Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/b3_focPmjzW4AVozdAWKitg-8bs.roa
File: b3_focPmjzW4AVozdAWKitg-8bs.roa (raw, json)
Hash identifier: Na65bOt2z9VZMnQIt2r4vVWC7ZBfFsfA6CuHQK2S/G4=
Subject key identifier: 6F:7F:DF:A1:C3:E6:8F:35:B8:01:5A:33:74:05:8A:8A:D8:3E:F1:BB
Certificate issuer: /CN=4173eeb8d02f5f64788b3fdc78d6bab8a55fd16a
Certificate serial: 0186BB9D1A26829768334388379C61738CD0
Authority key identifier: 41:73:EE:B8:D0:2F:5F:64:78:8B:3F:DC:78:D6:BA:B8:A5:5F:D1:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QXPuuNAvX2R4iz_ceNa6uKVf0Wo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/b3_focPmjzW4AVozdAWKitg-8bs.roa
Signing time: Tue 07 Mar 2023 10:28:00 +0000
ROA not before: Tue 07 Mar 2023 10:28:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198610
IP address blocks: 45.80.68.0/22 maxlen: 22
45.80.68.0/24 maxlen: 24
45.80.69.0/24 maxlen: 24
45.80.70.0/24 maxlen: 24
45.80.71.0/24 maxlen: 24
45.147.176.0/22 maxlen: 22
45.147.176.0/24 maxlen: 24
45.147.177.0/24 maxlen: 24
45.147.178.0/24 maxlen: 24
45.147.179.0/24 maxlen: 24
5.181.109.0/24 maxlen: 24
5.181.110.0/24 maxlen: 24
5.181.111.0/24 maxlen: 24
5.181.108.0/24 maxlen: 24
5.181.108.0/22 maxlen: 22
45.141.77.0/24 maxlen: 24
45.141.76.0/22 maxlen: 22
45.141.78.0/24 maxlen: 24
45.141.76.0/24 maxlen: 24
45.67.57.0/24 maxlen: 24
45.67.58.0/24 maxlen: 24
45.141.79.0/24 maxlen: 24
45.67.56.0/24 maxlen: 24
45.67.56.0/22 maxlen: 22
45.67.59.0/24 maxlen: 24
185.19.204.0/22 maxlen: 22
185.19.204.0/24 maxlen: 24
185.19.205.0/24 maxlen: 24
185.19.206.0/24 maxlen: 24
185.19.207.0/24 maxlen: 24
193.168.46.0/24 maxlen: 24
193.168.46.0/23 maxlen: 23
193.168.47.0/24 maxlen: 24
193.168.48.0/23 maxlen: 23
193.168.48.0/24 maxlen: 24
193.168.49.0/24 maxlen: 24
45.12.16.0/24 maxlen: 24
45.12.17.0/24 maxlen: 24
45.12.16.0/22 maxlen: 22
45.12.18.0/24 maxlen: 24
45.12.19.0/24 maxlen: 24
95.214.61.0/24 maxlen: 24
95.214.62.0/24 maxlen: 24
95.214.63.0/24 maxlen: 24
95.214.60.0/24 maxlen: 24
95.214.60.0/22 maxlen: 22
81.200.112.0/24 maxlen: 24
81.200.113.0/24 maxlen: 24
213.139.208.0/22 maxlen: 22
81.200.112.0/21 maxlen: 21
213.139.208.0/24 maxlen: 24
81.200.114.0/24 maxlen: 24
213.139.209.0/24 maxlen: 24
81.200.115.0/24 maxlen: 24
81.200.116.0/24 maxlen: 24
81.200.118.0/24 maxlen: 24
81.200.117.0/24 maxlen: 24
213.139.210.0/24 maxlen: 24
213.139.211.0/24 maxlen: 24
81.200.119.0/24 maxlen: 24
45.146.164.0/24 maxlen: 24
45.146.165.0/24 maxlen: 24
45.146.166.0/24 maxlen: 24
45.146.164.0/22 maxlen: 22
45.146.167.0/24 maxlen: 24
91.106.206.0/24 maxlen: 24
91.106.200.0/21 maxlen: 21
91.106.200.0/24 maxlen: 24
91.106.201.0/24 maxlen: 24
91.106.202.0/24 maxlen: 24
91.106.203.0/24 maxlen: 24
91.106.204.0/24 maxlen: 24
91.106.205.0/24 maxlen: 24
91.106.207.0/24 maxlen: 24
62.113.97.0/24 maxlen: 24
62.113.98.0/24 maxlen: 24
62.113.96.0/20 maxlen: 20
62.113.96.0/24 maxlen: 24
62.113.104.0/24 maxlen: 24
62.113.105.0/24 maxlen: 24
62.113.99.0/24 maxlen: 24
62.113.100.0/24 maxlen: 24
62.113.101.0/24 maxlen: 24
62.113.102.0/24 maxlen: 24
62.113.103.0/24 maxlen: 24
62.113.110.0/24 maxlen: 24
62.113.111.0/24 maxlen: 24
62.113.106.0/24 maxlen: 24
62.113.107.0/24 maxlen: 24
62.113.108.0/24 maxlen: 24
62.113.109.0/24 maxlen: 24
193.200.72.0/22 maxlen: 22
193.200.72.0/24 maxlen: 24
193.200.73.0/24 maxlen: 24
193.200.74.0/24 maxlen: 24
193.200.75.0/24 maxlen: 24
217.172.24.0/22 maxlen: 22
217.172.24.0/24 maxlen: 24
217.172.27.0/24 maxlen: 24
217.172.25.0/24 maxlen: 24
217.172.26.0/24 maxlen: 24
185.78.30.0/24 maxlen: 24
185.78.28.0/22 maxlen: 22
185.78.31.0/24 maxlen: 24
185.78.28.0/24 maxlen: 24
185.78.29.0/24 maxlen: 24
45.84.224.0/24 maxlen: 24
45.84.225.0/24 maxlen: 24
45.84.224.0/22 maxlen: 22
45.84.226.0/24 maxlen: 24
45.84.227.0/24 maxlen: 24
185.225.34.0/24 maxlen: 24
185.225.32.0/22 maxlen: 22
185.225.35.0/24 maxlen: 24
185.225.32.0/24 maxlen: 24
185.225.33.0/24 maxlen: 24
185.50.24.0/24 maxlen: 24
185.50.24.0/22 maxlen: 22
45.90.32.0/24 maxlen: 24
45.90.33.0/24 maxlen: 24
45.90.34.0/24 maxlen: 24
45.90.35.0/24 maxlen: 24
45.90.32.0/22 maxlen: 22
5.101.153.244/32 maxlen: 32
87.236.17.122/32 maxlen: 32
5.101.153.242/32 maxlen: 32
185.50.25.0/24 maxlen: 24
185.50.26.0/24 maxlen: 24
185.50.27.0/24 maxlen: 24
62.217.177.0/24 maxlen: 24
62.217.178.0/24 maxlen: 24
62.217.179.0/24 maxlen: 24
62.217.176.0/24 maxlen: 24
62.217.176.0/21 maxlen: 21
62.217.183.0/24 maxlen: 24
62.217.180.0/24 maxlen: 24
62.217.181.0/24 maxlen: 24
62.217.182.0/24 maxlen: 24
45.130.42.0/24 maxlen: 24
45.130.43.0/24 maxlen: 24
45.130.40.0/22 maxlen: 22
45.130.40.0/24 maxlen: 24
45.130.41.0/24 maxlen: 24
193.176.76.0/24 maxlen: 24
193.176.77.0/24 maxlen: 24
193.176.78.0/24 maxlen: 24
193.176.76.0/22 maxlen: 22
193.176.79.0/24 maxlen: 24
5.101.154.191/32 maxlen: 32
31.129.96.0/20 maxlen: 20
31.129.98.0/24 maxlen: 24
31.129.96.0/24 maxlen: 24
87.236.16.0/24 maxlen: 24
87.236.17.0/24 maxlen: 24
87.236.16.0/21 maxlen: 21
87.236.21.0/24 maxlen: 24
87.236.22.0/24 maxlen: 24
87.236.23.0/24 maxlen: 24
87.236.18.0/24 maxlen: 24
87.236.19.0/24 maxlen: 24
87.236.20.0/24 maxlen: 24
185.155.118.0/24 maxlen: 24
5.101.152.0/24 maxlen: 24
5.101.152.0/21 maxlen: 21
5.101.153.0/24 maxlen: 24
5.101.154.0/24 maxlen: 24
5.101.155.0/24 maxlen: 24
5.101.156.0/24 maxlen: 24
5.101.157.0/24 maxlen: 24
5.101.158.0/24 maxlen: 24
5.101.159.0/24 maxlen: 24
2a04:bac0::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 10 Mar 2023 07:32:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:bb:9d:1a:26:82:97:68:33:43:88:37:9c:61:73:8c:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4173eeb8d02f5f64788b3fdc78d6bab8a55fd16a
Validity
Not Before: Mar 7 10:28:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f7fdfa1c3e68f35b8015a3374058a8ad83ef1bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:8c:83:5b:4b:d2:62:a6:d2:ab:88:33:ad:e9:
91:2a:da:4d:8e:db:63:10:1e:79:3d:78:8e:12:37:
f9:6f:05:92:5f:8e:95:86:57:62:0c:32:6f:c0:3d:
d4:ce:5f:2e:36:48:76:e8:30:97:07:06:85:c1:04:
d0:21:a8:a7:50:89:06:11:7a:c7:7e:8f:ed:0a:8b:
b0:2c:a1:35:2a:81:ae:0b:56:a1:85:bd:8d:da:ca:
df:a7:6a:de:40:0e:07:7d:8b:92:4b:3a:fb:b4:2f:
f1:8b:c9:87:17:48:b7:6f:cd:2a:c3:9b:93:f4:e4:
62:ce:28:f6:e7:d1:c8:91:58:3d:ce:a0:eb:87:b2:
76:81:8c:be:f1:01:ae:71:1d:bf:53:29:c7:9e:50:
38:b1:8a:35:93:eb:23:99:f5:ae:a9:5d:71:b6:4d:
c6:88:b3:10:8e:9c:9e:fb:ba:4d:ce:fb:d8:30:32:
fe:a7:1f:85:cd:95:bc:91:fe:6d:e4:2e:f2:0c:bf:
4e:04:28:be:95:b8:f7:b5:3e:c8:67:c5:ec:6a:b6:
4e:26:ac:70:6f:38:6d:8c:cc:45:3c:d7:17:08:5e:
50:6f:fe:f9:8b:4d:eb:50:7f:a5:bf:cd:dc:c0:cf:
71:b5:ed:0b:33:d8:92:95:f4:10:59:db:e0:08:7b:
0a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:7F:DF:A1:C3:E6:8F:35:B8:01:5A:33:74:05:8A:8A:D8:3E:F1:BB
X509v3 Authority Key Identifier:
keyid:41:73:EE:B8:D0:2F:5F:64:78:8B:3F:DC:78:D6:BA:B8:A5:5F:D1:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QXPuuNAvX2R4iz_ceNa6uKVf0Wo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/b3_focPmjzW4AVozdAWKitg-8bs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/QXPuuNAvX2R4iz_ceNa6uKVf0Wo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.101.152.0/21
5.181.108.0/22
31.129.96.0/20
45.12.16.0/22
45.67.56.0/22
45.80.68.0/22
45.84.224.0/22
45.90.32.0/22
45.130.40.0/22
45.141.76.0/22
45.146.164.0/22
45.147.176.0/22
62.113.96.0/20
62.217.176.0/21
81.200.112.0/21
87.236.16.0/21
91.106.200.0/21
95.214.60.0/22
185.19.204.0/22
185.50.24.0/22
185.78.28.0/22
185.155.118.0/24
185.225.32.0/22
193.168.46.0-193.168.49.255
193.176.76.0/22
193.200.72.0/22
213.139.208.0/22
217.172.24.0/22
IPv6:
2a04:bac0::/29
Signature Algorithm: sha256WithRSAEncryption
2d:fa:0b:34:99:6d:2e:43:ca:9a:9a:87:31:45:d0:32:47:bd:
da:0b:89:e9:7e:6a:e4:2b:76:dd:f4:11:a9:4a:99:ae:8d:5f:
89:f6:86:0d:6d:1b:de:a0:1b:b8:90:c5:17:9b:57:8c:82:9a:
39:ff:4d:22:dc:e2:99:97:8a:88:c1:7c:fd:c2:79:fd:e2:d1:
cd:89:4e:a9:a0:a3:f0:5a:3d:e9:ca:92:aa:45:86:c5:d6:de:
ca:ac:42:31:d4:81:17:0a:ce:99:a8:22:78:35:48:33:84:5e:
3d:50:26:36:26:92:c3:8a:8f:2a:a8:e9:d1:a9:33:87:e8:fe:
fa:79:06:14:76:6a:7b:59:34:85:73:cf:f7:92:69:3a:d8:67:
cf:2d:fb:a8:79:e5:10:0f:1c:d0:f2:b5:0a:a5:21:59:52:1d:
ca:b9:6c:c2:7f:4f:3e:28:28:f2:2e:77:c3:18:93:da:5f:39:
7c:c8:b0:1a:5b:73:21:5b:bd:e1:f4:3f:a1:f8:8f:13:bd:9a:
de:01:2c:76:f4:6c:4b:1e:e9:2b:5d:7e:e6:7a:b1:ff:63:c2:
eb:4d:6d:7a:f2:dd:8c:5d:87:f8:d6:54:c7:8b:25:0c:67:f5:
32:41:8d:3c:b3:fc:06:a8:e0:c6:5b:50:18:c9:67:e5:82:98:
43:dd:9d:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:10 2024 by rpki-client on console-fra.rpki-client.org