Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/IaHcJs9JTqH9v8Rfp-8PQB6Yqbo.roa
File: IaHcJs9JTqH9v8Rfp-8PQB6Yqbo.roa (raw, json)
Hash identifier: Q9W25hiW5pOlS/th4V/6LRlczb7CXd9CKNNBxDz5r5c=
Subject key identifier: 21:A1:DC:26:CF:49:4E:A1:FD:BF:C4:5F:A7:EF:0F:40:1E:98:A9:BA
Certificate issuer: /CN=4ecf53007c79cc5e2f2d7356ba9121a78c0c7714
Certificate serial: 01856FC25F5506A0D3866A1003E95F74ABA4
Authority key identifier: 4E:CF:53:00:7C:79:CC:5E:2F:2D:73:56:BA:91:21:A7:8C:0C:77:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/IaHcJs9JTqH9v8Rfp-8PQB6Yqbo.roa
Signing time: Sun 01 Jan 2023 23:54:47 +0000
ROA not before: Sun 01 Jan 2023 23:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12479
IP address blocks: 213.76.218.0/24 maxlen: 24
213.76.216.0/22 maxlen: 22
213.76.224.0/21 maxlen: 21
213.76.220.0/22 maxlen: 22
213.76.232.0/21 maxlen: 21
213.76.240.0/21 maxlen: 21
213.76.248.0/21 maxlen: 21
213.76.192.0/20 maxlen: 20
213.76.192.0/18 maxlen: 18
213.76.208.0/22 maxlen: 22
80.52.108.0/22 maxlen: 22
80.52.112.0/20 maxlen: 20
80.49.64.0/20 maxlen: 20
80.52.64.0/21 maxlen: 21
80.52.64.0/18 maxlen: 18
80.52.72.0/22 maxlen: 22
80.52.76.0/22 maxlen: 22
80.52.84.0/22 maxlen: 22
80.52.80.0/21 maxlen: 21
80.52.80.0/22 maxlen: 22
80.52.84.0/24 maxlen: 24
80.52.88.0/21 maxlen: 21
80.52.96.0/21 maxlen: 21
80.52.104.0/22 maxlen: 22
80.49.120.0/24 maxlen: 24
80.49.120.0/22 maxlen: 22
80.49.124.0/22 maxlen: 22
80.49.64.0/18 maxlen: 18
80.49.80.0/20 maxlen: 20
80.49.96.0/20 maxlen: 20
80.49.112.0/21 maxlen: 21
79.162.188.0/22 maxlen: 22
79.162.136.0/22 maxlen: 22
79.162.140.0/22 maxlen: 22
79.162.144.0/22 maxlen: 22
79.162.152.0/24 maxlen: 24
79.162.148.0/22 maxlen: 22
79.162.155.0/24 maxlen: 24
79.162.154.0/24 maxlen: 24
79.162.153.0/24 maxlen: 24
79.162.156.0/22 maxlen: 22
79.162.160.0/22 maxlen: 22
79.162.164.0/22 maxlen: 22
79.162.168.0/22 maxlen: 22
79.162.172.0/22 maxlen: 22
79.162.176.0/22 maxlen: 22
79.162.184.0/22 maxlen: 22
79.162.180.0/22 maxlen: 22
213.77.176.0/22 maxlen: 22
213.77.180.0/22 maxlen: 22
213.77.184.0/22 maxlen: 22
213.77.192.0/20 maxlen: 20
213.77.188.0/22 maxlen: 22
213.77.208.0/20 maxlen: 20
213.77.224.0/22 maxlen: 22
213.77.128.0/22 maxlen: 22
213.77.128.0/17 maxlen: 17
213.77.132.0/22 maxlen: 22
213.77.136.0/22 maxlen: 22
213.77.133.0/24 maxlen: 24
213.77.140.0/22 maxlen: 22
213.77.144.0/21 maxlen: 21
213.77.152.0/21 maxlen: 21
213.77.160.0/20 maxlen: 20
79.162.128.0/18 maxlen: 24
79.162.128.0/22 maxlen: 22
79.162.132.0/22 maxlen: 22
213.77.228.0/22 maxlen: 22
213.77.232.0/22 maxlen: 22
213.77.236.0/22 maxlen: 22
213.77.236.0/23 maxlen: 23
213.77.240.0/22 maxlen: 22
213.77.244.0/22 maxlen: 22
213.77.248.0/22 maxlen: 22
213.77.252.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:5f:55:06:a0:d3:86:6a:10:03:e9:5f:74:ab:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ecf53007c79cc5e2f2d7356ba9121a78c0c7714
Validity
Not Before: Jan 1 23:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21a1dc26cf494ea1fdbfc45fa7ef0f401e98a9ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d7:ac:f3:f3:a3:9a:57:07:3e:a7:70:57:0b:
bc:ea:76:75:44:49:b8:1a:5b:dc:0d:d1:31:7e:9d:
bd:85:58:57:57:6d:4a:77:54:b0:4e:d0:ae:1d:6f:
ca:11:0a:f9:16:0a:a7:26:84:63:49:eb:f3:33:35:
57:fd:8f:95:b0:df:39:24:73:cd:b1:47:f2:fb:5c:
41:f2:5c:9e:1b:cd:7f:82:58:94:55:30:00:c8:e5:
68:43:1b:61:25:b6:14:36:6d:e2:0d:d5:e3:93:72:
55:47:db:d9:24:39:c1:7a:36:9f:82:d3:b1:2f:42:
f8:bb:63:06:b1:2f:bd:5a:1a:68:c1:4d:a2:33:50:
14:00:0b:1b:6c:fd:a8:35:12:4d:d3:17:1a:24:14:
93:f4:26:a6:1b:8d:c0:06:ad:5a:25:81:1d:74:01:
e4:c3:04:75:b9:28:16:5d:f8:ef:90:8b:af:0f:d6:
9a:53:27:b9:b1:90:8b:b9:75:c1:9c:97:49:3f:3f:
7f:2d:f4:0d:15:1b:98:72:67:fb:cf:c8:d0:53:b2:
98:d5:76:34:e0:c9:67:aa:ff:98:1a:87:0c:03:5c:
0d:fc:2d:44:6a:5c:dc:36:37:d3:0a:d8:75:71:51:
a0:2b:86:7e:22:81:ec:87:09:f7:e7:96:46:cd:90:
71:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:A1:DC:26:CF:49:4E:A1:FD:BF:C4:5F:A7:EF:0F:40:1E:98:A9:BA
X509v3 Authority Key Identifier:
keyid:4E:CF:53:00:7C:79:CC:5E:2F:2D:73:56:BA:91:21:A7:8C:0C:77:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/IaHcJs9JTqH9v8Rfp-8PQB6Yqbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.162.128.0/18
80.49.64.0/18
80.52.64.0/18
213.76.192.0/18
213.77.128.0/17
Signature Algorithm: sha256WithRSAEncryption
80:51:97:e3:a1:0e:5b:61:88:e7:66:8a:3f:f0:ed:1c:8c:8e:
b7:86:98:5d:e0:71:db:d3:8d:5e:7d:44:24:33:6d:17:b1:18:
9e:e3:69:bd:7e:4f:4f:e2:43:92:65:2a:0c:1c:29:79:1f:16:
d8:e8:43:07:18:62:12:41:fd:94:12:6d:a4:83:be:e5:71:d1:
e8:1f:58:6f:ff:6b:9d:1b:77:64:78:a9:9d:6a:0f:9f:e1:49:
dc:e2:a3:83:25:1c:23:e5:9d:e7:87:4a:51:46:68:a9:9a:f1:
aa:49:08:95:bf:f1:dd:85:01:44:6e:bf:f9:a7:d8:cf:a8:eb:
f3:a8:e5:56:32:f9:56:1a:ef:c7:0a:8d:9b:b6:89:50:8e:bd:
06:02:9b:2b:14:0c:bf:c0:8c:48:c9:a5:41:15:bf:a1:9f:8e:
a8:c4:2c:d7:3c:1c:1d:18:1d:85:51:47:b8:33:c6:49:7d:b0:
f3:99:b8:07:f3:d2:0c:58:eb:cb:8b:99:d3:4d:47:56:1c:f5:
d3:08:d3:1e:8e:c2:b1:8d:8f:14:67:a6:ce:33:7a:82:79:79:
27:7c:53:9a:86:86:c6:5a:c0:8b:b4:35:ad:d0:4b:cf:38:61:
4d:e0:b7:31:c1:31:85:f1:ad:c0:7c:01:d9:77:53:95:18:ab:
0e:8d:dd:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:16 2024 by rpki-client on console-ams.rpki-client.org