Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/jOzgr524Tqp_jWUCYi8k6XKnIB8.roa
File: jOzgr524Tqp_jWUCYi8k6XKnIB8.roa (raw, json)
Hash identifier: 4PHSCq5K5mvJ2OgLxiVRcfyxyQvarcG7/g/LmnkDIEY=
Subject key identifier: 8C:EC:E0:AF:9D:B8:4E:AA:7F:8D:65:02:62:2F:24:E9:72:A7:20:1F
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185CAA4A011E4EB694F56995A09644B9169
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/jOzgr524Tqp_jWUCYi8k6XKnIB8.roa
Signing time: Thu 19 Jan 2023 15:27:44 +0000
ROA not before: Thu 19 Jan 2023 15:27:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35196
IP address blocks: 185.5.248.0/23 maxlen: 23
185.5.250.0/23 maxlen: 23
185.5.248.0/22 maxlen: 22
185.5.250.0/24 maxlen: 24
185.87.48.0/22 maxlen: 22
185.87.50.0/24 maxlen: 24
185.87.48.0/24 maxlen: 24
185.87.49.0/24 maxlen: 24
185.87.51.0/24 maxlen: 24
185.117.152.0/22 maxlen: 22
139.28.220.0/24 maxlen: 24
45.89.67.0/24 maxlen: 24
45.89.65.0/24 maxlen: 24
45.89.66.0/24 maxlen: 24
91.217.80.0/24 maxlen: 24
95.214.10.0/24 maxlen: 24
95.214.11.0/24 maxlen: 24
95.214.9.0/24 maxlen: 24
45.9.73.184/32 maxlen: 32
195.66.87.0/24 maxlen: 24
45.9.73.179/32 maxlen: 32
94.142.136.0/21 maxlen: 21
94.142.138.0/24 maxlen: 24
185.105.119.0/24 maxlen: 24
94.142.139.0/24 maxlen: 24
94.142.143.0/24 maxlen: 24
185.87.48.18/32 maxlen: 32
185.125.218.0/23 maxlen: 23
185.125.216.0/22 maxlen: 22
94.142.136.67/32 maxlen: 32
185.105.116.0/24 maxlen: 24
185.105.118.0/24 maxlen: 24
185.105.117.0/24 maxlen: 24
185.58.206.0/24 maxlen: 24
185.58.204.0/22 maxlen: 22
185.125.229.0/24 maxlen: 24
185.125.231.0/24 maxlen: 24
185.125.228.0/22 maxlen: 22
185.125.230.0/24 maxlen: 24
45.9.73.236/32 maxlen: 32
194.67.192.0/19 maxlen: 19
194.67.196.0/22 maxlen: 22
194.67.194.0/23 maxlen: 23
194.67.193.0/24 maxlen: 24
193.124.176.0/20 maxlen: 20
45.128.176.0/24 maxlen: 24
45.128.178.0/24 maxlen: 24
45.128.177.0/24 maxlen: 24
45.128.179.0/24 maxlen: 24
195.47.250.0/24 maxlen: 24
194.67.203.0/24 maxlen: 24
194.67.200.0/21 maxlen: 21
194.67.202.0/24 maxlen: 24
194.67.200.0/23 maxlen: 23
194.67.204.0/22 maxlen: 22
194.67.208.0/20 maxlen: 20
2a0a:9300:1000::/48 maxlen: 48
2a0a:9301:1::/48 maxlen: 48
2a0a:9301::/48 maxlen: 48
2a0a:9301:2::/48 maxlen: 48
2a0a:9302::/32 maxlen: 32
2a09:5302:ffff::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 26 Jan 2023 13:20:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ca:a4:a0:11:e4:eb:69:4f:56:99:5a:09:64:4b:91:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 19 15:27:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8cece0af9db84eaa7f8d6502622f24e972a7201f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ee:3e:f3:79:f4:4e:b3:8f:26:79:7d:3e:07:
e6:e5:40:2d:3a:34:0c:de:34:53:a8:4a:8f:e4:ae:
80:3a:d6:71:e6:1a:87:61:79:48:0d:11:f3:07:fa:
47:b2:61:f7:f1:45:d6:ed:b7:b6:42:2b:81:64:7e:
d7:11:0e:3d:c0:79:82:d3:2a:43:75:c5:c8:aa:13:
4d:ab:a3:33:6a:89:27:b8:86:74:73:ad:fb:22:19:
58:3e:52:81:8a:1c:3e:ae:02:19:0f:b2:b1:c6:a1:
37:ee:bf:29:36:98:ea:05:c8:4b:b4:56:9e:fe:58:
e4:98:30:1d:22:20:37:23:53:7d:bf:dc:27:fe:bd:
85:a2:26:27:0e:9e:13:64:ad:7e:fd:d4:1b:e2:51:
1d:10:42:de:7c:5a:9a:a9:8e:87:21:ef:2e:52:7e:
36:f5:57:94:01:ad:a5:d0:4c:39:91:1d:5d:e9:b7:
9a:51:a1:95:94:ab:23:55:f2:3d:8d:82:8f:23:06:
10:ec:a2:a6:ce:46:63:87:6d:22:05:80:ae:38:21:
71:2f:2b:5c:fb:ff:89:a4:11:8f:8a:fc:dc:e4:df:
5c:a3:46:b6:61:e9:18:bb:aa:93:74:aa:74:bb:60:
fb:0e:96:26:c9:12:4f:56:eb:d7:f8:73:1a:ea:99:
bb:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:EC:E0:AF:9D:B8:4E:AA:7F:8D:65:02:62:2F:24:E9:72:A7:20:1F
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/jOzgr524Tqp_jWUCYi8k6XKnIB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.73.179/32
45.9.73.184/32
45.9.73.236/32
45.89.65.0-45.89.67.255
45.128.176.0/22
91.217.80.0/24
94.142.136.0/21
95.214.9.0-95.214.11.255
139.28.220.0/24
185.5.248.0/22
185.58.204.0/22
185.87.48.0/22
185.105.116.0/22
185.117.152.0/22
185.125.216.0/22
185.125.228.0/22
193.124.176.0/20
194.67.192.0/19
195.47.250.0/24
195.66.87.0/24
IPv6:
2a09:5302:ffff::/48
2a0a:9300:1000::/48
2a0a:9301::-2a0a:9301:2:ffff:ffff:ffff:ffff:ffff
2a0a:9302::/32
Signature Algorithm: sha256WithRSAEncryption
39:7a:e0:68:44:cd:bb:f8:64:5d:b2:9c:2b:c1:26:d3:26:52:
36:61:ee:5f:da:c9:d2:b1:2a:20:0f:23:d2:c2:65:68:34:16:
d2:6e:22:34:e6:a4:ce:cf:5f:ab:97:e9:c8:ac:c4:a4:48:01:
b3:58:b3:bd:79:79:be:71:17:f7:11:ee:4c:53:d4:d0:c4:4f:
30:42:c6:eb:d1:45:90:51:0d:53:45:e9:0c:1c:4b:2a:30:78:
6b:df:82:99:98:b7:f1:16:b4:8a:a3:5b:26:96:59:c4:81:ca:
88:10:12:4e:22:8f:17:b2:06:e5:3d:70:43:16:de:f5:d6:9b:
e0:b2:83:6c:a6:c1:b3:b2:a4:b4:ee:8b:32:28:15:20:fe:6d:
7f:fd:ec:13:5a:b9:0a:08:d6:53:06:9f:20:79:01:72:cc:26:
fc:95:92:0e:ec:2b:c6:01:09:7b:20:03:e4:21:17:7c:71:5f:
f4:3d:fe:aa:32:2c:c9:52:89:04:87:ac:07:eb:8e:00:e2:27:
c2:40:65:b9:30:51:3c:4b:04:e0:44:55:56:d1:5c:50:32:97:
b5:2c:ea:82:da:a2:d4:aa:f8:79:64:33:bc:cc:30:35:80:6b:
a5:c1:6c:75:d4:52:4e:60:11:6f:82:e6:1c:67:a1:a6:e8:cb:
64:b7:88:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org