Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/62gtPlSzwRfc2nMsScPMLFz9tDc.roa
File: 62gtPlSzwRfc2nMsScPMLFz9tDc.roa (raw, json)
Hash identifier: I7YyhpK/Y5x7HmaDyVGA5Ao/sImfRX6MPjg2gUJhoE0=
Subject key identifier: EB:68:2D:3E:54:B3:C1:17:DC:DA:73:2C:49:C3:CC:2C:5C:FD:B4:37
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185CA883B4710F93073FA03B8DB0C646707
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/62gtPlSzwRfc2nMsScPMLFz9tDc.roa
Signing time: Thu 19 Jan 2023 14:56:43 +0000
ROA not before: Thu 19 Jan 2023 14:56:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35196
IP address blocks: 185.5.248.0/23 maxlen: 23
185.5.250.0/23 maxlen: 23
185.5.248.0/22 maxlen: 22
185.5.250.0/24 maxlen: 24
185.87.48.0/22 maxlen: 22
185.87.50.0/24 maxlen: 24
185.87.48.0/24 maxlen: 24
185.87.49.0/24 maxlen: 24
185.87.51.0/24 maxlen: 24
185.117.152.0/22 maxlen: 22
139.28.220.0/24 maxlen: 24
45.89.67.0/24 maxlen: 24
45.89.65.0/24 maxlen: 24
45.89.66.0/24 maxlen: 24
91.217.80.0/24 maxlen: 24
95.214.10.0/24 maxlen: 24
95.214.11.0/24 maxlen: 24
95.214.9.0/24 maxlen: 24
45.9.73.184/32 maxlen: 32
195.66.87.0/24 maxlen: 24
45.9.73.179/32 maxlen: 32
94.142.136.0/21 maxlen: 21
94.142.138.0/24 maxlen: 24
185.105.119.0/24 maxlen: 24
94.142.139.0/24 maxlen: 24
94.142.143.0/24 maxlen: 24
185.87.48.18/32 maxlen: 32
185.125.218.0/23 maxlen: 23
185.125.216.0/22 maxlen: 22
94.142.136.67/32 maxlen: 32
185.105.116.0/24 maxlen: 24
185.105.118.0/24 maxlen: 24
185.105.117.0/24 maxlen: 24
185.58.206.0/24 maxlen: 24
185.58.204.0/22 maxlen: 22
185.125.229.0/24 maxlen: 24
185.125.231.0/24 maxlen: 24
185.125.228.0/22 maxlen: 22
185.125.230.0/24 maxlen: 24
45.9.73.236/32 maxlen: 32
194.67.192.0/19 maxlen: 19
194.67.196.0/22 maxlen: 22
194.67.194.0/23 maxlen: 23
193.124.176.0/20 maxlen: 20
45.128.176.0/24 maxlen: 24
45.128.178.0/24 maxlen: 24
45.128.177.0/24 maxlen: 24
45.128.179.0/24 maxlen: 24
195.47.250.0/24 maxlen: 24
194.67.200.0/21 maxlen: 21
194.67.208.0/20 maxlen: 20
2a0a:9300:1000::/48 maxlen: 48
2a0a:9301:1::/48 maxlen: 48
2a0a:9301::/48 maxlen: 48
2a0a:9301:2::/48 maxlen: 48
2a0a:9302::/32 maxlen: 32
2a09:5302:ffff::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 19 Jan 2023 15:27:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ca:88:3b:47:10:f9:30:73:fa:03:b8:db:0c:64:67:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 19 14:56:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb682d3e54b3c117dcda732c49c3cc2c5cfdb437
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:0a:ce:fb:22:73:0f:7b:63:85:7a:1a:84:03:
4d:fb:3c:18:70:69:57:63:63:d4:b9:71:4b:a2:b0:
3f:da:bb:f2:a9:e6:b1:ea:29:db:9c:03:ab:8c:9f:
ff:48:c3:d2:31:62:ef:1e:54:45:fa:53:2a:45:78:
37:69:40:3f:25:2d:38:90:8b:5f:d3:a6:eb:b0:3a:
62:0d:05:4e:a0:f1:a9:3c:42:92:c2:92:73:24:d2:
a8:61:e4:73:08:c6:53:24:f7:39:68:9e:83:7c:fe:
7a:10:28:ef:98:86:db:f0:32:3c:34:cb:d5:f3:83:
58:86:6a:ce:db:c4:40:df:be:0c:e3:e7:b0:f7:06:
d8:32:08:94:4e:11:cf:36:1c:5f:bb:21:f2:3c:d8:
ff:25:fb:94:56:e1:86:bd:a0:7e:68:1a:af:16:f6:
27:93:de:10:5c:9c:c0:c9:2e:05:da:7b:d8:90:27:
6c:75:d1:c2:d4:96:95:54:02:0b:43:e3:e0:4c:b1:
1c:8b:51:60:f3:36:2d:45:35:36:6b:37:09:79:78:
84:92:6a:62:cb:4f:40:d5:3f:d1:1c:cd:ac:cc:15:
92:27:4f:0d:98:a1:5d:3c:63:68:1f:b0:4d:7d:a5:
7e:94:eb:8e:d4:52:53:d9:a6:06:e1:30:03:08:e4:
b8:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:68:2D:3E:54:B3:C1:17:DC:DA:73:2C:49:C3:CC:2C:5C:FD:B4:37
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/62gtPlSzwRfc2nMsScPMLFz9tDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.73.179/32
45.9.73.184/32
45.9.73.236/32
45.89.65.0-45.89.67.255
45.128.176.0/22
91.217.80.0/24
94.142.136.0/21
95.214.9.0-95.214.11.255
139.28.220.0/24
185.5.248.0/22
185.58.204.0/22
185.87.48.0/22
185.105.116.0/22
185.117.152.0/22
185.125.216.0/22
185.125.228.0/22
193.124.176.0/20
194.67.192.0/19
195.47.250.0/24
195.66.87.0/24
IPv6:
2a09:5302:ffff::/48
2a0a:9300:1000::/48
2a0a:9301::-2a0a:9301:2:ffff:ffff:ffff:ffff:ffff
2a0a:9302::/32
Signature Algorithm: sha256WithRSAEncryption
2b:49:fd:3f:b3:87:78:f4:82:9c:3b:18:68:ca:01:8f:61:fb:
ff:08:6f:50:42:6b:57:9b:15:7a:ba:19:bd:a6:64:cc:28:95:
a2:f6:1e:e1:7b:53:db:c0:21:7c:a8:c2:8e:b9:2f:8b:ac:58:
49:c5:5a:92:38:2b:99:6d:5a:ee:ee:fd:9e:73:7e:a0:c4:c9:
c8:e2:cb:bf:58:71:b6:e4:f2:38:d1:91:06:11:04:74:db:e2:
a4:71:a2:a5:20:45:a8:e8:54:9e:29:d0:f5:88:f1:b6:8a:27:
96:c6:80:d9:8b:ad:03:8b:aa:82:2e:07:ea:02:8c:26:58:5c:
01:1f:8c:53:b1:a2:e2:4d:51:02:19:b2:1f:62:d7:02:8d:40:
f9:27:70:08:7e:4c:ac:fa:2e:be:d7:18:89:dc:02:69:f0:cc:
67:8c:95:c2:cb:84:d5:cd:73:6e:67:4f:97:4b:41:5d:4e:af:
b7:9d:71:ba:19:ba:30:ef:8c:34:60:23:b2:9d:18:bb:bf:45:
d4:ca:ab:1b:2b:b3:70:9b:30:16:e2:de:1a:6d:12:07:eb:c6:
96:f9:ae:10:15:1b:1d:4e:5c:35:87:2d:4b:17:9f:0f:8b:41:
09:12:42:4a:03:c9:e5:16:74:58:5a:37:36:0f:46:bc:eb:78:
fe:69:1c:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:08 2024 by rpki-client on console-ams.rpki-client.org