Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/caxWmCTrPb8yg9e5A370Fpa64cQ.roa
File: caxWmCTrPb8yg9e5A370Fpa64cQ.roa (raw, json)
Hash identifier: 2Q84aqkQLwtW5vhNsHp/4vNhqmApcO57alxOXCCMXs0=
Subject key identifier: 71:AC:56:98:24:EB:3D:BF:32:83:D7:B9:03:7E:F4:16:96:BA:E1:C4
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 018C61ECED307C690CF17193F9D3F4D97ECB
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/caxWmCTrPb8yg9e5A370Fpa64cQ.roa
Signing time: Wed 13 Dec 2023 06:46:06 +0000
ROA not before: Wed 13 Dec 2023 06:46:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44709
IP address blocks: 91.228.126.0/23 maxlen: 23
194.36.91.0/24 maxlen: 24
194.36.90.0/24 maxlen: 24
194.36.89.0/24 maxlen: 24
195.238.120.0/24 maxlen: 24
5.100.250.0/23 maxlen: 23
5.100.251.0/24 maxlen: 24
5.100.250.0/24 maxlen: 24
5.100.252.0/23 maxlen: 23
5.100.253.0/24 maxlen: 24
5.100.252.0/24 maxlen: 24
5.100.249.0/24 maxlen: 24
5.100.248.0/23 maxlen: 23
5.100.248.0/24 maxlen: 24
212.80.204.0/24 maxlen: 24
212.80.206.0/24 maxlen: 24
212.80.205.0/24 maxlen: 24
5.100.254.0/23 maxlen: 23
5.100.254.0/24 maxlen: 24
5.100.255.0/24 maxlen: 24
212.80.207.0/24 maxlen: 24
188.191.147.0/24 maxlen: 24
31.133.103.0/24 maxlen: 24
31.133.102.0/24 maxlen: 24
31.133.100.0/24 maxlen: 24
195.28.181.0/24 maxlen: 24
195.28.180.0/24 maxlen: 24
185.139.231.0/24 maxlen: 24
109.207.76.0/24 maxlen: 24
185.241.4.0/24 maxlen: 24
109.207.79.0/24 maxlen: 24
185.241.7.0/24 maxlen: 24
185.241.6.0/24 maxlen: 24
185.241.5.0/24 maxlen: 24
185.220.207.0/24 maxlen: 24
45.83.40.0/24 maxlen: 24
45.83.43.0/24 maxlen: 24
45.83.42.0/24 maxlen: 24
185.56.72.0/22 maxlen: 22
45.93.95.0/24 maxlen: 24
45.93.92.0/24 maxlen: 24
45.93.94.0/24 maxlen: 24
45.93.93.0/24 maxlen: 24
81.28.7.0/24 maxlen: 24
91.223.106.0/24 maxlen: 24
63.250.63.0/24 maxlen: 24
63.250.61.0/24 maxlen: 24
63.250.62.0/24 maxlen: 24
185.28.152.0/24 maxlen: 24
185.28.154.0/24 maxlen: 24
185.28.153.0/24 maxlen: 24
185.28.155.0/24 maxlen: 24
83.229.71.0/24 maxlen: 24
83.229.70.0/24 maxlen: 24
83.229.74.0/24 maxlen: 24
83.229.73.0/24 maxlen: 24
83.229.72.0/24 maxlen: 24
103.13.209.0/24 maxlen: 24
185.253.75.0/24 maxlen: 24
185.253.73.0/24 maxlen: 24
185.253.72.0/24 maxlen: 24
185.162.125.0/24 maxlen: 24
185.162.124.0/24 maxlen: 24
185.162.126.0/24 maxlen: 24
185.47.175.0/24 maxlen: 24
91.202.171.0/24 maxlen: 24
91.202.168.0/24 maxlen: 24
91.202.170.0/24 maxlen: 24
91.202.169.0/24 maxlen: 24
91.226.76.0/24 maxlen: 24
91.226.72.0/24 maxlen: 24
2a06:c5c0:700::/48 maxlen: 48
2a06:c5c0:900::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:61:ec:ed:30:7c:69:0c:f1:71:93:f9:d3:f4:d9:7e:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Dec 13 06:46:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71ac569824eb3dbf3283d7b9037ef41696bae1c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a3:dc:bb:dd:70:91:12:9d:a7:e7:2c:06:0b:
6f:b3:6e:ce:68:29:4c:cf:5a:39:39:23:a4:bf:eb:
dc:2f:97:52:e3:14:7f:d4:99:01:ef:de:a7:e8:83:
65:b9:70:a2:0a:8f:4a:cc:70:3e:7e:c2:9b:06:5e:
a6:4c:59:a6:a8:b7:2f:dd:a1:a1:63:66:7b:49:dc:
59:5e:a3:fa:6c:f9:76:c6:df:cc:6f:84:2e:9f:ae:
83:23:b9:e9:b1:73:89:ab:ca:9b:8b:ec:80:47:11:
67:ad:47:fc:de:70:f9:7e:62:43:45:79:b8:23:13:
3d:75:ad:75:bf:53:54:95:57:33:b0:50:83:98:17:
38:39:48:41:62:3b:6a:43:50:d6:cf:a6:78:8d:6e:
16:cb:76:0b:a2:e3:1f:37:46:8f:96:ac:6b:b6:e1:
af:4b:42:b5:2b:70:d8:48:29:cc:9c:7e:33:96:09:
a0:bb:7b:40:6a:11:41:37:2b:37:cd:e4:3c:ee:a6:
fe:65:3f:00:5d:22:42:11:91:98:67:d9:ee:d6:a3:
6b:fd:f5:e8:bf:74:59:3c:b0:71:10:77:84:01:49:
b2:51:3f:d7:52:24:1c:77:4f:38:c5:ce:5f:ea:95:
22:84:ce:02:f9:cc:25:01:7a:9b:b3:60:0a:22:37:
03:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:AC:56:98:24:EB:3D:BF:32:83:D7:B9:03:7E:F4:16:96:BA:E1:C4
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/caxWmCTrPb8yg9e5A370Fpa64cQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.248.0/21
31.133.100.0/24
31.133.102.0/23
45.83.40.0/24
45.83.42.0/23
45.93.92.0/22
63.250.61.0-63.250.63.255
81.28.7.0/24
83.229.70.0-83.229.74.255
91.202.168.0/22
91.223.106.0/24
91.226.72.0/24
91.226.76.0/24
91.228.126.0/23
103.13.209.0/24
109.207.76.0/24
109.207.79.0/24
185.28.152.0/22
185.47.175.0/24
185.56.72.0/22
185.139.231.0/24
185.162.124.0-185.162.126.255
185.220.207.0/24
185.241.4.0/22
185.253.72.0/23
185.253.75.0/24
188.191.147.0/24
194.36.89.0-194.36.91.255
195.28.180.0/23
195.238.120.0/24
212.80.204.0/22
IPv6:
2a06:c5c0:700::/48
2a06:c5c0:900::/48
Signature Algorithm: sha256WithRSAEncryption
42:f0:4d:e8:d0:92:91:58:c5:6b:bf:51:d1:d5:3d:84:1f:cc:
a8:8b:c9:4e:41:07:11:fc:54:b9:25:2d:da:10:7a:8f:01:76:
74:25:c9:55:7f:6d:ae:f2:ca:64:c8:1e:8e:f8:e8:7b:17:f1:
6e:06:b7:19:30:8a:16:6b:f5:81:f4:65:bc:af:7a:e4:61:79:
41:5f:0a:88:77:da:5c:e8:e3:07:15:3b:0e:83:c4:52:52:35:
9a:55:9b:e7:a7:49:f8:b6:fb:e5:9e:cf:81:b3:d6:82:56:99:
9d:6e:b1:3c:cf:52:d5:d1:7e:04:5f:5f:d3:21:10:c9:51:45:
01:1e:a3:7b:cc:8b:ec:4e:b6:8f:7b:de:e0:49:4b:e0:a8:87:
55:78:9d:2e:f1:8f:af:0c:e7:5e:7f:c3:fa:9b:4b:a4:2b:22:
b4:8e:3f:a4:75:f2:e5:85:6b:c3:36:5c:55:a2:ff:66:03:47:
6d:ea:c5:80:0a:22:40:be:65:ec:a0:67:09:2b:33:db:be:cb:
3a:d6:0c:3e:be:3e:79:01:ce:30:bd:39:c4:f3:f6:e5:23:4b:
ad:f5:8a:61:7d:38:5e:4d:8a:82:ad:41:1c:fe:49:fb:28:d1:
f4:8e:98:d6:46:32:5c:a7:6f:c7:9f:7b:ec:5b:ba:3f:e8:56:
14:b8:a2:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:32 2024 by rpki-client on console-fra.rpki-client.org