Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/Lq5rXm3aY3_ApcMzZrEG9ZyuBoY.roa
File: Lq5rXm3aY3_ApcMzZrEG9ZyuBoY.roa (raw, json)
Hash identifier: VmR4JoUg0RwYrIM/92BoR5Jz8uJF0slDThBwOlCJ4iA=
Subject key identifier: 2E:AE:6B:5E:6D:DA:63:7F:C0:A5:C3:33:66:B1:06:F5:9C:AE:06:86
Certificate issuer: /CN=71949b47df313cbab9452da98fcc637608a909bd
Certificate serial: 018E09B995444B1112A8E47BCA6EF5F834E0
Authority key identifier: 71:94:9B:47:DF:31:3C:BA:B9:45:2D:A9:8F:CC:63:76:08:A9:09:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZSbR98xPLq5RS2pj8xjdgipCb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/Lq5rXm3aY3_ApcMzZrEG9ZyuBoY.roa
Signing time: Mon 04 Mar 2024 13:49:01 +0000
ROA not before: Mon 04 Mar 2024 13:49:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34758
IP address blocks: 31.6.80.0/20 maxlen: 20
31.6.80.0/24 maxlen: 24
31.6.81.0/24 maxlen: 24
31.6.82.0/24 maxlen: 24
31.6.83.0/24 maxlen: 24
31.6.84.0/24 maxlen: 24
31.6.85.0/24 maxlen: 24
31.6.86.0/24 maxlen: 24
31.6.87.0/24 maxlen: 24
31.6.88.0/24 maxlen: 24
31.6.89.0/24 maxlen: 24
31.6.90.0/24 maxlen: 24
31.6.91.0/24 maxlen: 24
31.6.92.0/24 maxlen: 24
31.6.93.0/24 maxlen: 24
31.6.94.0/24 maxlen: 24
31.6.95.0/24 maxlen: 24
45.13.88.0/22 maxlen: 22
45.13.88.0/24 maxlen: 24
45.13.89.0/24 maxlen: 24
45.13.90.0/24 maxlen: 24
45.13.91.0/24 maxlen: 24
45.93.36.0/22 maxlen: 22
45.93.36.0/24 maxlen: 24
45.93.37.0/24 maxlen: 24
45.93.38.0/24 maxlen: 24
45.93.39.0/24 maxlen: 24
92.246.96.0/21 maxlen: 21
92.246.96.0/24 maxlen: 24
92.246.97.0/24 maxlen: 24
92.246.98.0/24 maxlen: 24
92.246.99.0/24 maxlen: 24
92.246.100.0/24 maxlen: 24
92.246.101.0/24 maxlen: 24
92.246.102.0/24 maxlen: 24
92.246.103.0/24 maxlen: 24
92.246.112.0/20 maxlen: 20
92.246.112.0/24 maxlen: 24
92.246.113.0/24 maxlen: 24
92.246.114.0/24 maxlen: 24
92.246.115.0/24 maxlen: 24
92.246.116.0/24 maxlen: 24
92.246.117.0/24 maxlen: 24
92.246.118.0/24 maxlen: 24
92.246.119.0/24 maxlen: 24
92.246.120.0/24 maxlen: 24
92.246.121.0/24 maxlen: 24
92.246.122.0/24 maxlen: 24
92.246.123.0/24 maxlen: 24
92.246.124.0/24 maxlen: 24
92.246.125.0/24 maxlen: 24
92.246.126.0/24 maxlen: 24
92.246.127.0/24 maxlen: 24
93.93.16.0/21 maxlen: 21
93.93.20.0/24 maxlen: 24
93.93.21.0/24 maxlen: 24
93.93.22.0/24 maxlen: 24
93.93.23.0/24 maxlen: 24
109.234.136.0/21 maxlen: 21
109.234.136.0/24 maxlen: 24
109.234.137.0/24 maxlen: 24
109.234.138.0/24 maxlen: 24
109.234.139.0/24 maxlen: 24
109.234.140.0/24 maxlen: 24
109.234.141.0/24 maxlen: 24
109.234.142.0/24 maxlen: 24
109.234.143.0/24 maxlen: 24
146.255.160.0/21 maxlen: 21
146.255.160.0/24 maxlen: 24
146.255.161.0/24 maxlen: 24
146.255.162.0/24 maxlen: 24
146.255.163.0/24 maxlen: 24
146.255.164.0/24 maxlen: 24
146.255.165.0/24 maxlen: 24
146.255.166.0/24 maxlen: 24
146.255.167.0/24 maxlen: 24
159.255.156.0/22 maxlen: 22
159.255.156.0/24 maxlen: 24
159.255.157.0/24 maxlen: 24
159.255.158.0/24 maxlen: 24
159.255.159.0/24 maxlen: 24
185.23.84.0/22 maxlen: 22
185.23.84.0/24 maxlen: 24
185.23.85.0/24 maxlen: 24
185.23.86.0/24 maxlen: 24
185.23.87.0/24 maxlen: 24
185.103.80.0/22 maxlen: 22
185.103.80.0/24 maxlen: 24
185.103.81.0/24 maxlen: 24
185.103.82.0/24 maxlen: 24
185.103.83.0/24 maxlen: 24
185.126.140.0/22 maxlen: 22
185.126.140.0/24 maxlen: 24
185.126.141.0/24 maxlen: 24
185.126.142.0/24 maxlen: 24
185.126.143.0/24 maxlen: 24
185.158.30.0/23 maxlen: 23
185.158.30.0/24 maxlen: 24
185.158.31.0/24 maxlen: 24
185.171.36.0/22 maxlen: 22
185.171.36.0/24 maxlen: 24
185.171.37.0/24 maxlen: 24
185.171.38.0/24 maxlen: 24
185.171.39.0/24 maxlen: 24
193.238.136.0/22 maxlen: 22
193.238.136.0/24 maxlen: 24
193.238.137.0/24 maxlen: 24
193.238.138.0/24 maxlen: 24
193.238.139.0/24 maxlen: 24
195.225.224.0/22 maxlen: 22
195.225.224.0/24 maxlen: 24
195.225.225.0/24 maxlen: 24
195.225.226.0/24 maxlen: 24
195.225.227.0/24 maxlen: 24
217.72.32.0/21 maxlen: 21
217.72.32.0/24 maxlen: 24
217.72.33.0/24 maxlen: 24
217.72.34.0/24 maxlen: 24
217.72.35.0/24 maxlen: 24
217.72.36.0/24 maxlen: 24
217.72.37.0/24 maxlen: 24
217.72.38.0/24 maxlen: 24
217.72.39.0/24 maxlen: 24
2a04:2080::/29 maxlen: 48
2a06:c2c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 05 Mar 2024 14:45:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:09:b9:95:44:4b:11:12:a8:e4:7b:ca:6e:f5:f8:34:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71949b47df313cbab9452da98fcc637608a909bd
Validity
Not Before: Mar 4 13:49:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2eae6b5e6dda637fc0a5c33366b106f59cae0686
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:09:f3:54:b9:43:31:24:51:0b:66:17:4a:42:
43:e6:68:e8:d7:77:5b:c4:1a:af:e1:bc:9e:4f:a9:
1f:da:38:39:83:6c:32:ac:6f:f9:c2:49:46:ba:67:
2b:4a:24:25:52:23:91:e1:d5:58:c7:1d:96:0c:de:
d8:7a:1a:4c:4d:ec:ee:a2:a0:35:2b:f7:23:d0:aa:
d3:73:6d:1d:6c:2a:0a:7a:93:09:bd:95:70:82:f3:
b7:0b:94:af:44:e3:3a:20:71:13:20:fd:50:50:30:
13:d3:2e:4d:60:fb:32:3a:b0:0f:8e:38:f3:05:bd:
44:9f:50:12:95:ed:66:3a:c4:0b:b5:0b:48:a0:1f:
e7:37:51:8d:fb:cc:a3:dc:91:3d:22:e8:72:55:84:
34:45:fa:1a:ef:9a:5f:41:bc:71:96:59:7f:02:ea:
a4:08:02:7e:24:c6:ab:95:90:64:d3:94:e5:ed:86:
53:d6:ca:42:58:b5:14:ef:fe:bc:f9:3c:19:d6:8d:
aa:ca:c5:e2:c4:86:67:34:f1:5c:14:21:40:2d:ea:
0f:13:bf:11:63:b5:1b:03:1f:eb:46:7f:06:4c:7b:
32:07:9b:85:26:71:aa:13:ee:e4:0b:0a:68:9f:ff:
14:7b:b9:f9:d2:e5:89:83:1c:c9:fc:74:eb:d3:79:
0f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:AE:6B:5E:6D:DA:63:7F:C0:A5:C3:33:66:B1:06:F5:9C:AE:06:86
X509v3 Authority Key Identifier:
keyid:71:94:9B:47:DF:31:3C:BA:B9:45:2D:A9:8F:CC:63:76:08:A9:09:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZSbR98xPLq5RS2pj8xjdgipCb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/Lq5rXm3aY3_ApcMzZrEG9ZyuBoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/cZSbR98xPLq5RS2pj8xjdgipCb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.80.0/20
45.13.88.0/22
45.93.36.0/22
92.246.96.0/21
92.246.112.0/20
93.93.16.0/21
109.234.136.0/21
146.255.160.0/21
159.255.156.0/22
185.23.84.0/22
185.103.80.0/22
185.126.140.0/22
185.158.30.0/23
185.171.36.0/22
193.238.136.0/22
195.225.224.0/22
217.72.32.0/21
IPv6:
2a04:2080::/29
2a06:c2c0::/29
Signature Algorithm: sha256WithRSAEncryption
52:10:e6:77:b7:3a:59:56:ac:19:8a:69:2b:f7:cd:01:52:b2:
31:d0:13:92:08:2a:f1:a6:b7:fc:04:8d:b3:f2:78:30:2e:59:
5f:d3:87:ed:0c:92:73:69:4c:14:12:7b:8c:43:16:c6:67:2a:
31:ec:6a:5c:08:07:b0:6c:7e:ab:d8:ca:79:4d:ad:91:b5:80:
c2:4f:8f:b7:a4:cc:ff:5b:05:89:b6:62:25:49:a7:6e:24:ce:
93:36:4f:3e:2e:a2:5d:67:85:f5:2b:95:c5:27:a3:a2:9c:7f:
f5:76:5a:72:29:66:d2:c3:c8:ff:08:46:67:9d:36:cc:bf:be:
dc:0f:8d:ad:2e:ea:98:b1:34:bf:50:a2:58:90:b0:a8:ac:32:
26:ab:91:1e:c8:dd:f7:3d:00:fa:0b:46:2d:0b:de:c8:a0:76:
82:2a:90:bc:f1:76:54:61:c9:f0:e7:70:9d:8e:51:64:91:46:
d6:56:88:18:60:7b:fc:d6:e7:1f:28:40:55:39:70:cf:c4:9d:
70:b7:02:44:c0:75:fa:83:be:ab:f1:09:27:78:64:c3:fb:34:
71:87:77:07:d1:ba:9a:bc:f8:51:50:3e:5b:42:f0:84:4a:28:
81:10:f2:51:f0:19:c0:f7:22:6f:e8:23:14:2e:28:41:ef:4e:
c7:fb:43:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:40 2024 by rpki-client on console-ams.rpki-client.org