Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/0YGdb9q68D91i4DMIDb3j6RG1vA.roa
File: 0YGdb9q68D91i4DMIDb3j6RG1vA.roa (raw, json)
Hash identifier: obRPriV+BnoAhj3LxJWrqisOcyOzWZ39ANIrIUEwOe0=
Subject key identifier: D1:81:9D:6F:DA:BA:F0:3F:75:8B:80:CC:20:36:F7:8F:A4:46:D6:F0
Certificate issuer: /CN=a3513d288dabde7dee069bdb636573ce9c3ecb60
Certificate serial: 01856F94905A0629C649C1383506B076977F
Authority key identifier: A3:51:3D:28:8D:AB:DE:7D:EE:06:9B:DB:63:65:73:CE:9C:3E:CB:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o1E9KI2r3n3uBpvbY2Vzzpw-y2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/0YGdb9q68D91i4DMIDb3j6RG1vA.roa
Signing time: Sun 01 Jan 2023 23:04:45 +0000
ROA not before: Sun 01 Jan 2023 23:04:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30823
IP address blocks: 147.189.175.0/24 maxlen: 24
147.189.174.0/24 maxlen: 24
147.189.173.0/24 maxlen: 24
147.189.171.0/24 maxlen: 24
147.189.172.0/24 maxlen: 24
147.189.168.0/24 maxlen: 24
147.189.170.0/24 maxlen: 24
147.189.169.0/24 maxlen: 24
193.23.127.0/24 maxlen: 24
193.23.126.0/24 maxlen: 24
194.156.88.0/24 maxlen: 24
194.156.90.0/24 maxlen: 24
194.156.91.0/24 maxlen: 24
88.214.58.0/24 maxlen: 24
88.214.57.0/24 maxlen: 24
88.214.56.0/24 maxlen: 24
5.249.161.0/24 maxlen: 24
5.249.160.0/24 maxlen: 24
5.249.163.0/24 maxlen: 24
5.249.162.0/24 maxlen: 24
5.249.164.0/24 maxlen: 24
92.42.44.0/24 maxlen: 24
193.23.160.0/24 maxlen: 24
193.23.161.0/24 maxlen: 24
92.42.46.0/24 maxlen: 24
92.42.45.0/24 maxlen: 24
92.42.47.0/24 maxlen: 24
193.203.238.0/24 maxlen: 24
185.239.239.0/24 maxlen: 24
185.239.236.0/24 maxlen: 24
185.239.238.0/24 maxlen: 24
185.239.237.0/24 maxlen: 24
185.223.28.0/24 maxlen: 24
185.223.30.0/24 maxlen: 24
185.223.29.0/24 maxlen: 24
185.223.31.0/24 maxlen: 24
45.146.253.0/24 maxlen: 24
45.146.252.0/24 maxlen: 24
45.146.254.0/24 maxlen: 24
45.146.255.0/24 maxlen: 24
185.249.197.0/24 maxlen: 24
185.249.199.0/24 maxlen: 24
185.249.198.0/24 maxlen: 24
2a0c:3580::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 24 May 2023 08:42:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:90:5a:06:29:c6:49:c1:38:35:06:b0:76:97:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3513d288dabde7dee069bdb636573ce9c3ecb60
Validity
Not Before: Jan 1 23:04:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1819d6fdabaf03f758b80cc2036f78fa446d6f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:16:6b:aa:1b:97:46:b3:ba:9d:47:20:b7:88:
fc:85:ed:f9:58:1e:c0:f6:e1:49:50:72:23:ec:52:
b6:cc:9f:43:0c:0c:24:26:dc:96:ee:a9:16:c8:a6:
38:f1:33:83:f9:e5:64:f1:a7:13:65:09:f5:74:95:
90:f9:66:5f:aa:c5:54:9a:3d:6a:f1:59:27:6c:98:
33:c8:3f:38:7e:9e:d5:61:44:e1:16:84:ef:6f:4e:
65:52:53:5a:bf:5e:05:0e:48:49:f8:80:39:bc:06:
da:10:fb:ea:81:95:15:09:49:69:ae:c2:c6:87:45:
1e:89:ce:ea:1e:8f:e0:35:d8:cb:65:58:37:41:29:
36:65:1c:ef:6a:b2:65:46:88:67:f1:f0:4f:93:e2:
e2:7c:96:db:c3:3a:e1:04:61:68:e0:6e:4f:ac:ec:
18:a1:2a:6e:33:83:ae:c4:cb:81:f3:dd:66:b9:2e:
0c:1a:c3:95:1e:2f:f5:73:41:3f:7b:bf:ea:18:a7:
9d:18:0b:37:32:a5:c4:a8:67:e0:3e:3e:00:47:58:
42:4b:ff:85:ab:e4:09:b2:97:aa:93:b8:22:b0:55:
5a:d5:25:be:3e:9b:e8:e0:5c:46:d6:cd:3c:72:38:
16:d5:1c:2b:2f:43:08:d7:d0:a8:8c:6d:77:9f:c9:
b9:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:81:9D:6F:DA:BA:F0:3F:75:8B:80:CC:20:36:F7:8F:A4:46:D6:F0
X509v3 Authority Key Identifier:
keyid:A3:51:3D:28:8D:AB:DE:7D:EE:06:9B:DB:63:65:73:CE:9C:3E:CB:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o1E9KI2r3n3uBpvbY2Vzzpw-y2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/0YGdb9q68D91i4DMIDb3j6RG1vA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/o1E9KI2r3n3uBpvbY2Vzzpw-y2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.249.160.0-5.249.164.255
45.146.252.0/22
88.214.56.0-88.214.58.255
92.42.44.0/22
147.189.168.0/21
185.223.28.0/22
185.239.236.0/22
185.249.197.0-185.249.199.255
193.23.126.0/23
193.23.160.0/23
193.203.238.0/24
194.156.88.0/24
194.156.90.0/23
IPv6:
2a0c:3580::/29
Signature Algorithm: sha256WithRSAEncryption
44:b6:d8:57:c6:94:9d:a4:d4:a8:fc:a0:17:f5:20:da:f3:a1:
d3:bd:98:58:e4:da:b8:35:b5:6c:ce:ee:1d:bd:32:bf:c4:d7:
a2:7e:85:22:0a:f0:74:69:39:f8:03:b0:2b:a9:b1:a9:be:6f:
5f:f4:0c:00:33:90:67:b5:1b:1f:0a:53:bf:b7:7d:c1:c3:bf:
ad:f8:df:13:d9:57:38:b1:75:46:45:76:83:62:4b:36:0e:20:
74:55:d0:c7:ef:24:33:ef:a6:a0:bf:aa:5d:2c:94:98:18:c9:
73:45:7b:99:75:37:2c:c9:f4:14:b0:e8:02:03:86:8e:e6:b8:
66:61:04:da:79:28:fe:1d:a9:e5:20:9d:de:04:2b:1a:b7:35:
8f:3b:fd:95:fc:a0:09:4d:03:ea:45:0a:5d:f1:00:83:9a:67:
79:0a:4b:b1:65:69:9c:c7:48:77:8e:c4:b8:af:01:9c:88:0a:
02:58:c2:e1:ec:cf:72:75:6e:46:c5:53:ea:f6:34:d9:5c:b1:
71:26:bf:a4:8f:25:4b:f2:15:94:93:11:c6:1e:b8:6b:70:db:
5c:fe:56:0a:a8:8e:a4:a6:b6:59:4a:87:ec:5d:77:88:0f:6c:
b7:44:16:0f:fb:7f:f9:23:ae:c2:3d:a3:7c:e0:f0:7f:84:e0:
5b:16:54:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:27 2024 by rpki-client on console-ams.rpki-client.org