Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/IvJHY-BCIkBvw8L80Q8-wC1mwAk.roa
File: IvJHY-BCIkBvw8L80Q8-wC1mwAk.roa (raw, json)
Hash identifier: 5usQFt1HuyfMhiBhCVkLYjQowRhB+LD8qbxkc/v5l5U=
Subject key identifier: 22:F2:47:63:E0:42:22:40:6F:C3:C2:FC:D1:0F:3E:C0:2D:66:C0:09
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 018C4879BB9BC8240B31092FDE8C00E73812
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/IvJHY-BCIkBvw8L80Q8-wC1mwAk.roa
Signing time: Fri 08 Dec 2023 08:09:46 +0000
ROA not before: Fri 08 Dec 2023 08:09:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57344
IP address blocks: 79.124.0.0/24 maxlen: 24
217.174.150.0/24 maxlen: 24
79.124.15.0/24 maxlen: 24
217.174.154.0/24 maxlen: 24
217.174.159.0/24 maxlen: 24
79.124.20.0/23 maxlen: 23
79.124.24.0/22 maxlen: 24
79.124.23.0/24 maxlen: 24
79.124.28.0/24 maxlen: 24
79.124.51.0/24 maxlen: 24
79.124.50.0/24 maxlen: 24
79.124.73.0/24 maxlen: 24
79.124.74.0/24 maxlen: 24
79.124.79.0/24 maxlen: 24
79.124.82.0/24 maxlen: 24
77.76.0.0/21 maxlen: 24
77.76.10.0/24 maxlen: 24
77.76.8.0/23 maxlen: 24
94.72.145.0/24 maxlen: 24
94.72.148.0/22 maxlen: 24
94.72.159.0/24 maxlen: 24
94.72.158.0/24 maxlen: 24
82.118.246.0/23 maxlen: 23
82.118.244.0/24 maxlen: 24
178.132.80.0/24 maxlen: 24
178.132.84.0/23 maxlen: 24
178.132.82.0/23 maxlen: 24
178.132.81.0/24 maxlen: 24
82.118.224.0/24 maxlen: 24
82.118.236.0/24 maxlen: 24
82.118.238.0/24 maxlen: 24
5.104.168.0/23 maxlen: 23
78.128.67.0/24 maxlen: 24
5.104.174.0/24 maxlen: 24
78.128.72.0/24 maxlen: 24
91.148.131.0/24 maxlen: 24
78.128.79.0/24 maxlen: 24
91.148.140.0/24 maxlen: 24
78.128.92.0/24 maxlen: 24
78.128.94.0/24 maxlen: 24
78.128.98.0/24 maxlen: 24
130.185.229.0/24 maxlen: 24
130.185.236.0/24 maxlen: 24
130.185.235.0/24 maxlen: 24
130.185.237.0/24 maxlen: 24
78.142.34.0/24 maxlen: 24
78.142.33.0/24 maxlen: 24
130.185.250.0/24 maxlen: 24
130.185.248.0/24 maxlen: 24
78.142.60.0/24 maxlen: 24
185.148.160.0/22 maxlen: 22
91.148.160.0/24 maxlen: 24
78.128.108.0/23 maxlen: 23
78.142.1.0/24 maxlen: 24
78.142.4.0/23 maxlen: 23
78.142.17.0/24 maxlen: 24
130.185.224.0/24 maxlen: 24
78.142.20.0/24 maxlen: 24
78.142.24.0/24 maxlen: 24
2a01:8740::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 12 Dec 2023 11:24:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:48:79:bb:9b:c8:24:0b:31:09:2f:de:8c:00:e7:38:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Dec 8 08:09:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22f24763e04222406fc3c2fcd10f3ec02d66c009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:55:3d:9d:ec:b7:c9:3d:d4:a1:a9:fa:74:aa:
32:1e:4f:16:0d:91:b5:23:bb:14:3b:c6:8b:50:70:
54:98:1d:42:17:1f:a3:a7:6c:fa:50:5a:20:be:78:
1d:a1:9e:d4:a3:ad:73:fd:b0:41:8a:f7:bf:eb:08:
81:08:c1:1c:8e:a8:d0:40:13:af:7e:79:24:90:8d:
dc:40:f4:15:3f:a0:2a:03:d2:44:72:61:e3:f2:52:
21:2f:41:ef:5d:90:45:f3:5b:fe:d2:2d:1d:19:d3:
a9:ea:25:25:74:68:a0:ef:11:fa:19:c7:42:cf:00:
f7:ef:65:55:ab:99:cc:65:80:25:dd:ec:14:22:89:
69:98:27:4f:64:01:c3:d5:bd:51:ed:08:f5:7d:17:
22:88:22:fb:ac:14:0e:db:5f:b9:1b:45:f3:95:20:
07:0f:2c:1f:46:25:51:d8:1b:33:7c:b4:60:8e:6e:
fa:8e:7c:2f:34:eb:37:6d:74:c4:f7:13:1d:e7:1b:
a6:5e:cb:12:b9:a2:d8:6f:25:10:4c:0f:1f:a5:63:
7d:67:4a:eb:b5:2a:a0:d9:22:5d:e3:61:d1:41:15:
d5:3c:d6:0f:68:39:f8:e5:74:5d:cb:82:0c:b5:f0:
e5:4d:a4:c2:96:ff:4e:23:c0:ab:7d:ef:01:af:8a:
58:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:F2:47:63:E0:42:22:40:6F:C3:C2:FC:D1:0F:3E:C0:2D:66:C0:09
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/IvJHY-BCIkBvw8L80Q8-wC1mwAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.168.0/23
5.104.174.0/24
77.76.0.0-77.76.10.255
78.128.67.0/24
78.128.72.0/24
78.128.79.0/24
78.128.92.0/24
78.128.94.0/24
78.128.98.0/24
78.128.108.0/23
78.142.1.0/24
78.142.4.0/23
78.142.17.0/24
78.142.20.0/24
78.142.24.0/24
78.142.33.0-78.142.34.255
78.142.60.0/24
79.124.0.0/24
79.124.15.0/24
79.124.20.0/23
79.124.23.0-79.124.28.255
79.124.50.0/23
79.124.73.0-79.124.74.255
79.124.79.0/24
79.124.82.0/24
82.118.224.0/24
82.118.236.0/24
82.118.238.0/24
82.118.244.0/24
82.118.246.0/23
91.148.131.0/24
91.148.140.0/24
91.148.160.0/24
94.72.145.0/24
94.72.148.0/22
94.72.158.0/23
130.185.224.0/24
130.185.229.0/24
130.185.235.0-130.185.237.255
130.185.248.0/24
130.185.250.0/24
178.132.80.0-178.132.85.255
185.148.160.0/22
217.174.150.0/24
217.174.154.0/24
217.174.159.0/24
IPv6:
2a01:8740::/32
Signature Algorithm: sha256WithRSAEncryption
77:7e:48:25:f2:4c:10:08:54:af:5c:cf:6d:bd:5b:35:13:f4:
32:0f:83:46:75:6c:e8:d7:d1:ec:3b:47:f5:6e:73:5d:2b:48:
c2:89:6f:29:28:c4:b6:09:f7:15:c7:d6:37:03:62:d6:86:53:
35:f1:51:5a:ce:59:46:99:bd:8d:2c:25:5d:63:65:26:28:bb:
04:bc:3e:e9:17:77:bf:af:f2:53:47:6a:19:18:ce:4c:3f:9f:
cd:e4:fd:11:22:15:5b:02:0d:f3:3e:09:e0:81:4d:8e:a3:1e:
06:9f:f7:46:3b:93:36:55:a9:63:60:f0:97:e3:08:34:ac:5d:
8d:14:03:a1:d1:a3:62:d0:46:ae:78:22:03:75:b3:03:bd:6c:
de:16:55:34:c4:d2:b7:38:fd:f1:20:93:48:29:19:6e:9a:d7:
42:fd:c1:6e:c0:e7:5d:04:58:6a:18:50:2a:8e:4e:83:cb:40:
4e:e9:c7:54:7e:43:63:6e:8c:89:a1:ec:ef:3c:8b:0c:bb:0e:
d4:50:52:a5:e4:1d:91:06:0f:48:92:f3:fe:82:a6:cb:f0:54:
c7:77:c4:92:99:fd:a2:ef:9f:29:00:ad:4b:d7:20:60:11:b2:
07:9e:a4:eb:35:0a:f7:3f:96:3b:1c:7c:2b:5a:5e:ea:ed:78:
4e:12:c7:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:12 2024 by rpki-client on console-ams.rpki-client.org