Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/Evx9T9LPa4ToVrR5oIpxz88AL8c.roa
File: Evx9T9LPa4ToVrR5oIpxz88AL8c.roa (raw, json)
Hash identifier: QF+bRfwgyHT3z5IjjsBxU4DIP3nsDvQRhLDQX2vQ+JY=
Subject key identifier: 12:FC:7D:4F:D2:CF:6B:84:E8:56:B4:79:A0:8A:71:CF:CF:00:2F:C7
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 018AE250D50E16DE0D101D07B9A04224C931
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/Evx9T9LPa4ToVrR5oIpxz88AL8c.roa
Signing time: Fri 29 Sep 2023 19:01:02 +0000
ROA not before: Fri 29 Sep 2023 19:01:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31287
IP address blocks: 77.78.152.0/21 maxlen: 21
77.78.154.0/24 maxlen: 24
77.78.153.0/24 maxlen: 24
77.78.159.0/24 maxlen: 24
185.46.163.0/24 maxlen: 24
185.46.160.0/22 maxlen: 22
85.187.205.0/24 maxlen: 24
85.187.206.0/24 maxlen: 24
85.187.204.0/24 maxlen: 24
85.187.207.0/24 maxlen: 24
85.187.222.0/24 maxlen: 24
85.187.232.0/24 maxlen: 24
85.187.248.0/24 maxlen: 24
185.72.58.0/24 maxlen: 24
80.72.64.0/24 maxlen: 24
151.237.91.0/24 maxlen: 24
80.72.72.0/24 maxlen: 24
151.237.92.0/24 maxlen: 24
151.237.93.0/24 maxlen: 24
195.85.215.0/24 maxlen: 24
151.237.29.0/24 maxlen: 24
185.200.40.0/22 maxlen: 22
85.187.42.0/24 maxlen: 24
85.187.50.0/24 maxlen: 24
85.187.63.0/24 maxlen: 24
85.187.62.0/24 maxlen: 24
46.55.252.0/22 maxlen: 22
46.55.252.0/24 maxlen: 24
46.55.253.0/24 maxlen: 24
151.237.128.0/24 maxlen: 24
85.187.4.0/24 maxlen: 24
85.187.3.0/24 maxlen: 24
85.187.6.0/24 maxlen: 24
85.187.10.0/23 maxlen: 23
85.187.15.0/24 maxlen: 24
85.187.18.0/24 maxlen: 24
85.187.20.0/24 maxlen: 24
85.187.184.0/23 maxlen: 23
46.55.254.0/24 maxlen: 24
2a01:9e40::/32 maxlen: 32
2a03:b540::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e2:50:d5:0e:16:de:0d:10:1d:07:b9:a0:42:24:c9:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Sep 29 19:01:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12fc7d4fd2cf6b84e856b479a08a71cfcf002fc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:db:8a:f2:d6:76:7b:de:59:cf:2a:26:04:32:
c9:57:75:a5:30:3e:d8:29:93:15:cd:35:a3:76:03:
31:8b:6d:6d:75:1f:84:58:05:99:58:29:93:49:86:
4f:30:25:82:b8:36:ee:97:79:b3:75:fe:4f:64:1a:
83:f0:5a:b1:4c:90:0d:26:b7:1e:8c:ac:9c:a6:a2:
39:99:36:c4:6c:90:33:36:51:ef:a5:62:b5:a4:bb:
a3:99:69:93:3f:71:ec:f1:c8:25:a6:2d:a2:54:77:
ca:e8:c3:c3:10:fb:e4:1e:ef:01:e0:74:34:65:4e:
4b:11:7c:e1:fd:fa:78:34:29:08:95:01:74:5b:78:
b3:83:ac:3c:ca:57:15:32:ef:46:63:6b:20:09:11:
92:44:f1:1b:87:82:9e:16:c9:49:e9:2f:86:1a:60:
5a:05:1a:3b:5e:84:fe:25:28:0b:42:43:c3:7d:e2:
a8:1d:17:7a:60:d8:eb:93:0f:cb:1f:15:b5:d4:49:
d3:33:96:a3:e3:dd:8b:8c:5d:2a:0a:f3:91:31:86:
09:f7:db:36:31:62:c6:d0:29:d0:48:ce:2d:58:f6:
de:9b:55:88:4a:4a:d4:9d:36:09:db:6c:a6:8f:43:
2f:9e:ee:34:b9:c6:22:a8:ca:0e:06:41:db:e4:a9:
e1:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:FC:7D:4F:D2:CF:6B:84:E8:56:B4:79:A0:8A:71:CF:CF:00:2F:C7
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/Evx9T9LPa4ToVrR5oIpxz88AL8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.55.252.0/22
77.78.152.0/21
80.72.64.0/24
80.72.72.0/24
85.187.3.0-85.187.4.255
85.187.6.0/24
85.187.10.0/23
85.187.15.0/24
85.187.18.0/24
85.187.20.0/24
85.187.42.0/24
85.187.50.0/24
85.187.62.0/23
85.187.184.0/23
85.187.204.0/22
85.187.222.0/24
85.187.232.0/24
85.187.248.0/24
151.237.29.0/24
151.237.91.0-151.237.93.255
151.237.128.0/24
185.46.160.0/22
185.72.58.0/24
185.200.40.0/22
195.85.215.0/24
IPv6:
2a01:9e40::/32
2a03:b540::/32
Signature Algorithm: sha256WithRSAEncryption
5f:e0:59:1e:8e:81:13:bc:da:fd:4a:ca:f7:65:33:95:a2:24:
60:87:0c:51:32:6f:ab:16:71:16:30:cd:0e:f4:96:18:8a:81:
78:a8:2d:eb:30:da:8f:f3:e7:88:44:64:88:c9:31:fa:61:03:
ec:d9:1c:c9:1b:d9:ba:17:97:2c:ce:5d:81:3a:b4:41:73:8d:
54:5e:42:21:71:2e:9c:d6:5d:0e:fc:19:b4:3c:b0:4d:1d:1d:
5d:d3:ab:1d:9c:67:04:3b:ec:d5:60:06:9f:d1:4f:52:ed:ac:
39:22:30:9c:af:15:b4:f1:97:0e:14:6a:e3:f7:22:09:e3:40:
cf:f7:61:cb:14:5d:57:2c:df:62:cb:60:7b:ab:5d:30:0a:b2:
cb:79:05:1a:1f:0d:f1:7b:14:8d:ce:d2:fd:04:09:5b:3d:98:
cd:c1:1d:94:e6:10:a7:7c:e6:40:3b:bf:d6:38:04:b8:f9:c9:
fc:35:4c:14:cd:c6:cd:76:c6:53:31:59:ee:9e:2c:48:6f:14:
ad:c3:49:e1:d2:2a:a6:83:02:18:ef:a8:c1:9c:33:da:72:ec:
19:bb:53:06:23:3c:58:a5:39:81:f5:c7:12:54:91:5d:7a:99:
46:dc:9a:45:19:ab:b5:34:4c:6c:cd:a2:33:38:31:14:ac:62:
3d:87:77:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org