Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/62b909-1e3e-4a1b-9e24-b01e0297b070/1/WqEHb15fxJnYsbv_fG2y8tOLg-g.roa
File: WqEHb15fxJnYsbv_fG2y8tOLg-g.roa (raw, json)
Hash identifier: TXG91+kh/GBFCkaUNErIEMVALhTDov9XcoSJvEE/EB0=
Subject key identifier: 5A:A1:07:6F:5E:5F:C4:99:D8:B1:BB:FF:7C:6D:B2:F2:D3:8B:83:E8
Certificate issuer: /CN=fdd2b36206439bbce15b363f09eeff1d738cecc7
Certificate serial: 018D68290966F9F384D8A96049D6065A27DC
Authority key identifier: FD:D2:B3:62:06:43:9B:BC:E1:5B:36:3F:09:EE:FF:1D:73:8C:EC:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_dKzYgZDm7zhWzY_Ce7_HXOM7Mc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/62b909-1e3e-4a1b-9e24-b01e0297b070/1/WqEHb15fxJnYsbv_fG2y8tOLg-g.roa
Signing time: Fri 02 Feb 2024 04:52:16 +0000
ROA not before: Fri 02 Feb 2024 04:52:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16010
IP address blocks: 5.178.128.0/17 maxlen: 24
46.49.0.0/17 maxlen: 24
62.168.160.0/19 maxlen: 24
77.74.40.0/21 maxlen: 21
80.241.240.0/22 maxlen: 22
80.241.248.0/22 maxlen: 22
80.241.253.0/24 maxlen: 24
80.241.254.0/23 maxlen: 23
82.211.128.0/18 maxlen: 19
85.114.224.0/19 maxlen: 24
89.232.32.0/19 maxlen: 24
93.177.128.0/18 maxlen: 24
94.137.160.0/19 maxlen: 19
94.240.192.0/18 maxlen: 19
95.104.0.0/17 maxlen: 18
109.172.128.0/17 maxlen: 24
134.19.224.0/19 maxlen: 24
185.115.4.0/22 maxlen: 22
185.115.4.0/24 maxlen: 24
188.121.192.0/19 maxlen: 24
188.129.128.0/17 maxlen: 18
212.58.96.0/19 maxlen: 24
212.72.128.0/23 maxlen: 24
212.72.131.0/24 maxlen: 24
212.72.132.0/22 maxlen: 22
212.72.136.0/21 maxlen: 24
212.72.144.0/21 maxlen: 21
212.72.152.0/23 maxlen: 23
212.72.154.0/24 maxlen: 24
212.72.156.0/22 maxlen: 22
213.157.192.0/19 maxlen: 24
213.200.0.0/19 maxlen: 24
2a0b:6200::/29 maxlen: 64
Validation: Failed, certificate revoked on Tue 06 Feb 2024 07:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:68:29:09:66:f9:f3:84:d8:a9:60:49:d6:06:5a:27:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdd2b36206439bbce15b363f09eeff1d738cecc7
Validity
Not Before: Feb 2 04:52:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5aa1076f5e5fc499d8b1bbff7c6db2f2d38b83e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:95:a3:42:e5:dc:6d:84:36:47:50:45:c7:e0:
13:ca:44:a7:80:cc:32:bc:01:00:79:8d:3b:c8:3c:
a3:3a:03:10:f7:fc:29:61:bd:f9:44:08:7f:84:27:
a0:55:e6:fd:6d:d2:61:f7:b2:20:fd:95:1e:e2:1d:
f4:aa:eb:b0:a0:38:61:56:0c:4a:7c:00:9c:0e:9a:
7f:ed:c4:18:d9:b1:93:41:45:9f:57:c0:d9:f8:9b:
61:92:3c:cb:1c:d9:8c:59:90:5f:a4:c6:02:88:f2:
8e:e7:72:1b:8c:1a:32:13:7d:2d:3d:1e:3e:a7:54:
36:28:57:5f:b8:42:4b:dc:26:67:89:77:df:75:7e:
9e:f1:f9:b1:93:0a:d2:a0:e4:76:99:b5:43:ac:9b:
6f:35:44:d7:97:d9:94:bf:77:b8:f3:07:c4:3d:69:
c0:c5:e2:b7:97:18:b3:a6:9e:88:a8:70:c2:d5:ed:
51:36:7a:0f:ba:0e:11:5b:08:c7:ef:ae:bb:b2:70:
86:23:80:8c:96:67:4a:56:67:a5:78:cf:cd:f1:a6:
5a:b0:7c:b3:15:dc:04:78:32:89:e3:66:56:d3:cc:
d1:47:db:ce:e1:4d:da:79:62:45:b4:97:0b:d3:c3:
75:20:ac:90:79:e8:5b:d4:f7:6e:dc:56:85:26:32:
82:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:A1:07:6F:5E:5F:C4:99:D8:B1:BB:FF:7C:6D:B2:F2:D3:8B:83:E8
X509v3 Authority Key Identifier:
keyid:FD:D2:B3:62:06:43:9B:BC:E1:5B:36:3F:09:EE:FF:1D:73:8C:EC:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_dKzYgZDm7zhWzY_Ce7_HXOM7Mc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/62b909-1e3e-4a1b-9e24-b01e0297b070/1/WqEHb15fxJnYsbv_fG2y8tOLg-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/62b909-1e3e-4a1b-9e24-b01e0297b070/1/_dKzYgZDm7zhWzY_Ce7_HXOM7Mc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.128.0/17
46.49.0.0/17
62.168.160.0/19
77.74.40.0/21
80.241.240.0/22
80.241.248.0/22
80.241.253.0-80.241.255.255
82.211.128.0/18
85.114.224.0/19
89.232.32.0/19
93.177.128.0/18
94.137.160.0/19
94.240.192.0/18
95.104.0.0/17
109.172.128.0/17
134.19.224.0/19
185.115.4.0/22
188.121.192.0/19
188.129.128.0/17
212.58.96.0/19
212.72.128.0/23
212.72.131.0-212.72.154.255
212.72.156.0/22
213.157.192.0/19
213.200.0.0/19
IPv6:
2a0b:6200::/29
Signature Algorithm: sha256WithRSAEncryption
50:d5:7d:fa:ff:ae:89:0d:20:0a:71:69:61:e1:2c:d6:e3:b1:
83:a1:db:d4:9d:38:27:c2:2f:09:73:59:47:89:07:cc:09:bd:
67:a6:57:5d:d0:5d:ca:b7:00:24:69:cd:c9:4f:0e:4d:26:7f:
14:75:45:18:52:96:0b:48:7c:4d:28:47:45:d6:a9:44:09:bf:
33:3f:8d:dc:11:8e:d8:a8:e4:dc:c1:dd:ff:8f:a0:d1:0a:c1:
77:ba:97:7a:1f:85:ed:3f:86:73:0f:e0:5e:90:32:0e:9e:2c:
6f:c6:76:0a:cf:7f:37:30:60:bd:89:66:cb:f3:aa:65:8d:bd:
4b:49:23:8d:6e:44:37:19:41:5b:fe:b7:ab:68:c8:6e:8c:c7:
31:02:c8:d6:be:8d:57:ae:87:aa:de:c5:79:1e:2f:0d:31:79:
a2:a8:2c:76:91:d6:82:63:e0:88:64:03:cb:af:2f:d3:3c:88:
f1:a8:05:1d:6d:6c:47:96:e8:92:68:ff:2d:8d:47:4a:1e:ea:
54:27:60:9a:92:60:3a:0a:fc:4b:93:df:65:56:cc:73:88:02:
e4:9c:6e:4f:29:cf:5b:1b:5d:aa:68:d6:82:fc:43:f0:15:82:
7e:61:a7:a8:aa:88:d9:9b:8d:a4:a1:ad:b4:5d:c4:f2:fa:de:
cd:ac:aa:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:53 2024 by rpki-client on console-ams.rpki-client.org