Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/5442ce-48bc-4164-9350-9240d9f75ae6/1/bHIeK_ayTV19fZAjkNL-MVWbOlc.roa
File: bHIeK_ayTV19fZAjkNL-MVWbOlc.roa (raw, json)
Hash identifier: FKogA0SUz5p5qrxxO05lXaFSWGZol/aumdvwAQk3Iq8=
Subject key identifier: 6C:72:1E:2B:F6:B2:4D:5D:7D:7D:90:23:90:D2:FE:31:55:9B:3A:57
Certificate issuer: /CN=4283696716dbcc360b9a62ef7d84b4d28f958bdd
Certificate serial: 0186D58734E1F8FBB9E21E45AA772152A761
Authority key identifier: 42:83:69:67:16:DB:CC:36:0B:9A:62:EF:7D:84:B4:D2:8F:95:8B:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QoNpZxbbzDYLmmLvfYS00o-Vi90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/5442ce-48bc-4164-9350-9240d9f75ae6/1/bHIeK_ayTV19fZAjkNL-MVWbOlc.roa
Signing time: Sun 12 Mar 2023 11:14:13 +0000
ROA not before: Sun 12 Mar 2023 11:14:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29256
IP address blocks: 31.9.128.0/20 maxlen: 20
82.100.128.0/19 maxlen: 19
31.9.144.0/20 maxlen: 20
31.9.160.0/19 maxlen: 19
91.144.0.0/20 maxlen: 20
31.9.80.0/20 maxlen: 20
91.144.16.0/20 maxlen: 20
31.9.96.0/19 maxlen: 19
91.144.32.0/20 maxlen: 20
82.137.240.0/24 maxlen: 24
82.137.242.0/24 maxlen: 24
94.47.0.0/19 maxlen: 19
82.137.244.0/23 maxlen: 23
82.137.243.0/24 maxlen: 24
82.137.246.0/23 maxlen: 23
82.137.248.0/24 maxlen: 24
82.137.249.0/24 maxlen: 24
82.137.251.0/24 maxlen: 24
82.137.250.0/24 maxlen: 24
82.137.253.0/24 maxlen: 24
82.137.252.0/24 maxlen: 24
82.137.255.0/24 maxlen: 24
82.137.254.0/24 maxlen: 24
94.47.32.0/19 maxlen: 19
82.137.192.0/20 maxlen: 20
31.9.192.0/19 maxlen: 19
193.124.86.0/23 maxlen: 23
82.137.208.0/20 maxlen: 20
80.70.120.0/21 maxlen: 21
82.137.224.0/20 maxlen: 20
31.9.224.0/19 maxlen: 19
188.133.96.0/19 maxlen: 19
185.109.212.0/22 maxlen: 22
188.133.16.0/20 maxlen: 20
185.99.100.0/22 maxlen: 22
188.133.32.0/19 maxlen: 19
188.133.64.0/19 maxlen: 19
31.9.48.0/22 maxlen: 22
31.9.56.0/21 maxlen: 21
31.9.64.0/20 maxlen: 20
5.155.224.0/19 maxlen: 19
188.133.0.0/20 maxlen: 20
185.92.88.0/22 maxlen: 22
94.47.96.0/19 maxlen: 19
5.0.64.0/18 maxlen: 18
5.155.64.0/19 maxlen: 19
94.47.128.0/20 maxlen: 20
94.47.144.0/20 maxlen: 20
5.0.0.0/19 maxlen: 19
5.155.0.0/19 maxlen: 19
46.40.128.0/18 maxlen: 18
94.47.64.0/19 maxlen: 19
5.0.32.0/19 maxlen: 19
5.155.32.0/19 maxlen: 19
5.0.160.0/19 maxlen: 19
5.155.160.0/19 maxlen: 19
178.253.96.0/23 maxlen: 23
178.253.98.0/24 maxlen: 24
178.253.103.0/24 maxlen: 24
178.253.104.0/22 maxlen: 22
178.253.100.0/23 maxlen: 23
5.0.192.0/18 maxlen: 18
178.253.102.0/24 maxlen: 24
178.253.108.0/23 maxlen: 23
178.253.110.0/23 maxlen: 23
5.155.192.0/19 maxlen: 19
5.155.96.0/19 maxlen: 19
94.47.160.0/19 maxlen: 19
5.0.128.0/19 maxlen: 19
5.155.128.0/19 maxlen: 19
94.47.192.0/18 maxlen: 18
178.253.64.0/19 maxlen: 19
Validation: Failed, certificate revoked on Thu 13 Apr 2023 10:19:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:d5:87:34:e1:f8:fb:b9:e2:1e:45:aa:77:21:52:a7:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4283696716dbcc360b9a62ef7d84b4d28f958bdd
Validity
Not Before: Mar 12 11:14:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c721e2bf6b24d5d7d7d902390d2fe31559b3a57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:2a:31:9b:d3:4d:e8:fb:96:be:1a:cd:c4:43:
b7:08:cf:b4:99:a7:09:bf:5c:9b:b8:ad:de:91:61:
40:85:d1:95:79:99:0b:c9:41:3d:6c:18:92:57:2e:
8f:12:60:97:f0:46:74:6d:49:0c:c7:2d:94:34:a2:
cc:ae:41:ba:13:19:7e:e5:8b:87:a4:a9:27:50:ba:
19:83:91:0a:71:2c:56:65:43:3c:4c:96:45:56:3e:
3b:e3:4e:1c:9c:f6:b7:ea:2c:77:fc:92:c9:19:d3:
2e:98:f6:07:46:d6:ec:85:e0:ee:b3:d5:05:01:17:
35:c3:59:96:ad:17:6b:cf:73:8e:4a:1a:8d:34:b5:
80:e0:eb:41:a5:a9:a6:77:ec:57:db:1a:46:db:35:
6b:06:eb:ab:49:1c:b5:17:b9:04:48:92:4d:ac:f7:
3a:88:5e:f0:0e:b5:1b:75:99:c1:97:d7:eb:64:fd:
6f:fc:65:64:d6:a3:68:6e:1c:99:a8:7d:c1:43:66:
a8:9e:b1:ae:d6:7e:b5:df:51:95:e8:45:0b:e5:b9:
62:8d:e7:a5:de:c2:e0:c1:ec:82:44:45:d3:3a:82:
42:23:43:6f:0a:54:93:2b:fb:cf:a6:67:f8:85:09:
e8:b5:07:c7:e4:90:b4:ca:45:e9:fc:14:63:76:f1:
8f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:72:1E:2B:F6:B2:4D:5D:7D:7D:90:23:90:D2:FE:31:55:9B:3A:57
X509v3 Authority Key Identifier:
keyid:42:83:69:67:16:DB:CC:36:0B:9A:62:EF:7D:84:B4:D2:8F:95:8B:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QoNpZxbbzDYLmmLvfYS00o-Vi90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/5442ce-48bc-4164-9350-9240d9f75ae6/1/bHIeK_ayTV19fZAjkNL-MVWbOlc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/5442ce-48bc-4164-9350-9240d9f75ae6/1/QoNpZxbbzDYLmmLvfYS00o-Vi90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.0.0.0/16
5.155.0.0/16
31.9.48.0/22
31.9.56.0-31.9.255.255
46.40.128.0/18
80.70.120.0/21
82.100.128.0/19
82.137.192.0-82.137.240.255
82.137.242.0-82.137.255.255
91.144.0.0-91.144.47.255
94.47.0.0/16
178.253.64.0-178.253.98.255
178.253.100.0-178.253.111.255
185.92.88.0/22
185.99.100.0/22
185.109.212.0/22
188.133.0.0/17
193.124.86.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:ff:37:67:13:b1:2e:f8:98:36:df:f6:1e:cd:2d:e6:53:18:
96:56:e3:b2:af:b7:06:90:da:23:c0:23:22:a7:01:b0:e3:40:
78:36:d2:6f:f8:d5:dc:31:23:9f:86:13:f5:51:ef:51:d1:5f:
ef:c0:d4:a2:17:e8:67:22:af:e8:28:f5:43:d0:c5:26:09:ca:
c0:92:34:cd:bb:e8:72:c6:1f:34:b9:9c:94:fb:f0:18:90:57:
c5:ed:ac:9e:24:00:33:08:c0:e8:4e:d8:43:ca:ec:a2:ec:51:
11:35:2b:41:9c:12:6f:02:30:c0:2f:ab:f0:d2:fe:4d:a7:e8:
78:9d:75:b9:3e:bd:c7:4c:b3:3e:58:75:82:0c:56:46:54:de:
38:86:35:ec:6f:bf:91:98:a6:84:21:d4:af:53:00:f9:ba:54:
71:10:57:20:72:ea:3a:df:14:17:f4:28:4a:83:93:d0:6b:92:
d9:0b:e0:2c:93:af:f6:3e:f3:15:8f:3a:32:09:94:cc:97:80:
f7:14:9b:35:19:aa:3d:bb:ca:95:b2:e8:77:24:db:55:97:c9:
57:16:c2:e9:07:f0:a0:48:c2:76:bc:14:7c:47:f5:25:ab:cb:
f5:44:26:30:2c:e7:2c:89:4a:7e:0b:ea:c9:79:39:e7:da:17:
9d:9d:85:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:26 2024 by rpki-client on console-ams.rpki-client.org