Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/5RHjIsDduDnzPL-lwx6MpDGGHjo.roa
File: 5RHjIsDduDnzPL-lwx6MpDGGHjo.roa (raw, json)
Hash identifier: 5wySAoHG1H9LzK0/nqmriwQtNQH7AAgvbOseN0JsKUY=
Subject key identifier: E5:11:E3:22:C0:DD:B8:39:F3:3C:BF:A5:C3:1E:8C:A4:31:86:1E:3A
Certificate issuer: /CN=f43bf90808ae7eca063f746a8f1d88865734c8a3
Certificate serial: 019425FC4111898505CA3FA7A1FC9381F867
Authority key identifier: F4:3B:F9:08:08:AE:7E:CA:06:3F:74:6A:8F:1D:88:86:57:34:C8:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/5RHjIsDduDnzPL-lwx6MpDGGHjo.roa
Signing time: Thu 02 Jan 2025 07:47:56 +0000
ROA not before: Thu 02 Jan 2025 07:47:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202448
IP address blocks: 2.56.212.0/24 maxlen: 24
2.56.213.0/24 maxlen: 24
2.56.214.0/24 maxlen: 24
2.56.215.0/24 maxlen: 24
31.14.238.0/24 maxlen: 24
31.222.229.0/24 maxlen: 24
45.137.148.0/24 maxlen: 32
45.137.149.0/24 maxlen: 24
45.137.150.0/24 maxlen: 24
45.137.151.0/24 maxlen: 24
45.153.184.0/24 maxlen: 24
45.153.185.0/24 maxlen: 24
45.153.186.0/24 maxlen: 24
45.153.187.0/24 maxlen: 24
62.3.32.0/24 maxlen: 24
86.105.252.0/24 maxlen: 24
86.106.181.0/24 maxlen: 24
86.107.197.0/24 maxlen: 24
89.38.128.0/24 maxlen: 24
89.38.129.0/24 maxlen: 24
89.38.130.0/24 maxlen: 24
89.38.131.0/24 maxlen: 24
89.38.135.0/24 maxlen: 32
89.43.33.0/24 maxlen: 24
91.227.40.0/24 maxlen: 24
91.227.41.0/24 maxlen: 24
91.250.248.0/24 maxlen: 32
91.250.249.0/24 maxlen: 32
93.114.128.0/24 maxlen: 24
93.114.133.0/24 maxlen: 24
93.115.16.0/24 maxlen: 24
93.115.17.0/24 maxlen: 24
93.115.18.0/24 maxlen: 24
93.115.19.0/24 maxlen: 24
93.115.20.0/24 maxlen: 24
93.115.21.0/24 maxlen: 24
93.115.22.0/24 maxlen: 24
93.115.23.0/24 maxlen: 24
94.176.182.0/24 maxlen: 24
94.231.205.0/24 maxlen: 24
95.169.192.0/24 maxlen: 24
95.169.201.0/24 maxlen: 24
95.169.204.0/24 maxlen: 24
95.169.205.0/24 maxlen: 24
178.157.82.0/24 maxlen: 24
178.157.90.0/24 maxlen: 24
178.157.91.0/24 maxlen: 24
185.96.163.0/24 maxlen: 24
185.170.212.0/24 maxlen: 24
185.170.213.0/24 maxlen: 24
185.170.214.0/24 maxlen: 24
185.170.215.0/24 maxlen: 24
185.177.73.0/24 maxlen: 24
185.234.52.0/24 maxlen: 32
185.243.214.0/24 maxlen: 32
185.243.215.0/24 maxlen: 24
188.212.124.0/24 maxlen: 24
188.212.125.0/24 maxlen: 24
193.201.15.0/24 maxlen: 24
194.26.213.0/24 maxlen: 24
194.32.76.0/24 maxlen: 24
194.32.77.0/24 maxlen: 24
194.32.78.0/24 maxlen: 24
194.32.79.0/24 maxlen: 24
194.63.145.0/24 maxlen: 24
194.99.20.0/24 maxlen: 24
194.99.21.0/24 maxlen: 24
194.99.22.0/24 maxlen: 24
194.99.23.0/24 maxlen: 24
2a05:8280::/32 maxlen: 32
2a09:cd40::/32 maxlen: 32
2a09:cd41::/32 maxlen: 32
2a09:cd42::/32 maxlen: 32
2a09:cd43::/32 maxlen: 32
2a09:cd45::/32 maxlen: 32
2a09:cd46::/32 maxlen: 32
2a0c:b9c0::/32 maxlen: 32
2a0c:b9c1::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 15 Jan 2025 17:35:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:41:11:89:85:05:ca:3f:a7:a1:fc:93:81:f8:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f43bf90808ae7eca063f746a8f1d88865734c8a3
Validity
Not Before: Jan 2 07:47:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e511e322c0ddb839f33cbfa5c31e8ca431861e3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:62:25:03:46:87:59:9b:da:bf:01:c0:9b:92:
37:ea:9a:c8:57:c2:52:bf:14:66:e2:30:d4:10:13:
d6:73:33:49:66:4e:6e:0b:30:5e:6a:84:88:74:83:
ce:b2:ee:13:3b:ba:e1:23:a9:08:d3:c2:46:56:a9:
4f:63:d2:d8:14:64:da:06:a0:70:5c:2d:09:a6:8a:
62:15:b5:7a:e6:40:c0:78:74:44:2d:14:18:4c:a8:
99:2c:bc:b4:09:93:4d:69:45:34:e4:40:2d:89:fc:
14:46:3c:d2:53:cb:ed:f9:60:2a:c5:b5:3f:26:5f:
ba:bb:4a:b0:f6:7b:42:cb:2a:46:2c:48:90:e4:11:
22:06:5a:76:44:88:ee:92:39:1e:8f:a9:a1:26:77:
ab:96:39:0a:2b:de:ef:53:eb:35:eb:1b:f4:c1:78:
e7:0d:68:4f:3d:0a:31:bd:98:3a:a2:df:27:12:19:
42:e7:27:80:df:ad:17:3b:9e:bb:8a:5b:20:72:58:
3a:df:e6:e6:96:d5:83:38:d2:2a:61:37:e1:ed:11:
d2:1e:57:53:2b:b8:c9:8a:72:ec:e7:7f:6f:ee:7b:
2b:88:98:c9:08:26:ca:63:c4:58:63:75:61:c4:6f:
07:aa:da:27:73:41:43:17:a8:a0:dd:fb:7c:30:82:
57:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:11:E3:22:C0:DD:B8:39:F3:3C:BF:A5:C3:1E:8C:A4:31:86:1E:3A
X509v3 Authority Key Identifier:
keyid:F4:3B:F9:08:08:AE:7E:CA:06:3F:74:6A:8F:1D:88:86:57:34:C8:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/5RHjIsDduDnzPL-lwx6MpDGGHjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.212.0/22
31.14.238.0/24
31.222.229.0/24
45.137.148.0/22
45.153.184.0/22
62.3.32.0/24
86.105.252.0/24
86.106.181.0/24
86.107.197.0/24
89.38.128.0/22
89.38.135.0/24
89.43.33.0/24
91.227.40.0/23
91.250.248.0/23
93.114.128.0/24
93.114.133.0/24
93.115.16.0/21
94.176.182.0/24
94.231.205.0/24
95.169.192.0/24
95.169.201.0/24
95.169.204.0/23
178.157.82.0/24
178.157.90.0/23
185.96.163.0/24
185.170.212.0/22
185.177.73.0/24
185.234.52.0/24
185.243.214.0/23
188.212.124.0/23
193.201.15.0/24
194.26.213.0/24
194.32.76.0/22
194.63.145.0/24
194.99.20.0/22
IPv6:
2a05:8280::/32
2a09:cd40::/30
2a09:cd45::-2a09:cd46:ffff:ffff:ffff:ffff:ffff:ffff
2a0c:b9c0::/31
Signature Algorithm: sha256WithRSAEncryption
5b:d6:ed:e4:6d:c8:92:ea:e1:ad:a7:08:22:19:21:46:7f:ea:
e8:72:cb:4e:88:dd:c9:bf:7d:69:47:ca:5a:2a:dc:0c:79:3f:
73:a5:74:a2:70:56:a8:f4:17:42:af:4f:a6:bf:38:6e:b7:c7:
bb:d7:58:1b:1a:71:85:18:17:a3:84:f2:7f:9d:a6:f1:14:b1:
3b:a9:84:24:38:56:60:2f:ce:f6:33:1a:47:e2:0f:b4:16:be:
c2:3a:42:54:e0:97:56:82:d4:20:97:cd:b7:19:3a:be:5f:85:
32:01:92:cd:f9:4e:6d:21:08:f3:56:e6:e6:78:bf:b3:f4:7c:
19:dc:81:b2:6f:cc:60:6e:7d:a6:0b:b1:ae:d2:bc:d0:ee:9f:
3d:65:80:42:a3:99:03:3e:76:ef:d4:ad:fe:b9:d1:50:21:6c:
3f:02:cb:a7:11:24:1d:4f:9c:a8:27:5f:d0:42:d6:fb:68:03:
71:28:f3:32:7e:f1:e1:94:f7:b5:34:16:d7:25:2a:89:1d:b2:
70:06:07:55:04:78:a1:dc:41:8c:e3:5a:03:ba:d8:12:02:cf:
85:c1:da:81:65:bd:7f:1f:5c:c2:3d:12:4b:1a:b9:4d:7d:70:
db:46:25:07:5e:94:15:e8:cc:9b:e1:7c:df:b1:27:93:ac:b0:
ba:5f:33:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:37:35 2025 by rpki-client