Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/C2MCjKjBkjks-waOCzEfiGwLre8.roa
File: C2MCjKjBkjks-waOCzEfiGwLre8.roa (raw, json)
Hash identifier: h3DYG0B16ZbUB/G9Jhr+2+71M7oQLD+nq8qcvc1r7AY=
Subject key identifier: 0B:63:02:8C:A8:C1:92:39:2C:FB:06:8E:0B:31:1F:88:6C:0B:AD:EF
Certificate issuer: /CN=0febfbfd6f937c5ae39e3e38e8ab8384107421a6
Certificate serial: 018BD00347B344B4C36202AA980095BC42CA
Authority key identifier: 0F:EB:FB:FD:6F:93:7C:5A:E3:9E:3E:38:E8:AB:83:84:10:74:21:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D-v7_W-TfFrjnj446KuDhBB0IaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/C2MCjKjBkjks-waOCzEfiGwLre8.roa
Signing time: Tue 14 Nov 2023 22:45:57 +0000
ROA not before: Tue 14 Nov 2023 22:45:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56630
IP address blocks: 45.141.8.0/22 maxlen: 24
185.6.12.0/23 maxlen: 24
185.6.14.0/23 maxlen: 24
45.150.232.0/22 maxlen: 24
195.238.124.0/22 maxlen: 24
185.140.209.0/24 maxlen: 24
185.140.208.0/24 maxlen: 24
185.131.64.0/24 maxlen: 24
185.131.66.0/24 maxlen: 24
185.131.65.0/24 maxlen: 24
185.131.67.0/24 maxlen: 24
88.218.240.0/22 maxlen: 24
89.36.161.0/24 maxlen: 24
89.36.160.0/24 maxlen: 24
103.97.88.0/24 maxlen: 24
217.30.8.0/22 maxlen: 24
194.59.46.0/24 maxlen: 24
185.140.12.0/22 maxlen: 24
194.59.59.0/24 maxlen: 24
194.59.155.0/24 maxlen: 24
91.201.64.0/22 maxlen: 24
194.59.142.0/24 maxlen: 24
213.183.36.0/24 maxlen: 24
89.34.238.0/24 maxlen: 24
213.183.38.0/24 maxlen: 24
213.183.37.0/24 maxlen: 24
213.183.33.0/24 maxlen: 24
213.183.32.0/24 maxlen: 24
5.182.228.0/22 maxlen: 24
213.183.39.0/24 maxlen: 24
213.183.41.0/24 maxlen: 24
213.183.40.0/24 maxlen: 24
213.183.43.0/24 maxlen: 24
213.183.42.0/24 maxlen: 24
213.183.44.0/24 maxlen: 24
213.183.50.0/24 maxlen: 24
213.183.49.0/24 maxlen: 24
88.210.38.0/24 maxlen: 24
213.183.51.0/24 maxlen: 24
213.183.45.0/24 maxlen: 24
213.183.46.0/24 maxlen: 24
213.183.48.0/24 maxlen: 24
213.183.47.0/24 maxlen: 24
213.183.52.0/24 maxlen: 24
88.210.39.0/24 maxlen: 24
213.183.53.0/24 maxlen: 24
213.183.58.0/24 maxlen: 24
77.72.16.0/23 maxlen: 24
213.183.59.0/24 maxlen: 24
213.183.60.0/24 maxlen: 24
213.183.62.0/24 maxlen: 24
213.183.61.0/24 maxlen: 24
77.72.18.0/23 maxlen: 24
77.72.20.0/23 maxlen: 24
77.72.22.0/23 maxlen: 24
213.183.63.0/24 maxlen: 24
92.119.88.0/22 maxlen: 24
91.192.83.0/24 maxlen: 24
91.192.80.0/24 maxlen: 24
5.188.172.0/24 maxlen: 24
5.188.173.0/24 maxlen: 24
5.188.180.0/22 maxlen: 24
185.246.152.0/24 maxlen: 24
185.246.153.0/24 maxlen: 24
185.246.155.0/24 maxlen: 24
185.246.154.0/24 maxlen: 24
45.135.120.0/22 maxlen: 24
31.40.216.0/22 maxlen: 24
213.226.68.0/22 maxlen: 24
93.189.58.0/24 maxlen: 24
93.189.57.0/24 maxlen: 24
185.135.84.0/22 maxlen: 24
93.189.56.0/24 maxlen: 24
93.189.61.0/24 maxlen: 24
93.189.60.0/24 maxlen: 24
93.189.63.0/24 maxlen: 24
93.189.62.0/24 maxlen: 24
2a06:f906::/36 maxlen: 36
2a06:f903::/36 maxlen: 36
2a06:f905::/36 maxlen: 36
2a06:f900:4000::/36 maxlen: 36
2a06:f900::/36 maxlen: 36
2a06:f902::/36 maxlen: 36
2a06:f904::/36 maxlen: 36
2a06:f907:4000::/36 maxlen: 36
2a06:f907::/36 maxlen: 36
2a06:f901::/36 maxlen: 36
2a0d:8400::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 26 Nov 2023 22:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d0:03:47:b3:44:b4:c3:62:02:aa:98:00:95:bc:42:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0febfbfd6f937c5ae39e3e38e8ab8384107421a6
Validity
Not Before: Nov 14 22:45:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b63028ca8c192392cfb068e0b311f886c0badef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:36:6b:d6:f9:e9:4b:3c:3b:11:35:04:62:86:
34:f1:cf:38:1c:61:8f:ae:1b:61:f0:0a:95:5d:74:
05:92:e7:3f:71:69:14:77:00:ae:27:59:4e:21:7c:
7f:5d:2d:ef:6a:c6:b5:76:29:4c:2c:96:9d:02:1d:
4e:72:41:6c:81:c2:50:81:d5:cd:08:02:3a:74:a6:
0f:8b:18:be:8b:93:b9:14:0f:51:8a:05:d1:9e:17:
62:18:04:27:9b:f4:ed:78:51:e2:db:ef:d3:a1:f5:
70:6e:56:8c:96:fc:d2:8d:c2:3d:55:21:eb:5c:e1:
4c:c2:2e:1d:d8:c7:9e:b1:77:0a:5b:8c:c8:b7:15:
1b:57:8b:78:00:bf:41:09:9f:4d:82:9a:d1:3c:83:
b1:a8:65:ee:28:87:46:2b:b2:ad:39:e9:a8:da:a9:
f9:93:24:3b:c3:66:df:35:f9:64:87:ac:a1:3a:c4:
85:d4:30:28:e1:dc:0b:81:48:7f:5f:28:d2:b7:cf:
50:d4:f8:22:fb:f5:ff:a4:05:55:cc:98:18:5c:b1:
8b:ff:f6:2b:c6:e9:13:6b:a3:e3:55:88:41:66:15:
a8:7a:67:c5:e3:94:34:90:dd:40:b0:bd:8c:0e:b5:
6b:a6:79:c2:33:ea:8a:37:31:eb:13:d3:82:cd:e4:
33:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:63:02:8C:A8:C1:92:39:2C:FB:06:8E:0B:31:1F:88:6C:0B:AD:EF
X509v3 Authority Key Identifier:
keyid:0F:EB:FB:FD:6F:93:7C:5A:E3:9E:3E:38:E8:AB:83:84:10:74:21:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D-v7_W-TfFrjnj446KuDhBB0IaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/C2MCjKjBkjks-waOCzEfiGwLre8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/D-v7_W-TfFrjnj446KuDhBB0IaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.228.0/22
5.188.172.0/23
5.188.180.0/22
31.40.216.0/22
45.135.120.0/22
45.141.8.0/22
45.150.232.0/22
77.72.16.0/21
88.210.38.0/23
88.218.240.0/22
89.34.238.0/24
89.36.160.0/23
91.192.80.0/24
91.192.83.0/24
91.201.64.0/22
92.119.88.0/22
93.189.56.0-93.189.58.255
93.189.60.0/22
103.97.88.0/24
185.6.12.0/22
185.131.64.0/22
185.135.84.0/22
185.140.12.0/22
185.140.208.0/23
185.246.152.0/22
194.59.46.0/24
194.59.59.0/24
194.59.142.0/24
194.59.155.0/24
195.238.124.0/22
213.183.32.0/23
213.183.36.0-213.183.53.255
213.183.58.0-213.183.63.255
213.226.68.0/22
217.30.8.0/22
IPv6:
2a06:f900::/36
2a06:f900:4000::/36
2a06:f901::/36
2a06:f902::/36
2a06:f903::/36
2a06:f904::/36
2a06:f905::/36
2a06:f906::/36
2a06:f907::/36
2a06:f907:4000::/36
2a0d:8400::/32
Signature Algorithm: sha256WithRSAEncryption
74:5f:11:0a:67:44:9b:38:ca:1d:2a:06:7f:3e:b9:d0:bf:6e:
aa:80:f4:c1:15:22:0c:ae:da:ec:eb:ca:7d:eb:fe:47:5e:f9:
d4:dc:f5:56:99:24:04:9f:d3:83:b9:e7:03:73:fa:42:89:10:
d3:a1:d7:a4:4a:e7:43:a0:f2:ac:27:00:48:79:64:68:e4:8d:
1a:db:00:90:80:c9:c2:cf:b0:f2:24:f9:c8:1c:f1:68:c9:91:
cc:1e:65:19:7b:ae:32:bc:28:61:66:44:0b:e1:30:ab:e8:18:
33:63:94:e2:58:d4:b6:70:ae:42:bc:e8:b0:65:ff:c4:62:7b:
c4:7a:05:c6:12:e0:99:ec:c3:77:02:4f:27:a3:bb:4c:f9:4e:
46:6e:99:20:d6:0b:53:c0:d5:10:24:aa:4e:95:3a:24:af:6d:
bd:65:6e:76:9f:3e:f4:a4:21:aa:1a:ca:0a:c6:45:1a:bd:2c:
f3:e6:db:d0:da:9d:ed:8c:7d:16:43:98:dc:ed:c1:af:38:42:
04:89:4a:e9:a1:54:e9:d4:e9:93:71:79:11:4e:0c:20:c3:54:
cc:e0:5b:23:4b:23:27:33:3b:8c:9b:9a:79:8b:56:fe:19:7f:
f7:14:44:8c:f0:54:7d:e6:9f:c7:91:8a:d2:4b:40:f2:35:a0:
a0:82:40:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:37 2024 by rpki-client on console-ams.rpki-client.org