Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/Bvy_IdJhaG4le-ow99i1WflIK-M.roa
File: Bvy_IdJhaG4le-ow99i1WflIK-M.roa (raw, json)
Hash identifier: TV7P3whbR0CH6NPxDA8Jh2zSgmSCL0HuEkVZu4IDCaE=
Subject key identifier: 06:FC:BF:21:D2:61:68:6E:25:7B:EA:30:F7:D8:B5:59:F9:48:2B:E3
Certificate issuer: /CN=aebf394e2f1b251c88d988a87161084580786ef5
Certificate serial: 0192952E4A877D8F1901793F05656808DE67
Authority key identifier: AE:BF:39:4E:2F:1B:25:1C:88:D9:88:A8:71:61:08:45:80:78:6E:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rr85Ti8bJRyI2YiocWEIRYB4bvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/Bvy_IdJhaG4le-ow99i1WflIK-M.roa
Signing time: Wed 16 Oct 2024 11:54:51 +0000
ROA not before: Wed 16 Oct 2024 11:54:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1299
IP address blocks: 5.182.252.0/22 maxlen: 24
37.18.160.0/20 maxlen: 24
37.58.128.0/17 maxlen: 24
45.145.124.0/22 maxlen: 24
46.20.160.0/20 maxlen: 24
62.102.224.0/19 maxlen: 24
79.98.96.0/21 maxlen: 24
81.22.216.0/21 maxlen: 24
91.103.232.0/21 maxlen: 24
91.206.156.0/23 maxlen: 24
91.217.94.0/23 maxlen: 24
91.229.230.0/23 maxlen: 24
92.61.72.0/21 maxlen: 24
94.127.8.0/21 maxlen: 24
103.77.32.0/22 maxlen: 24
103.229.36.0/23 maxlen: 24
103.232.172.0/22 maxlen: 24
109.69.192.0/21 maxlen: 24
109.237.240.0/20 maxlen: 24
128.127.128.0/20 maxlen: 24
146.247.88.0/21 maxlen: 24
149.255.136.0/21 maxlen: 24
178.249.160.0/21 maxlen: 24
185.15.128.0/22 maxlen: 24
185.42.132.0/22 maxlen: 24
185.49.120.0/23 maxlen: 24
185.65.224.0/22 maxlen: 24
185.67.88.0/22 maxlen: 24
185.79.148.0/22 maxlen: 24
185.90.96.0/22 maxlen: 24
185.95.120.0/22 maxlen: 24
185.149.8.0/22 maxlen: 24
185.172.16.0/22 maxlen: 24
185.196.248.0/22 maxlen: 24
185.204.140.0/22 maxlen: 24
185.208.248.0/22 maxlen: 24
188.66.56.0/22 maxlen: 24
194.177.32.0/19 maxlen: 24
195.214.240.0/21 maxlen: 24
212.51.160.0/19 maxlen: 24
213.108.64.0/21 maxlen: 24
213.151.168.0/23 maxlen: 24
213.151.172.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 21:47:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:95:2e:4a:87:7d:8f:19:01:79:3f:05:65:68:08:de:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aebf394e2f1b251c88d988a87161084580786ef5
Validity
Not Before: Oct 16 11:54:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=06fcbf21d261686e257bea30f7d8b559f9482be3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:37:b7:4e:c8:5b:9d:dd:13:b5:d3:db:79:ac:
ea:81:3a:11:1c:c7:c5:17:43:e6:75:31:f1:63:6d:
4f:4a:e9:89:75:2d:ab:a7:32:52:71:89:53:5a:31:
a4:c5:b7:b2:1e:f6:df:58:d5:7e:84:05:ab:4b:30:
e6:17:a4:5d:3b:71:6e:77:3a:1f:4f:42:ce:8a:54:
c8:8c:69:2a:a0:6c:8c:7d:dc:73:cd:61:57:48:6e:
4b:5d:0b:22:b0:e7:55:36:bf:22:b0:8d:7f:4d:d8:
ca:14:a9:a0:67:91:11:4e:0e:c1:86:5d:b0:be:a0:
9f:83:db:e2:51:95:cf:80:7b:2f:48:16:45:8f:ce:
c1:e2:28:cd:d5:8d:34:d5:5e:22:6b:17:50:22:9e:
86:06:3d:c2:b9:51:a9:1e:e0:11:6d:04:86:04:3a:
2e:2a:f6:f6:f9:60:cd:9e:ec:d1:90:2c:0f:45:a3:
9b:ee:52:3a:bd:c5:bd:7e:57:03:fc:fc:c9:d6:1a:
31:26:75:f5:4e:f5:fc:7e:80:47:b6:65:15:55:46:
d2:f4:b3:e8:13:0d:2f:38:f9:ea:9f:ca:56:d2:6c:
d4:78:9a:e0:46:12:6e:c3:b9:88:35:dc:1a:ba:b8:
18:07:eb:f0:2d:fa:e5:b2:a8:bf:b1:98:8f:f5:85:
94:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:FC:BF:21:D2:61:68:6E:25:7B:EA:30:F7:D8:B5:59:F9:48:2B:E3
X509v3 Authority Key Identifier:
keyid:AE:BF:39:4E:2F:1B:25:1C:88:D9:88:A8:71:61:08:45:80:78:6E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rr85Ti8bJRyI2YiocWEIRYB4bvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/Bvy_IdJhaG4le-ow99i1WflIK-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/rr85Ti8bJRyI2YiocWEIRYB4bvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.252.0/22
37.18.160.0/20
37.58.128.0/17
45.145.124.0/22
46.20.160.0/20
62.102.224.0/19
79.98.96.0/21
81.22.216.0/21
91.103.232.0/21
91.206.156.0/23
91.217.94.0/23
91.229.230.0/23
92.61.72.0/21
94.127.8.0/21
103.77.32.0/22
103.229.36.0/23
103.232.172.0/22
109.69.192.0/21
109.237.240.0/20
128.127.128.0/20
146.247.88.0/21
149.255.136.0/21
178.249.160.0/21
185.15.128.0/22
185.42.132.0/22
185.49.120.0/23
185.65.224.0/22
185.67.88.0/22
185.79.148.0/22
185.90.96.0/22
185.95.120.0/22
185.149.8.0/22
185.172.16.0/22
185.196.248.0/22
185.204.140.0/22
185.208.248.0/22
188.66.56.0/22
194.177.32.0/19
195.214.240.0/21
212.51.160.0/19
213.108.64.0/21
213.151.168.0/23
213.151.172.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:51:f7:be:ec:66:b9:21:c3:6a:e8:19:cf:18:d6:5f:25:af:
ef:5a:cb:b3:6c:85:09:c5:b6:2d:78:8a:5e:ba:af:28:92:00:
2e:8c:71:bb:75:a7:e2:24:fc:c3:0e:2d:95:86:92:94:39:d6:
9b:b3:78:21:83:44:5d:de:3b:87:03:5b:0d:5f:24:d8:b2:0c:
ec:35:b9:0b:32:d4:d7:54:6a:b1:77:82:7c:92:2f:34:e9:05:
da:37:71:04:b8:d6:00:74:38:e0:66:71:bc:72:65:5b:60:9f:
0e:b5:4f:ad:b4:5d:d4:d7:e8:04:5c:47:77:cc:c9:aa:62:da:
4d:e5:43:6e:3a:9f:c5:d6:1f:8d:cd:bb:5e:5d:d5:98:44:cf:
86:19:88:84:f4:2b:ea:74:f3:a2:e3:7d:d6:a6:6e:7d:20:67:
de:8b:3d:d7:c0:d7:ca:6b:07:9e:04:6e:31:6b:17:11:56:a2:
28:83:21:af:d6:88:4b:6d:ef:93:79:ef:41:b5:63:d5:ab:92:
ca:2b:39:86:d7:60:17:1d:2e:0f:11:6f:78:0b:5c:1f:0a:92:
07:b5:01:a8:38:01:4b:f6:97:81:75:0c:4c:81:29:15:cb:6f:
0c:98:e2:6d:ac:0c:8f:6c:58:b4:0f:8c:11:94:85:d3:9c:59:
67:49:8a:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:45:13 2025 by rpki-client