Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/JbQ-UQBNvBGsEI1goJV79fSSHVY.roa
File: JbQ-UQBNvBGsEI1goJV79fSSHVY.roa (raw, json)
Hash identifier: zpJNcoev2w5+gKI2Wz//zOezvvzer8oPFJbPiuIH86w=
Subject key identifier: 25:B4:3E:51:00:4D:BC:11:AC:10:8D:60:A0:95:7B:F5:F4:92:1D:56
Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd
Certificate serial: 018F286DE8140A5EED4D70D8B4931AA1F23A
Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/JbQ-UQBNvBGsEI1goJV79fSSHVY.roa
Signing time: Mon 29 Apr 2024 05:57:22 +0000
ROA not before: Mon 29 Apr 2024 05:57:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15704
IP address blocks: 66.81.176.0/21 maxlen: 21
66.81.184.0/21 maxlen: 21
67.218.248.0/21 maxlen: 21
78.30.0.0/21 maxlen: 21
78.30.8.0/21 maxlen: 21
78.30.16.0/21 maxlen: 21
78.30.24.0/21 maxlen: 21
78.30.32.0/20 maxlen: 20
78.30.48.0/20 maxlen: 20
81.0.0.0/20 maxlen: 20
81.0.16.0/20 maxlen: 20
82.213.192.0/20 maxlen: 20
82.213.208.0/20 maxlen: 20
83.138.40.0/21 maxlen: 21
85.31.132.0/22 maxlen: 22
89.35.62.0/23 maxlen: 23
89.39.52.0/24 maxlen: 24
91.106.16.0/21 maxlen: 21
91.194.62.0/23 maxlen: 23
91.242.152.0/21 maxlen: 21
93.115.37.0/24 maxlen: 24
93.115.128.0/22 maxlen: 22
93.115.132.0/22 maxlen: 22
93.115.152.0/24 maxlen: 24
93.115.202.0/24 maxlen: 24
93.115.242.0/24 maxlen: 24
93.176.128.0/18 maxlen: 18
93.176.128.0/21 maxlen: 21
93.176.136.0/21 maxlen: 21
93.176.144.0/21 maxlen: 21
93.176.152.0/21 maxlen: 21
93.176.160.0/20 maxlen: 20
93.176.176.0/20 maxlen: 20
93.177.120.0/22 maxlen: 23
94.73.32.0/19 maxlen: 19
119.12.224.0/23 maxlen: 23
119.12.226.0/23 maxlen: 23
119.12.228.0/23 maxlen: 23
119.12.230.0/23 maxlen: 23
119.12.232.0/23 maxlen: 23
119.12.234.0/23 maxlen: 23
119.12.236.0/23 maxlen: 23
119.12.238.0/23 maxlen: 23
119.12.240.0/23 maxlen: 23
119.12.242.0/23 maxlen: 23
119.12.244.0/23 maxlen: 23
119.12.246.0/23 maxlen: 23
119.12.248.0/23 maxlen: 23
119.12.250.0/23 maxlen: 23
137.59.58.0/24 maxlen: 24
170.253.0.0/20 maxlen: 20
170.253.16.0/20 maxlen: 20
170.253.32.0/20 maxlen: 20
170.253.48.0/20 maxlen: 20
178.218.194.0/24 maxlen: 24
181.41.128.0/21 maxlen: 21
185.145.64.0/22 maxlen: 22
185.146.56.0/22 maxlen: 22
185.153.164.0/23 maxlen: 23
185.153.166.0/23 maxlen: 23
185.197.240.0/23 maxlen: 23
185.197.242.0/23 maxlen: 23
185.227.212.0/23 maxlen: 23
185.227.214.0/23 maxlen: 23
185.228.152.0/23 maxlen: 23
185.228.154.0/23 maxlen: 23
185.252.12.0/22 maxlen: 22
188.208.219.0/24 maxlen: 24
188.212.23.0/24 maxlen: 24
193.53.160.0/22 maxlen: 22
195.160.224.0/22 maxlen: 22
207.188.130.0/24 maxlen: 24
207.188.144.0/21 maxlen: 21
207.188.152.0/21 maxlen: 21
207.188.160.0/21 maxlen: 21
207.188.168.0/21 maxlen: 21
212.14.96.0/19 maxlen: 23
212.230.136.0/24 maxlen: 24
212.230.156.0/24 maxlen: 24
213.94.0.0/18 maxlen: 23
213.177.192.0/19 maxlen: 21
217.113.240.0/20 maxlen: 22
2a00:d100::/37 maxlen: 37
2a00:d100:800::/37 maxlen: 37
2a00:d100:1000::/37 maxlen: 37
2a00:d100:1800::/37 maxlen: 37
2a00:d100:2000::/37 maxlen: 37
2a00:d100:2800::/37 maxlen: 37
2a00:d100:3000::/37 maxlen: 37
2a00:d100:3800::/37 maxlen: 37
2a00:d100:4000::/37 maxlen: 37
2a00:d100:4800::/37 maxlen: 37
2a00:d100:5000::/37 maxlen: 37
2a00:d100:5800::/37 maxlen: 37
2a00:d100:6000::/37 maxlen: 37
2a00:d100:6800::/37 maxlen: 37
2a00:d101::/37 maxlen: 37
2a00:d101:800::/37 maxlen: 37
2a00:d101:1000::/37 maxlen: 37
2a00:d101:1800::/37 maxlen: 37
2a00:d101:2000::/37 maxlen: 37
2a00:d101:2800::/37 maxlen: 37
2a00:d101:3000::/37 maxlen: 37
2a00:d101:4000::/37 maxlen: 37
2a00:d101:4800::/37 maxlen: 37
2a00:d102::/37 maxlen: 37
2a00:d102:800::/37 maxlen: 37
2a00:d102:1000::/37 maxlen: 37
2a00:d102:1800::/37 maxlen: 37
2a00:d102:2000::/37 maxlen: 37
2a00:d102:2800::/37 maxlen: 37
2a00:d102:3000::/37 maxlen: 37
2a00:d102:3800::/37 maxlen: 37
2a00:d103::/37 maxlen: 37
2a00:d103:800::/37 maxlen: 37
2a00:d103:1000::/37 maxlen: 37
2a00:d103:1800::/37 maxlen: 37
2a00:d103:2000::/37 maxlen: 37
2a00:d103:2800::/37 maxlen: 37
2a01:8480::/32 maxlen: 32
2a01:8480:2004::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 06 May 2024 05:49:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:28:6d:e8:14:0a:5e:ed:4d:70:d8:b4:93:1a:a1:f2:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd
Validity
Not Before: Apr 29 05:57:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=25b43e51004dbc11ac108d60a0957bf5f4921d56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:24:b1:f1:9b:64:0b:cf:78:a1:f1:45:1e:40:
c9:64:1f:57:77:b7:39:cc:2b:b4:0a:74:56:c6:05:
db:f5:5e:9c:76:4f:26:ff:19:8b:82:62:8e:27:de:
ff:f1:db:33:37:42:29:c2:f1:af:53:34:9b:21:0e:
9d:03:69:d2:4a:c0:f8:2b:8a:75:5a:40:48:e1:a3:
69:de:f8:38:89:af:72:d5:db:60:5b:fd:36:4a:ba:
e4:0b:3f:fe:7d:88:99:9f:42:81:c1:5e:d5:c0:51:
92:6c:50:4d:ea:71:8c:9d:61:54:26:37:ef:9c:48:
14:d6:0d:2d:e0:ca:be:d7:42:49:5b:2e:7a:5a:6b:
e4:67:00:aa:aa:b2:89:62:df:c3:4f:6e:99:c8:7b:
29:c1:d0:8d:91:b3:5d:e8:81:c0:92:d8:83:f5:12:
5c:e1:f9:86:03:f5:13:2b:e7:d2:a8:60:11:b5:b1:
00:13:da:ef:f3:6a:24:b1:bf:9b:59:22:82:37:ff:
a4:53:50:c4:98:01:05:e8:a0:8f:ec:a2:2f:3a:d0:
81:ee:7a:d7:6e:3c:fd:73:c5:fe:2d:11:ef:55:53:
76:dc:4b:0f:35:fe:d6:c9:69:a3:ee:22:eb:c8:c3:
c1:72:dd:c8:ee:59:36:45:41:9e:33:ab:77:5c:a1:
84:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:B4:3E:51:00:4D:BC:11:AC:10:8D:60:A0:95:7B:F5:F4:92:1D:56
X509v3 Authority Key Identifier:
keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/JbQ-UQBNvBGsEI1goJV79fSSHVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.81.176.0/20
67.218.248.0/21
78.30.0.0/18
81.0.0.0/19
82.213.192.0/19
83.138.40.0/21
85.31.132.0/22
89.35.62.0/23
89.39.52.0/24
91.106.16.0/21
91.194.62.0/23
91.242.152.0/21
93.115.37.0/24
93.115.128.0/21
93.115.152.0/24
93.115.202.0/24
93.115.242.0/24
93.176.128.0/18
93.177.120.0/22
94.73.32.0/19
119.12.224.0-119.12.251.255
137.59.58.0/24
170.253.0.0/18
178.218.194.0/24
181.41.128.0/21
185.145.64.0/22
185.146.56.0/22
185.153.164.0/22
185.197.240.0/22
185.227.212.0/22
185.228.152.0/22
185.252.12.0/22
188.208.219.0/24
188.212.23.0/24
193.53.160.0/22
195.160.224.0/22
207.188.130.0/24
207.188.144.0-207.188.175.255
212.14.96.0/19
212.230.136.0/24
212.230.156.0/24
213.94.0.0/18
213.177.192.0/19
217.113.240.0/20
IPv6:
2a00:d100::-2a00:d100:6fff:ffff:ffff:ffff:ffff:ffff
2a00:d101::-2a00:d101:37ff:ffff:ffff:ffff:ffff:ffff
2a00:d101:4000::/36
2a00:d102::/34
2a00:d103::-2a00:d103:2fff:ffff:ffff:ffff:ffff:ffff
2a01:8480::/32
Signature Algorithm: sha256WithRSAEncryption
06:02:22:83:03:f5:c4:38:ad:66:fb:66:1e:10:cf:1e:d3:cb:
e0:cc:ea:23:6b:af:72:ac:f5:40:4a:ad:e5:54:a4:79:74:2d:
f4:fd:ec:8e:ff:84:01:38:9e:cf:7f:06:73:6b:db:61:18:33:
1d:96:c9:c6:96:1d:4d:b4:4d:b3:8f:6b:d6:92:3c:b6:c6:91:
25:5f:f5:db:10:93:69:47:2e:40:86:ab:fe:96:f2:de:97:fd:
58:48:4a:fa:7c:39:a1:b4:3d:4e:a7:1c:d8:55:3c:e8:0c:33:
e1:f1:a6:88:ca:3f:ab:78:90:93:0d:d7:ba:fb:69:17:74:d1:
9f:6d:42:b3:cf:11:43:84:a7:c1:f7:c3:94:62:77:2e:ec:32:
fc:ff:e5:b0:37:bc:b8:63:f8:aa:72:7f:5b:fb:86:7e:64:51:
f2:fb:7d:b0:23:88:55:89:2b:26:3f:ec:ce:f9:c2:56:f9:b5:
39:5f:87:e1:81:9d:3d:a9:e8:55:81:06:87:ea:09:ae:66:d8:
29:6c:3e:87:36:2e:0d:e4:64:2e:c5:1f:4e:3b:95:8f:bf:61:
a6:78:54:e6:a9:76:4f:c8:8a:c0:09:c7:05:67:24:19:a3:90:
7a:3d:67:94:ba:25:db:f6:58:c8:4a:4a:09:f0:77:08:8c:d9:
0c:94:36:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:11 2024 by rpki-client on console-fra.rpki-client.org