Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/CmP6I4auppqS4kimk1rphdpizrg.roa
File: CmP6I4auppqS4kimk1rphdpizrg.roa (raw, json)
Hash identifier: lMY0vgYZGdiyG/MFyWAwz2LB52+z6wd4su6Q9wtl9BM=
Subject key identifier: 0A:63:FA:23:86:AE:A6:9A:92:E2:48:A6:93:5A:E9:85:DA:62:CE:B8
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185EE55A463F07EE2BDB00FC7FFB9E7CF71
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/CmP6I4auppqS4kimk1rphdpizrg.roa
Signing time: Thu 26 Jan 2023 13:47:47 +0000
ROA not before: Thu 26 Jan 2023 13:47:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35196
IP address blocks: 185.5.248.0/23 maxlen: 23
185.5.250.0/23 maxlen: 23
185.5.248.0/22 maxlen: 22
185.5.250.0/24 maxlen: 24
185.87.48.0/22 maxlen: 22
185.87.50.0/24 maxlen: 24
185.87.48.0/24 maxlen: 24
185.87.49.0/24 maxlen: 24
185.87.51.0/24 maxlen: 24
185.117.152.0/22 maxlen: 22
139.28.220.0/24 maxlen: 24
45.89.67.0/24 maxlen: 24
45.89.65.0/24 maxlen: 24
45.89.66.0/24 maxlen: 24
91.217.80.0/24 maxlen: 24
95.214.10.0/24 maxlen: 24
95.214.11.0/24 maxlen: 24
95.214.9.0/24 maxlen: 24
45.9.73.184/32 maxlen: 32
195.66.87.0/24 maxlen: 24
45.9.73.179/32 maxlen: 32
94.142.136.0/21 maxlen: 21
185.105.119.0/24 maxlen: 24
94.142.139.0/24 maxlen: 24
94.142.143.0/24 maxlen: 24
185.87.48.18/32 maxlen: 32
185.125.218.0/23 maxlen: 23
185.125.216.0/22 maxlen: 22
94.142.136.67/32 maxlen: 32
185.105.116.0/24 maxlen: 24
185.105.118.0/24 maxlen: 24
185.105.117.0/24 maxlen: 24
185.58.206.0/24 maxlen: 24
185.58.204.0/22 maxlen: 22
185.125.229.0/24 maxlen: 24
185.125.231.0/24 maxlen: 24
185.125.228.0/22 maxlen: 22
185.125.228.0/24 maxlen: 24
185.125.230.0/24 maxlen: 24
45.9.73.236/32 maxlen: 32
194.67.192.0/19 maxlen: 19
194.67.196.0/22 maxlen: 22
194.67.194.0/23 maxlen: 23
194.67.193.0/24 maxlen: 24
193.124.176.0/20 maxlen: 20
45.128.176.0/24 maxlen: 24
45.128.178.0/24 maxlen: 24
45.128.177.0/24 maxlen: 24
45.128.179.0/24 maxlen: 24
195.47.250.0/24 maxlen: 24
194.67.203.0/24 maxlen: 24
194.67.200.0/21 maxlen: 21
194.67.202.0/24 maxlen: 24
194.67.200.0/23 maxlen: 23
194.67.204.0/22 maxlen: 22
194.67.208.0/20 maxlen: 20
2a0a:9300:1000::/48 maxlen: 48
2a0a:9301:1::/48 maxlen: 48
2a0a:9301::/48 maxlen: 48
2a0a:9301:2::/48 maxlen: 48
2a0a:9302::/32 maxlen: 32
2a09:5302:ffff::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 30 Mar 2023 07:47:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ee:55:a4:63:f0:7e:e2:bd:b0:0f:c7:ff:b9:e7:cf:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 26 13:47:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a63fa2386aea69a92e248a6935ae985da62ceb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e3:3b:31:b7:b4:10:99:46:41:86:3c:42:07:
72:57:8f:1b:3c:e7:57:dd:37:54:41:e1:52:83:db:
c3:59:92:02:23:75:b4:6c:e9:ce:c8:e4:2b:ee:fe:
0c:6a:42:52:c1:52:4c:91:ab:5c:01:42:3b:a0:82:
96:fc:4f:28:f7:72:40:ee:cf:c8:79:fc:fa:48:96:
64:3c:b7:95:28:fb:86:e7:f4:2c:d5:41:cc:ff:25:
6a:5b:33:5b:6f:5e:cd:3a:4d:de:f1:04:5d:cf:7a:
35:02:42:c3:6b:f0:0d:83:17:f7:a0:8e:cc:86:d0:
d2:e2:dc:00:71:fd:a9:c3:2c:5f:32:28:24:02:5f:
56:9b:92:6d:7a:c2:6b:0a:0a:db:2e:d9:b6:07:8b:
6c:c4:fc:d9:a9:e5:64:03:3d:72:14:b4:38:b7:8d:
c7:66:9d:38:c9:2b:12:55:97:65:66:42:d8:4f:7d:
8b:a2:0c:3a:71:63:ea:77:ab:fe:90:8d:16:d7:2c:
47:33:65:a1:49:82:b4:6e:4a:f3:77:d4:99:b4:22:
44:21:c8:7b:39:2b:59:e0:9d:af:b6:f6:a9:92:94:
a4:36:9b:d7:a1:bc:0b:df:7b:84:f9:8c:3a:86:c1:
be:f0:46:1b:67:5b:a7:2c:62:91:ff:fe:fd:4f:83:
f2:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:63:FA:23:86:AE:A6:9A:92:E2:48:A6:93:5A:E9:85:DA:62:CE:B8
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/CmP6I4auppqS4kimk1rphdpizrg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.73.179/32
45.9.73.184/32
45.9.73.236/32
45.89.65.0-45.89.67.255
45.128.176.0/22
91.217.80.0/24
94.142.136.0/21
95.214.9.0-95.214.11.255
139.28.220.0/24
185.5.248.0/22
185.58.204.0/22
185.87.48.0/22
185.105.116.0/22
185.117.152.0/22
185.125.216.0/22
185.125.228.0/22
193.124.176.0/20
194.67.192.0/19
195.47.250.0/24
195.66.87.0/24
IPv6:
2a09:5302:ffff::/48
2a0a:9300:1000::/48
2a0a:9301::-2a0a:9301:2:ffff:ffff:ffff:ffff:ffff
2a0a:9302::/32
Signature Algorithm: sha256WithRSAEncryption
aa:01:1f:68:69:70:e1:a8:d0:9e:52:f9:b8:11:1d:4c:2d:1d:
4a:3b:15:87:ad:6c:e5:bd:54:cb:cb:8b:11:8c:4c:3d:c1:03:
d5:6b:04:dd:b9:ec:ea:5d:06:32:dc:27:e9:66:54:56:ea:cc:
4c:ef:ec:7d:ed:01:78:0e:a0:c6:3c:23:cf:ca:09:2c:b8:2e:
8f:9d:76:f0:5d:8c:42:66:cc:08:8d:8d:59:08:a7:fe:1d:73:
54:7b:ee:a6:fb:26:62:46:8f:c0:17:7a:c0:5b:1a:fc:8d:a9:
5a:fc:9b:b6:1a:d5:41:09:c6:70:20:a5:b4:29:ca:27:6a:4e:
7e:4e:03:22:37:66:3c:c5:f3:f2:79:42:26:6b:6d:da:29:81:
dc:37:3d:94:5a:7a:85:cc:15:2f:f5:57:f5:2d:c4:06:61:20:
c7:e2:04:86:be:f7:ee:ab:4e:89:52:20:59:34:21:29:76:c9:
56:b7:b6:30:8c:23:d8:47:e8:20:01:b5:ec:e3:35:f4:38:62:
3d:62:59:03:53:62:44:88:98:b1:41:14:22:e1:50:82:1c:30:
61:5f:c1:35:9e:4b:8c:85:59:20:52:65:0c:ba:b8:ba:e7:59:
fd:81:4e:82:dd:21:c8:ad:c2:47:70:c5:46:bb:3e:5c:b9:1b:
5a:1b:0d:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:08 2024 by rpki-client on console-ams.rpki-client.org