Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/idG34toJAXkGIgU98t7RaiYzvYo.roa
File: idG34toJAXkGIgU98t7RaiYzvYo.roa (raw, json)
Hash identifier: jN17C4leVpzKW2NG/LMgiz0cywWTEvdf9KvgOCBap+o=
Subject key identifier: 89:D1:B7:E2:DA:09:01:79:06:22:05:3D:F2:DE:D1:6A:26:33:BD:8A
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 01864A8367CC49CD092FF9C7553C2FF39BD5
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/idG34toJAXkGIgU98t7RaiYzvYo.roa
Signing time: Mon 13 Feb 2023 11:22:51 +0000
ROA not before: Mon 13 Feb 2023 11:22:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31195
IP address blocks: 85.26.240.0/22 maxlen: 22
178.178.64.0/24 maxlen: 24
178.178.71.0/24 maxlen: 24
178.178.66.0/24 maxlen: 24
178.178.65.0/24 maxlen: 24
178.178.68.0/24 maxlen: 24
178.178.67.0/24 maxlen: 24
178.178.70.0/24 maxlen: 24
178.178.73.0/24 maxlen: 24
178.178.72.0/24 maxlen: 24
78.25.124.0/22 maxlen: 22
78.25.127.0/24 maxlen: 24
31.173.225.0/24 maxlen: 24
31.173.226.0/24 maxlen: 24
31.173.132.0/23 maxlen: 23
31.173.134.0/23 maxlen: 23
31.173.135.0/24 maxlen: 24
178.176.233.0/24 maxlen: 24
178.176.235.0/24 maxlen: 24
178.176.234.0/24 maxlen: 24
31.173.143.0/24 maxlen: 24
37.28.188.0/22 maxlen: 22
37.28.191.0/24 maxlen: 24
37.28.190.0/24 maxlen: 24
37.29.89.0/24 maxlen: 24
37.29.91.0/24 maxlen: 24
37.29.88.0/22 maxlen: 22
37.29.95.0/24 maxlen: 24
37.29.92.0/22 maxlen: 22
37.29.94.0/24 maxlen: 24
188.170.233.0/24 maxlen: 24
188.170.231.0/24 maxlen: 24
188.170.228.0/23 maxlen: 23
188.170.232.0/24 maxlen: 24
188.170.230.0/24 maxlen: 24
188.170.236.0/24 maxlen: 24
188.170.234.0/24 maxlen: 24
188.170.239.0/24 maxlen: 24
188.170.237.0/24 maxlen: 24
188.170.235.0/24 maxlen: 24
31.173.231.0/24 maxlen: 24
31.173.228.0/23 maxlen: 23
31.173.228.0/24 maxlen: 24
31.173.230.0/24 maxlen: 24
31.173.232.0/23 maxlen: 23
31.173.229.0/24 maxlen: 24
31.173.239.0/24 maxlen: 24
31.173.236.0/23 maxlen: 23
31.173.238.0/24 maxlen: 24
31.173.235.0/24 maxlen: 24
37.29.43.0/24 maxlen: 24
83.149.52.0/22 maxlen: 22
83.169.228.0/23 maxlen: 23
83.169.230.0/24 maxlen: 24
83.169.227.0/24 maxlen: 24
83.169.226.0/24 maxlen: 24
83.169.224.0/23 maxlen: 23
85.26.244.0/22 maxlen: 22
85.26.247.0/24 maxlen: 24
2a03:d006:400::/40 maxlen: 40
2a03:d006:500::/40 maxlen: 40
2a03:d006:200::/40 maxlen: 40
2a03:d006:600::/40 maxlen: 40
Validation: Failed, certificate revoked on Fri 16 Jun 2023 07:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4a:83:67:cc:49:cd:09:2f:f9:c7:55:3c:2f:f3:9b:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Feb 13 11:22:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89d1b7e2da0901790622053df2ded16a2633bd8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:94:65:c0:b0:b2:dc:a5:ab:6d:a3:af:fe:2c:
15:11:31:65:75:06:78:d7:07:0e:6a:3e:fe:5d:71:
d2:a3:00:b4:4d:82:e8:b4:91:e5:57:b5:fe:2b:7b:
1b:90:e8:2b:12:df:f1:8d:62:8a:8f:5b:58:f7:d3:
6a:ff:b2:e8:0e:bc:5c:35:72:7a:ee:8b:0c:27:c0:
44:86:3c:6b:ea:b7:9c:b8:b9:84:da:93:06:ea:c6:
3c:62:7d:62:78:da:c7:85:8e:94:60:4c:be:f3:f4:
77:88:b8:63:1e:a7:24:4a:b1:d3:09:39:a1:67:a4:
ff:4e:f5:79:e8:b5:e9:b6:51:94:99:c8:53:5b:09:
63:25:15:2d:02:55:4a:b3:ee:28:30:e8:4e:f0:2d:
f0:4e:ff:b1:9c:40:9b:63:f0:55:9c:41:83:cc:92:
87:92:fa:b6:f2:81:f6:37:82:da:14:dc:b5:fb:37:
77:0e:d0:c6:87:27:78:92:18:95:12:a7:db:c8:ca:
6b:34:61:13:0f:6d:aa:73:53:09:28:96:b6:98:21:
47:68:ce:20:32:67:95:99:07:e4:10:54:fd:d7:18:
aa:3a:ba:73:9c:1f:1e:db:2c:96:19:82:f1:c6:32:
61:73:bf:5c:db:51:30:16:2e:4b:cc:46:71:ca:3d:
56:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:D1:B7:E2:DA:09:01:79:06:22:05:3D:F2:DE:D1:6A:26:33:BD:8A
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/idG34toJAXkGIgU98t7RaiYzvYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.132.0/22
31.173.143.0/24
31.173.225.0-31.173.226.255
31.173.228.0-31.173.233.255
31.173.235.0-31.173.239.255
37.28.188.0/22
37.29.43.0/24
37.29.88.0/21
78.25.124.0/22
83.149.52.0/22
83.169.224.0-83.169.230.255
85.26.240.0/21
178.176.233.0-178.176.235.255
178.178.64.0-178.178.68.255
178.178.70.0-178.178.73.255
188.170.228.0-188.170.237.255
188.170.239.0/24
IPv6:
2a03:d006:200::/40
2a03:d006:400::-2a03:d006:6ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
38:7f:17:91:b4:7b:ab:b5:72:21:f2:d8:ee:80:03:d9:4b:97:
d0:d6:5b:6b:9c:e3:86:56:ff:a6:bf:7a:65:35:db:97:36:6e:
30:ba:45:81:f9:04:bf:2e:cb:25:53:e8:c4:bc:ff:31:08:04:
2a:c9:0f:87:25:fd:f3:01:06:97:18:6e:0c:95:56:28:53:bc:
41:98:53:03:97:54:6f:11:8e:98:1f:20:0a:89:e0:83:7e:4b:
18:7d:65:65:f4:11:14:e4:e0:04:d9:1d:2e:a7:f6:7b:79:55:
41:64:cc:be:0d:4a:44:26:da:ba:84:c6:d3:a6:7f:73:02:82:
d6:98:14:e1:cc:5d:1f:72:c1:3d:b5:b5:48:c2:32:0a:e1:72:
20:dd:72:dc:6d:47:3f:1c:67:2a:0e:0d:fd:eb:05:46:ac:2e:
ff:e6:8b:04:f4:06:57:c5:02:5e:0c:ac:07:d8:7d:3a:28:d2:
82:5e:20:61:0c:8e:49:39:6a:5c:7b:2c:f1:5a:a0:20:64:a9:
3d:8f:46:da:d3:17:ef:c2:70:ce:29:48:70:cf:12:6f:4c:72:
a2:b4:e4:56:5c:ac:9b:9b:9b:99:94:d0:64:82:64:63:56:f6:
6f:95:29:92:28:e8:d9:57:7a:1f:28:2b:f9:c2:68:8f:93:fd:
ec:57:c3:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:26 2024 by rpki-client on console-fra.rpki-client.org