Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/2itnvT66XtznwCp9qQfet1rQON8.roa
File: 2itnvT66XtznwCp9qQfet1rQON8.roa (raw, json)
Hash identifier: Mzz64qdqiDSpwNtboeWsqRhUnWCptP4wqWpcDe4Jrmg=
Subject key identifier: DA:2B:67:BD:3E:BA:5E:DC:E7:C0:2A:7D:A9:07:DE:B7:5A:D0:38:DF
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 0190E669638B91E55A1E29362C5638982545
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/2itnvT66XtznwCp9qQfet1rQON8.roa
Signing time: Wed 24 Jul 2024 20:23:04 +0000
ROA not before: Wed 24 Jul 2024 20:23:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 2.56.112.0/24 maxlen: 24
2.56.113.0/24 maxlen: 24
5.183.128.0/24 maxlen: 24
31.222.248.0/24 maxlen: 24
45.132.48.0/24 maxlen: 24
45.157.136.0/24 maxlen: 24
62.68.83.0/24 maxlen: 24
62.68.86.0/24 maxlen: 24
62.68.87.0/24 maxlen: 24
62.204.36.0/24 maxlen: 24
62.204.57.0/24 maxlen: 24
62.233.35.0/24 maxlen: 24
62.233.45.0/24 maxlen: 24
62.233.49.0/24 maxlen: 24
62.233.56.0/24 maxlen: 24
62.233.60.0/24 maxlen: 24
80.68.145.0/24 maxlen: 24
80.68.158.0/24 maxlen: 24
80.91.209.0/24 maxlen: 24
80.91.210.0/24 maxlen: 24
91.213.117.0/24 maxlen: 24
91.226.247.0/24 maxlen: 24
91.242.225.0/24 maxlen: 24
91.242.227.0/24 maxlen: 24
91.242.236.0/24 maxlen: 24
91.242.238.0/24 maxlen: 24
93.177.104.0/24 maxlen: 24
93.177.105.0/24 maxlen: 24
93.177.107.0/24 maxlen: 24
94.143.226.0/24 maxlen: 24
94.158.191.0/24 maxlen: 24
130.193.79.0/24 maxlen: 24
130.255.169.0/24 maxlen: 24
146.19.108.0/24 maxlen: 24
146.19.137.0/24 maxlen: 24
146.19.148.0/24 maxlen: 24
146.19.150.0/24 maxlen: 24
146.19.152.0/24 maxlen: 24
146.19.185.0/24 maxlen: 24
146.19.187.0/24 maxlen: 24
146.19.190.0/24 maxlen: 24
146.19.194.0/24 maxlen: 24
176.56.37.0/24 maxlen: 24
176.56.38.0/24 maxlen: 24
178.211.140.0/24 maxlen: 24
185.122.206.0/24 maxlen: 24
185.140.172.0/24 maxlen: 24
185.198.153.0/24 maxlen: 24
185.218.1.0/24 maxlen: 24
185.232.47.0/24 maxlen: 24
193.3.22.0/24 maxlen: 24
193.141.53.0/24 maxlen: 24
193.239.209.0/24 maxlen: 24
194.26.216.0/24 maxlen: 24
194.26.221.0/24 maxlen: 24
194.32.243.0/24 maxlen: 24
195.64.106.0/24 maxlen: 24
195.64.109.0/24 maxlen: 24
195.64.110.0/24 maxlen: 24
195.64.112.0/24 maxlen: 24
195.64.114.0/24 maxlen: 24
195.64.117.0/24 maxlen: 24
195.93.249.0/24 maxlen: 24
195.96.136.0/24 maxlen: 24
195.96.146.0/24 maxlen: 24
195.96.148.0/24 maxlen: 24
195.96.155.0/24 maxlen: 24
195.96.157.0/24 maxlen: 24
212.18.96.0/24 maxlen: 24
212.18.103.0/24 maxlen: 24
212.52.5.0/24 maxlen: 24
217.114.32.0/24 maxlen: 24
217.119.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Sep 2024 16:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e6:69:63:8b:91:e5:5a:1e:29:36:2c:56:38:98:25:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Jul 24 20:23:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=da2b67bd3eba5edce7c02a7da907deb75ad038df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:34:3d:15:19:57:7e:66:b3:0a:1c:fa:8d:24:
3e:a3:d1:41:ce:01:f8:01:08:df:cc:5e:1d:6d:36:
00:39:6c:d8:b5:db:ba:e2:83:72:e8:08:0d:29:65:
9c:71:47:ce:91:a4:d3:ca:90:39:fc:29:86:dc:42:
10:d6:cd:f1:64:88:74:f1:b2:24:96:fe:be:01:6f:
b9:a9:85:f8:9f:8b:27:0a:fa:55:9a:1b:dc:e3:1e:
17:f5:4e:87:f1:de:1c:4d:26:3e:79:77:ec:90:16:
ed:5e:ca:6c:e6:e3:46:ae:fd:1c:ca:cc:83:75:00:
1c:1b:4a:c6:3e:ca:d3:c1:56:77:e5:66:c1:e8:43:
14:80:6e:68:9d:48:21:70:ba:8c:a0:2d:d9:07:38:
a0:8e:6f:d0:2b:4b:17:e1:5a:0e:f3:dc:ac:b1:b7:
59:f0:18:34:3a:1c:9a:85:63:d8:94:19:9b:16:cb:
b9:dd:d0:05:79:31:e7:d2:df:16:0e:34:2b:d8:40:
0d:96:7c:c9:53:39:d8:e7:61:d8:0b:96:03:6b:2c:
44:20:e2:cd:86:94:7e:13:a7:a2:07:b5:28:f2:ca:
1b:35:21:d4:aa:22:c2:fb:1c:2a:80:c4:b4:dc:ba:
a4:d6:e2:d0:36:8e:9a:87:75:f9:15:b7:62:4a:cc:
3f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:2B:67:BD:3E:BA:5E:DC:E7:C0:2A:7D:A9:07:DE:B7:5A:D0:38:DF
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/2itnvT66XtznwCp9qQfet1rQON8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.112.0/23
5.183.128.0/24
31.222.248.0/24
45.132.48.0/24
45.157.136.0/24
62.68.83.0/24
62.68.86.0/23
62.204.36.0/24
62.204.57.0/24
62.233.35.0/24
62.233.45.0/24
62.233.49.0/24
62.233.56.0/24
62.233.60.0/24
80.68.145.0/24
80.68.158.0/24
80.91.209.0-80.91.210.255
91.213.117.0/24
91.226.247.0/24
91.242.225.0/24
91.242.227.0/24
91.242.236.0/24
91.242.238.0/24
93.177.104.0/23
93.177.107.0/24
94.143.226.0/24
94.158.191.0/24
130.193.79.0/24
130.255.169.0/24
146.19.108.0/24
146.19.137.0/24
146.19.148.0/24
146.19.150.0/24
146.19.152.0/24
146.19.185.0/24
146.19.187.0/24
146.19.190.0/24
146.19.194.0/24
176.56.37.0-176.56.38.255
178.211.140.0/24
185.122.206.0/24
185.140.172.0/24
185.198.153.0/24
185.218.1.0/24
185.232.47.0/24
193.3.22.0/24
193.141.53.0/24
193.239.209.0/24
194.26.216.0/24
194.26.221.0/24
194.32.243.0/24
195.64.106.0/24
195.64.109.0-195.64.110.255
195.64.112.0/24
195.64.114.0/24
195.64.117.0/24
195.93.249.0/24
195.96.136.0/24
195.96.146.0/24
195.96.148.0/24
195.96.155.0/24
195.96.157.0/24
212.18.96.0/24
212.18.103.0/24
212.52.5.0/24
217.114.32.0/24
217.119.130.0/24
Signature Algorithm: sha256WithRSAEncryption
90:1a:2c:b9:e8:25:10:08:6a:fd:9d:a5:89:6f:29:0c:f0:a6:
aa:88:fd:87:50:0f:38:cb:d9:3e:16:4a:b9:a5:5f:d9:da:81:
4b:f7:a3:c8:5f:34:ef:12:53:6e:51:d0:7d:be:ac:65:1d:0e:
16:e0:6e:c2:19:60:3d:03:af:ae:c6:25:ab:78:b2:35:b3:42:
0d:b4:1a:5d:f3:de:f5:50:ee:15:a5:e8:93:3d:83:ce:91:cf:
72:1e:77:8c:83:ea:1e:57:a5:f4:ec:98:e3:8a:cb:04:6f:89:
07:66:85:d3:70:01:a5:7e:a9:7f:52:bd:c0:a8:9b:2a:f6:a8:
74:a2:16:22:1e:63:b1:21:d0:11:19:94:af:ed:4d:f5:69:5d:
19:ca:5d:bb:3c:d6:fe:ab:3f:2b:71:c7:8b:86:63:c1:12:bb:
4f:60:e1:fe:8d:15:38:09:83:2e:24:b4:cf:d0:d3:92:9e:52:
28:2b:ba:e3:b5:34:34:4f:51:29:d6:52:d4:98:70:ce:6a:c0:
65:b2:4d:8e:72:62:0e:61:15:c3:7e:e8:8d:a9:d2:49:75:44:
53:a4:45:38:14:97:3d:3e:46:70:d8:03:33:17:9c:a7:18:be:
5a:28:1c:ac:f8:c4:af:2c:48:09:35:e9:84:51:4d:24:cb:9d:
a9:cf:9b:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 5 18:20:21 2024 by rpki-client on console-fra.rpki-client.org