Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/jcNfIEbHdqSUTSHSzSIfwjk9rqo.roa
File: jcNfIEbHdqSUTSHSzSIfwjk9rqo.roa (raw, json)
Hash identifier: 77lMcGCKQ0KayOW8SzZdmwpl5rtpo4XqTyjIJwuF0HM=
Subject key identifier: 8D:C3:5F:20:46:C7:76:A4:94:4D:21:D2:CD:22:1F:C2:39:3D:AE:AA
Certificate issuer: /CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Certificate serial: 018E2D9CA7DBDCFA7C15D23AE0ABE5B6A44B
Authority key identifier: 1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/jcNfIEbHdqSUTSHSzSIfwjk9rqo.roa
Signing time: Mon 11 Mar 2024 13:03:45 +0000
ROA not before: Mon 11 Mar 2024 13:03:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49063
IP address blocks: 85.193.72.0/24 maxlen: 24
85.193.73.0/24 maxlen: 24
85.193.74.0/24 maxlen: 24
85.193.75.0/24 maxlen: 24
87.251.90.0/23 maxlen: 23
87.251.91.0/24 maxlen: 24
91.107.64.0/21 maxlen: 21
91.107.64.0/24 maxlen: 24
91.107.65.0/24 maxlen: 24
91.107.66.0/24 maxlen: 24
91.107.67.0/24 maxlen: 24
91.107.68.0/24 maxlen: 24
91.107.69.0/24 maxlen: 24
91.107.70.0/24 maxlen: 24
91.107.71.0/24 maxlen: 24
92.242.32.0/21 maxlen: 21
92.242.32.0/24 maxlen: 24
92.242.33.0/24 maxlen: 24
92.242.34.0/24 maxlen: 24
92.242.35.0/24 maxlen: 24
92.242.36.0/24 maxlen: 24
92.242.37.0/24 maxlen: 24
92.242.38.0/24 maxlen: 24
92.242.39.0/24 maxlen: 24
92.242.41.0/24 maxlen: 24
92.242.42.0/24 maxlen: 24
92.242.43.0/24 maxlen: 24
92.242.46.0/24 maxlen: 24
92.242.47.0/24 maxlen: 24
95.131.24.0/21 maxlen: 21
95.131.24.0/24 maxlen: 24
95.131.25.0/24 maxlen: 24
95.131.26.0/24 maxlen: 24
95.131.29.0/24 maxlen: 24
95.131.30.0/24 maxlen: 24
95.131.31.0/24 maxlen: 24
95.181.192.0/22 maxlen: 22
95.181.193.0/24 maxlen: 24
95.181.194.0/24 maxlen: 24
95.181.195.0/24 maxlen: 24
95.181.196.0/23 maxlen: 23
95.181.196.0/24 maxlen: 24
95.181.197.0/24 maxlen: 24
95.181.199.0/24 maxlen: 24
95.181.200.0/21 maxlen: 21
95.181.200.0/24 maxlen: 24
95.181.201.0/24 maxlen: 24
95.181.203.0/24 maxlen: 24
95.181.204.0/24 maxlen: 24
95.181.205.0/24 maxlen: 24
130.193.64.0/21 maxlen: 21
130.193.64.0/24 maxlen: 24
130.193.65.0/24 maxlen: 24
130.193.66.0/24 maxlen: 24
130.193.67.0/24 maxlen: 24
130.193.68.0/24 maxlen: 24
130.193.70.0/24 maxlen: 24
130.193.71.0/24 maxlen: 24
176.107.160.0/24 maxlen: 24
176.107.161.0/24 maxlen: 24
176.107.162.0/24 maxlen: 24
176.107.163.0/24 maxlen: 24
176.107.164.0/24 maxlen: 24
176.107.165.0/24 maxlen: 24
176.107.166.0/24 maxlen: 24
176.107.167.0/24 maxlen: 24
178.20.232.0/21 maxlen: 21
178.20.232.0/24 maxlen: 24
178.20.233.0/24 maxlen: 24
178.20.234.0/24 maxlen: 24
178.20.235.0/24 maxlen: 24
178.20.236.0/24 maxlen: 24
178.20.237.0/24 maxlen: 24
178.20.238.0/24 maxlen: 24
178.20.239.0/24 maxlen: 24
178.57.72.0/21 maxlen: 21
178.57.72.0/24 maxlen: 24
178.57.73.0/24 maxlen: 24
178.57.74.0/24 maxlen: 24
178.57.75.0/24 maxlen: 24
178.57.76.0/24 maxlen: 24
178.57.77.0/24 maxlen: 24
178.57.78.0/24 maxlen: 24
178.57.79.0/24 maxlen: 24
185.3.140.0/22 maxlen: 22
185.3.140.0/24 maxlen: 24
185.3.141.0/24 maxlen: 24
185.3.142.0/24 maxlen: 24
185.3.143.0/24 maxlen: 24
185.98.80.0/22 maxlen: 22
185.98.80.0/24 maxlen: 24
185.98.81.0/24 maxlen: 24
185.98.82.0/24 maxlen: 24
185.98.83.0/24 maxlen: 24
185.98.84.0/23 maxlen: 23
185.98.84.0/24 maxlen: 24
185.98.85.0/24 maxlen: 24
185.99.8.0/21 maxlen: 21
185.99.8.0/24 maxlen: 24
185.99.9.0/24 maxlen: 24
185.99.10.0/24 maxlen: 24
185.99.11.0/24 maxlen: 24
185.99.13.0/24 maxlen: 24
185.99.14.0/24 maxlen: 24
185.99.140.0/23 maxlen: 23
185.99.140.0/24 maxlen: 24
185.127.148.0/22 maxlen: 22
185.127.148.0/24 maxlen: 24
185.127.149.0/24 maxlen: 24
185.127.150.0/24 maxlen: 24
185.127.151.0/24 maxlen: 24
185.148.80.0/24 maxlen: 24
185.148.81.0/24 maxlen: 24
185.148.82.0/24 maxlen: 24
185.148.83.0/24 maxlen: 24
185.195.169.0/24 maxlen: 24
185.232.104.0/22 maxlen: 22
185.232.104.0/24 maxlen: 24
185.232.105.0/24 maxlen: 24
185.232.106.0/24 maxlen: 24
185.232.107.0/24 maxlen: 24
185.242.120.0/24 maxlen: 24
185.247.186.0/24 maxlen: 24
193.23.144.0/22 maxlen: 22
193.23.144.0/24 maxlen: 24
193.23.145.0/24 maxlen: 24
193.23.146.0/24 maxlen: 24
193.23.147.0/24 maxlen: 24
195.14.100.0/24 maxlen: 24
195.14.101.0/24 maxlen: 24
2a01:ba80::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 25 Apr 2024 08:34:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:2d:9c:a7:db:dc:fa:7c:15:d2:3a:e0:ab:e5:b6:a4:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Validity
Not Before: Mar 11 13:03:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8dc35f2046c776a4944d21d2cd221fc2393daeaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:aa:56:b4:b9:6f:0a:6f:fd:bc:79:90:0f:49:
cf:c1:43:67:01:d7:33:13:94:fb:34:4e:5d:5e:f2:
92:fe:fe:2d:05:37:5f:71:29:e6:59:0a:81:8b:42:
1b:13:b6:41:0b:5a:73:17:f2:1d:37:cf:65:15:5d:
cc:26:bc:42:c5:27:36:29:31:ed:8c:62:f2:c4:f1:
7c:c0:0c:14:88:b5:c7:80:8b:c5:7d:a7:db:be:48:
a3:9c:c8:5b:02:1c:db:70:6c:f6:37:31:0c:d9:5d:
41:1f:6f:c1:5d:87:d7:15:f6:5f:f4:0a:72:ae:5f:
c4:3a:3f:a1:3c:28:89:f3:13:b9:88:44:e8:6b:49:
2e:2f:e4:e0:82:5f:92:75:69:19:10:59:83:99:b9:
d5:34:5e:37:f9:8d:a0:18:84:d8:38:61:82:59:7c:
24:33:f5:58:68:37:32:11:68:c0:27:b8:67:3a:e6:
c3:66:a1:3b:c4:f5:09:aa:36:74:f9:9c:f3:d8:12:
9b:8a:6f:85:f1:72:44:37:1b:5a:9a:2c:19:56:2c:
07:e7:d8:b7:a6:ad:b7:37:8f:85:f1:c6:86:8d:75:
1d:74:38:80:11:8e:87:0c:ab:e8:87:20:b2:dc:7a:
42:64:83:04:ff:ea:47:ee:61:48:60:d5:ba:35:db:
16:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:C3:5F:20:46:C7:76:A4:94:4D:21:D2:CD:22:1F:C2:39:3D:AE:AA
X509v3 Authority Key Identifier:
keyid:1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/jcNfIEbHdqSUTSHSzSIfwjk9rqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.193.72.0/22
87.251.90.0/23
91.107.64.0/21
92.242.32.0/21
92.242.41.0-92.242.43.255
92.242.46.0/23
95.131.24.0/21
95.181.192.0-95.181.197.255
95.181.199.0-95.181.207.255
130.193.64.0/21
176.107.160.0/21
178.20.232.0/21
178.57.72.0/21
185.3.140.0/22
185.98.80.0-185.98.85.255
185.99.8.0/21
185.99.140.0/23
185.127.148.0/22
185.148.80.0/22
185.195.169.0/24
185.232.104.0/22
185.242.120.0/24
185.247.186.0/24
193.23.144.0/22
195.14.100.0/23
IPv6:
2a01:ba80::/32
Signature Algorithm: sha256WithRSAEncryption
ce:96:59:22:fa:5b:89:dc:b0:69:c8:1c:f1:36:80:f6:8b:8f:
bd:3c:e9:8a:ae:25:ca:99:51:13:5a:f1:5e:c3:79:98:34:c5:
f7:e0:bf:2d:76:6f:a5:1e:36:69:40:08:3f:fb:ac:8f:89:45:
7c:27:ea:90:03:8a:83:77:6e:be:3d:20:ce:0f:ad:92:10:4d:
2b:f5:8f:44:8d:a6:06:ea:33:35:ec:22:3d:12:3f:69:c7:f7:
5e:d5:52:63:b9:ad:01:16:27:3a:20:18:e8:d2:96:60:8e:b4:
d5:b8:b7:97:5f:c8:6f:c2:72:ce:68:59:51:a2:4a:af:4a:a3:
e7:c8:5e:83:d0:19:ec:f9:5f:85:b8:9c:86:74:72:e5:b0:39:
b5:b1:55:8a:37:4e:10:26:6a:f7:5f:06:e3:ae:b6:d8:9f:b3:
e7:fd:a0:6e:d1:a1:5e:c0:99:a1:7b:bd:73:ab:1b:a8:8b:69:
5d:f7:80:8a:37:4b:ed:67:4f:66:4b:89:7a:27:ea:c5:37:ce:
6c:ac:8a:da:b0:39:20:2b:90:30:ff:c6:fd:67:31:6c:bc:73:
7b:2f:aa:03:cd:3c:a7:9c:fe:03:8b:bb:bb:e6:cc:f4:c4:38:
b9:61:ff:24:d3:9e:c3:d1:52:be:a2:f1:4c:16:b2:ed:24:bb:
2a:a5:6c:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 10:41:12 2024 by rpki-client on console-ams.rpki-client.org