Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/1QxDt08EFk2ia-VuAdcRBwV-MXg.roa
File: 1QxDt08EFk2ia-VuAdcRBwV-MXg.roa (raw, json)
Hash identifier: KJs2XyAkxpg56dxLbR9Lwh3iMsDZOsDTTqevvp1UXy4=
Subject key identifier: D5:0C:43:B7:4F:04:16:4D:A2:6B:E5:6E:01:D7:11:07:05:7E:31:78
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 018AFF81FDAD45C322EDC740868178F871BE
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/1QxDt08EFk2ia-VuAdcRBwV-MXg.roa
Signing time: Thu 05 Oct 2023 11:03:43 +0000
ROA not before: Thu 05 Oct 2023 11:03:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8447
IP address blocks: 213.147.160.0/19 maxlen: 19
192.164.128.0/19 maxlen: 19
178.188.0.0/14 maxlen: 14
85.90.128.0/19 maxlen: 19
213.33.63.0/24 maxlen: 24
193.187.212.0/22 maxlen: 22
213.157.128.0/19 maxlen: 19
192.164.64.0/21 maxlen: 21
193.80.0.0/15 maxlen: 15
193.187.216.0/21 maxlen: 21
193.187.224.0/20 maxlen: 20
192.164.80.0/20 maxlen: 20
212.16.32.0/19 maxlen: 19
193.187.240.0/22 maxlen: 22
213.225.0.0/18 maxlen: 18
192.164.96.0/19 maxlen: 19
213.33.0.0/17 maxlen: 17
192.164.224.0/19 maxlen: 19
93.111.0.0/16 maxlen: 23
212.124.128.0/19 maxlen: 19
195.3.64.0/18 maxlen: 18
188.20.0.0/14 maxlen: 24
89.144.192.0/18 maxlen: 18
46.74.0.0/15 maxlen: 23
192.164.208.0/20 maxlen: 20
176.66.0.0/18 maxlen: 18
80.240.224.0/20 maxlen: 24
194.96.0.0/16 maxlen: 16
80.89.96.0/20 maxlen: 20
195.170.64.0/19 maxlen: 19
192.164.0.0/19 maxlen: 19
88.116.217.0/24 maxlen: 24
81.5.192.0/18 maxlen: 18
192.164.32.0/22 maxlen: 22
193.154.0.0/16 maxlen: 16
192.164.40.0/21 maxlen: 21
192.164.39.0/24 maxlen: 24
176.66.128.0/17 maxlen: 17
192.164.48.0/20 maxlen: 20
92.248.0.0/17 maxlen: 17
212.197.128.0/18 maxlen: 18
193.83.0.0/16 maxlen: 16
80.120.0.0/14 maxlen: 24
62.46.0.0/15 maxlen: 15
194.152.160.0/19 maxlen: 19
212.88.160.0/19 maxlen: 24
195.230.32.0/19 maxlen: 19
212.183.0.0/17 maxlen: 24
80.75.56.0/21 maxlen: 21
213.240.64.0/18 maxlen: 18
93.82.0.0/15 maxlen: 15
188.45.0.0/16 maxlen: 16
91.112.0.0/14 maxlen: 14
194.166.0.0/16 maxlen: 16
80.75.34.0/24 maxlen: 24
80.75.32.0/19 maxlen: 22
88.116.0.0/15 maxlen: 15
62.116.32.0/19 maxlen: 19
194.48.124.0/22 maxlen: 22
194.48.128.0/21 maxlen: 21
194.48.136.0/22 maxlen: 22
194.48.136.0/24 maxlen: 24
217.149.160.0/20 maxlen: 20
212.60.160.0/19 maxlen: 19
195.64.0.0/19 maxlen: 19
194.118.0.0/16 maxlen: 16
194.152.96.0/19 maxlen: 19
212.88.0.0/19 maxlen: 19
84.20.160.0/19 maxlen: 19
46.206.0.0/15 maxlen: 15
2001:4bb8::/29 maxlen: 29
2001:890::/29 maxlen: 29
2001:870::/29 maxlen: 29
2001:850::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ff:81:fd:ad:45:c3:22:ed:c7:40:86:81:78:f8:71:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Oct 5 11:03:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d50c43b74f04164da26be56e01d71107057e3178
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:f6:c5:f6:ce:c2:12:b3:9e:67:e5:59:ff:29:
58:59:ed:a8:3f:e9:bf:35:a8:6b:18:38:9e:3a:cf:
65:41:96:94:9c:4f:76:7d:d1:e1:12:85:91:56:a0:
19:60:ac:5a:45:8e:fa:c0:7e:71:33:8e:ba:89:a6:
e6:25:81:83:39:41:97:c3:7d:83:fc:8d:4b:a7:4f:
7e:25:80:49:a4:d3:c8:59:99:33:e0:c7:a7:32:6b:
53:05:00:1b:31:0f:04:7d:7e:fc:fe:b8:5c:d6:7d:
58:17:20:d7:c1:95:85:e8:fb:64:9d:78:b0:d9:6f:
21:40:e0:8a:ec:95:f9:d1:6a:c1:50:a5:f2:ad:d7:
e5:7c:04:83:95:23:c5:99:c1:50:74:d4:0e:45:67:
11:ab:e1:a8:7d:79:6d:86:13:51:74:d5:39:17:3d:
b0:e8:d6:a0:89:02:2b:0b:79:fb:f7:54:0a:0e:8c:
ac:54:df:c4:fc:1a:44:92:7d:13:9c:fa:d6:81:48:
82:9e:ba:7b:8a:1d:47:8e:b4:11:77:a1:f1:ce:1d:
f0:f3:d3:e8:ca:96:26:30:72:6b:f2:f2:e7:5a:c2:
df:9b:e3:3a:53:45:d3:26:9b:5f:b7:f3:52:6c:df:
f7:41:58:d2:7b:a0:a1:5e:30:39:fb:8d:02:9f:62:
b6:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:0C:43:B7:4F:04:16:4D:A2:6B:E5:6E:01:D7:11:07:05:7E:31:78
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/1QxDt08EFk2ia-VuAdcRBwV-MXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.74.0.0/15
46.206.0.0/15
62.46.0.0/15
62.116.32.0/19
80.75.32.0/19
80.89.96.0/20
80.120.0.0/14
80.240.224.0/20
81.5.192.0/18
84.20.160.0/19
85.90.128.0/19
88.116.0.0/15
89.144.192.0/18
91.112.0.0/14
92.248.0.0/17
93.82.0.0/15
93.111.0.0/16
176.66.0.0/18
176.66.128.0/17
178.188.0.0/14
188.20.0.0/14
188.45.0.0/16
192.164.0.0-192.164.35.255
192.164.39.0-192.164.71.255
192.164.80.0-192.164.159.255
192.164.208.0-192.164.255.255
193.80.0.0/15
193.83.0.0/16
193.154.0.0/16
193.187.212.0-193.187.243.255
194.48.124.0-194.48.139.255
194.96.0.0/16
194.118.0.0/16
194.152.96.0/19
194.152.160.0/19
194.166.0.0/16
195.3.64.0/18
195.64.0.0/19
195.170.64.0/19
195.230.32.0/19
212.16.32.0/19
212.60.160.0/19
212.88.0.0/19
212.88.160.0/19
212.124.128.0/19
212.183.0.0/17
212.197.128.0/18
213.33.0.0/17
213.147.160.0/19
213.157.128.0/19
213.225.0.0/18
213.240.64.0/18
217.149.160.0/20
IPv6:
2001:850::/29
2001:870::/29
2001:890::/29
2001:4bb8::/29
Signature Algorithm: sha256WithRSAEncryption
93:f9:34:26:f8:24:62:71:ca:f7:0b:ad:dd:d5:b6:3a:2c:cb:
fe:2b:dc:34:96:4e:94:27:60:a9:94:05:9f:34:41:3d:38:2a:
f6:f0:92:80:a9:e4:b6:9f:7f:16:0b:d7:26:4c:1d:fb:75:2d:
dd:b7:8d:60:38:50:07:90:b5:c1:40:84:f1:7f:3c:98:70:a6:
68:c3:0c:7a:e6:53:2d:d8:38:2d:d1:6a:a3:70:9e:51:e9:87:
20:3a:f7:60:48:18:5b:b5:56:a0:58:65:8f:4d:d6:9d:b3:00:
ac:64:02:75:5d:15:9d:82:22:57:69:d3:bb:01:b7:b5:87:6b:
88:dd:98:78:6f:5e:26:5f:80:2b:3e:54:60:b1:36:92:2c:19:
91:79:09:2e:5e:63:1c:64:c6:b3:49:08:13:e3:9b:fa:b0:00:
2b:b0:69:21:d8:2c:df:04:82:9b:59:18:f0:0c:fb:83:68:28:
b9:c7:a2:8a:48:7b:2d:cd:40:5f:58:5b:5c:9c:7f:6c:f8:11:
2f:6c:a1:b0:b9:b2:ac:e0:aa:73:44:4b:39:47:0b:22:71:7f:
00:31:ea:80:74:7a:e0:ca:1f:62:c9:b6:45:6a:24:02:f8:f3:
61:e8:45:de:65:f2:6e:60:44:d4:f1:76:f0:1d:d2:a1:01:d9:
8a:4c:5f:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:16 2024 by rpki-client on console-ams.rpki-client.org