Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/5nnGzyil2dL52D2rotpsS51NDCg.roa
File: 5nnGzyil2dL52D2rotpsS51NDCg.roa (raw, json)
Hash identifier: N7TIZkYzbpkcZwRMgOrUG/I2T/Jrh4AP9bMuCRxNAn0=
Subject key identifier: E6:79:C6:CF:28:A5:D9:D2:F9:D8:3D:AB:A2:DA:6C:4B:9D:4D:0C:28
Certificate issuer: /CN=2f814adc1d5209e098f078adbc856bad83b749c2
Certificate serial: 018FBE440FBE2AE8B5C24C9739E92D24CEAD
Authority key identifier: 2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/5nnGzyil2dL52D2rotpsS51NDCg.roa
Signing time: Tue 28 May 2024 08:14:42 +0000
ROA not before: Tue 28 May 2024 08:14:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16322
IP address blocks: 31.214.132.0/23 maxlen: 23
31.214.146.0/23 maxlen: 23
31.214.146.0/24 maxlen: 24
31.214.147.0/24 maxlen: 24
31.214.154.0/24 maxlen: 24
31.214.168.0/21 maxlen: 21
31.214.168.0/23 maxlen: 23
31.214.170.0/23 maxlen: 23
31.214.172.0/22 maxlen: 22
31.214.200.0/23 maxlen: 23
31.214.228.0/22 maxlen: 22
31.214.248.0/21 maxlen: 21
37.10.64.0/22 maxlen: 22
37.10.109.0/24 maxlen: 24
37.10.117.0/24 maxlen: 24
37.228.131.0/24 maxlen: 24
37.228.133.0/24 maxlen: 24
37.228.135.0/24 maxlen: 24
37.228.136.0/22 maxlen: 22
46.41.192.0/18 maxlen: 18
46.41.192.0/19 maxlen: 19
46.41.192.0/20 maxlen: 20
46.41.224.0/19 maxlen: 19
46.41.224.0/20 maxlen: 20
46.251.224.0/24 maxlen: 24
46.251.226.0/24 maxlen: 24
46.251.237.0/24 maxlen: 24
82.99.192.0/18 maxlen: 18
82.99.192.0/19 maxlen: 22
82.99.192.0/24 maxlen: 24
82.99.193.0/24 maxlen: 24
82.99.195.0/24 maxlen: 24
82.99.196.0/24 maxlen: 24
82.99.198.0/24 maxlen: 24
82.99.199.0/24 maxlen: 24
82.99.200.0/24 maxlen: 24
82.99.201.0/24 maxlen: 24
82.99.204.0/24 maxlen: 24
82.99.205.0/24 maxlen: 24
82.99.206.0/24 maxlen: 24
82.99.209.0/24 maxlen: 24
82.99.210.0/24 maxlen: 24
82.99.212.0/24 maxlen: 24
82.99.214.0/24 maxlen: 24
82.99.216.0/22 maxlen: 22
82.99.224.0/19 maxlen: 19
82.99.224.0/20 maxlen: 20
82.99.225.0/24 maxlen: 24
82.99.228.0/24 maxlen: 24
82.99.230.0/24 maxlen: 24
82.99.231.0/24 maxlen: 24
82.99.232.0/24 maxlen: 24
82.99.233.0/24 maxlen: 24
82.99.235.0/24 maxlen: 24
82.99.240.0/24 maxlen: 24
82.99.249.0/24 maxlen: 24
82.99.250.0/24 maxlen: 24
82.99.251.0/24 maxlen: 24
82.99.252.0/24 maxlen: 24
82.99.254.0/24 maxlen: 24
95.156.222.0/23 maxlen: 23
95.156.233.0/24 maxlen: 24
95.156.234.0/23 maxlen: 23
95.156.236.0/23 maxlen: 23
95.156.248.0/23 maxlen: 23
109.230.192.0/23 maxlen: 23
109.230.200.0/24 maxlen: 24
109.230.204.0/22 maxlen: 22
109.230.221.0/24 maxlen: 24
109.230.223.0/24 maxlen: 24
109.230.242.0/24 maxlen: 24
109.230.246.0/23 maxlen: 23
109.230.246.0/24 maxlen: 24
109.230.247.0/24 maxlen: 24
109.230.251.0/24 maxlen: 24
134.255.196.0/23 maxlen: 23
134.255.200.0/21 maxlen: 21
134.255.245.0/24 maxlen: 24
134.255.246.0/24 maxlen: 24
134.255.249.0/24 maxlen: 24
185.10.71.0/24 maxlen: 24
185.13.228.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sat 06 Jul 2024 11:10:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:be:44:0f:be:2a:e8:b5:c2:4c:97:39:e9:2d:24:ce:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f814adc1d5209e098f078adbc856bad83b749c2
Validity
Not Before: May 28 08:14:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e679c6cf28a5d9d2f9d83daba2da6c4b9d4d0c28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:c7:12:37:71:86:61:6d:55:c1:de:df:aa:1f:
ae:5a:9b:ed:56:a1:a6:5b:cc:32:55:75:1f:ae:36:
a8:69:58:3f:1d:47:c4:c4:02:3e:2f:07:e1:6c:73:
1c:d7:bc:b7:29:2c:25:b7:ac:d2:15:22:81:98:d0:
a8:c7:43:24:d0:2a:ef:81:78:40:ae:af:73:80:27:
82:4d:21:41:3f:b2:de:54:83:4b:21:0b:37:1f:e7:
ff:bc:e8:2e:97:c5:c7:50:ba:2f:72:5a:e6:56:0a:
e3:bd:b3:9b:b3:e8:45:f7:51:e5:4a:68:ed:07:9f:
21:70:eb:c5:1e:19:6c:fe:2e:ae:89:92:a4:71:5a:
66:24:17:2e:0b:98:98:9e:fa:7e:cf:e8:92:46:db:
6b:af:3c:fa:21:45:a3:d5:e4:78:29:8b:a6:3e:78:
f4:ca:5c:83:f0:46:5b:55:1f:65:11:30:60:4b:68:
03:4e:68:da:43:c4:d9:d5:2e:46:45:78:7a:27:7e:
2e:7e:6c:a1:19:90:35:e3:8f:f9:41:17:b0:b9:6f:
59:29:eb:91:57:8c:fa:aa:8e:41:c8:d4:70:3f:09:
b1:1d:64:49:9b:7b:b9:ee:65:5f:03:ea:6b:82:e4:
90:6b:27:23:c5:69:06:5e:05:24:35:ff:5e:1a:5f:
18:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:79:C6:CF:28:A5:D9:D2:F9:D8:3D:AB:A2:DA:6C:4B:9D:4D:0C:28
X509v3 Authority Key Identifier:
keyid:2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/5nnGzyil2dL52D2rotpsS51NDCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/L4FK3B1SCeCY8HitvIVrrYO3ScI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.214.132.0/23
31.214.146.0/23
31.214.154.0/24
31.214.168.0/21
31.214.200.0/23
31.214.228.0/22
31.214.248.0/21
37.10.64.0/22
37.10.109.0/24
37.10.117.0/24
37.228.131.0/24
37.228.133.0/24
37.228.135.0-37.228.139.255
46.41.192.0/18
46.251.224.0/24
46.251.226.0/24
46.251.237.0/24
82.99.192.0/18
95.156.222.0/23
95.156.233.0-95.156.237.255
95.156.248.0/23
109.230.192.0/23
109.230.200.0/24
109.230.204.0/22
109.230.221.0/24
109.230.223.0/24
109.230.242.0/24
109.230.246.0/23
109.230.251.0/24
134.255.196.0/23
134.255.200.0/21
134.255.245.0-134.255.246.255
134.255.249.0/24
185.10.71.0/24
185.13.228.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:9f:71:51:85:c3:27:df:bf:00:b4:44:bf:c9:d9:42:67:bd:
9c:a2:2a:cf:3c:53:84:53:58:ff:0f:f9:44:94:a8:92:35:88:
22:5a:9d:d2:45:94:75:a8:43:e8:94:0c:3e:39:d6:37:e4:bd:
06:b7:a9:61:16:f3:0d:72:cd:2c:35:49:61:b6:0f:0a:66:50:
ec:34:84:58:1c:b6:d8:e7:9e:02:af:fd:72:c7:52:0a:70:2b:
a4:a6:53:6b:73:40:08:35:d0:51:b1:75:42:49:ad:a4:f3:b1:
e8:ee:84:f2:68:34:05:86:24:66:78:41:eb:2b:c2:b1:33:ce:
ea:52:aa:3a:eb:3f:02:c2:61:bc:6c:86:9f:9c:dc:bf:df:89:
1f:9c:af:95:44:b9:fe:24:7e:54:e1:dd:5a:57:a6:4e:c2:29:
e2:73:56:e4:e4:90:35:5a:a0:4e:8b:91:d7:ef:e2:02:53:1b:
9a:8a:61:d1:7d:b0:04:d7:80:d4:5d:4c:63:ec:52:2f:fe:ed:
93:30:4e:08:8f:3c:ea:69:9a:65:e1:17:45:57:44:3f:0b:c7:
bc:ea:5d:77:32:93:c7:8b:47:60:f6:e6:d3:7c:88:e8:66:36:
b5:45:03:0f:69:a1:7d:93:00:73:78:e2:b3:c1:92:d2:85:5f:
37:05:6e:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 6 12:08:29 2024 by rpki-client on console-fra.rpki-client.org