Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/T84YIJ68lhoMbdOTsW0lEKZ3NUQ.roa
File: T84YIJ68lhoMbdOTsW0lEKZ3NUQ.roa (raw, json)
Hash identifier: OHhs2prhjcZ/mgkI9FWZNJ+TMvuQsXzrB2RW9mwZtSk=
Subject key identifier: 4F:CE:18:20:9E:BC:96:1A:0C:6D:D3:93:B1:6D:25:10:A6:77:35:44
Certificate issuer: /CN=71949b47df313cbab9452da98fcc637608a909bd
Certificate serial: 018EBE5347CA18FBC7E6CF2AEB0C446B2C28
Authority key identifier: 71:94:9B:47:DF:31:3C:BA:B9:45:2D:A9:8F:CC:63:76:08:A9:09:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZSbR98xPLq5RS2pj8xjdgipCb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/T84YIJ68lhoMbdOTsW0lEKZ3NUQ.roa
Signing time: Mon 08 Apr 2024 15:28:32 +0000
ROA not before: Mon 08 Apr 2024 15:28:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34758
IP address blocks: 31.6.80.0/20 maxlen: 20
31.6.80.0/24 maxlen: 24
31.6.81.0/24 maxlen: 24
31.6.82.0/24 maxlen: 24
31.6.83.0/24 maxlen: 24
31.6.84.0/24 maxlen: 24
31.6.85.0/24 maxlen: 24
31.6.86.0/24 maxlen: 24
31.6.87.0/24 maxlen: 24
31.6.88.0/24 maxlen: 24
31.6.89.0/24 maxlen: 24
31.6.90.0/24 maxlen: 24
31.6.91.0/24 maxlen: 24
31.6.92.0/24 maxlen: 24
31.6.93.0/24 maxlen: 24
31.6.94.0/24 maxlen: 24
31.6.95.0/24 maxlen: 24
45.13.88.0/22 maxlen: 22
45.13.88.0/24 maxlen: 24
45.13.89.0/24 maxlen: 24
45.13.90.0/24 maxlen: 24
45.13.91.0/24 maxlen: 24
45.93.36.0/22 maxlen: 22
45.93.36.0/24 maxlen: 24
45.93.37.0/24 maxlen: 24
45.93.38.0/24 maxlen: 24
45.93.39.0/24 maxlen: 24
92.246.96.0/21 maxlen: 21
92.246.96.0/24 maxlen: 24
92.246.97.0/24 maxlen: 24
92.246.98.0/24 maxlen: 24
92.246.99.0/24 maxlen: 24
92.246.100.0/24 maxlen: 24
92.246.101.0/24 maxlen: 24
92.246.102.0/24 maxlen: 24
92.246.103.0/24 maxlen: 24
92.246.112.0/20 maxlen: 20
92.246.112.0/24 maxlen: 24
92.246.113.0/24 maxlen: 24
92.246.114.0/24 maxlen: 24
92.246.115.0/24 maxlen: 24
92.246.116.0/24 maxlen: 24
92.246.117.0/24 maxlen: 24
92.246.118.0/24 maxlen: 24
92.246.119.0/24 maxlen: 24
92.246.120.0/24 maxlen: 24
92.246.121.0/24 maxlen: 24
92.246.122.0/24 maxlen: 24
92.246.123.0/24 maxlen: 24
92.246.124.0/24 maxlen: 24
92.246.125.0/24 maxlen: 24
92.246.126.0/24 maxlen: 24
92.246.127.0/24 maxlen: 24
93.93.16.0/21 maxlen: 21
93.93.16.0/24 maxlen: 24
93.93.17.0/24 maxlen: 24
93.93.18.0/24 maxlen: 24
93.93.19.0/24 maxlen: 24
93.93.20.0/24 maxlen: 24
93.93.21.0/24 maxlen: 24
93.93.22.0/24 maxlen: 24
93.93.23.0/24 maxlen: 24
109.234.136.0/21 maxlen: 21
109.234.136.0/24 maxlen: 24
109.234.137.0/24 maxlen: 24
109.234.138.0/24 maxlen: 24
109.234.139.0/24 maxlen: 24
109.234.140.0/24 maxlen: 24
109.234.141.0/24 maxlen: 24
109.234.142.0/24 maxlen: 24
109.234.143.0/24 maxlen: 24
146.255.160.0/21 maxlen: 21
146.255.160.0/24 maxlen: 24
146.255.161.0/24 maxlen: 24
146.255.162.0/24 maxlen: 24
146.255.163.0/24 maxlen: 24
146.255.164.0/24 maxlen: 24
146.255.165.0/24 maxlen: 24
146.255.166.0/24 maxlen: 24
146.255.167.0/24 maxlen: 24
159.255.156.0/22 maxlen: 22
159.255.156.0/24 maxlen: 24
159.255.157.0/24 maxlen: 24
159.255.158.0/24 maxlen: 24
159.255.159.0/24 maxlen: 24
185.23.84.0/22 maxlen: 22
185.23.84.0/24 maxlen: 24
185.23.85.0/24 maxlen: 24
185.23.86.0/24 maxlen: 24
185.23.87.0/24 maxlen: 24
185.103.80.0/22 maxlen: 22
185.103.80.0/24 maxlen: 24
185.103.81.0/24 maxlen: 24
185.103.82.0/24 maxlen: 24
185.103.83.0/24 maxlen: 24
185.126.140.0/22 maxlen: 22
185.126.140.0/24 maxlen: 24
185.126.141.0/24 maxlen: 24
185.126.142.0/24 maxlen: 24
185.126.143.0/24 maxlen: 24
185.158.28.0/22 maxlen: 22
185.158.30.0/24 maxlen: 24
185.158.31.0/24 maxlen: 24
185.171.36.0/22 maxlen: 22
185.171.36.0/24 maxlen: 24
185.171.37.0/24 maxlen: 24
185.171.38.0/24 maxlen: 24
185.171.39.0/24 maxlen: 24
193.238.136.0/22 maxlen: 22
193.238.136.0/24 maxlen: 24
193.238.137.0/24 maxlen: 24
193.238.138.0/24 maxlen: 24
193.238.139.0/24 maxlen: 24
195.225.224.0/22 maxlen: 22
195.225.224.0/24 maxlen: 24
195.225.225.0/24 maxlen: 24
195.225.226.0/24 maxlen: 24
195.225.227.0/24 maxlen: 24
217.72.32.0/21 maxlen: 21
217.72.32.0/24 maxlen: 24
217.72.33.0/24 maxlen: 24
217.72.34.0/24 maxlen: 24
217.72.35.0/24 maxlen: 24
217.72.36.0/24 maxlen: 24
217.72.37.0/24 maxlen: 24
217.72.38.0/24 maxlen: 24
217.72.39.0/24 maxlen: 24
2a04:2080::/29 maxlen: 48
2a06:c2c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 23 Apr 2024 18:57:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:be:53:47:ca:18:fb:c7:e6:cf:2a:eb:0c:44:6b:2c:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71949b47df313cbab9452da98fcc637608a909bd
Validity
Not Before: Apr 8 15:28:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4fce18209ebc961a0c6dd393b16d2510a6773544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:40:84:ad:e9:2e:79:4a:40:8e:cb:67:6b:b3:
f3:fe:31:13:1a:07:f3:15:73:03:ab:ba:f6:cb:11:
ba:7e:9d:81:66:8a:5e:a0:a6:7b:52:0a:e8:45:f9:
b4:95:1f:eb:77:ae:8b:9f:d2:72:af:5b:47:31:55:
6e:59:81:d2:3e:ee:65:d0:42:32:b4:13:c9:62:b3:
5a:45:2d:28:3e:2c:80:2a:f8:ff:28:5e:ad:01:90:
c9:af:f4:fc:ac:39:15:43:6c:ff:b0:bb:40:16:be:
28:58:3e:75:17:0b:60:c0:83:3a:19:c0:34:70:d8:
89:db:91:f1:b2:5f:46:d7:63:9d:6e:58:4b:89:8c:
37:8c:40:6b:b6:9c:fd:42:c5:ca:c1:4f:5b:4a:35:
78:61:53:af:20:43:c9:41:67:70:9c:04:17:68:c4:
d7:c4:ed:11:6b:a7:05:de:cf:46:c4:bd:c9:79:a4:
27:e8:94:b3:61:bb:a9:bd:3b:31:2c:16:38:cf:77:
d0:66:2d:cb:0a:b3:77:70:30:0f:44:94:30:8a:fd:
20:e8:32:53:db:fc:68:f2:18:21:ff:ae:1b:52:9b:
41:5e:75:71:f5:63:23:47:76:e5:6a:8e:8c:3f:1b:
7b:d2:b0:be:1c:0a:6e:bd:85:cd:22:93:a1:36:e3:
d6:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:CE:18:20:9E:BC:96:1A:0C:6D:D3:93:B1:6D:25:10:A6:77:35:44
X509v3 Authority Key Identifier:
keyid:71:94:9B:47:DF:31:3C:BA:B9:45:2D:A9:8F:CC:63:76:08:A9:09:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZSbR98xPLq5RS2pj8xjdgipCb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/T84YIJ68lhoMbdOTsW0lEKZ3NUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/cZSbR98xPLq5RS2pj8xjdgipCb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.80.0/20
45.13.88.0/22
45.93.36.0/22
92.246.96.0/21
92.246.112.0/20
93.93.16.0/21
109.234.136.0/21
146.255.160.0/21
159.255.156.0/22
185.23.84.0/22
185.103.80.0/22
185.126.140.0/22
185.158.28.0/22
185.171.36.0/22
193.238.136.0/22
195.225.224.0/22
217.72.32.0/21
IPv6:
2a04:2080::/29
2a06:c2c0::/29
Signature Algorithm: sha256WithRSAEncryption
20:e2:29:55:0f:e6:01:6e:f7:e8:4a:39:de:90:76:a5:91:4a:
1a:7a:87:69:48:40:d1:b8:f9:a0:3b:9d:4b:a4:22:83:0a:6b:
71:26:b2:ed:b8:70:1e:9a:be:93:95:9e:2b:8f:3d:71:56:ce:
98:bc:fe:39:7c:ee:64:68:84:d9:8f:bf:1e:5e:e5:e7:71:9a:
aa:25:7d:40:1f:37:0d:7a:e6:ea:a2:c3:28:55:b0:cd:4a:cb:
c9:8c:1f:b9:29:3c:19:4b:38:57:b7:11:46:b3:92:b3:72:2d:
d8:26:54:46:63:bd:3d:b2:a2:0c:4e:c9:2c:0d:ef:1c:6e:64:
f3:d1:17:64:ca:3c:29:06:53:58:4b:88:93:01:c0:4a:93:04:
66:51:87:bc:47:4f:79:60:3a:b7:3f:e5:ba:9b:87:39:16:36:
d8:0a:e7:a7:1a:04:da:c2:cc:a9:8f:2e:d7:56:0f:72:ca:9d:
53:9b:27:ce:d3:f4:0f:99:91:78:c9:95:cf:a1:8f:2a:85:16:
68:9b:7f:a6:8d:4a:e1:ff:6d:9a:5d:5f:84:7b:3d:dd:f1:88:
89:f6:ac:b5:ae:1c:c0:26:fa:fa:35:bf:fa:37:27:3f:9e:54:
2c:72:8a:f1:61:89:48:00:68:76:af:2d:71:bf:59:b1:30:83:
d2:ce:c5:2a
-----BEGIN CERTIFICATE-----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Generated at Tue Apr 23 22:12:09 2024 by rpki-client on console-ams.rpki-client.org