Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/ed51ec-78e6-4ff0-ba58-076c88b8802f/1/i-eTCXR1AymIquK7eINyhYw4fcE.roa
File: i-eTCXR1AymIquK7eINyhYw4fcE.roa (raw, json)
Hash identifier: U+Y1U5qouLDCEYdeRjRUHtkMPNvferAyuqs5vQaDzE0=
Subject key identifier: 8B:E7:93:09:74:75:03:29:88:AA:E2:BB:78:83:72:85:8C:38:7D:C1
Certificate issuer: /CN=65df379faaf210a7036dac05de6b5772dbe4dd6c
Certificate serial: 018AF5BD6142666E998EEFE37EE3CAECDA86
Authority key identifier: 65:DF:37:9F:AA:F2:10:A7:03:6D:AC:05:DE:6B:57:72:DB:E4:DD:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zd83n6ryEKcDbawF3mtXctvk3Ww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/ed51ec-78e6-4ff0-ba58-076c88b8802f/1/i-eTCXR1AymIquK7eINyhYw4fcE.roa
Signing time: Tue 03 Oct 2023 13:32:23 +0000
ROA not before: Tue 03 Oct 2023 13:32:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201838
IP address blocks: 45.144.56.0/22 maxlen: 24
89.36.112.0/20 maxlen: 20
188.215.16.0/23 maxlen: 23
45.12.172.0/22 maxlen: 24
45.248.144.0/22 maxlen: 24
213.32.248.0/22 maxlen: 24
95.214.228.0/22 maxlen: 22
45.93.172.0/22 maxlen: 22
45.144.160.0/22 maxlen: 24
79.171.156.0/22 maxlen: 22
79.171.154.0/23 maxlen: 23
79.171.153.0/24 maxlen: 24
45.148.12.0/22 maxlen: 22
45.94.60.0/22 maxlen: 22
103.205.24.0/22 maxlen: 24
45.117.136.0/22 maxlen: 22
45.90.172.0/22 maxlen: 22
188.215.74.0/23 maxlen: 23
185.238.220.0/22 maxlen: 22
89.45.176.0/20 maxlen: 20
185.230.248.0/22 maxlen: 24
93.113.26.0/23 maxlen: 23
45.133.88.0/22 maxlen: 24
45.89.156.0/22 maxlen: 22
45.89.84.0/22 maxlen: 22
192.166.212.0/22 maxlen: 24
192.166.208.0/22 maxlen: 22
193.42.52.0/22 maxlen: 24
45.86.8.0/22 maxlen: 24
62.133.48.0/22 maxlen: 22
45.150.144.0/22 maxlen: 22
94.177.138.0/23 maxlen: 23
147.12.128.0/17 maxlen: 17
193.164.20.0/22 maxlen: 22
185.241.164.0/22 maxlen: 22
95.214.184.0/22 maxlen: 22
80.76.56.0/22 maxlen: 22
62.197.132.0/22 maxlen: 24
171.22.104.0/22 maxlen: 22
185.59.124.0/22 maxlen: 22
185.103.72.0/22 maxlen: 24
188.241.106.0/23 maxlen: 23
45.153.220.0/22 maxlen: 24
103.7.204.0/22 maxlen: 22
45.149.72.0/22 maxlen: 24
77.75.60.0/22 maxlen: 24
45.132.136.0/21 maxlen: 24
45.146.8.0/22 maxlen: 22
194.4.156.0/22 maxlen: 24
185.115.144.0/22 maxlen: 24
45.159.88.0/22 maxlen: 22
46.102.171.0/24 maxlen: 24
46.102.170.0/24 maxlen: 24
46.102.170.0/23 maxlen: 23
185.240.196.0/22 maxlen: 22
94.176.208.0/23 maxlen: 23
45.149.220.0/22 maxlen: 22
45.95.248.0/22 maxlen: 22
45.159.152.0/22 maxlen: 24
212.132.192.0/18 maxlen: 18
45.146.60.0/22 maxlen: 24
185.237.60.0/22 maxlen: 22
94.247.86.0/23 maxlen: 23
188.212.122.0/23 maxlen: 23
185.229.104.0/22 maxlen: 24
45.94.176.0/22 maxlen: 22
185.71.36.0/22 maxlen: 22
45.148.56.0/22 maxlen: 22
185.245.236.0/22 maxlen: 24
89.43.208.0/21 maxlen: 24
45.128.32.0/22 maxlen: 22
185.121.228.0/22 maxlen: 24
178.239.200.0/22 maxlen: 24
45.148.252.0/22 maxlen: 24
45.152.4.0/22 maxlen: 24
45.141.236.0/22 maxlen: 22
185.236.60.0/22 maxlen: 24
45.81.72.0/22 maxlen: 22
45.91.112.0/22 maxlen: 22
185.111.172.0/22 maxlen: 22
45.128.136.0/22 maxlen: 22
178.239.192.0/22 maxlen: 24
2a03:3820::/32 maxlen: 32
2a02:6b60::/29 maxlen: 29
2a02:6b60::/28 maxlen: 28
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f5:bd:61:42:66:6e:99:8e:ef:e3:7e:e3:ca:ec:da:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65df379faaf210a7036dac05de6b5772dbe4dd6c
Validity
Not Before: Oct 3 13:32:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8be793097475032988aae2bb788372858c387dc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:74:7a:64:18:a5:c5:2b:4f:e9:99:9d:da:02:
22:37:fe:5e:6f:81:84:f5:e4:18:57:04:0b:57:6c:
4b:7d:e0:17:45:81:f2:9f:b2:8a:f9:8a:f6:5b:7b:
51:6a:52:7b:58:04:8e:b0:99:27:04:17:32:6b:ae:
b8:24:98:64:ea:72:5c:6f:a4:b7:0c:d1:d5:53:eb:
73:af:24:66:3c:4a:53:c3:a8:3e:88:d6:e7:65:ad:
58:d9:10:0d:4f:c3:eb:29:e7:f1:37:a4:84:ec:a4:
60:e2:c3:ac:bd:18:01:5f:66:8f:7f:ee:85:1e:d4:
af:96:02:5a:d7:30:d2:1b:f1:ca:59:c9:84:a9:2c:
a0:29:4d:a3:b9:48:4f:3b:b2:f5:13:0e:88:5b:dd:
25:39:2b:ff:c7:4a:c1:f7:ca:55:84:84:9c:24:d4:
a7:4d:b9:0f:34:c0:bf:35:91:15:dc:b9:1e:16:29:
68:87:57:87:2a:92:5c:3a:cf:c6:eb:1a:54:1c:64:
f0:d4:a3:ae:a8:3b:40:96:74:34:ff:9b:74:8e:d5:
45:8d:82:0e:62:59:69:55:bb:3f:94:d0:92:cc:56:
e1:48:25:46:81:f0:83:fe:0a:25:e2:c8:61:7c:57:
62:ae:17:19:29:44:5c:12:d2:25:48:b5:6a:b1:10:
b1:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:E7:93:09:74:75:03:29:88:AA:E2:BB:78:83:72:85:8C:38:7D:C1
X509v3 Authority Key Identifier:
keyid:65:DF:37:9F:AA:F2:10:A7:03:6D:AC:05:DE:6B:57:72:DB:E4:DD:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zd83n6ryEKcDbawF3mtXctvk3Ww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/ed51ec-78e6-4ff0-ba58-076c88b8802f/1/i-eTCXR1AymIquK7eINyhYw4fcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/ed51ec-78e6-4ff0-ba58-076c88b8802f/1/Zd83n6ryEKcDbawF3mtXctvk3Ww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.172.0/22
45.81.72.0/22
45.86.8.0/22
45.89.84.0/22
45.89.156.0/22
45.90.172.0/22
45.91.112.0/22
45.93.172.0/22
45.94.60.0/22
45.94.176.0/22
45.95.248.0/22
45.117.136.0/22
45.128.32.0/22
45.128.136.0/22
45.132.136.0/21
45.133.88.0/22
45.141.236.0/22
45.144.56.0/22
45.144.160.0/22
45.146.8.0/22
45.146.60.0/22
45.148.12.0/22
45.148.56.0/22
45.148.252.0/22
45.149.72.0/22
45.149.220.0/22
45.150.144.0/22
45.152.4.0/22
45.153.220.0/22
45.159.88.0/22
45.159.152.0/22
45.248.144.0/22
46.102.170.0/23
62.133.48.0/22
62.197.132.0/22
77.75.60.0/22
79.171.153.0-79.171.159.255
80.76.56.0/22
89.36.112.0/20
89.43.208.0/21
89.45.176.0/20
93.113.26.0/23
94.176.208.0/23
94.177.138.0/23
94.247.86.0/23
95.214.184.0/22
95.214.228.0/22
103.7.204.0/22
103.205.24.0/22
147.12.128.0/17
171.22.104.0/22
178.239.192.0/22
178.239.200.0/22
185.59.124.0/22
185.71.36.0/22
185.103.72.0/22
185.111.172.0/22
185.115.144.0/22
185.121.228.0/22
185.229.104.0/22
185.230.248.0/22
185.236.60.0/22
185.237.60.0/22
185.238.220.0/22
185.240.196.0/22
185.241.164.0/22
185.245.236.0/22
188.212.122.0/23
188.215.16.0/23
188.215.74.0/23
188.241.106.0/23
192.166.208.0/21
193.42.52.0/22
193.164.20.0/22
194.4.156.0/22
212.132.192.0/18
213.32.248.0/22
IPv6:
2a02:6b60::/28
2a03:3820::/32
Signature Algorithm: sha256WithRSAEncryption
46:59:19:6b:15:72:e5:ac:94:4c:ca:c5:53:1b:c2:f8:31:ad:
ed:a5:64:89:70:2b:76:92:9e:6c:94:bd:03:45:fa:de:4e:84:
7f:6b:cd:49:fb:82:ed:c2:88:c3:c1:1f:6a:53:e0:1b:3a:f1:
32:57:8a:2c:10:55:13:98:cf:76:76:f1:a3:cb:1c:cf:99:98:
65:7b:a8:7a:4f:a1:df:e0:f0:9b:1e:46:3d:9a:13:ec:8b:36:
23:4d:af:d6:e1:bc:99:db:9d:ff:7e:d2:7f:41:86:b1:e0:7c:
57:0d:4c:a2:5a:ca:72:5e:bd:f9:84:80:ee:d0:3e:b1:c9:77:
13:c6:8a:4a:5c:c7:11:c5:78:b6:88:23:5d:15:09:0e:ea:12:
8b:4f:f7:15:f6:1a:62:cb:f6:b1:c3:29:e5:dc:a8:32:2a:3f:
35:79:78:b6:c7:af:d9:14:8a:1b:10:dc:bf:2a:bd:25:1c:b4:
d6:44:c0:f0:68:cc:26:09:a3:7a:5b:a6:bc:11:ba:5a:40:2d:
94:3f:44:25:82:3e:04:af:2c:83:ab:71:47:47:8f:61:3a:1f:
db:f9:06:05:68:f3:c1:1e:8d:df:1b:fe:25:51:69:97:fd:f7:
40:dc:81:e7:97:b9:89:c6:40:50:31:a9:13:55:bc:0b:4b:27:
3a:67:66:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:42 2024 by rpki-client on console-ams.rpki-client.org