Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/_2bNtC0a_n8LZAUdswN-by2h-a4.roa
File: _2bNtC0a_n8LZAUdswN-by2h-a4.roa (raw, json)
Hash identifier: c+thEJcAZPJ132e8vXlV9ZHPsz4/FUwyTvfdF6bKDKo=
Subject key identifier: FF:66:CD:B4:2D:1A:FE:7F:0B:64:05:1D:B3:03:7E:6F:2D:A1:F9:AE
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185710C34C2509958984F6F4EF199557AB2
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/_2bNtC0a_n8LZAUdswN-by2h-a4.roa
Signing time: Mon 02 Jan 2023 05:55:03 +0000
ROA not before: Mon 02 Jan 2023 05:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204997
IP address blocks: 185.174.137.0/24 maxlen: 24
45.144.64.0/24 maxlen: 24
45.144.66.0/24 maxlen: 24
45.144.65.0/24 maxlen: 24
45.144.67.0/24 maxlen: 24
185.139.69.0/24 maxlen: 24
185.139.71.0/24 maxlen: 24
185.139.68.0/24 maxlen: 24
185.139.70.0/24 maxlen: 24
193.109.78.0/24 maxlen: 24
193.109.79.0/24 maxlen: 24
185.252.146.0/24 maxlen: 24
185.252.147.0/24 maxlen: 24
185.195.24.0/24 maxlen: 24
185.195.27.0/24 maxlen: 24
185.195.25.0/24 maxlen: 24
185.195.26.0/24 maxlen: 24
185.204.0.0/24 maxlen: 24
185.204.2.0/24 maxlen: 24
185.204.3.0/24 maxlen: 24
139.28.223.0/24 maxlen: 24
139.28.222.0/24 maxlen: 24
185.212.148.0/24 maxlen: 24
91.217.81.0/24 maxlen: 24
185.188.183.0/24 maxlen: 24
185.188.182.0/24 maxlen: 24
185.17.3.0/24 maxlen: 24
185.180.231.0/24 maxlen: 24
185.180.230.0/24 maxlen: 24
147.78.64.0/24 maxlen: 24
195.66.114.0/24 maxlen: 24
147.78.66.0/24 maxlen: 24
147.78.65.0/24 maxlen: 24
147.78.67.0/24 maxlen: 24
46.17.104.0/24 maxlen: 24
185.104.249.0/24 maxlen: 24
2a04:5200:fff2::/48 maxlen: 48
2a04:5200:fff7::/48 maxlen: 48
2a04:5200:ff00::/48 maxlen: 48
2a04:5200:fff9::/48 maxlen: 48
2a04:5200:fff4::/48 maxlen: 48
2a04:5200:fff8::/48 maxlen: 48
2a04:5200:fff3::/48 maxlen: 48
2a04:5200:fff6::/48 maxlen: 48
2a04:5200:fff1::/48 maxlen: 48
2a04:5200:fff5::/48 maxlen: 48
2a04:5200:ff10::/48 maxlen: 48
2a04:5200:ffff::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 12 Jan 2023 15:23:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:34:c2:50:99:58:98:4f:6f:4e:f1:99:55:7a:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 2 05:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff66cdb42d1afe7f0b64051db3037e6f2da1f9ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:bc:49:5d:07:6a:c5:7f:e3:d7:fb:a6:a1:7b:
79:4f:92:f0:44:aa:0c:bd:48:e9:d6:44:5c:d1:e4:
66:de:5f:8a:3c:4b:9e:3d:75:8b:84:cf:5c:56:25:
ff:f6:87:f2:5d:1b:bd:9e:41:a6:ae:0a:e5:bb:4a:
6e:85:74:92:9c:85:90:4b:67:68:6e:99:ab:33:fe:
18:30:93:fd:da:35:ad:c7:1c:a8:9b:7e:dd:58:ae:
10:d8:e2:c1:b5:d7:ff:58:17:c1:02:15:1f:e3:2e:
f6:77:77:e7:ae:1c:ab:59:eb:2e:37:d4:1e:9f:86:
f0:a4:03:9f:c1:b7:2d:9b:69:12:e1:b7:1c:8a:bc:
12:d0:64:00:11:b4:99:15:b6:75:9e:7b:a3:3a:36:
3c:fc:f8:f1:a1:57:78:05:39:bf:69:16:a2:2c:9b:
ca:68:78:4f:14:b0:09:df:f2:da:45:fe:a3:3f:d9:
d8:72:c7:45:1e:87:12:0a:51:76:e7:cb:b5:c8:8a:
de:01:5a:38:00:c7:89:a0:08:3e:67:03:09:17:37:
52:d3:10:b7:87:94:e0:84:d0:00:aa:e8:cf:fa:d6:
fe:3f:4e:05:c0:4c:af:75:b3:79:e5:f8:32:49:1f:
7f:90:09:49:bd:fa:5f:96:0e:1d:7c:56:9b:f9:cb:
1a:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:66:CD:B4:2D:1A:FE:7F:0B:64:05:1D:B3:03:7E:6F:2D:A1:F9:AE
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/_2bNtC0a_n8LZAUdswN-by2h-a4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.64.0/22
46.17.104.0/24
91.217.81.0/24
139.28.222.0/23
147.78.64.0/22
185.17.3.0/24
185.104.249.0/24
185.139.68.0/22
185.174.137.0/24
185.180.230.0/23
185.188.182.0/23
185.195.24.0/22
185.204.0.0/24
185.204.2.0/23
185.212.148.0/24
185.252.146.0/23
193.109.78.0/23
195.66.114.0/24
IPv6:
2a04:5200:ff00::/48
2a04:5200:ff10::/48
2a04:5200:fff1::-2a04:5200:fff9:ffff:ffff:ffff:ffff:ffff
2a04:5200:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
a7:aa:39:ab:36:20:e8:63:66:c7:73:b9:6a:f2:a6:e5:77:fa:
31:fb:b0:c9:57:8a:7f:b3:7c:1b:62:d8:af:ff:f6:6c:ec:e2:
7c:bd:2b:c0:1a:18:a8:c0:62:ef:16:9f:44:9e:34:17:15:0b:
4e:ee:dc:52:aa:54:a1:b9:2a:29:57:25:2d:1d:da:f7:b2:a1:
f9:03:d9:dc:df:99:23:2c:c8:ea:7b:d6:03:b0:80:40:04:b2:
0a:45:7f:32:f3:f4:df:03:62:9d:74:44:6e:6b:d8:7e:60:e9:
f1:8e:41:04:b2:1e:ef:1a:a2:53:5e:3f:c4:61:ac:d1:f0:0f:
b2:fd:22:5a:48:df:8f:58:79:a3:d0:42:0b:33:96:52:14:7f:
1d:bd:de:89:51:fe:3a:80:12:89:38:21:53:59:c0:58:d6:61:
5c:a5:11:c8:06:d2:68:d2:95:a0:fd:e0:91:34:b4:5a:fb:6b:
b3:fd:1e:a9:56:f3:57:57:a9:b8:56:30:8b:b5:2a:4d:15:b5:
8a:37:3f:cb:b8:61:b9:c0:8d:d7:62:b5:c7:4a:f2:dd:20:f3:
da:70:ea:f9:29:b0:66:66:46:f3:7a:27:c8:29:67:23:5c:f3:
c8:77:02:61:32:71:94:70:31:eb:13:43:e4:fc:49:9f:0a:7d:
7c:c6:b0:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org