen: 32
212.68.61.0/24 maxlen: 32
31.210.33.0/24 maxlen: 24
31.210.32.0/24 maxlen: 24
31.210.36.0/24 maxlen: 24
31.210.35.0/24 maxlen: 24
31.210.44.0/24 maxlen: 24
31.210.40.0/24 maxlen: 32
31.210.41.0/24 maxlen: 24
31.210.47.0/24 maxlen: 24
31.210.46.0/24 maxlen: 24
31.210.45.0/24 maxlen: 32
31.210.58.0/24 maxlen: 24
31.210.57.0/24 maxlen: 24
31.210.56.0/24 maxlen: 24
31.210.60.0/24 maxlen: 24
31.210.59.0/24 maxlen: 24
31.210.61.0/24 maxlen: 32
78.135.98.0/24 maxlen: 24
78.135.103.0/24 maxlen: 24
78.135.99.0/24 maxlen: 32
78.135.108.0/24 maxlen: 32
78.135.113.0/24 maxlen: 32
78.135.116.0/24 maxlen: 24
78.135.115.0/24 maxlen: 24
78.135.114.0/24 maxlen: 32
212.68.33.0/24 maxlen: 32
212.68.41.0/24 maxlen: 32
212.68.40.0/24 maxlen: 32
212.68.43.0/24 maxlen: 32
212.68.44.0/24 maxlen: 24
212.68.42.0/24 maxlen: 32
212.68.45.0/24 maxlen: 32
212.68.46.0/24 maxlen: 32
212.68.50.0/24 maxlen: 32
212.68.51.0/24 maxlen: 24
78.135.79.0/24 maxlen: 24
2a02:26b0:8001::/48 maxlen: 48
2a02:26b0::/32 maxlen: 32
2a02:26b0:8000::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:66:5b:b9:35:0f:0a:79:57:f0:f1:4c:4c:ff:49:17:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a2b8e90d157ea022f8e700024a93dc356a514d
Validity
Not Before: Oct 25 10:22:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d4ecc58ddd5d1b2f30cc21112426f08a6a4ca3ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e1:1e:ef:29:6b:2b:07:64:60:5d:6f:eb:3a:
39:d4:2e:37:6a:46:5b:a4:53:cc:d1:60:01:02:d6:
52:41:c3:e7:33:1e:c1:cd:f5:ff:78:31:8b:1e:1f:
e8:06:be:03:9a:5f:e1:cd:c9:d4:3f:06:03:b7:62:
3b:cd:55:34:82:65:a7:56:cf:8e:3d:9a:f9:9b:72:
5c:b3:44:ac:a8:74:c0:58:8b:93:2c:d4:6b:cc:cf:
02:c6:3a:d7:a7:df:e6:51:fb:d4:09:27:8b:f1:5f:
ec:29:d9:d0:f5:6c:e4:a4:c0:5d:93:68:c9:4b:b0:
9d:28:12:3e:cf:30:1c:7b:4f:d8:4a:c6:c3:0f:13:
b6:2c:ba:c2:84:78:0e:f8:13:d5:6b:1a:0b:02:82:
64:fb:c7:15:b5:37:60:5d:6e:5c:ab:1f:81:15:7e:
97:12:4b:bf:95:85:fa:e1:03:e2:3c:56:c1:ec:5f:
70:98:7e:10:1b:06:5d:3f:85:74:1f:e0:03:16:26:
18:df:fb:e2:02:25:b8:a8:81:95:9b:c1:e1:bf:99:
a4:02:69:9e:7c:48:2e:6d:3e:b7:9b:f0:87:02:62:
d5:32:da:bb:c7:6d:29:65:46:1d:92:6f:da:62:93:
5d:e3:a3:fa:ca:9b:85:cf:86:cc:62:fa:46:15:0f:
b9:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:EC:C5:8D:DD:5D:1B:2F:30:CC:21:11:24:26:F0:8A:6A:4C:A3:EF
X509v3 Authority Key Identifier:
keyid:E4:A2:B8:E9:0D:15:7E:A0:22:F8:E7:00:02:4A:93:DC:35:6A:51:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5KK46Q0VfqAi-OcAAkqT3DVqUU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/699e85-1027-4c7e-8ae7-df4a2e760ccb/1/1OzFjd1dGy8wzCERJCbwimpMo-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/699e85-1027-4c7e-8ae7-df4a2e760ccb/1/5KK46Q0VfqAi-OcAAkqT3DVqUU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.32.0/23
31.210.35.0-31.210.36.255
31.210.40.0/23
31.210.44.0/22
31.210.56.0-31.210.61.255
77.92.128.0-77.92.141.255
77.92.148.0/23
77.92.155.0-77.92.159.255
78.135.79.0/24
78.135.98.0/23
78.135.103.0/24
78.135.108.0/24
78.135.113.0-78.135.116.255
188.132.134.0/23
188.132.142.0/24
188.132.147.0-188.132.148.255
188.132.157.0-188.132.158.255
188.132.172.0/24
188.132.175.0-188.132.177.255
188.132.180.0/24
188.132.183.0/24
188.132.194.0/23
188.132.204.0/23
188.132.208.0/24
188.132.211.0-188.132.215.255
188.132.217.0-188.132.220.255
188.132.224.0-188.132.228.255
188.132.230.0-188.132.235.255
188.132.239.0/24
188.132.241.0/24
188.132.243.0-188.132.246.255
188.132.250.0-188.132.255.255
212.68.33.0/24
212.68.40.0-212.68.46.255
212.68.50.0/23
212.68.56.0/23
212.68.61.0/24
IPv6:
2a02:26b0::/32
Signature Algorithm: sha256WithRSAEncryption
43:8e:6d:6e:07:83:f2:c4:20:42:1a:67:95:c6:15:72:7f:cf:
ec:ad:5f:d9:87:94:12:c8:58:a4:2d:20:c9:ef:d4:80:e8:d7:
66:0a:8b:28:3e:4e:f2:95:fd:81:57:64:1b:7c:c8:c8:db:a5:
8e:f8:c5:3b:8e:71:7d:72:a1:86:b9:3a:ac:00:d5:60:55:fc:
a7:92:9c:cd:a7:95:74:3d:07:a6:42:a5:a0:3a:18:4e:3b:05:
53:a0:87:ee:ad:51:6a:09:4c:e8:ea:c1:12:d1:8a:2f:e8:2d:
94:3e:20:d2:ab:1c:72:8a:d0:31:50:85:20:50:4c:d4:35:38:
09:7e:b2:e7:8e:95:ab:49:2d:82:e0:6b:8b:8f:fb:bf:fb:1c:
a3:11:6b:14:6b:25:b5:fe:55:50:4e:05:15:63:59:f7:59:eb:
39:40:12:8c:29:93:4f:cf:21:88:db:59:69:ee:e1:1b:87:6a:
72:13:16:e4:72:c6:da:5f:72:2c:8b:48:c5:11:3d:0b:30:a9:
05:b8:24:f6:87:bb:23:31:f0:54:d4:c6:1c:6a:4e:7a:d9:2d:
16:cd:c3:af:25:fd:6f:ed:c0:40:51:b3:5f:6c:5c:df:08:40:
51:20:35:e9:04:5e:8f:4f:31:58:20:29:f6:ae:47:33:67:6d:
e6:5e:b4:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 6 09:30:04 2023 by rpki-client on console-ams.rpki-client.org