Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/SpJOHjDqcMz4WnZADK77abLb93g.roa
File: SpJOHjDqcMz4WnZADK77abLb93g.roa (raw, json)
Hash identifier: KJrfdD2dJnDz2rWbzQWOfisspu6DyuCqX2ZbpnqBwZU=
Subject key identifier: 4A:92:4E:1E:30:EA:70:CC:F8:5A:76:40:0C:AE:FB:69:B2:DB:F7:78
Certificate issuer: /CN=0febfbfd6f937c5ae39e3e38e8ab8384107421a6
Certificate serial: 018B8AC6F30333D16CAEA1665F9EF37295E3
Authority key identifier: 0F:EB:FB:FD:6F:93:7C:5A:E3:9E:3E:38:E8:AB:83:84:10:74:21:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D-v7_W-TfFrjnj446KuDhBB0IaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/SpJOHjDqcMz4WnZADK77abLb93g.roa
Signing time: Wed 01 Nov 2023 12:06:16 +0000
ROA not before: Wed 01 Nov 2023 12:06:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56630
IP address blocks: 45.141.8.0/22 maxlen: 24
185.224.248.0/22 maxlen: 24
185.6.12.0/23 maxlen: 24
185.6.14.0/23 maxlen: 24
45.150.232.0/22 maxlen: 24
195.238.124.0/22 maxlen: 24
185.140.209.0/24 maxlen: 24
185.140.208.0/24 maxlen: 24
185.131.64.0/24 maxlen: 24
185.131.66.0/24 maxlen: 24
185.131.65.0/24 maxlen: 24
185.131.67.0/24 maxlen: 24
88.218.240.0/22 maxlen: 24
89.36.161.0/24 maxlen: 24
89.36.160.0/24 maxlen: 24
103.97.88.0/24 maxlen: 24
217.30.8.0/22 maxlen: 24
194.59.46.0/24 maxlen: 24
185.140.12.0/22 maxlen: 24
194.59.59.0/24 maxlen: 24
194.59.155.0/24 maxlen: 24
91.201.64.0/22 maxlen: 24
194.59.142.0/24 maxlen: 24
89.34.238.0/24 maxlen: 24
213.183.36.0/24 maxlen: 24
213.183.38.0/24 maxlen: 24
213.183.37.0/24 maxlen: 24
213.183.33.0/24 maxlen: 24
213.183.32.0/24 maxlen: 24
5.182.228.0/22 maxlen: 24
213.183.39.0/24 maxlen: 24
213.183.41.0/24 maxlen: 24
213.183.40.0/24 maxlen: 24
213.183.43.0/24 maxlen: 24
213.183.42.0/24 maxlen: 24
213.183.44.0/24 maxlen: 24
213.183.50.0/24 maxlen: 24
213.183.49.0/24 maxlen: 24
88.210.38.0/24 maxlen: 24
213.183.51.0/24 maxlen: 24
213.183.45.0/24 maxlen: 24
213.183.46.0/24 maxlen: 24
213.183.48.0/24 maxlen: 24
213.183.47.0/24 maxlen: 24
213.183.52.0/24 maxlen: 24
88.210.39.0/24 maxlen: 24
213.183.53.0/24 maxlen: 24
213.183.58.0/24 maxlen: 24
77.72.16.0/23 maxlen: 24
213.183.59.0/24 maxlen: 24
213.183.60.0/24 maxlen: 24
213.183.62.0/24 maxlen: 24
213.183.61.0/24 maxlen: 24
77.72.18.0/23 maxlen: 24
77.72.20.0/23 maxlen: 24
77.72.22.0/23 maxlen: 24
213.183.63.0/24 maxlen: 24
92.119.88.0/22 maxlen: 24
91.192.83.0/24 maxlen: 24
91.192.80.0/24 maxlen: 24
5.188.172.0/24 maxlen: 24
5.188.173.0/24 maxlen: 24
5.188.180.0/22 maxlen: 24
185.246.152.0/24 maxlen: 24
185.246.153.0/24 maxlen: 24
185.246.155.0/24 maxlen: 24
185.246.154.0/24 maxlen: 24
45.135.120.0/22 maxlen: 24
31.40.216.0/22 maxlen: 24
213.226.68.0/22 maxlen: 24
93.189.58.0/24 maxlen: 24
185.135.84.0/22 maxlen: 24
93.189.57.0/24 maxlen: 24
93.189.56.0/24 maxlen: 24
93.189.61.0/24 maxlen: 24
93.189.60.0/24 maxlen: 24
93.189.63.0/24 maxlen: 24
93.189.62.0/24 maxlen: 24
2a06:f906::/36 maxlen: 36
2a06:f903::/36 maxlen: 36
2a06:f905::/36 maxlen: 36
2a06:f900::/36 maxlen: 36
2a06:f900:4000::/36 maxlen: 36
2a06:f902::/36 maxlen: 36
2a06:f904::/36 maxlen: 36
2a06:f907::/36 maxlen: 36
2a06:f907:4000::/36 maxlen: 36
2a06:f901::/36 maxlen: 36
2a0d:8400::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8a:c6:f3:03:33:d1:6c:ae:a1:66:5f:9e:f3:72:95:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0febfbfd6f937c5ae39e3e38e8ab8384107421a6
Validity
Not Before: Nov 1 12:06:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a924e1e30ea70ccf85a76400caefb69b2dbf778
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:1b:f9:64:ce:a1:23:c1:53:3d:45:a4:07:29:
1a:ad:04:c1:79:98:d2:2c:23:a8:45:44:40:8d:87:
89:1b:41:68:6a:a2:d3:55:60:c8:82:46:f2:2a:0b:
ac:2b:ec:b9:2d:e5:3f:d4:fb:08:aa:28:22:a8:9a:
f8:18:c5:66:d8:10:5e:81:48:e6:14:06:71:ff:d4:
02:74:22:6d:4d:34:67:47:2f:14:68:1e:84:a3:c9:
85:d5:9c:25:51:0e:d5:c8:04:e7:ca:f4:02:3e:cb:
7e:48:9d:ce:ce:39:6b:97:f6:6f:6c:85:21:6a:1a:
a9:6b:c2:1f:1e:65:28:80:5e:8d:04:44:87:8a:a1:
dc:ab:2c:e0:58:f7:59:28:6f:03:51:54:47:1a:b4:
30:cc:b0:b0:90:f3:f9:f0:b9:0f:41:c0:bc:f1:9c:
cb:88:1b:14:90:7b:c3:26:95:a8:2b:35:00:65:b6:
79:9d:2d:89:1c:72:d4:40:ad:cd:3b:e0:91:b6:62:
f9:ae:20:be:49:c9:99:fb:a8:cf:00:04:bb:f0:68:
86:02:7d:37:27:4d:cd:8d:17:94:bd:63:7f:f1:15:
22:2d:9e:12:91:03:2c:c6:5d:5b:18:d7:3e:21:0a:
cb:91:26:7e:35:f8:2b:27:b7:df:73:6d:9e:ff:cd:
8a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:92:4E:1E:30:EA:70:CC:F8:5A:76:40:0C:AE:FB:69:B2:DB:F7:78
X509v3 Authority Key Identifier:
keyid:0F:EB:FB:FD:6F:93:7C:5A:E3:9E:3E:38:E8:AB:83:84:10:74:21:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D-v7_W-TfFrjnj446KuDhBB0IaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/SpJOHjDqcMz4WnZADK77abLb93g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/D-v7_W-TfFrjnj446KuDhBB0IaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.228.0/22
5.188.172.0/23
5.188.180.0/22
31.40.216.0/22
45.135.120.0/22
45.141.8.0/22
45.150.232.0/22
77.72.16.0/21
88.210.38.0/23
88.218.240.0/22
89.34.238.0/24
89.36.160.0/23
91.192.80.0/24
91.192.83.0/24
91.201.64.0/22
92.119.88.0/22
93.189.56.0-93.189.58.255
93.189.60.0/22
103.97.88.0/24
185.6.12.0/22
185.131.64.0/22
185.135.84.0/22
185.140.12.0/22
185.140.208.0/23
185.224.248.0/22
185.246.152.0/22
194.59.46.0/24
194.59.59.0/24
194.59.142.0/24
194.59.155.0/24
195.238.124.0/22
213.183.32.0/23
213.183.36.0-213.183.53.255
213.183.58.0-213.183.63.255
213.226.68.0/22
217.30.8.0/22
IPv6:
2a06:f900::/36
2a06:f900:4000::/36
2a06:f901::/36
2a06:f902::/36
2a06:f903::/36
2a06:f904::/36
2a06:f905::/36
2a06:f906::/36
2a06:f907::/36
2a06:f907:4000::/36
2a0d:8400::/32
Signature Algorithm: sha256WithRSAEncryption
8a:b2:ba:91:e8:25:f6:4a:2d:56:cf:ee:c3:12:f0:1a:2c:11:
6a:2a:c2:4a:35:dc:7f:b9:31:4b:73:2d:72:f0:42:0a:62:07:
a4:d9:4e:a3:07:96:cb:13:19:25:0b:af:7c:36:67:c8:79:df:
31:81:7b:bb:51:5a:1b:99:25:ab:26:65:20:ca:45:90:a9:26:
5f:82:c9:1b:83:bb:0b:3a:a5:4b:ca:c9:36:43:5d:82:8a:70:
f9:5b:f8:10:19:5e:e9:d6:36:47:4a:2a:02:62:2d:79:a6:57:
03:16:e4:c2:da:e5:35:f8:50:ef:eb:70:cb:e2:90:87:5f:1d:
c0:61:82:f9:d8:42:ce:4b:1c:ab:09:bd:31:d6:fe:58:47:ab:
75:3a:93:dd:5a:8a:0f:80:c9:8c:ac:5a:a4:1a:63:63:f2:94:
d8:49:1c:fd:c3:46:53:a5:22:fb:67:85:e4:95:5e:30:5e:2e:
95:ab:e6:c1:d8:a4:71:b3:39:db:9d:17:df:05:92:29:00:73:
56:de:e9:0c:fb:d0:80:50:0c:82:02:6c:67:72:a2:ba:f1:3c:
aa:6e:33:cc:44:f1:59:99:12:5d:47:0a:71:cd:57:0b:d2:b6:
b5:39:c2:b6:84:76:3f:02:a1:69:29:11:b4:92:a5:ee:f1:b8:
71:c1:dc:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 14 23:35:17 2023 by rpki-client on console-ams.rpki-client.org