Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0ISPo5m1bujyBsqLt1k12II4EpM.roa
File: 0ISPo5m1bujyBsqLt1k12II4EpM.roa (raw, json)
Hash identifier: 7abSanm7coKx5trKsGs+nkHUX+wwSxwbWqCPvwreXfE=
Subject key identifier: D0:84:8F:A3:99:B5:6E:E8:F2:06:CA:8B:B7:59:35:D8:82:38:12:93
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018AFA6A809D5EE089FFEA8AA6BE509CDFB3
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0ISPo5m1bujyBsqLt1k12II4EpM.roa
Signing time: Wed 04 Oct 2023 11:19:58 +0000
ROA not before: Wed 04 Oct 2023 11:19:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201942
IP address blocks: 91.235.41.0/24 maxlen: 24
91.235.40.0/24 maxlen: 24
185.201.152.0/22 maxlen: 24
185.204.244.0/22 maxlen: 24
45.137.160.0/22 maxlen: 24
45.147.104.0/22 maxlen: 24
185.224.220.0/22 maxlen: 24
185.245.32.0/23 maxlen: 23
45.147.116.0/22 maxlen: 24
185.107.152.0/22 maxlen: 24
185.124.108.0/22 maxlen: 24
212.80.208.0/22 maxlen: 24
185.232.8.0/22 maxlen: 24
193.26.152.0/22 maxlen: 24
91.238.239.0/24 maxlen: 24
109.230.250.0/24 maxlen: 24
93.92.228.0/22 maxlen: 24
31.170.100.0/22 maxlen: 24
185.163.168.0/22 maxlen: 24
185.220.240.0/22 maxlen: 24
185.227.176.0/22 maxlen: 24
185.106.124.0/22 maxlen: 24
185.150.78.0/23 maxlen: 24
193.8.112.0/22 maxlen: 24
81.21.228.0/22 maxlen: 24
109.230.194.0/24 maxlen: 24
185.204.108.0/24 maxlen: 24
95.214.144.0/22 maxlen: 24
185.224.184.0/22 maxlen: 24
185.218.16.0/22 maxlen: 24
185.197.216.0/22 maxlen: 24
185.227.204.0/24 maxlen: 24
185.221.16.0/22 maxlen: 24
185.200.228.0/22 maxlen: 24
185.163.232.0/22 maxlen: 24
185.166.36.0/22 maxlen: 24
185.247.4.0/24 maxlen: 24
185.230.48.0/22 maxlen: 24
194.38.56.0/22 maxlen: 24
185.230.64.0/22 maxlen: 24
85.115.192.0/22 maxlen: 24
193.105.66.0/24 maxlen: 24
185.239.255.0/24 maxlen: 24
93.189.123.0/24 maxlen: 24
93.189.120.0/24 maxlen: 24
193.17.180.0/22 maxlen: 24
85.31.60.0/22 maxlen: 24
45.159.76.0/22 maxlen: 24
194.41.118.0/24 maxlen: 24
194.41.116.0/22 maxlen: 24
185.105.232.0/22 maxlen: 24
194.35.40.0/24 maxlen: 24
185.217.12.0/22 maxlen: 24
185.223.220.0/22 maxlen: 24
185.176.188.0/22 maxlen: 24
185.166.172.0/22 maxlen: 24
193.35.88.0/22 maxlen: 24
185.119.48.0/22 maxlen: 24
185.179.228.0/22 maxlen: 24
185.179.232.0/22 maxlen: 24
185.129.104.0/22 maxlen: 24
185.128.52.0/22 maxlen: 24
185.118.52.0/23 maxlen: 23
185.118.54.0/23 maxlen: 23
185.226.8.0/22 maxlen: 24
185.212.84.0/22 maxlen: 24
195.182.13.0/24 maxlen: 24
212.115.44.0/22 maxlen: 24
185.105.12.0/22 maxlen: 24
185.202.204.0/22 maxlen: 24
45.81.152.0/22 maxlen: 24
185.196.42.0/24 maxlen: 24
185.196.43.0/24 maxlen: 24
185.196.40.0/22 maxlen: 24
185.239.252.0/22 maxlen: 24
185.239.253.0/24 maxlen: 24
185.239.252.0/24 maxlen: 24
185.175.152.0/22 maxlen: 24
185.222.188.0/22 maxlen: 24
185.226.28.0/22 maxlen: 24
185.199.44.0/22 maxlen: 24
185.199.52.0/22 maxlen: 24
185.91.108.0/22 maxlen: 24
213.232.232.0/24 maxlen: 24
88.135.64.0/22 maxlen: 24
185.162.52.0/22 maxlen: 24
185.216.28.0/22 maxlen: 24
185.189.64.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Oct 2023 11:26:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fa:6a:80:9d:5e:e0:89:ff:ea:8a:a6:be:50:9c:df:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Oct 4 11:19:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0848fa399b56ee8f206ca8bb75935d882381293
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:87:fe:4b:fb:51:6c:f6:c4:20:29:66:6a:fd:
e3:b1:7d:b6:7e:4d:44:ca:1b:03:4b:f0:82:95:5e:
78:2e:ed:e0:d1:61:60:3a:e0:da:e5:77:88:2f:45:
d5:37:8e:58:5e:06:ea:cb:da:42:c8:7c:26:8f:ea:
9d:f6:22:7c:a8:1f:72:3c:4e:f7:d7:ad:cd:a1:b4:
c2:29:4e:e3:74:d1:a8:d1:42:44:21:57:70:e5:42:
04:6d:29:15:12:95:b3:2a:18:85:0a:75:b1:10:29:
67:a7:c2:4b:35:d0:47:93:cc:6d:f4:7b:c6:bc:d1:
97:70:22:31:cf:7d:3e:67:87:1e:53:ef:fb:20:41:
e2:89:62:15:09:3e:63:85:43:25:41:e5:c9:0b:0f:
81:d3:c3:c9:ca:be:bc:c1:80:55:c9:8c:89:36:b3:
ed:91:b1:8c:e0:60:36:44:70:13:39:85:45:ae:ee:
b8:02:e9:d8:4d:b5:d5:34:3c:89:98:b0:08:05:9f:
1c:7e:71:48:63:64:e7:3b:6b:6a:ea:18:c0:d6:22:
c7:b9:74:4e:76:65:b7:99:50:7e:7a:87:9d:d4:52:
f1:09:fd:ef:8a:70:bb:18:6c:66:db:a4:76:22:b1:
79:b3:b0:29:a4:8e:6f:0b:9a:d4:fc:e7:49:3b:37:
00:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:84:8F:A3:99:B5:6E:E8:F2:06:CA:8B:B7:59:35:D8:82:38:12:93
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0ISPo5m1bujyBsqLt1k12II4EpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.100.0/22
45.81.152.0/22
45.137.160.0/22
45.147.104.0/22
45.147.116.0/22
45.159.76.0/22
81.21.228.0/22
85.31.60.0/22
85.115.192.0/22
88.135.64.0/22
91.235.40.0/23
91.238.239.0/24
93.92.228.0/22
93.189.120.0/24
93.189.123.0/24
95.214.144.0/22
109.230.194.0/24
109.230.250.0/24
185.91.108.0/22
185.105.12.0/22
185.105.232.0/22
185.106.124.0/22
185.107.152.0/22
185.118.52.0/22
185.119.48.0/22
185.124.108.0/22
185.128.52.0/22
185.129.104.0/22
185.150.78.0/23
185.162.52.0/22
185.163.168.0/22
185.163.232.0/22
185.166.36.0/22
185.166.172.0/22
185.175.152.0/22
185.176.188.0/22
185.179.228.0-185.179.235.255
185.189.64.0/22
185.196.40.0/22
185.197.216.0/22
185.199.44.0/22
185.199.52.0/22
185.200.228.0/22
185.201.152.0/22
185.202.204.0/22
185.204.108.0/24
185.204.244.0/22
185.212.84.0/22
185.216.28.0/22
185.217.12.0/22
185.218.16.0/22
185.220.240.0/22
185.221.16.0/22
185.222.188.0/22
185.223.220.0/22
185.224.184.0/22
185.224.220.0/22
185.226.8.0/22
185.226.28.0/22
185.227.176.0/22
185.227.204.0/24
185.230.48.0/22
185.230.64.0/22
185.232.8.0/22
185.239.252.0/22
185.245.32.0/23
185.247.4.0/24
193.8.112.0/22
193.17.180.0/22
193.26.152.0/22
193.35.88.0/22
193.105.66.0/24
194.35.40.0/24
194.38.56.0/22
194.41.116.0/22
195.182.13.0/24
212.80.208.0/22
212.115.44.0/22
213.232.232.0/24
Signature Algorithm: sha256WithRSAEncryption
15:f5:1f:60:1b:b7:45:e9:33:ff:8d:1e:9a:b4:41:5c:df:3e:
9d:da:ad:00:ca:34:64:1f:73:c8:7e:22:db:56:ee:39:a5:fa:
7d:41:4e:17:e9:fe:99:ff:e8:b7:01:48:82:68:e3:24:56:80:
2a:ea:c4:4b:86:7c:8e:65:57:86:f5:42:fd:2d:11:fc:ca:08:
c1:71:58:15:c4:39:25:03:61:95:f0:26:f0:b6:18:34:0b:b5:
27:b4:0e:81:f2:1a:49:73:5c:71:be:5f:c8:73:c4:c1:a7:c2:
72:da:7e:99:6e:82:10:ee:d3:02:80:4d:3f:22:89:5c:7e:0a:
7c:f2:4a:a4:13:d7:b1:0d:20:0d:c2:85:c4:38:81:63:69:1a:
61:11:e0:48:7f:70:cd:7a:7e:76:d3:a5:d4:93:ff:9f:6b:85:
e0:96:f9:03:44:20:c0:26:cb:5a:04:d8:30:33:2f:e4:84:14:
68:3b:1c:ea:f5:35:ac:67:e9:89:95:f5:fa:11:10:87:b5:a6:
aa:3c:12:2f:bf:5a:30:80:08:27:58:74:6f:cc:19:8c:97:e0:
b0:8b:f8:68:db:77:b3:cd:5f:49:6f:c7:4b:78:29:64:86:14:
a4:78:ed:b1:67:72:81:05:2c:c1:74:73:9c:22:39:d4:09:db:
cb:93:72:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:39 2024 by rpki-client on console-fra.rpki-client.org