Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/pyE8CQp4u9UsgpKCrGsvfIDyMO0.roa
File: pyE8CQp4u9UsgpKCrGsvfIDyMO0.roa (raw, json)
Hash identifier: dpoW6f7V5rEvxvN1OcKYXJfBJ+WTxI4NF3edCHrOla8=
Subject key identifier: A7:21:3C:09:0A:78:BB:D5:2C:82:92:82:AC:6B:2F:7C:80:F2:30:ED
Certificate issuer: /CN=4ecf53007c79cc5e2f2d7356ba9121a78c0c7714
Certificate serial: 0185BF9F80A55DEF2F69D469F7CB47BA655D
Authority key identifier: 4E:CF:53:00:7C:79:CC:5E:2F:2D:73:56:BA:91:21:A7:8C:0C:77:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/pyE8CQp4u9UsgpKCrGsvfIDyMO0.roa
Signing time: Tue 17 Jan 2023 12:06:19 +0000
ROA not before: Tue 17 Jan 2023 12:06:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5617
IP address blocks: 79.188.0.0/16 maxlen: 24
31.60.0.0/14 maxlen: 25
83.13.0.0/16 maxlen: 24
83.6.0.0/16 maxlen: 24
46.134.0.0/16 maxlen: 25
83.20.0.0/16 maxlen: 24
188.47.0.0/16 maxlen: 24
37.47.0.0/16 maxlen: 24
91.94.0.0/16 maxlen: 24
213.25.125.0/24 maxlen: 24
83.12.0.0/16 maxlen: 24
213.25.166.0/24 maxlen: 24
212.160.0.0/16 maxlen: 24
79.187.0.0/16 maxlen: 24
213.25.92.0/24 maxlen: 24
37.228.0.0/18 maxlen: 18
212.160.172.0/24 maxlen: 24
83.26.0.0/16 maxlen: 24
80.53.0.0/16 maxlen: 24
83.19.0.0/16 maxlen: 24
83.18.0.0/16 maxlen: 24
83.11.0.0/16 maxlen: 24
80.52.0.0/16 maxlen: 24
83.5.0.0/16 maxlen: 24
217.99.0.0/16 maxlen: 24
83.25.0.0/16 maxlen: 24
213.25.0.0/16 maxlen: 24
217.98.0.0/16 maxlen: 24
195.205.147.0/24 maxlen: 24
83.17.0.0/16 maxlen: 24
83.24.0.0/13 maxlen: 13
83.4.0.0/16 maxlen: 24
83.31.0.0/16 maxlen: 24
79.186.0.0/16 maxlen: 24
83.24.0.0/16 maxlen: 24
195.205.239.0/24 maxlen: 24
95.51.0.0/16 maxlen: 24
80.51.0.0/16 maxlen: 24
83.16.0.0/13 maxlen: 13
83.23.0.0/16 maxlen: 24
80.50.0.0/16 maxlen: 24
95.50.0.0/16 maxlen: 24
213.77.0.0/17 maxlen: 17
213.77.0.0/16 maxlen: 24
213.77.5.0/24 maxlen: 24
195.205.0.0/16 maxlen: 24
83.16.0.0/16 maxlen: 24
193.110.120.0/22 maxlen: 22
217.97.0.0/16 maxlen: 24
37.225.0.0/16 maxlen: 25
213.77.68.0/24 maxlen: 24
83.10.0.0/16 maxlen: 24
213.77.20.0/24 maxlen: 24
83.3.0.0/16 maxlen: 24
213.77.34.0/24 maxlen: 24
83.30.0.0/16 maxlen: 24
79.185.0.0/16 maxlen: 24
213.76.0.0/16 maxlen: 24
83.2.0.0/16 maxlen: 24
83.29.0.0/16 maxlen: 24
87.96.0.0/17 maxlen: 24
217.96.0.0/16 maxlen: 24
217.96.0.0/14 maxlen: 14
79.163.128.0/17 maxlen: 25
83.22.0.0/16 maxlen: 24
217.116.96.0/20 maxlen: 20
80.49.0.0/16 maxlen: 24
95.49.0.0/16 maxlen: 24
217.116.100.0/22 maxlen: 22
79.184.0.0/13 maxlen: 13
212.244.226.0/24 maxlen: 24
79.191.0.0/16 maxlen: 24
213.76.129.0/24 maxlen: 24
194.204.128.0/18 maxlen: 18
213.76.135.0/24 maxlen: 24
213.76.140.0/24 maxlen: 24
213.76.143.0/24 maxlen: 24
194.204.152.0/24 maxlen: 24
213.76.146.0/24 maxlen: 24
195.117.0.0/16 maxlen: 24
194.204.159.0/24 maxlen: 24
178.56.0.0/16 maxlen: 24
79.184.0.0/16 maxlen: 24
5.184.0.0/16 maxlen: 24
5.184.0.0/15 maxlen: 15
83.9.0.0/16 maxlen: 24
80.48.0.0/13 maxlen: 13
83.28.0.0/16 maxlen: 24
80.55.0.0/16 maxlen: 24
83.0.0.0/11 maxlen: 11
95.48.0.0/16 maxlen: 24
80.48.0.0/16 maxlen: 24
80.48.0.0/14 maxlen: 14
95.48.0.0/14 maxlen: 14
83.1.0.0/16 maxlen: 24
83.8.0.0/13 maxlen: 13
213.77.68.192/26 maxlen: 26
195.116.0.0/16 maxlen: 24
212.244.0.0/16 maxlen: 24
83.15.0.0/16 maxlen: 24
46.170.0.0/15 maxlen: 24
178.42.0.0/15 maxlen: 24
83.8.0.0/16 maxlen: 24
79.163.0.0/16 maxlen: 25
79.190.0.0/16 maxlen: 24
83.0.0.0/13 maxlen: 13
37.108.0.0/16 maxlen: 25
83.7.0.0/16 maxlen: 24
79.162.0.0/15 maxlen: 24
79.189.0.0/16 maxlen: 24
83.0.0.0/16 maxlen: 24
83.27.0.0/16 maxlen: 24
80.54.0.0/16 maxlen: 24
83.21.0.0/16 maxlen: 24
83.14.0.0/16 maxlen: 24
2a01:1140::/28 maxlen: 28
2a01:1700:3::/48 maxlen: 48
2a01:1160::/28 maxlen: 28
2a01:1120::/28 maxlen: 28
2a01:11a0::/28 maxlen: 28
2a00:f40::/29 maxlen: 29
2a01:1100::/28 maxlen: 28
2a01:11d0::/28 maxlen: 28
2a01:1700:2::/48 maxlen: 48
2a01:1130::/28 maxlen: 28
2a01:1150::/28 maxlen: 28
2a01:11c0::/28 maxlen: 28
2a01:1170::/28 maxlen: 28
2a01:1000::/21 maxlen: 21
2a01:1190::/28 maxlen: 28
2a01:11b0::/28 maxlen: 28
2a01:1110::/28 maxlen: 28
2a01:1180::/28 maxlen: 28
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:bf:9f:80:a5:5d:ef:2f:69:d4:69:f7:cb:47:ba:65:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ecf53007c79cc5e2f2d7356ba9121a78c0c7714
Validity
Not Before: Jan 17 12:06:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a7213c090a78bbd52c829282ac6b2f7c80f230ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:b7:0b:93:2b:4f:e4:52:3e:a4:d9:7b:aa:99:
c2:1b:d2:e3:dc:32:b1:31:a0:4e:8a:74:0a:8d:4c:
1a:1c:04:07:32:09:40:2a:56:24:82:ff:62:57:dd:
2f:b0:a5:8f:93:fe:92:4e:82:f5:3e:ef:b2:c3:79:
e7:de:29:90:c5:7b:d1:05:21:a1:75:ba:75:dd:67:
df:0e:ac:20:0e:0f:42:d6:3e:e6:ff:09:39:0a:a5:
a2:ac:d9:6d:cd:7c:8c:b1:46:c2:44:bb:10:10:11:
2a:d6:58:22:1c:32:ee:4e:f1:59:dc:b8:aa:72:59:
87:fd:b0:23:6b:ef:ad:46:6b:43:c2:54:4f:6d:34:
0d:a7:da:84:c3:ca:42:3a:78:55:e4:2c:13:dd:94:
1f:95:b3:c3:f8:61:16:6f:ac:c4:bd:ad:b0:63:d3:
d7:3a:ae:7d:93:8f:da:8e:cd:48:f5:b1:4d:ea:d1:
61:fc:4c:30:0c:8f:83:04:9c:22:41:08:1a:93:f4:
ed:5a:f2:b2:55:60:9e:6b:d0:18:c2:34:71:01:6b:
21:78:c9:57:de:44:25:83:45:5f:52:60:a0:46:73:
d9:9a:e7:28:80:ce:cf:e4:80:42:d5:ee:1c:ce:42:
de:d1:97:b8:19:b9:f6:5a:1e:c9:f6:28:28:25:ec:
5b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:21:3C:09:0A:78:BB:D5:2C:82:92:82:AC:6B:2F:7C:80:F2:30:ED
X509v3 Authority Key Identifier:
keyid:4E:CF:53:00:7C:79:CC:5E:2F:2D:73:56:BA:91:21:A7:8C:0C:77:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/pyE8CQp4u9UsgpKCrGsvfIDyMO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.184.0.0/15
31.60.0.0/14
37.47.0.0/16
37.108.0.0/16
37.225.0.0/16
37.228.0.0/18
46.134.0.0/16
46.170.0.0/15
79.162.0.0/15
79.184.0.0/13
80.48.0.0/13
83.0.0.0/11
87.96.0.0/17
91.94.0.0/16
95.48.0.0/14
178.42.0.0/15
178.56.0.0/16
188.47.0.0/16
193.110.120.0/22
194.204.128.0/18
195.116.0.0/15
195.205.0.0/16
212.160.0.0/16
212.244.0.0/16
213.25.0.0/16
213.76.0.0/15
217.96.0.0/14
217.116.96.0/20
IPv6:
2a00:f40::/29
2a01:1000::/21
Signature Algorithm: sha256WithRSAEncryption
4b:38:2a:5a:5c:e3:64:40:93:7f:a4:56:f1:cd:a0:c4:9e:43:
12:5c:0d:ee:b0:b3:81:07:34:83:f2:57:07:e6:04:cc:f5:1d:
e2:19:67:8a:02:31:a5:e7:03:03:6a:a7:95:9e:5f:a3:f6:9c:
b0:ca:10:0e:c9:19:a2:1c:7a:83:90:0e:50:0e:f2:f1:47:05:
b2:8b:6c:81:07:d3:45:b4:85:48:0d:d4:a7:35:44:29:b5:bb:
15:a6:2d:79:f4:55:13:7b:b5:28:c0:52:c7:2f:ba:2c:31:a2:
a7:48:6f:dc:d9:c7:55:b4:e3:6a:9f:95:8f:0e:94:3d:4e:23:
98:f1:a1:9c:d1:a5:de:37:0e:f6:6f:2a:18:d8:0d:6f:20:41:
9f:c7:bd:cb:e1:dd:64:da:89:ad:3d:5b:12:5a:9c:b6:3c:e1:
72:8d:c5:5a:89:dd:2a:b7:e0:aa:c6:92:8f:6d:a4:4e:b6:3b:
19:24:66:ce:75:79:c6:d6:c9:c8:18:65:79:03:28:dc:3b:13:
9f:91:95:38:27:df:d8:d5:dd:0c:60:29:1a:45:61:56:bb:a5:
de:05:1e:1c:4f:6d:f0:c7:9f:51:b3:7c:30:ae:fe:93:cb:a5:
67:49:91:3c:cf:cd:24:76:be:b0:b6:ab:3a:58:df:c1:04:02:
8a:69:bd:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:23 2024 by rpki-client on console-fra.rpki-client.org