Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/TEgXVrSc0fpqDoBhNoNg7u8Os0A.roa
File: TEgXVrSc0fpqDoBhNoNg7u8Os0A.roa (raw, json)
Hash identifier: tZ9K5Fou3eoMhkfeIO32IQyFHi0FZ7ZBidTOpHbT59g=
Subject key identifier: 4C:48:17:56:B4:9C:D1:FA:6A:0E:80:61:36:83:60:EE:EF:0E:B3:40
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 018F51A0644FAAD1620F39B16BC846B5CBC9
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/TEgXVrSc0fpqDoBhNoNg7u8Os0A.roa
Signing time: Tue 07 May 2024 05:56:56 +0000
ROA not before: Tue 07 May 2024 05:56:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12716
IP address blocks: 37.63.0.0/20 maxlen: 20
37.63.16.0/22 maxlen: 22
37.63.20.0/22 maxlen: 24
37.63.24.0/22 maxlen: 22
37.63.28.0/22 maxlen: 24
37.63.32.0/22 maxlen: 24
37.63.96.0/22 maxlen: 22
37.63.96.0/24 maxlen: 24
37.63.97.0/24 maxlen: 24
37.63.98.0/24 maxlen: 24
37.63.99.0/24 maxlen: 24
62.204.154.0/23 maxlen: 23
83.97.30.0/24 maxlen: 24
84.252.40.0/23 maxlen: 23
85.118.64.0/22 maxlen: 22
85.118.68.0/23 maxlen: 24
85.118.70.0/24 maxlen: 24
85.118.71.0/24 maxlen: 24
85.118.72.0/23 maxlen: 23
85.118.74.0/24 maxlen: 24
85.118.76.0/22 maxlen: 22
85.118.80.0/22 maxlen: 22
85.118.84.0/24 maxlen: 24
85.118.92.0/24 maxlen: 24
85.118.93.0/24 maxlen: 24
89.215.62.0/23 maxlen: 23
151.251.44.0/22 maxlen: 22
151.251.68.0/22 maxlen: 22
151.251.121.0/24 maxlen: 24
151.251.126.0/23 maxlen: 23
151.251.192.0/22 maxlen: 22
151.251.238.0/24 maxlen: 24
151.251.239.0/24 maxlen: 24
151.251.240.0/20 maxlen: 20
151.251.240.0/24 maxlen: 24
151.251.241.0/24 maxlen: 24
151.251.242.0/24 maxlen: 24
151.251.243.0/24 maxlen: 24
151.251.244.0/24 maxlen: 24
151.251.245.0/24 maxlen: 24
151.251.246.0/24 maxlen: 24
151.251.247.0/24 maxlen: 24
151.251.248.0/24 maxlen: 24
151.251.249.0/24 maxlen: 24
151.251.250.0/24 maxlen: 24
151.251.251.0/24 maxlen: 24
151.251.252.0/24 maxlen: 24
151.251.253.0/24 maxlen: 24
151.251.254.0/24 maxlen: 24
151.251.255.0/24 maxlen: 24
176.222.0.0/20 maxlen: 24
185.151.156.0/22 maxlen: 22
185.224.160.0/23 maxlen: 23
212.104.116.0/22 maxlen: 24
213.226.17.0/24 maxlen: 24
213.226.19.0/24 maxlen: 24
213.226.36.0/24 maxlen: 24
213.226.40.0/24 maxlen: 24
213.226.51.0/24 maxlen: 24
213.226.56.0/24 maxlen: 24
213.226.57.0/24 maxlen: 24
213.226.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 May 2024 06:38:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:51:a0:64:4f:aa:d1:62:0f:39:b1:6b:c8:46:b5:cb:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: May 7 05:56:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4c481756b49cd1fa6a0e8061368360eeef0eb340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:97:06:b2:2f:b1:3e:83:25:46:41:84:03:da:
20:85:b9:0a:d7:b2:9d:a7:ad:31:d4:fb:53:3f:aa:
38:1a:d0:a9:75:9b:29:6a:c7:6c:84:2d:c6:da:e9:
75:d6:5c:7e:fe:e4:5e:7b:43:9e:6c:22:8d:32:1f:
d8:fc:a4:28:0d:fa:88:e5:10:04:db:e1:d9:c6:5e:
11:81:7e:17:45:5a:f2:d3:fe:0f:83:12:82:ab:df:
a5:8f:26:b4:91:8e:99:e2:3c:f7:f9:90:7a:44:53:
35:14:02:fe:52:ac:5d:7b:9d:b0:32:8f:5d:e9:87:
71:ff:60:7a:99:37:33:b1:3e:b7:a5:72:80:0b:3e:
25:a6:de:f4:cc:f1:11:cf:4a:73:1c:71:ae:0e:d1:
6c:57:ba:4d:94:48:06:b1:12:4c:db:aa:99:c6:ab:
d3:27:cc:89:b8:75:bd:49:96:58:ff:ac:02:a7:93:
1a:0e:09:44:0e:5f:da:71:1b:0a:0a:6d:8f:6b:e0:
30:99:e0:5a:06:56:a6:5a:73:a4:78:94:e3:18:18:
06:e1:c8:ba:6c:2d:a5:95:f1:e7:6d:12:6c:29:a0:
e5:80:f3:12:e1:a0:9f:6e:11:23:45:e0:bb:b9:84:
f8:54:8f:d6:73:b9:06:86:a7:4a:d4:8a:4b:db:c5:
60:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:48:17:56:B4:9C:D1:FA:6A:0E:80:61:36:83:60:EE:EF:0E:B3:40
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/TEgXVrSc0fpqDoBhNoNg7u8Os0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.63.0.0-37.63.35.255
37.63.96.0/22
62.204.154.0/23
83.97.30.0/24
84.252.40.0/23
85.118.64.0-85.118.74.255
85.118.76.0-85.118.84.255
85.118.92.0/23
89.215.62.0/23
151.251.44.0/22
151.251.68.0/22
151.251.121.0/24
151.251.126.0/23
151.251.192.0/22
151.251.238.0-151.251.255.255
176.222.0.0/20
185.151.156.0/22
185.224.160.0/23
212.104.116.0/22
213.226.17.0/24
213.226.19.0/24
213.226.36.0/24
213.226.40.0/24
213.226.51.0/24
213.226.56.0/23
213.226.59.0/24
Signature Algorithm: sha256WithRSAEncryption
30:ca:63:e9:11:91:4d:f8:df:cb:5c:9c:0d:13:bf:82:c1:40:
53:5f:b7:93:fe:5c:b9:e8:e2:57:f3:55:4b:40:92:c9:d4:d8:
8d:61:a0:40:1c:1c:4c:73:85:3c:e9:1b:c6:6c:b3:0e:ef:0f:
ef:f5:1f:77:8d:47:4e:95:eb:f2:b4:e7:d0:66:62:0e:92:5e:
01:bc:00:d2:c0:5f:25:37:d0:e2:06:1b:61:ed:cd:01:5f:4d:
c0:9a:4a:82:43:69:b5:7b:94:d5:68:02:a0:83:14:74:e4:15:
f2:af:9e:1f:9e:0c:e6:21:fd:0e:60:bc:76:3e:08:de:19:40:
4b:5c:7d:d6:eb:70:c6:b2:f1:28:54:9d:2e:e4:be:18:56:fe:
d4:0d:6f:51:7c:f7:34:25:60:30:26:2e:de:cc:38:00:25:07:
60:33:0c:9f:43:92:56:5b:14:a1:4e:b5:14:0c:6c:4e:5e:57:
d2:0b:60:60:05:38:a6:c9:42:95:44:72:82:b5:f5:a9:b4:f7:
f9:63:66:50:88:f9:69:55:92:8c:f4:2b:43:b8:6d:38:e5:6c:
92:c2:5e:a0:68:48:3a:5a:bc:12:8c:85:f1:16:f3:e7:60:ee:
a2:34:19:3f:bb:d4:24:d4:71:a5:16:6b:ed:b3:c0:62:94:18:
47:5e:1b:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 08:14:50 2024 by rpki-client on console-ams.rpki-client.org