Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/5u5LSMLeyUuhmcePnuutamVKhCo.roa
File: 5u5LSMLeyUuhmcePnuutamVKhCo.roa (raw, json)
Hash identifier: MPrVoXbyfnFidLWdtPitTz7Mqo+8wJ6Yv+TPVZe2zMM=
Subject key identifier: E6:EE:4B:48:C2:DE:C9:4B:A1:99:C7:8F:9E:EB:AD:6A:65:4A:84:2A
Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd
Certificate serial: 018F049388864B4784E246C17393B1A5FF04
Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/5u5LSMLeyUuhmcePnuutamVKhCo.roa
Signing time: Mon 22 Apr 2024 06:52:08 +0000
ROA not before: Mon 22 Apr 2024 06:52:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15704
IP address blocks: 66.81.176.0/21 maxlen: 21
66.81.184.0/21 maxlen: 21
78.30.0.0/21 maxlen: 21
78.30.8.0/21 maxlen: 21
78.30.16.0/21 maxlen: 21
78.30.24.0/21 maxlen: 21
78.30.32.0/20 maxlen: 20
78.30.48.0/20 maxlen: 20
82.213.192.0/20 maxlen: 20
82.213.208.0/20 maxlen: 20
83.138.40.0/21 maxlen: 21
89.35.62.0/23 maxlen: 23
89.39.52.0/24 maxlen: 24
91.106.16.0/21 maxlen: 21
91.194.62.0/23 maxlen: 23
91.242.152.0/21 maxlen: 21
93.115.37.0/24 maxlen: 24
93.115.128.0/22 maxlen: 22
93.115.132.0/22 maxlen: 22
93.115.152.0/24 maxlen: 24
93.115.202.0/24 maxlen: 24
93.115.242.0/24 maxlen: 24
93.176.128.0/18 maxlen: 18
93.176.128.0/21 maxlen: 21
93.176.136.0/21 maxlen: 21
93.176.144.0/21 maxlen: 21
93.176.152.0/21 maxlen: 21
93.176.160.0/20 maxlen: 20
93.176.176.0/20 maxlen: 20
93.177.120.0/22 maxlen: 23
94.73.32.0/19 maxlen: 19
119.12.224.0/23 maxlen: 23
119.12.226.0/23 maxlen: 23
119.12.228.0/23 maxlen: 23
119.12.230.0/23 maxlen: 23
119.12.232.0/23 maxlen: 23
119.12.234.0/23 maxlen: 23
119.12.236.0/23 maxlen: 23
119.12.238.0/23 maxlen: 23
119.12.240.0/23 maxlen: 23
119.12.242.0/23 maxlen: 23
119.12.244.0/23 maxlen: 23
119.12.246.0/23 maxlen: 23
119.12.248.0/23 maxlen: 23
119.12.250.0/23 maxlen: 23
137.59.58.0/24 maxlen: 24
170.253.0.0/20 maxlen: 20
170.253.16.0/20 maxlen: 20
170.253.32.0/20 maxlen: 20
170.253.48.0/20 maxlen: 20
178.218.194.0/24 maxlen: 24
181.41.128.0/21 maxlen: 21
185.145.64.0/22 maxlen: 22
185.146.56.0/22 maxlen: 22
185.153.164.0/23 maxlen: 23
185.153.166.0/23 maxlen: 23
185.197.240.0/23 maxlen: 23
185.197.242.0/23 maxlen: 23
185.227.212.0/23 maxlen: 23
185.227.214.0/23 maxlen: 23
185.228.152.0/23 maxlen: 23
185.228.154.0/23 maxlen: 23
185.252.12.0/22 maxlen: 22
188.208.219.0/24 maxlen: 24
188.212.23.0/24 maxlen: 24
193.53.160.0/22 maxlen: 22
195.160.224.0/22 maxlen: 22
207.188.130.0/24 maxlen: 24
207.188.144.0/21 maxlen: 21
207.188.152.0/21 maxlen: 21
207.188.160.0/21 maxlen: 21
207.188.168.0/21 maxlen: 21
212.14.96.0/19 maxlen: 23
213.94.0.0/18 maxlen: 23
213.177.192.0/19 maxlen: 21
217.113.240.0/20 maxlen: 22
2a00:d100::/37 maxlen: 37
2a00:d100:800::/37 maxlen: 37
2a00:d100:1000::/37 maxlen: 37
2a00:d100:1800::/37 maxlen: 37
2a00:d100:2000::/37 maxlen: 37
2a00:d100:2800::/37 maxlen: 37
2a00:d100:3000::/37 maxlen: 37
2a00:d100:3800::/37 maxlen: 37
2a00:d100:4000::/37 maxlen: 37
2a00:d100:4800::/37 maxlen: 37
2a00:d100:5000::/37 maxlen: 37
2a00:d100:5800::/37 maxlen: 37
2a00:d100:6000::/37 maxlen: 37
2a00:d100:6800::/37 maxlen: 37
2a00:d101::/37 maxlen: 37
2a00:d101:800::/37 maxlen: 37
2a00:d101:1000::/37 maxlen: 37
2a00:d101:1800::/37 maxlen: 37
2a00:d101:2000::/37 maxlen: 37
2a00:d101:2800::/37 maxlen: 37
2a00:d101:3000::/37 maxlen: 37
2a00:d101:4000::/37 maxlen: 37
2a00:d101:4800::/37 maxlen: 37
2a00:d102::/37 maxlen: 37
2a00:d102:800::/37 maxlen: 37
2a00:d102:1000::/37 maxlen: 37
2a00:d102:1800::/37 maxlen: 37
2a00:d102:2000::/37 maxlen: 37
2a00:d102:2800::/37 maxlen: 37
2a00:d102:3000::/37 maxlen: 37
2a00:d102:3800::/37 maxlen: 37
2a00:d103::/37 maxlen: 37
2a00:d103:800::/37 maxlen: 37
2a00:d103:1000::/37 maxlen: 37
2a00:d103:1800::/37 maxlen: 37
2a00:d103:2000::/37 maxlen: 37
2a00:d103:2800::/37 maxlen: 37
2a01:8480::/32 maxlen: 32
2a01:8480:2004::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 29 Apr 2024 05:57:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:04:93:88:86:4b:47:84:e2:46:c1:73:93:b1:a5:ff:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd
Validity
Not Before: Apr 22 06:52:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6ee4b48c2dec94ba199c78f9eebad6a654a842a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:63:fd:c9:5c:1e:87:d0:e7:99:f1:59:ec:8f:
7f:ad:87:c5:df:4e:4f:7a:db:ce:11:ad:10:86:fd:
e8:8a:fe:c5:ce:c0:df:82:f4:40:1e:f2:89:14:42:
86:95:08:b4:a2:71:42:f0:5a:a0:86:ac:47:3c:99:
66:04:9c:79:d2:59:7d:0f:b6:ca:df:3d:05:2e:84:
91:04:1e:f2:d5:78:10:fe:0b:49:61:54:29:9f:4f:
e7:bd:84:72:0c:60:df:b3:d7:44:37:bd:a5:49:69:
8b:f9:f8:34:63:17:fc:02:55:69:d2:ad:db:83:a9:
a1:71:e7:9f:38:50:fd:6e:dc:49:55:d1:4e:3f:ec:
6e:c5:d1:d7:d8:0e:1a:ef:98:02:4f:ac:5b:d4:c6:
9b:08:bf:6b:ff:af:a2:d4:8b:3b:e0:e5:f5:ce:f9:
1a:38:38:5b:69:49:46:27:14:c1:fc:9d:81:9e:a7:
3e:57:85:f3:fd:07:f5:bd:d1:89:f9:b0:b8:e5:c0:
b5:27:1c:5a:69:24:aa:b1:76:fb:12:26:39:cb:2c:
5f:ec:f3:2b:ad:bc:8d:dc:e9:ff:e2:a6:b9:37:77:
32:72:22:b2:14:ef:c7:5b:49:5f:ec:2d:5f:af:f4:
22:96:12:6f:8b:c2:ac:2e:f3:4d:78:1e:a8:2a:cf:
1b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:EE:4B:48:C2:DE:C9:4B:A1:99:C7:8F:9E:EB:AD:6A:65:4A:84:2A
X509v3 Authority Key Identifier:
keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/5u5LSMLeyUuhmcePnuutamVKhCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.81.176.0/20
78.30.0.0/18
82.213.192.0/19
83.138.40.0/21
89.35.62.0/23
89.39.52.0/24
91.106.16.0/21
91.194.62.0/23
91.242.152.0/21
93.115.37.0/24
93.115.128.0/21
93.115.152.0/24
93.115.202.0/24
93.115.242.0/24
93.176.128.0/18
93.177.120.0/22
94.73.32.0/19
119.12.224.0-119.12.251.255
137.59.58.0/24
170.253.0.0/18
178.218.194.0/24
181.41.128.0/21
185.145.64.0/22
185.146.56.0/22
185.153.164.0/22
185.197.240.0/22
185.227.212.0/22
185.228.152.0/22
185.252.12.0/22
188.208.219.0/24
188.212.23.0/24
193.53.160.0/22
195.160.224.0/22
207.188.130.0/24
207.188.144.0-207.188.175.255
212.14.96.0/19
213.94.0.0/18
213.177.192.0/19
217.113.240.0/20
IPv6:
2a00:d100::-2a00:d100:6fff:ffff:ffff:ffff:ffff:ffff
2a00:d101::-2a00:d101:37ff:ffff:ffff:ffff:ffff:ffff
2a00:d101:4000::/36
2a00:d102::/34
2a00:d103::-2a00:d103:2fff:ffff:ffff:ffff:ffff:ffff
2a01:8480::/32
Signature Algorithm: sha256WithRSAEncryption
4b:bb:9a:31:9c:c2:be:59:bf:8b:e2:28:4e:19:bf:f3:4b:74:
c0:1c:3c:d6:fe:ca:4c:25:c9:c3:99:f5:0e:96:97:5d:5d:9a:
53:5d:2c:15:bb:3d:45:c2:34:60:6a:89:04:ce:ea:54:da:50:
d3:b4:8c:a4:63:fb:38:f2:75:bd:18:a5:cc:2e:e4:f2:c0:50:
7d:17:05:46:59:87:62:67:e8:17:c8:62:72:8c:e5:69:3b:15:
47:e0:2a:18:c1:a7:fe:2e:50:e6:d5:6b:8a:c4:1a:22:77:1b:
f5:6d:12:e2:11:d3:b8:48:cd:80:99:4f:d2:17:1f:fa:75:e7:
ae:06:c9:c2:2c:36:31:fe:87:81:e9:46:9c:5b:98:c5:c2:f8:
e9:19:75:95:67:66:00:2e:43:85:3c:2f:4e:3d:44:50:f4:94:
0b:58:4a:7b:b0:23:02:fa:b9:40:78:26:39:48:4c:07:6e:7a:
b2:c7:51:1f:3d:e5:a3:87:ed:be:77:a0:34:f6:d6:c1:4b:91:
a8:27:19:3e:16:7c:5f:f0:c2:23:81:62:33:9d:c5:4a:fb:aa:
5f:ef:67:1d:fb:97:55:a3:95:4e:f4:3c:1b:90:10:b2:53:64:
7e:f6:72:34:c3:4c:2a:4b:71:2d:ae:ad:ad:60:da:ca:d1:25:
7a:6a:10:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 11:06:53 2024 by rpki-client on console-fra.rpki-client.org