Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/5HtwxhoGPPKk6ukFZI6uw8rKK9A.roa
File: 5HtwxhoGPPKk6ukFZI6uw8rKK9A.roa (raw, json)
Hash identifier: lU+MzOKostb6fGQqlwKgm9QDgsPqSEoFhGjj58t4geM=
Subject key identifier: E4:7B:70:C6:1A:06:3C:F2:A4:EA:E9:05:64:8E:AE:C3:CA:CA:2B:D0
Certificate issuer: /CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Certificate serial: 0193D8D33C42E1E4098B738022EE3F0547AD
Authority key identifier: 64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/5HtwxhoGPPKk6ukFZI6uw8rKK9A.roa
Signing time: Wed 18 Dec 2024 08:12:22 +0000
ROA not before: Wed 18 Dec 2024 08:12:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49367
IP address blocks: 31.193.188.0/24 maxlen: 24
37.156.174.0/24 maxlen: 24
45.83.56.0/22 maxlen: 22
45.86.144.0/22 maxlen: 22
77.81.103.0/24 maxlen: 24
85.204.255.0/24 maxlen: 24
86.107.110.0/24 maxlen: 24
89.34.236.0/23 maxlen: 23
89.34.239.0/24 maxlen: 24
89.39.254.0/24 maxlen: 24
89.40.142.0/23 maxlen: 23
89.40.227.0/24 maxlen: 24
89.42.134.0/24 maxlen: 24
89.43.34.0/24 maxlen: 24
89.43.35.0/24 maxlen: 24
89.43.52.0/24 maxlen: 24
91.212.52.0/24 maxlen: 24
91.229.186.0/24 maxlen: 24
93.113.144.0/21 maxlen: 21
93.113.144.0/22 maxlen: 22
93.113.144.0/24 maxlen: 24
93.113.145.0/24 maxlen: 24
93.113.146.0/24 maxlen: 24
93.113.147.0/24 maxlen: 24
93.113.148.0/22 maxlen: 22
93.113.148.0/24 maxlen: 24
93.113.149.0/24 maxlen: 24
93.113.150.0/24 maxlen: 24
93.113.151.0/24 maxlen: 24
94.176.212.0/24 maxlen: 24
94.177.21.0/24 maxlen: 24
94.177.48.0/23 maxlen: 23
185.184.240.0/22 maxlen: 22
185.184.240.0/24 maxlen: 24
185.184.241.0/24 maxlen: 24
185.184.242.0/24 maxlen: 24
185.184.243.0/24 maxlen: 24
188.208.16.0/23 maxlen: 23
188.208.16.0/24 maxlen: 24
188.208.17.0/24 maxlen: 24
188.211.248.0/24 maxlen: 24
188.215.6.0/23 maxlen: 23
188.215.6.0/24 maxlen: 24
188.215.7.0/24 maxlen: 24
188.240.228.0/23 maxlen: 23
188.240.228.0/24 maxlen: 24
188.240.229.0/24 maxlen: 24
193.239.140.0/23 maxlen: 23
217.198.177.0/24 maxlen: 24
2a04:68c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 18 Dec 2024 13:40:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d8:d3:3c:42:e1:e4:09:8b:73:80:22:ee:3f:05:47:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Validity
Not Before: Dec 18 08:12:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e47b70c61a063cf2a4eae905648eaec3caca2bd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:dd:e7:53:4b:67:41:e0:d2:69:1e:23:0f:3d:
ee:8e:bb:3e:e9:84:93:52:ef:63:f2:6f:68:6b:e2:
ec:f2:f2:11:23:30:e9:94:81:f9:d3:3c:54:1b:7d:
4a:c6:89:7d:21:fe:9a:19:f7:90:d6:e2:cc:09:2b:
eb:69:51:c2:b4:21:95:24:07:b3:5e:6c:bc:5f:59:
1a:2c:0c:fa:a4:fc:e5:9b:03:1d:11:e6:aa:57:ff:
6c:47:4c:25:e4:9a:cd:f9:8a:cb:36:3c:47:81:49:
41:1a:9b:84:31:58:56:2d:02:56:16:e9:f7:d4:7b:
42:98:d6:f1:1c:fc:cc:88:ef:d9:78:46:15:39:fa:
43:56:78:45:b0:e4:f7:7b:88:2a:30:cc:6c:e6:01:
90:44:9e:6d:72:44:d9:19:0e:12:bc:72:45:dd:2f:
09:6f:ce:b9:56:ce:37:2e:c0:e7:27:b7:50:1d:e0:
ec:3e:20:d0:20:5f:16:d6:85:06:b7:e9:37:66:73:
73:15:12:35:a8:95:43:07:92:c0:51:6a:60:54:34:
fd:27:19:ca:71:3f:b3:54:5f:2d:cd:21:11:72:95:
c9:67:71:dc:ca:0a:e8:03:3e:df:de:07:3e:d2:df:
35:05:4e:bb:e0:40:38:29:8e:0e:5a:27:ad:3e:11:
86:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:7B:70:C6:1A:06:3C:F2:A4:EA:E9:05:64:8E:AE:C3:CA:CA:2B:D0
X509v3 Authority Key Identifier:
keyid:64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/5HtwxhoGPPKk6ukFZI6uw8rKK9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/ZPpm-4SngaBYT9DRwt85vaR2BRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.188.0/24
37.156.174.0/24
45.83.56.0/22
45.86.144.0/22
77.81.103.0/24
85.204.255.0/24
86.107.110.0/24
89.34.236.0/23
89.34.239.0/24
89.39.254.0/24
89.40.142.0/23
89.40.227.0/24
89.42.134.0/24
89.43.34.0/23
89.43.52.0/24
91.212.52.0/24
91.229.186.0/24
93.113.144.0/21
94.176.212.0/24
94.177.21.0/24
94.177.48.0/23
185.184.240.0/22
188.208.16.0/23
188.211.248.0/24
188.215.6.0/23
188.240.228.0/23
193.239.140.0/23
217.198.177.0/24
IPv6:
2a04:68c0::/32
Signature Algorithm: sha256WithRSAEncryption
ce:f3:88:3e:54:e6:cf:a8:c2:74:39:67:73:b9:51:7b:0a:16:
b4:ee:38:11:15:7a:19:c7:88:3a:20:7b:c7:f3:c2:2f:dd:fd:
8e:a6:0e:56:fc:2f:64:aa:bb:91:b5:61:c9:a4:37:09:73:93:
de:e1:33:36:63:bd:9e:a8:ec:13:91:08:c1:e5:3f:2d:a5:ea:
0b:49:48:d4:24:11:89:91:d4:3c:1d:25:b4:a4:a9:17:43:c9:
5d:62:e1:66:2b:22:83:ff:ef:cb:b7:70:04:c2:7b:12:90:1b:
d9:31:5b:0b:02:26:14:5c:19:b6:f6:d1:5e:48:f7:89:e0:b5:
e9:8e:84:d0:0e:d2:ba:91:8a:91:47:62:6f:c5:bf:75:6b:f9:
5e:35:fa:03:b1:f0:97:9a:ac:10:fe:d0:d1:d7:f7:fc:58:21:
1e:2d:79:cd:fa:0a:04:af:86:6a:3d:e7:62:41:d1:5e:09:57:
a9:a8:7c:68:b7:19:6f:cb:7a:73:43:b5:40:cd:0d:db:e7:75:
a3:8d:d8:99:96:ca:4e:75:85:09:83:47:0c:6c:b8:e5:e0:fb:
d3:8c:9a:53:11:de:03:aa:33:a7:d5:94:35:9e:e9:f2:ea:8e:
14:48:e1:41:d9:fe:5c:d8:24:65:f6:0e:77:7d:b5:d7:e7:de:
b9:cc:53:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 16:03:41 2025 by rpki-client