Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/Vw2pXAO7GekR_xLw9xqgdbRpJAc.roa
File: Vw2pXAO7GekR_xLw9xqgdbRpJAc.roa (raw, json)
Hash identifier: k1jyzSz5mM1CXSeq2CDUCETeHd17Hj9k650nuLRf/rE=
Subject key identifier: 57:0D:A9:5C:03:BB:19:E9:11:FF:12:F0:F7:1A:A0:75:B4:69:24:07
Certificate issuer: /CN=72e81fb5cf0fb32c4575f8413acbd41aa84b82f4
Certificate serial: 0190016274581AD42E8576F4C520DF60A849
Authority key identifier: 72:E8:1F:B5:CF:0F:B3:2C:45:75:F8:41:3A:CB:D4:1A:A8:4B:82:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cugftc8PsyxFdfhBOsvUGqhLgvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/Vw2pXAO7GekR_xLw9xqgdbRpJAc.roa
Signing time: Mon 10 Jun 2024 09:02:27 +0000
ROA not before: Mon 10 Jun 2024 09:02:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15695
IP address blocks: 5.253.88.0/24 maxlen: 24
5.253.89.0/24 maxlen: 24
5.253.90.0/24 maxlen: 24
5.253.91.0/24 maxlen: 24
37.26.224.0/24 maxlen: 24
37.26.225.0/24 maxlen: 24
37.26.226.0/24 maxlen: 24
37.26.227.0/24 maxlen: 24
37.26.228.0/24 maxlen: 24
37.26.229.0/24 maxlen: 24
37.26.230.0/24 maxlen: 24
37.26.231.0/24 maxlen: 24
45.81.220.0/24 maxlen: 24
45.81.221.0/24 maxlen: 24
45.81.222.0/24 maxlen: 24
45.81.223.0/24 maxlen: 24
45.93.84.0/24 maxlen: 24
45.93.85.0/24 maxlen: 24
45.93.87.0/24 maxlen: 24
45.94.190.0/24 maxlen: 24
45.95.216.0/24 maxlen: 24
45.95.217.0/24 maxlen: 24
45.95.218.0/24 maxlen: 24
45.95.219.0/24 maxlen: 24
63.247.192.0/24 maxlen: 24
63.247.193.0/24 maxlen: 24
63.247.194.0/24 maxlen: 24
63.247.195.0/24 maxlen: 24
63.247.196.0/24 maxlen: 24
63.247.197.0/24 maxlen: 24
63.247.198.0/24 maxlen: 24
63.247.199.0/24 maxlen: 24
63.247.200.0/24 maxlen: 24
63.247.201.0/24 maxlen: 24
63.247.202.0/24 maxlen: 24
63.247.203.0/24 maxlen: 24
63.247.204.0/24 maxlen: 24
63.247.205.0/24 maxlen: 24
63.247.206.0/24 maxlen: 24
63.247.207.0/24 maxlen: 24
86.48.208.0/24 maxlen: 24
86.48.209.0/24 maxlen: 24
86.48.210.0/24 maxlen: 24
86.48.211.0/24 maxlen: 24
86.48.212.0/24 maxlen: 24
86.48.216.0/24 maxlen: 24
86.48.217.0/24 maxlen: 24
86.48.218.0/24 maxlen: 24
86.48.219.0/24 maxlen: 24
86.48.220.0/24 maxlen: 24
86.48.221.0/24 maxlen: 24
86.48.222.0/24 maxlen: 24
86.48.223.0/24 maxlen: 24
86.48.224.0/24 maxlen: 24
86.48.240.0/24 maxlen: 24
86.48.241.0/24 maxlen: 24
86.48.242.0/24 maxlen: 24
91.103.16.0/24 maxlen: 24
91.103.17.0/24 maxlen: 24
91.103.18.0/24 maxlen: 24
91.103.19.0/24 maxlen: 24
91.103.21.0/24 maxlen: 24
91.103.23.0/24 maxlen: 24
185.62.116.0/24 maxlen: 24
185.62.117.0/24 maxlen: 24
185.62.118.0/24 maxlen: 24
185.62.119.0/24 maxlen: 24
193.160.134.0/24 maxlen: 24
193.160.135.0/24 maxlen: 24
195.238.244.0/24 maxlen: 24
216.172.64.0/24 maxlen: 24
216.172.65.0/24 maxlen: 24
216.172.66.0/24 maxlen: 24
216.172.67.0/24 maxlen: 24
216.172.68.0/24 maxlen: 24
216.172.69.0/24 maxlen: 24
216.172.70.0/24 maxlen: 24
216.172.71.0/24 maxlen: 24
216.172.72.0/24 maxlen: 24
216.172.73.0/24 maxlen: 24
216.172.74.0/24 maxlen: 24
216.172.75.0/24 maxlen: 24
216.172.76.0/24 maxlen: 24
216.172.77.0/24 maxlen: 24
216.172.78.0/24 maxlen: 24
216.172.79.0/24 maxlen: 24
2a00:cb8:31::/48 maxlen: 48
2a00:cb8:33::/48 maxlen: 48
2a00:cb8:34::/48 maxlen: 48
2a00:cb8:39::/48 maxlen: 48
2a00:cb8:41::/48 maxlen: 48
2a00:cb8:44::/48 maxlen: 48
2a00:cb8:48::/48 maxlen: 48
2a00:cb8:49::/48 maxlen: 48
2a00:cb8:144::/48 maxlen: 48
2a00:cb8:353::/48 maxlen: 48
2a00:cb8:971::/48 maxlen: 48
2a0c:5900:3000::/36 maxlen: 36
2a0c:5900:4000::/36 maxlen: 36
2a0c:5900:5000::/36 maxlen: 36
2a0c:5900:8000::/36 maxlen: 36
2a0c:5900:9000::/36 maxlen: 36
Validation: Failed, certificate revoked on Mon 10 Jun 2024 22:28:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:01:62:74:58:1a:d4:2e:85:76:f4:c5:20:df:60:a8:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e81fb5cf0fb32c4575f8413acbd41aa84b82f4
Validity
Not Before: Jun 10 09:02:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=570da95c03bb19e911ff12f0f71aa075b4692407
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:48:88:51:ab:e1:1f:9e:18:2c:e8:2d:15:d7:
2a:a4:51:eb:47:2b:1e:c3:73:e3:30:05:59:7a:27:
36:1c:a4:a5:15:bf:53:67:04:0c:3b:1c:e6:30:05:
26:c4:b1:77:d8:a3:ce:e8:3a:85:57:be:d8:39:2c:
3d:20:55:c2:1b:1f:33:7f:a1:5e:5f:70:c1:35:3a:
01:f9:65:30:2c:37:2d:99:e6:58:a9:53:4a:58:2d:
66:38:21:6c:1d:0a:8b:61:df:15:79:46:4a:6b:fb:
44:c2:b8:9e:fb:32:ac:a0:fd:95:30:6b:9e:71:b2:
03:7a:8d:fa:a6:e3:47:11:14:6f:39:34:65:6f:ec:
09:ea:d5:34:88:27:7e:3c:42:02:bb:3a:99:b2:c7:
70:57:0d:3f:a6:11:d4:f6:04:36:01:7f:7d:50:57:
b5:07:9b:08:e2:42:0f:23:d9:5b:9d:5f:2a:14:2d:
22:7e:48:53:1e:8c:ea:e0:07:4e:a8:9f:90:58:b4:
8e:8b:7e:c3:cf:68:95:51:b8:8f:2c:41:38:b6:10:
0a:45:c1:3b:5a:0c:4a:13:64:a7:5a:64:af:84:e8:
7b:61:e6:cc:8d:12:58:91:40:18:ba:c5:31:15:30:
38:60:fb:bd:d0:8b:2a:7b:07:16:b5:13:53:87:dc:
17:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:0D:A9:5C:03:BB:19:E9:11:FF:12:F0:F7:1A:A0:75:B4:69:24:07
X509v3 Authority Key Identifier:
keyid:72:E8:1F:B5:CF:0F:B3:2C:45:75:F8:41:3A:CB:D4:1A:A8:4B:82:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cugftc8PsyxFdfhBOsvUGqhLgvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/Vw2pXAO7GekR_xLw9xqgdbRpJAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/cugftc8PsyxFdfhBOsvUGqhLgvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.88.0/22
37.26.224.0/21
45.81.220.0/22
45.93.84.0/23
45.93.87.0/24
45.94.190.0/24
45.95.216.0/22
63.247.192.0/20
86.48.208.0-86.48.212.255
86.48.216.0-86.48.224.255
86.48.240.0-86.48.242.255
91.103.16.0/22
91.103.21.0/24
91.103.23.0/24
185.62.116.0/22
193.160.134.0/23
195.238.244.0/24
216.172.64.0/20
IPv6:
2a00:cb8:31::/48
2a00:cb8:33::-2a00:cb8:34:ffff:ffff:ffff:ffff:ffff
2a00:cb8:39::/48
2a00:cb8:41::/48
2a00:cb8:44::/48
2a00:cb8:48::/47
2a00:cb8:144::/48
2a00:cb8:353::/48
2a00:cb8:971::/48
2a0c:5900:3000::-2a0c:5900:5fff:ffff:ffff:ffff:ffff:ffff
2a0c:5900:8000::/35
Signature Algorithm: sha256WithRSAEncryption
2f:d9:cb:10:22:46:6b:9c:0b:5e:ed:2a:34:68:da:93:7e:99:
c3:dc:03:62:f4:a2:45:43:08:87:db:7e:0c:cd:3c:71:90:95:
36:82:c5:af:fd:51:93:26:11:f3:5f:3f:5b:65:10:90:87:84:
50:94:ba:d9:05:36:2a:24:28:0c:fe:0d:ac:73:2a:19:78:4b:
c4:03:4d:6f:77:e3:8b:24:98:1c:58:8e:92:94:54:e3:d2:79:
06:7a:64:62:29:1f:c2:f0:4c:14:c7:d5:81:f4:f4:13:3b:6d:
3a:f9:8f:03:a5:db:5b:43:fc:7d:e5:dd:86:40:4e:b4:b6:d1:
49:02:87:3a:65:89:52:41:a3:0c:ee:1a:44:bc:14:31:c6:d4:
25:7e:9a:cd:bd:46:45:21:77:f9:db:07:bf:12:7c:94:90:56:
4e:8a:37:e4:9d:1d:61:51:0f:ef:0f:69:5c:0d:e8:11:3c:d2:
5e:a3:29:87:2b:10:00:cc:a3:4e:82:45:65:97:49:3d:76:09:
08:ed:e8:39:64:9f:63:ee:ef:2c:1f:00:da:85:98:99:2f:8e:
66:1a:82:8f:9f:9b:42:8f:ff:c5:c0:7c:2d:f8:7b:c3:a9:80:
3b:06:55:e4:00:00:20:06:b5:a6:8b:3a:8c:8d:33:e8:d2:d7:
5c:df:e5:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 10 23:03:24 2024 by rpki-client on console-fra.rpki-client.org