Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/vBxRom09YbXxAcFIWnTvV_kPtDE.roa
File: vBxRom09YbXxAcFIWnTvV_kPtDE.roa (raw, json)
Hash identifier: 1THZHWuTLAJGKwRbcXb6n8VP5Cv1SUpprSzPDYdMnQQ=
Subject key identifier: BC:1C:51:A2:6D:3D:61:B5:F1:01:C1:48:5A:74:EF:57:F9:0F:B4:31
Certificate issuer: /CN=5ebba0735a07e40ca32026278b2678678f8bacd9
Certificate serial: 018D43EEACF34FE3DB4FE65D39707687EC62
Authority key identifier: 5E:BB:A0:73:5A:07:E4:0C:A3:20:26:27:8B:26:78:67:8F:8B:AC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xrugc1oH5AyjICYniyZ4Z4-LrNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/vBxRom09YbXxAcFIWnTvV_kPtDE.roa
Signing time: Fri 26 Jan 2024 04:02:11 +0000
ROA not before: Fri 26 Jan 2024 04:02:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29555
IP address blocks: 85.117.96.0/24 maxlen: 24
85.117.97.0/24 maxlen: 24
85.117.98.0/24 maxlen: 24
85.117.99.0/24 maxlen: 24
85.117.100.0/24 maxlen: 24
85.117.101.0/24 maxlen: 24
85.117.102.0/24 maxlen: 24
85.117.103.0/24 maxlen: 24
85.117.104.0/24 maxlen: 24
85.117.105.0/24 maxlen: 24
85.117.106.0/24 maxlen: 24
85.117.107.0/24 maxlen: 24
85.117.108.0/24 maxlen: 24
85.117.109.0/24 maxlen: 24
85.117.110.0/24 maxlen: 24
85.117.111.0/24 maxlen: 24
85.117.112.0/24 maxlen: 24
85.117.113.0/24 maxlen: 24
85.117.114.0/24 maxlen: 24
85.117.115.0/24 maxlen: 24
85.117.116.0/24 maxlen: 24
85.117.117.0/24 maxlen: 24
85.117.118.0/24 maxlen: 24
85.117.119.0/24 maxlen: 24
85.117.120.0/24 maxlen: 24
85.117.121.0/24 maxlen: 24
85.117.122.0/24 maxlen: 24
85.117.123.0/24 maxlen: 24
85.117.124.0/24 maxlen: 24
85.117.125.0/24 maxlen: 24
85.117.126.0/24 maxlen: 24
85.117.127.0/24 maxlen: 24
185.57.72.0/24 maxlen: 24
185.57.73.0/24 maxlen: 24
185.57.74.0/24 maxlen: 24
185.57.75.0/24 maxlen: 24
217.76.64.0/24 maxlen: 24
217.76.65.0/24 maxlen: 24
217.76.68.0/24 maxlen: 24
217.76.71.0/24 maxlen: 24
217.76.72.0/24 maxlen: 24
217.76.74.0/24 maxlen: 24
217.76.75.0/24 maxlen: 24
217.76.76.0/24 maxlen: 24
217.76.77.0/24 maxlen: 24
217.76.78.0/24 maxlen: 24
217.76.79.0/24 maxlen: 24
2a03:32c0:a::/48 maxlen: 48
2a03:32c0:b::/48 maxlen: 48
2a03:32c0:c::/48 maxlen: 48
2a03:32c0:d::/48 maxlen: 48
2a03:32c0:16::/48 maxlen: 48
2a03:32c0:17::/48 maxlen: 48
2a03:32c0:18::/48 maxlen: 48
2a03:32c0:300b::/48 maxlen: 48
2a03:32c0:300e::/48 maxlen: 48
2a03:32c0:300f::/48 maxlen: 48
2a03:32c0:3010::/48 maxlen: 48
2a03:32c0:3011::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 05 Feb 2024 05:49:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:43:ee:ac:f3:4f:e3:db:4f:e6:5d:39:70:76:87:ec:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ebba0735a07e40ca32026278b2678678f8bacd9
Validity
Not Before: Jan 26 04:02:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc1c51a26d3d61b5f101c1485a74ef57f90fb431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:83:7e:80:2f:91:00:43:d4:d6:52:ff:3a:27:
ea:31:18:20:1a:bd:c3:ae:69:9f:84:eb:a1:af:aa:
21:61:fd:4d:88:98:8a:c8:fb:b5:66:18:95:0a:8c:
32:2a:7e:3a:a6:47:79:5c:c5:0a:5b:1d:d6:4d:34:
ff:3f:a1:b3:9a:1b:e0:cd:9a:57:5b:60:f1:67:8f:
fb:1f:7b:9e:91:3e:bf:58:8b:bc:a9:8d:de:0f:7c:
a1:d0:f7:20:d7:3b:36:e3:a5:2f:52:30:5d:97:ed:
57:18:8b:87:70:b1:11:83:0c:5f:43:d8:0c:51:57:
bd:b7:c2:73:45:67:01:08:d9:c4:61:67:68:71:3d:
6b:b2:04:59:65:f8:16:dc:73:21:3f:06:6a:77:4e:
5e:8b:3f:36:32:6a:c4:c8:ce:09:be:fc:e0:42:d0:
93:20:7e:02:1e:32:f6:fd:b7:2b:89:fa:0e:60:eb:
bb:e1:a0:d5:21:f1:f8:c3:48:ce:cd:47:9f:44:2e:
00:1d:d1:30:f7:cd:52:b4:50:6c:aa:e9:74:40:ee:
41:25:f5:37:01:40:ce:7e:c2:25:3b:2f:bf:2d:95:
14:e3:e0:bb:94:f2:a5:39:38:b1:04:7a:22:dd:a5:
b1:9d:bb:65:86:49:35:34:c1:5b:99:5a:10:95:21:
29:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:1C:51:A2:6D:3D:61:B5:F1:01:C1:48:5A:74:EF:57:F9:0F:B4:31
X509v3 Authority Key Identifier:
keyid:5E:BB:A0:73:5A:07:E4:0C:A3:20:26:27:8B:26:78:67:8F:8B:AC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xrugc1oH5AyjICYniyZ4Z4-LrNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/vBxRom09YbXxAcFIWnTvV_kPtDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/Xrugc1oH5AyjICYniyZ4Z4-LrNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.117.96.0/19
185.57.72.0/22
217.76.64.0/23
217.76.68.0/24
217.76.71.0-217.76.72.255
217.76.74.0-217.76.79.255
IPv6:
2a03:32c0:a::-2a03:32c0:d:ffff:ffff:ffff:ffff:ffff
2a03:32c0:16::-2a03:32c0:18:ffff:ffff:ffff:ffff:ffff
2a03:32c0:300b::/48
2a03:32c0:300e::-2a03:32c0:3011:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
52:75:3f:8f:c5:6e:0f:6c:26:15:a8:99:97:af:f3:a3:7a:5b:
ba:f5:26:71:66:2f:03:c8:15:96:0b:22:8d:94:5e:25:79:eb:
d2:24:0a:85:1a:0d:11:62:db:52:f0:16:7f:3d:fe:c1:24:47:
1b:09:05:ba:53:57:ba:2f:a7:ed:29:eb:51:61:81:07:eb:54:
ec:ab:b4:5e:b3:18:d9:e2:fe:aa:5a:b7:38:1e:fb:66:67:cf:
8b:8c:ca:96:23:21:78:13:75:5f:70:ec:86:1a:fc:e0:ff:17:
19:4f:81:a5:54:d5:82:00:13:1a:b8:2c:42:b6:a8:22:60:4a:
49:84:c6:f6:e4:70:fa:82:7f:25:7d:12:88:64:bd:fe:c9:eb:
f9:7b:a2:fd:07:37:57:57:f0:47:98:ba:6b:53:e2:44:08:c2:
06:d1:8d:f4:26:7c:34:3e:90:aa:7f:ef:94:dd:14:51:31:16:
e9:db:5a:6b:dd:7d:13:4c:04:0c:68:3b:c6:9a:31:97:60:f8:
63:a0:70:a0:87:12:7f:5c:74:92:25:ff:8a:3b:c1:f4:ce:7f:
13:b8:3f:45:b7:01:97:b8:f8:8e:5b:ec:f7:88:ce:83:01:a4:
c3:b9:a8:31:78:da:e9:9b:d1:35:c9:66:e0:f5:2d:6e:d5:9c:
c8:84:b2:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:08 2024 by rpki-client on console-fra.rpki-client.org