Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/CpjoHjgL0_6ExHvEjaiolSn51Z8.roa
File: CpjoHjgL0_6ExHvEjaiolSn51Z8.roa (raw, json)
Hash identifier: qfuCsAfN/VsC0qNLnZdaqZ/1wzLjFKmjBsq+YzViwVs=
Subject key identifier: 0A:98:E8:1E:38:0B:D3:FE:84:C4:7B:C4:8D:A8:A8:95:29:F9:D5:9F
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019315347C79C95D4518977F2D46ED2FDB9B
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/CpjoHjgL0_6ExHvEjaiolSn51Z8.roa
Signing time: Sun 10 Nov 2024 08:33:01 +0000
ROA not before: Sun 10 Nov 2024 08:33:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12586
IP address blocks: 5.83.128.0/19 maxlen: 32
5.83.128.0/20 maxlen: 32
5.83.151.0/24 maxlen: 32
5.83.156.0/24 maxlen: 24
5.175.128.0/24 maxlen: 32
5.175.129.0/24 maxlen: 32
5.175.130.0/24 maxlen: 32
5.175.131.0/24 maxlen: 32
5.175.133.0/24 maxlen: 32
5.175.218.0/24 maxlen: 32
5.175.219.0/24 maxlen: 32
5.175.220.0/24 maxlen: 32
5.175.225.0/24 maxlen: 32
5.175.226.0/24 maxlen: 32
5.175.227.0/24 maxlen: 32
5.175.228.0/24 maxlen: 32
5.175.229.0/24 maxlen: 32
5.175.230.0/24 maxlen: 32
5.175.231.0/24 maxlen: 32
5.175.232.0/24 maxlen: 32
5.175.235.0/24 maxlen: 32
5.175.240.0/24 maxlen: 32
5.175.241.0/24 maxlen: 32
5.175.242.0/24 maxlen: 32
5.175.243.0/24 maxlen: 32
5.175.244.0/24 maxlen: 32
5.175.251.0/24 maxlen: 32
5.175.252.0/24 maxlen: 32
5.175.253.0/24 maxlen: 32
5.175.254.0/24 maxlen: 32
5.175.255.0/24 maxlen: 32
5.230.0.0/15 maxlen: 32
5.230.6.0/24 maxlen: 32
5.230.11.0/24 maxlen: 32
5.230.102.0/24 maxlen: 32
5.230.224.0/24 maxlen: 32
5.231.24.0/24 maxlen: 24
5.231.29.0/24 maxlen: 24
5.231.31.0/24 maxlen: 24
5.231.233.0/24 maxlen: 32
77.90.0.0/18 maxlen: 32
77.90.20.0/24 maxlen: 24
77.90.58.0/24 maxlen: 24
83.243.80.0/21 maxlen: 32
85.93.0.0/19 maxlen: 32
85.93.20.0/24 maxlen: 32
85.118.160.0/21 maxlen: 32
87.239.128.0/21 maxlen: 32
89.106.64.0/19 maxlen: 32
89.144.0.0/18 maxlen: 32
94.103.160.0/20 maxlen: 32
94.249.128.0/17 maxlen: 32
95.215.32.0/22 maxlen: 32
178.18.144.0/20 maxlen: 32
178.18.151.0/24 maxlen: 32
185.13.156.0/22 maxlen: 32
185.47.140.0/24 maxlen: 32
185.47.141.0/24 maxlen: 32
185.121.71.0/24 maxlen: 32
193.28.251.0/24 maxlen: 32
195.110.14.0/23 maxlen: 32
217.69.160.0/20 maxlen: 32
2a00:12d8::/29 maxlen: 128
2a00:19d0::/29 maxlen: 128
2a00:cdc0::/32 maxlen: 128
2a01:bd40::/29 maxlen: 128
2a02:7a0::/29 maxlen: 128
2a02:2fc0::/29 maxlen: 128
Validation: Failed, certificate revoked on Mon 11 Nov 2024 05:11:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:15:34:7c:79:c9:5d:45:18:97:7f:2d:46:ed:2f:db:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Nov 10 08:33:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0a98e81e380bd3fe84c47bc48da8a89529f9d59f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:1d:44:55:4e:cc:63:36:84:86:eb:85:61:58:
cb:bd:eb:57:bd:16:c9:27:5f:d5:28:1c:7e:1e:64:
62:3f:3c:f0:e6:6c:86:88:90:9a:50:a6:b7:1c:a4:
0e:6e:df:0b:e7:fb:c3:4e:a9:94:74:5a:2e:a8:80:
0d:97:5b:4e:9d:7e:32:fa:54:9b:74:82:6e:90:7c:
ba:18:e3:89:27:4f:7d:ce:ed:b7:12:83:1c:0d:0b:
06:1a:7b:ee:c1:7c:f9:85:83:14:8c:54:25:ae:26:
40:93:c7:17:d3:bc:07:01:6f:73:fd:c3:93:e6:3a:
ff:1f:7b:a5:bc:2d:59:0e:44:2c:02:a7:df:57:39:
4e:9c:94:71:f7:aa:62:ce:0e:0a:19:7c:15:14:04:
c6:87:2b:33:30:af:b8:8c:af:7b:c2:f7:fe:86:3d:
13:e9:41:f0:b7:f6:46:e4:f1:e5:c2:79:f6:76:09:
d2:d1:42:12:2f:5e:06:2f:15:52:3b:08:7f:29:9b:
6d:7e:09:9e:56:bf:b9:bf:64:01:81:46:79:15:f9:
d1:64:76:ca:e1:d2:f4:40:27:9a:bb:c4:83:e6:05:
1b:5d:35:b1:cb:3f:3a:b6:e4:63:7f:97:d7:73:ce:
79:13:7b:54:f5:4d:09:0b:b6:42:b8:64:e1:d2:aa:
b8:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:98:E8:1E:38:0B:D3:FE:84:C4:7B:C4:8D:A8:A8:95:29:F9:D5:9F
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/CpjoHjgL0_6ExHvEjaiolSn51Z8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.128.0/19
5.175.128.0/22
5.175.133.0/24
5.175.218.0-5.175.220.255
5.175.225.0-5.175.232.255
5.175.235.0/24
5.175.240.0-5.175.244.255
5.175.251.0-5.175.255.255
5.230.0.0/15
77.90.0.0/18
83.243.80.0/21
85.93.0.0/19
85.118.160.0/21
87.239.128.0/21
89.106.64.0/19
89.144.0.0/18
94.103.160.0/20
94.249.128.0/17
95.215.32.0/22
178.18.144.0/20
185.13.156.0/22
185.47.140.0/23
185.121.71.0/24
193.28.251.0/24
195.110.14.0/23
217.69.160.0/20
IPv6:
2a00:12d8::/29
2a00:19d0::/29
2a00:cdc0::/32
2a01:bd40::/29
2a02:7a0::/29
2a02:2fc0::/29
Signature Algorithm: sha256WithRSAEncryption
5d:cc:cc:a6:2a:44:70:41:59:6d:26:c7:90:ec:6b:57:47:87:
b2:5c:6a:03:be:cc:d3:4b:9a:e3:3f:72:9e:4f:2a:66:09:fc:
bc:8b:4f:2e:4a:94:89:60:50:10:db:7e:02:5f:52:e8:d8:59:
0b:0a:a2:95:71:bf:a3:2b:59:05:99:85:b0:e4:cf:ec:b9:7d:
23:37:5f:00:88:30:6c:6f:7e:a3:f6:f9:56:82:37:21:aa:ee:
1c:ac:30:d5:65:ab:ac:cf:e9:88:d5:16:87:94:df:7f:1a:2a:
71:7b:54:cf:b4:04:f1:71:d4:b7:9f:eb:3d:22:af:d1:8b:39:
f2:22:89:61:5f:69:be:f4:73:0c:25:ba:7a:c3:0d:b7:c6:b6:
d2:c2:b3:81:f6:3d:45:ad:09:37:55:5a:fc:92:e0:b9:18:61:
76:70:45:d9:29:53:a2:59:74:94:4f:2a:ea:61:82:26:7d:c2:
f0:98:53:39:27:5d:a1:54:46:91:3c:40:3d:38:eb:4c:5e:7d:
32:22:6b:b2:75:9f:bd:8a:b6:69:5a:e9:a2:59:75:7b:bc:25:
d5:cd:d4:70:73:bc:ee:3e:61:bc:6c:89:3e:bd:d6:55:2b:20:
17:af:3d:dd:9d:46:1d:dd:55:a1:fa:48:f0:63:3e:f1:8c:50:
8f:46:81:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 11 08:16:55 2024 by rpki-client on console-ams.rpki-client.org