Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/oR2Jejiptek5D2nnmLiY-vcwgZE.roa
File: oR2Jejiptek5D2nnmLiY-vcwgZE.roa (raw, json)
Hash identifier: W2CKZMa0nKOVN4HNzrcKie6IbXpxFd9qasnlXwjsylw=
Subject key identifier: A1:1D:89:7A:38:A9:B5:E9:39:0F:69:E7:98:B8:98:FA:F7:30:81:91
Certificate issuer: /CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Certificate serial: 0187E1DA744F0DB2995E1BC816F393704DA0
Authority key identifier: 08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/oR2Jejiptek5D2nnmLiY-vcwgZE.roa
Signing time: Wed 03 May 2023 13:43:22 +0000
ROA not before: Wed 03 May 2023 13:43:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48715
IP address blocks: 185.141.105.0/24 maxlen: 24
185.141.104.0/24 maxlen: 24
185.141.104.0/22 maxlen: 22
185.141.107.0/24 maxlen: 24
185.141.106.0/24 maxlen: 24
185.18.212.0/22 maxlen: 22
185.18.212.0/24 maxlen: 24
185.18.213.0/24 maxlen: 24
185.18.214.0/24 maxlen: 24
185.18.215.0/24 maxlen: 24
195.211.44.0/24 maxlen: 24
195.211.44.0/22 maxlen: 22
195.211.47.0/24 maxlen: 24
195.211.45.0/24 maxlen: 24
195.211.46.0/24 maxlen: 24
195.110.38.0/23 maxlen: 23
91.236.168.0/24 maxlen: 24
91.236.168.0/23 maxlen: 23
91.236.169.0/24 maxlen: 24
152.89.44.0/24 maxlen: 24
152.89.44.0/22 maxlen: 22
152.89.47.0/24 maxlen: 24
152.89.46.0/24 maxlen: 24
152.89.45.0/24 maxlen: 24
185.58.240.0/22 maxlen: 24
185.51.200.0/22 maxlen: 22
185.51.200.0/24 maxlen: 24
185.51.203.0/24 maxlen: 24
185.51.201.0/24 maxlen: 24
185.51.202.0/24 maxlen: 24
185.112.150.0/23 maxlen: 23
185.112.150.0/24 maxlen: 24
185.112.151.0/24 maxlen: 24
185.112.149.0/24 maxlen: 24
185.121.131.0/24 maxlen: 24
185.121.130.0/24 maxlen: 24
185.121.130.0/23 maxlen: 23
88.135.38.0/24 maxlen: 24
88.135.36.0/22 maxlen: 22
88.135.36.0/24 maxlen: 24
88.135.37.0/24 maxlen: 24
185.141.132.0/24 maxlen: 24
185.141.132.0/22 maxlen: 22
185.141.134.0/24 maxlen: 24
185.141.135.0/24 maxlen: 24
185.141.133.0/24 maxlen: 24
185.252.200.0/24 maxlen: 24
188.209.152.0/24 maxlen: 24
188.209.152.0/23 maxlen: 23
188.209.153.0/24 maxlen: 24
88.135.39.0/24 maxlen: 24
185.128.138.0/24 maxlen: 24
185.128.139.0/24 maxlen: 24
185.128.136.0/22 maxlen: 22
185.128.137.0/24 maxlen: 24
185.128.136.0/24 maxlen: 24
2a0a:5e80::/48 maxlen: 48
2a0a:5e80::/64 maxlen: 64
2a0a:5e80::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 22 Jul 2023 12:25:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e1:da:74:4f:0d:b2:99:5e:1b:c8:16:f3:93:70:4d:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Validity
Not Before: May 3 13:43:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a11d897a38a9b5e9390f69e798b898faf7308191
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:1f:00:e9:56:48:7d:77:18:a8:92:d6:13:4f:
c3:dc:0d:a7:d9:c2:6d:dd:bc:04:47:bc:f7:38:cd:
c9:35:82:87:c2:08:57:02:e3:57:1c:05:8d:0c:20:
ae:94:b7:1f:f2:00:44:b0:fd:95:ac:92:84:75:77:
f2:55:ba:b2:9f:d0:80:06:c8:ed:42:26:2b:43:7f:
28:98:57:2c:fb:e6:13:1a:b9:eb:45:01:1c:c1:fa:
3b:6f:93:91:e0:8a:d9:13:81:ba:35:6d:ef:4e:0c:
91:17:ad:1e:ef:8a:4b:23:44:b9:35:aa:93:ca:15:
11:85:6b:20:71:dc:d7:1e:9b:c3:60:a9:d6:b8:06:
09:ae:4c:57:2f:7a:e9:86:2e:5a:6d:9d:8e:67:74:
aa:14:9e:27:0b:dc:bb:bd:10:12:77:88:d7:78:57:
80:a3:4b:d7:81:cb:16:e1:a5:19:40:9f:0b:f3:93:
c3:34:fa:49:57:e4:25:91:27:72:a0:51:3b:b4:91:
0c:8b:fa:a8:62:59:2e:8e:2a:c7:fc:1a:d4:6a:57:
38:dc:f5:52:9c:aa:da:fb:07:a6:ff:75:be:b1:0d:
2d:76:2c:07:5f:96:a5:fd:78:82:eb:44:b0:0b:a9:
ef:ba:76:6f:bd:6d:7e:47:92:45:07:31:16:21:2d:
75:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:1D:89:7A:38:A9:B5:E9:39:0F:69:E7:98:B8:98:FA:F7:30:81:91
X509v3 Authority Key Identifier:
keyid:08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/oR2Jejiptek5D2nnmLiY-vcwgZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/CBt6IuUc-5z4QgXkRJmYrVXY8GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.135.36.0/22
91.236.168.0/23
152.89.44.0/22
185.18.212.0/22
185.51.200.0/22
185.58.240.0/22
185.112.149.0-185.112.151.255
185.121.130.0/23
185.128.136.0/22
185.141.104.0/22
185.141.132.0/22
185.252.200.0/24
188.209.152.0/23
195.110.38.0/23
195.211.44.0/22
IPv6:
2a0a:5e80::/29
Signature Algorithm: sha256WithRSAEncryption
4e:6e:81:68:97:bd:b5:5b:f3:4d:b5:5e:11:fa:5a:ed:cc:f6:
7b:96:eb:63:74:23:03:7d:c7:0c:dd:b1:72:e3:b3:5d:6b:b4:
fc:2f:fe:96:be:25:3a:fe:94:aa:5e:27:e0:a4:95:8c:1f:6a:
8c:13:01:e8:d5:82:05:fc:b2:2b:33:25:9c:5c:c2:14:9c:fb:
cb:23:da:bd:17:9b:8c:da:aa:1c:b4:14:72:3e:97:60:c1:66:
bb:cb:2e:69:cf:60:a5:98:ba:61:f3:c2:2e:dd:76:c1:81:ff:
c3:b9:a1:ae:13:69:87:ef:9f:ed:86:47:a5:48:70:db:bc:2d:
28:e8:bb:2a:fa:99:f9:fa:90:38:9b:d0:5d:87:3d:56:39:ae:
45:cf:1c:6b:4f:43:8f:d4:05:54:c8:50:31:04:b6:e2:17:4a:
99:78:28:46:b8:5a:8c:1d:37:24:df:9e:c5:9e:32:17:bc:51:
39:93:b5:fb:a5:67:fe:65:23:12:4e:a3:de:af:10:c1:23:62:
2a:a1:68:aa:ed:db:d2:6f:3c:28:74:1c:cb:fb:51:7b:82:0c:
25:d6:bb:5e:8c:77:a1:1d:99:ef:bb:1a:20:4b:91:65:e3:d1:
1f:29:50:9d:9a:ee:af:75:54:e3:dc:1a:dc:38:68:93:9b:f4:
7e:49:2f:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:22 2024 by rpki-client on console-fra.rpki-client.org