Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/HmmheFL5gubrlD2Ulpe__Yj6CFI.roa
File: HmmheFL5gubrlD2Ulpe__Yj6CFI.roa (raw, json)
Hash identifier: IFiJh4+xmvvYBKJ9Ow/+jURuykZXND3fiXG0wyhGP/8=
Subject key identifier: 1E:69:A1:78:52:F9:82:E6:EB:94:3D:94:96:97:BF:FD:88:FA:08:52
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0187317C6919DE537F5AF96EE74F353EFC98
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/HmmheFL5gubrlD2Ulpe__Yj6CFI.roa
Signing time: Thu 30 Mar 2023 07:47:29 +0000
ROA not before: Thu 30 Mar 2023 07:47:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35196
IP address blocks: 185.5.248.0/23 maxlen: 23
185.5.250.0/23 maxlen: 23
185.5.248.0/22 maxlen: 22
185.5.250.0/24 maxlen: 24
185.87.48.0/22 maxlen: 22
185.87.50.0/24 maxlen: 24
185.87.48.0/24 maxlen: 24
185.87.49.0/24 maxlen: 24
185.87.51.0/24 maxlen: 24
185.117.152.0/22 maxlen: 22
139.28.220.0/24 maxlen: 24
45.89.67.0/24 maxlen: 24
45.89.65.0/24 maxlen: 24
45.89.66.0/24 maxlen: 24
91.217.80.0/24 maxlen: 24
45.9.73.184/32 maxlen: 32
195.66.87.0/24 maxlen: 24
45.9.73.179/32 maxlen: 32
94.142.136.0/21 maxlen: 21
185.105.119.0/24 maxlen: 24
94.142.139.0/24 maxlen: 24
94.142.143.0/24 maxlen: 24
185.87.48.18/32 maxlen: 32
185.125.218.0/23 maxlen: 23
185.125.216.0/22 maxlen: 22
94.142.136.67/32 maxlen: 32
185.105.116.0/24 maxlen: 24
185.105.118.0/24 maxlen: 24
185.105.117.0/24 maxlen: 24
185.58.206.0/24 maxlen: 24
185.58.204.0/22 maxlen: 22
185.125.229.0/24 maxlen: 24
185.125.231.0/24 maxlen: 24
185.125.228.0/22 maxlen: 22
185.125.228.0/24 maxlen: 24
185.125.230.0/24 maxlen: 24
45.9.73.236/32 maxlen: 32
194.67.192.0/19 maxlen: 19
194.67.196.0/22 maxlen: 22
194.67.194.0/23 maxlen: 23
194.67.193.0/24 maxlen: 24
193.124.176.0/20 maxlen: 20
45.128.176.0/24 maxlen: 24
45.128.178.0/24 maxlen: 24
45.128.177.0/24 maxlen: 24
45.128.179.0/24 maxlen: 24
195.47.250.0/24 maxlen: 24
194.67.203.0/24 maxlen: 24
194.67.200.0/21 maxlen: 21
194.67.202.0/24 maxlen: 24
194.67.200.0/23 maxlen: 23
194.67.204.0/22 maxlen: 22
194.67.208.0/20 maxlen: 20
2a0a:9300:1000::/48 maxlen: 48
2a0a:9301:1::/48 maxlen: 48
2a0a:9301::/48 maxlen: 48
2a0a:9301:2::/48 maxlen: 48
2a0a:9302::/32 maxlen: 32
2a09:5302:ffff::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 30 Mar 2023 09:53:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:31:7c:69:19:de:53:7f:5a:f9:6e:e7:4f:35:3e:fc:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Mar 30 07:47:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e69a17852f982e6eb943d949697bffd88fa0852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:35:5c:68:2a:43:f1:c8:89:a3:a5:d8:b8:bb:
22:30:a6:a9:95:30:00:41:a3:b0:5f:94:7f:f2:35:
db:1d:f1:84:76:6a:1b:1b:84:d9:20:f1:e9:c8:fa:
3d:65:b7:f3:fc:20:c7:4d:c8:4e:be:24:e8:a5:06:
33:3e:ed:66:f2:52:8f:20:10:66:71:e3:de:9d:c1:
9a:57:ac:b3:dc:52:eb:e4:56:1e:32:dd:d2:52:13:
ae:5a:89:42:30:93:89:16:c9:43:83:38:5e:c2:ac:
b5:d0:d0:f4:8f:3a:b5:63:eb:d6:15:24:f0:a3:87:
e0:94:e3:d1:61:4f:da:59:b2:74:93:23:03:a4:6d:
b0:6c:e3:b5:71:98:5e:83:d9:32:5a:5f:6e:0a:e4:
34:49:2e:e5:37:33:15:3e:fa:b5:40:d0:9e:4e:e1:
22:1a:e9:01:f9:f2:f6:af:12:08:3f:6e:8d:91:22:
71:50:2d:2f:b0:00:71:be:3d:9f:d9:8f:7f:f1:2a:
1a:9a:47:4c:f2:e6:d0:5f:d9:f0:1e:b0:15:c3:55:
2f:05:d7:73:dd:1d:db:5f:8b:61:4e:80:af:f8:4e:
97:a0:51:b6:85:78:df:2c:47:37:4f:3e:f3:d8:37:
ca:23:07:07:7b:d0:53:a0:99:51:6d:40:3c:f0:ef:
9c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:69:A1:78:52:F9:82:E6:EB:94:3D:94:96:97:BF:FD:88:FA:08:52
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/HmmheFL5gubrlD2Ulpe__Yj6CFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.73.179/32
45.9.73.184/32
45.9.73.236/32
45.89.65.0-45.89.67.255
45.128.176.0/22
91.217.80.0/24
94.142.136.0/21
139.28.220.0/24
185.5.248.0/22
185.58.204.0/22
185.87.48.0/22
185.105.116.0/22
185.117.152.0/22
185.125.216.0/22
185.125.228.0/22
193.124.176.0/20
194.67.192.0/19
195.47.250.0/24
195.66.87.0/24
IPv6:
2a09:5302:ffff::/48
2a0a:9300:1000::/48
2a0a:9301::-2a0a:9301:2:ffff:ffff:ffff:ffff:ffff
2a0a:9302::/32
Signature Algorithm: sha256WithRSAEncryption
0d:cf:c8:7f:11:a9:a2:be:9d:4e:ff:da:cc:fa:7b:1f:6a:f6:
e2:ac:77:7e:d6:dd:c9:fa:aa:ad:f3:8b:f8:92:7c:72:48:4a:
08:4a:f6:04:8a:88:1a:97:97:41:b7:c4:e7:11:d2:93:c3:06:
19:81:1a:3f:de:c9:95:52:03:b7:7f:e4:68:17:67:9b:46:a9:
f0:e5:46:4f:0f:a7:85:80:3e:7c:7d:4c:a5:cd:c4:5e:81:7a:
85:c7:4b:ef:9a:82:53:0f:16:01:09:cc:c0:dc:8d:ff:56:2a:
92:0b:bf:76:b4:b9:de:e8:ee:6f:e3:c1:70:b9:3f:14:22:12:
30:a8:64:f6:b4:da:18:b0:24:9a:42:cb:99:ae:2a:f0:a8:cc:
74:f1:59:fb:4e:45:b2:85:79:8e:6e:10:8e:ff:e7:d6:e5:e3:
88:de:4d:2f:f7:da:c9:cc:37:bf:a8:f8:b6:c3:b4:4f:10:29:
39:ef:e6:53:2c:76:5d:df:6b:69:0f:61:49:0b:4f:4e:26:e1:
7a:bb:36:d3:2c:eb:c2:77:f4:ad:a5:25:da:3d:79:c3:53:35:
fc:c5:24:54:f1:f0:81:98:e0:ef:ad:4b:e3:bc:88:da:31:c8:
d1:bb:0f:a4:4a:b7:de:4c:58:1b:de:51:8d:a4:53:86:30:7a:
76:ab:ef:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:10 2024 by rpki-client on console-ams.rpki-client.org