Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/X6hOnE_GRDUGCM6-J-LpAvgmM4I.roa
File: X6hOnE_GRDUGCM6-J-LpAvgmM4I.roa (raw, json)
Hash identifier: ep/A8ALyJGniY5xmZqj1U9u9V0CrUz2jy9VJGqWG1PE=
Subject key identifier: 5F:A8:4E:9C:4F:C6:44:35:06:08:CE:BE:27:E2:E9:02:F8:26:33:82
Certificate issuer: /CN=71949b47df313cbab9452da98fcc637608a909bd
Certificate serial: 01856E5D657955D5E0B0FEEEB3872EA12285
Authority key identifier: 71:94:9B:47:DF:31:3C:BA:B9:45:2D:A9:8F:CC:63:76:08:A9:09:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZSbR98xPLq5RS2pj8xjdgipCb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/X6hOnE_GRDUGCM6-J-LpAvgmM4I.roa
Signing time: Sun 01 Jan 2023 17:24:52 +0000
ROA not before: Sun 01 Jan 2023 17:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13097
IP address blocks: 185.178.14.0/24 maxlen: 24
185.178.15.0/24 maxlen: 24
185.178.13.0/24 maxlen: 24
185.178.12.0/24 maxlen: 24
185.178.12.0/22 maxlen: 22
159.255.156.0/24 maxlen: 24
80.70.116.0/24 maxlen: 24
80.70.117.0/24 maxlen: 24
80.70.118.0/24 maxlen: 24
80.70.116.0/22 maxlen: 22
80.70.119.0/24 maxlen: 24
84.234.100.0/22 maxlen: 22
84.234.103.0/24 maxlen: 24
84.234.101.0/24 maxlen: 24
84.234.102.0/24 maxlen: 24
84.234.100.0/24 maxlen: 24
82.163.32.0/22 maxlen: 22
82.163.35.0/24 maxlen: 24
82.163.33.0/24 maxlen: 24
82.163.34.0/24 maxlen: 24
82.163.32.0/24 maxlen: 24
213.178.192.0/20 maxlen: 20
213.178.192.0/24 maxlen: 24
213.178.199.0/24 maxlen: 24
213.178.197.0/24 maxlen: 24
213.178.198.0/24 maxlen: 24
213.178.195.0/24 maxlen: 24
213.178.196.0/24 maxlen: 24
213.178.194.0/24 maxlen: 24
213.178.193.0/24 maxlen: 24
46.229.84.0/24 maxlen: 24
46.229.85.0/24 maxlen: 24
213.178.202.0/24 maxlen: 24
213.178.203.0/24 maxlen: 24
46.229.83.0/24 maxlen: 24
46.229.81.0/24 maxlen: 24
46.229.82.0/24 maxlen: 24
46.229.80.0/20 maxlen: 20
213.178.201.0/24 maxlen: 24
213.178.205.0/24 maxlen: 24
213.178.206.0/24 maxlen: 24
213.178.204.0/24 maxlen: 24
213.178.200.0/24 maxlen: 24
46.229.80.0/24 maxlen: 24
46.229.91.0/24 maxlen: 24
46.229.90.0/24 maxlen: 24
46.229.88.0/24 maxlen: 24
46.229.89.0/24 maxlen: 24
46.229.86.0/24 maxlen: 24
46.229.87.0/24 maxlen: 24
213.178.207.0/24 maxlen: 24
46.229.95.0/24 maxlen: 24
46.229.93.0/24 maxlen: 24
46.229.94.0/24 maxlen: 24
46.229.92.0/24 maxlen: 24
185.138.37.0/24 maxlen: 24
185.138.38.0/24 maxlen: 24
185.138.36.0/24 maxlen: 24
185.138.36.0/23 maxlen: 23
185.138.36.0/22 maxlen: 22
185.138.39.0/24 maxlen: 24
185.138.38.0/23 maxlen: 23
89.189.32.0/20 maxlen: 20
89.189.38.0/24 maxlen: 24
89.189.36.0/24 maxlen: 24
89.189.37.0/24 maxlen: 24
89.189.34.0/24 maxlen: 24
89.189.35.0/24 maxlen: 24
89.189.32.0/24 maxlen: 24
89.189.33.0/24 maxlen: 24
89.189.44.0/24 maxlen: 24
89.189.43.0/24 maxlen: 24
89.189.41.0/24 maxlen: 24
89.189.42.0/24 maxlen: 24
89.189.39.0/24 maxlen: 24
89.189.40.0/24 maxlen: 24
89.189.46.0/24 maxlen: 24
89.189.47.0/24 maxlen: 24
89.189.45.0/24 maxlen: 24
89.189.56.0/21 maxlen: 21
89.189.56.0/24 maxlen: 24
89.189.58.0/24 maxlen: 24
89.189.57.0/24 maxlen: 24
89.189.62.0/24 maxlen: 24
89.189.63.0/24 maxlen: 24
89.189.60.0/24 maxlen: 24
89.189.61.0/24 maxlen: 24
89.189.59.0/24 maxlen: 24
2a01:7540::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 19 May 2023 12:10:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:5d:65:79:55:d5:e0:b0:fe:ee:b3:87:2e:a1:22:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71949b47df313cbab9452da98fcc637608a909bd
Validity
Not Before: Jan 1 17:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5fa84e9c4fc644350608cebe27e2e902f8263382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:16:5b:ed:1a:a5:a4:73:cb:bb:f5:0b:e3:6d:
04:c9:25:1e:57:11:8c:9d:b6:38:fc:5e:2d:47:ce:
a8:a7:31:9c:18:36:b2:43:74:72:13:7e:a8:56:20:
ce:2e:83:03:09:b0:9b:34:26:c2:df:85:e7:ca:20:
6f:ba:fa:2d:86:78:09:fc:a2:85:58:c3:ed:89:d9:
05:e2:c4:fa:db:11:52:61:75:4f:8a:8c:9d:c2:d3:
24:af:d2:d5:11:d5:78:2d:c7:74:81:4a:63:71:1c:
74:c3:79:5e:b2:4a:98:cc:fd:19:4c:90:fa:c4:17:
b1:c7:fa:d0:ea:d4:1f:7c:23:79:7c:f4:6a:3f:9c:
26:b7:41:b5:c1:e7:f0:b1:c3:32:2b:83:0f:44:46:
3d:ea:ae:2d:da:fa:61:81:d0:8a:46:6e:b5:8e:89:
47:2c:2a:80:d1:38:12:3e:0c:27:2a:11:30:4a:9f:
fe:5c:c8:f2:b8:bd:4b:12:5d:e9:17:cf:ed:7a:b1:
8d:27:6d:5f:ac:cc:85:49:54:f1:84:ba:77:7f:c4:
f7:0f:6a:2c:aa:0a:ff:64:22:96:90:ad:ce:ba:f5:
93:b7:42:4c:24:28:f3:17:dd:d6:87:2d:06:87:c9:
cd:bd:dc:8c:53:92:f3:18:90:86:7c:2a:85:ab:a6:
73:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:A8:4E:9C:4F:C6:44:35:06:08:CE:BE:27:E2:E9:02:F8:26:33:82
X509v3 Authority Key Identifier:
keyid:71:94:9B:47:DF:31:3C:BA:B9:45:2D:A9:8F:CC:63:76:08:A9:09:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZSbR98xPLq5RS2pj8xjdgipCb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/X6hOnE_GRDUGCM6-J-LpAvgmM4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/cZSbR98xPLq5RS2pj8xjdgipCb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.229.80.0/20
80.70.116.0/22
82.163.32.0/22
84.234.100.0/22
89.189.32.0/20
89.189.56.0/21
159.255.156.0/24
185.138.36.0/22
185.178.12.0/22
213.178.192.0/20
IPv6:
2a01:7540::/32
Signature Algorithm: sha256WithRSAEncryption
6c:d0:ac:f8:e2:21:d4:f7:62:33:90:82:c0:62:9d:12:62:52:
c6:1f:ec:61:27:50:50:f1:3b:2c:40:74:ac:b3:80:19:ca:92:
2d:9a:be:f6:23:fc:5b:88:b5:4b:64:7e:c3:68:61:47:d2:d8:
54:bc:41:4d:cd:79:6c:d1:74:49:2e:b0:a5:2d:24:f7:3b:a0:
cc:bf:ca:0b:fb:ea:a9:13:2b:a8:30:43:89:60:f5:6e:11:14:
91:77:0a:d5:65:64:65:b7:22:c7:df:1b:59:44:24:92:d7:db:
ed:54:6e:87:35:c9:01:a2:4b:83:d5:7a:64:03:23:73:8b:79:
ea:a2:0c:8e:12:20:e9:5f:9c:55:3b:b4:8f:ee:60:3d:3b:1e:
5a:76:fb:b5:cc:92:2d:96:13:bf:44:6d:d2:f6:28:96:03:f2:
3b:c1:5f:6a:79:86:c0:7a:34:2a:78:5f:3a:ed:ab:96:ba:e1:
f0:8a:e4:0e:90:2a:bb:ee:6c:85:76:94:cf:a4:34:1b:0d:b5:
b3:f9:28:d5:80:2b:0a:cf:85:3e:37:10:84:6a:c1:76:ab:0b:
3b:f1:37:6c:c1:13:14:48:c3:90:e8:45:95:68:2b:7d:56:37:
90:f1:38:93:fb:14:2f:8d:6c:b2:b6:8d:1f:cc:2f:d3:e7:07:
15:17:e6:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:06 2024 by rpki-client on console-fra.rpki-client.org