Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/5syA-SthlX0qTgafioXpH1AqclY.roa
File: 5syA-SthlX0qTgafioXpH1AqclY.roa (raw, json)
Hash identifier: oJwFVV7uhN+fSw89+WXTDdbbVrxHBAs5mjiC/6gyjWw=
Subject key identifier: E6:CC:80:F9:2B:61:95:7D:2A:4E:06:9F:8A:85:E9:1F:50:2A:72:56
Certificate issuer: /CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Certificate serial: 0188BB9D892730091B3C8A06634C6774A36A
Authority key identifier: 7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/5syA-SthlX0qTgafioXpH1AqclY.roa
Signing time: Wed 14 Jun 2023 20:34:03 +0000
ROA not before: Wed 14 Jun 2023 20:34:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 94.245.64.0/18 maxlen: 24
172.208.0.0/13 maxlen: 13
51.124.0.0/16 maxlen: 16
192.100.112.0/21 maxlen: 21
192.100.120.0/21 maxlen: 21
192.100.132.0/23 maxlen: 23
82.87.0.0/16 maxlen: 16
192.100.128.0/22 maxlen: 22
172.160.0.0/11 maxlen: 11
51.144.0.0/15 maxlen: 15
40.171.0.0/16 maxlen: 16
51.107.0.0/16 maxlen: 16
194.238.128.0/17 maxlen: 17
192.100.104.0/21 maxlen: 21
85.212.0.0/16 maxlen: 16
51.138.0.0/16 maxlen: 16
152.138.0.0/16 maxlen: 16
51.10.0.0/15 maxlen: 15
135.229.0.0/16 maxlen: 16
194.110.197.0/24 maxlen: 24
51.104.0.0/15 maxlen: 15
135.232.0.0/14 maxlen: 14
51.12.0.0/15 maxlen: 15
51.103.0.0/16 maxlen: 16
51.140.0.0/14 maxlen: 14
135.130.0.0/16 maxlen: 16
135.224.0.0/15 maxlen: 15
57.150.0.0/15 maxlen: 15
132.164.0.0/16 maxlen: 16
193.221.113.0/24 maxlen: 24
51.53.0.0/16 maxlen: 16
57.160.0.0/12 maxlen: 12
51.120.0.0/16 maxlen: 16
217.177.96.0/19 maxlen: 19
57.156.0.0/14 maxlen: 14
212.173.0.0/17 maxlen: 17
172.128.0.0/11 maxlen: 11
217.176.0.0/16 maxlen: 16
135.230.0.0/16 maxlen: 16
193.149.64.0/19 maxlen: 24
151.129.0.0/16 maxlen: 16
172.200.0.0/13 maxlen: 13
51.116.0.0/16 maxlen: 16
135.116.0.0/16 maxlen: 16
212.207.0.0/16 maxlen: 16
40.170.0.0/16 maxlen: 16
51.136.0.0/15 maxlen: 15
135.236.0.0/15 maxlen: 15
209.199.0.0/16 maxlen: 16
167.162.0.0/16 maxlen: 16
143.226.0.0/16 maxlen: 16
159.128.0.0/16 maxlen: 16
213.54.0.0/16 maxlen: 16
109.246.0.0/16 maxlen: 16
194.41.16.0/20 maxlen: 20
212.132.0.0/19 maxlen: 19
194.41.18.0/24 maxlen: 24
135.4.0.0/16 maxlen: 16
51.132.0.0/16 maxlen: 16
194.41.22.0/24 maxlen: 24
194.41.23.0/24 maxlen: 24
194.41.20.0/24 maxlen: 24
194.41.21.0/24 maxlen: 24
194.41.19.0/24 maxlen: 24
157.31.0.0/16 maxlen: 16
157.95.0.0/16 maxlen: 16
167.186.0.0/16 maxlen: 16
213.199.128.0/18 maxlen: 24
128.85.0.0/16 maxlen: 16
51.51.0.0/16 maxlen: 16
147.243.0.0/16 maxlen: 24
57.152.0.0/14 maxlen: 14
151.206.0.0/16 maxlen: 16
40.169.0.0/16 maxlen: 16
138.105.0.0/16 maxlen: 16
2a00:1c68::/29 maxlen: 29
2a01:111:4004::/48 maxlen: 48
2a01:111::/32 maxlen: 32
2a01:111:f000::/36 maxlen: 36
2a01:111:2000::/36 maxlen: 36
2a01:111:4000::/36 maxlen: 36
Validation: Failed, certificate revoked on Thu 15 Jun 2023 23:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:bb:9d:89:27:30:09:1b:3c:8a:06:63:4c:67:74:a3:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Validity
Not Before: Jun 14 20:34:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6cc80f92b61957d2a4e069f8a85e91f502a7256
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:34:27:6e:de:6d:13:87:2b:67:82:2a:ed:6c:
5b:0e:f9:71:c7:2e:52:7c:26:9f:98:ba:71:ae:69:
a5:06:78:07:50:6d:08:39:7b:44:36:f4:83:20:96:
4a:12:41:de:f9:6b:4c:5d:03:dc:9a:17:c7:de:a7:
13:b8:26:95:f2:2d:e2:02:59:12:83:95:00:89:87:
3e:e5:b4:ec:07:51:3e:1b:70:7c:45:05:ef:d2:cf:
bd:26:39:2b:2a:df:f2:b3:23:52:78:e4:96:37:ab:
88:ae:99:ab:6f:23:c6:f9:97:53:8c:19:96:93:f4:
2a:95:ee:1e:04:9c:5a:56:cf:cf:2c:2a:ad:15:94:
7d:35:91:62:8b:ed:00:bb:c6:49:9d:a6:36:2f:46:
3a:12:74:a0:80:04:49:46:69:e9:8e:40:72:38:7f:
47:fb:4e:c1:d1:e8:a3:ff:18:65:7a:79:7a:da:ea:
9d:21:fd:6f:5b:3b:23:52:be:47:ef:06:0d:d2:8f:
cb:1b:c5:6d:15:9b:de:5a:99:58:16:33:79:6d:e7:
43:31:cd:99:74:03:60:7a:84:3d:58:b0:d0:62:36:
62:9d:b8:b2:41:e5:bd:24:d7:2b:7d:21:e7:51:eb:
be:da:68:a4:73:3b:e4:94:48:fd:66:37:89:28:86:
e5:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:CC:80:F9:2B:61:95:7D:2A:4E:06:9F:8A:85:E9:1F:50:2A:72:56
X509v3 Authority Key Identifier:
keyid:7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/5syA-SthlX0qTgafioXpH1AqclY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/fOaNr18IlFbA4dAiRTk1Maxbj8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
40.169.0.0-40.171.255.255
51.10.0.0-51.13.255.255
51.51.0.0/16
51.53.0.0/16
51.103.0.0-51.105.255.255
51.107.0.0/16
51.116.0.0/16
51.120.0.0/16
51.124.0.0/16
51.132.0.0/16
51.136.0.0-51.138.255.255
51.140.0.0-51.145.255.255
57.150.0.0-57.175.255.255
82.87.0.0/16
85.212.0.0/16
94.245.64.0/18
109.246.0.0/16
128.85.0.0/16
132.164.0.0/16
135.4.0.0/16
135.116.0.0/16
135.130.0.0/16
135.224.0.0/15
135.229.0.0-135.230.255.255
135.232.0.0-135.237.255.255
138.105.0.0/16
143.226.0.0/16
147.243.0.0/16
151.129.0.0/16
151.206.0.0/16
152.138.0.0/16
157.31.0.0/16
157.95.0.0/16
159.128.0.0/16
167.162.0.0/16
167.186.0.0/16
172.128.0.0/10
172.200.0.0-172.215.255.255
192.100.104.0-192.100.133.255
193.149.64.0/19
193.221.113.0/24
194.41.16.0/20
194.110.197.0/24
194.238.128.0/17
209.199.0.0/16
212.132.0.0/19
212.173.0.0/17
212.207.0.0/16
213.54.0.0/16
213.199.128.0/18
217.176.0.0/16
217.177.96.0/19
IPv6:
2a00:1c68::/29
2a01:111::/32
Signature Algorithm: sha256WithRSAEncryption
9a:20:32:83:ce:e4:c7:d5:45:92:59:07:7e:39:cb:e2:29:76:
9f:f1:ae:6b:d5:d4:76:57:6e:bd:10:37:d5:ec:9a:b2:14:8c:
83:79:07:d6:53:96:7d:bc:ec:ba:1e:ba:4a:a2:b7:8e:04:8a:
0b:10:cd:e9:97:1b:ed:d1:92:d5:7d:e9:5d:91:39:d7:ee:31:
65:b2:46:4f:fe:60:fe:e8:23:bf:db:2b:b0:70:47:17:77:e3:
6d:cd:8c:aa:b9:cb:6c:c8:02:15:f2:4b:7b:37:64:3d:62:67:
21:d6:f9:d4:75:d7:63:cc:76:84:50:57:d4:eb:8b:94:fa:d4:
8e:8d:f6:03:f5:4d:8d:1b:90:46:3a:4d:06:a7:21:67:b2:28:
7c:ba:2a:8f:41:66:dd:48:ee:86:ae:1d:39:fa:1d:7c:a7:1c:
71:c2:d6:b4:dd:f1:8a:0b:5a:96:e3:a7:f6:92:a9:ec:6e:23:
a9:b2:c5:10:80:a7:10:cf:ee:3e:32:f5:84:71:8f:33:54:8d:
8d:d5:fe:8b:13:68:f7:14:d2:b2:44:5b:9d:d9:a3:90:5e:0c:
9f:88:93:7d:88:2e:68:fe:4d:e8:1d:03:78:58:eb:f5:7f:e4:
be:d6:49:8f:66:ed:1f:53:8a:89:1b:7a:47:9f:da:f5:36:ca:
34:85:d2:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:00 2024 by rpki-client on console-ams.rpki-client.org