Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ocsuLuledzkhKa9GynNmkyoipgk.roa
File: ocsuLuledzkhKa9GynNmkyoipgk.roa (raw, json)
Hash identifier: T7iqIwOskmzkF2QTiF41ku6xqgvVKPuhwXrMd3mSR8k=
Subject key identifier: A1:CB:2E:2E:E9:5E:77:39:21:29:AF:46:CA:73:66:93:2A:22:A6:09
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0188D2C76A0E0CFDA5B26CB735F2D5521889
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ocsuLuledzkhKa9GynNmkyoipgk.roa
Signing time: Mon 19 Jun 2023 08:31:04 +0000
ROA not before: Mon 19 Jun 2023 08:31:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201942
IP address blocks: 91.235.41.0/24 maxlen: 24
91.235.40.0/24 maxlen: 24
185.201.152.0/22 maxlen: 24
185.204.244.0/22 maxlen: 24
45.137.160.0/22 maxlen: 24
45.147.104.0/22 maxlen: 24
185.224.220.0/22 maxlen: 24
185.245.32.0/23 maxlen: 23
45.147.116.0/22 maxlen: 24
185.107.152.0/22 maxlen: 24
185.124.108.0/22 maxlen: 24
212.80.208.0/22 maxlen: 24
185.232.8.0/22 maxlen: 24
193.26.152.0/22 maxlen: 24
109.230.250.0/24 maxlen: 24
93.92.228.0/22 maxlen: 24
31.170.100.0/22 maxlen: 24
185.163.168.0/22 maxlen: 24
185.220.240.0/22 maxlen: 24
185.227.176.0/22 maxlen: 24
185.106.124.0/22 maxlen: 24
185.150.78.0/23 maxlen: 24
193.8.112.0/22 maxlen: 24
81.21.228.0/22 maxlen: 24
109.230.194.0/24 maxlen: 24
95.214.144.0/22 maxlen: 24
185.224.184.0/22 maxlen: 24
185.218.16.0/22 maxlen: 24
185.197.216.0/22 maxlen: 24
185.227.204.0/24 maxlen: 24
185.221.16.0/22 maxlen: 24
185.200.228.0/22 maxlen: 24
185.163.232.0/22 maxlen: 24
185.166.36.0/22 maxlen: 24
185.247.4.0/24 maxlen: 24
185.230.48.0/22 maxlen: 24
194.38.56.0/22 maxlen: 24
185.230.52.0/22 maxlen: 24
185.230.64.0/22 maxlen: 24
85.115.192.0/22 maxlen: 24
185.239.255.0/24 maxlen: 24
93.189.123.0/24 maxlen: 24
93.189.120.0/24 maxlen: 24
193.17.180.0/22 maxlen: 24
85.31.60.0/22 maxlen: 24
45.159.76.0/22 maxlen: 24
185.223.80.0/22 maxlen: 24
194.41.118.0/24 maxlen: 24
194.41.116.0/22 maxlen: 24
185.105.232.0/22 maxlen: 24
194.35.40.0/24 maxlen: 24
185.217.12.0/22 maxlen: 24
185.223.220.0/22 maxlen: 24
185.176.188.0/22 maxlen: 24
185.166.172.0/22 maxlen: 24
193.35.88.0/22 maxlen: 24
185.119.48.0/22 maxlen: 24
185.179.228.0/22 maxlen: 24
185.179.232.0/22 maxlen: 24
185.129.104.0/22 maxlen: 24
185.250.180.0/22 maxlen: 24
185.128.52.0/22 maxlen: 24
185.118.52.0/23 maxlen: 23
185.118.54.0/23 maxlen: 23
185.226.8.0/22 maxlen: 24
185.212.84.0/22 maxlen: 24
212.115.44.0/22 maxlen: 24
185.105.12.0/22 maxlen: 24
185.202.204.0/22 maxlen: 24
45.81.152.0/22 maxlen: 24
185.196.42.0/24 maxlen: 24
185.196.43.0/24 maxlen: 24
185.196.40.0/22 maxlen: 24
185.239.252.0/22 maxlen: 24
185.239.253.0/24 maxlen: 24
185.239.252.0/24 maxlen: 24
185.175.152.0/22 maxlen: 24
185.222.188.0/22 maxlen: 24
185.226.28.0/22 maxlen: 24
185.199.44.0/22 maxlen: 24
185.199.52.0/22 maxlen: 24
185.91.108.0/22 maxlen: 24
88.135.64.0/22 maxlen: 24
185.162.52.0/22 maxlen: 24
185.216.28.0/22 maxlen: 24
185.189.64.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Jun 2023 13:23:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d2:c7:6a:0e:0c:fd:a5:b2:6c:b7:35:f2:d5:52:18:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jun 19 08:31:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a1cb2e2ee95e77392129af46ca7366932a22a609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e8:b3:87:96:5f:94:2e:f0:bd:88:b7:e1:dd:
49:db:7f:67:5d:b9:77:06:a4:78:25:e2:9e:0c:91:
77:47:d7:57:d1:c4:6a:b1:3b:b0:f3:b2:74:b8:c6:
01:7a:cb:7f:fe:9f:f8:00:da:e3:4c:5d:44:af:2e:
cc:a7:16:b7:19:a7:34:cf:8d:73:7e:70:6b:cc:fc:
9e:51:2d:22:48:50:96:b0:55:57:a9:6d:68:24:6d:
97:9d:e0:3d:43:b6:44:5f:a8:bf:09:e1:9d:32:43:
7b:1b:91:29:35:5c:66:ba:33:b5:48:5b:6b:8f:0e:
33:c5:ea:83:76:d2:ea:2f:e0:94:96:9e:a8:43:fc:
ea:21:b7:26:78:af:f0:b0:44:73:d6:a5:fe:92:96:
fd:50:2a:21:41:2c:96:18:78:59:14:b2:28:0d:11:
1c:1d:cb:89:5a:80:85:88:ad:ad:7a:d6:90:0c:8f:
a3:10:de:02:ee:37:07:8f:66:d6:4b:3b:3f:34:a2:
34:7b:d3:15:c3:99:f4:85:2c:a2:04:ac:12:7b:4f:
9c:56:9c:2b:fc:49:d5:03:1a:da:a4:34:a7:26:d8:
ea:35:e6:43:af:91:c3:b0:21:b7:76:d5:d6:2b:bd:
47:38:7c:fa:c2:31:54:b4:f1:ab:d7:87:2a:fa:0e:
3a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:CB:2E:2E:E9:5E:77:39:21:29:AF:46:CA:73:66:93:2A:22:A6:09
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ocsuLuledzkhKa9GynNmkyoipgk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.100.0/22
45.81.152.0/22
45.137.160.0/22
45.147.104.0/22
45.147.116.0/22
45.159.76.0/22
81.21.228.0/22
85.31.60.0/22
85.115.192.0/22
88.135.64.0/22
91.235.40.0/23
93.92.228.0/22
93.189.120.0/24
93.189.123.0/24
95.214.144.0/22
109.230.194.0/24
109.230.250.0/24
185.91.108.0/22
185.105.12.0/22
185.105.232.0/22
185.106.124.0/22
185.107.152.0/22
185.118.52.0/22
185.119.48.0/22
185.124.108.0/22
185.128.52.0/22
185.129.104.0/22
185.150.78.0/23
185.162.52.0/22
185.163.168.0/22
185.163.232.0/22
185.166.36.0/22
185.166.172.0/22
185.175.152.0/22
185.176.188.0/22
185.179.228.0-185.179.235.255
185.189.64.0/22
185.196.40.0/22
185.197.216.0/22
185.199.44.0/22
185.199.52.0/22
185.200.228.0/22
185.201.152.0/22
185.202.204.0/22
185.204.244.0/22
185.212.84.0/22
185.216.28.0/22
185.217.12.0/22
185.218.16.0/22
185.220.240.0/22
185.221.16.0/22
185.222.188.0/22
185.223.80.0/22
185.223.220.0/22
185.224.184.0/22
185.224.220.0/22
185.226.8.0/22
185.226.28.0/22
185.227.176.0/22
185.227.204.0/24
185.230.48.0/21
185.230.64.0/22
185.232.8.0/22
185.239.252.0/22
185.245.32.0/23
185.247.4.0/24
185.250.180.0/22
193.8.112.0/22
193.17.180.0/22
193.26.152.0/22
193.35.88.0/22
194.35.40.0/24
194.38.56.0/22
194.41.116.0/22
212.80.208.0/22
212.115.44.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:20:cd:66:53:b5:b3:5b:4f:7e:9b:b8:20:3f:9d:f6:38:0e:
d6:d4:b2:f9:af:4a:52:c1:d1:5d:34:49:11:bb:8d:4e:e1:61:
6c:16:1e:9e:0a:0f:c6:47:7f:fd:f9:70:6b:b3:5c:35:e9:d9:
82:36:a2:a5:55:af:37:7c:6a:5e:98:ff:4e:d7:95:c9:6f:e8:
68:1b:2e:67:d5:43:0a:9f:e2:c3:fb:0b:65:b7:63:ae:03:c1:
b6:e6:0c:51:98:6b:a9:79:12:95:19:96:62:af:3f:62:cb:8a:
50:5b:a5:c4:5a:8e:ed:dc:8d:56:9f:10:5a:9a:4f:1f:ce:8d:
75:90:ae:f9:e4:09:0b:0b:99:e0:59:62:6f:35:9d:75:42:9d:
2e:06:d5:4e:44:d1:28:af:b3:a8:2e:4e:13:bf:2d:7a:06:01:
09:41:cd:50:81:ed:fe:18:63:37:17:48:e1:0c:4f:bf:8f:64:
4a:8e:8b:ba:f0:11:e4:e0:24:63:4d:6d:ce:b0:bd:7b:8e:93:
45:7f:66:54:19:04:23:21:4f:09:11:ad:a9:df:7f:60:b8:bd:
f3:08:58:90:5c:d4:52:4b:17:1f:75:72:2a:67:15:7e:72:e5:
6b:8f:ea:7f:f8:bd:90:17:81:1c:f9:a8:e8:7d:49:ef:c2:d8:
6f:de:f9:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org