Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/g88xoPkUhJgZOIU30tdP_3UAUlY.roa
File: g88xoPkUhJgZOIU30tdP_3UAUlY.roa (raw, json)
Hash identifier: qVLDHafYberjAdPEVbkQy5NVI85ZcJ0zAj+xn1h9WWs=
Subject key identifier: 83:CF:31:A0:F9:14:84:98:19:38:85:37:D2:D7:4F:FF:75:00:52:56
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 018969C670E6C61DED692A04254E434CDAE1
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/g88xoPkUhJgZOIU30tdP_3UAUlY.roa
Signing time: Tue 18 Jul 2023 16:12:39 +0000
ROA not before: Tue 18 Jul 2023 16:12:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35196
IP address blocks: 185.5.248.0/23 maxlen: 23
185.5.250.0/23 maxlen: 23
185.5.248.0/22 maxlen: 22
185.5.250.0/24 maxlen: 24
185.87.48.0/22 maxlen: 22
185.87.50.0/24 maxlen: 24
185.87.48.0/24 maxlen: 24
185.87.49.0/24 maxlen: 24
185.87.51.0/24 maxlen: 24
185.117.152.0/22 maxlen: 22
45.89.67.0/24 maxlen: 24
45.89.65.0/24 maxlen: 24
45.89.66.0/24 maxlen: 24
91.217.80.0/24 maxlen: 24
45.9.73.184/32 maxlen: 32
45.9.73.179/32 maxlen: 32
94.142.136.0/21 maxlen: 21
94.142.139.0/24 maxlen: 24
94.142.143.0/24 maxlen: 24
185.87.48.18/32 maxlen: 32
185.125.218.0/23 maxlen: 23
185.125.216.0/22 maxlen: 22
94.142.136.67/32 maxlen: 32
185.105.116.0/24 maxlen: 24
185.105.117.0/24 maxlen: 24
185.58.206.0/24 maxlen: 24
185.58.204.0/22 maxlen: 22
185.125.229.0/24 maxlen: 24
185.125.231.0/24 maxlen: 24
185.125.228.0/22 maxlen: 22
185.125.228.0/24 maxlen: 24
185.125.230.0/24 maxlen: 24
45.9.73.236/32 maxlen: 32
194.67.192.0/19 maxlen: 19
194.67.196.0/22 maxlen: 22
194.67.194.0/23 maxlen: 23
194.67.193.0/24 maxlen: 24
193.124.176.0/20 maxlen: 20
45.128.176.0/24 maxlen: 24
45.128.178.0/24 maxlen: 24
45.128.177.0/24 maxlen: 24
45.128.179.0/24 maxlen: 24
195.47.250.0/24 maxlen: 24
194.67.203.0/24 maxlen: 24
194.67.200.0/21 maxlen: 21
194.67.202.0/24 maxlen: 24
194.67.204.0/22 maxlen: 22
194.67.208.0/20 maxlen: 20
2a0a:9300:1000::/48 maxlen: 48
2a0a:9301:1::/48 maxlen: 48
2a0a:9301::/48 maxlen: 48
2a0a:9301:2::/48 maxlen: 48
2a0a:9302::/32 maxlen: 32
2a09:5302:ffff::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 02 Oct 2023 14:54:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:69:c6:70:e6:c6:1d:ed:69:2a:04:25:4e:43:4c:da:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jul 18 16:12:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83cf31a0f914849819388537d2d74fff75005256
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:e3:1b:0f:7c:ba:fb:c8:73:1f:8f:36:03:82:
da:04:b1:8e:57:93:71:32:dd:8d:76:3f:46:f1:2e:
ca:a9:a9:e8:76:a9:d9:84:e0:c5:42:3e:9f:5c:96:
4e:89:c8:1e:ef:b4:8f:b9:57:e2:85:52:9b:62:4e:
ae:7e:12:34:78:21:a1:49:91:ca:81:9e:e3:2b:00:
cc:4f:44:bf:fa:1f:70:17:84:0e:31:b5:70:a4:27:
37:0e:44:8d:22:29:a0:68:6f:13:ff:30:31:11:2d:
aa:d9:51:ce:50:2e:b8:4e:d9:bd:ca:37:52:48:04:
37:4a:f5:e5:65:9f:0f:34:62:0d:ce:d5:f9:bc:cc:
4a:45:7f:f0:37:79:0d:cf:4b:51:14:8a:ff:05:b4:
15:7d:ec:6a:6d:a9:2d:63:85:b7:b6:4a:9c:50:ad:
3b:e6:0c:4e:7e:6e:81:5d:8e:37:62:b2:69:71:a0:
81:10:01:56:b1:7b:68:64:ea:7c:de:27:32:b8:b7:
91:63:88:fb:10:fe:f8:06:39:87:56:bb:af:0f:33:
62:46:a1:30:8e:ee:ea:2f:a2:b1:80:f5:43:21:ca:
7b:8d:8d:a4:4d:4d:24:e8:24:96:94:92:a5:ea:c5:
01:4a:75:4d:ab:e1:56:bf:89:bd:6c:0c:07:63:3b:
a6:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:CF:31:A0:F9:14:84:98:19:38:85:37:D2:D7:4F:FF:75:00:52:56
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/g88xoPkUhJgZOIU30tdP_3UAUlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.73.179/32
45.9.73.184/32
45.9.73.236/32
45.89.65.0-45.89.67.255
45.128.176.0/22
91.217.80.0/24
94.142.136.0/21
185.5.248.0/22
185.58.204.0/22
185.87.48.0/22
185.105.116.0/23
185.117.152.0/22
185.125.216.0/22
185.125.228.0/22
193.124.176.0/20
194.67.192.0/19
195.47.250.0/24
IPv6:
2a09:5302:ffff::/48
2a0a:9300:1000::/48
2a0a:9301::-2a0a:9301:2:ffff:ffff:ffff:ffff:ffff
2a0a:9302::/32
Signature Algorithm: sha256WithRSAEncryption
5a:f3:bd:dd:e8:54:d9:65:ae:2f:b2:21:b7:9d:68:b2:cb:79:
41:79:10:ac:80:bb:e1:26:36:c8:4c:0e:01:a4:d8:68:80:9f:
98:0a:92:6c:fd:b8:1a:d0:d8:78:e3:1d:6b:3d:16:7b:41:05:
85:4d:1f:4e:bd:60:38:b2:54:ce:33:72:b6:2f:c2:19:1a:e1:
0e:df:2e:b7:07:a1:8f:01:69:62:95:c9:8e:e3:8b:33:04:08:
70:e1:52:9a:bf:a5:c3:34:e7:59:14:c1:f4:38:71:98:49:2d:
58:d0:8a:c2:c1:8a:10:67:d8:02:00:f0:46:66:46:11:2d:72:
ca:11:31:73:c2:f8:3e:3a:4c:b1:d9:a1:fc:2e:d3:6e:a1:f6:
0d:e9:d9:be:e9:93:b1:b1:45:6a:74:c5:04:8b:90:d8:32:e0:
3d:e0:05:ac:04:73:c5:89:a6:84:54:0a:e7:7e:fe:1c:ba:8e:
f4:7f:b9:f4:81:4b:dc:46:32:b8:fd:c2:eb:17:60:4c:86:41:
f4:ea:97:bb:c5:c3:4e:7d:18:0e:31:43:52:dd:4d:1f:32:c5:
08:07:61:03:ad:42:cd:b1:21:7c:07:b8:cd:23:cb:e5:a3:e6:
ac:2c:2e:4a:20:e6:02:29:83:70:65:4f:f4:f0:fb:23:c1:68:
2f:2d:a5:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org