Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/7JoLZhHHR1vTdqX7tMcCKrK5HrE.roa
File: 7JoLZhHHR1vTdqX7tMcCKrK5HrE.roa (raw, json)
Hash identifier: SE+xpu8PQguv/lOii1lI+953n25bPUpMcfbn/I3XeMY=
Subject key identifier: EC:9A:0B:66:11:C7:47:5B:D3:76:A5:FB:B4:C7:02:2A:B2:B9:1E:B1
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 018FB99CF7BBD5C6C89395219DE6F1D851BC
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/7JoLZhHHR1vTdqX7tMcCKrK5HrE.roa
Signing time: Mon 27 May 2024 10:33:43 +0000
ROA not before: Mon 27 May 2024 10:33:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12668
IP address blocks: 5.141.234.0/23 maxlen: 23
31.192.171.0/24 maxlen: 24
31.192.180.0/24 maxlen: 24
46.229.96.0/20 maxlen: 20
90.157.5.0/24 maxlen: 24
90.157.16.0/24 maxlen: 24
90.157.30.0/24 maxlen: 24
90.157.34.0/24 maxlen: 24
90.157.58.0/24 maxlen: 24
90.157.68.0/23 maxlen: 23
90.157.70.0/23 maxlen: 23
90.157.78.0/23 maxlen: 23
90.157.80.0/23 maxlen: 23
90.157.109.0/24 maxlen: 24
90.157.115.0/24 maxlen: 24
92.54.69.0/24 maxlen: 24
92.54.90.0/24 maxlen: 24
92.54.117.0/24 maxlen: 24
94.31.134.0/24 maxlen: 24
94.31.135.0/24 maxlen: 24
94.31.136.0/24 maxlen: 24
94.31.147.0/24 maxlen: 24
94.31.158.0/24 maxlen: 24
94.31.159.0/24 maxlen: 24
94.31.176.0/24 maxlen: 24
94.31.184.0/23 maxlen: 23
94.31.193.0/24 maxlen: 24
94.31.194.0/24 maxlen: 24
94.31.195.0/24 maxlen: 24
94.31.196.0/24 maxlen: 24
94.31.202.0/24 maxlen: 24
94.31.206.0/23 maxlen: 23
94.31.207.0/24 maxlen: 24
94.31.210.0/24 maxlen: 24
94.31.212.0/24 maxlen: 24
94.31.221.0/24 maxlen: 24
94.31.229.0/24 maxlen: 24
94.31.240.0/24 maxlen: 24
94.31.241.0/24 maxlen: 24
94.31.243.0/24 maxlen: 24
94.31.246.0/23 maxlen: 23
94.31.250.0/24 maxlen: 24
94.31.253.0/24 maxlen: 24
94.31.255.0/24 maxlen: 24
94.51.232.0/21 maxlen: 21
188.17.116.0/23 maxlen: 23
188.18.112.0/24 maxlen: 24
188.18.113.0/24 maxlen: 24
188.18.116.0/24 maxlen: 24
188.73.139.0/24 maxlen: 24
188.73.141.0/24 maxlen: 24
188.73.144.0/23 maxlen: 23
188.73.144.0/24 maxlen: 24
188.73.147.0/24 maxlen: 24
188.73.151.0/24 maxlen: 24
188.73.154.0/24 maxlen: 24
188.73.158.0/24 maxlen: 24
188.73.168.0/24 maxlen: 24
188.73.170.0/23 maxlen: 23
188.73.183.0/24 maxlen: 24
213.142.34.0/24 maxlen: 24
213.142.40.0/24 maxlen: 24
213.142.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Jun 2024 04:16:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b9:9c:f7:bb:d5:c6:c8:93:95:21:9d:e6:f1:d8:51:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: May 27 10:33:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ec9a0b6611c7475bd376a5fbb4c7022ab2b91eb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:58:52:ff:59:9b:e9:42:50:7d:5d:7e:ef:42:
63:76:b3:7a:0b:e0:c7:20:df:82:d0:27:ed:a4:9c:
a3:81:e3:60:45:e3:ac:2d:ea:8c:e9:01:b1:01:ed:
7c:ef:0f:c7:30:24:4b:19:15:d1:99:34:ad:d3:ca:
83:0a:1b:a4:31:c2:3d:c4:45:b2:f8:03:db:33:ff:
d3:63:a5:ae:3d:34:e5:fa:12:fc:e8:6a:b3:1d:e8:
5f:54:c7:71:b5:c4:0a:52:fe:7a:48:e2:63:e7:80:
5b:bc:70:9d:1d:3e:f2:9a:5d:5e:c2:f3:de:42:f8:
e4:18:a5:cf:3b:18:65:7a:91:63:98:14:72:3d:73:
4b:26:8d:2e:d7:cd:c1:60:60:78:00:b4:3b:c0:01:
88:48:1d:af:92:97:01:46:c5:f5:be:31:3d:cf:4a:
2e:c6:b5:a2:80:21:69:50:ba:10:7e:1f:40:d6:7d:
ec:2d:7b:49:93:65:0d:cb:08:5a:96:0c:82:d3:f2:
90:c0:5e:00:67:a9:5a:96:cd:85:42:08:92:48:af:
6a:64:ce:fb:50:87:a3:6d:b7:ff:3d:50:87:f9:20:
ac:69:a9:68:7f:6b:b4:65:c0:46:ec:02:42:1c:5d:
a3:4a:5a:98:69:c3:e6:ed:38:17:ea:e3:23:c6:6e:
5d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:9A:0B:66:11:C7:47:5B:D3:76:A5:FB:B4:C7:02:2A:B2:B9:1E:B1
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/7JoLZhHHR1vTdqX7tMcCKrK5HrE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.141.234.0/23
31.192.171.0/24
31.192.180.0/24
46.229.96.0/20
90.157.5.0/24
90.157.16.0/24
90.157.30.0/24
90.157.34.0/24
90.157.58.0/24
90.157.68.0/22
90.157.78.0-90.157.81.255
90.157.109.0/24
90.157.115.0/24
92.54.69.0/24
92.54.90.0/24
92.54.117.0/24
94.31.134.0-94.31.136.255
94.31.147.0/24
94.31.158.0/23
94.31.176.0/24
94.31.184.0/23
94.31.193.0-94.31.196.255
94.31.202.0/24
94.31.206.0/23
94.31.210.0/24
94.31.212.0/24
94.31.221.0/24
94.31.229.0/24
94.31.240.0/23
94.31.243.0/24
94.31.246.0/23
94.31.250.0/24
94.31.253.0/24
94.31.255.0/24
94.51.232.0/21
188.17.116.0/23
188.18.112.0/23
188.18.116.0/24
188.73.139.0/24
188.73.141.0/24
188.73.144.0/23
188.73.147.0/24
188.73.151.0/24
188.73.154.0/24
188.73.158.0/24
188.73.168.0/24
188.73.170.0/23
188.73.183.0/24
213.142.34.0/24
213.142.40.0/24
213.142.57.0/24
Signature Algorithm: sha256WithRSAEncryption
10:54:64:85:b0:eb:08:01:b8:4f:db:44:43:46:16:1c:9b:5c:
c4:4a:ec:38:b6:ff:6b:97:5a:7a:7f:f5:c5:69:23:a1:4e:11:
ee:55:d8:e0:f2:35:45:c8:6a:e3:86:63:a9:7d:96:b9:0b:d1:
18:28:2e:23:a8:cf:09:fa:f3:a3:76:3b:f2:31:79:07:f8:25:
83:22:83:5e:0a:82:a7:72:de:2d:24:47:22:ab:b2:a8:73:02:
1b:72:4d:51:ef:14:a4:db:b0:b6:c0:ac:9c:34:42:d2:86:f2:
eb:c4:a3:69:3d:71:88:7b:b4:fa:7e:c9:d3:04:59:55:85:ba:
87:78:a4:38:1d:83:bb:23:e0:d4:4f:d2:71:18:28:82:af:d5:
4d:af:89:64:fb:8e:b3:1f:b2:19:d0:a3:0f:02:86:2b:08:7a:
c8:05:6c:5a:3b:78:35:c3:76:93:13:3c:46:41:ac:9f:32:d6:
5e:17:25:cf:17:16:be:98:e4:2e:cf:40:51:74:71:70:29:c4:
f7:0d:26:77:7a:b0:52:4f:1c:79:65:e8:98:f7:fd:ff:fc:5a:
05:a0:c6:13:eb:10:8e:c7:51:e7:78:f2:64:d3:21:d2:26:87:
6d:47:30:b3:66:c7:d9:4b:23:36:75:23:b6:ac:ab:77:2e:de:
cc:03:d3:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:55 2024 by rpki-client on console-fra.rpki-client.org