Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/81OwuK6cz_22FKwoz1EyJAj5WeU.roa
File: 81OwuK6cz_22FKwoz1EyJAj5WeU.roa (raw, json)
Hash identifier: 3aJtGPnS9DT4MEQ3pJlhx6a6ucIFlihVCvIJI///IUU=
Subject key identifier: F3:53:B0:B8:AE:9C:CF:FD:B6:14:AC:28:CF:51:32:24:08:F9:59:E5
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 01899B5DDAFCFC11AE8C695B39A9A7F2C53B
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/81OwuK6cz_22FKwoz1EyJAj5WeU.roa
Signing time: Fri 28 Jul 2023 07:19:26 +0000
ROA not before: Fri 28 Jul 2023 07:19:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57344
IP address blocks: 79.124.0.0/24 maxlen: 24
217.174.150.0/24 maxlen: 24
79.124.15.0/24 maxlen: 24
217.174.154.0/24 maxlen: 24
217.174.159.0/24 maxlen: 24
79.124.20.0/23 maxlen: 23
79.124.24.0/22 maxlen: 24
79.124.23.0/24 maxlen: 24
79.124.28.0/24 maxlen: 24
79.124.51.0/24 maxlen: 24
79.124.50.0/24 maxlen: 24
79.124.73.0/24 maxlen: 24
79.124.74.0/24 maxlen: 24
79.124.79.0/24 maxlen: 24
79.124.82.0/24 maxlen: 24
94.72.145.0/24 maxlen: 24
94.72.148.0/22 maxlen: 24
94.72.159.0/24 maxlen: 24
94.72.158.0/24 maxlen: 24
82.118.246.0/23 maxlen: 23
82.118.244.0/24 maxlen: 24
178.132.80.0/24 maxlen: 24
178.132.84.0/23 maxlen: 24
178.132.82.0/23 maxlen: 24
178.132.81.0/24 maxlen: 24
82.118.224.0/24 maxlen: 24
82.118.236.0/24 maxlen: 24
82.118.238.0/24 maxlen: 24
5.104.168.0/23 maxlen: 23
78.128.67.0/24 maxlen: 24
5.104.174.0/24 maxlen: 24
78.128.72.0/24 maxlen: 24
78.128.79.0/24 maxlen: 24
91.148.140.0/24 maxlen: 24
78.128.92.0/24 maxlen: 24
78.128.94.0/24 maxlen: 24
78.128.98.0/24 maxlen: 24
130.185.229.0/24 maxlen: 24
130.185.236.0/24 maxlen: 24
130.185.235.0/24 maxlen: 24
130.185.237.0/24 maxlen: 24
78.142.34.0/24 maxlen: 24
78.142.33.0/24 maxlen: 24
130.185.250.0/24 maxlen: 24
130.185.248.0/24 maxlen: 24
78.142.60.0/24 maxlen: 24
185.148.160.0/22 maxlen: 22
91.148.160.0/24 maxlen: 24
78.128.108.0/23 maxlen: 23
78.142.1.0/24 maxlen: 24
78.142.4.0/23 maxlen: 23
78.142.17.0/24 maxlen: 24
130.185.224.0/24 maxlen: 24
78.142.20.0/24 maxlen: 24
78.142.24.0/24 maxlen: 24
2a01:8740::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 13 Sep 2023 13:57:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9b:5d:da:fc:fc:11:ae:8c:69:5b:39:a9:a7:f2:c5:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Jul 28 07:19:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f353b0b8ae9ccffdb614ac28cf51322408f959e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:51:cc:37:ff:11:81:ad:3b:c0:7d:5c:ca:3d:
8c:f0:23:9b:83:31:7e:a0:65:fa:45:33:2e:a4:14:
6e:d5:ce:2d:af:bc:fd:68:8c:1b:72:1f:e0:31:f1:
b5:29:02:8c:51:7e:e6:f1:56:34:26:ed:f8:27:e6:
e8:4b:38:79:d5:10:ec:0e:09:01:8f:d0:60:b3:50:
32:38:8b:77:21:1b:e3:0c:3a:1f:63:8d:84:65:27:
d8:47:2c:02:5e:ed:24:79:d3:1d:71:38:de:7a:b6:
b9:ef:fa:ee:f6:00:6d:5e:58:ff:27:89:ce:7f:83:
a1:15:05:b9:fe:db:09:6d:c3:cd:2f:8e:c3:90:8d:
65:62:57:9a:85:77:65:78:d7:e4:d7:ca:e2:c3:c4:
3e:db:eb:f3:36:17:00:04:73:1e:2b:2d:54:77:6a:
f9:43:25:6a:87:79:b7:20:db:7f:78:23:e7:eb:b6:
30:79:4b:87:5a:0a:db:4e:fb:51:81:01:2f:db:36:
6a:3a:64:4a:83:ba:b2:88:0a:e6:fd:ef:09:dc:2c:
d1:5e:01:66:d0:ef:a4:a0:2d:c3:9c:6b:13:04:17:
b5:0f:ee:e7:97:92:d4:f4:2f:f0:c2:5e:25:7e:62:
53:4b:e4:6c:de:5c:43:55:83:09:56:5e:79:85:b1:
74:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:53:B0:B8:AE:9C:CF:FD:B6:14:AC:28:CF:51:32:24:08:F9:59:E5
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/81OwuK6cz_22FKwoz1EyJAj5WeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.168.0/23
5.104.174.0/24
78.128.67.0/24
78.128.72.0/24
78.128.79.0/24
78.128.92.0/24
78.128.94.0/24
78.128.98.0/24
78.128.108.0/23
78.142.1.0/24
78.142.4.0/23
78.142.17.0/24
78.142.20.0/24
78.142.24.0/24
78.142.33.0-78.142.34.255
78.142.60.0/24
79.124.0.0/24
79.124.15.0/24
79.124.20.0/23
79.124.23.0-79.124.28.255
79.124.50.0/23
79.124.73.0-79.124.74.255
79.124.79.0/24
79.124.82.0/24
82.118.224.0/24
82.118.236.0/24
82.118.238.0/24
82.118.244.0/24
82.118.246.0/23
91.148.140.0/24
91.148.160.0/24
94.72.145.0/24
94.72.148.0/22
94.72.158.0/23
130.185.224.0/24
130.185.229.0/24
130.185.235.0-130.185.237.255
130.185.248.0/24
130.185.250.0/24
178.132.80.0-178.132.85.255
185.148.160.0/22
217.174.150.0/24
217.174.154.0/24
217.174.159.0/24
IPv6:
2a01:8740::/32
Signature Algorithm: sha256WithRSAEncryption
91:23:82:b0:68:ee:e9:9f:68:a2:9a:d0:ab:24:84:81:da:39:
25:83:20:3b:dd:7a:97:4b:16:81:a8:9c:cb:4d:c0:68:4a:fd:
26:71:e8:cd:19:9e:85:87:97:43:b2:45:24:e7:08:90:5b:88:
b9:a5:f6:12:fa:7a:6e:c5:f7:9b:40:20:85:af:aa:8b:95:10:
1a:cd:9b:e3:38:02:2f:9f:c1:36:62:52:07:31:55:7d:4c:12:
4e:a5:a3:47:0d:d1:b7:8e:1c:cf:d5:dd:91:37:50:3f:82:88:
84:e7:57:42:96:3f:60:cb:de:ca:55:37:42:eb:a3:ab:42:53:
83:ea:be:f8:8f:74:a2:16:40:6d:48:bd:d1:1e:c6:0e:38:00:
c3:7e:c8:fa:11:d2:38:33:75:5c:72:c3:6d:f3:0a:49:4d:58:
5f:2a:1c:3f:88:83:da:0a:2f:dc:ff:32:6f:dc:d2:61:1e:41:
68:d8:2a:67:1b:01:27:00:f9:41:48:35:18:6d:b3:51:8f:e2:
51:25:4c:eb:87:fd:a9:f7:81:d6:65:a3:2a:33:96:b4:80:11:
e7:b7:99:74:c6:15:c0:90:33:2d:05:e8:00:5e:8c:9b:60:a1:
47:2a:1e:36:2d:3b:ac:cd:ce:91:f2:77:3c:5f:a6:88:af:25:
e0:c6:f3:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:12 2024 by rpki-client on console-ams.rpki-client.org