Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/rRu6SrdiE2bGqEQf6ZBug8RbUCk.roa
File: rRu6SrdiE2bGqEQf6ZBug8RbUCk.roa (raw, json)
Hash identifier: Bjq21E+/i8rMIpWPsiXU+Zw+Xdmk5kHyXa0xbi2lojM=
Subject key identifier: AD:1B:BA:4A:B7:62:13:66:C6:A8:44:1F:E9:90:6E:83:C4:5B:50:29
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 0191F9E9B619823A1F0F19ABF64725E3419F
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/rRu6SrdiE2bGqEQf6ZBug8RbUCk.roa
Signing time: Mon 16 Sep 2024 08:18:48 +0000
ROA not before: Mon 16 Sep 2024 08:18:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57169
IP address blocks: 5.180.114.0/24 maxlen: 24
37.235.48.0/20 maxlen: 20
37.235.50.0/23 maxlen: 23
37.235.50.0/24 maxlen: 24
37.235.52.0/24 maxlen: 24
37.235.56.0/24 maxlen: 24
37.235.57.0/24 maxlen: 24
37.235.58.0/24 maxlen: 24
37.235.59.0/24 maxlen: 24
37.235.60.0/24 maxlen: 24
37.235.61.0/24 maxlen: 24
37.235.62.0/24 maxlen: 24
37.235.63.0/24 maxlen: 24
45.153.125.0/24 maxlen: 24
83.243.120.0/24 maxlen: 24
83.243.122.0/24 maxlen: 24
83.243.123.0/24 maxlen: 24
84.247.61.0/24 maxlen: 24
86.106.119.0/24 maxlen: 24
89.31.123.0/24 maxlen: 24
91.132.94.0/24 maxlen: 24
91.227.204.0/23 maxlen: 23
91.227.204.0/24 maxlen: 24
91.227.205.0/24 maxlen: 24
92.243.66.0/24 maxlen: 24
95.156.205.0/24 maxlen: 24
103.57.250.0/24 maxlen: 24
134.255.210.0/24 maxlen: 24
149.154.152.0/24 maxlen: 24
149.154.153.0/24 maxlen: 24
149.154.154.0/24 maxlen: 24
149.154.155.0/24 maxlen: 24
149.154.156.0/24 maxlen: 24
151.236.0.0/19 maxlen: 19
151.236.0.0/24 maxlen: 24
151.236.1.0/24 maxlen: 24
151.236.2.0/24 maxlen: 24
151.236.3.0/24 maxlen: 24
151.236.4.0/24 maxlen: 24
151.236.5.0/24 maxlen: 24
151.236.6.0/24 maxlen: 24
151.236.7.0/24 maxlen: 24
151.236.8.0/24 maxlen: 24
151.236.9.0/24 maxlen: 24
151.236.10.0/24 maxlen: 24
151.236.11.0/24 maxlen: 24
151.236.12.0/24 maxlen: 24
151.236.13.0/24 maxlen: 24
151.236.14.0/24 maxlen: 24
151.236.20.0/24 maxlen: 24
151.236.26.0/23 maxlen: 23
151.236.28.0/24 maxlen: 24
151.236.30.0/24 maxlen: 24
158.255.209.0/24 maxlen: 24
158.255.210.0/24 maxlen: 24
158.255.211.0/24 maxlen: 24
158.255.212.0/24 maxlen: 24
185.26.236.0/24 maxlen: 24
185.26.237.0/24 maxlen: 24
185.26.238.0/24 maxlen: 24
188.214.33.0/24 maxlen: 24
188.214.34.0/24 maxlen: 24
188.214.38.0/24 maxlen: 24
188.214.39.0/24 maxlen: 24
213.183.54.0/24 maxlen: 24
213.183.55.0/24 maxlen: 24
213.183.56.0/24 maxlen: 24
213.183.57.0/24 maxlen: 24
2a03:f80::/29 maxlen: 29
2a03:f80:7::/48 maxlen: 48
2a03:f80:31::/48 maxlen: 48
2a03:f80:56::/48 maxlen: 48
2a03:f80:57::/48 maxlen: 48
2a03:f80:70::/48 maxlen: 48
2a03:f80:354::/48 maxlen: 48
2a03:f80:357::/48 maxlen: 48
2a03:f80:359::/48 maxlen: 48
2a03:f80:370::/48 maxlen: 48
2a03:f80:371::/48 maxlen: 48
2a03:f80:3991::/48 maxlen: 48
2a03:f80:ad15::/48 maxlen: 48
2a03:f80:ed15::/48 maxlen: 48
2a03:f80:ed16::/48 maxlen: 48
2a03:f80:ed17::/48 maxlen: 48
2a03:f80:ed31::/48 maxlen: 48
2a03:f80:ed51::/48 maxlen: 48
2a03:f87:ffff::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 16 Sep 2024 09:41:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:f9:e9:b6:19:82:3a:1f:0f:19:ab:f6:47:25:e3:41:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Sep 16 08:18:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ad1bba4ab7621366c6a8441fe9906e83c45b5029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:de:e3:c0:67:d2:39:08:ab:5d:b4:0e:d6:3b:
36:5d:62:42:4c:f7:0c:1a:0d:b5:3d:a8:d6:67:55:
ec:5a:ef:42:33:36:66:92:0c:b4:36:bf:ad:4f:57:
c0:92:53:a6:69:68:7c:6f:8b:20:db:1c:ad:23:02:
9c:e7:0b:73:4b:1f:e4:a6:9a:78:00:3d:86:4b:31:
ea:29:c8:04:e4:0a:b7:14:e9:7a:f5:5c:1f:a2:55:
cd:42:fa:52:2c:93:ee:73:6a:52:a2:c7:09:34:ae:
bb:19:69:96:4d:fb:ab:36:75:7e:4f:6e:d6:c2:f7:
e8:0b:eb:39:66:a0:de:03:c0:98:17:f4:db:ed:4c:
ed:6b:d5:3b:32:dd:80:3d:9f:d1:4e:b7:5f:8d:68:
21:2e:39:be:80:8c:0e:f6:8d:6b:a0:91:8f:bb:9b:
37:15:67:fb:bc:a8:cb:72:c5:ae:8d:29:d6:c0:1d:
0d:9f:22:66:1b:b0:e8:2c:a5:b4:b5:b9:01:7c:08:
d9:4f:75:c2:29:e6:e0:0e:d6:d3:2a:9f:46:5b:80:
bb:4b:8d:eb:2a:cc:2e:06:dd:aa:5c:13:e3:5c:20:
5a:af:2d:84:0e:1e:4c:16:4f:74:21:c5:b0:ae:61:
45:ce:d8:10:05:30:19:0e:27:21:6e:89:0b:59:02:
5c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:1B:BA:4A:B7:62:13:66:C6:A8:44:1F:E9:90:6E:83:C4:5B:50:29
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/rRu6SrdiE2bGqEQf6ZBug8RbUCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.114.0/24
37.235.48.0/20
45.153.125.0/24
83.243.120.0/24
83.243.122.0/23
84.247.61.0/24
86.106.119.0/24
89.31.123.0/24
91.132.94.0/24
91.227.204.0/23
92.243.66.0/24
95.156.205.0/24
103.57.250.0/24
134.255.210.0/24
149.154.152.0-149.154.156.255
151.236.0.0/19
158.255.209.0-158.255.212.255
185.26.236.0-185.26.238.255
188.214.33.0-188.214.34.255
188.214.38.0/23
213.183.54.0-213.183.57.255
IPv6:
2a03:f80::/29
Signature Algorithm: sha256WithRSAEncryption
28:44:a3:b5:f5:62:a6:61:2f:06:2f:72:91:ab:ce:4f:3d:dd:
da:52:09:ff:96:b6:28:d3:fb:e1:f0:dc:34:b4:3c:86:a7:24:
ef:56:f7:b1:c6:c2:9b:ed:5a:1c:14:34:97:00:69:f5:23:53:
62:9e:1c:0b:d9:70:58:da:a7:05:44:09:7f:8f:49:32:5a:ca:
57:a2:2f:26:be:2f:4e:07:8e:51:f6:07:63:16:d2:4a:16:60:
34:4c:c7:b4:9c:bf:ba:b7:9b:b0:a8:e3:8f:85:26:d5:83:47:
d4:c1:1f:69:0b:c3:54:51:2f:84:19:a9:f2:c3:4c:69:96:58:
3b:12:75:a8:83:ab:f7:61:83:12:28:e2:20:db:1b:e6:c9:26:
f7:3d:4b:2d:f3:da:ba:65:cc:a4:ee:08:2f:ee:a0:51:86:0a:
bb:ed:aa:1a:47:4d:b4:9d:f3:01:1d:ea:ba:1b:da:15:b6:4f:
60:63:75:cc:d5:07:52:c4:69:00:59:af:11:e9:de:79:ec:a0:
32:f9:91:53:1e:5d:ff:51:76:f5:43:a8:2d:39:14:88:36:01:
45:d2:15:17:29:46:10:aa:8f:ad:ad:85:55:7f:4c:57:d6:b1:
1b:a2:f8:a1:22:44:31:e4:ae:62:75:c6:32:cb:71:26:e9:ce:
0f:4b:1b:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 13:24:21 2024 by rpki-client on console-fra.rpki-client.org