Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/573BygeuFYsg9dNu33L0d6zeqVY.roa
File: 573BygeuFYsg9dNu33L0d6zeqVY.roa (raw, json)
Hash identifier: RJ4HR7EhZzua4FZH935tCy1h7oi/LSUwVCh3lHSXlMk=
Subject key identifier: E7:BD:C1:CA:07:AE:15:8B:20:F5:D3:6E:DF:72:F4:77:AC:DE:A9:56
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0193BA373EAC3A75B96B7EF4B207F0BF67EC
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/573BygeuFYsg9dNu33L0d6zeqVY.roa
Signing time: Thu 12 Dec 2024 09:33:22 +0000
ROA not before: Thu 12 Dec 2024 09:33:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50113
IP address blocks: 5.180.136.0/24 maxlen: 24
5.180.136.76/32 maxlen: 32
5.180.136.221/32 maxlen: 32
5.180.137.0/24 maxlen: 24
5.252.116.0/24 maxlen: 24
45.8.211.0/24 maxlen: 24
45.89.64.0/24 maxlen: 24
91.217.77.0/24 maxlen: 24
147.78.66.7/32 maxlen: 32
185.17.3.102/32 maxlen: 32
185.104.248.0/24 maxlen: 24
185.139.68.28/32 maxlen: 32
185.139.70.116/32 maxlen: 32
185.172.130.0/24 maxlen: 24
185.172.131.0/24 maxlen: 24
185.174.139.0/24 maxlen: 24
185.180.230.0/24 maxlen: 24
185.180.231.87/32 maxlen: 32
185.188.180.0/24 maxlen: 24
185.189.12.0/22 maxlen: 22
185.189.12.0/24 maxlen: 24
185.189.13.0/24 maxlen: 24
185.189.14.0/24 maxlen: 24
185.189.15.0/24 maxlen: 24
185.244.174.0/24 maxlen: 24
192.162.100.0/22 maxlen: 22
192.162.100.0/24 maxlen: 24
192.162.101.0/24 maxlen: 24
192.162.102.0/24 maxlen: 24
192.162.103.0/24 maxlen: 24
193.0.200.0/24 maxlen: 24
193.0.202.0/24 maxlen: 24
193.0.203.0/24 maxlen: 24
193.168.226.0/24 maxlen: 24
194.53.52.0/24 maxlen: 24
194.63.140.0/22 maxlen: 22
194.63.140.0/23 maxlen: 23
194.63.140.0/24 maxlen: 24
194.63.141.0/24 maxlen: 24
194.63.142.0/23 maxlen: 23
194.63.142.0/24 maxlen: 24
194.63.143.0/24 maxlen: 24
194.67.196.127/32 maxlen: 32
194.67.198.7/32 maxlen: 32
194.67.198.108/32 maxlen: 32
194.67.203.54/32 maxlen: 32
194.67.208.6/32 maxlen: 32
194.67.208.12/32 maxlen: 32
194.67.208.48/32 maxlen: 32
213.108.197.0/24 maxlen: 24
213.108.198.0/24 maxlen: 24
213.108.199.0/24 maxlen: 24
2a04:5200::/29 maxlen: 29
2a04:5200::/32 maxlen: 32
2a04:5200::/48 maxlen: 48
2a04:5200:1::/48 maxlen: 48
2a04:5200:a::/48 maxlen: 48
2a04:5200:ff00::/48 maxlen: 48
2a04:5200:ff10::/48 maxlen: 48
2a04:5200:fff1::/48 maxlen: 48
2a04:5200:fff2::/48 maxlen: 48
2a04:5200:fff3::/48 maxlen: 48
2a04:5200:fff4::/48 maxlen: 48
2a04:5200:fff5::/48 maxlen: 48
2a04:5200:fff6::/48 maxlen: 48
2a04:5200:fff7::/48 maxlen: 48
2a04:5200:fff8::/48 maxlen: 48
2a04:5200:fff9::/48 maxlen: 48
2a04:5200:ffff::/48 maxlen: 48
2a04:5202::/32 maxlen: 32
2a04:5203::/32 maxlen: 32
2a04:5204::/32 maxlen: 32
2a04:5205::/32 maxlen: 32
2a04:5206::/32 maxlen: 32
2a04:5207::/32 maxlen: 32
2a09:5303::/32 maxlen: 32
2a0a:9300::/32 maxlen: 32
2a0a:9300::/48 maxlen: 48
2a0a:9300:aaaa::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Jan 2025 21:48:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ba:37:3e:ac:3a:75:b9:6b:7e:f4:b2:07:f0:bf:67:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Dec 12 09:33:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7bdc1ca07ae158b20f5d36edf72f477acdea956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:65:08:b4:00:56:81:93:de:49:24:1a:e8:ca:
5d:52:0b:1c:84:08:81:b4:6a:b4:dc:c8:9d:76:b2:
08:b8:ea:4d:f6:f9:8e:94:3d:88:ff:40:2b:dc:73:
bb:69:59:01:12:c8:73:ca:46:d8:2e:cc:80:e7:8a:
c7:09:97:5b:f2:9b:13:b6:70:1a:d0:7f:2a:f7:f1:
5d:12:9e:4c:6d:d3:1e:56:1d:a8:02:9c:32:6c:4e:
69:b2:2a:de:42:f1:e4:4d:87:5e:fa:ec:4e:fe:7f:
af:3e:6b:9e:05:27:f7:43:bc:49:16:ac:e3:58:a5:
2a:d1:47:aa:83:db:18:6c:25:bc:3d:c4:55:75:48:
42:6a:77:e9:79:fb:d8:92:36:eb:9c:cd:84:7b:b3:
7e:a7:9c:63:c5:29:34:f9:15:5c:eb:86:9e:8a:41:
dc:ea:25:cf:e2:a6:f9:69:98:2b:92:da:50:cb:db:
c8:2b:4d:a5:30:71:f1:2e:ff:f4:c2:50:9c:b5:6e:
05:25:6a:39:da:ec:96:65:21:59:53:21:6f:a0:59:
18:89:b1:28:4a:96:b3:d6:c1:2d:28:a6:72:2d:84:
5a:87:87:32:81:7a:d9:6f:25:c2:01:5a:6c:48:32:
09:c8:e3:09:19:f5:c1:cf:76:4c:3c:b7:e0:36:50:
06:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:BD:C1:CA:07:AE:15:8B:20:F5:D3:6E:DF:72:F4:77:AC:DE:A9:56
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/573BygeuFYsg9dNu33L0d6zeqVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.136.0/23
5.252.116.0/24
45.8.211.0/24
45.89.64.0/24
91.217.77.0/24
147.78.66.7/32
185.17.3.102/32
185.104.248.0/24
185.139.68.28/32
185.139.70.116/32
185.172.130.0/23
185.174.139.0/24
185.180.230.0/24
185.180.231.87/32
185.188.180.0/24
185.189.12.0/22
185.244.174.0/24
192.162.100.0/22
193.0.200.0/24
193.0.202.0/23
193.168.226.0/24
194.53.52.0/24
194.63.140.0/22
194.67.196.127/32
194.67.198.7/32
194.67.198.108/32
194.67.203.54/32
194.67.208.6/32
194.67.208.12/32
194.67.208.48/32
213.108.197.0-213.108.199.255
IPv6:
2a04:5200::/29
2a09:5303::/32
2a0a:9300::/32
Signature Algorithm: sha256WithRSAEncryption
6c:e7:b0:5e:9b:20:8a:a2:e4:e5:32:8c:5f:c7:ff:9b:14:c5:
80:56:ce:dd:f5:10:5b:a3:89:f7:a8:79:92:c6:af:49:be:8d:
50:78:ab:ff:3e:f0:6f:88:fa:f5:1e:e1:06:64:c0:1c:b4:5f:
ba:67:80:36:71:ab:c1:62:b9:99:fe:f9:72:fa:45:08:7e:be:
84:bf:a1:ab:a3:5d:17:5a:d0:fa:c0:7e:86:4e:fa:81:91:85:
f1:d4:69:05:ca:2d:a9:40:3b:60:13:f8:79:a3:63:6b:30:a0:
50:ce:78:b5:54:2e:03:8e:3b:14:79:36:ba:98:c6:c6:5a:ef:
50:c8:3e:5d:49:08:23:24:c3:80:15:b0:e2:8a:84:58:f4:b9:
25:a7:64:1d:f3:49:a1:5a:71:61:8d:c3:16:5c:91:77:b4:35:
9e:d6:1b:29:b4:da:69:bb:b5:4e:87:17:b3:7e:6f:49:72:9f:
bd:a0:7f:46:8b:f9:71:c1:7e:e7:4d:5d:cc:b0:0d:69:6b:f7:
1e:17:57:bd:49:9d:ea:b2:32:33:6b:ce:84:8a:48:d1:d6:ab:
10:b4:ae:93:07:d2:c7:15:99:98:84:e2:23:ad:e1:cb:6c:08:
9a:7d:4d:44:7f:2e:e0:37:2d:6a:1a:42:b7:26:85:bb:00:67:
2b:38:e6:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 20:19:57 2025 by rpki-client