Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/AN_Mg00xGOH9F6f3qUoqKTbgWfA.roa
File: AN_Mg00xGOH9F6f3qUoqKTbgWfA.roa (raw, json)
Hash identifier: fuxbuKlYE4tB2hQ+PXAJhEnrHzNlmAYI2fOeMVi9Q1I=
Subject key identifier: 00:DF:CC:83:4D:31:18:E1:FD:17:A7:F7:A9:4A:2A:29:36:E0:59:F0
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 018CC9BB07490628E8B7B9494AA83E0AAFF2
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/AN_Mg00xGOH9F6f3qUoqKTbgWfA.roa
Signing time: Tue 02 Jan 2024 10:32:06 +0000
ROA not before: Tue 02 Jan 2024 10:32:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44709
IP address blocks: 91.228.126.0/23 maxlen: 23
194.36.91.0/24 maxlen: 24
194.36.90.0/24 maxlen: 24
194.36.89.0/24 maxlen: 24
195.238.120.0/24 maxlen: 24
5.100.250.0/23 maxlen: 23
5.100.251.0/24 maxlen: 24
5.100.250.0/24 maxlen: 24
5.100.252.0/23 maxlen: 23
5.100.253.0/24 maxlen: 24
5.100.252.0/24 maxlen: 24
5.100.249.0/24 maxlen: 24
5.100.248.0/23 maxlen: 23
5.100.248.0/24 maxlen: 24
212.80.204.0/24 maxlen: 24
212.80.206.0/24 maxlen: 24
212.80.205.0/24 maxlen: 24
5.100.254.0/23 maxlen: 23
5.100.254.0/24 maxlen: 24
5.100.255.0/24 maxlen: 24
212.80.207.0/24 maxlen: 24
188.191.147.0/24 maxlen: 24
31.133.103.0/24 maxlen: 24
31.133.102.0/24 maxlen: 24
31.133.100.0/24 maxlen: 24
195.28.181.0/24 maxlen: 24
195.28.180.0/24 maxlen: 24
185.139.231.0/24 maxlen: 24
109.207.76.0/24 maxlen: 24
185.241.4.0/24 maxlen: 24
109.207.79.0/24 maxlen: 24
185.241.7.0/24 maxlen: 24
185.241.6.0/24 maxlen: 24
185.241.5.0/24 maxlen: 24
185.220.207.0/24 maxlen: 24
45.83.40.0/24 maxlen: 24
45.83.43.0/24 maxlen: 24
45.83.42.0/24 maxlen: 24
185.56.72.0/22 maxlen: 22
45.93.95.0/24 maxlen: 24
45.93.92.0/24 maxlen: 24
45.93.94.0/24 maxlen: 24
45.93.93.0/24 maxlen: 24
81.28.7.0/24 maxlen: 24
91.223.106.0/24 maxlen: 24
63.250.63.0/24 maxlen: 24
63.250.61.0/24 maxlen: 24
63.250.62.0/24 maxlen: 24
185.28.152.0/24 maxlen: 24
185.28.154.0/24 maxlen: 24
185.28.153.0/24 maxlen: 24
185.28.155.0/24 maxlen: 24
83.229.71.0/24 maxlen: 24
83.229.70.0/24 maxlen: 24
83.229.74.0/24 maxlen: 24
83.229.73.0/24 maxlen: 24
83.229.72.0/24 maxlen: 24
103.13.209.0/24 maxlen: 24
185.253.75.0/24 maxlen: 24
185.253.73.0/24 maxlen: 24
185.253.72.0/24 maxlen: 24
185.162.125.0/24 maxlen: 24
185.162.124.0/24 maxlen: 24
185.162.126.0/24 maxlen: 24
185.47.175.0/24 maxlen: 24
91.202.171.0/24 maxlen: 24
91.202.168.0/24 maxlen: 24
91.202.170.0/24 maxlen: 24
91.202.169.0/24 maxlen: 24
91.226.76.0/24 maxlen: 24
91.226.72.0/24 maxlen: 24
2a06:c5c0:700::/48 maxlen: 48
2a06:c5c0:900::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 13 Feb 2024 14:24:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:07:49:06:28:e8:b7:b9:49:4a:a8:3e:0a:af:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Jan 2 10:32:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=00dfcc834d3118e1fd17a7f7a94a2a2936e059f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:13:3b:15:d7:35:6b:cd:7f:1d:43:77:1e:14:
b6:e7:ac:2e:17:00:4a:49:77:85:43:29:08:24:fd:
41:03:e1:f1:1a:d4:2f:5b:1a:57:74:e4:d4:29:d7:
38:3f:67:a8:6d:d6:43:7b:ea:e7:29:38:bc:44:f1:
f1:33:8e:68:44:f7:9b:5f:a9:ae:75:cc:ab:50:61:
3c:4b:2a:66:98:24:95:1f:a4:95:4a:39:b0:3c:30:
73:8a:8f:2f:7b:0c:2b:2e:19:60:4f:65:15:1f:4c:
ab:2f:a5:8e:94:62:92:12:34:5d:da:83:8b:15:e4:
e6:27:bc:9f:8c:d4:9b:85:50:91:e8:80:76:f8:a2:
1d:ad:af:07:51:ed:07:38:3e:9b:99:23:7f:64:4b:
ed:04:b1:65:62:83:47:4a:65:84:e9:7b:6c:0a:3f:
8f:61:63:6b:bc:ad:2c:2b:52:07:a1:69:7a:91:91:
2f:83:27:33:e9:58:42:1e:0b:a2:c1:25:23:c1:d7:
96:bb:ac:e2:ec:f0:31:e5:25:3c:10:b8:81:17:d9:
08:b6:a0:38:47:3a:a0:8a:f9:ce:3a:a3:d2:5d:c7:
f8:e9:51:6b:78:cf:5b:2f:12:d2:43:02:74:91:7b:
3f:81:b7:36:d0:f6:ea:06:9e:e9:6c:fd:be:50:a6:
95:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:DF:CC:83:4D:31:18:E1:FD:17:A7:F7:A9:4A:2A:29:36:E0:59:F0
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/AN_Mg00xGOH9F6f3qUoqKTbgWfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.248.0/21
31.133.100.0/24
31.133.102.0/23
45.83.40.0/24
45.83.42.0/23
45.93.92.0/22
63.250.61.0-63.250.63.255
81.28.7.0/24
83.229.70.0-83.229.74.255
91.202.168.0/22
91.223.106.0/24
91.226.72.0/24
91.226.76.0/24
91.228.126.0/23
103.13.209.0/24
109.207.76.0/24
109.207.79.0/24
185.28.152.0/22
185.47.175.0/24
185.56.72.0/22
185.139.231.0/24
185.162.124.0-185.162.126.255
185.220.207.0/24
185.241.4.0/22
185.253.72.0/23
185.253.75.0/24
188.191.147.0/24
194.36.89.0-194.36.91.255
195.28.180.0/23
195.238.120.0/24
212.80.204.0/22
IPv6:
2a06:c5c0:700::/48
2a06:c5c0:900::/48
Signature Algorithm: sha256WithRSAEncryption
c5:81:3e:32:27:34:e0:20:da:bd:1f:3e:56:1b:87:b7:28:94:
f7:d2:7e:5f:9e:5e:bf:aa:d2:bc:1a:dd:2b:d8:9c:66:4a:fb:
6e:a1:4b:44:62:6e:b3:24:27:7a:10:38:dd:d7:b0:c5:b8:3c:
85:89:12:5d:06:50:5f:52:50:4d:2d:3c:20:03:39:d4:78:d6:
50:ac:36:98:ce:fd:97:68:6a:22:23:f1:0b:bd:a5:13:62:85:
f9:3c:57:81:fc:47:94:f3:9f:c6:0b:b6:11:18:d9:61:13:f8:
ae:08:f1:99:f9:12:0a:b6:79:a5:46:5c:a7:b4:39:fe:47:ac:
3a:df:d2:59:5f:da:cb:e7:e1:a1:fd:eb:82:4b:c0:cd:47:31:
57:09:b8:a9:fd:60:db:86:89:56:29:d6:42:48:0e:03:c8:83:
3d:57:f2:0d:65:f3:29:24:2b:5d:1d:b4:7c:6c:ca:43:1b:a6:
fa:f1:fb:dc:9b:f8:39:02:8a:c1:d5:7f:fe:fd:47:07:41:b8:
38:3b:3a:05:68:bf:06:99:da:4b:75:8e:73:38:5a:14:52:4c:
8a:ea:41:3c:28:55:32:b7:14:fa:4f:b7:b9:a5:3e:d2:02:a4:
52:fa:60:7b:ae:81:79:4c:b1:05:ea:62:02:3e:d4:c9:fd:96:
9a:5c:d5:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 13 17:34:59 2024 by rpki-client on console-fra.rpki-client.org