Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/bh_mKyI8bN0DFen3lzxaH2Bq79c.roa
File: bh_mKyI8bN0DFen3lzxaH2Bq79c.roa (raw, json)
Hash identifier: V0i/VcPupOdHUY14mTKeedRrELHSH4f7YehfDfstLnI=
Subject key identifier: 6E:1F:E6:2B:22:3C:6C:DD:03:15:E9:F7:97:3C:5A:1F:60:6A:EF:D7
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185EEDB516CB7DCF98C0B6383D3229B62F1
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/bh_mKyI8bN0DFen3lzxaH2Bq79c.roa
Signing time: Thu 26 Jan 2023 16:13:48 +0000
ROA not before: Thu 26 Jan 2023 16:13:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209641
IP address blocks: 185.5.248.0/23 maxlen: 23
185.5.250.0/23 maxlen: 23
185.5.248.0/22 maxlen: 22
185.5.250.0/24 maxlen: 24
185.87.48.0/22 maxlen: 22
185.87.50.0/24 maxlen: 24
185.87.48.0/24 maxlen: 24
185.87.51.0/24 maxlen: 24
185.87.49.0/24 maxlen: 24
185.117.152.0/22 maxlen: 22
139.28.220.0/24 maxlen: 24
45.89.67.0/24 maxlen: 24
45.89.66.0/24 maxlen: 24
91.217.80.0/24 maxlen: 24
95.214.10.0/24 maxlen: 24
95.214.11.0/24 maxlen: 24
95.214.9.0/24 maxlen: 24
195.66.87.0/24 maxlen: 24
94.142.136.0/21 maxlen: 21
185.105.119.0/24 maxlen: 24
94.142.139.0/24 maxlen: 24
94.142.143.0/24 maxlen: 24
94.142.141.0/24 maxlen: 24
94.142.140.0/24 maxlen: 24
94.142.142.0/24 maxlen: 24
185.125.216.0/22 maxlen: 22
185.105.118.0/24 maxlen: 24
185.105.116.0/24 maxlen: 24
185.105.117.0/24 maxlen: 24
185.58.205.0/24 maxlen: 24
185.58.206.0/24 maxlen: 24
185.58.204.0/24 maxlen: 24
185.58.204.0/22 maxlen: 22
185.58.207.0/24 maxlen: 24
185.125.231.0/24 maxlen: 24
185.125.229.0/24 maxlen: 24
185.125.228.0/22 maxlen: 22
185.125.230.0/24 maxlen: 24
185.125.228.0/24 maxlen: 24
194.67.192.0/19 maxlen: 19
194.67.196.0/22 maxlen: 22
194.67.194.0/23 maxlen: 23
194.67.193.0/24 maxlen: 24
193.124.176.0/21 maxlen: 21
193.124.176.0/20 maxlen: 20
193.124.184.0/21 maxlen: 21
45.128.176.0/24 maxlen: 24
45.128.178.0/24 maxlen: 24
45.128.176.0/22 maxlen: 22
45.128.177.0/24 maxlen: 24
45.128.179.0/24 maxlen: 24
195.47.250.0/24 maxlen: 24
194.67.203.0/24 maxlen: 24
194.67.200.0/21 maxlen: 21
194.67.202.0/24 maxlen: 24
194.67.200.0/23 maxlen: 23
194.67.204.0/22 maxlen: 22
194.67.208.0/20 maxlen: 20
2a0a:9300:d1::/48 maxlen: 48
2a0a:9300::/48 maxlen: 48
2a0a:9301:1::/48 maxlen: 48
2a0a:9301::/48 maxlen: 48
2a0a:9300:d2::/48 maxlen: 48
2a0a:9301:2::/48 maxlen: 48
2a0a:9300:2::/48 maxlen: 48
2a0a:9302::/32 maxlen: 32
2a0a:9300:d0::/48 maxlen: 48
2a0a:9302:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 28 Jan 2023 11:23:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ee:db:51:6c:b7:dc:f9:8c:0b:63:83:d3:22:9b:62:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 26 16:13:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e1fe62b223c6cdd0315e9f7973c5a1f606aefd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:0c:84:f5:4f:18:5e:4a:14:dc:e8:ba:8b:34:
c5:7a:be:4a:e4:03:bd:c2:b1:97:fb:41:78:be:5b:
f2:9a:0a:1e:c3:27:f6:ca:c4:89:ab:99:32:fa:7b:
71:42:6a:f3:04:49:92:9c:01:7b:46:27:d5:62:bc:
af:d7:b4:d5:4e:d0:e1:c3:1b:29:cb:5a:e9:7c:52:
b5:fd:29:32:fe:5e:52:43:ee:d3:2a:f3:66:ab:ad:
38:de:cc:97:f4:40:4e:e0:a4:55:5b:75:09:7b:90:
7e:45:cc:13:3a:3e:db:06:d8:a4:50:5e:6d:47:bd:
5d:31:1d:3d:dd:99:8d:e8:81:dd:72:03:6c:d5:50:
a3:6a:c0:c1:64:94:44:aa:0d:3f:ab:f5:36:f0:92:
0a:5b:2d:e2:e1:d4:41:ab:a3:6b:73:15:f0:81:c2:
c6:d9:3c:1c:f2:a4:95:02:2d:4d:72:96:e1:04:d6:
60:14:7c:d0:54:e2:e6:b1:7c:2a:23:5e:06:67:b8:
14:72:69:46:99:e8:c8:63:5e:b9:a4:26:da:2c:2d:
35:86:e8:f3:2a:f9:32:d6:51:b1:6d:a5:94:7b:4a:
16:58:18:a8:b4:15:34:b4:43:b7:c1:84:93:a5:d7:
00:07:1f:47:19:04:d7:c7:d6:e3:fd:1a:57:bf:4a:
12:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:1F:E6:2B:22:3C:6C:DD:03:15:E9:F7:97:3C:5A:1F:60:6A:EF:D7
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/bh_mKyI8bN0DFen3lzxaH2Bq79c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.66.0/23
45.128.176.0/22
91.217.80.0/24
94.142.136.0/21
95.214.9.0-95.214.11.255
139.28.220.0/24
185.5.248.0/22
185.58.204.0/22
185.87.48.0/22
185.105.116.0/22
185.117.152.0/22
185.125.216.0/22
185.125.228.0/22
193.124.176.0/20
194.67.192.0/19
195.47.250.0/24
195.66.87.0/24
IPv6:
2a0a:9300::/48
2a0a:9300:2::/48
2a0a:9300:d0::-2a0a:9300:d2:ffff:ffff:ffff:ffff:ffff
2a0a:9301::-2a0a:9301:2:ffff:ffff:ffff:ffff:ffff
2a0a:9302::/32
Signature Algorithm: sha256WithRSAEncryption
33:c3:8c:b1:4e:88:65:12:43:58:93:05:00:ec:71:6f:5a:bd:
de:d4:0a:22:4a:5a:73:32:8e:9a:92:1c:bf:ad:2e:5d:41:00:
4a:c2:cc:1b:72:16:c1:57:32:1d:82:29:4a:70:89:bc:d6:f7:
53:e9:fd:61:9c:78:6c:3d:19:ad:07:12:3c:cf:31:88:d0:12:
f5:db:25:df:a8:33:ea:7a:07:cf:b1:46:48:3d:b7:6a:18:1a:
85:10:5d:26:e9:e6:6d:33:f9:6f:e6:97:f6:0f:43:4c:34:b6:
0e:0d:b0:e5:c8:f2:ef:ee:04:37:bd:47:79:83:f9:58:f7:98:
25:a4:0b:89:4f:82:3d:74:ed:ff:8c:32:67:a8:71:f9:28:eb:
91:ba:42:9c:fb:46:74:75:fb:77:d1:dd:bd:ef:ce:ec:d3:42:
83:95:e4:1d:f9:41:08:15:6a:88:27:6c:36:34:4e:2a:d1:2f:
af:db:c8:5c:0d:6e:34:58:fb:ed:b9:ca:5c:6a:0e:1f:b6:41:
76:09:12:f5:64:e6:ea:08:58:e8:a3:d9:e3:01:cb:b9:d1:3a:
e0:6d:7a:69:50:dd:70:57:50:f3:2a:f8:3b:7b:d2:9c:9f:9b:
63:92:21:4b:7e:df:5f:d8:59:07:12:02:08:12:4b:f3:27:70:
8c:1c:97:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org