Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/_0_rajNI9gso5-EdPM3cyP1vWUU.roa
File: _0_rajNI9gso5-EdPM3cyP1vWUU.roa (raw, json)
Hash identifier: uK38R+5vWS4dnZCQvHvaTYhYtDOsePWp0Ix7vIT7Ec0=
Subject key identifier: FF:4F:EB:6A:33:48:F6:0B:28:E7:E1:1D:3C:CD:DC:C8:FD:6F:59:45
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018A6B1E2D1154F1F3B8192D576776B05346
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/_0_rajNI9gso5-EdPM3cyP1vWUU.roa
Signing time: Wed 06 Sep 2023 15:30:54 +0000
ROA not before: Wed 06 Sep 2023 15:30:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 45.83.148.0/22 maxlen: 24
2.56.172.0/22 maxlen: 24
95.214.248.0/22 maxlen: 24
2.56.176.0/22 maxlen: 24
2.56.116.0/22 maxlen: 24
2.56.120.0/22 maxlen: 24
2.56.124.0/22 maxlen: 24
45.83.128.0/22 maxlen: 24
45.83.140.0/22 maxlen: 24
185.161.70.0/23 maxlen: 24
185.161.69.0/24 maxlen: 24
185.106.96.0/22 maxlen: 24
139.28.232.0/22 maxlen: 24
45.15.124.0/22 maxlen: 24
45.86.60.0/22 maxlen: 24
45.86.64.0/22 maxlen: 24
45.15.128.0/22 maxlen: 24
45.86.68.0/22 maxlen: 24
45.15.140.0/22 maxlen: 24
45.15.144.0/22 maxlen: 24
45.86.72.0/22 maxlen: 24
45.86.76.0/22 maxlen: 24
45.92.160.0/22 maxlen: 24
45.92.164.0/22 maxlen: 24
45.92.192.0/22 maxlen: 24
45.89.96.0/22 maxlen: 24
45.89.104.0/22 maxlen: 24
45.89.108.0/22 maxlen: 24
45.9.12.0/22 maxlen: 24
45.9.16.0/22 maxlen: 24
171.22.136.0/22 maxlen: 24
45.12.108.0/22 maxlen: 24
45.12.112.0/22 maxlen: 24
45.12.128.0/22 maxlen: 24
45.12.132.0/22 maxlen: 24
194.76.136.0/22 maxlen: 24
45.12.136.0/22 maxlen: 24
45.12.140.0/22 maxlen: 24
45.12.144.0/22 maxlen: 24
45.12.148.0/22 maxlen: 24
45.83.84.0/22 maxlen: 24
45.15.152.0/22 maxlen: 24
45.82.244.0/22 maxlen: 24
45.82.248.0/22 maxlen: 24
45.82.252.0/22 maxlen: 24
185.153.180.0/22 maxlen: 24
45.15.164.0/22 maxlen: 24
45.15.160.0/22 maxlen: 24
45.15.168.0/22 maxlen: 24
213.59.112.0/20 maxlen: 24
45.89.196.0/22 maxlen: 24
45.15.176.0/22 maxlen: 24
171.22.108.0/22 maxlen: 24
171.22.112.0/22 maxlen: 24
45.83.20.0/22 maxlen: 24
45.83.24.0/22 maxlen: 24
45.15.184.0/22 maxlen: 24
171.22.116.0/22 maxlen: 24
171.22.124.0/22 maxlen: 24
171.22.120.0/22 maxlen: 24
171.22.128.0/22 maxlen: 24
171.22.132.0/22 maxlen: 24
45.88.160.0/22 maxlen: 24
45.88.168.0/22 maxlen: 24
45.88.176.0/22 maxlen: 24
45.88.180.0/22 maxlen: 24
185.203.4.0/22 maxlen: 24
141.98.160.0/22 maxlen: 24
141.98.164.0/22 maxlen: 24
92.118.228.0/22 maxlen: 24
92.118.232.0/22 maxlen: 24
92.118.236.0/22 maxlen: 24
185.156.108.0/22 maxlen: 24
185.166.152.0/22 maxlen: 24
45.92.140.0/22 maxlen: 24
45.128.56.0/22 maxlen: 24
45.128.52.0/22 maxlen: 24
45.128.72.0/22 maxlen: 24
45.128.48.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Sep 2023 11:50:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6b:1e:2d:11:54:f1:f3:b8:19:2d:57:67:76:b0:53:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Sep 6 15:30:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff4feb6a3348f60b28e7e11d3ccddcc8fd6f5945
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:af:18:d7:bd:41:33:ec:f2:e3:d2:d3:f2:42:
b8:e7:e1:2b:3d:41:6b:f5:27:b9:55:f2:42:cc:b9:
d1:34:fa:1a:57:30:9c:b5:18:53:0f:4d:9e:41:5b:
fe:69:ee:a1:48:f1:1e:4d:ee:1c:44:a8:8a:03:05:
6e:df:2d:df:f6:ba:07:df:93:35:23:0d:3e:03:2c:
0b:eb:ad:59:d8:ef:76:26:3f:f2:05:ca:3e:97:10:
54:48:c1:74:21:35:e9:0a:63:02:53:33:fa:78:af:
08:d4:c4:c4:4e:66:0b:02:cd:d1:b5:14:f9:d6:ca:
f8:d1:01:61:10:32:bc:89:3a:ec:50:a8:29:88:46:
b8:9d:83:db:bd:d1:3d:9e:af:22:95:bb:8e:90:b2:
8f:58:04:ed:57:9d:26:04:d2:ef:cb:66:cc:90:81:
64:09:61:85:41:c8:55:ff:e9:69:a5:9c:d9:b7:88:
31:82:96:da:cd:26:8e:11:dd:37:49:15:d0:60:e9:
cc:0e:aa:41:3a:3f:4f:f0:8d:64:71:65:78:e1:ea:
7c:ab:7c:92:f4:ba:d2:4d:03:34:75:75:66:af:5d:
39:b3:8e:15:d3:c5:29:85:43:34:70:33:ba:28:17:
76:2e:67:57:46:54:8d:94:e0:22:7b:ac:58:d7:a7:
f8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:4F:EB:6A:33:48:F6:0B:28:E7:E1:1D:3C:CD:DC:C8:FD:6F:59:45
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/_0_rajNI9gso5-EdPM3cyP1vWUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.116.0-2.56.127.255
2.56.172.0-2.56.179.255
45.9.12.0-45.9.19.255
45.12.108.0-45.12.115.255
45.12.128.0-45.12.151.255
45.15.124.0-45.15.131.255
45.15.140.0-45.15.147.255
45.15.152.0/22
45.15.160.0-45.15.171.255
45.15.176.0/22
45.15.184.0/22
45.82.244.0-45.82.255.255
45.83.20.0-45.83.27.255
45.83.84.0/22
45.83.128.0/22
45.83.140.0/22
45.83.148.0/22
45.86.60.0-45.86.79.255
45.88.160.0/22
45.88.168.0/22
45.88.176.0/21
45.89.96.0/22
45.89.104.0/21
45.89.196.0/22
45.92.140.0/22
45.92.160.0/21
45.92.192.0/22
45.128.48.0-45.128.59.255
45.128.72.0/22
92.118.228.0-92.118.239.255
95.214.248.0/22
139.28.232.0/22
141.98.160.0/21
171.22.108.0-171.22.139.255
185.106.96.0/22
185.153.180.0/22
185.156.108.0/22
185.161.69.0-185.161.71.255
185.166.152.0/22
185.203.4.0/22
194.76.136.0/22
213.59.112.0/20
Signature Algorithm: sha256WithRSAEncryption
14:ba:f2:4e:36:83:ad:a1:3a:25:aa:3f:54:d6:dc:5d:6c:69:
cc:41:92:c9:b9:d4:6d:cf:7b:f1:ee:7c:16:00:b6:fd:cb:e2:
86:06:ff:be:f4:2c:87:82:3e:11:e4:ad:5b:f7:3f:0d:a6:8c:
35:ab:f1:f1:c8:a3:34:82:e8:de:75:01:dd:a7:87:bc:9f:f3:
25:a8:e1:fc:dc:5e:84:82:fd:b3:f5:a8:53:6c:69:80:d1:99:
38:aa:7f:09:f8:a7:39:60:d2:30:2a:38:52:30:46:9f:ac:68:
a1:01:9e:b6:48:46:ca:91:51:02:70:e0:6c:ea:e3:83:0b:13:
07:35:7a:88:9c:08:66:a0:fb:5a:ab:be:5a:26:b2:81:17:fc:
b6:e1:53:db:c9:ed:a9:24:05:a3:f8:c5:23:0e:c4:1f:52:d0:
63:08:98:23:bb:77:a6:2c:c7:fb:d9:29:d5:1b:09:11:ba:f5:
93:94:09:61:f9:c2:38:70:e8:92:a1:4a:88:32:b4:b7:c2:bb:
74:4d:e4:54:20:9c:65:17:85:43:c7:67:1b:f8:80:d1:3b:cc:
26:35:50:d7:19:8e:f1:43:09:c4:59:03:04:c1:bd:f4:03:c4:
11:0d:1e:cc:54:57:bd:52:e4:88:be:6c:bb:02:7d:59:6c:be:
a3:56:ac:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:25 2024 by rpki-client on console-fra.rpki-client.org