Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/SGsZE5Tb8gw-1kNbwfc0YJKZwBY.roa
File: SGsZE5Tb8gw-1kNbwfc0YJKZwBY.roa (raw, json)
Hash identifier: +jg1HQq7aA3ePtywJDrGLL4HwSehc/u52dHOfYzMHs0=
Subject key identifier: 48:6B:19:13:94:DB:F2:0C:3E:D6:43:5B:C1:F7:34:60:92:99:C0:16
Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd
Certificate serial: 018BAECAF023ACAA4FCC0ADB2AC84DEF5195
Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/SGsZE5Tb8gw-1kNbwfc0YJKZwBY.roa
Signing time: Wed 08 Nov 2023 11:56:57 +0000
ROA not before: Wed 08 Nov 2023 11:56:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15704
IP address blocks: 119.12.224.0/23 maxlen: 23
119.12.226.0/23 maxlen: 23
119.12.228.0/23 maxlen: 23
119.12.230.0/23 maxlen: 23
119.12.232.0/23 maxlen: 23
217.113.240.0/20 maxlen: 22
119.12.236.0/23 maxlen: 23
119.12.238.0/23 maxlen: 23
119.12.240.0/23 maxlen: 23
119.12.234.0/23 maxlen: 23
119.12.242.0/23 maxlen: 23
119.12.244.0/23 maxlen: 23
119.12.246.0/23 maxlen: 23
119.12.250.0/23 maxlen: 23
119.12.248.0/23 maxlen: 23
185.228.152.0/23 maxlen: 23
185.228.154.0/23 maxlen: 23
195.160.224.0/22 maxlen: 22
207.188.130.0/24 maxlen: 24
213.94.0.0/18 maxlen: 23
193.53.160.0/22 maxlen: 22
137.59.58.0/24 maxlen: 24
185.153.164.0/23 maxlen: 23
185.153.166.0/23 maxlen: 23
94.73.32.0/19 maxlen: 19
185.227.212.0/23 maxlen: 23
89.39.52.0/24 maxlen: 24
185.227.214.0/23 maxlen: 23
91.194.62.0/23 maxlen: 23
91.106.16.0/21 maxlen: 21
185.146.56.0/22 maxlen: 22
170.253.0.0/20 maxlen: 20
185.145.64.0/22 maxlen: 22
170.253.16.0/20 maxlen: 20
170.253.32.0/20 maxlen: 20
170.253.48.0/20 maxlen: 20
185.252.12.0/22 maxlen: 22
185.197.240.0/23 maxlen: 23
213.177.192.0/19 maxlen: 21
185.197.242.0/23 maxlen: 23
188.212.23.0/24 maxlen: 24
93.177.120.0/22 maxlen: 23
93.115.152.0/24 maxlen: 24
181.41.128.0/21 maxlen: 21
212.14.96.0/19 maxlen: 23
93.115.128.0/22 maxlen: 22
93.115.132.0/22 maxlen: 22
93.176.160.0/20 maxlen: 20
93.176.176.0/20 maxlen: 20
89.35.62.0/23 maxlen: 23
93.115.202.0/24 maxlen: 24
93.176.128.0/18 maxlen: 18
93.176.128.0/21 maxlen: 21
93.176.136.0/21 maxlen: 21
93.176.144.0/21 maxlen: 21
93.176.152.0/21 maxlen: 21
93.115.242.0/24 maxlen: 24
207.188.160.0/21 maxlen: 21
188.208.219.0/24 maxlen: 24
207.188.168.0/21 maxlen: 21
91.242.152.0/21 maxlen: 21
93.115.37.0/24 maxlen: 24
2a00:d100:6800::/37 maxlen: 37
2a00:d100:800::/37 maxlen: 37
2a00:d100:6000::/37 maxlen: 37
2a00:d100:3000::/37 maxlen: 37
2a00:d100:3800::/37 maxlen: 37
2a00:d100:1000::/37 maxlen: 37
2a00:d100:1800::/37 maxlen: 37
2a00:d100:4000::/37 maxlen: 37
2a00:d100:4800::/37 maxlen: 37
2a00:d100:2800::/37 maxlen: 37
2a00:d100:5000::/37 maxlen: 37
2a00:d100:2000::/37 maxlen: 37
2a00:d100:5800::/37 maxlen: 37
2a01:8480:2004::/48 maxlen: 48
2a00:d100::/37 maxlen: 37
2a00:d103:2800::/37 maxlen: 37
2a00:d103:2000::/37 maxlen: 37
2a00:d103:1800::/37 maxlen: 37
2a00:d103:1000::/37 maxlen: 37
2a00:d103:800::/37 maxlen: 37
2a00:d103::/37 maxlen: 37
2a00:d102:2800::/37 maxlen: 37
2a00:d102:2000::/37 maxlen: 37
2a00:d102:1800::/37 maxlen: 37
2a00:d102:1000::/37 maxlen: 37
2a00:d102:800::/37 maxlen: 37
2a00:d102::/37 maxlen: 37
2a00:d101:4800::/37 maxlen: 37
2a00:d101:800::/37 maxlen: 37
2a00:d101:2800::/37 maxlen: 37
2a00:d101::/37 maxlen: 37
2a00:d101:2000::/37 maxlen: 37
2a00:d101:3000::/37 maxlen: 37
2a00:d101:4000::/37 maxlen: 37
2a00:d101:1000::/37 maxlen: 37
2a00:d101:1800::/37 maxlen: 37
2a01:8480::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ae:ca:f0:23:ac:aa:4f:cc:0a:db:2a:c8:4d:ef:51:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd
Validity
Not Before: Nov 8 11:56:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=486b191394dbf20c3ed6435bc1f734609299c016
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:98:38:31:65:28:f7:d4:37:27:bb:3c:20:b2:
a2:d0:3b:b2:4a:45:5d:f8:9e:b4:92:77:ff:5a:c6:
a2:ff:1d:85:df:d1:88:e9:24:b2:be:02:98:53:29:
ec:16:ae:af:9e:78:08:6c:6e:fd:79:e6:67:11:d4:
7d:56:44:d3:0f:9b:76:0e:90:a3:65:22:32:33:f2:
53:7b:4d:09:0d:fe:c6:82:61:dc:5d:bc:c1:b7:e5:
80:79:d7:d8:45:71:fc:1d:fd:47:97:04:4a:49:86:
f1:cc:fe:57:b9:e7:0a:ca:30:d4:96:37:eb:9b:d7:
a1:5f:70:cb:d4:ec:b5:83:66:5d:6d:ac:c5:f3:a1:
c3:3a:3d:b8:58:e9:83:c7:65:62:5f:3a:fb:f8:1d:
a3:ed:d4:52:2a:64:73:3e:fc:da:90:ba:25:35:a8:
d3:ce:d7:a0:5a:70:d1:cd:2f:d9:14:81:82:df:3b:
ac:d2:1b:57:55:62:c1:3a:56:7b:a3:04:c5:1b:6e:
93:b4:50:ae:8c:8f:05:b0:af:3f:cf:75:96:64:3f:
3d:ce:9b:b5:b1:cf:8c:ff:e6:e2:a0:91:51:88:27:
a9:d6:d0:5f:61:25:7e:98:a0:5c:1e:28:10:b7:d0:
bb:08:f8:f7:2e:b2:cc:58:14:24:f5:41:2a:f5:7b:
d4:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:6B:19:13:94:DB:F2:0C:3E:D6:43:5B:C1:F7:34:60:92:99:C0:16
X509v3 Authority Key Identifier:
keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/SGsZE5Tb8gw-1kNbwfc0YJKZwBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.62.0/23
89.39.52.0/24
91.106.16.0/21
91.194.62.0/23
91.242.152.0/21
93.115.37.0/24
93.115.128.0/21
93.115.152.0/24
93.115.202.0/24
93.115.242.0/24
93.176.128.0/18
93.177.120.0/22
94.73.32.0/19
119.12.224.0-119.12.251.255
137.59.58.0/24
170.253.0.0/18
181.41.128.0/21
185.145.64.0/22
185.146.56.0/22
185.153.164.0/22
185.197.240.0/22
185.227.212.0/22
185.228.152.0/22
185.252.12.0/22
188.208.219.0/24
188.212.23.0/24
193.53.160.0/22
195.160.224.0/22
207.188.130.0/24
207.188.160.0/20
212.14.96.0/19
213.94.0.0/18
213.177.192.0/19
217.113.240.0/20
IPv6:
2a00:d100::-2a00:d100:6fff:ffff:ffff:ffff:ffff:ffff
2a00:d101::-2a00:d101:37ff:ffff:ffff:ffff:ffff:ffff
2a00:d101:4000::/36
2a00:d102::-2a00:d102:2fff:ffff:ffff:ffff:ffff:ffff
2a00:d103::-2a00:d103:2fff:ffff:ffff:ffff:ffff:ffff
2a01:8480::/32
Signature Algorithm: sha256WithRSAEncryption
1b:d1:4b:e8:5a:fa:9d:82:05:69:0a:e3:0c:4b:de:c1:de:ec:
50:23:0e:75:45:f1:54:b2:44:7e:1b:16:f7:55:65:4b:d1:aa:
ac:91:ff:1e:83:c6:85:a9:f3:4f:0a:66:b2:05:f4:04:13:9e:
40:7c:7d:70:12:9e:b7:1e:50:db:26:5e:a1:38:78:10:18:eb:
28:68:90:7e:d2:10:0a:92:26:60:e8:a1:8b:35:2f:47:c9:6e:
32:6f:e9:fb:5e:46:b5:93:0b:0c:e5:84:9e:6b:27:9b:8c:b1:
cd:eb:48:dd:a2:b5:51:e2:4d:48:d9:96:66:4f:b0:ca:c1:f0:
22:51:39:cb:95:c7:f1:01:fc:fe:54:81:5c:11:a2:32:a3:0c:
5f:4b:be:37:70:e3:d0:e2:19:51:09:21:42:e5:6d:25:4e:d8:
49:d6:9f:a4:c7:af:1f:7c:26:c8:97:c0:ed:c7:36:40:5c:98:
11:43:d4:43:94:db:0a:43:22:17:e9:3d:b3:9a:ea:94:e7:32:
8f:00:2c:aa:57:c7:99:c2:6a:db:29:a2:84:fa:63:c6:ad:6d:
64:40:89:14:99:da:d8:6c:28:5e:09:04:92:80:db:a0:c6:a1:
23:0b:d9:a3:43:e0:69:48:7c:11:06:8d:39:fc:35:86:7b:b7:
ec:47:9e:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:11 2024 by rpki-client on console-fra.rpki-client.org