Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/009074-66f6-4d4d-974a-da2ec8cfb888/1/jnWjbPuoljnfBM_EQfG8jO9jRbM.roa
File: jnWjbPuoljnfBM_EQfG8jO9jRbM.roa (raw, json)
Hash identifier: uwbWi1+SLfp8INPNoDOGc62+Y56eTuP7ezYJLPzrL6c=
Subject key identifier: 8E:75:A3:6C:FB:A8:96:39:DF:04:CF:C4:41:F1:BC:8C:EF:63:45:B3
Certificate issuer: /CN=81812385b82dda0fd4826abb7aefeb0df3eb8ffd
Certificate serial: 01857246CC7464CA60A74337C6DE0CEF8143
Authority key identifier: 81:81:23:85:B8:2D:DA:0F:D4:82:6A:BB:7A:EF:EB:0D:F3:EB:8F:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gYEjhbgt2g_Ugmq7eu_rDfPrj_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/009074-66f6-4d4d-974a-da2ec8cfb888/1/jnWjbPuoljnfBM_EQfG8jO9jRbM.roa
Signing time: Mon 02 Jan 2023 11:38:40 +0000
ROA not before: Mon 02 Jan 2023 11:38:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21430
IP address blocks: 82.208.52.0/22 maxlen: 22
82.208.57.0/24 maxlen: 24
82.208.59.0/24 maxlen: 24
109.123.200.0/23 maxlen: 23
82.208.0.0/22 maxlen: 22
109.123.204.0/24 maxlen: 24
109.123.212.0/23 maxlen: 23
82.208.13.0/24 maxlen: 24
82.208.15.0/24 maxlen: 24
82.208.24.0/23 maxlen: 23
109.123.226.0/24 maxlen: 24
82.208.19.0/24 maxlen: 24
82.208.30.0/23 maxlen: 23
82.208.36.0/23 maxlen: 23
82.208.38.0/24 maxlen: 24
82.208.42.0/23 maxlen: 23
82.208.51.0/24 maxlen: 24
82.208.45.0/24 maxlen: 24
185.33.136.0/22 maxlen: 22
217.11.255.0/24 maxlen: 24
83.136.200.0/21 maxlen: 21
217.11.226.0/24 maxlen: 24
217.11.231.0/24 maxlen: 24
217.11.234.0/24 maxlen: 24
217.11.237.0/24 maxlen: 24
217.11.238.0/23 maxlen: 23
217.11.240.0/23 maxlen: 23
217.11.244.0/24 maxlen: 24
217.11.250.0/24 maxlen: 24
217.11.252.0/23 maxlen: 23
31.7.240.0/21 maxlen: 21
85.239.254.0/23 maxlen: 23
77.78.80.0/21 maxlen: 21
81.0.216.0/24 maxlen: 24
81.0.215.0/24 maxlen: 24
77.78.88.0/22 maxlen: 24
81.0.222.0/23 maxlen: 23
81.0.224.0/24 maxlen: 24
77.78.92.0/23 maxlen: 24
81.0.227.0/24 maxlen: 24
81.0.229.0/24 maxlen: 24
81.0.244.0/23 maxlen: 23
81.0.252.0/23 maxlen: 23
81.0.251.0/24 maxlen: 24
77.78.122.0/24 maxlen: 24
185.161.240.0/22 maxlen: 22
85.239.224.0/23 maxlen: 23
85.239.226.0/24 maxlen: 24
85.239.228.0/23 maxlen: 23
80.250.0.0/19 maxlen: 19
81.0.196.0/23 maxlen: 23
81.0.198.0/24 maxlen: 24
77.78.64.0/22 maxlen: 22
81.0.200.0/22 maxlen: 22
77.78.68.0/23 maxlen: 23
81.0.204.0/23 maxlen: 23
77.78.74.0/23 maxlen: 23
81.0.210.0/23 maxlen: 23
85.239.251.0/24 maxlen: 24
2a01:6400::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 20 Jan 2023 10:44:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:cc:74:64:ca:60:a7:43:37:c6:de:0c:ef:81:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81812385b82dda0fd4826abb7aefeb0df3eb8ffd
Validity
Not Before: Jan 2 11:38:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e75a36cfba89639df04cfc441f1bc8cef6345b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:b1:c2:98:26:01:80:a7:9a:ab:5f:a4:e3:43:
0d:ca:07:26:71:4b:1d:c8:d0:0d:2e:97:4e:be:ed:
a2:c3:dd:8e:e1:3e:74:f2:ea:d9:f5:60:fc:51:be:
c4:1a:34:30:cb:7a:66:f1:7a:b4:32:4d:51:52:1b:
c2:e1:78:3e:7d:1e:de:d4:a2:b9:c5:b7:3f:7e:ce:
ec:b5:85:d5:f3:fd:cf:3a:7d:ba:7c:6d:39:24:50:
2b:88:76:6e:66:2f:00:5b:e2:9b:5e:cc:e7:ea:e8:
95:53:76:85:b6:0b:72:3e:60:ac:78:4b:39:23:82:
c4:41:b3:a5:89:41:52:8c:12:bd:a3:a4:fd:6e:a0:
31:68:eb:44:83:f9:3c:b3:9b:e7:b1:31:84:8e:30:
76:30:04:f3:16:9f:f8:89:6d:46:7a:e1:bd:bf:4b:
81:06:d4:be:10:58:0d:47:ec:d7:b7:0b:cd:b9:ee:
8f:d6:5c:39:ad:9c:c7:b8:9d:71:a9:61:54:3f:c7:
6a:10:92:04:5f:1c:77:93:ef:14:ec:38:28:83:36:
04:5c:17:a4:a7:08:23:19:b5:83:d7:c6:28:82:71:
4b:77:05:07:45:4d:db:53:ff:3d:c0:07:cc:7d:82:
60:fe:41:64:d0:7a:10:f7:27:85:58:7f:15:f4:ac:
7a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:75:A3:6C:FB:A8:96:39:DF:04:CF:C4:41:F1:BC:8C:EF:63:45:B3
X509v3 Authority Key Identifier:
keyid:81:81:23:85:B8:2D:DA:0F:D4:82:6A:BB:7A:EF:EB:0D:F3:EB:8F:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gYEjhbgt2g_Ugmq7eu_rDfPrj_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/009074-66f6-4d4d-974a-da2ec8cfb888/1/jnWjbPuoljnfBM_EQfG8jO9jRbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/009074-66f6-4d4d-974a-da2ec8cfb888/1/gYEjhbgt2g_Ugmq7eu_rDfPrj_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.7.240.0/21
77.78.64.0-77.78.69.255
77.78.74.0/23
77.78.80.0-77.78.93.255
77.78.122.0/24
80.250.0.0/19
81.0.196.0-81.0.198.255
81.0.200.0-81.0.205.255
81.0.210.0/23
81.0.215.0-81.0.216.255
81.0.222.0-81.0.224.255
81.0.227.0/24
81.0.229.0/24
81.0.244.0/23
81.0.251.0-81.0.253.255
82.208.0.0/22
82.208.13.0/24
82.208.15.0/24
82.208.19.0/24
82.208.24.0/23
82.208.30.0/23
82.208.36.0-82.208.38.255
82.208.42.0/23
82.208.45.0/24
82.208.51.0-82.208.55.255
82.208.57.0/24
82.208.59.0/24
83.136.200.0/21
85.239.224.0-85.239.226.255
85.239.228.0/23
85.239.251.0/24
85.239.254.0/23
109.123.200.0/23
109.123.204.0/24
109.123.212.0/23
109.123.226.0/24
185.33.136.0/22
185.161.240.0/22
217.11.226.0/24
217.11.231.0/24
217.11.234.0/24
217.11.237.0-217.11.241.255
217.11.244.0/24
217.11.250.0/24
217.11.252.0/23
217.11.255.0/24
IPv6:
2a01:6400::/32
Signature Algorithm: sha256WithRSAEncryption
7e:9c:1a:7e:85:f6:11:1c:68:38:d7:10:d0:68:fa:63:46:18:
e9:6a:83:79:67:36:09:bc:32:ac:80:a9:18:cb:d9:f2:cf:04:
c0:07:b7:5c:e3:a4:5b:14:3d:0f:83:01:58:8c:ed:c9:d2:36:
db:92:01:a8:69:be:d1:9b:7f:b8:6e:bc:02:3c:89:dc:3f:e9:
af:68:97:7e:03:f3:c7:2b:ab:27:55:a9:16:12:9b:93:9e:f7:
7a:39:da:b7:40:c5:e6:19:22:dd:f5:d8:51:64:b3:e0:c1:b9:
d3:7a:ed:f2:5d:b5:0e:74:54:2e:d7:16:4d:cc:db:de:18:cd:
c7:f8:d4:e7:59:71:a7:a0:3e:89:f6:30:ee:39:be:87:d6:a2:
60:41:89:f8:2d:e9:ae:50:d0:18:f4:02:13:ea:35:42:29:7e:
9a:70:40:ac:ca:a8:72:ef:2f:54:99:71:8c:96:71:74:ac:b0:
41:05:79:74:a1:c9:0b:b0:da:79:ce:74:ab:0f:3c:5b:c3:b1:
11:f3:41:1b:53:59:f2:b1:f6:93:6c:29:d7:e7:95:ba:37:ac:
53:53:0e:b5:2c:71:71:39:80:0c:31:04:03:2b:18:8c:75:d2:
41:64:6c:00:2b:d9:1f:09:b5:08:c7:65:b2:1b:74:19:76:5d:
9e:72:2c:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:30 2024 by rpki-client on console-ams.rpki-client.org