Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/loKT3wersv8WC2kMHqZCYF0xNbA.roa
File: loKT3wersv8WC2kMHqZCYF0xNbA.roa (raw, json)
Hash identifier: ooP/vu9qhRns4p/ruGaphCi+zD7fwqJ+6VyhwIvefAA=
Subject key identifier: 96:82:93:DF:07:AB:B2:FF:16:0B:69:0C:1E:A6:42:60:5D:31:35:B0
Certificate issuer: /CN=89da60f049dfba34be4b4e8418b9ff492125c449
Certificate serial: 01869804988C800A315443F4C3E784D77467
Authority key identifier: 89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/loKT3wersv8WC2kMHqZCYF0xNbA.roa
Signing time: Tue 28 Feb 2023 12:34:43 +0000
ROA not before: Tue 28 Feb 2023 12:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15802
IP address blocks: 5.30.32.0/19 maxlen: 19
94.201.251.0/24 maxlen: 24
5.30.64.0/19 maxlen: 19
87.201.176.0/22 maxlen: 22
87.201.180.0/22 maxlen: 22
87.201.184.0/22 maxlen: 22
94.201.196.0/22 maxlen: 22
5.30.0.0/19 maxlen: 19
5.30.8.0/22 maxlen: 22
91.73.216.0/23 maxlen: 23
5.30.0.0/15 maxlen: 15
5.32.64.0/19 maxlen: 19
91.72.204.0/24 maxlen: 24
5.32.96.0/19 maxlen: 19
91.72.205.0/24 maxlen: 24
91.72.206.0/24 maxlen: 24
5.32.0.0/17 maxlen: 19
94.203.204.0/22 maxlen: 22
5.32.23.0/24 maxlen: 24
5.32.32.0/19 maxlen: 19
94.200.156.0/24 maxlen: 24
80.227.200.0/22 maxlen: 22
94.200.248.0/22 maxlen: 22
91.73.0.0/20 maxlen: 20
5.31.96.0/19 maxlen: 19
94.203.44.0/23 maxlen: 23
94.206.152.0/23 maxlen: 23
94.203.62.0/23 maxlen: 23
5.31.128.0/20 maxlen: 20
5.31.128.0/19 maxlen: 19
94.206.181.0/24 maxlen: 24
5.31.144.0/20 maxlen: 20
5.31.64.0/19 maxlen: 19
94.206.112.0/23 maxlen: 23
94.200.0.0/13 maxlen: 19
5.31.208.0/20 maxlen: 20
5.31.224.0/20 maxlen: 20
5.31.224.0/19 maxlen: 19
5.31.240.0/20 maxlen: 20
5.31.160.0/19 maxlen: 19
5.31.160.0/20 maxlen: 20
87.200.0.0/15 maxlen: 19
80.227.0.0/16 maxlen: 19
5.31.176.0/20 maxlen: 20
91.72.0.0/14 maxlen: 19
5.31.192.0/20 maxlen: 20
5.31.192.0/19 maxlen: 19
5.30.160.0/19 maxlen: 19
5.30.96.0/19 maxlen: 19
5.30.128.0/19 maxlen: 19
91.74.78.0/23 maxlen: 23
5.31.0.0/19 maxlen: 19
213.132.32.0/19 maxlen: 19
5.31.32.0/19 maxlen: 19
94.206.74.0/23 maxlen: 23
5.30.192.0/19 maxlen: 19
5.30.224.0/19 maxlen: 19
94.206.16.0/23 maxlen: 23
94.206.21.0/24 maxlen: 24
2a00:f2e::/32 maxlen: 32
2a00:f2c::/32 maxlen: 32
2a00:f2d::/32 maxlen: 32
2a00:f29::/32 maxlen: 32
2a00:f2b::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:98:04:98:8c:80:0a:31:54:43:f4:c3:e7:84:d7:74:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89da60f049dfba34be4b4e8418b9ff492125c449
Validity
Not Before: Feb 28 12:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=968293df07abb2ff160b690c1ea642605d3135b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:58:c2:73:42:0f:46:e8:2f:88:76:73:6e:81:
3b:82:a9:3e:76:dc:54:a6:89:f3:df:d6:08:07:27:
72:2e:57:5c:19:28:d1:bb:19:cf:27:6d:89:81:38:
a3:e4:96:84:f4:56:15:8c:c4:24:21:10:d9:5d:44:
15:3a:11:73:22:c8:17:93:99:be:79:b6:77:50:bb:
ef:21:15:47:f1:4e:12:a7:95:7e:06:bc:9b:c7:f9:
90:c0:8a:87:73:8d:87:d1:06:78:fc:47:e3:57:ed:
5c:e5:ea:88:70:54:8c:92:76:52:74:9f:01:cf:f4:
27:49:0a:2f:f6:e6:e1:b9:0f:c3:a2:ff:be:8e:78:
e8:e4:9c:9a:c4:19:cf:ef:27:68:79:c6:18:35:f3:
f9:72:74:9c:0a:22:d3:69:e5:71:c7:34:65:4d:53:
9b:0b:1c:2b:08:e3:c9:eb:96:f6:37:96:60:1a:aa:
73:d6:15:95:d0:89:5e:4c:59:ce:ab:4c:ae:92:d3:
62:52:e4:28:9b:a4:6f:c2:40:89:0b:1b:cf:1e:b1:
6a:9e:a5:42:d8:d8:4e:cb:29:a7:4f:d2:1a:d4:35:
06:0f:fb:94:fb:a8:8b:20:33:3b:0b:59:f9:45:0e:
a9:57:db:79:4a:6b:13:36:e2:ab:83:03:20:e1:db:
44:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:82:93:DF:07:AB:B2:FF:16:0B:69:0C:1E:A6:42:60:5D:31:35:B0
X509v3 Authority Key Identifier:
keyid:89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/loKT3wersv8WC2kMHqZCYF0xNbA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/idpg8EnfujS-S06EGLn_SSElxEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.30.0.0-5.32.127.255
80.227.0.0/16
87.200.0.0/15
91.72.0.0/14
94.200.0.0/13
213.132.32.0/19
IPv6:
2a00:f29::/32
2a00:f2b::-2a00:f2e:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
27:7d:f5:2b:00:aa:ad:83:bc:09:4b:0d:fe:88:02:f7:54:6c:
54:9f:79:f4:92:66:0d:16:a3:2d:97:11:f2:a2:6a:82:38:f7:
89:0a:a1:29:ef:8e:1f:db:a2:c9:03:3c:8a:d8:2b:74:b4:c8:
c5:28:9e:62:8a:2a:a8:fc:d6:04:10:b6:e9:b8:e5:91:b8:a3:
99:99:93:ff:a7:63:e8:8d:a5:ae:31:aa:d3:46:eb:aa:2f:b2:
45:58:0b:32:24:3c:f8:da:5f:c8:5b:4c:59:c5:62:28:8a:4a:
e0:78:88:12:82:87:d1:1f:ac:cd:ec:da:ad:54:02:51:e1:fc:
b7:32:80:06:b1:7e:a2:35:33:74:49:fb:85:7f:18:78:27:8c:
8c:62:ac:fe:90:ef:59:be:60:79:3b:21:11:47:d4:97:9d:5f:
1f:dd:d2:91:00:1b:b9:e7:84:81:9c:d2:5b:c8:d6:55:4c:65:
94:c6:e2:37:df:72:e6:5a:76:d7:71:f1:5f:56:8e:d2:44:4d:
f3:c7:db:9e:ec:53:8c:8f:d5:53:a9:2d:5f:a2:dd:b5:25:3c:
77:be:80:7e:b6:1a:86:5a:9e:d3:a0:81:d1:ae:8f:bd:69:6a:
80:6a:9d:60:94:8f:f8:87:fa:da:5a:65:c6:1e:c5:20:11:87:
18:f3:6e:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-ams.rpki-client.org