Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/sMsEQiMxzH8_XmvzzL0CcfesTuE.roa
File: sMsEQiMxzH8_XmvzzL0CcfesTuE.roa (raw, json)
Hash identifier: uf1jM/BGFJi45hC60FlAXfdICCSd2p5jlDrxM+8wYk0=
Subject key identifier: B0:CB:04:42:23:31:CC:7F:3F:5E:6B:F3:CC:BD:02:71:F7:AC:4E:E1
Certificate issuer: /CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Certificate serial: 01856C8138765DEB34C6BC08FCF7FD552BAB
Authority key identifier: FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/sMsEQiMxzH8_XmvzzL0CcfesTuE.roa
Signing time: Sun 01 Jan 2023 08:44:45 +0000
ROA not before: Sun 01 Jan 2023 08:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25369
IP address blocks: 185.134.20.0/22 maxlen: 22
195.140.212.0/22 maxlen: 22
93.114.83.0/24 maxlen: 24
134.255.243.0/24 maxlen: 24
128.127.148.0/22 maxlen: 22
81.19.208.0/20 maxlen: 20
81.19.208.0/23 maxlen: 23
81.19.216.0/24 maxlen: 24
89.46.223.0/24 maxlen: 24
89.46.222.0/23 maxlen: 23
86.106.89.0/24 maxlen: 24
86.106.112.0/24 maxlen: 24
195.234.124.0/24 maxlen: 24
195.234.124.0/23 maxlen: 24
195.234.127.0/24 maxlen: 24
188.241.120.0/24 maxlen: 24
188.241.144.0/24 maxlen: 24
188.241.156.0/23 maxlen: 23
188.241.157.0/24 maxlen: 24
193.32.208.0/22 maxlen: 22
86.106.135.0/24 maxlen: 24
89.32.127.0/24 maxlen: 24
86.106.158.0/24 maxlen: 24
86.106.157.0/24 maxlen: 24
188.240.58.0/24 maxlen: 24
188.240.56.0/21 maxlen: 21
188.240.56.0/24 maxlen: 24
188.240.57.0/24 maxlen: 24
188.240.71.0/24 maxlen: 24
84.247.0.0/24 maxlen: 24
195.206.165.0/24 maxlen: 24
185.125.204.0/22 maxlen: 22
195.206.166.0/23 maxlen: 23
195.206.169.0/24 maxlen: 24
195.206.170.0/23 maxlen: 23
89.38.68.0/23 maxlen: 23
195.206.180.0/22 maxlen: 22
5.226.136.0/21 maxlen: 21
217.146.80.0/20 maxlen: 20
217.146.87.0/24 maxlen: 24
185.38.148.0/22 maxlen: 22
217.146.92.0/24 maxlen: 24
213.166.84.0/22 maxlen: 24
37.10.113.0/24 maxlen: 24
37.10.114.0/24 maxlen: 24
188.212.154.0/24 maxlen: 24
194.50.234.0/23 maxlen: 23
89.37.64.0/22 maxlen: 22
185.158.241.0/24 maxlen: 24
185.158.242.0/24 maxlen: 24
89.37.173.0/24 maxlen: 24
178.239.160.0/20 maxlen: 20
178.239.165.0/24 maxlen: 24
178.239.167.0/24 maxlen: 24
185.44.76.0/22 maxlen: 22
178.239.173.0/24 maxlen: 24
185.3.236.0/22 maxlen: 22
185.158.240.0/22 maxlen: 24
89.37.172.0/22 maxlen: 22
109.70.144.0/21 maxlen: 21
109.70.145.0/24 maxlen: 24
109.70.149.0/24 maxlen: 24
109.70.148.0/24 maxlen: 24
185.16.204.0/22 maxlen: 22
94.177.17.0/24 maxlen: 24
109.69.104.0/21 maxlen: 21
109.69.110.0/24 maxlen: 24
109.230.203.0/24 maxlen: 24
109.230.209.0/24 maxlen: 24
109.230.218.0/24 maxlen: 24
109.230.215.0/24 maxlen: 24
109.230.220.0/24 maxlen: 24
185.137.36.0/24 maxlen: 24
185.137.36.0/22 maxlen: 22
85.204.70.0/24 maxlen: 24
89.21.66.0/24 maxlen: 24
77.81.191.0/24 maxlen: 24
31.14.102.0/24 maxlen: 24
193.176.28.0/22 maxlen: 22
193.176.31.0/24 maxlen: 24
185.216.144.0/22 maxlen: 22
185.61.157.0/24 maxlen: 24
185.61.156.0/24 maxlen: 24
185.61.156.0/22 maxlen: 22
89.21.64.0/24 maxlen: 24
89.21.64.0/22 maxlen: 22
185.223.232.0/22 maxlen: 22
185.223.235.0/24 maxlen: 24
89.35.28.0/22 maxlen: 22
195.20.108.0/24 maxlen: 24
195.20.108.0/23 maxlen: 23
185.121.136.0/22 maxlen: 22
185.114.224.0/24 maxlen: 24
89.40.212.0/24 maxlen: 24
86.107.241.0/24 maxlen: 24
89.34.96.0/22 maxlen: 22
2a01:4020:34::/48 maxlen: 48
2a01:4020:3::/48 maxlen: 48
2a01:4020::/32 maxlen: 32
2a01:4020:2::/48 maxlen: 48
2a00:1a30::/32 maxlen: 32
2a01:4020:32::/48 maxlen: 48
2a01:4020:33::/48 maxlen: 48
2a01:4020:30::/48 maxlen: 48
2a0b:b840::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 05 Jan 2023 02:34:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:81:38:76:5d:eb:34:c6:bc:08:fc:f7:fd:55:2b:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Validity
Not Before: Jan 1 08:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0cb04422331cc7f3f5e6bf3ccbd0271f7ac4ee1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:d6:c8:27:38:fb:d5:fa:7f:4f:5e:60:44:ff:
62:e8:84:2b:6b:57:29:dc:a1:8a:ff:69:32:05:b0:
8a:22:39:d9:3a:46:18:3c:f0:33:18:fa:d5:db:cb:
4f:0b:e3:43:b2:77:17:48:d7:ed:44:d5:fc:66:43:
fa:27:08:b9:b0:a2:30:bf:53:74:22:a9:b3:2c:35:
d6:d8:ac:ec:0e:98:69:2c:27:12:41:15:a0:13:cb:
49:f7:88:00:ed:00:d0:11:77:fe:97:73:12:9d:62:
9a:36:7c:97:36:fa:1f:49:7e:a4:d2:76:85:5c:c1:
30:ce:e3:bb:6a:3b:df:31:2d:1c:02:c7:f3:ed:71:
d9:39:0c:47:3f:ed:6b:59:78:ce:21:e8:e6:91:99:
73:39:1a:30:cd:31:64:f3:e3:8d:2c:35:40:e0:36:
c0:33:7d:48:11:7d:b4:1a:b0:47:a3:4c:32:bd:cc:
bb:29:11:f3:23:9e:44:8e:37:06:29:f3:bf:6c:4b:
43:34:81:f0:3e:00:49:47:91:0e:66:1c:af:48:0d:
d3:29:5b:5c:5e:ed:9a:d9:64:d4:55:7b:db:96:da:
94:25:59:45:53:fd:5e:e3:1a:a6:b0:4c:1f:fc:eb:
1b:48:6f:51:38:88:a1:28:f6:1c:94:4d:1c:ec:db:
f5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:CB:04:42:23:31:CC:7F:3F:5E:6B:F3:CC:BD:02:71:F7:AC:4E:E1
X509v3 Authority Key Identifier:
keyid:FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/sMsEQiMxzH8_XmvzzL0CcfesTuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.136.0/21
31.14.102.0/24
37.10.113.0-37.10.114.255
77.81.191.0/24
81.19.208.0/20
84.247.0.0/24
85.204.70.0/24
86.106.89.0/24
86.106.112.0/24
86.106.135.0/24
86.106.157.0-86.106.158.255
86.107.241.0/24
89.21.64.0/22
89.32.127.0/24
89.34.96.0/22
89.35.28.0/22
89.37.64.0/22
89.37.172.0/22
89.38.68.0/23
89.40.212.0/24
89.46.222.0/23
93.114.83.0/24
94.177.17.0/24
109.69.104.0/21
109.70.144.0/21
109.230.203.0/24
109.230.209.0/24
109.230.215.0/24
109.230.218.0/24
109.230.220.0/24
128.127.148.0/22
134.255.243.0/24
178.239.160.0/20
185.3.236.0/22
185.16.204.0/22
185.38.148.0/22
185.44.76.0/22
185.61.156.0/22
185.114.224.0/24
185.121.136.0/22
185.125.204.0/22
185.134.20.0/22
185.137.36.0/22
185.158.240.0/22
185.216.144.0/22
185.223.232.0/22
188.212.154.0/24
188.240.56.0/21
188.240.71.0/24
188.241.120.0/24
188.241.144.0/24
188.241.156.0/23
193.32.208.0/22
193.176.28.0/22
194.50.234.0/23
195.20.108.0/23
195.140.212.0/22
195.206.165.0-195.206.167.255
195.206.169.0-195.206.171.255
195.206.180.0/22
195.234.124.0/23
195.234.127.0/24
213.166.84.0/22
217.146.80.0/20
IPv6:
2a00:1a30::/32
2a01:4020::/32
2a0b:b840::/29
Signature Algorithm: sha256WithRSAEncryption
34:47:a4:d9:b3:4e:9a:a5:60:9d:09:68:da:a1:d1:2f:70:4a:
27:9f:01:3b:75:ab:f6:09:f3:e4:9b:97:7b:dd:21:79:96:f9:
c4:65:bb:e0:95:8f:53:7e:af:17:ff:f3:40:5b:cf:3f:9d:dc:
d6:ba:77:bb:57:dd:1f:65:00:e2:24:1e:69:15:52:64:48:69:
28:2e:b7:92:2d:fe:1e:bd:0d:19:2f:92:04:de:9b:43:01:c4:
0f:fc:d9:7f:c8:c4:70:9a:5d:2d:4f:f2:84:91:54:f5:db:05:
29:32:61:19:c9:eb:47:4f:0e:87:56:a0:ce:f1:c7:e2:ea:50:
34:8e:a1:39:9e:75:d7:90:c7:d8:07:d1:a7:26:7a:f6:bd:96:
c3:0e:73:61:ff:09:25:84:96:d4:cb:88:44:3f:bc:0e:aa:29:
2b:03:8b:54:01:24:9d:60:05:02:6b:72:08:b5:13:a0:e6:69:
c6:d4:d2:13:26:75:16:fc:e1:5c:72:e4:04:b0:f9:0a:5f:f6:
8c:07:56:26:6c:10:8e:07:6b:17:13:07:38:f4:ac:bd:9d:84:
46:b5:78:36:35:7d:66:69:dd:99:f1:60:a6:f3:df:da:5d:bd:
4a:e7:6a:9f:fc:a4:14:49:80:65:19:f9:c4:ed:fc:f7:3f:b0:
61:97:8b:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:00 2024 by rpki-client on console-fra.rpki-client.org