Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/6nQu3aukRhpQrpMpmgQLBw5kUTE.roa
File: 6nQu3aukRhpQrpMpmgQLBw5kUTE.roa (raw, json)
Hash identifier: /xU9Llj2MTKaAenbXHqF3wstiX+sBYoRpx9SQ/wZx7s=
Subject key identifier: EA:74:2E:DD:AB:A4:46:1A:50:AE:93:29:9A:04:0B:07:0E:64:51:31
Certificate issuer: /CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Certificate serial: 019289B103381C514B572CE2BA235B0CD855
Authority key identifier: 49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/6nQu3aukRhpQrpMpmgQLBw5kUTE.roa
Signing time: Mon 14 Oct 2024 06:22:12 +0000
ROA not before: Mon 14 Oct 2024 06:22:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51684
IP address blocks: 5.181.196.0/24 maxlen: 24
5.181.197.0/24 maxlen: 24
5.181.198.0/24 maxlen: 24
5.181.199.0/24 maxlen: 24
46.161.200.0/24 maxlen: 24
82.199.208.0/23 maxlen: 23
82.199.208.0/24 maxlen: 24
82.199.209.0/24 maxlen: 24
82.199.210.0/24 maxlen: 24
82.199.211.0/24 maxlen: 24
82.199.212.0/23 maxlen: 23
82.199.212.0/24 maxlen: 24
82.199.213.0/24 maxlen: 24
82.199.214.0/23 maxlen: 23
82.199.214.0/24 maxlen: 24
82.199.215.0/24 maxlen: 24
82.199.216.0/23 maxlen: 23
82.199.216.0/24 maxlen: 24
82.199.217.0/24 maxlen: 24
82.199.218.0/23 maxlen: 23
82.199.218.0/24 maxlen: 24
82.199.219.0/24 maxlen: 24
82.199.220.0/23 maxlen: 23
82.199.220.0/24 maxlen: 24
82.199.221.0/24 maxlen: 24
82.199.222.0/23 maxlen: 23
82.199.222.0/24 maxlen: 24
82.199.223.0/24 maxlen: 24
89.46.200.0/23 maxlen: 23
89.46.200.0/24 maxlen: 24
89.46.201.0/24 maxlen: 24
89.46.202.0/23 maxlen: 23
89.46.202.0/24 maxlen: 24
89.46.203.0/24 maxlen: 24
89.46.204.0/23 maxlen: 23
89.46.204.0/24 maxlen: 24
89.46.205.0/24 maxlen: 24
89.46.206.0/23 maxlen: 23
89.46.206.0/24 maxlen: 24
89.46.207.0/24 maxlen: 24
91.213.191.0/24 maxlen: 24
91.217.185.0/24 maxlen: 24
185.16.26.0/23 maxlen: 23
185.16.26.0/24 maxlen: 24
185.95.204.0/23 maxlen: 23
185.95.204.0/24 maxlen: 24
185.95.205.0/24 maxlen: 24
185.95.206.0/23 maxlen: 23
185.95.206.0/24 maxlen: 24
185.95.207.0/24 maxlen: 24
185.247.36.0/23 maxlen: 23
185.247.36.0/24 maxlen: 24
185.247.37.0/24 maxlen: 24
185.247.38.0/23 maxlen: 23
185.247.38.0/24 maxlen: 24
185.247.39.0/24 maxlen: 24
185.254.200.0/23 maxlen: 23
185.254.200.0/24 maxlen: 24
185.254.201.0/24 maxlen: 24
185.254.203.0/24 maxlen: 24
212.95.128.0/24 maxlen: 24
212.95.129.0/24 maxlen: 24
212.95.130.0/24 maxlen: 24
212.95.131.0/24 maxlen: 24
212.95.132.0/24 maxlen: 24
212.95.133.0/24 maxlen: 24
212.95.134.0/24 maxlen: 24
212.95.135.0/24 maxlen: 24
212.95.136.0/24 maxlen: 24
212.95.137.0/24 maxlen: 24
212.95.138.0/24 maxlen: 24
212.95.139.0/24 maxlen: 24
212.95.140.0/24 maxlen: 24
212.95.141.0/24 maxlen: 24
212.95.142.0/24 maxlen: 24
212.95.143.0/24 maxlen: 24
212.95.144.0/24 maxlen: 24
212.95.145.0/24 maxlen: 24
212.95.146.0/24 maxlen: 24
212.95.147.0/24 maxlen: 24
223.25.120.0/24 maxlen: 24
223.25.121.0/24 maxlen: 24
223.25.122.0/24 maxlen: 24
223.25.123.0/24 maxlen: 24
223.25.124.0/24 maxlen: 24
223.25.125.0/24 maxlen: 24
223.25.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Oct 2024 11:31:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:89:b1:03:38:1c:51:4b:57:2c:e2:ba:23:5b:0c:d8:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Validity
Not Before: Oct 14 06:22:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ea742eddaba4461a50ae93299a040b070e645131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9d:5d:dd:1f:2d:a6:bf:b9:02:28:99:cb:1e:
96:f9:b4:ab:62:b5:89:72:f3:82:0f:26:a6:d7:28:
3b:f8:14:5e:4e:b6:d9:86:a0:1e:e8:d5:28:8c:ba:
dc:7c:42:54:e8:12:7f:a9:f5:27:fa:3b:64:9e:cf:
01:bc:12:cd:66:e3:01:4f:b3:54:d2:ca:1f:35:91:
9f:cb:16:64:08:c5:42:8b:f4:fe:eb:8b:b3:a8:10:
5c:1f:68:cc:a8:b5:14:b0:b0:52:36:b6:b3:54:cf:
ef:86:f3:4b:53:ed:19:75:d6:5d:fe:25:27:f0:6d:
d6:13:06:13:55:3e:65:c4:70:10:6e:9a:5e:5d:d4:
74:96:d3:e1:9e:3a:26:4b:c2:3d:82:bb:dd:6e:b6:
ac:a3:d7:09:74:92:1d:5f:4c:d7:b1:47:e8:c7:e6:
59:da:11:18:fd:de:62:2d:2b:3c:c9:b1:f9:2d:e6:
a0:ea:ab:38:a8:fa:2b:66:ab:2c:e1:cf:4d:0e:1d:
03:b4:95:13:1d:b2:6a:eb:25:69:8f:24:ee:64:30:
60:58:27:67:28:34:15:13:c9:8d:9c:21:38:22:81:
bb:8c:44:78:d6:52:03:ed:b2:24:db:0f:da:9b:e6:
62:e0:c9:38:9e:72:3a:f0:51:9a:a6:f1:a8:b6:f2:
29:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:74:2E:DD:AB:A4:46:1A:50:AE:93:29:9A:04:0B:07:0E:64:51:31
X509v3 Authority Key Identifier:
keyid:49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/6nQu3aukRhpQrpMpmgQLBw5kUTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/Sd2PGmKl1_gCEt4PPv51svozj_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.196.0/22
46.161.200.0/24
82.199.208.0/20
89.46.200.0/21
91.213.191.0/24
91.217.185.0/24
185.16.26.0/23
185.95.204.0/22
185.247.36.0/22
185.254.200.0/23
185.254.203.0/24
212.95.128.0-212.95.147.255
223.25.120.0-223.25.126.255
Signature Algorithm: sha256WithRSAEncryption
ab:bc:20:f2:40:5d:d1:37:6b:de:67:21:87:1e:03:3d:ee:77:
c8:f6:6d:43:c0:c1:2c:c9:61:57:c0:2d:2e:3e:27:0b:1d:4e:
e2:2d:9d:02:66:61:0b:c7:17:6b:e0:67:7d:9a:96:96:74:6b:
e0:e5:d8:6f:a1:4d:f2:5c:d1:0c:77:79:e4:34:71:1b:a6:db:
c9:57:8e:f3:13:a4:7c:27:50:8a:4f:7d:bc:5c:2b:ec:a3:db:
c9:d4:dd:d2:a6:22:18:b4:cd:b2:fa:14:62:a7:35:cc:71:59:
8a:1c:10:eb:d4:80:11:b5:9e:96:9a:34:13:ac:fd:1a:5d:9f:
69:32:d3:42:14:ee:32:a4:89:3e:2e:ab:e9:8e:aa:f1:da:33:
48:33:5f:92:a2:15:4d:31:fd:70:76:89:05:6c:f6:a4:8e:1c:
03:82:30:c9:93:ae:e4:51:85:4f:a8:ef:b3:e7:35:be:7c:a1:
53:a3:b1:85:79:a4:fa:ca:49:99:dc:dd:87:e5:df:1e:1e:d2:
d8:a5:56:bf:73:02:59:a2:72:bb:2b:a3:a2:9a:5c:d3:dc:75:
bf:22:4a:0b:4a:6b:5f:af:77:50:e8:ce:e9:39:e9:77:30:14:
6d:77:72:fd:a6:da:bb:5d:d0:93:ac:66:d7:fd:12:33:28:c5:
3c:c9:47:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 17 13:39:01 2024 by rpki-client on console-ams.rpki-client.org