Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/40yQ4iZjDT9mlgByBs7WxoEIYeA.roa
File: 40yQ4iZjDT9mlgByBs7WxoEIYeA.roa (raw, json)
Hash identifier: TEWSgvGaHJQ5IfDjkxWJklWTfJOFwYQSUSDT1GXCRm0=
Subject key identifier: E3:4C:90:E2:26:63:0D:3F:66:96:00:72:06:CE:D6:C6:81:08:61:E0
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A5FDD2C82F697075D5D97574D61B3A086
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/40yQ4iZjDT9mlgByBs7WxoEIYeA.roa
Signing time: Mon 04 Sep 2023 11:04:04 +0000
ROA not before: Mon 04 Sep 2023 11:04:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201942
IP address blocks: 91.235.41.0/24 maxlen: 24
91.235.40.0/24 maxlen: 24
185.201.152.0/22 maxlen: 24
185.204.244.0/22 maxlen: 24
45.137.160.0/22 maxlen: 24
45.147.104.0/22 maxlen: 24
185.224.220.0/22 maxlen: 24
185.245.32.0/23 maxlen: 23
45.147.116.0/22 maxlen: 24
185.107.152.0/22 maxlen: 24
185.124.108.0/22 maxlen: 24
212.80.208.0/22 maxlen: 24
185.232.8.0/22 maxlen: 24
193.26.152.0/22 maxlen: 24
91.238.239.0/24 maxlen: 24
109.230.250.0/24 maxlen: 24
93.92.228.0/22 maxlen: 24
31.170.100.0/22 maxlen: 24
185.163.168.0/22 maxlen: 24
185.220.240.0/22 maxlen: 24
185.227.176.0/22 maxlen: 24
185.106.124.0/22 maxlen: 24
185.150.78.0/23 maxlen: 24
193.8.112.0/22 maxlen: 24
81.21.228.0/22 maxlen: 24
109.230.194.0/24 maxlen: 24
185.204.108.0/24 maxlen: 24
95.214.144.0/22 maxlen: 24
185.224.184.0/22 maxlen: 24
185.218.16.0/22 maxlen: 24
185.197.216.0/22 maxlen: 24
185.227.204.0/24 maxlen: 24
185.221.16.0/22 maxlen: 24
185.200.228.0/22 maxlen: 24
185.163.232.0/22 maxlen: 24
185.166.36.0/22 maxlen: 24
185.247.4.0/24 maxlen: 24
185.230.48.0/22 maxlen: 24
194.38.56.0/22 maxlen: 24
185.230.64.0/22 maxlen: 24
85.115.192.0/22 maxlen: 24
193.105.66.0/24 maxlen: 24
185.239.255.0/24 maxlen: 24
93.189.123.0/24 maxlen: 24
93.189.120.0/24 maxlen: 24
193.17.180.0/22 maxlen: 24
85.31.60.0/22 maxlen: 24
45.159.76.0/22 maxlen: 24
194.41.118.0/24 maxlen: 24
194.41.116.0/22 maxlen: 24
185.105.232.0/22 maxlen: 24
194.35.40.0/24 maxlen: 24
185.217.12.0/22 maxlen: 24
185.223.220.0/22 maxlen: 24
185.176.188.0/22 maxlen: 24
185.166.172.0/22 maxlen: 24
193.35.88.0/22 maxlen: 24
185.119.48.0/22 maxlen: 24
185.179.228.0/22 maxlen: 24
185.179.232.0/22 maxlen: 24
185.129.104.0/22 maxlen: 24
185.128.52.0/22 maxlen: 24
185.118.52.0/23 maxlen: 23
185.118.54.0/23 maxlen: 23
185.226.8.0/22 maxlen: 24
185.212.84.0/22 maxlen: 24
195.182.13.0/24 maxlen: 24
212.115.44.0/22 maxlen: 24
185.105.12.0/22 maxlen: 24
185.202.204.0/22 maxlen: 24
45.81.152.0/22 maxlen: 24
185.196.42.0/24 maxlen: 24
185.196.43.0/24 maxlen: 24
185.196.40.0/22 maxlen: 24
185.239.252.0/22 maxlen: 24
185.239.253.0/24 maxlen: 24
185.239.252.0/24 maxlen: 24
185.175.152.0/22 maxlen: 24
185.222.188.0/22 maxlen: 24
185.226.28.0/22 maxlen: 24
185.199.44.0/22 maxlen: 24
185.199.52.0/22 maxlen: 24
185.91.108.0/22 maxlen: 24
88.135.64.0/22 maxlen: 24
185.162.52.0/22 maxlen: 24
185.216.28.0/22 maxlen: 24
185.189.64.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Oct 2023 11:19:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5f:dd:2c:82:f6:97:07:5d:5d:97:57:4d:61:b3:a0:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 4 11:04:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e34c90e226630d3f6696007206ced6c6810861e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ae:ad:96:e1:6b:74:83:72:e3:20:97:0c:22:
57:47:e9:a3:d1:a5:41:3d:85:b4:db:a3:1d:73:0b:
11:7d:f4:32:10:86:7f:0b:de:53:42:b1:e7:3e:7c:
c2:24:f8:d0:09:91:86:38:e9:f8:fb:2f:8c:2c:f1:
1c:78:1f:79:64:45:2c:2d:78:91:c5:db:66:91:f3:
a5:b8:b0:7f:56:10:4b:9b:40:a1:e8:e3:94:7f:a9:
02:49:cc:13:91:a1:bf:e0:ca:71:58:29:ca:d1:e8:
96:ae:98:b4:9f:48:03:ef:a5:61:0d:a2:7d:83:1c:
98:57:0f:9d:14:f2:64:71:1f:b0:cd:1b:58:01:40:
13:db:d2:d1:b8:73:e7:ee:40:4d:eb:5d:e5:f2:4b:
7d:bf:d0:02:df:6e:37:8c:34:28:57:e6:a6:80:cf:
74:e4:41:54:c1:f4:11:c8:9c:cb:96:a6:68:d8:c5:
b7:39:e8:a6:a9:ab:aa:e6:c5:70:2e:86:89:44:8b:
e2:25:67:0e:d9:60:3c:58:53:87:57:9b:57:d9:61:
ce:aa:bb:bf:9b:4f:b3:b4:92:d7:42:13:03:01:5f:
b1:e4:23:05:e3:ec:ea:32:ec:3c:13:6b:ed:14:fc:
1a:0f:51:fa:8e:a9:db:04:93:2b:78:b9:3e:b6:92:
fe:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:4C:90:E2:26:63:0D:3F:66:96:00:72:06:CE:D6:C6:81:08:61:E0
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/40yQ4iZjDT9mlgByBs7WxoEIYeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.100.0/22
45.81.152.0/22
45.137.160.0/22
45.147.104.0/22
45.147.116.0/22
45.159.76.0/22
81.21.228.0/22
85.31.60.0/22
85.115.192.0/22
88.135.64.0/22
91.235.40.0/23
91.238.239.0/24
93.92.228.0/22
93.189.120.0/24
93.189.123.0/24
95.214.144.0/22
109.230.194.0/24
109.230.250.0/24
185.91.108.0/22
185.105.12.0/22
185.105.232.0/22
185.106.124.0/22
185.107.152.0/22
185.118.52.0/22
185.119.48.0/22
185.124.108.0/22
185.128.52.0/22
185.129.104.0/22
185.150.78.0/23
185.162.52.0/22
185.163.168.0/22
185.163.232.0/22
185.166.36.0/22
185.166.172.0/22
185.175.152.0/22
185.176.188.0/22
185.179.228.0-185.179.235.255
185.189.64.0/22
185.196.40.0/22
185.197.216.0/22
185.199.44.0/22
185.199.52.0/22
185.200.228.0/22
185.201.152.0/22
185.202.204.0/22
185.204.108.0/24
185.204.244.0/22
185.212.84.0/22
185.216.28.0/22
185.217.12.0/22
185.218.16.0/22
185.220.240.0/22
185.221.16.0/22
185.222.188.0/22
185.223.220.0/22
185.224.184.0/22
185.224.220.0/22
185.226.8.0/22
185.226.28.0/22
185.227.176.0/22
185.227.204.0/24
185.230.48.0/22
185.230.64.0/22
185.232.8.0/22
185.239.252.0/22
185.245.32.0/23
185.247.4.0/24
193.8.112.0/22
193.17.180.0/22
193.26.152.0/22
193.35.88.0/22
193.105.66.0/24
194.35.40.0/24
194.38.56.0/22
194.41.116.0/22
195.182.13.0/24
212.80.208.0/22
212.115.44.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:58:61:8b:19:f1:0d:96:aa:27:80:af:8d:ae:02:db:55:6a:
03:f1:ac:24:49:6a:cd:a1:73:b5:c5:bd:a9:6d:8d:af:3b:5d:
cd:15:4e:4d:69:d8:9b:a2:e7:b7:fe:de:ee:34:68:c9:fb:08:
74:7f:fe:ae:a0:6a:01:08:d1:6f:61:58:a8:3f:61:6f:ce:f6:
62:85:65:8d:f0:75:97:d4:a6:08:a1:2f:55:56:9e:5b:a4:09:
34:a2:77:90:cf:78:12:59:be:01:2b:3b:18:dd:6d:74:11:be:
0a:6b:32:ce:37:2d:fa:4e:dd:bb:28:78:7b:c9:83:b6:c8:76:
11:e0:43:38:15:86:0a:ff:32:bf:4b:4c:78:fb:66:91:b1:d3:
ab:28:57:b2:f9:ea:1d:78:f3:d8:07:1a:92:35:09:01:10:04:
64:79:8f:7a:9d:0e:72:47:f4:60:6a:6d:51:7c:c9:ab:19:55:
fa:2e:0d:b9:5e:79:84:d5:67:23:70:95:eb:fc:d5:80:3f:33:
06:9d:32:32:00:d3:5f:63:a2:02:f0:f4:43:a8:fa:73:58:11:
16:a0:33:1a:74:28:59:d6:ba:fd:1b:5b:bb:f2:c8:1e:48:3f:
55:3e:59:ee:49:67:fe:a9:fa:c1:32:b0:fa:6b:93:ca:96:0d:
7f:69:23:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org