Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/HNWa-31q7JaRCwbbwSQQ6Q7TO7k.roa
File: HNWa-31q7JaRCwbbwSQQ6Q7TO7k.roa (raw, json)
Hash identifier: TOtth5wp4f1WMwtiglZqcZM6ms17lB7hM1Wu7n2ZAIw=
Subject key identifier: 1C:D5:9A:FB:7D:6A:EC:96:91:0B:06:DB:C1:24:10:E9:0E:D3:3B:B9
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 0188B40235B6B464ACA69AA95A3F50DB518B
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/HNWa-31q7JaRCwbbwSQQ6Q7TO7k.roa
Signing time: Tue 13 Jun 2023 09:07:03 +0000
ROA not before: Tue 13 Jun 2023 09:07:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44709
IP address blocks: 91.228.126.0/23 maxlen: 23
194.36.91.0/24 maxlen: 24
194.36.90.0/24 maxlen: 24
194.36.89.0/24 maxlen: 24
195.238.120.0/24 maxlen: 24
5.100.250.0/23 maxlen: 23
5.100.251.0/24 maxlen: 24
5.100.250.0/24 maxlen: 24
5.100.252.0/23 maxlen: 23
5.100.253.0/24 maxlen: 24
5.100.252.0/24 maxlen: 24
5.100.249.0/24 maxlen: 24
5.100.248.0/23 maxlen: 23
5.100.248.0/24 maxlen: 24
212.80.204.0/24 maxlen: 24
212.80.206.0/24 maxlen: 24
212.80.205.0/24 maxlen: 24
5.100.254.0/23 maxlen: 23
5.100.254.0/24 maxlen: 24
5.100.255.0/24 maxlen: 24
212.80.207.0/24 maxlen: 24
188.191.147.0/24 maxlen: 24
31.133.103.0/24 maxlen: 24
31.133.102.0/24 maxlen: 24
31.133.100.0/24 maxlen: 24
195.28.181.0/24 maxlen: 24
195.28.180.0/24 maxlen: 24
109.207.76.0/24 maxlen: 24
185.241.4.0/24 maxlen: 24
109.207.79.0/24 maxlen: 24
185.241.7.0/24 maxlen: 24
185.241.6.0/24 maxlen: 24
185.241.5.0/24 maxlen: 24
185.220.207.0/24 maxlen: 24
45.83.40.0/24 maxlen: 24
45.83.43.0/24 maxlen: 24
45.83.42.0/24 maxlen: 24
185.56.72.0/22 maxlen: 22
45.93.95.0/24 maxlen: 24
45.93.92.0/24 maxlen: 24
45.93.94.0/24 maxlen: 24
45.93.93.0/24 maxlen: 24
81.28.7.0/24 maxlen: 24
91.223.106.0/24 maxlen: 24
63.250.63.0/24 maxlen: 24
63.250.61.0/24 maxlen: 24
63.250.62.0/24 maxlen: 24
185.28.152.0/24 maxlen: 24
185.28.154.0/24 maxlen: 24
185.28.153.0/24 maxlen: 24
185.28.155.0/24 maxlen: 24
83.229.71.0/24 maxlen: 24
83.229.70.0/24 maxlen: 24
83.229.74.0/24 maxlen: 24
83.229.73.0/24 maxlen: 24
83.229.72.0/24 maxlen: 24
103.13.209.0/24 maxlen: 24
185.253.75.0/24 maxlen: 24
185.253.73.0/24 maxlen: 24
185.253.72.0/24 maxlen: 24
185.162.125.0/24 maxlen: 24
185.162.124.0/24 maxlen: 24
185.162.126.0/24 maxlen: 24
185.47.175.0/24 maxlen: 24
91.202.171.0/24 maxlen: 24
91.202.168.0/24 maxlen: 24
91.202.170.0/24 maxlen: 24
91.202.169.0/24 maxlen: 24
91.226.72.0/24 maxlen: 24
2a06:c5c0:700::/48 maxlen: 48
2a06:c5c0:900::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 14 Jun 2023 07:07:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b4:02:35:b6:b4:64:ac:a6:9a:a9:5a:3f:50:db:51:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Jun 13 09:07:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1cd59afb7d6aec96910b06dbc12410e90ed33bb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:01:6b:f1:e0:58:ca:39:c4:af:93:20:5d:c6:
a4:62:6a:16:d8:60:66:da:3c:d0:b7:46:37:10:a4:
b5:1b:44:79:86:30:6d:5a:dd:40:07:a4:12:33:39:
a7:e3:df:16:ec:b0:71:00:b2:d6:52:62:fa:b2:33:
45:67:86:c8:62:e2:3d:8d:e5:a0:21:26:88:53:bb:
2f:b5:fa:3a:ea:7d:01:d8:ee:69:95:2f:b1:4d:f4:
87:eb:cb:c9:d0:8a:9b:5f:aa:76:48:e0:23:f0:4d:
49:17:b0:ff:b8:1b:9f:95:ac:15:2e:96:5d:58:bf:
b2:24:a1:85:8f:09:86:3f:ef:c1:23:a4:13:12:1c:
f6:c3:74:df:ec:d9:5e:d2:08:be:ca:a7:04:43:f1:
df:fb:14:f6:ca:8b:3d:a9:96:46:52:5c:0d:b8:2f:
b9:4e:03:1d:66:d5:a5:ec:a8:28:84:10:37:5d:91:
32:9c:57:5d:b3:8e:d8:89:76:25:1d:56:52:92:a3:
75:43:84:0a:50:b3:16:78:c8:81:a8:1d:7b:18:96:
1f:51:79:07:d2:25:d5:76:96:bf:5a:d6:61:47:47:
81:fa:fe:62:e0:af:56:64:e7:d5:92:67:d3:a3:af:
88:b7:0a:74:eb:1c:99:94:e6:7d:d1:4d:91:67:56:
a8:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:D5:9A:FB:7D:6A:EC:96:91:0B:06:DB:C1:24:10:E9:0E:D3:3B:B9
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/HNWa-31q7JaRCwbbwSQQ6Q7TO7k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.248.0/21
31.133.100.0/24
31.133.102.0/23
45.83.40.0/24
45.83.42.0/23
45.93.92.0/22
63.250.61.0-63.250.63.255
81.28.7.0/24
83.229.70.0-83.229.74.255
91.202.168.0/22
91.223.106.0/24
91.226.72.0/24
91.228.126.0/23
103.13.209.0/24
109.207.76.0/24
109.207.79.0/24
185.28.152.0/22
185.47.175.0/24
185.56.72.0/22
185.162.124.0-185.162.126.255
185.220.207.0/24
185.241.4.0/22
185.253.72.0/23
185.253.75.0/24
188.191.147.0/24
194.36.89.0-194.36.91.255
195.28.180.0/23
195.238.120.0/24
212.80.204.0/22
IPv6:
2a06:c5c0:700::/48
2a06:c5c0:900::/48
Signature Algorithm: sha256WithRSAEncryption
0f:32:c9:02:e8:20:ad:80:10:a1:90:c3:7e:77:32:9e:8a:66:
4a:c1:04:d8:3e:f2:e3:5e:b1:69:0f:ec:84:bd:b5:0a:54:8f:
c6:05:5d:f6:38:07:5b:63:59:74:cd:2c:f5:09:62:ee:3f:6e:
de:c9:3e:89:4c:de:ac:51:eb:0d:4e:e6:ee:d0:02:3a:23:17:
c9:27:92:00:f5:f3:a6:0a:17:4b:65:c7:dd:73:75:8f:74:55:
5c:44:d2:2f:a8:d2:1b:43:78:87:32:9c:c2:e7:3e:7d:00:b8:
1e:1c:82:19:f6:74:d3:fe:76:06:9e:b8:43:c3:5d:32:18:18:
f8:4a:08:44:89:96:fb:18:b8:b5:52:8b:38:f5:19:98:82:d7:
32:e4:bb:b9:72:01:b7:4d:a1:c8:27:c9:46:ac:68:a2:77:73:
f4:6c:35:15:50:d7:25:33:d3:34:e4:4c:7a:ba:2b:18:0a:60:
bb:cd:4c:32:38:eb:d8:2b:5f:ad:21:2b:da:c5:19:da:4e:1f:
da:09:84:2b:cf:f0:ca:a7:97:fb:d8:c5:e0:29:34:4d:40:56:
7d:5f:e0:87:37:c2:fa:0e:2a:88:be:08:c2:2d:91:58:4d:67:
1a:6f:c1:0a:d9:09:02:1a:c7:96:d4:f6:e0:e2:0d:cd:e6:8f:
c1:f2:42:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:36 2024 by rpki-client on console-ams.rpki-client.org