Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/ytDW6uMn7KtIhEA-H5fm60Kpm74.roa
File: ytDW6uMn7KtIhEA-H5fm60Kpm74.roa (raw, json)
Hash identifier: dfWPjRT6t01iDIVcZpvWQbnOc/4yl6dr2FKR2ULN4qs=
Subject key identifier: CA:D0:D6:EA:E3:27:EC:AB:48:84:40:3E:1F:97:E6:EB:42:A9:9B:BE
Certificate issuer: /CN=8624f3f661f24be5fef641dc722e5cf5ac87389e
Certificate serial: 01872DF5B11CDCE0D6660CACF2364E2AF4C0
Authority key identifier: 86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/ytDW6uMn7KtIhEA-H5fm60Kpm74.roa
Signing time: Wed 29 Mar 2023 15:21:29 +0000
ROA not before: Wed 29 Mar 2023 15:21:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8784
IP address blocks: 194.117.211.0/24 maxlen: 24
194.117.208.0/24 maxlen: 24
194.117.208.0/20 maxlen: 20
194.117.219.0/24 maxlen: 24
194.117.216.0/24 maxlen: 24
195.46.192.0/19 maxlen: 19
195.46.198.0/24 maxlen: 24
195.46.195.0/24 maxlen: 24
195.46.193.0/24 maxlen: 24
195.46.204.0/24 maxlen: 24
195.46.210.0/24 maxlen: 24
195.46.209.0/24 maxlen: 24
195.46.213.0/24 maxlen: 24
195.46.216.0/24 maxlen: 24
195.46.214.0/24 maxlen: 24
195.46.219.0/24 maxlen: 24
195.46.223.0/24 maxlen: 24
178.22.152.0/21 maxlen: 21
194.153.214.0/24 maxlen: 24
83.169.120.0/24 maxlen: 24
83.169.120.0/22 maxlen: 22
83.169.119.0/24 maxlen: 24
83.169.125.0/24 maxlen: 24
83.169.124.0/24 maxlen: 24
83.169.123.0/24 maxlen: 24
83.169.122.0/24 maxlen: 24
83.169.121.0/24 maxlen: 24
83.169.71.0/24 maxlen: 24
83.169.70.0/23 maxlen: 23
83.169.70.0/24 maxlen: 24
83.169.69.0/24 maxlen: 24
83.169.64.0/18 maxlen: 18
83.169.73.0/24 maxlen: 24
83.169.85.0/24 maxlen: 24
83.169.84.0/24 maxlen: 24
83.169.83.0/24 maxlen: 24
83.169.81.0/24 maxlen: 24
83.169.80.0/24 maxlen: 24
83.169.89.0/24 maxlen: 24
83.169.92.0/24 maxlen: 24
83.169.99.0/24 maxlen: 24
83.169.103.0/24 maxlen: 24
83.169.102.0/24 maxlen: 24
83.169.100.0/24 maxlen: 24
83.169.100.0/22 maxlen: 22
83.169.118.0/24 maxlen: 24
83.169.117.0/24 maxlen: 24
83.169.116.0/22 maxlen: 22
83.169.116.0/24 maxlen: 24
83.169.115.0/24 maxlen: 24
83.169.114.0/24 maxlen: 24
83.169.114.0/23 maxlen: 23
213.139.96.0/19 maxlen: 19
213.139.112.0/24 maxlen: 24
213.139.111.0/24 maxlen: 24
213.139.117.0/24 maxlen: 24
213.139.123.0/24 maxlen: 24
212.37.192.0/19 maxlen: 19
83.169.64.0/23 maxlen: 23
2a02:d50::/32 maxlen: 32
2001:4b90::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 18 Apr 2023 08:39:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2d:f5:b1:1c:dc:e0:d6:66:0c:ac:f2:36:4e:2a:f4:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8624f3f661f24be5fef641dc722e5cf5ac87389e
Validity
Not Before: Mar 29 15:21:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cad0d6eae327ecab4884403e1f97e6eb42a99bbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:24:84:b1:c9:c4:5f:6a:75:7a:29:10:2d:e2:
05:04:d7:02:0f:63:04:78:9e:25:94:f8:27:1f:cc:
12:58:76:b7:d7:18:3c:88:77:ac:52:fd:6e:2a:51:
cc:7b:f0:54:c8:75:03:96:a9:0b:46:51:41:e6:b4:
9d:db:02:22:3d:bd:ed:21:13:36:f4:7f:22:64:5a:
d4:34:6a:7e:e7:54:4c:e7:ca:9b:a4:4a:3b:7b:7e:
52:4b:6c:5c:4d:73:eb:89:7d:b9:8c:bb:53:e3:4b:
9e:25:55:fa:9e:a9:73:59:1d:64:18:e5:a1:db:5a:
08:a1:38:ce:60:cb:33:cc:e8:78:70:41:65:27:cb:
77:7b:02:dd:fd:3b:63:b0:88:95:ee:11:13:e7:eb:
79:07:ea:23:94:38:8d:d5:f3:3a:a7:96:f5:a5:aa:
85:19:fb:5f:f2:57:1f:7f:f4:28:50:e5:9e:fa:84:
ff:9f:99:4f:3a:d1:a8:32:bb:d5:df:77:16:ce:14:
6b:f4:46:63:9a:8f:3b:5b:f3:8c:35:19:25:d3:33:
3c:16:16:ca:32:69:40:7c:a5:ea:b9:b0:82:5d:88:
7d:92:43:2e:7d:b1:77:1c:12:29:7c:e8:ca:6c:b1:
16:c2:4f:98:b5:f0:67:54:7e:bf:4e:47:c6:83:5b:
5c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:D0:D6:EA:E3:27:EC:AB:48:84:40:3E:1F:97:E6:EB:42:A9:9B:BE
X509v3 Authority Key Identifier:
keyid:86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/ytDW6uMn7KtIhEA-H5fm60Kpm74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.169.64.0/18
178.22.152.0/21
194.117.208.0/20
194.153.214.0/24
195.46.192.0/19
212.37.192.0/19
213.139.96.0/19
IPv6:
2001:4b90::/32
2a02:d50::/32
Signature Algorithm: sha256WithRSAEncryption
37:cf:03:3d:48:f7:cb:9d:da:23:60:fe:b3:3d:68:53:d2:f9:
1b:9f:b8:83:4a:b7:28:34:7d:00:e2:2e:5c:cf:2c:f4:0a:06:
6e:d4:1c:eb:cf:eb:55:ed:b5:52:ab:4a:da:64:8c:02:5e:9f:
8e:6b:bd:d5:d8:ae:4a:3b:7a:70:c8:e0:14:ef:28:07:b7:af:
67:7f:83:32:77:79:14:ad:3b:dd:0b:ba:c4:15:85:3b:1e:e2:
2f:02:ad:e5:7a:67:e1:91:7e:65:7e:6e:c0:fa:38:b1:6a:0c:
76:66:3b:f2:a5:e4:59:a2:b8:68:91:68:7a:d3:ed:d3:26:bb:
1d:0a:ce:85:4c:25:20:dd:93:ff:be:f7:98:57:65:58:4e:ef:
0c:b7:82:ee:2b:89:b7:79:a0:60:5c:6a:d1:a4:9a:4f:ed:b3:
fc:ee:09:56:f6:cf:8a:6a:34:5f:af:f3:89:5b:4b:25:78:ce:
5f:49:57:18:55:84:83:79:a8:af:66:53:2a:48:d6:1b:72:4f:
c3:70:2d:7b:69:5b:17:4d:11:3c:f1:f5:74:12:53:e2:22:8f:
4e:56:05:a5:1e:97:38:f6:ef:df:ee:45:ab:fb:47:ef:1b:48:
f0:e0:8f:d5:73:e7:90:28:b7:f5:33:db:17:b6:90:eb:ac:04:
27:80:bf:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:31 2024 by rpki-client on console-ams.rpki-client.org