Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/ebKMjgb-Cqu6zJpMqTXuK9MLrYg.roa
File: ebKMjgb-Cqu6zJpMqTXuK9MLrYg.roa (raw, json)
Hash identifier: sbip8fDpGY2Ix/6De4pGhkQiAAswlpqkcw6VJYzy/7I=
Subject key identifier: 79:B2:8C:8E:06:FE:0A:AB:BA:CC:9A:4C:A9:35:EE:2B:D3:0B:AD:88
Certificate issuer: /CN=71949b47df313cbab9452da98fcc637608a909bd
Certificate serial: 018E80BFEC389634DB2EB896BAAAA8F32B96
Authority key identifier: 71:94:9B:47:DF:31:3C:BA:B9:45:2D:A9:8F:CC:63:76:08:A9:09:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZSbR98xPLq5RS2pj8xjdgipCb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/ebKMjgb-Cqu6zJpMqTXuK9MLrYg.roa
Signing time: Wed 27 Mar 2024 16:30:45 +0000
ROA not before: Wed 27 Mar 2024 16:30:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34758
IP address blocks: 31.6.80.0/20 maxlen: 20
31.6.80.0/24 maxlen: 24
31.6.81.0/24 maxlen: 24
31.6.82.0/24 maxlen: 24
31.6.83.0/24 maxlen: 24
31.6.84.0/24 maxlen: 24
31.6.85.0/24 maxlen: 24
31.6.86.0/24 maxlen: 24
31.6.87.0/24 maxlen: 24
31.6.88.0/24 maxlen: 24
31.6.89.0/24 maxlen: 24
31.6.90.0/24 maxlen: 24
31.6.91.0/24 maxlen: 24
31.6.92.0/24 maxlen: 24
31.6.93.0/24 maxlen: 24
31.6.94.0/24 maxlen: 24
31.6.95.0/24 maxlen: 24
45.13.88.0/22 maxlen: 22
45.13.88.0/24 maxlen: 24
45.13.89.0/24 maxlen: 24
45.13.90.0/24 maxlen: 24
45.13.91.0/24 maxlen: 24
45.93.36.0/22 maxlen: 22
45.93.36.0/24 maxlen: 24
45.93.37.0/24 maxlen: 24
45.93.38.0/24 maxlen: 24
45.93.39.0/24 maxlen: 24
92.246.96.0/21 maxlen: 21
92.246.96.0/24 maxlen: 24
92.246.97.0/24 maxlen: 24
92.246.98.0/24 maxlen: 24
92.246.99.0/24 maxlen: 24
92.246.100.0/24 maxlen: 24
92.246.101.0/24 maxlen: 24
92.246.102.0/24 maxlen: 24
92.246.103.0/24 maxlen: 24
92.246.112.0/20 maxlen: 20
92.246.112.0/24 maxlen: 24
92.246.113.0/24 maxlen: 24
92.246.114.0/24 maxlen: 24
92.246.115.0/24 maxlen: 24
92.246.116.0/24 maxlen: 24
92.246.117.0/24 maxlen: 24
92.246.118.0/24 maxlen: 24
92.246.119.0/24 maxlen: 24
92.246.120.0/24 maxlen: 24
92.246.121.0/24 maxlen: 24
92.246.122.0/24 maxlen: 24
92.246.123.0/24 maxlen: 24
92.246.124.0/24 maxlen: 24
92.246.125.0/24 maxlen: 24
92.246.126.0/24 maxlen: 24
92.246.127.0/24 maxlen: 24
93.93.16.0/21 maxlen: 21
93.93.16.0/24 maxlen: 24
93.93.18.0/24 maxlen: 24
93.93.19.0/24 maxlen: 24
93.93.20.0/24 maxlen: 24
93.93.21.0/24 maxlen: 24
93.93.22.0/24 maxlen: 24
93.93.23.0/24 maxlen: 24
109.234.136.0/21 maxlen: 21
109.234.136.0/24 maxlen: 24
109.234.137.0/24 maxlen: 24
109.234.138.0/24 maxlen: 24
109.234.139.0/24 maxlen: 24
109.234.140.0/24 maxlen: 24
109.234.141.0/24 maxlen: 24
109.234.142.0/24 maxlen: 24
109.234.143.0/24 maxlen: 24
146.255.160.0/21 maxlen: 21
146.255.160.0/24 maxlen: 24
146.255.161.0/24 maxlen: 24
146.255.162.0/24 maxlen: 24
146.255.163.0/24 maxlen: 24
146.255.164.0/24 maxlen: 24
146.255.165.0/24 maxlen: 24
146.255.166.0/24 maxlen: 24
146.255.167.0/24 maxlen: 24
159.255.156.0/22 maxlen: 22
159.255.156.0/24 maxlen: 24
159.255.157.0/24 maxlen: 24
159.255.158.0/24 maxlen: 24
159.255.159.0/24 maxlen: 24
185.23.84.0/22 maxlen: 22
185.23.84.0/24 maxlen: 24
185.23.85.0/24 maxlen: 24
185.23.86.0/24 maxlen: 24
185.23.87.0/24 maxlen: 24
185.103.80.0/22 maxlen: 22
185.103.80.0/24 maxlen: 24
185.103.81.0/24 maxlen: 24
185.103.82.0/24 maxlen: 24
185.103.83.0/24 maxlen: 24
185.126.140.0/22 maxlen: 22
185.126.140.0/24 maxlen: 24
185.126.141.0/24 maxlen: 24
185.126.142.0/24 maxlen: 24
185.126.143.0/24 maxlen: 24
185.158.30.0/23 maxlen: 23
185.158.30.0/24 maxlen: 24
185.158.31.0/24 maxlen: 24
185.171.36.0/22 maxlen: 22
185.171.36.0/24 maxlen: 24
185.171.37.0/24 maxlen: 24
185.171.38.0/24 maxlen: 24
185.171.39.0/24 maxlen: 24
193.238.136.0/22 maxlen: 22
193.238.136.0/24 maxlen: 24
193.238.137.0/24 maxlen: 24
193.238.138.0/24 maxlen: 24
193.238.139.0/24 maxlen: 24
195.225.224.0/22 maxlen: 22
195.225.224.0/24 maxlen: 24
195.225.225.0/24 maxlen: 24
195.225.226.0/24 maxlen: 24
195.225.227.0/24 maxlen: 24
217.72.32.0/21 maxlen: 21
217.72.32.0/24 maxlen: 24
217.72.33.0/24 maxlen: 24
217.72.34.0/24 maxlen: 24
217.72.35.0/24 maxlen: 24
217.72.36.0/24 maxlen: 24
217.72.37.0/24 maxlen: 24
217.72.38.0/24 maxlen: 24
217.72.39.0/24 maxlen: 24
2a04:2080::/29 maxlen: 48
2a06:c2c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 03 Apr 2024 08:23:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:80:bf:ec:38:96:34:db:2e:b8:96:ba:aa:a8:f3:2b:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71949b47df313cbab9452da98fcc637608a909bd
Validity
Not Before: Mar 27 16:30:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=79b28c8e06fe0aabbacc9a4ca935ee2bd30bad88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:10:27:ed:a2:f7:41:3e:5b:ad:d3:00:d9:94:
2f:c9:5c:e2:c2:28:29:7e:43:43:ff:f7:de:6a:0e:
2a:ab:fb:7a:73:9c:89:d6:32:86:39:36:cf:86:58:
d9:91:f1:0d:3a:7f:79:b8:71:df:d9:23:23:66:a0:
9b:d0:da:4c:a0:b1:b7:0f:8a:d9:23:08:0b:f3:3e:
10:a8:a9:a6:25:ac:e9:de:e1:ee:a1:6a:72:b1:48:
0c:be:8d:85:6d:45:f8:e9:63:4f:3e:98:9c:08:36:
91:8d:b4:d7:69:b4:ef:4f:6e:3b:fb:51:bb:0c:20:
39:60:f6:98:f5:cc:e0:93:6f:b3:4a:99:b4:9c:aa:
c2:87:53:59:50:39:74:22:d2:81:64:47:97:55:6c:
b2:d9:82:bb:55:26:56:0e:56:f9:dd:49:bf:fb:59:
08:75:1e:cb:47:94:8c:92:ab:bb:23:2c:a1:0b:1e:
25:6b:49:6f:e7:67:a0:98:d5:d9:5a:e9:91:b7:e8:
9c:19:3d:a8:81:0b:10:92:5c:e8:e9:3a:10:b1:30:
9d:d1:9c:c7:b7:b0:0d:1d:7b:1c:f5:8a:80:3a:c6:
eb:45:a9:18:f9:99:07:db:52:04:ce:d1:23:c9:a2:
2f:49:35:66:b7:76:4a:68:6a:c3:f9:da:74:37:0c:
cf:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:B2:8C:8E:06:FE:0A:AB:BA:CC:9A:4C:A9:35:EE:2B:D3:0B:AD:88
X509v3 Authority Key Identifier:
keyid:71:94:9B:47:DF:31:3C:BA:B9:45:2D:A9:8F:CC:63:76:08:A9:09:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZSbR98xPLq5RS2pj8xjdgipCb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/ebKMjgb-Cqu6zJpMqTXuK9MLrYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/cZSbR98xPLq5RS2pj8xjdgipCb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.80.0/20
45.13.88.0/22
45.93.36.0/22
92.246.96.0/21
92.246.112.0/20
93.93.16.0/21
109.234.136.0/21
146.255.160.0/21
159.255.156.0/22
185.23.84.0/22
185.103.80.0/22
185.126.140.0/22
185.158.30.0/23
185.171.36.0/22
193.238.136.0/22
195.225.224.0/22
217.72.32.0/21
IPv6:
2a04:2080::/29
2a06:c2c0::/29
Signature Algorithm: sha256WithRSAEncryption
6f:c8:b3:47:9d:e1:d9:4d:a3:03:25:c2:15:44:8d:fb:24:8b:
1c:02:8e:8e:fa:64:7f:53:47:c0:d6:46:02:3d:af:df:1e:a5:
34:01:3f:37:27:a8:39:e3:35:a0:6c:13:a9:79:ec:de:d8:d9:
bc:15:e9:cc:ef:82:cc:a3:af:f4:9d:94:a6:5b:16:5d:ac:b4:
9e:c7:dc:6d:bb:6c:20:c2:c4:27:b3:4f:04:aa:ef:0f:09:19:
4c:b9:60:f0:c4:44:75:0f:f1:ea:da:df:17:ac:89:ee:6e:44:
83:7e:53:f6:72:97:07:d1:8c:2d:ab:1b:82:b7:f6:75:ac:e8:
e9:de:97:51:e1:b8:24:ee:af:b4:aa:da:42:b5:98:9d:41:6b:
0a:42:a6:c3:ba:64:5c:c7:d9:e5:b9:94:44:55:61:b2:a8:f0:
1e:c1:28:5d:91:94:11:c3:47:8b:fc:56:05:fa:e5:e5:4c:dd:
55:f8:86:21:ff:22:2a:55:de:65:c1:5f:1e:d9:90:94:62:e4:
b4:05:3c:cf:ce:f8:58:1f:5c:cd:69:02:93:2a:84:1d:cd:03:
6a:51:dd:ac:94:2b:dd:17:3c:5f:a4:d6:2a:54:40:ba:bc:5e:
a0:0c:9c:c1:8d:88:3c:d1:54:74:ce:31:36:bc:2f:20:6d:17:
ed:45:87:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:40 2024 by rpki-client on console-ams.rpki-client.org