Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/6RXhT8HT0ept23qJcWIqscVCTbg.roa
File: 6RXhT8HT0ept23qJcWIqscVCTbg.roa (raw, json)
Hash identifier: GcomMI0bGhUzmCHkhjWwPlmDCJrDyEE/bcJJo7gN4Lo=
Subject key identifier: E9:15:E1:4F:C1:D3:D1:EA:6D:DB:7A:89:71:62:2A:B1:C5:42:4D:B8
Certificate issuer: /CN=89da60f049dfba34be4b4e8418b9ff492125c449
Certificate serial: 01867DBEBD30F8C638794D76D7139245562B
Authority key identifier: 89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/6RXhT8HT0ept23qJcWIqscVCTbg.roa
Signing time: Thu 23 Feb 2023 10:08:17 +0000
ROA not before: Thu 23 Feb 2023 10:08:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15802
IP address blocks: 5.30.32.0/19 maxlen: 19
94.201.251.0/24 maxlen: 24
5.30.64.0/19 maxlen: 19
87.201.176.0/22 maxlen: 22
87.201.180.0/22 maxlen: 22
87.201.184.0/22 maxlen: 22
94.201.196.0/22 maxlen: 22
5.30.0.0/19 maxlen: 19
5.30.8.0/22 maxlen: 22
91.73.216.0/23 maxlen: 23
5.30.0.0/15 maxlen: 15
5.32.64.0/19 maxlen: 19
91.72.204.0/24 maxlen: 24
5.32.96.0/19 maxlen: 19
91.72.205.0/24 maxlen: 24
91.72.206.0/24 maxlen: 24
5.32.0.0/17 maxlen: 17
94.203.204.0/22 maxlen: 22
5.32.32.0/19 maxlen: 19
80.227.200.0/22 maxlen: 22
94.200.248.0/22 maxlen: 22
91.73.0.0/20 maxlen: 20
5.31.96.0/19 maxlen: 19
94.203.44.0/23 maxlen: 23
94.206.152.0/23 maxlen: 23
94.203.62.0/23 maxlen: 23
5.31.128.0/19 maxlen: 19
94.206.181.0/24 maxlen: 24
5.31.64.0/19 maxlen: 19
94.206.112.0/23 maxlen: 23
94.200.0.0/13 maxlen: 19
5.31.224.0/19 maxlen: 19
5.31.160.0/19 maxlen: 19
87.200.0.0/15 maxlen: 19
80.227.0.0/16 maxlen: 19
91.72.0.0/14 maxlen: 19
5.31.192.0/19 maxlen: 19
5.30.160.0/19 maxlen: 19
5.30.96.0/19 maxlen: 19
5.30.128.0/19 maxlen: 19
91.74.78.0/23 maxlen: 23
5.31.0.0/19 maxlen: 19
213.132.32.0/19 maxlen: 19
5.31.32.0/19 maxlen: 19
94.206.74.0/23 maxlen: 23
5.30.192.0/19 maxlen: 19
5.30.224.0/19 maxlen: 19
94.206.16.0/23 maxlen: 23
94.206.21.0/24 maxlen: 24
2a00:f2e::/32 maxlen: 32
2a00:f2c::/32 maxlen: 32
2a00:f2d::/32 maxlen: 32
2a00:f29::/32 maxlen: 32
2a00:f2b::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 27 Feb 2023 12:41:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7d:be:bd:30:f8:c6:38:79:4d:76:d7:13:92:45:56:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89da60f049dfba34be4b4e8418b9ff492125c449
Validity
Not Before: Feb 23 10:08:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e915e14fc1d3d1ea6ddb7a8971622ab1c5424db8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:97:22:a2:d1:c0:2d:41:34:6f:c4:f7:4e:33:
87:2e:bb:88:ea:39:e9:3a:24:8d:02:37:9f:6f:97:
80:91:06:15:73:90:05:c9:20:b8:fd:93:01:f9:9d:
f1:92:be:ce:0a:b1:ef:ee:e6:33:4c:71:81:43:40:
43:f9:1d:5b:ab:f1:4c:7c:16:61:59:7a:a0:68:ca:
55:dd:76:c5:a3:9f:0f:b3:83:93:d4:e4:18:30:8b:
d8:82:47:3c:9e:cf:e3:61:4a:a2:bd:d2:f5:b5:67:
3c:98:c4:1c:58:8b:3f:67:3a:dd:2b:83:4c:1c:75:
f2:18:1f:5d:96:a7:2e:0b:72:e3:16:42:c1:57:1e:
89:fc:0f:99:88:be:2e:62:31:ea:88:ee:9e:8e:9d:
b1:a4:ba:09:a4:f1:7c:97:40:00:27:9e:6f:8b:dd:
36:32:7b:43:01:2e:e9:37:b1:85:48:23:3e:b9:9c:
9c:29:d0:a2:3e:3b:cc:53:57:f7:4c:43:24:f8:5a:
81:88:59:7f:a5:80:32:db:7a:97:5a:36:44:4a:7e:
04:86:51:8d:c8:50:27:93:8a:9f:8a:3b:3f:21:81:
b1:59:78:d0:0b:b8:e6:2f:be:65:fc:62:53:02:af:
26:0c:87:0b:6c:4a:00:12:87:2a:74:bc:cb:25:9a:
7a:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:15:E1:4F:C1:D3:D1:EA:6D:DB:7A:89:71:62:2A:B1:C5:42:4D:B8
X509v3 Authority Key Identifier:
keyid:89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/6RXhT8HT0ept23qJcWIqscVCTbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/idpg8EnfujS-S06EGLn_SSElxEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.30.0.0-5.32.127.255
80.227.0.0/16
87.200.0.0/15
91.72.0.0/14
94.200.0.0/13
213.132.32.0/19
IPv6:
2a00:f29::/32
2a00:f2b::-2a00:f2e:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
09:40:09:73:dd:23:c2:bb:75:93:0d:db:9f:23:a8:38:ed:6e:
61:12:83:ba:c1:ff:6f:7e:d7:68:9a:07:cc:8f:ea:3b:37:01:
4e:5f:01:c1:17:b1:58:dc:81:cf:ab:46:3d:cb:f2:06:77:ea:
72:2d:bd:11:ac:7f:65:89:65:62:b6:05:1f:e8:1b:55:aa:02:
c2:f0:70:5c:7c:20:c4:fb:72:a3:93:65:a9:25:79:d8:7b:2e:
e1:6d:7a:f2:7c:d3:03:c0:6d:28:82:02:fd:eb:b0:ee:a7:6e:
da:95:cf:ac:40:94:4f:27:10:5a:74:79:76:c0:bf:49:45:e7:
2a:8d:39:7d:4c:e6:8e:83:f6:f9:03:0c:23:26:4c:12:c7:78:
e2:c9:4d:f6:c0:a9:fb:74:47:98:41:2a:cc:05:53:82:6c:97:
96:25:80:9d:63:f7:6e:0d:3e:4e:d6:1e:79:f8:d0:a1:47:5d:
f2:09:54:46:f9:f7:d9:9b:18:61:c9:26:c4:a2:cf:b6:df:35:
92:de:b3:7c:45:ca:0d:93:91:c3:43:f4:2d:dc:c5:0b:d1:1b:
c6:dc:00:c5:ac:b9:06:e3:f8:83:ef:95:53:96:05:90:a2:c0:
de:26:cd:c0:80:6e:a6:c0:09:54:27:f9:8c:40:ee:58:24:61:
88:57:39:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:51 2024 by rpki-client on console-fra.rpki-client.org