Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/CJ9sCYTB6jTO3yARO8qNiQ2cvHI.roa
File: CJ9sCYTB6jTO3yARO8qNiQ2cvHI.roa (raw, json)
Hash identifier: 4oWQP5nd7/JgAWJWrf6X22NqyzdnGnD2/ESBvew7rn4=
Subject key identifier: 08:9F:6C:09:84:C1:EA:34:CE:DF:20:11:3B:CA:8D:89:0D:9C:BC:72
Certificate issuer: /CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Certificate serial: 018B04BEC811B8BA4AE1D69BCD62BE2AD5A5
Authority key identifier: E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/CJ9sCYTB6jTO3yARO8qNiQ2cvHI.roa
Signing time: Fri 06 Oct 2023 11:28:13 +0000
ROA not before: Fri 06 Oct 2023 11:28:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44252
IP address blocks: 93.113.250.0/24 maxlen: 24
188.215.30.0/24 maxlen: 24
89.46.127.0/24 maxlen: 24
94.228.233.0/24 maxlen: 24
94.228.231.0/24 maxlen: 24
94.228.229.0/24 maxlen: 24
94.228.230.0/24 maxlen: 24
94.228.227.0/24 maxlen: 24
94.228.238.0/24 maxlen: 24
94.228.237.0/24 maxlen: 24
94.228.234.0/24 maxlen: 24
5.154.225.0/24 maxlen: 24
185.36.255.0/24 maxlen: 24
89.39.144.0/24 maxlen: 24
89.39.145.0/24 maxlen: 24
37.153.174.0/24 maxlen: 24
213.196.97.0/24 maxlen: 24
188.240.200.0/24 maxlen: 24
188.240.201.0/24 maxlen: 24
178.17.19.0/24 maxlen: 24
178.17.23.0/24 maxlen: 24
178.17.24.0/24 maxlen: 24
178.17.22.0/24 maxlen: 24
92.60.226.0/24 maxlen: 24
92.60.224.0/24 maxlen: 24
92.60.225.0/24 maxlen: 24
92.60.229.0/24 maxlen: 24
178.17.27.0/24 maxlen: 24
178.17.28.0/24 maxlen: 24
178.17.26.0/24 maxlen: 24
178.17.30.0/24 maxlen: 24
92.60.230.0/24 maxlen: 24
92.60.227.0/24 maxlen: 24
92.60.228.0/24 maxlen: 24
92.60.232.0/24 maxlen: 24
92.60.233.0/24 maxlen: 24
92.60.231.0/24 maxlen: 24
92.60.237.0/24 maxlen: 24
92.60.235.0/24 maxlen: 24
92.60.239.0/24 maxlen: 24
92.60.238.0/24 maxlen: 24
176.67.192.0/24 maxlen: 24
176.67.196.0/24 maxlen: 24
176.67.198.0/24 maxlen: 24
176.67.193.0/24 maxlen: 24
176.67.194.0/24 maxlen: 24
89.47.40.0/24 maxlen: 24
89.47.41.0/24 maxlen: 24
176.67.200.0/23 maxlen: 24
176.67.204.0/24 maxlen: 24
176.67.202.0/23 maxlen: 24
176.67.205.0/24 maxlen: 24
176.67.206.0/23 maxlen: 23
176.67.210.0/24 maxlen: 24
176.67.211.0/24 maxlen: 24
62.101.130.0/24 maxlen: 24
176.67.212.0/24 maxlen: 24
176.67.208.0/24 maxlen: 24
176.67.217.0/24 maxlen: 24
176.67.218.0/24 maxlen: 24
176.67.219.0/24 maxlen: 24
176.67.214.0/24 maxlen: 24
176.67.223.0/24 maxlen: 24
176.67.221.0/24 maxlen: 24
176.67.220.0/24 maxlen: 24
185.27.131.0/24 maxlen: 24
185.27.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Dec 2023 14:05:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:04:be:c8:11:b8:ba:4a:e1:d6:9b:cd:62:be:2a:d5:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Validity
Not Before: Oct 6 11:28:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=089f6c0984c1ea34cedf20113bca8d890d9cbc72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7d:b8:2e:ac:32:2c:fb:11:2c:f4:42:b8:76:
81:17:bc:81:3a:5d:07:ef:65:3e:e8:59:d5:05:d7:
f6:c0:61:4d:42:b9:fb:c0:a4:3b:ff:77:27:5a:64:
bd:1f:8a:87:3b:bf:fc:05:8f:1c:47:6f:07:65:41:
5f:57:6b:82:7a:12:52:b6:2e:1c:28:29:ef:9d:f2:
6d:c9:28:87:c3:5e:0c:d2:b5:70:3e:d1:0c:3f:d3:
c6:18:aa:fa:a8:d1:40:61:66:6a:28:e1:f2:70:2a:
11:45:95:89:14:ab:89:19:8d:46:27:8c:6a:eb:47:
66:f2:27:3d:8f:ea:8c:69:f9:52:86:b7:9c:85:b9:
5d:b9:e4:17:c4:f1:21:f2:6b:e4:d4:4d:f6:64:ee:
7c:d6:be:81:46:13:55:25:5a:47:0d:38:05:de:6b:
a8:9f:f1:d8:bb:31:13:70:3b:b4:ad:f6:56:e1:48:
1f:70:b8:4a:2b:ec:9f:b9:83:fe:4f:a7:79:1a:fe:
16:40:ee:74:2a:d7:3b:4a:48:70:4d:02:ff:42:b6:
84:a3:2e:22:26:de:49:9c:f9:43:80:1d:11:28:63:
ab:4e:09:80:c6:f5:26:57:9a:f4:e1:7f:e8:3b:76:
07:ac:98:1c:63:35:c7:a7:af:e2:a0:99:a8:74:57:
4c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:9F:6C:09:84:C1:EA:34:CE:DF:20:11:3B:CA:8D:89:0D:9C:BC:72
X509v3 Authority Key Identifier:
keyid:E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/CJ9sCYTB6jTO3yARO8qNiQ2cvHI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/6bEyD7wk1vQ2bLZPz17S17G2vfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.154.225.0/24
37.153.174.0/24
62.101.130.0/24
89.39.144.0/23
89.46.127.0/24
89.47.40.0/23
92.60.224.0-92.60.233.255
92.60.235.0/24
92.60.237.0-92.60.239.255
93.113.250.0/24
94.228.227.0/24
94.228.229.0-94.228.231.255
94.228.233.0-94.228.234.255
94.228.237.0-94.228.238.255
176.67.192.0-176.67.194.255
176.67.196.0/24
176.67.198.0/24
176.67.200.0-176.67.208.255
176.67.210.0-176.67.212.255
176.67.214.0/24
176.67.217.0-176.67.221.255
176.67.223.0/24
178.17.19.0/24
178.17.22.0-178.17.24.255
178.17.26.0-178.17.28.255
178.17.30.0/24
185.27.128.0/24
185.27.131.0/24
185.36.255.0/24
188.215.30.0/24
188.240.200.0/23
213.196.97.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:05:5d:24:e9:51:8e:7d:94:0d:73:5a:c5:9f:de:1d:16:59:
02:c3:a5:ad:5a:8d:e7:95:97:87:13:44:e1:e5:6c:1b:92:1b:
f0:a3:3a:4f:fe:bd:23:8a:e5:1e:01:83:ab:09:2f:64:2d:aa:
ad:c3:3a:54:21:3f:fd:65:0a:e4:a7:1d:7a:40:99:2f:fa:e8:
c9:23:71:d0:72:9f:b5:84:91:94:5d:0f:93:b9:9e:b2:48:d4:
c7:5b:38:e1:24:4b:c3:9d:97:b6:21:38:5f:56:45:b6:95:fd:
9d:37:0e:06:8b:5b:ef:6a:38:06:63:00:bb:46:8f:7b:75:fa:
96:95:ff:cf:f3:e5:c2:34:8b:90:36:32:60:4e:0c:57:d0:8f:
48:ca:6d:f7:8e:50:3d:5c:29:0c:11:23:d2:0e:4c:1a:56:0c:
cf:a6:f3:e3:67:51:0c:c8:db:df:08:7d:b0:40:39:86:ff:7b:
09:22:4a:51:9d:89:23:43:2b:2b:29:6c:b8:7e:76:80:4d:c8:
93:93:c9:7c:5f:c6:c9:81:3c:11:f8:73:fc:c9:12:b9:97:05:
dd:73:40:48:8e:ec:aa:b2:4d:54:9a:42:5b:e8:ad:21:96:b6:
b5:20:d0:22:48:43:0b:de:f2:b5:18:c4:64:94:17:4c:3c:f6:
84:e7:54:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:02 2024 by rpki-client on console-ams.rpki-client.org