Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/bf8338-8752-4d55-9c31-0e1b8fea8913/1/aynjHmDKYJPWJvRVY1LGvnM1SpQ.roa
File: aynjHmDKYJPWJvRVY1LGvnM1SpQ.roa (raw, json)
Hash identifier: FlS6IsWqdPbJHpMXG+bn2FOq3Y/T2JPEAwZSpw8mWtI=
Subject key identifier: 6B:29:E3:1E:60:CA:60:93:D6:26:F4:55:63:52:C6:BE:73:35:4A:94
Certificate issuer: /CN=69507f066f2bb0389dd88436074e1426114f2d92
Certificate serial: 01863168A9881EA757C49C62C173237CE6A2
Authority key identifier: 69:50:7F:06:6F:2B:B0:38:9D:D8:84:36:07:4E:14:26:11:4F:2D:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVB_Bm8rsDid2IQ2B04UJhFPLZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/bf8338-8752-4d55-9c31-0e1b8fea8913/1/aynjHmDKYJPWJvRVY1LGvnM1SpQ.roa
Signing time: Wed 08 Feb 2023 14:23:08 +0000
ROA not before: Wed 08 Feb 2023 14:23:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210079
IP address blocks: 178.208.64.0/24 maxlen: 24
178.208.68.0/24 maxlen: 24
178.208.67.0/24 maxlen: 24
178.208.66.0/24 maxlen: 24
178.208.71.0/24 maxlen: 24
178.208.70.0/24 maxlen: 24
178.208.69.0/24 maxlen: 24
178.208.65.0/24 maxlen: 24
178.208.72.0/24 maxlen: 24
178.208.75.0/24 maxlen: 24
178.208.74.0/24 maxlen: 24
178.208.73.0/24 maxlen: 24
178.208.78.0/24 maxlen: 24
178.208.77.0/24 maxlen: 24
178.208.76.0/24 maxlen: 24
178.208.82.0/24 maxlen: 24
178.208.81.0/24 maxlen: 24
178.208.80.0/24 maxlen: 24
178.208.85.0/24 maxlen: 24
178.208.84.0/24 maxlen: 24
178.208.83.0/24 maxlen: 24
178.208.79.0/24 maxlen: 24
178.208.89.0/24 maxlen: 24
178.208.88.0/24 maxlen: 24
178.208.91.0/24 maxlen: 24
178.208.90.0/24 maxlen: 24
178.208.86.0/24 maxlen: 24
178.208.95.0/24 maxlen: 24
178.208.94.0/24 maxlen: 24
178.208.93.0/24 maxlen: 24
178.208.92.0/24 maxlen: 24
109.234.32.0/24 maxlen: 24
2.56.90.0/24 maxlen: 24
2.56.89.0/24 maxlen: 24
2.56.88.0/24 maxlen: 24
185.105.108.0/24 maxlen: 24
185.105.111.0/24 maxlen: 24
185.105.110.0/24 maxlen: 24
185.105.109.0/24 maxlen: 24
95.142.38.0/24 maxlen: 24
95.142.37.0/24 maxlen: 24
95.142.36.0/24 maxlen: 24
95.142.35.0/24 maxlen: 24
95.142.32.0/24 maxlen: 24
95.142.43.0/24 maxlen: 24
95.142.42.0/24 maxlen: 24
95.142.40.0/24 maxlen: 24
95.142.39.0/24 maxlen: 24
2a09:c140:3::/48 maxlen: 48
2a09:c140:db::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 08 Aug 2023 11:14:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:31:68:a9:88:1e:a7:57:c4:9c:62:c1:73:23:7c:e6:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69507f066f2bb0389dd88436074e1426114f2d92
Validity
Not Before: Feb 8 14:23:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b29e31e60ca6093d626f4556352c6be73354a94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:82:b7:2a:49:2a:9b:70:d1:9b:ac:c6:c3:da:
b5:c4:aa:ea:34:4d:02:d7:9a:e8:77:c2:d5:2f:7a:
27:dd:e7:95:18:2f:07:0f:e6:f1:07:05:82:b3:a4:
72:89:8e:32:0b:20:8a:e3:9a:ae:20:ba:96:41:12:
4e:66:bd:f9:5b:65:2d:c8:ae:c7:b7:a9:45:df:44:
4c:aa:80:d2:54:ef:42:60:9c:02:f6:7a:46:03:58:
ce:4a:6d:91:52:69:a8:72:d9:7b:e4:92:89:04:e9:
d0:d0:f4:f6:03:38:af:77:1e:54:38:79:e1:b5:4a:
2a:ba:ed:6e:c9:1c:85:15:60:a3:eb:a6:e4:3c:da:
9b:72:51:6f:78:9f:e7:84:fa:1d:e3:21:57:01:ad:
57:8d:0a:69:70:20:ba:d1:c7:19:4b:e9:0a:a1:50:
98:f7:19:f5:90:b0:a7:a9:a8:5c:96:e7:0a:5b:90:
40:e3:ce:ae:75:a4:aa:1c:f7:f0:2e:06:84:05:1d:
65:4e:8a:d9:20:90:f7:eb:6f:5c:96:a4:52:a4:05:
77:57:c2:3b:0e:59:59:d5:c0:11:2a:24:ca:8e:b0:
78:ff:7c:d0:1c:a5:7f:fe:34:84:1f:8c:6f:49:04:
8b:93:4c:af:d2:00:e5:89:f5:98:a6:aa:1a:76:8a:
4e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:29:E3:1E:60:CA:60:93:D6:26:F4:55:63:52:C6:BE:73:35:4A:94
X509v3 Authority Key Identifier:
keyid:69:50:7F:06:6F:2B:B0:38:9D:D8:84:36:07:4E:14:26:11:4F:2D:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVB_Bm8rsDid2IQ2B04UJhFPLZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/bf8338-8752-4d55-9c31-0e1b8fea8913/1/aynjHmDKYJPWJvRVY1LGvnM1SpQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/bf8338-8752-4d55-9c31-0e1b8fea8913/1/aVB_Bm8rsDid2IQ2B04UJhFPLZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.88.0-2.56.90.255
95.142.32.0/24
95.142.35.0-95.142.40.255
95.142.42.0/23
109.234.32.0/24
178.208.64.0-178.208.86.255
178.208.88.0/21
185.105.108.0/22
IPv6:
2a09:c140:3::/48
2a09:c140:db::/48
Signature Algorithm: sha256WithRSAEncryption
8c:1a:4f:49:2b:e6:f9:1f:dc:ab:fd:de:05:4b:c2:7a:95:60:
86:04:c2:45:4c:93:00:59:39:1a:0f:32:ea:24:a7:68:b6:05:
54:68:f9:a2:bf:ba:65:cd:a6:a9:f5:33:c1:7b:8b:4c:5e:7e:
7d:e5:27:68:8a:6b:3a:16:2c:f3:60:31:96:c4:93:c5:14:e8:
49:ec:bb:bd:c7:b1:1f:3c:44:2c:3c:a8:84:f9:7d:d4:42:96:
46:12:ef:0e:b3:31:ee:c0:5b:75:46:04:7a:cc:48:51:66:9a:
85:b7:a7:a0:59:3e:0c:ad:6c:18:ac:6c:30:8c:6b:79:be:58:
12:5c:bd:8f:6a:9c:68:ff:7a:d7:58:a4:7b:4a:7b:22:8c:aa:
60:0f:8d:5d:46:0b:bd:1c:5d:6c:4c:ca:ea:10:b7:26:9f:c9:
46:c8:68:4f:f6:a2:c1:fd:81:1a:78:73:44:74:74:69:90:8f:
f3:f7:17:24:06:12:57:3c:5f:ff:50:8b:e4:1a:60:a9:56:8e:
86:7b:71:2d:f2:12:44:41:b5:f2:e6:dc:d7:4d:50:06:9b:51:
c0:8f:94:47:e9:a9:75:6b:cb:fa:e7:e1:db:02:15:94:46:c1:
65:09:ad:f8:e2:0d:93:5f:1e:5a:51:81:fe:8f:bc:a5:54:bc:
eb:d8:31:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:20 2024 by rpki-client on console-ams.rpki-client.org