Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/5nRKgLbPw3dGpIYA8SNhqPRNIx0.roa
File: 5nRKgLbPw3dGpIYA8SNhqPRNIx0.roa (raw, json)
Hash identifier: mrqYXeClvrVf5ojAYz4k3cDBJ8pVpB9ITnw3E+Dqt8c=
Subject key identifier: E6:74:4A:80:B6:CF:C3:77:46:A4:86:00:F1:23:61:A8:F4:4D:23:1D
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018F81D4EDA99F61506D1D8D04846FFB8B5F
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/5nRKgLbPw3dGpIYA8SNhqPRNIx0.roa
Signing time: Thu 16 May 2024 14:36:05 +0000
ROA not before: Thu 16 May 2024 14:36:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212667
IP address blocks: 2.59.48.0/24 maxlen: 24
31.222.240.0/24 maxlen: 24
31.222.250.0/24 maxlen: 24
37.221.80.0/24 maxlen: 24
45.11.22.0/24 maxlen: 24
45.14.221.0/24 maxlen: 24
45.89.68.0/24 maxlen: 24
45.89.71.0/24 maxlen: 24
91.188.220.0/24 maxlen: 24
94.158.188.0/24 maxlen: 24
176.56.35.0/24 maxlen: 24
176.124.34.0/24 maxlen: 24
185.202.106.0/24 maxlen: 24
185.212.112.0/24 maxlen: 24
185.234.8.0/24 maxlen: 24
188.95.71.0/24 maxlen: 24
193.3.18.0/24 maxlen: 24
193.201.114.0/24 maxlen: 24
194.32.240.0/24 maxlen: 24
195.18.26.0/24 maxlen: 24
195.69.148.0/24 maxlen: 24
195.69.150.0/24 maxlen: 24
195.96.150.0/24 maxlen: 24
195.225.96.0/24 maxlen: 24
212.18.100.0/24 maxlen: 24
212.18.122.0/24 maxlen: 24
212.52.4.0/24 maxlen: 24
213.109.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 May 2024 16:12:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:81:d4:ed:a9:9f:61:50:6d:1d:8d:04:84:6f:fb:8b:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: May 16 14:36:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6744a80b6cfc37746a48600f12361a8f44d231d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:26:05:0d:3b:27:a3:c9:e2:af:01:df:dd:1f:
e0:a1:5c:a9:df:c3:4a:dd:68:83:f5:4a:6e:4e:a7:
d1:df:ae:8f:e2:e6:dd:dc:59:d6:3e:72:27:16:ab:
fc:b2:34:a4:88:d1:78:70:0c:0c:9c:7e:c2:10:bb:
a1:1c:fa:08:f6:69:d9:25:ab:18:e1:52:df:bb:35:
c0:50:1b:c8:6e:6b:e9:35:04:0d:80:22:65:82:16:
2c:35:8c:43:9e:1d:e0:ec:f9:a2:4f:e7:b0:74:b0:
0c:24:e5:a6:aa:f0:d2:5d:0e:77:a5:75:6d:b2:9f:
7a:17:b0:93:4c:96:80:aa:8a:6a:4f:a2:c7:f0:27:
0a:d5:e8:8f:61:88:14:76:7c:d2:90:aa:90:86:60:
ec:21:73:11:1c:de:21:ba:04:5a:87:70:dd:36:f8:
42:19:95:d9:f3:01:8e:1c:98:fc:f0:90:d7:d3:9f:
75:d7:3b:a7:ce:ae:77:72:b1:50:46:e5:02:b8:8e:
f6:72:29:40:7e:ed:cf:fc:0f:b1:61:00:24:eb:22:
8b:58:29:55:c2:81:45:94:1f:31:d1:e0:74:20:4f:
54:a3:4f:5b:7e:64:b0:05:ab:83:46:fb:6f:df:61:
2d:8a:0c:a5:63:db:dc:5c:8e:a2:6e:85:6e:58:14:
0b:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:74:4A:80:B6:CF:C3:77:46:A4:86:00:F1:23:61:A8:F4:4D:23:1D
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/5nRKgLbPw3dGpIYA8SNhqPRNIx0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.48.0/24
31.222.240.0/24
31.222.250.0/24
37.221.80.0/24
45.11.22.0/24
45.14.221.0/24
45.89.68.0/24
45.89.71.0/24
91.188.220.0/24
94.158.188.0/24
176.56.35.0/24
176.124.34.0/24
185.202.106.0/24
185.212.112.0/24
185.234.8.0/24
188.95.71.0/24
193.3.18.0/24
193.201.114.0/24
194.32.240.0/24
195.18.26.0/24
195.69.148.0/24
195.69.150.0/24
195.96.150.0/24
195.225.96.0/24
212.18.100.0/24
212.18.122.0/24
212.52.4.0/24
213.109.206.0/24
Signature Algorithm: sha256WithRSAEncryption
37:64:b6:f0:ce:2a:73:62:5b:8c:e5:60:3e:49:ad:f9:58:da:
90:28:2d:07:58:2e:dd:cb:4f:4a:6e:af:cf:a6:07:17:30:75:
34:60:fc:a1:0c:67:ba:22:35:38:35:0b:33:9a:7c:72:b7:f1:
8e:42:87:a6:20:a3:74:a2:ef:de:55:91:86:ca:91:c5:be:cc:
3f:d5:7f:4a:12:e9:5e:31:48:17:9c:05:1c:b7:f2:e5:ff:e2:
9b:10:08:e7:b4:af:b4:fc:ff:f6:1e:20:eb:57:18:da:d7:f6:
22:fb:30:89:5e:37:c2:b6:fd:0d:9d:c0:d2:52:49:42:68:97:
03:4b:37:c6:ff:49:82:b2:23:dd:be:67:b0:dd:8d:50:92:51:
42:a8:a8:21:df:93:2a:25:b0:41:9b:d5:95:07:9c:19:9c:c5:
25:8a:c2:4d:44:82:5a:21:cf:60:c3:8e:85:b5:47:27:3a:e9:
10:25:9d:20:51:c6:28:66:62:3b:76:df:50:61:2f:aa:c5:b6:
bc:d9:6c:a4:e5:17:2f:72:16:bb:e8:93:ab:58:aa:01:fe:17:
8e:7f:9e:a7:8f:2d:27:f8:3a:6d:89:86:87:5f:cb:30:30:3c:
28:95:dd:3d:20:0d:a2:ea:35:48:4d:c0:20:0f:79:38:c1:38:
bb:1d:e2:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 22 18:10:34 2024 by rpki-client on console-fra.rpki-client.org