Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/xPKF4eXLerMRLL1A0xxf3SPmRrU.roa
File: xPKF4eXLerMRLL1A0xxf3SPmRrU.roa (raw, json)
Hash identifier: O7rBsSgsM9ok5RpBOlYEggfU8hUpxYaJ/DScgq4KSLU=
Subject key identifier: C4:F2:85:E1:E5:CB:7A:B3:11:2C:BD:40:D3:1C:5F:DD:23:E6:46:B5
Certificate issuer: /CN=49ee1194bd81d1946c39f10f7fdfdf22d1a03112
Certificate serial: 018D461AD2F6D7277D9020A2DD25F05B4B0A
Authority key identifier: 49:EE:11:94:BD:81:D1:94:6C:39:F1:0F:7F:DF:DF:22:D1:A0:31:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Se4RlL2B0ZRsOfEPf9_fItGgMRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/xPKF4eXLerMRLL1A0xxf3SPmRrU.roa
Signing time: Fri 26 Jan 2024 14:09:39 +0000
ROA not before: Fri 26 Jan 2024 14:09:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59441
IP address blocks: 5.144.128.0/21 maxlen: 21
5.144.128.0/22 maxlen: 22
5.144.128.0/23 maxlen: 23
5.144.128.0/24 maxlen: 24
5.144.129.0/24 maxlen: 24
5.144.130.0/23 maxlen: 24
5.144.130.0/24 maxlen: 24
5.144.131.0/24 maxlen: 24
5.144.132.0/22 maxlen: 22
5.144.132.0/23 maxlen: 24
5.144.132.0/24 maxlen: 24
5.144.133.0/24 maxlen: 24
5.144.134.0/23 maxlen: 24
5.144.134.0/24 maxlen: 24
5.144.135.0/24 maxlen: 24
45.92.92.0/22 maxlen: 24
45.92.92.0/23 maxlen: 24
45.92.92.0/24 maxlen: 24
45.92.93.0/24 maxlen: 24
45.92.94.0/23 maxlen: 24
45.92.94.0/24 maxlen: 24
45.92.95.0/24 maxlen: 24
45.138.132.0/22 maxlen: 24
45.138.132.0/23 maxlen: 24
45.138.132.0/24 maxlen: 24
45.138.133.0/24 maxlen: 24
45.138.134.0/24 maxlen: 24
45.138.135.0/24 maxlen: 24
185.83.112.0/22 maxlen: 22
185.83.112.0/23 maxlen: 23
185.83.112.0/24 maxlen: 24
185.83.113.0/24 maxlen: 24
185.83.114.0/23 maxlen: 24
185.83.114.0/24 maxlen: 24
185.83.115.0/24 maxlen: 24
185.83.181.0/24 maxlen: 24
185.83.183.0/24 maxlen: 24
185.169.6.0/24 maxlen: 24
185.173.104.0/22 maxlen: 24
185.173.104.0/24 maxlen: 24
185.173.105.0/24 maxlen: 24
185.173.106.0/24 maxlen: 24
185.173.107.0/24 maxlen: 24
185.205.203.0/24 maxlen: 24
185.208.78.0/23 maxlen: 24
185.208.78.0/24 maxlen: 24
185.208.79.0/24 maxlen: 24
193.3.231.0/24 maxlen: 24
2a05:9a00::/29 maxlen: 29
2a05:9a00::/48 maxlen: 48
2a05:9a00:1::/48 maxlen: 48
2a05:9a00:2::/48 maxlen: 48
2a05:9a00:3::/48 maxlen: 48
2a05:9a00:4::/48 maxlen: 48
2a05:9a00:1000::/48 maxlen: 48
2a05:9a00:1001::/48 maxlen: 48
2a05:9a00:1002::/48 maxlen: 48
2a05:9a00:1003::/48 maxlen: 48
2a07:e440::/29 maxlen: 29
2a10:4340::/29 maxlen: 29
2a10:5c40::/29 maxlen: 29
2a10:6140::/29 maxlen: 29
2a10:b800::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 10 Feb 2024 11:27:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:46:1a:d2:f6:d7:27:7d:90:20:a2:dd:25:f0:5b:4b:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49ee1194bd81d1946c39f10f7fdfdf22d1a03112
Validity
Not Before: Jan 26 14:09:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c4f285e1e5cb7ab3112cbd40d31c5fdd23e646b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c6:57:72:2d:83:cc:c4:08:07:37:33:49:4f:
82:b0:98:cb:3c:42:46:e6:d2:d3:15:c9:36:35:e9:
a2:50:8e:10:9f:19:43:aa:67:30:2e:f6:8b:a0:d2:
67:27:6d:2a:5d:d0:e5:8d:37:56:e7:82:95:18:bd:
cd:13:f8:c5:d4:07:1f:98:bd:92:82:00:b8:af:b0:
55:a5:62:cb:fe:26:ba:ee:f9:3b:52:4a:ed:41:d8:
3e:ff:de:19:b8:f3:d8:b4:14:b8:d9:a8:8b:0e:22:
c0:c8:b1:f8:12:a5:e0:52:e7:b7:20:d4:06:a1:c5:
92:5f:00:75:6e:88:72:59:01:07:6e:c1:8b:5c:ad:
8f:27:78:f4:4d:1c:75:23:3b:3f:73:54:95:3b:d8:
db:9f:47:f5:e4:c5:f0:94:4d:86:93:c7:1a:df:cf:
dd:ec:d9:2f:a9:c2:e6:eb:2c:9a:20:ee:df:45:c1:
11:53:71:7c:7d:34:58:bc:91:d7:48:b2:a6:9f:dc:
1e:9e:ab:d0:4c:98:81:4d:e7:37:0e:2b:2f:af:eb:
0f:54:7c:4c:15:aa:95:b6:81:46:43:64:96:03:00:
2f:04:03:a0:42:3a:62:31:9b:a4:1f:59:64:0e:b6:
d9:a7:19:d5:ed:bd:a6:ea:6f:42:07:af:8f:2b:e4:
46:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:F2:85:E1:E5:CB:7A:B3:11:2C:BD:40:D3:1C:5F:DD:23:E6:46:B5
X509v3 Authority Key Identifier:
keyid:49:EE:11:94:BD:81:D1:94:6C:39:F1:0F:7F:DF:DF:22:D1:A0:31:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Se4RlL2B0ZRsOfEPf9_fItGgMRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/xPKF4eXLerMRLL1A0xxf3SPmRrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/Se4RlL2B0ZRsOfEPf9_fItGgMRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.128.0/21
45.92.92.0/22
45.138.132.0/22
185.83.112.0/22
185.83.181.0/24
185.83.183.0/24
185.169.6.0/24
185.173.104.0/22
185.205.203.0/24
185.208.78.0/23
193.3.231.0/24
IPv6:
2a05:9a00::/29
2a07:e440::/29
2a10:4340::/29
2a10:5c40::/29
2a10:6140::/29
2a10:b800::/29
Signature Algorithm: sha256WithRSAEncryption
5d:cb:b7:fc:cf:a5:7a:a8:0d:25:f6:d0:c4:ee:4d:58:40:ed:
43:a5:0a:96:f9:05:94:24:8f:cc:56:6a:33:e9:be:91:4f:e1:
a2:fa:96:e6:8c:cd:aa:f4:7a:82:85:aa:6d:f8:e6:a3:33:59:
cf:8e:14:cf:cd:b7:40:4d:bf:a8:ad:57:7e:47:90:39:7f:95:
a3:11:dc:71:d8:1f:aa:25:1b:08:e8:2c:40:86:41:2f:ea:16:
ff:d1:df:a5:73:05:19:ef:b7:a8:e7:98:37:b9:4a:3e:cb:88:
b3:35:4f:8d:b0:21:d3:d5:ef:23:21:da:f2:6b:7a:a4:2c:ae:
36:19:70:30:67:1c:e0:4a:a0:67:2a:6e:09:7d:24:d2:9e:e2:
34:e7:1f:1e:d2:c6:46:df:5b:78:8c:e2:3b:86:83:3d:6d:74:
78:bb:d4:89:7e:89:35:2e:31:e6:16:ef:cf:7f:7d:35:3e:20:
fe:d0:69:64:72:38:90:89:d3:9b:57:c7:22:84:7c:bc:e2:f6:
b6:22:7d:e7:50:18:6b:f3:3f:6e:2b:55:7c:a7:d8:34:8c:47:
35:d3:a0:b9:56:34:eb:4e:61:94:4e:ab:99:9e:5e:54:4b:8e:
36:00:cd:d6:a7:0a:c4:8e:08:06:0b:c9:d4:39:14:d9:b3:6f:
11:5f:da:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Feb 10 12:33:05 2024 by rpki-client on console-fra.rpki-client.org