Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/009074-66f6-4d4d-974a-da2ec8cfb888/1/I397NkZhg3aX1oT98DsSr7kx7ds.roa
File: I397NkZhg3aX1oT98DsSr7kx7ds.roa (raw, json)
Hash identifier: rWAWO3WrwS1qQGZwO6S8BP8CGoZ1kXB/H64xCln3Nl8=
Subject key identifier: 23:7F:7B:36:46:61:83:76:97:D6:84:FD:F0:3B:12:AF:B9:31:ED:DB
Certificate issuer: /CN=81812385b82dda0fd4826abb7aefeb0df3eb8ffd
Certificate serial: 0185CEC73B4417E605A868F88E9CFF7BBEAD
Authority key identifier: 81:81:23:85:B8:2D:DA:0F:D4:82:6A:BB:7A:EF:EB:0D:F3:EB:8F:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gYEjhbgt2g_Ugmq7eu_rDfPrj_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/009074-66f6-4d4d-974a-da2ec8cfb888/1/I397NkZhg3aX1oT98DsSr7kx7ds.roa
Signing time: Fri 20 Jan 2023 10:44:01 +0000
ROA not before: Fri 20 Jan 2023 10:44:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21430
IP address blocks: 82.208.52.0/22 maxlen: 22
82.208.57.0/24 maxlen: 24
82.208.59.0/24 maxlen: 24
109.123.200.0/23 maxlen: 23
82.208.0.0/22 maxlen: 22
109.123.204.0/24 maxlen: 24
109.123.212.0/23 maxlen: 23
82.208.13.0/24 maxlen: 24
82.208.15.0/24 maxlen: 24
82.208.24.0/23 maxlen: 23
109.123.226.0/24 maxlen: 24
82.208.19.0/24 maxlen: 24
82.208.30.0/23 maxlen: 23
82.208.36.0/23 maxlen: 23
82.208.38.0/24 maxlen: 24
82.208.42.0/23 maxlen: 23
82.208.51.0/24 maxlen: 24
82.208.45.0/24 maxlen: 24
185.33.136.0/22 maxlen: 22
217.11.255.0/24 maxlen: 24
83.136.200.0/21 maxlen: 21
217.11.226.0/24 maxlen: 24
217.11.231.0/24 maxlen: 24
217.11.234.0/24 maxlen: 24
217.11.237.0/24 maxlen: 24
217.11.238.0/23 maxlen: 23
217.11.240.0/23 maxlen: 23
217.11.244.0/24 maxlen: 24
217.11.250.0/24 maxlen: 24
217.11.252.0/23 maxlen: 23
31.7.240.0/21 maxlen: 21
85.239.254.0/23 maxlen: 23
77.78.80.0/21 maxlen: 21
81.0.216.0/24 maxlen: 24
81.0.215.0/24 maxlen: 24
77.78.88.0/22 maxlen: 24
77.78.88.0/23 maxlen: 23
81.0.222.0/23 maxlen: 23
81.0.224.0/24 maxlen: 24
77.78.91.0/24 maxlen: 24
77.78.92.0/23 maxlen: 24
81.0.227.0/24 maxlen: 24
81.0.229.0/24 maxlen: 24
81.0.244.0/23 maxlen: 23
81.0.252.0/23 maxlen: 23
81.0.251.0/24 maxlen: 24
77.78.122.0/24 maxlen: 24
185.161.240.0/22 maxlen: 22
85.239.224.0/23 maxlen: 23
85.239.226.0/24 maxlen: 24
85.239.228.0/23 maxlen: 23
80.250.0.0/19 maxlen: 19
81.0.196.0/23 maxlen: 23
81.0.198.0/24 maxlen: 24
77.78.64.0/22 maxlen: 22
81.0.200.0/22 maxlen: 22
77.78.68.0/23 maxlen: 23
81.0.204.0/23 maxlen: 23
77.78.74.0/23 maxlen: 23
81.0.210.0/23 maxlen: 23
85.239.251.0/24 maxlen: 24
2a01:6400::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 03 Apr 2023 13:53:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ce:c7:3b:44:17:e6:05:a8:68:f8:8e:9c:ff:7b:be:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81812385b82dda0fd4826abb7aefeb0df3eb8ffd
Validity
Not Before: Jan 20 10:44:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=237f7b364661837697d684fdf03b12afb931eddb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:e4:6e:7f:18:38:0c:da:8a:73:b2:76:0c:2a:
59:9b:dd:87:c3:97:90:b4:b4:1f:6c:07:7e:65:31:
1e:b7:06:3e:1f:8b:91:9b:b7:cf:ac:32:49:88:92:
77:54:be:49:f5:a2:c2:9b:72:15:61:ec:f0:fa:a4:
82:f2:45:29:cb:9c:e3:56:87:7d:f1:96:50:ac:69:
02:30:93:0d:3c:96:34:43:8b:70:2e:1a:5a:5d:6d:
54:87:9f:7e:3f:69:06:9f:89:e0:e3:31:e2:3d:bd:
3b:cb:e4:1a:fe:cb:e4:8b:b9:5f:05:40:68:4e:94:
60:6e:06:68:08:92:36:83:73:19:93:f3:ae:be:76:
da:fb:54:3a:3b:1e:a0:ba:8d:2e:e5:0a:79:80:b7:
46:52:be:c5:20:4c:eb:e0:1a:0f:c7:4f:b2:54:89:
67:96:2b:44:f5:9f:7d:b1:23:36:dc:d4:01:ac:43:
55:dc:4c:71:d0:4e:32:e1:90:d8:ab:13:32:f6:33:
a7:6b:33:eb:45:14:c1:e7:be:bd:60:13:fc:f5:06:
3b:96:8c:51:0b:ee:57:c3:c2:d3:b3:bb:d6:50:5f:
79:a2:9d:ba:7d:47:1d:00:1a:42:e6:10:b8:26:87:
46:90:56:df:87:58:05:91:74:a2:a8:d1:91:4f:16:
0b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:7F:7B:36:46:61:83:76:97:D6:84:FD:F0:3B:12:AF:B9:31:ED:DB
X509v3 Authority Key Identifier:
keyid:81:81:23:85:B8:2D:DA:0F:D4:82:6A:BB:7A:EF:EB:0D:F3:EB:8F:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gYEjhbgt2g_Ugmq7eu_rDfPrj_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/009074-66f6-4d4d-974a-da2ec8cfb888/1/I397NkZhg3aX1oT98DsSr7kx7ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/009074-66f6-4d4d-974a-da2ec8cfb888/1/gYEjhbgt2g_Ugmq7eu_rDfPrj_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.7.240.0/21
77.78.64.0-77.78.69.255
77.78.74.0/23
77.78.80.0-77.78.93.255
77.78.122.0/24
80.250.0.0/19
81.0.196.0-81.0.198.255
81.0.200.0-81.0.205.255
81.0.210.0/23
81.0.215.0-81.0.216.255
81.0.222.0-81.0.224.255
81.0.227.0/24
81.0.229.0/24
81.0.244.0/23
81.0.251.0-81.0.253.255
82.208.0.0/22
82.208.13.0/24
82.208.15.0/24
82.208.19.0/24
82.208.24.0/23
82.208.30.0/23
82.208.36.0-82.208.38.255
82.208.42.0/23
82.208.45.0/24
82.208.51.0-82.208.55.255
82.208.57.0/24
82.208.59.0/24
83.136.200.0/21
85.239.224.0-85.239.226.255
85.239.228.0/23
85.239.251.0/24
85.239.254.0/23
109.123.200.0/23
109.123.204.0/24
109.123.212.0/23
109.123.226.0/24
185.33.136.0/22
185.161.240.0/22
217.11.226.0/24
217.11.231.0/24
217.11.234.0/24
217.11.237.0-217.11.241.255
217.11.244.0/24
217.11.250.0/24
217.11.252.0/23
217.11.255.0/24
IPv6:
2a01:6400::/32
Signature Algorithm: sha256WithRSAEncryption
72:fb:e7:8b:16:91:01:d8:62:37:0a:20:93:70:ef:21:c4:03:
44:0d:78:6e:42:69:cd:ad:3c:02:48:4a:d3:2b:a3:a3:89:ca:
af:86:71:17:a7:81:8a:f7:21:d1:f4:3f:82:aa:f6:f5:61:85:
90:2d:b5:b4:cb:6a:75:20:bd:88:98:f9:15:d2:0a:1a:a6:a4:
03:ad:1e:3c:dd:a2:42:c1:cd:1b:b8:de:d0:c4:46:cd:fb:c8:
52:f3:2a:b9:12:02:0e:61:9a:f3:cd:a1:43:e2:5f:01:01:ab:
7a:14:0b:76:3f:15:ae:40:15:8a:3b:10:5b:3f:4f:91:84:07:
3b:27:c7:ec:75:d4:0c:7d:4a:ba:0f:68:40:b0:5f:4c:16:1f:
52:d5:f9:b8:af:b9:68:45:6e:b7:54:8b:c9:f8:81:2f:5f:48:
61:ed:c7:8a:83:17:de:aa:67:6c:aa:42:49:71:0b:1a:4d:e9:
78:31:89:a9:cb:a6:25:85:8e:b4:02:f9:5f:b9:e7:80:cd:c4:
df:ad:f8:a8:e3:5f:d5:2c:a9:d0:e6:af:fe:5b:73:a6:8f:c6:
5b:71:ed:a9:5d:06:21:e8:64:d2:31:1c:f3:a5:93:8b:bd:4b:
8d:25:f2:e4:a6:88:01:bb:9a:28:d2:7d:63:d3:63:05:75:06:
07:2b:96:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:30 2024 by rpki-client on console-ams.rpki-client.org