Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/boHh0AYH8kPIxeOufUtpPql4Fzk.roa
File: boHh0AYH8kPIxeOufUtpPql4Fzk.roa (raw, json)
Hash identifier: CP1MH24UE4zBQkN/wWm8G/RrK4mD0xfY/4nVx7DMSoE=
Subject key identifier: 6E:81:E1:D0:06:07:F2:43:C8:C5:E3:AE:7D:4B:69:3E:A9:78:17:39
Certificate issuer: /CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Certificate serial: 018793A7D1CC44D5DC08881B7578866D399D
Authority key identifier: 08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/boHh0AYH8kPIxeOufUtpPql4Fzk.roa
Signing time: Tue 18 Apr 2023 09:17:41 +0000
ROA not before: Tue 18 Apr 2023 09:17:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48715
IP address blocks: 185.141.105.0/24 maxlen: 24
185.141.104.0/24 maxlen: 24
185.141.104.0/22 maxlen: 22
185.141.107.0/24 maxlen: 24
185.141.106.0/24 maxlen: 24
185.18.212.0/22 maxlen: 22
185.18.212.0/24 maxlen: 24
185.18.213.0/24 maxlen: 24
185.18.214.0/24 maxlen: 24
185.18.215.0/24 maxlen: 24
195.211.44.0/24 maxlen: 24
195.211.44.0/22 maxlen: 22
195.211.47.0/24 maxlen: 24
195.211.45.0/24 maxlen: 24
195.211.46.0/24 maxlen: 24
195.110.38.0/23 maxlen: 23
91.236.168.0/24 maxlen: 24
91.236.168.0/23 maxlen: 23
91.236.169.0/24 maxlen: 24
152.89.44.0/24 maxlen: 24
152.89.44.0/22 maxlen: 22
152.89.47.0/24 maxlen: 24
152.89.46.0/24 maxlen: 24
152.89.45.0/24 maxlen: 24
185.58.240.0/22 maxlen: 24
185.51.200.0/22 maxlen: 22
185.51.200.0/24 maxlen: 24
185.51.203.0/24 maxlen: 24
185.51.201.0/24 maxlen: 24
185.51.202.0/24 maxlen: 24
185.112.150.0/23 maxlen: 23
185.112.150.0/24 maxlen: 24
185.112.151.0/24 maxlen: 24
185.112.149.0/24 maxlen: 24
185.121.131.0/24 maxlen: 24
185.121.130.0/24 maxlen: 24
185.121.130.0/23 maxlen: 23
88.135.38.0/24 maxlen: 24
88.135.36.0/22 maxlen: 22
88.135.36.0/24 maxlen: 24
88.135.37.0/24 maxlen: 24
185.141.132.0/24 maxlen: 24
185.141.132.0/22 maxlen: 22
185.141.134.0/24 maxlen: 24
185.141.135.0/24 maxlen: 24
185.141.133.0/24 maxlen: 24
188.209.152.0/24 maxlen: 24
188.209.152.0/23 maxlen: 23
188.209.153.0/24 maxlen: 24
88.135.39.0/24 maxlen: 24
185.128.138.0/24 maxlen: 24
185.128.139.0/24 maxlen: 24
185.128.136.0/22 maxlen: 22
185.128.137.0/24 maxlen: 24
185.128.136.0/24 maxlen: 24
2a0a:5e80::/48 maxlen: 48
2a0a:5e80::/64 maxlen: 64
2a0a:5e80::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:93:a7:d1:cc:44:d5:dc:08:88:1b:75:78:86:6d:39:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Validity
Not Before: Apr 18 09:17:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e81e1d00607f243c8c5e3ae7d4b693ea9781739
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f4:d5:94:2e:7d:d8:ec:a5:c6:99:11:19:8e:
f7:24:73:a6:07:24:47:4d:64:00:3e:53:6d:1d:ed:
84:72:3d:a4:3a:84:c1:6f:4c:a8:b1:77:8c:0a:59:
2b:4c:85:d7:3c:e4:ac:65:bb:a3:ed:db:4a:5c:76:
1d:dc:cf:19:f7:78:49:2b:d5:59:5c:04:9c:c9:db:
e2:36:db:45:16:90:90:da:c4:52:4c:1a:4e:46:b4:
00:fd:45:73:04:f3:68:65:97:15:5c:b0:bc:59:8b:
38:a9:e3:60:69:61:5c:81:6d:14:01:12:13:97:26:
e5:7a:05:f8:c4:a3:2f:f3:d9:cf:53:54:2b:12:75:
1a:15:b6:d3:2b:33:e4:92:70:e2:90:41:ca:16:58:
3b:3a:4b:3f:20:f0:9c:f5:02:4b:3a:56:2f:48:c4:
d5:c3:38:1d:2d:68:e4:27:d8:97:60:a0:fd:bd:00:
85:35:a4:c8:5e:40:9e:7b:b0:82:a2:05:e1:de:cb:
41:f0:cc:8d:f7:51:53:69:84:db:cd:2d:7f:41:02:
de:95:71:86:70:ab:f3:49:8e:96:d7:ea:e7:f7:ae:
a7:ee:cb:57:8f:82:a7:c4:bf:86:9b:c8:37:e4:1b:
c1:f7:a4:84:8a:27:3f:c6:57:6a:59:e7:6c:fc:c3:
c3:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:81:E1:D0:06:07:F2:43:C8:C5:E3:AE:7D:4B:69:3E:A9:78:17:39
X509v3 Authority Key Identifier:
keyid:08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/boHh0AYH8kPIxeOufUtpPql4Fzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/CBt6IuUc-5z4QgXkRJmYrVXY8GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.135.36.0/22
91.236.168.0/23
152.89.44.0/22
185.18.212.0/22
185.51.200.0/22
185.58.240.0/22
185.112.149.0-185.112.151.255
185.121.130.0/23
185.128.136.0/22
185.141.104.0/22
185.141.132.0/22
188.209.152.0/23
195.110.38.0/23
195.211.44.0/22
IPv6:
2a0a:5e80::/29
Signature Algorithm: sha256WithRSAEncryption
05:43:8f:1a:69:21:4f:28:f4:48:51:19:c2:91:90:2d:01:76:
cc:5e:1f:ac:d1:96:f4:ca:52:18:b0:83:b5:92:93:f0:e0:a4:
f9:d8:cf:9d:ca:a7:82:27:e8:0a:c6:e9:1b:87:12:63:8d:0a:
a0:35:ed:c0:c2:33:f0:eb:d3:7c:44:16:c5:a2:db:70:a6:63:
ba:b5:02:32:ce:40:b5:df:a4:92:27:98:c0:91:15:15:0f:eb:
7c:0a:f2:83:c8:ad:9a:4c:c4:34:72:c8:1f:df:a4:89:65:b4:
01:2d:6a:4f:4d:d0:0e:cd:d8:d8:03:16:05:93:09:5c:bf:1b:
38:19:68:7c:2b:da:82:f1:0e:8f:60:a0:c1:99:94:2e:02:87:
8e:7b:df:d5:df:bb:bf:a8:1c:77:56:22:cd:43:06:4b:61:8a:
5b:b5:f5:6d:dd:33:0b:ff:1b:3d:df:d8:54:d2:84:85:9a:18:
02:6b:99:41:19:cb:3c:a2:86:b0:04:eb:44:6f:08:f5:02:bc:
38:2a:e1:76:fe:22:a4:c7:a4:3a:2c:64:dd:0a:bf:9c:1e:e1:
14:0c:c1:62:7f:5d:1c:0a:99:cb:70:5e:8c:5a:be:0d:b1:35:
37:d6:be:bd:e4:18:b9:88:8b:3d:a0:97:8b:38:d3:d8:12:11:
e0:0d:6c:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:58 2023 by rpki-client on console-fra.rpki-client.org