Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/7kQ2ECDH25DS0YhfIG0aIzKTh0A.roa
File: 7kQ2ECDH25DS0YhfIG0aIzKTh0A.roa (raw, json)
Hash identifier: k/zfa2h9u8PV5S6mAjiLWv4Xlm9eng2cMCS02xqiyxo=
Subject key identifier: EE:44:36:10:20:C7:DB:90:D2:D1:88:5F:20:6D:1A:23:32:93:87:40
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 0185ECDE105B9E289EBDFA7E17AA91081F82
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/7kQ2ECDH25DS0YhfIG0aIzKTh0A.roa
Signing time: Thu 26 Jan 2023 06:57:34 +0000
ROA not before: Thu 26 Jan 2023 06:57:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44709
IP address blocks: 91.228.126.0/23 maxlen: 23
194.36.91.0/24 maxlen: 24
194.36.90.0/24 maxlen: 24
194.36.89.0/24 maxlen: 24
5.100.250.0/23 maxlen: 23
5.100.251.0/24 maxlen: 24
5.100.250.0/24 maxlen: 24
5.100.252.0/23 maxlen: 23
5.100.253.0/24 maxlen: 24
5.100.252.0/24 maxlen: 24
5.100.249.0/24 maxlen: 24
5.100.248.0/23 maxlen: 23
5.100.248.0/24 maxlen: 24
212.80.204.0/24 maxlen: 24
212.80.206.0/24 maxlen: 24
212.80.205.0/24 maxlen: 24
5.100.254.0/23 maxlen: 23
5.100.254.0/24 maxlen: 24
5.100.255.0/24 maxlen: 24
212.80.207.0/24 maxlen: 24
188.191.147.0/24 maxlen: 24
31.133.103.0/24 maxlen: 24
31.133.102.0/24 maxlen: 24
31.133.100.0/24 maxlen: 24
195.28.181.0/24 maxlen: 24
195.28.180.0/24 maxlen: 24
109.207.76.0/24 maxlen: 24
185.241.4.0/24 maxlen: 24
109.207.79.0/24 maxlen: 24
185.241.7.0/24 maxlen: 24
185.241.6.0/24 maxlen: 24
185.241.5.0/24 maxlen: 24
185.220.207.0/24 maxlen: 24
45.83.40.0/24 maxlen: 24
45.83.43.0/24 maxlen: 24
45.83.42.0/24 maxlen: 24
185.56.72.0/22 maxlen: 22
45.93.95.0/24 maxlen: 24
45.93.92.0/24 maxlen: 24
45.93.94.0/24 maxlen: 24
45.93.93.0/24 maxlen: 24
81.28.7.0/24 maxlen: 24
91.223.106.0/24 maxlen: 24
63.250.63.0/24 maxlen: 24
63.250.61.0/24 maxlen: 24
63.250.62.0/24 maxlen: 24
185.28.152.0/24 maxlen: 24
185.28.154.0/24 maxlen: 24
185.28.153.0/24 maxlen: 24
185.28.155.0/24 maxlen: 24
83.229.71.0/24 maxlen: 24
83.229.70.0/24 maxlen: 24
83.229.74.0/24 maxlen: 24
83.229.73.0/24 maxlen: 24
83.229.72.0/24 maxlen: 24
185.253.75.0/24 maxlen: 24
185.253.73.0/24 maxlen: 24
185.253.72.0/24 maxlen: 24
185.162.125.0/24 maxlen: 24
185.162.124.0/24 maxlen: 24
185.162.126.0/24 maxlen: 24
185.47.175.0/24 maxlen: 24
91.202.171.0/24 maxlen: 24
91.202.168.0/24 maxlen: 24
91.202.170.0/24 maxlen: 24
91.202.169.0/24 maxlen: 24
91.226.72.0/24 maxlen: 24
2a06:c5c0:700::/48 maxlen: 48
2a06:c5c0:900::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 09 Mar 2023 04:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ec:de:10:5b:9e:28:9e:bd:fa:7e:17:aa:91:08:1f:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Jan 26 06:57:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee44361020c7db90d2d1885f206d1a2332938740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:73:de:e9:a8:cf:ec:16:88:42:43:b2:1a:b8:
41:8c:4b:8f:c8:e5:ad:2e:ce:6f:fd:63:66:7a:b8:
68:90:54:67:50:c5:c7:dc:c5:df:db:ec:73:eb:c9:
d1:ad:3b:dd:36:1e:10:55:ee:3d:28:82:de:77:c0:
09:59:84:96:f4:86:ec:22:9d:c6:26:cc:99:25:8b:
d5:89:de:c8:89:02:c0:45:f6:45:cd:5a:74:e5:93:
e3:2c:05:e0:6f:73:90:08:32:01:ea:2f:d4:f2:5e:
22:79:a2:29:e8:9f:d9:7e:1f:cb:de:ba:a1:ae:85:
46:44:d8:7e:fb:b7:07:83:40:ad:a4:f2:63:28:70:
ea:d4:1b:d2:c9:01:00:de:48:9a:8b:ac:57:4a:c5:
79:dd:e4:b9:4e:b1:47:7e:ac:be:b8:93:fc:ed:8a:
4f:0e:1c:48:73:7f:36:af:1d:25:28:7d:30:87:a7:
5b:ec:8d:c7:2a:15:c2:1b:67:7b:e1:ec:6f:6a:a2:
f6:c1:d9:e3:8a:35:98:dc:6d:78:24:e2:ec:1f:4a:
ff:95:bf:73:c0:a1:c9:68:7d:b4:d4:62:e4:77:da:
a7:41:7e:9f:30:77:57:cc:ea:88:0b:42:93:50:cc:
45:83:58:54:61:65:8b:46:b1:58:35:70:43:54:46:
19:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:44:36:10:20:C7:DB:90:D2:D1:88:5F:20:6D:1A:23:32:93:87:40
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/7kQ2ECDH25DS0YhfIG0aIzKTh0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.248.0/21
31.133.100.0/24
31.133.102.0/23
45.83.40.0/24
45.83.42.0/23
45.93.92.0/22
63.250.61.0-63.250.63.255
81.28.7.0/24
83.229.70.0-83.229.74.255
91.202.168.0/22
91.223.106.0/24
91.226.72.0/24
91.228.126.0/23
109.207.76.0/24
109.207.79.0/24
185.28.152.0/22
185.47.175.0/24
185.56.72.0/22
185.162.124.0-185.162.126.255
185.220.207.0/24
185.241.4.0/22
185.253.72.0/23
185.253.75.0/24
188.191.147.0/24
194.36.89.0-194.36.91.255
195.28.180.0/23
212.80.204.0/22
IPv6:
2a06:c5c0:700::/48
2a06:c5c0:900::/48
Signature Algorithm: sha256WithRSAEncryption
cd:b7:d8:3a:72:42:50:12:1e:f8:7a:88:d3:49:1c:84:10:d8:
67:af:66:d9:cd:16:ba:7f:f3:fd:e6:35:a0:5c:bd:8d:56:dd:
8e:63:08:ca:56:5d:22:5a:17:2a:7c:5c:16:3c:55:db:8b:4e:
1e:42:33:7f:a0:11:2f:17:63:93:71:97:9e:ea:6c:d8:c3:f2:
2c:b0:94:eb:2f:9f:68:54:b2:d2:9e:dc:20:91:87:37:ad:9b:
d4:00:bd:da:2e:7c:8c:48:a5:85:7b:bc:53:8d:b6:f6:c6:11:
2e:e4:78:e7:d4:aa:48:d0:f2:71:5d:29:a1:2a:4c:c8:77:75:
19:1f:34:46:83:a7:97:b4:1e:29:16:f6:47:cf:d2:c6:c7:6d:
2f:e8:2c:1f:7d:ff:51:25:37:b3:a4:99:1f:4a:f1:0e:11:b8:
c6:0e:ef:b5:cf:12:2c:18:75:ff:0f:a0:61:10:13:de:5c:a1:
d0:9c:58:7d:36:a0:f8:bb:41:23:dc:53:38:9b:39:be:e3:30:
01:45:e6:f2:23:66:49:16:c6:f3:7f:2c:8f:ca:1e:8b:46:56:
bc:bd:de:12:de:25:73:fd:f5:2e:93:ed:07:9e:e9:b9:fb:e8:
fb:60:f1:bb:cc:8d:1b:2f:c7:b1:32:d3:ef:ec:db:9f:d7:39:
a6:08:cb:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:32 2024 by rpki-client on console-fra.rpki-client.org