Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/suaHz7PqX09sttdbQPEyleo13g8.roa
File: suaHz7PqX09sttdbQPEyleo13g8.roa (raw, json)
Hash identifier: 2S2Xx7q82frVRSF4D4yo2iri1YDQAl2BA6TastSWU+8=
Subject key identifier: B2:E6:87:CF:B3:EA:5F:4F:6C:B6:D7:5B:40:F1:32:95:EA:35:DE:0F
Certificate issuer: /CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Certificate serial: 018771C71C8616D8D2F68FF1656B1FD62489
Authority key identifier: FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/suaHz7PqX09sttdbQPEyleo13g8.roa
Signing time: Tue 11 Apr 2023 19:24:47 +0000
ROA not before: Tue 11 Apr 2023 19:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25369
IP address blocks: 188.241.246.0/24 maxlen: 24
93.113.175.0/24 maxlen: 24
185.134.20.0/22 maxlen: 22
195.140.212.0/22 maxlen: 22
93.114.83.0/24 maxlen: 24
134.255.243.0/24 maxlen: 24
93.114.129.0/24 maxlen: 24
128.127.148.0/22 maxlen: 22
81.19.208.0/20 maxlen: 20
81.19.208.0/23 maxlen: 23
81.19.211.0/24 maxlen: 24
81.19.215.0/24 maxlen: 24
81.19.216.0/24 maxlen: 24
89.46.223.0/24 maxlen: 24
89.46.222.0/23 maxlen: 23
86.106.89.0/24 maxlen: 24
86.106.112.0/24 maxlen: 24
195.234.124.0/24 maxlen: 24
195.234.124.0/23 maxlen: 24
195.234.127.0/24 maxlen: 24
188.241.120.0/24 maxlen: 24
188.241.144.0/24 maxlen: 24
188.241.156.0/23 maxlen: 23
188.241.157.0/24 maxlen: 24
193.32.208.0/24 maxlen: 24
193.32.208.0/22 maxlen: 22
86.106.135.0/24 maxlen: 24
89.32.127.0/24 maxlen: 24
86.106.158.0/24 maxlen: 24
86.106.157.0/24 maxlen: 24
188.240.58.0/24 maxlen: 24
188.240.56.0/21 maxlen: 21
188.240.56.0/24 maxlen: 24
188.240.57.0/24 maxlen: 24
188.240.71.0/24 maxlen: 24
84.247.0.0/24 maxlen: 24
195.206.165.0/24 maxlen: 24
185.125.204.0/22 maxlen: 22
195.206.166.0/23 maxlen: 23
195.206.169.0/24 maxlen: 24
195.206.170.0/23 maxlen: 23
89.38.68.0/23 maxlen: 23
195.206.180.0/22 maxlen: 22
5.226.136.0/21 maxlen: 21
217.146.80.0/20 maxlen: 20
217.146.87.0/24 maxlen: 24
185.38.148.0/22 maxlen: 22
217.146.92.0/24 maxlen: 24
213.166.84.0/22 maxlen: 24
37.10.113.0/24 maxlen: 24
37.10.114.0/24 maxlen: 24
188.212.154.0/24 maxlen: 24
194.50.234.0/23 maxlen: 23
89.37.64.0/22 maxlen: 22
185.158.241.0/24 maxlen: 24
185.158.242.0/24 maxlen: 24
89.37.173.0/24 maxlen: 24
178.239.160.0/20 maxlen: 20
178.239.165.0/24 maxlen: 24
178.239.167.0/24 maxlen: 24
185.44.76.0/22 maxlen: 22
178.239.173.0/24 maxlen: 24
185.3.236.0/22 maxlen: 22
185.158.240.0/22 maxlen: 24
89.37.172.0/22 maxlen: 22
109.70.144.0/21 maxlen: 21
109.70.145.0/24 maxlen: 24
109.70.149.0/24 maxlen: 24
109.70.148.0/24 maxlen: 24
185.16.204.0/22 maxlen: 22
94.177.17.0/24 maxlen: 24
109.69.104.0/21 maxlen: 21
109.69.110.0/24 maxlen: 24
109.230.203.0/24 maxlen: 24
109.230.209.0/24 maxlen: 24
109.230.218.0/24 maxlen: 24
109.230.215.0/24 maxlen: 24
109.230.220.0/24 maxlen: 24
185.137.36.0/24 maxlen: 24
185.137.36.0/22 maxlen: 22
85.204.70.0/24 maxlen: 24
89.21.66.0/24 maxlen: 24
77.81.191.0/24 maxlen: 24
31.14.102.0/24 maxlen: 24
193.176.28.0/22 maxlen: 22
193.176.31.0/24 maxlen: 24
185.216.144.0/22 maxlen: 22
185.61.157.0/24 maxlen: 24
185.61.156.0/24 maxlen: 24
185.61.156.0/22 maxlen: 22
89.21.64.0/24 maxlen: 24
89.21.64.0/22 maxlen: 22
185.223.232.0/22 maxlen: 22
185.223.235.0/24 maxlen: 24
89.35.25.0/24 maxlen: 24
89.35.28.0/22 maxlen: 22
195.20.108.0/24 maxlen: 24
195.20.108.0/23 maxlen: 23
185.121.136.0/22 maxlen: 22
185.114.224.0/24 maxlen: 24
89.40.212.0/24 maxlen: 24
86.107.241.0/24 maxlen: 24
89.34.96.0/22 maxlen: 22
2a01:4020:34::/48 maxlen: 48
2a01:4020:3::/48 maxlen: 48
2a01:4020::/32 maxlen: 32
2a01:4020:2::/48 maxlen: 48
2a00:1a30::/32 maxlen: 32
2a01:4020:32::/48 maxlen: 48
2a01:4020:33::/48 maxlen: 48
2a01:4020:30::/48 maxlen: 48
2a0b:b840::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 14 Apr 2023 14:07:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:71:c7:1c:86:16:d8:d2:f6:8f:f1:65:6b:1f:d6:24:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Validity
Not Before: Apr 11 19:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2e687cfb3ea5f4f6cb6d75b40f13295ea35de0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:22:55:1f:21:94:87:e5:ce:f6:95:d2:4e:41:
fa:f7:0d:a0:7e:dd:93:6a:38:a7:4a:e2:b1:f1:6c:
18:1a:b5:93:7c:56:2a:94:bd:2e:89:b0:9c:eb:14:
dd:ce:c1:aa:00:21:cf:57:e1:48:ed:b7:6c:68:ba:
cc:b2:dd:59:ed:ff:be:f8:36:0a:85:ed:71:db:1f:
c2:51:cb:e9:d5:7b:75:b5:8d:16:38:dc:65:da:34:
a2:09:af:35:2a:17:6c:ee:aa:d8:2e:ee:e0:24:8f:
d7:b4:e2:bc:58:3c:6a:7a:53:c9:19:97:4b:16:1a:
da:f7:3b:29:2a:e1:3a:d6:ad:ed:2e:2f:cd:c8:2e:
7e:1a:06:eb:f1:8c:f8:81:16:0e:b0:e2:80:cf:c4:
b4:34:12:d6:15:57:04:bc:ad:54:8f:20:8e:48:24:
56:26:cc:13:78:28:47:44:f3:2a:ca:f8:31:0c:ef:
42:8d:34:5f:e8:e6:3d:87:d6:83:90:ab:0e:c7:c9:
d6:58:62:e3:61:d0:6b:a9:67:70:b2:cf:27:4e:4a:
f9:e9:19:d7:7d:61:f0:86:16:f6:3d:3c:a1:7e:3c:
93:56:7b:af:d7:47:b1:03:a0:fa:62:b6:87:86:b3:
df:a2:85:89:38:4c:cd:7b:c8:e7:7d:ea:f0:03:89:
2c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E6:87:CF:B3:EA:5F:4F:6C:B6:D7:5B:40:F1:32:95:EA:35:DE:0F
X509v3 Authority Key Identifier:
keyid:FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/suaHz7PqX09sttdbQPEyleo13g8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.136.0/21
31.14.102.0/24
37.10.113.0-37.10.114.255
77.81.191.0/24
81.19.208.0/20
84.247.0.0/24
85.204.70.0/24
86.106.89.0/24
86.106.112.0/24
86.106.135.0/24
86.106.157.0-86.106.158.255
86.107.241.0/24
89.21.64.0/22
89.32.127.0/24
89.34.96.0/22
89.35.25.0/24
89.35.28.0/22
89.37.64.0/22
89.37.172.0/22
89.38.68.0/23
89.40.212.0/24
89.46.222.0/23
93.113.175.0/24
93.114.83.0/24
93.114.129.0/24
94.177.17.0/24
109.69.104.0/21
109.70.144.0/21
109.230.203.0/24
109.230.209.0/24
109.230.215.0/24
109.230.218.0/24
109.230.220.0/24
128.127.148.0/22
134.255.243.0/24
178.239.160.0/20
185.3.236.0/22
185.16.204.0/22
185.38.148.0/22
185.44.76.0/22
185.61.156.0/22
185.114.224.0/24
185.121.136.0/22
185.125.204.0/22
185.134.20.0/22
185.137.36.0/22
185.158.240.0/22
185.216.144.0/22
185.223.232.0/22
188.212.154.0/24
188.240.56.0/21
188.240.71.0/24
188.241.120.0/24
188.241.144.0/24
188.241.156.0/23
188.241.246.0/24
193.32.208.0/22
193.176.28.0/22
194.50.234.0/23
195.20.108.0/23
195.140.212.0/22
195.206.165.0-195.206.167.255
195.206.169.0-195.206.171.255
195.206.180.0/22
195.234.124.0/23
195.234.127.0/24
213.166.84.0/22
217.146.80.0/20
IPv6:
2a00:1a30::/32
2a01:4020::/32
2a0b:b840::/29
Signature Algorithm: sha256WithRSAEncryption
04:de:a7:29:ba:7d:50:02:f1:59:d3:07:cb:2c:1c:b3:f3:c0:
f3:14:f6:1e:51:da:90:f2:3f:2e:b1:5b:f1:0a:db:68:fa:f0:
4b:d2:e3:9e:81:77:b9:48:9b:28:e0:a2:5e:ff:32:00:1b:cf:
e2:15:95:48:41:1c:03:39:b9:6b:5b:50:c4:6f:1c:cf:6c:51:
78:52:c7:d9:8b:8a:1f:f0:e3:6b:f4:25:a8:68:57:df:96:76:
5a:aa:ed:76:e9:99:2c:30:97:54:a7:27:1b:31:70:bc:e7:71:
af:c3:d8:78:25:ee:b8:da:97:34:28:25:74:87:42:e8:ef:17:
04:63:69:f9:47:50:4d:ac:c4:2b:74:ae:f6:f8:a8:ad:4e:ab:
c3:0a:d0:49:a0:a9:33:a5:2c:4a:9e:00:5e:fd:9b:28:b4:2f:
6b:e0:b8:87:03:4e:49:af:67:d1:4a:27:60:c7:9e:b4:89:6c:
d6:39:28:50:9e:1e:ce:58:e1:3a:45:fb:a4:02:9f:bb:1e:ee:
b9:11:a3:a1:70:a0:20:b1:36:76:ee:22:f1:db:e2:30:7d:37:
76:4c:a6:6b:28:10:9b:94:0b:75:19:fb:72:bc:b7:c8:7d:b6:
2a:9a:e8:98:3d:ea:f7:6d:2c:6a:09:2f:b0:99:39:95:99:f7:
70:4a:ec:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:00 2024 by rpki-client on console-fra.rpki-client.org