Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/hBG5vMQVhaPvhVQg7X63AhQ10Xg.roa
File: hBG5vMQVhaPvhVQg7X63AhQ10Xg.roa (raw, json)
Hash identifier: uLAcn1u7+P01Nrd1yUh8hyoPFthWxJbJkMQ/WIc/bfA=
Subject key identifier: 84:11:B9:BC:C4:15:85:A3:EF:85:54:20:ED:7E:B7:02:14:35:D1:78
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 0185704BB769A7081D0F7E567C030F7DBD61
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/hBG5vMQVhaPvhVQg7X63AhQ10Xg.roa
Signing time: Mon 02 Jan 2023 02:24:48 +0000
ROA not before: Mon 02 Jan 2023 02:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48728
IP address blocks: 31.11.48.0/21 maxlen: 21
37.186.37.0/24 maxlen: 24
37.186.38.0/24 maxlen: 24
37.186.32.0/24 maxlen: 24
37.186.34.0/24 maxlen: 24
37.186.33.0/24 maxlen: 24
37.186.36.0/24 maxlen: 24
37.186.35.0/24 maxlen: 24
37.186.32.0/19 maxlen: 19
37.186.44.0/24 maxlen: 24
37.186.39.0/24 maxlen: 24
37.186.41.0/24 maxlen: 24
37.186.40.0/24 maxlen: 24
37.186.43.0/24 maxlen: 24
37.186.42.0/24 maxlen: 24
37.186.51.0/24 maxlen: 24
37.186.50.0/24 maxlen: 24
37.186.46.0/24 maxlen: 24
37.186.45.0/24 maxlen: 24
37.186.48.0/24 maxlen: 24
37.186.47.0/24 maxlen: 24
37.186.49.0/24 maxlen: 24
37.186.58.0/24 maxlen: 24
37.186.57.0/24 maxlen: 24
37.186.53.0/24 maxlen: 24
37.186.52.0/24 maxlen: 24
37.186.55.0/24 maxlen: 24
37.186.54.0/24 maxlen: 24
37.186.56.0/24 maxlen: 24
37.186.60.0/24 maxlen: 24
37.186.59.0/24 maxlen: 24
37.186.62.0/24 maxlen: 24
37.186.61.0/24 maxlen: 24
37.186.63.0/24 maxlen: 24
185.247.88.0/22 maxlen: 22
103.17.1.0/24 maxlen: 24
103.17.0.0/24 maxlen: 24
103.17.3.0/24 maxlen: 24
103.17.2.0/24 maxlen: 24
103.17.0.0/22 maxlen: 22
103.199.89.0/24 maxlen: 24
103.199.88.0/24 maxlen: 24
103.199.91.0/24 maxlen: 24
103.199.90.0/24 maxlen: 24
80.76.165.0/24 maxlen: 24
80.76.164.0/24 maxlen: 24
80.76.160.0/24 maxlen: 24
80.76.162.0/24 maxlen: 24
80.76.161.0/24 maxlen: 24
80.76.163.0/24 maxlen: 24
80.76.160.0/21 maxlen: 21
80.76.160.0/20 maxlen: 20
80.76.172.0/24 maxlen: 24
80.76.171.0/24 maxlen: 24
80.76.169.0/24 maxlen: 24
80.76.170.0/24 maxlen: 24
80.76.168.0/21 maxlen: 21
80.76.174.0/24 maxlen: 24
80.76.173.0/24 maxlen: 24
80.76.175.0/24 maxlen: 24
103.23.124.0/22 maxlen: 22
103.23.124.0/24 maxlen: 24
103.23.125.0/24 maxlen: 24
103.23.126.0/24 maxlen: 24
103.23.127.0/24 maxlen: 24
103.225.74.0/24 maxlen: 24
103.225.73.0/24 maxlen: 24
103.225.75.0/24 maxlen: 24
103.225.72.0/24 maxlen: 24
103.225.72.0/22 maxlen: 22
212.70.96.0/19 maxlen: 19
212.70.96.0/24 maxlen: 24
212.70.98.0/24 maxlen: 24
212.70.97.0/24 maxlen: 24
212.70.102.0/24 maxlen: 24
212.70.104.0/24 maxlen: 24
212.70.99.0/24 maxlen: 24
212.70.109.0/24 maxlen: 24
212.70.108.0/24 maxlen: 24
212.70.110.0/24 maxlen: 24
212.70.112.0/24 maxlen: 24
212.70.111.0/24 maxlen: 24
212.70.107.0/24 maxlen: 24
212.70.106.0/24 maxlen: 24
212.70.116.0/24 maxlen: 24
212.70.115.0/24 maxlen: 24
212.70.117.0/24 maxlen: 24
212.70.118.0/24 maxlen: 24
212.70.114.0/24 maxlen: 24
212.70.113.0/24 maxlen: 24
212.70.122.0/24 maxlen: 24
212.70.125.0/24 maxlen: 24
212.70.119.0/24 maxlen: 24
212.70.121.0/24 maxlen: 24
212.70.126.0/24 maxlen: 24
212.70.127.0/24 maxlen: 24
2a04:7f80::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:4b:b7:69:a7:08:1d:0f:7e:56:7c:03:0f:7d:bd:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Jan 2 02:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8411b9bcc41585a3ef855420ed7eb7021435d178
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:93:ea:d7:b6:e0:f5:07:76:91:05:50:82:e5:
6e:66:df:ac:9b:50:89:e9:8d:88:95:b4:59:11:fc:
e9:a6:d1:bf:92:93:43:88:98:78:2e:9e:bb:05:9b:
a0:8f:a5:54:53:f0:fc:cb:8d:f1:64:c8:5c:67:05:
85:52:56:e5:83:bf:b3:66:8c:0d:31:89:89:e3:ed:
8c:94:e2:f7:fd:f3:b7:8e:bb:89:cc:9b:75:ff:71:
03:89:48:32:45:84:9e:7b:f2:70:3f:1f:bb:c7:be:
6f:a0:9f:bb:ec:0f:97:cc:e4:c9:89:7e:e5:16:b8:
fa:c6:9b:a8:74:61:1b:12:61:0d:94:d8:db:c1:d7:
8b:87:c4:1e:21:6a:87:c7:2c:64:ce:08:04:01:56:
46:3a:cb:43:a3:08:e8:ab:b8:1d:f2:9f:48:8e:01:
6b:9c:25:d6:ee:06:65:2a:58:b7:38:dc:6e:ef:53:
53:64:52:01:e6:19:55:3b:b5:58:dc:8f:48:ff:40:
c8:00:28:87:c1:b4:78:23:50:2e:f5:94:f5:d7:c9:
a8:6f:d0:1b:71:e7:df:0d:7f:32:e8:e2:09:7c:bb:
29:e5:0e:98:0b:a4:90:64:be:2a:45:dd:82:b7:74:
bf:9a:27:e8:d3:fc:a2:4f:f9:72:30:de:1c:e2:3c:
3b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:11:B9:BC:C4:15:85:A3:EF:85:54:20:ED:7E:B7:02:14:35:D1:78
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/hBG5vMQVhaPvhVQg7X63AhQ10Xg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.32.0/19
80.76.160.0/20
103.17.0.0/22
103.23.124.0/22
103.199.88.0/22
103.225.72.0/22
185.247.88.0/22
212.70.96.0/19
IPv6:
2a04:7f80::/29
Signature Algorithm: sha256WithRSAEncryption
38:21:37:87:fa:9c:d7:f6:f2:40:f4:08:77:67:a9:8b:0c:5b:
9f:c3:38:b8:9a:87:4a:90:77:23:37:b6:8d:1d:92:3b:84:bc:
2e:3d:ac:de:0d:fd:f7:1c:de:bc:70:91:85:62:a4:5f:ad:01:
1a:12:eb:d5:8b:18:61:40:a4:e3:6a:96:ea:ee:ae:09:40:61:
4c:3a:59:5d:f2:a3:22:c0:a3:62:47:20:cc:d1:e2:ef:e0:1d:
41:c8:eb:de:d1:8e:32:fe:06:ac:cf:79:ed:47:9d:b6:31:95:
ba:c9:53:d0:d0:80:a0:a2:36:ad:68:5d:22:90:41:b0:a9:de:
93:cc:e6:75:4b:f2:a9:b1:e2:72:b8:03:0b:98:ba:6c:fa:8e:
a6:cb:95:fe:76:49:aa:69:8c:8a:36:78:da:11:f6:79:98:67:
6b:d2:22:c3:a5:2c:e9:53:85:dc:03:ca:e8:1e:24:f9:59:fb:
ef:d0:45:25:8e:21:d4:d3:cd:7e:f1:8e:b1:fa:9f:01:45:fc:
16:b1:45:5e:a1:39:f5:af:b8:94:97:35:4d:2f:aa:c9:5b:17:
50:03:93:a3:bf:74:be:f2:db:a8:bc:88:44:5a:94:80:bb:24:
8b:0b:b7:cc:08:54:5c:f9:37:07:eb:99:e8:8d:70:48:22:42:
e7:5d:ee:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:41 2023 by rpki-client on console-fra.rpki-client.org