Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/91da8b-0502-48df-8532-5fbf9a29b6e1/1/hM5_xXawvy5go96EtVSusPeHFVM.roa
File: hM5_xXawvy5go96EtVSusPeHFVM.roa (raw, json)
Hash identifier: GWh/OHzSTBKpUTJhUlFTDTDxvR6eHYImof63PWw0nfw=
Subject key identifier: 84:CE:7F:C5:76:B0:BF:2E:60:A3:DE:84:B5:54:AE:B0:F7:87:15:53
Certificate issuer: /CN=f62eeb879085c94194297dd9e4cd249cd2516515
Certificate serial: 018C0AF81C2D913FC1EEF591DB4D0878F397
Authority key identifier: F6:2E:EB:87:90:85:C9:41:94:29:7D:D9:E4:CD:24:9C:D2:51:65:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9i7rh5CFyUGUKX3Z5M0knNJRZRU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/91da8b-0502-48df-8532-5fbf9a29b6e1/1/hM5_xXawvy5go96EtVSusPeHFVM.roa
Signing time: Sun 26 Nov 2023 09:31:21 +0000
ROA not before: Sun 26 Nov 2023 09:31:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197540
IP address blocks: 45.157.176.0/22 maxlen: 22
37.120.160.0/19 maxlen: 32
185.16.60.0/22 maxlen: 32
37.221.192.0/21 maxlen: 32
85.235.64.0/22 maxlen: 22
185.228.136.0/22 maxlen: 32
92.60.36.0/22 maxlen: 22
194.59.204.0/22 maxlen: 22
45.83.104.0/22 maxlen: 22
185.194.140.0/22 maxlen: 22
81.16.16.0/22 maxlen: 22
5.181.48.0/22 maxlen: 22
194.13.80.0/22 maxlen: 22
46.38.240.0/21 maxlen: 32
46.38.248.0/22 maxlen: 32
185.207.104.0/22 maxlen: 32
46.38.252.0/22 maxlen: 32
185.170.112.0/22 maxlen: 32
91.204.44.0/22 maxlen: 22
93.177.64.0/22 maxlen: 22
45.129.180.0/22 maxlen: 22
185.183.156.0/22 maxlen: 32
185.163.116.0/22 maxlen: 22
152.89.104.0/22 maxlen: 22
46.38.224.0/20 maxlen: 32
213.109.160.0/22 maxlen: 22
45.90.4.0/22 maxlen: 22
2.56.96.0/22 maxlen: 22
45.9.60.0/22 maxlen: 22
185.244.192.0/22 maxlen: 32
194.55.12.0/22 maxlen: 22
91.132.144.0/22 maxlen: 22
45.142.176.0/22 maxlen: 22
89.58.28.0/22 maxlen: 22
89.58.36.0/22 maxlen: 22
89.58.32.0/22 maxlen: 22
89.58.44.0/22 maxlen: 22
89.58.40.0/22 maxlen: 22
89.58.48.0/22 maxlen: 22
89.58.52.0/22 maxlen: 22
89.58.56.0/22 maxlen: 22
185.233.104.0/22 maxlen: 32
89.58.60.0/22 maxlen: 22
5.45.96.0/20 maxlen: 32
45.132.244.0/22 maxlen: 22
185.162.248.0/22 maxlen: 32
45.136.28.0/22 maxlen: 22
5.252.224.0/22 maxlen: 22
192.145.44.0/22 maxlen: 22
85.209.48.0/22 maxlen: 22
195.128.100.0/22 maxlen: 22
193.30.120.0/22 maxlen: 22
89.58.4.0/22 maxlen: 22
89.58.0.0/22 maxlen: 22
193.31.24.0/22 maxlen: 22
89.58.8.0/22 maxlen: 22
188.68.32.0/19 maxlen: 32
89.58.16.0/21 maxlen: 21
89.58.12.0/22 maxlen: 22
89.58.24.0/22 maxlen: 22
185.243.8.0/22 maxlen: 32
46.232.248.0/22 maxlen: 22
2a0a:4cc0:100::/48 maxlen: 48
2a0a:4cc0::/40 maxlen: 40
2a03:4001::/32 maxlen: 48
2a03:4000::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:0a:f8:1c:2d:91:3f:c1:ee:f5:91:db:4d:08:78:f3:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f62eeb879085c94194297dd9e4cd249cd2516515
Validity
Not Before: Nov 26 09:31:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84ce7fc576b0bf2e60a3de84b554aeb0f7871553
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:93:c4:85:6c:ea:99:ee:38:8d:d8:c2:28:af:
51:c3:e2:56:8b:aa:fc:32:0c:39:12:81:c3:6a:7d:
14:5c:78:0b:0f:e0:22:e0:0a:71:9a:f5:ab:1a:a8:
b5:e8:cd:b4:ad:ef:02:90:cc:14:f2:58:7a:eb:d3:
f5:85:57:17:67:cb:37:c1:2b:47:d3:3d:a4:a4:5e:
cf:7e:c9:0a:3f:b4:43:ac:58:85:a1:9f:97:bf:b3:
c3:af:e7:d8:11:7f:23:2b:ab:75:86:16:11:88:1e:
53:bc:c5:d5:e2:a7:f4:a6:e4:27:6d:14:8f:09:48:
48:64:86:45:b5:4a:9d:b8:52:46:48:40:ab:a5:8b:
d3:a3:85:a8:8c:e1:a4:8b:7c:61:1e:5b:32:29:10:
ed:b1:56:b5:d6:39:00:62:56:dc:e1:d4:02:36:f9:
0f:9e:ff:43:5d:7a:a3:ca:96:5d:86:40:85:0a:06:
c1:b4:82:d5:f6:8d:15:70:fc:f2:54:2d:0c:01:fb:
c4:05:69:2c:08:c8:f7:fc:be:26:4e:81:87:54:b6:
68:be:9a:1d:6a:3e:dd:72:fe:a2:27:97:72:0a:6e:
23:7b:af:9d:22:d5:56:4a:3b:8e:98:93:08:7a:10:
8f:d6:85:a5:f4:77:5f:e9:47:06:9f:39:27:2c:c9:
ea:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:CE:7F:C5:76:B0:BF:2E:60:A3:DE:84:B5:54:AE:B0:F7:87:15:53
X509v3 Authority Key Identifier:
keyid:F6:2E:EB:87:90:85:C9:41:94:29:7D:D9:E4:CD:24:9C:D2:51:65:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9i7rh5CFyUGUKX3Z5M0knNJRZRU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/91da8b-0502-48df-8532-5fbf9a29b6e1/1/hM5_xXawvy5go96EtVSusPeHFVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/91da8b-0502-48df-8532-5fbf9a29b6e1/1/9i7rh5CFyUGUKX3Z5M0knNJRZRU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.96.0/22
5.45.96.0/20
5.181.48.0/22
5.252.224.0/22
37.120.160.0/19
37.221.192.0/21
45.9.60.0/22
45.83.104.0/22
45.90.4.0/22
45.129.180.0/22
45.132.244.0/22
45.136.28.0/22
45.142.176.0/22
45.157.176.0/22
46.38.224.0/19
46.232.248.0/22
81.16.16.0/22
85.209.48.0/22
85.235.64.0/22
89.58.0.0/18
91.132.144.0/22
91.204.44.0/22
92.60.36.0/22
93.177.64.0/22
152.89.104.0/22
185.16.60.0/22
185.162.248.0/22
185.163.116.0/22
185.170.112.0/22
185.183.156.0/22
185.194.140.0/22
185.207.104.0/22
185.228.136.0/22
185.233.104.0/22
185.243.8.0/22
185.244.192.0/22
188.68.32.0/19
192.145.44.0/22
193.30.120.0/22
193.31.24.0/22
194.13.80.0/22
194.55.12.0/22
194.59.204.0/22
195.128.100.0/22
213.109.160.0/22
IPv6:
2a03:4000::/31
2a0a:4cc0::-2a0a:4cc0:100:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
5b:19:b9:a5:7a:ca:bc:78:8a:6b:3a:02:fd:ba:12:4d:16:68:
33:50:ca:e1:31:8c:91:34:03:8b:a0:d2:76:6c:52:31:fc:50:
3e:ac:a1:c2:01:12:50:6e:26:6b:73:a3:69:f0:c9:0f:65:2e:
d0:94:96:c3:66:0c:5a:0f:1e:53:28:56:a6:fa:e5:4d:03:aa:
4a:c9:50:57:ae:bb:f7:ac:92:fd:86:4a:39:87:51:12:64:0c:
ab:64:d4:9e:8e:31:b9:64:96:c8:8c:a9:b7:80:7b:cd:eb:33:
b9:4d:d2:32:74:6d:bd:88:65:37:5c:d7:eb:b7:8e:13:33:2b:
6e:44:92:d4:e3:76:e8:71:bb:6d:af:61:df:e5:fa:5d:84:f9:
95:c9:64:de:39:51:15:ca:5d:96:95:08:83:52:15:67:92:86:
66:ef:7b:0c:36:ab:c4:9b:48:1d:7b:a0:ca:fe:0e:3e:82:b4:
94:e8:61:de:ae:cb:35:7c:ab:65:d9:bf:6a:e4:88:db:a1:e8:
d2:9d:67:e6:57:22:05:a9:72:ba:1b:3b:3e:65:9f:56:6b:08:
c7:61:6a:12:e3:6a:3b:b2:cf:29:52:1a:05:d8:9f:ac:8d:eb:
b5:73:70:b8:9a:bf:ec:e0:b0:21:c3:e8:c0:9e:57:13:c4:af:
b9:8b:0e:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:17 2024 by rpki-client on console-ams.rpki-client.org