Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/39IOZGz1S76EvMU7vWN7zQySIk4.roa
File: 39IOZGz1S76EvMU7vWN7zQySIk4.roa (raw, json)
Hash identifier: bRm4vjojce+/8e7Ja8oX6IPBx2OF5x5wrj2eE/hCZrY=
Subject key identifier: DF:D2:0E:64:6C:F5:4B:BE:84:BC:C5:3B:BD:63:7B:CD:0C:92:22:4E
Certificate issuer: /CN=89da60f049dfba34be4b4e8418b9ff492125c449
Certificate serial: 01869C3BBC39E816F794B6360AD0373EDD4A
Authority key identifier: 89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/39IOZGz1S76EvMU7vWN7zQySIk4.roa
Signing time: Wed 01 Mar 2023 08:13:25 +0000
ROA not before: Wed 01 Mar 2023 08:13:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15802
IP address blocks: 91.73.80.0/20 maxlen: 20
91.73.96.0/20 maxlen: 20
91.73.112.0/20 maxlen: 20
5.30.32.0/19 maxlen: 19
91.73.252.0/22 maxlen: 22
94.201.251.0/24 maxlen: 24
5.30.64.0/19 maxlen: 19
87.201.176.0/22 maxlen: 22
87.201.180.0/22 maxlen: 22
87.201.184.0/22 maxlen: 22
94.201.196.0/22 maxlen: 22
5.30.0.0/19 maxlen: 19
5.30.8.0/22 maxlen: 22
91.73.216.0/23 maxlen: 23
5.30.0.0/15 maxlen: 15
5.32.64.0/19 maxlen: 19
5.32.72.0/24 maxlen: 24
91.72.188.0/22 maxlen: 22
91.72.204.0/24 maxlen: 24
5.32.94.0/24 maxlen: 24
5.32.96.0/19 maxlen: 19
91.72.205.0/24 maxlen: 24
91.72.206.0/24 maxlen: 24
5.32.0.0/17 maxlen: 19
94.203.204.0/22 maxlen: 22
5.32.23.0/24 maxlen: 24
5.32.27.0/24 maxlen: 24
5.32.32.0/19 maxlen: 19
5.32.36.0/24 maxlen: 24
94.200.156.0/24 maxlen: 24
87.201.14.0/24 maxlen: 24
91.73.16.0/20 maxlen: 20
91.73.32.0/20 maxlen: 20
87.201.40.0/24 maxlen: 24
87.201.46.0/24 maxlen: 24
91.73.64.0/20 maxlen: 20
80.227.200.0/22 maxlen: 22
5.32.111.0/24 maxlen: 24
91.72.229.0/24 maxlen: 24
94.200.248.0/22 maxlen: 22
91.73.0.0/20 maxlen: 20
5.31.96.0/19 maxlen: 19
94.203.44.0/23 maxlen: 23
94.206.152.0/23 maxlen: 23
94.203.62.0/23 maxlen: 23
5.31.128.0/20 maxlen: 20
5.31.128.0/19 maxlen: 19
94.206.181.0/24 maxlen: 24
5.31.144.0/20 maxlen: 20
5.31.64.0/19 maxlen: 19
94.206.112.0/23 maxlen: 23
94.200.0.0/13 maxlen: 19
5.31.208.0/20 maxlen: 20
5.31.224.0/20 maxlen: 20
5.31.224.0/19 maxlen: 19
5.31.240.0/20 maxlen: 20
5.31.160.0/19 maxlen: 19
5.31.160.0/20 maxlen: 20
87.200.0.0/15 maxlen: 19
80.227.0.0/16 maxlen: 19
5.31.176.0/20 maxlen: 20
91.72.0.0/14 maxlen: 19
5.31.192.0/20 maxlen: 20
5.31.192.0/19 maxlen: 19
5.30.160.0/19 maxlen: 19
5.30.96.0/19 maxlen: 19
91.74.56.0/24 maxlen: 24
5.30.128.0/19 maxlen: 19
91.74.78.0/23 maxlen: 23
5.31.0.0/19 maxlen: 19
213.132.32.0/19 maxlen: 19
5.31.32.0/19 maxlen: 19
94.206.74.0/23 maxlen: 23
5.30.192.0/19 maxlen: 19
5.30.224.0/19 maxlen: 19
94.206.16.0/23 maxlen: 23
94.206.21.0/24 maxlen: 24
2a00:f2e::/32 maxlen: 32
2a00:f2c::/32 maxlen: 32
2a00:f2d::/32 maxlen: 32
2a00:f29::/32 maxlen: 32
2a00:f2b::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 04 Mar 2023 02:33:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9c:3b:bc:39:e8:16:f7:94:b6:36:0a:d0:37:3e:dd:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89da60f049dfba34be4b4e8418b9ff492125c449
Validity
Not Before: Mar 1 08:13:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dfd20e646cf54bbe84bcc53bbd637bcd0c92224e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:01:ea:5e:5d:41:ba:9d:e8:07:db:dc:7e:25:
e7:aa:57:21:ad:69:e0:31:1c:b3:d9:e3:ee:dd:58:
89:38:84:d0:ac:17:24:ca:73:6e:af:b3:ff:42:c2:
6e:eb:41:1c:da:23:fb:0d:5b:09:c3:55:f6:cf:84:
a4:92:04:85:9e:77:a5:78:3e:6c:63:f9:f1:d4:73:
e6:74:74:ab:42:77:ec:c7:00:ff:45:31:80:a5:21:
3e:77:0a:26:db:b6:17:c1:29:96:30:c5:2a:c4:da:
24:9d:72:cf:f8:b5:e0:06:c4:04:78:4b:53:d4:f3:
29:29:da:df:b7:c1:81:37:3c:21:0a:03:ab:9e:5e:
9b:0d:e8:06:7c:d9:06:b3:36:e9:76:6a:47:ae:03:
31:13:b5:03:25:24:25:4d:1b:9d:4b:2c:26:72:6f:
b8:3c:00:1f:0f:8e:58:97:03:bf:6a:d2:e0:43:a9:
2c:67:d1:b7:57:01:96:d6:49:ec:ce:c7:c5:79:85:
01:a8:da:88:6d:2e:ee:49:cd:18:b0:9a:e7:bb:73:
95:b8:4e:74:76:0f:c8:ea:a7:64:75:88:a8:8c:14:
d8:82:51:e9:f4:19:0e:80:5c:9c:c0:38:76:cb:c3:
11:4b:9a:e9:dc:63:43:5b:01:23:40:e6:52:b4:0c:
d5:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:D2:0E:64:6C:F5:4B:BE:84:BC:C5:3B:BD:63:7B:CD:0C:92:22:4E
X509v3 Authority Key Identifier:
keyid:89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/39IOZGz1S76EvMU7vWN7zQySIk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/idpg8EnfujS-S06EGLn_SSElxEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.30.0.0-5.32.127.255
80.227.0.0/16
87.200.0.0/15
91.72.0.0/14
94.200.0.0/13
213.132.32.0/19
IPv6:
2a00:f29::/32
2a00:f2b::-2a00:f2e:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
5e:53:a9:4b:20:77:3d:03:ab:70:cb:fa:22:a1:58:ee:de:f8:
01:34:08:cf:66:2a:d3:a0:4b:22:37:91:ea:85:77:3c:f9:59:
05:45:db:b2:a9:c2:45:37:e6:44:e1:4c:ed:17:ab:30:1d:86:
f3:44:75:b7:94:39:e3:52:77:1b:1b:c7:c4:6a:2f:99:6c:3a:
03:04:2c:72:ab:fe:91:29:aa:56:0d:8f:45:e1:43:1b:bc:79:
83:34:d6:fa:69:28:93:bd:e9:aa:7e:ef:61:55:c4:10:ce:7a:
87:e7:9e:03:05:22:46:5f:3f:e7:82:07:ef:8c:05:29:21:27:
79:c9:39:62:e2:a0:b0:c7:a4:bd:4f:22:99:bf:e5:23:bb:92:
27:70:34:1c:39:b0:9f:1f:24:1d:22:0a:5c:ba:63:6e:bd:30:
91:56:d9:10:e8:fd:4d:94:92:e2:9e:10:51:83:b8:73:e8:fb:
e6:51:cb:0e:bd:7e:f9:b6:65:b5:3a:a2:e4:ca:cb:9e:4d:56:
28:2d:15:90:a8:21:8f:1e:9a:86:c2:d2:80:9e:5a:9f:4b:ca:
22:71:f9:7d:85:6f:da:67:1a:ec:c0:2e:9f:57:d8:c0:e9:67:
8d:83:28:be:6a:4a:f5:71:91:67:d1:a6:17:c2:9d:8d:82:38:
5d:21:3d:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:51 2024 by rpki-client on console-fra.rpki-client.org