Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Sw71auAd_xSKndhYp-KAih6f24Y.roa
File: Sw71auAd_xSKndhYp-KAih6f24Y.roa (raw, json)
Hash identifier: wCBlcPzfLgMniRL0o/x+3lyA95e40qH1bPKsItpRPQc=
Subject key identifier: 4B:0E:F5:6A:E0:1D:FF:14:8A:9D:D8:58:A7:E2:80:8A:1E:9F:DB:86
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 018B0E6BBE818F7972C847A4E2A62DC752ED
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Sw71auAd_xSKndhYp-KAih6f24Y.roa
Signing time: Sun 08 Oct 2023 08:33:43 +0000
ROA not before: Sun 08 Oct 2023 08:33:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39074
IP address blocks: 85.133.231.0/24 maxlen: 24
85.133.232.0/24 maxlen: 24
85.133.233.0/24 maxlen: 24
85.133.228.0/24 maxlen: 24
85.133.232.0/22 maxlen: 22
85.133.229.0/24 maxlen: 24
85.133.230.0/24 maxlen: 24
85.133.227.0/24 maxlen: 24
85.133.239.0/24 maxlen: 24
85.133.240.0/24 maxlen: 24
85.133.235.0/24 maxlen: 24
85.133.240.0/22 maxlen: 22
85.133.245.0/24 maxlen: 24
85.133.246.0/24 maxlen: 24
85.133.243.0/24 maxlen: 24
85.133.244.0/24 maxlen: 24
85.133.241.0/24 maxlen: 24
85.133.247.0/24 maxlen: 24
85.133.248.0/23 maxlen: 24
85.133.249.0/24 maxlen: 24
85.133.250.0/24 maxlen: 24
85.133.251.0/24 maxlen: 24
85.133.252.0/22 maxlen: 22
85.133.254.0/24 maxlen: 24
85.133.255.0/24 maxlen: 24
85.133.179.0/24 maxlen: 24
85.133.176.0/22 maxlen: 24
85.133.178.0/24 maxlen: 24
85.133.174.0/24 maxlen: 24
85.133.184.0/22 maxlen: 24
85.133.180.0/22 maxlen: 24
85.133.189.0/24 maxlen: 24
85.133.188.0/22 maxlen: 22
85.133.192.0/22 maxlen: 22
85.133.196.0/24 maxlen: 24
85.133.197.0/24 maxlen: 24
85.133.199.0/24 maxlen: 24
85.133.196.0/22 maxlen: 22
85.133.205.0/24 maxlen: 24
85.133.203.0/24 maxlen: 24
85.133.204.0/24 maxlen: 24
85.133.200.0/22 maxlen: 22
85.133.206.0/24 maxlen: 24
85.133.200.0/24 maxlen: 24
85.133.201.0/24 maxlen: 24
85.133.204.0/22 maxlen: 22
85.133.202.0/24 maxlen: 24
85.133.210.0/23 maxlen: 24
85.133.211.0/24 maxlen: 24
85.133.212.0/24 maxlen: 24
85.133.213.0/24 maxlen: 24
85.133.207.0/24 maxlen: 24
85.133.212.0/22 maxlen: 22
85.133.208.0/24 maxlen: 24
85.133.209.0/24 maxlen: 24
85.133.217.0/24 maxlen: 24
85.133.219.0/24 maxlen: 24
85.133.215.0/24 maxlen: 24
85.133.220.0/24 maxlen: 24
85.133.220.0/22 maxlen: 22
85.133.225.0/24 maxlen: 24
85.133.226.0/24 maxlen: 24
85.133.221.0/24 maxlen: 24
85.133.223.0/24 maxlen: 24
85.133.224.0/22 maxlen: 22
85.133.130.0/24 maxlen: 24
85.133.131.0/24 maxlen: 24
85.133.128.0/17 maxlen: 24
85.133.128.0/24 maxlen: 24
85.133.129.0/24 maxlen: 24
85.133.128.0/22 maxlen: 22
85.133.134.0/24 maxlen: 24
85.133.135.0/24 maxlen: 24
85.133.136.0/24 maxlen: 24
85.133.133.0/24 maxlen: 24
85.133.137.0/24 maxlen: 24
85.133.138.0/24 maxlen: 24
85.133.139.0/24 maxlen: 24
85.133.144.0/22 maxlen: 22
85.133.144.0/24 maxlen: 24
85.133.145.0/24 maxlen: 24
85.133.140.0/22 maxlen: 22
85.133.141.0/24 maxlen: 24
85.133.142.0/24 maxlen: 24
85.133.140.0/24 maxlen: 24
85.133.148.0/24 maxlen: 24
85.133.149.0/24 maxlen: 24
85.133.150.0/24 maxlen: 24
85.133.148.0/22 maxlen: 22
85.133.147.0/24 maxlen: 24
85.133.152.0/22 maxlen: 22
85.133.152.0/24 maxlen: 24
85.133.158.0/24 maxlen: 24
85.133.159.0/24 maxlen: 24
85.133.155.0/24 maxlen: 24
85.133.156.0/24 maxlen: 24
85.133.157.0/24 maxlen: 24
85.133.153.0/24 maxlen: 24
85.133.154.0/24 maxlen: 24
85.133.162.0/24 maxlen: 24
85.133.163.0/24 maxlen: 24
85.133.164.0/24 maxlen: 24
85.133.160.0/24 maxlen: 24
85.133.161.0/24 maxlen: 24
85.133.165.0/24 maxlen: 24
85.133.172.0/22 maxlen: 24
85.133.172.0/24 maxlen: 24
85.133.168.0/22 maxlen: 24
185.41.0.0/24 maxlen: 24
185.41.1.0/24 maxlen: 24
185.41.2.0/24 maxlen: 24
185.41.3.0/24 maxlen: 24
2a04:87c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 10 Oct 2023 10:21:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:0e:6b:be:81:8f:79:72:c8:47:a4:e2:a6:2d:c7:52:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Oct 8 08:33:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b0ef56ae01dff148a9dd858a7e2808a1e9fdb86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1d:b5:8a:10:64:5e:cd:0f:4e:ab:1f:0d:7f:
6e:e3:90:8a:6e:74:d4:bd:ed:11:04:ed:3a:62:3f:
d2:9c:7c:d5:3d:b2:da:f5:a5:5c:ce:37:af:f7:2c:
c4:44:ba:00:88:28:27:a2:c8:06:09:03:93:4b:50:
f7:56:71:86:2c:60:fa:0e:ce:52:6b:70:bd:f5:5f:
b2:b7:33:6f:98:04:d3:8a:03:84:0f:25:3c:30:a2:
3b:7f:8d:c3:d9:3d:00:8a:b1:21:ea:49:57:c0:48:
63:31:90:b3:38:43:61:ad:4c:9a:ef:06:d2:08:77:
f6:7c:8c:0d:1d:3a:21:ef:4a:95:05:5a:50:e0:b2:
74:7f:08:9f:3f:d0:1d:b6:b3:1a:4e:4b:53:65:91:
a1:2a:fa:c9:b2:38:6c:3f:cb:c6:bb:d3:22:19:22:
95:5f:cc:e3:f4:e7:9a:dd:f9:bd:0d:64:f0:4d:5e:
2e:fa:25:3f:86:4a:6d:4a:c3:f1:d9:d3:31:41:89:
f2:1e:30:0d:cc:9f:ec:19:96:50:49:94:f2:4d:a1:
ae:2b:a2:df:cf:15:ff:b8:5f:30:dd:9d:ef:62:35:
d0:30:1c:4d:3b:4e:ab:f8:c8:8a:33:b4:30:e8:73:
d2:e3:2e:8a:94:00:41:8f:e4:d0:9e:3b:9f:12:4c:
0e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:0E:F5:6A:E0:1D:FF:14:8A:9D:D8:58:A7:E2:80:8A:1E:9F:DB:86
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Sw71auAd_xSKndhYp-KAih6f24Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.128.0/17
185.41.0.0/22
IPv6:
2a04:87c0::/29
Signature Algorithm: sha256WithRSAEncryption
5a:c1:5e:4b:ec:cd:8c:cc:79:2d:24:a3:08:0b:f4:61:72:ed:
d5:a8:57:f1:6e:b2:fb:3b:e6:eb:67:03:f2:33:1c:14:ad:dc:
8a:0a:a8:ca:17:30:2e:23:9c:1c:1e:99:62:a0:b9:0d:13:7e:
a6:dd:ad:39:0d:8d:d3:a7:22:62:ca:d9:fa:0d:65:4d:51:54:
b8:c5:4a:d5:db:c0:44:8f:4f:79:da:12:14:5d:6c:76:cb:0f:
b7:38:d9:d4:e9:69:ad:64:09:32:28:9b:a3:d7:97:f0:01:76:
1c:50:c4:80:62:56:11:32:54:97:7b:f3:2b:19:1c:37:db:70:
53:0c:ce:2e:7d:ae:3f:8c:3a:82:3a:08:7e:3f:7c:26:2e:68:
a7:37:ff:35:cb:db:0b:3e:e3:85:02:2f:9b:fd:3c:84:29:97:
41:47:69:7d:a0:77:1f:03:55:f2:a4:94:30:56:76:1d:1d:88:
20:69:bd:1a:88:39:a5:0c:2b:ea:b4:85:fa:6e:5b:27:42:4d:
00:fc:56:16:e1:93:84:06:1c:73:b3:ed:37:fa:9f:89:f4:7a:
5a:1c:7c:b5:dd:92:9e:9a:3d:02:74:77:01:90:00:4b:22:c5:
fe:a5:53:73:1b:ce:32:fd:14:75:fe:86:14:d5:f0:56:0f:d1:
8e:b3:32:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:01 2024 by rpki-client on console-ams.rpki-client.org