Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/_k-XfhP8T5PpbYCWIQWy52IGpgo.roa
File: _k-XfhP8T5PpbYCWIQWy52IGpgo.roa (raw, json)
Hash identifier: c6lYfsiffRnWR+Km+5uJ/atB4bt5WjWo5keF5CgnSfw=
Subject key identifier: FE:4F:97:7E:13:FC:4F:93:E9:6D:80:96:21:05:B2:E7:62:06:A6:0A
Certificate issuer: /CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Certificate serial: 018CC5001C1532955B923B09ED958431AA95
Authority key identifier: E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/_k-XfhP8T5PpbYCWIQWy52IGpgo.roa
Signing time: Mon 01 Jan 2024 12:29:27 +0000
ROA not before: Mon 01 Jan 2024 12:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44252
IP address blocks: 93.113.250.0/24 maxlen: 24
188.215.30.0/24 maxlen: 24
89.46.127.0/24 maxlen: 24
94.228.233.0/24 maxlen: 24
94.228.231.0/24 maxlen: 24
94.228.229.0/24 maxlen: 24
94.228.230.0/24 maxlen: 24
94.228.227.0/24 maxlen: 24
94.228.238.0/24 maxlen: 24
94.228.237.0/24 maxlen: 24
94.228.234.0/24 maxlen: 24
185.36.255.0/24 maxlen: 24
89.39.144.0/24 maxlen: 24
89.39.145.0/24 maxlen: 24
37.153.174.0/24 maxlen: 24
213.196.97.0/24 maxlen: 24
188.240.200.0/24 maxlen: 24
188.240.201.0/24 maxlen: 24
178.17.19.0/24 maxlen: 24
178.17.23.0/24 maxlen: 24
178.17.24.0/24 maxlen: 24
178.17.22.0/24 maxlen: 24
92.60.226.0/24 maxlen: 24
92.60.224.0/24 maxlen: 24
92.60.225.0/24 maxlen: 24
92.60.229.0/24 maxlen: 24
178.17.27.0/24 maxlen: 24
178.17.28.0/24 maxlen: 24
178.17.26.0/24 maxlen: 24
178.17.30.0/24 maxlen: 24
92.60.230.0/24 maxlen: 24
92.60.227.0/24 maxlen: 24
92.60.228.0/24 maxlen: 24
92.60.232.0/24 maxlen: 24
92.60.233.0/24 maxlen: 24
92.60.231.0/24 maxlen: 24
92.60.237.0/24 maxlen: 24
92.60.235.0/24 maxlen: 24
92.60.239.0/24 maxlen: 24
92.60.238.0/24 maxlen: 24
176.67.192.0/24 maxlen: 24
176.67.196.0/24 maxlen: 24
176.67.198.0/24 maxlen: 24
176.67.193.0/24 maxlen: 24
176.67.194.0/24 maxlen: 24
89.47.40.0/24 maxlen: 24
89.47.41.0/24 maxlen: 24
176.67.200.0/23 maxlen: 24
176.67.204.0/24 maxlen: 24
176.67.202.0/23 maxlen: 24
176.67.205.0/24 maxlen: 24
176.67.206.0/23 maxlen: 23
176.67.210.0/24 maxlen: 24
176.67.211.0/24 maxlen: 24
62.101.130.0/24 maxlen: 24
176.67.212.0/24 maxlen: 24
176.67.208.0/24 maxlen: 24
176.67.217.0/24 maxlen: 24
176.67.218.0/24 maxlen: 24
176.67.219.0/24 maxlen: 24
176.67.214.0/24 maxlen: 24
176.67.223.0/24 maxlen: 24
176.67.221.0/24 maxlen: 24
176.67.220.0/24 maxlen: 24
185.27.131.0/24 maxlen: 24
185.27.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Feb 2024 10:03:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:1c:15:32:95:5b:92:3b:09:ed:95:84:31:aa:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Validity
Not Before: Jan 1 12:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fe4f977e13fc4f93e96d80962105b2e76206a60a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:2d:e0:0f:df:66:57:43:15:1a:a1:06:de:f3:
70:0d:0a:05:6a:29:b0:42:5c:c3:ab:63:f5:00:11:
e8:f2:3e:32:5e:8c:71:c3:1e:14:da:30:eb:6a:8a:
04:65:93:21:58:25:9c:30:a9:8c:02:c9:ae:60:3c:
be:8d:e4:10:b8:66:4b:fc:84:cb:56:1d:0b:8c:f3:
a5:42:99:0a:32:bb:fb:8e:63:92:c4:03:8c:e9:7e:
74:eb:9e:94:e7:86:a2:53:61:15:d2:fb:06:58:e3:
32:02:89:1f:4c:a6:bb:79:8c:36:38:8f:21:bd:14:
a8:11:e0:af:b6:e7:1c:db:48:7c:46:ca:46:ac:96:
3a:a3:08:8d:da:10:97:7e:bd:2c:e1:f8:d2:4c:22:
aa:42:44:b6:03:36:4a:aa:e3:e3:61:ee:b3:37:7d:
6e:0c:78:f2:c9:64:d7:8b:83:6a:ce:75:7c:53:69:
d2:15:a3:5c:a7:59:ab:67:41:67:c2:7e:10:3e:ac:
74:d1:e8:d2:ac:74:cb:b8:fb:78:b5:49:8d:0b:3d:
7f:ad:06:39:c7:b8:03:5b:f4:3f:7c:f5:ba:a6:f3:
22:e6:6f:89:5e:9a:4f:42:93:fc:37:84:ee:40:6b:
e7:f0:03:8f:bc:ca:b6:5a:e0:04:db:73:91:87:5e:
81:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:4F:97:7E:13:FC:4F:93:E9:6D:80:96:21:05:B2:E7:62:06:A6:0A
X509v3 Authority Key Identifier:
keyid:E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/_k-XfhP8T5PpbYCWIQWy52IGpgo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/6bEyD7wk1vQ2bLZPz17S17G2vfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.153.174.0/24
62.101.130.0/24
89.39.144.0/23
89.46.127.0/24
89.47.40.0/23
92.60.224.0-92.60.233.255
92.60.235.0/24
92.60.237.0-92.60.239.255
93.113.250.0/24
94.228.227.0/24
94.228.229.0-94.228.231.255
94.228.233.0-94.228.234.255
94.228.237.0-94.228.238.255
176.67.192.0-176.67.194.255
176.67.196.0/24
176.67.198.0/24
176.67.200.0-176.67.208.255
176.67.210.0-176.67.212.255
176.67.214.0/24
176.67.217.0-176.67.221.255
176.67.223.0/24
178.17.19.0/24
178.17.22.0-178.17.24.255
178.17.26.0-178.17.28.255
178.17.30.0/24
185.27.128.0/24
185.27.131.0/24
185.36.255.0/24
188.215.30.0/24
188.240.200.0/23
213.196.97.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:d7:6c:3d:c4:d9:0c:8f:9f:ae:99:5f:ce:87:54:1a:12:1d:
e6:76:35:99:be:ec:cf:36:84:22:d2:09:76:8c:2a:cc:72:77:
63:76:a8:67:09:f8:49:47:f4:23:7d:73:05:de:27:41:00:d7:
00:92:48:a5:68:f8:b2:1d:08:ab:68:69:01:8e:12:2a:11:a4:
58:f4:70:64:ae:1f:aa:e5:40:93:25:e3:37:a8:b0:fb:ae:49:
6a:4e:e2:4b:d2:d0:1a:be:5f:fb:cd:d4:d7:a1:b7:21:80:bb:
17:ce:0a:e8:9c:c5:e6:7b:43:47:a7:e8:0f:f1:80:6e:e3:29:
19:56:b7:79:3a:46:0a:0a:25:38:b5:c3:3f:3a:21:77:8b:12:
33:b7:90:ad:ab:92:d0:83:59:6d:79:99:81:82:13:a8:da:26:
06:4c:94:ad:24:c5:d8:60:67:c0:8e:d6:51:62:06:b0:9d:bd:
14:1d:07:02:20:9f:76:38:17:f3:bd:0b:27:ad:5e:c6:de:73:
01:45:80:d9:cc:da:f0:d5:b7:49:07:48:b3:9e:f4:93:6e:5e:
01:2c:36:38:e5:95:13:5c:6d:cc:88:61:a4:79:0f:57:14:61:
1f:2d:ec:1b:f2:b5:91:6e:16:c5:b9:6c:30:de:3e:8b:1f:7a:
71:16:66:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:32 2024 by rpki-client on console-fra.rpki-client.org