Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/tZCefbevlkulHpyogy97vxWQ96A.roa
File: tZCefbevlkulHpyogy97vxWQ96A.roa (raw, json)
Hash identifier: CbjIjcglRzL8vQo7sbBrHWEum/j2RWxDnxmp846IsJ0=
Subject key identifier: B5:90:9E:7D:B7:AF:96:4B:A5:1E:9C:A8:83:2F:7B:BF:15:90:F7:A0
Certificate issuer: /CN=4ecf53007c79cc5e2f2d7356ba9121a78c0c7714
Certificate serial: 0185BF747A18723D097184E92CF7BE005B41
Authority key identifier: 4E:CF:53:00:7C:79:CC:5E:2F:2D:73:56:BA:91:21:A7:8C:0C:77:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/tZCefbevlkulHpyogy97vxWQ96A.roa
Signing time: Tue 17 Jan 2023 11:19:19 +0000
ROA not before: Tue 17 Jan 2023 11:19:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5617
IP address blocks: 79.188.0.0/16 maxlen: 24
31.60.0.0/14 maxlen: 25
83.13.0.0/16 maxlen: 24
83.6.0.0/16 maxlen: 24
46.134.0.0/16 maxlen: 25
83.20.0.0/16 maxlen: 24
188.47.0.0/16 maxlen: 24
37.47.0.0/16 maxlen: 16
91.94.0.0/16 maxlen: 16
213.25.125.0/24 maxlen: 24
83.12.0.0/16 maxlen: 24
213.25.166.0/24 maxlen: 24
212.160.0.0/16 maxlen: 24
79.187.0.0/16 maxlen: 24
213.25.92.0/24 maxlen: 24
37.228.0.0/18 maxlen: 18
212.160.172.0/24 maxlen: 24
83.26.0.0/16 maxlen: 24
80.53.0.0/16 maxlen: 24
83.19.0.0/16 maxlen: 24
83.18.0.0/16 maxlen: 24
83.11.0.0/16 maxlen: 24
80.52.0.0/16 maxlen: 24
83.5.0.0/16 maxlen: 24
217.99.0.0/16 maxlen: 24
83.25.0.0/16 maxlen: 24
213.25.0.0/16 maxlen: 24
217.98.0.0/16 maxlen: 24
195.205.147.0/24 maxlen: 24
83.17.0.0/16 maxlen: 24
83.24.0.0/13 maxlen: 13
83.4.0.0/16 maxlen: 24
83.31.0.0/16 maxlen: 24
79.186.0.0/16 maxlen: 24
83.24.0.0/16 maxlen: 24
195.205.239.0/24 maxlen: 24
95.51.0.0/16 maxlen: 24
80.51.0.0/16 maxlen: 24
83.16.0.0/13 maxlen: 13
83.23.0.0/16 maxlen: 24
80.50.0.0/16 maxlen: 24
95.50.0.0/16 maxlen: 24
213.77.0.0/17 maxlen: 17
213.77.0.0/16 maxlen: 24
213.77.5.0/24 maxlen: 24
195.205.0.0/16 maxlen: 24
83.16.0.0/16 maxlen: 24
193.110.120.0/22 maxlen: 22
217.97.0.0/16 maxlen: 24
37.225.0.0/16 maxlen: 25
213.77.68.0/24 maxlen: 24
83.10.0.0/16 maxlen: 24
213.77.20.0/24 maxlen: 24
83.3.0.0/16 maxlen: 24
213.77.34.0/24 maxlen: 24
83.30.0.0/16 maxlen: 24
79.185.0.0/16 maxlen: 24
213.76.0.0/16 maxlen: 24
83.2.0.0/16 maxlen: 24
83.29.0.0/16 maxlen: 24
87.96.0.0/17 maxlen: 17
217.96.0.0/16 maxlen: 24
217.96.0.0/14 maxlen: 14
79.163.128.0/17 maxlen: 25
83.22.0.0/16 maxlen: 24
217.116.96.0/20 maxlen: 20
80.49.0.0/16 maxlen: 24
95.49.0.0/16 maxlen: 24
217.116.100.0/22 maxlen: 22
79.184.0.0/13 maxlen: 13
212.244.226.0/24 maxlen: 24
79.191.0.0/16 maxlen: 24
213.76.129.0/24 maxlen: 24
194.204.128.0/18 maxlen: 18
213.76.135.0/24 maxlen: 24
213.76.140.0/24 maxlen: 24
213.76.143.0/24 maxlen: 24
194.204.152.0/24 maxlen: 24
213.76.146.0/24 maxlen: 24
195.117.0.0/16 maxlen: 24
194.204.159.0/24 maxlen: 24
178.56.0.0/16 maxlen: 16
5.184.0.0/16 maxlen: 16
79.184.0.0/16 maxlen: 24
5.184.0.0/15 maxlen: 15
83.9.0.0/16 maxlen: 24
80.48.0.0/13 maxlen: 13
83.28.0.0/16 maxlen: 24
80.55.0.0/16 maxlen: 24
83.0.0.0/11 maxlen: 11
95.48.0.0/16 maxlen: 24
80.48.0.0/16 maxlen: 24
80.48.0.0/14 maxlen: 14
95.48.0.0/14 maxlen: 14
83.1.0.0/16 maxlen: 24
83.8.0.0/13 maxlen: 13
213.77.68.192/26 maxlen: 26
195.116.0.0/16 maxlen: 24
212.244.0.0/16 maxlen: 24
83.15.0.0/16 maxlen: 24
46.170.0.0/15 maxlen: 24
178.42.0.0/15 maxlen: 24
83.8.0.0/16 maxlen: 24
79.163.0.0/16 maxlen: 25
79.190.0.0/16 maxlen: 24
83.0.0.0/13 maxlen: 13
37.108.0.0/16 maxlen: 25
83.7.0.0/16 maxlen: 24
79.162.0.0/15 maxlen: 24
79.189.0.0/16 maxlen: 24
83.0.0.0/16 maxlen: 24
83.27.0.0/16 maxlen: 24
80.54.0.0/16 maxlen: 24
83.21.0.0/16 maxlen: 24
83.14.0.0/16 maxlen: 24
2a01:1140::/28 maxlen: 28
2a01:1700:3::/48 maxlen: 48
2a01:1160::/28 maxlen: 28
2a01:1120::/28 maxlen: 28
2a01:11a0::/28 maxlen: 28
2a00:f40::/29 maxlen: 29
2a01:1100::/28 maxlen: 28
2a01:11d0::/28 maxlen: 28
2a01:1700:2::/48 maxlen: 48
2a01:1130::/28 maxlen: 28
2a01:1150::/28 maxlen: 28
2a01:11c0::/28 maxlen: 28
2a01:1170::/28 maxlen: 28
2a01:1000::/21 maxlen: 21
2a01:1190::/28 maxlen: 28
2a01:11b0::/28 maxlen: 28
2a01:1110::/28 maxlen: 28
2a01:1180::/28 maxlen: 28
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:bf:74:7a:18:72:3d:09:71:84:e9:2c:f7:be:00:5b:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ecf53007c79cc5e2f2d7356ba9121a78c0c7714
Validity
Not Before: Jan 17 11:19:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b5909e7db7af964ba51e9ca8832f7bbf1590f7a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b0:5c:9b:95:7f:94:87:25:82:cf:75:8f:8b:
75:03:c0:3c:2e:cb:51:8e:2e:ad:73:2c:33:9a:51:
af:3d:42:d3:ce:0d:1f:e8:f8:9f:ab:7b:1c:f8:bd:
e1:b3:9a:26:28:57:b0:d8:ff:30:a3:57:f7:55:74:
1f:59:3c:24:bd:66:e1:6c:60:a9:7d:30:ac:2a:d7:
23:c7:19:c2:fb:98:17:60:4e:12:23:e8:a0:61:cf:
f2:e1:bd:a0:d6:2b:93:01:5f:79:d6:b6:dd:c6:32:
61:b5:f0:b6:95:2d:44:10:c7:f0:6d:5e:4c:c0:48:
6e:42:5c:47:0c:c3:c4:ab:e0:0b:2d:2a:10:c7:fa:
a4:2a:84:7f:3d:cb:46:36:9d:73:35:58:91:e6:50:
3f:3d:c1:8b:95:a0:98:b4:be:5d:47:43:42:46:ba:
02:85:a6:3b:37:f0:91:bc:90:03:99:5d:d7:7a:94:
ee:69:80:19:33:5d:15:c7:49:82:1c:82:e6:b2:27:
72:04:8d:12:45:3e:1e:de:bc:5b:08:59:2b:85:db:
c6:d2:71:bf:7a:0e:63:76:5f:74:db:9f:a9:12:7a:
55:9f:25:43:fa:cc:1a:3d:75:ce:66:d7:19:f0:1d:
95:8f:42:4c:52:86:01:77:75:4b:29:2a:bb:b4:92:
1e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:90:9E:7D:B7:AF:96:4B:A5:1E:9C:A8:83:2F:7B:BF:15:90:F7:A0
X509v3 Authority Key Identifier:
keyid:4E:CF:53:00:7C:79:CC:5E:2F:2D:73:56:BA:91:21:A7:8C:0C:77:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/tZCefbevlkulHpyogy97vxWQ96A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.184.0.0/15
31.60.0.0/14
37.47.0.0/16
37.108.0.0/16
37.225.0.0/16
37.228.0.0/18
46.134.0.0/16
46.170.0.0/15
79.162.0.0/15
79.184.0.0/13
80.48.0.0/13
83.0.0.0/11
87.96.0.0/17
91.94.0.0/16
95.48.0.0/14
178.42.0.0/15
178.56.0.0/16
188.47.0.0/16
193.110.120.0/22
194.204.128.0/18
195.116.0.0/15
195.205.0.0/16
212.160.0.0/16
212.244.0.0/16
213.25.0.0/16
213.76.0.0/15
217.96.0.0/14
217.116.96.0/20
IPv6:
2a00:f40::/29
2a01:1000::/21
Signature Algorithm: sha256WithRSAEncryption
59:8a:21:fc:1d:19:c4:78:4d:1a:18:49:ed:c5:29:5c:ba:02:
ea:db:c6:06:b8:74:09:db:b8:41:5a:90:8d:55:06:66:ba:4f:
e7:ec:d9:fa:81:15:c9:44:bd:b3:14:16:94:94:7a:5a:e8:21:
f0:69:f2:0e:3e:6c:e5:cd:de:4f:e9:70:43:b9:8d:8c:be:27:
a2:29:5c:6f:42:d3:87:2f:07:a2:3d:8e:3a:85:94:30:54:61:
98:f3:b4:16:be:69:cd:40:16:1e:e9:0f:5e:58:bb:4e:0e:65:
85:b7:31:dc:c7:be:4b:ce:ae:e3:c1:a2:7a:1f:97:82:99:fe:
18:97:ab:58:88:12:d6:c6:fe:6b:ee:b3:ab:20:38:70:4f:94:
b1:1c:e7:6e:5b:50:7b:ef:b4:27:4f:95:94:94:98:04:45:48:
71:2e:ab:2c:3c:4e:f5:8e:4f:31:c8:ba:a0:cb:bd:d0:9a:f4:
08:81:ec:97:1b:b4:af:e3:e3:0a:ee:f4:2a:f4:ee:a3:fc:17:
03:00:ee:f8:e9:6d:30:e4:a5:49:8b:2c:f4:c5:38:4a:e5:2d:
e8:2a:e5:34:1a:19:ff:ba:f9:67:5f:5f:e8:f6:26:62:6d:24:
66:8e:f9:64:64:52:85:00:ce:b5:6b:f4:62:b9:98:41:a0:69:
fa:0f:91:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:14 2023 by rpki-client on console-ams.rpki-client.org