Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/wCduy_tEwpg3bakUgKUmEhAAqME.roa
File: wCduy_tEwpg3bakUgKUmEhAAqME.roa (raw, json)
Hash identifier: 3PpP1D9wTDbXhKV942bJexdJ+TBG0aeD7404C6MAhIU=
Subject key identifier: C0:27:6E:CB:FB:44:C2:98:37:6D:A9:14:80:A5:26:12:10:00:A8:C1
Certificate issuer: /CN=c42708df93954aac601aef1835bd5d69245fb02f
Certificate serial: 018C67803B119714D9E461CAB29DFC392F1A
Authority key identifier: C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/wCduy_tEwpg3bakUgKUmEhAAqME.roa
Signing time: Thu 14 Dec 2023 08:45:06 +0000
ROA not before: Thu 14 Dec 2023 08:45:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8648
IP address blocks: 193.22.255.0/24 maxlen: 24
185.80.92.0/22 maxlen: 24
82.141.0.0/18 maxlen: 24
185.137.168.0/22 maxlen: 24
212.110.96.0/19 maxlen: 24
128.127.64.0/21 maxlen: 24
195.225.133.0/24 maxlen: 24
45.87.136.0/22 maxlen: 24
95.130.248.0/21 maxlen: 24
94.154.148.0/22 maxlen: 24
93.90.176.0/20 maxlen: 24
195.42.120.0/23 maxlen: 24
91.203.212.0/22 maxlen: 24
109.237.128.0/20 maxlen: 24
195.62.96.0/19 maxlen: 24
195.82.152.0/23 maxlen: 24
84.254.120.0/24 maxlen: 24
193.25.114.0/23 maxlen: 24
195.110.42.0/23 maxlen: 24
185.211.60.0/22 maxlen: 24
185.207.228.0/22 maxlen: 24
195.5.120.0/23 maxlen: 24
185.32.116.0/22 maxlen: 24
185.143.164.0/22 maxlen: 24
89.22.96.0/19 maxlen: 24
194.116.186.0/23 maxlen: 24
5.11.48.0/21 maxlen: 24
91.206.142.0/23 maxlen: 24
91.220.49.0/24 maxlen: 24
194.145.226.0/24 maxlen: 24
213.146.96.0/19 maxlen: 24
193.38.156.0/22 maxlen: 24
109.75.176.0/20 maxlen: 24
93.190.64.0/21 maxlen: 24
91.203.108.0/22 maxlen: 24
185.65.88.0/22 maxlen: 24
178.250.168.0/21 maxlen: 24
37.218.248.0/21 maxlen: 24
185.117.248.0/22 maxlen: 24
141.101.32.0/21 maxlen: 24
185.84.80.0/22 maxlen: 24
185.84.80.0/23 maxlen: 24
185.84.82.0/24 maxlen: 24
178.20.96.0/21 maxlen: 24
195.34.82.0/23 maxlen: 24
192.162.84.0/22 maxlen: 24
91.226.88.0/22 maxlen: 24
31.47.240.0/20 maxlen: 24
46.243.88.0/21 maxlen: 24
81.88.16.0/20 maxlen: 24
185.51.8.0/22 maxlen: 24
185.158.212.0/22 maxlen: 24
81.88.27.0/24 maxlen: 24
185.3.232.0/22 maxlen: 24
81.88.32.0/20 maxlen: 24
5.44.96.0/20 maxlen: 24
2a04:4cc0::/29 maxlen: 48
2a01:aee0::/32 maxlen: 48
2a02:2b80::/32 maxlen: 48
2a02:a60::/32 maxlen: 48
2a0b:6340::/29 maxlen: 48
2a04:ff40::/29 maxlen: 48
2a00:5300::/32 maxlen: 48
2a00:12c0::/29 maxlen: 48
2a02:248::/32 maxlen: 48
2a00:fa40::/32 maxlen: 48
2a0b:2a40::/29 maxlen: 48
2001:880::/32 maxlen: 32
2a01:64c0::/32 maxlen: 48
Validation: Failed, certificate revoked on Thu 14 Dec 2023 09:23:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:67:80:3b:11:97:14:d9:e4:61:ca:b2:9d:fc:39:2f:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c42708df93954aac601aef1835bd5d69245fb02f
Validity
Not Before: Dec 14 08:45:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c0276ecbfb44c298376da91480a526121000a8c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:10:af:91:be:6d:eb:05:56:16:0f:68:76:63:
b4:b1:1a:f0:6b:c5:b1:9d:8a:15:32:15:c1:c7:5a:
57:57:c4:fc:5f:c7:79:b2:50:f5:e8:2e:46:4c:d6:
07:f5:c9:ed:18:2f:e6:4e:2e:cb:4c:cc:6a:bb:e5:
fc:06:c7:ec:d2:b2:b2:de:ee:f7:a6:b4:ea:2d:f6:
ec:29:1c:6f:2e:8b:1e:77:d3:63:85:28:84:ef:10:
dd:cf:ad:21:b2:01:1d:9f:b6:ce:07:d7:cf:79:f9:
77:a7:ff:a9:70:90:c7:19:65:b8:95:83:95:33:0e:
de:43:93:15:84:0f:0b:94:2f:2b:a7:80:63:97:3e:
ad:7b:89:ba:84:42:26:86:48:ef:f2:af:1f:04:93:
29:57:40:d8:6c:10:21:78:1f:82:67:b7:fa:df:30:
66:2e:52:b1:da:e3:7a:30:cc:6c:82:d8:5e:fb:05:
b8:14:2a:03:17:d3:6d:b1:a8:4d:7e:88:9f:ff:7a:
10:7e:7a:ad:b5:05:92:dd:e2:bf:4a:1f:e2:e4:34:
02:c6:e4:6a:df:c2:9c:c0:92:f8:ab:ac:8a:c2:8c:
a7:7d:be:a7:c3:a4:8d:61:c7:c8:de:67:d2:bb:0a:
e4:84:a7:73:4b:bc:09:6c:c7:39:d7:8c:da:2a:52:
c4:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:27:6E:CB:FB:44:C2:98:37:6D:A9:14:80:A5:26:12:10:00:A8:C1
X509v3 Authority Key Identifier:
keyid:C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/wCduy_tEwpg3bakUgKUmEhAAqME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/xCcI35OVSqxgGu8YNb1daSRfsC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.11.48.0/21
5.44.96.0/20
31.47.240.0/20
37.218.248.0/21
45.87.136.0/22
46.243.88.0/21
81.88.16.0-81.88.47.255
82.141.0.0/18
84.254.120.0/24
89.22.96.0/19
91.203.108.0/22
91.203.212.0/22
91.206.142.0/23
91.220.49.0/24
91.226.88.0/22
93.90.176.0/20
93.190.64.0/21
94.154.148.0/22
95.130.248.0/21
109.75.176.0/20
109.237.128.0/20
128.127.64.0/21
141.101.32.0/21
178.20.96.0/21
178.250.168.0/21
185.3.232.0/22
185.32.116.0/22
185.51.8.0/22
185.65.88.0/22
185.80.92.0/22
185.84.80.0/22
185.117.248.0/22
185.137.168.0/22
185.143.164.0/22
185.158.212.0/22
185.207.228.0/22
185.211.60.0/22
192.162.84.0/22
193.22.255.0/24
193.25.114.0/23
193.38.156.0/22
194.116.186.0/23
194.145.226.0/24
195.5.120.0/23
195.34.82.0/23
195.42.120.0/23
195.62.96.0/19
195.82.152.0/23
195.110.42.0/23
195.225.133.0/24
212.110.96.0/19
213.146.96.0/19
IPv6:
2001:880::/32
2a00:12c0::/29
2a00:5300::/32
2a00:fa40::/32
2a01:64c0::/32
2a01:aee0::/32
2a02:248::/32
2a02:a60::/32
2a02:2b80::/32
2a04:4cc0::/29
2a04:ff40::/29
2a0b:2a40::/29
2a0b:6340::/29
Signature Algorithm: sha256WithRSAEncryption
3d:9b:30:8e:0a:4d:49:7b:32:fc:e1:05:34:b5:c9:5a:52:98:
0a:39:9f:da:04:54:2e:1a:fc:7a:a1:e9:09:36:dd:e6:6b:ad:
68:00:15:1c:c6:76:08:4a:4e:0b:fd:27:da:f2:7c:9b:78:82:
48:3e:75:b7:44:bf:f4:0a:b8:23:d0:e6:c4:6d:fb:0e:68:eb:
e7:de:64:5f:de:7a:4e:f0:f8:b9:63:d2:13:81:7f:35:6e:75:
e3:77:73:10:31:2e:6e:a8:96:71:71:26:94:42:c2:3d:8c:bd:
51:f1:21:81:bd:78:50:78:c8:1b:dd:53:f0:d1:8f:90:15:c3:
d9:da:9d:70:b7:4c:4c:9d:d4:b6:b5:16:9e:b6:cf:65:fc:de:
02:b0:f7:95:fd:7f:c0:f1:be:10:d0:06:88:6b:58:d3:fd:2a:
fc:31:c5:a6:4b:94:ef:df:b4:b9:88:b2:54:db:c4:c7:38:dc:
d3:74:01:1f:15:5e:11:6b:1d:f0:b1:fa:b4:8c:2b:18:3f:b1:
ba:d3:14:fa:80:c3:47:0a:b9:51:d1:a0:cc:78:c3:da:86:8e:
97:c8:f9:ba:a4:f3:f9:24:88:94:1b:59:77:a9:54:65:03:06:
37:78:ac:3f:e7:f4:59:11:1f:fb:8d:60:11:5a:db:3b:a4:58:
b6:5a:18:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:44 2024 by rpki-client on console-ams.rpki-client.org