Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/p2bpwx7mYLU3RMS4ytDF_IQSDrs.roa
File: p2bpwx7mYLU3RMS4ytDF_IQSDrs.roa (raw, json)
Hash identifier: /BpyOsklyJWh3ji2n/3k6UfSvjUWwk7a6FotShi1gFw=
Subject key identifier: A7:66:E9:C3:1E:E6:60:B5:37:44:C4:B8:CA:D0:C5:FC:84:12:0E:BB
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 018570FBB91B2BB3A86F271938960949815F
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/p2bpwx7mYLU3RMS4ytDF_IQSDrs.roa
Signing time: Mon 02 Jan 2023 05:37:03 +0000
ROA not before: Mon 02 Jan 2023 05:37:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34549
IP address blocks: 83.243.45.114/32 maxlen: 32
178.251.225.0/24 maxlen: 32
178.251.224.0/22 maxlen: 32
178.251.224.0/21 maxlen: 21
178.251.230.0/24 maxlen: 32
178.251.229.0/24 maxlen: 32
178.251.228.0/23 maxlen: 32
178.251.230.0/23 maxlen: 32
80.77.16.0/20 maxlen: 32
80.77.16.0/24 maxlen: 32
185.90.161.0/24 maxlen: 32
185.90.160.0/24 maxlen: 32
185.90.162.0/24 maxlen: 32
185.90.160.0/22 maxlen: 32
83.243.46.83/32 maxlen: 32
80.77.31.254/32 maxlen: 32
185.150.96.0/22 maxlen: 32
5.1.64.0/24 maxlen: 32
5.1.64.0/20 maxlen: 32
5.1.64.0/19 maxlen: 32
45.155.248.0/22 maxlen: 22
5.1.66.0/24 maxlen: 32
5.1.65.0/24 maxlen: 32
5.1.67.0/24 maxlen: 32
5.1.70.0/24 maxlen: 32
94.247.40.0/21 maxlen: 32
94.247.46.0/24 maxlen: 32
94.247.45.0/24 maxlen: 32
5.1.72.0/24 maxlen: 32
5.1.76.0/24 maxlen: 32
5.1.73.0/24 maxlen: 32
5.1.82.0/24 maxlen: 32
5.1.85.0/24 maxlen: 32
5.1.84.0/24 maxlen: 32
5.1.91.0/24 maxlen: 32
5.1.86.0/24 maxlen: 32
5.1.90.0/24 maxlen: 32
5.1.89.0/24 maxlen: 32
5.1.87.0/24 maxlen: 32
5.1.94.0/23 maxlen: 32
5.1.93.0/24 maxlen: 32
5.1.94.0/24 maxlen: 32
83.243.40.0/21 maxlen: 32
185.44.107.0/24 maxlen: 32
185.44.106.0/24 maxlen: 32
83.243.44.0/24 maxlen: 32
83.243.47.0/24 maxlen: 32
83.243.46.0/24 maxlen: 32
83.243.45.0/24 maxlen: 32
195.10.195.0/24 maxlen: 32
31.47.232.0/21 maxlen: 32
185.37.144.0/22 maxlen: 32
185.37.145.0/24 maxlen: 32
185.37.147.0/24 maxlen: 32
185.44.104.0/22 maxlen: 32
2a01:360::/29 maxlen: 29
2a0f:b80::/29 maxlen: 29
2a01:360::/32 maxlen: 32
2a07:6fc0::/29 maxlen: 48
2a00:f820::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:b9:1b:2b:b3:a8:6f:27:19:38:96:09:49:81:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 2 05:37:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a766e9c31ee660b53744c4b8cad0c5fc84120ebb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ce:e1:13:62:4c:69:b6:54:eb:ba:7c:4a:1b:
95:c1:85:2f:66:8a:a7:60:74:ff:5b:c8:c1:e0:65:
23:27:f0:fd:0b:8b:00:4b:ba:34:5b:ab:ef:53:38:
0c:35:51:76:eb:b8:bb:48:12:86:47:3f:c6:6d:20:
15:ea:ac:38:92:23:df:d1:a5:30:74:6c:a9:9c:07:
eb:fd:d9:be:c2:52:b0:f0:82:0b:5d:c2:58:c8:78:
25:61:a0:cb:69:c9:c6:3e:ec:27:95:0b:3c:8a:90:
b5:37:03:d5:d8:9f:86:ef:54:84:18:da:1b:84:44:
1d:f4:65:ad:ca:54:cf:30:97:49:e1:79:ae:1c:68:
e6:4c:e8:fd:d4:1e:f9:2f:9f:13:a5:85:a3:aa:e3:
13:3f:98:76:42:3d:6e:85:aa:70:39:a7:26:ec:cf:
e7:ec:5b:08:fe:dd:25:04:ea:74:cb:e9:e0:22:fb:
1d:e0:ae:cb:7b:ea:8e:6f:d0:40:c8:2d:23:26:f3:
36:4d:e3:9c:cf:76:34:52:d5:2f:07:92:2b:40:0c:
28:92:79:4e:67:d1:d7:22:6f:81:eb:9b:35:09:d1:
40:19:b0:a0:6a:6a:1b:6e:8d:a6:89:df:e3:4c:23:
99:5b:d2:9d:af:14:a0:db:fb:64:89:54:8e:00:68:
59:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:66:E9:C3:1E:E6:60:B5:37:44:C4:B8:CA:D0:C5:FC:84:12:0E:BB
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/p2bpwx7mYLU3RMS4ytDF_IQSDrs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.64.0/19
31.47.232.0/21
45.155.248.0/22
80.77.16.0/20
83.243.40.0/21
94.247.40.0/21
178.251.224.0/21
185.37.144.0/22
185.44.104.0/22
185.90.160.0/22
185.150.96.0/22
195.10.195.0/24
IPv6:
2a00:f820::/29
2a01:360::/29
2a07:6fc0::/29
2a0f:b80::/29
Signature Algorithm: sha256WithRSAEncryption
3c:7c:a3:27:9a:32:42:ac:6e:4a:c1:c4:e4:7a:78:e6:b6:46:
ba:88:b1:f1:d4:59:d1:9e:c0:c5:9b:d4:c2:12:59:b8:42:34:
98:79:2a:52:04:70:08:11:14:d0:56:56:a8:59:52:ca:6d:ed:
81:29:47:0e:08:11:1f:a7:58:e1:6c:51:00:74:45:e4:c2:16:
3e:08:5e:93:9d:8f:2e:df:13:0a:c5:20:06:ad:a9:71:ee:be:
4a:c6:96:f1:4e:c4:c7:54:7d:f1:8e:99:a6:ce:70:10:5f:c2:
67:cd:b0:2c:64:34:21:5b:34:d8:8f:d6:8e:49:e5:9b:80:fb:
04:0a:c5:61:52:04:83:59:8c:55:0c:96:15:0c:d7:05:30:6e:
7d:93:1e:69:87:b5:2e:fc:df:02:0f:8f:c8:7f:2b:14:92:e7:
55:7d:40:87:e9:be:f0:fc:34:90:d5:f6:49:34:c4:07:79:2c:
52:89:42:90:eb:8f:00:6a:24:31:c3:3e:3d:d1:57:2f:c3:c0:
28:be:28:b0:f0:67:98:74:8c:9f:09:e4:b5:7f:2f:4a:f8:80:
9d:87:97:5f:15:5f:3b:e8:ef:c7:e4:19:25:ad:40:5f:47:13:
79:45:2b:4a:fb:48:47:78:9c:72:9c:7e:ca:56:be:99:99:7d:
5b:b2:0e:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:45 2024 by rpki-client on console-fra.rpki-client.org