Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/5kRkHcHoJYbo82N_NlnMIdhA-GQ.roa
File: 5kRkHcHoJYbo82N_NlnMIdhA-GQ.roa (raw, json)
Hash identifier: CofZD/eJoQI4yMJiUuteahWiptjZ6r4ZSB5rpkGjrzI=
Subject key identifier: E6:44:64:1D:C1:E8:25:86:E8:F3:63:7F:36:59:CC:21:D8:40:F8:64
Certificate issuer: /CN=43965dd1f6f24a46d7cc4bccfecd4151c6dd1bfb
Certificate serial: 0188666EE8C2096D96591B92C9985E1D2C09
Authority key identifier: 43:96:5D:D1:F6:F2:4A:46:D7:CC:4B:CC:FE:CD:41:51:C6:DD:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/5kRkHcHoJYbo82N_NlnMIdhA-GQ.roa
Signing time: Mon 29 May 2023 07:35:24 +0000
ROA not before: Mon 29 May 2023 07:35:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48359
IP address blocks: 185.221.192.0/24 maxlen: 24
185.221.192.0/22 maxlen: 22
185.221.194.0/24 maxlen: 24
185.221.193.0/24 maxlen: 24
185.221.195.0/24 maxlen: 24
195.191.44.0/24 maxlen: 24
195.191.45.0/24 maxlen: 24
185.121.58.0/24 maxlen: 24
185.121.57.0/24 maxlen: 24
185.121.56.0/22 maxlen: 22
185.121.56.0/24 maxlen: 24
185.121.59.0/24 maxlen: 24
195.8.112.0/24 maxlen: 24
195.8.110.0/24 maxlen: 24
195.8.114.0/24 maxlen: 24
185.238.44.0/24 maxlen: 24
185.238.47.0/24 maxlen: 24
185.238.46.0/24 maxlen: 24
185.238.45.0/24 maxlen: 24
195.191.23.0/24 maxlen: 24
195.191.22.0/24 maxlen: 24
185.137.61.0/24 maxlen: 24
185.137.60.0/22 maxlen: 24
185.142.95.0/24 maxlen: 24
185.142.92.0/22 maxlen: 22
185.142.92.0/24 maxlen: 24
193.246.200.0/24 maxlen: 24
185.142.94.0/24 maxlen: 24
185.142.93.0/24 maxlen: 24
193.246.201.0/24 maxlen: 24
185.142.124.0/24 maxlen: 24
185.142.124.0/22 maxlen: 22
185.142.125.0/24 maxlen: 24
185.142.127.0/24 maxlen: 24
185.142.126.0/24 maxlen: 24
195.8.102.0/24 maxlen: 24
195.230.97.0/24 maxlen: 24
195.230.105.0/24 maxlen: 24
91.213.151.0/24 maxlen: 24
195.230.107.0/24 maxlen: 24
91.213.157.0/24 maxlen: 24
185.82.64.0/24 maxlen: 24
185.82.64.0/22 maxlen: 22
195.230.124.0/24 maxlen: 24
185.82.66.0/24 maxlen: 24
185.82.67.0/24 maxlen: 24
185.82.65.0/24 maxlen: 24
91.213.172.0/24 maxlen: 24
91.213.167.0/24 maxlen: 24
185.47.51.0/24 maxlen: 24
185.47.48.0/24 maxlen: 24
185.47.48.0/23 maxlen: 23
185.47.50.0/23 maxlen: 23
185.47.50.0/24 maxlen: 24
185.47.49.0/24 maxlen: 24
45.155.192.0/24 maxlen: 24
193.246.175.0/24 maxlen: 24
193.246.174.0/24 maxlen: 24
45.155.195.0/24 maxlen: 24
45.155.193.0/24 maxlen: 24
45.155.194.0/24 maxlen: 24
185.125.22.0/24 maxlen: 24
185.125.21.0/24 maxlen: 24
185.125.23.0/24 maxlen: 24
185.125.20.0/24 maxlen: 24
185.212.192.0/24 maxlen: 24
185.212.193.0/24 maxlen: 24
185.212.195.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:66:6e:e8:c2:09:6d:96:59:1b:92:c9:98:5e:1d:2c:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43965dd1f6f24a46d7cc4bccfecd4151c6dd1bfb
Validity
Not Before: May 29 07:35:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e644641dc1e82586e8f3637f3659cc21d840f864
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:fb:d6:a1:11:6a:ba:ab:43:50:70:d4:67:3b:
8a:ca:5c:1e:1b:f7:d7:99:f4:f2:18:ad:be:da:84:
4c:43:2a:1c:54:02:fc:b1:d8:57:65:24:04:9d:5a:
44:ed:5d:58:c2:79:92:de:84:7f:61:6f:0e:51:f1:
1c:00:a8:50:5a:14:6b:b9:b0:ea:e4:b2:4e:5f:c9:
d8:8f:1d:3e:c8:f2:cd:2b:4e:ac:75:2f:ac:96:4d:
e1:8d:89:d8:4c:42:b4:c6:5a:fb:c1:f3:55:ad:6e:
95:3f:16:f2:c9:f9:ea:80:73:5d:78:0b:a2:6a:dd:
a2:90:c8:a0:82:ad:41:07:b7:90:ef:ff:ae:7f:69:
00:d5:d0:fb:bd:ee:ae:70:51:5f:a6:01:64:f0:47:
60:d3:f8:a4:ba:8d:7f:b2:9a:a7:a3:3d:7a:2c:fe:
ef:be:5c:da:62:a6:0b:f7:94:c9:d6:f1:9d:2f:d6:
4b:f1:6e:0d:c6:ab:9c:f7:11:09:bd:9f:61:c7:b3:
c4:fc:8a:16:36:39:61:4c:53:1d:05:86:5a:b4:2e:
d6:f7:ff:77:23:73:52:cd:da:a6:ee:5a:68:6c:64:
7c:53:21:35:87:f6:a5:25:98:46:89:6c:77:35:6f:
33:e3:6e:9a:dc:82:bc:6e:e2:12:fb:f5:d2:12:62:
84:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:44:64:1D:C1:E8:25:86:E8:F3:63:7F:36:59:CC:21:D8:40:F8:64
X509v3 Authority Key Identifier:
keyid:43:96:5D:D1:F6:F2:4A:46:D7:CC:4B:CC:FE:CD:41:51:C6:DD:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/5kRkHcHoJYbo82N_NlnMIdhA-GQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.192.0/22
91.213.151.0/24
91.213.157.0/24
91.213.167.0/24
91.213.172.0/24
185.47.48.0/22
185.82.64.0/22
185.121.56.0/22
185.125.20.0/22
185.137.60.0/22
185.142.92.0/22
185.142.124.0/22
185.212.192.0/23
185.212.195.0/24
185.221.192.0/22
185.238.44.0/22
193.246.174.0/23
193.246.200.0/23
195.8.102.0/24
195.8.110.0/24
195.8.112.0/24
195.8.114.0/24
195.191.22.0/23
195.191.44.0/23
195.230.97.0/24
195.230.105.0/24
195.230.107.0/24
195.230.124.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:49:1f:b4:55:06:13:8d:08:62:45:25:0f:23:11:66:e9:54:
b1:81:b8:16:40:39:67:63:85:fe:90:65:dc:13:19:90:0f:eb:
41:ac:3a:68:79:6d:9e:a5:9c:42:aa:d3:0e:f5:79:06:7f:d0:
17:86:51:ca:90:a4:8e:db:72:a6:be:c2:7c:d1:f6:d0:ce:09:
0f:45:f4:dc:ee:8a:04:01:c2:91:d8:fc:4c:b6:95:48:4e:d8:
bf:db:9d:a1:9f:84:81:ef:36:b0:9e:dc:a1:c1:98:8e:4c:db:
91:0f:32:86:11:cd:8e:64:1e:13:6d:0d:77:30:33:c6:e8:bc:
e9:44:5b:bc:75:37:78:30:27:cf:a0:68:b7:9c:d1:a1:39:ea:
59:85:03:e9:a0:37:c4:bf:7f:80:40:16:52:59:34:6b:d9:34:
d7:3a:38:5d:87:00:7e:bf:89:86:78:32:8a:b3:f7:f0:fa:65:
fc:a1:61:a3:06:6a:ab:1e:34:b7:aa:b7:31:e6:48:be:f7:56:
87:0f:8e:d7:9d:91:60:46:28:43:a2:fa:12:74:57:10:31:93:
c6:cb:62:e9:05:b8:b3:22:c3:ce:3d:3d:de:08:d5:e3:2b:97:
1d:e2:99:d2:38:39:12:cc:21:da:c5:7e:e6:ac:82:6b:3b:4e:
23:54:72:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:50:32 2024 by rpki-client on console-fra.rpki-client.org