Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/3wEzxYQks7SL6LW0zmFXdUsrPC4.roa
File: 3wEzxYQks7SL6LW0zmFXdUsrPC4.roa (raw, json)
Hash identifier: DFfoVVnXtCFFw6El21HNnDqROs5PmGyzqqVWkU3aTvQ=
Subject key identifier: DF:01:33:C5:84:24:B3:B4:8B:E8:B5:B4:CE:61:57:75:4B:2B:3C:2E
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018E0EF5EE1DCCF7D89CF11D40884ADD438B
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/3wEzxYQks7SL6LW0zmFXdUsrPC4.roa
Signing time: Tue 05 Mar 2024 14:13:02 +0000
ROA not before: Tue 05 Mar 2024 14:13:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 5.1.46.0/24 maxlen: 24
31.216.60.0/24 maxlen: 24
31.222.237.0/24 maxlen: 24
31.222.246.0/24 maxlen: 24
37.140.255.0/24 maxlen: 24
45.84.178.0/24 maxlen: 24
45.129.1.0/24 maxlen: 24
45.129.129.0/24 maxlen: 24
45.129.130.0/24 maxlen: 24
45.129.131.0/24 maxlen: 24
45.132.51.0/24 maxlen: 24
45.135.34.0/24 maxlen: 24
45.138.4.0/24 maxlen: 24
45.138.5.0/24 maxlen: 24
45.138.6.0/24 maxlen: 24
45.138.156.0/24 maxlen: 24
45.138.159.0/24 maxlen: 24
45.140.66.0/24 maxlen: 24
45.140.67.0/24 maxlen: 24
45.142.37.0/24 maxlen: 24
45.144.0.0/24 maxlen: 24
45.146.26.0/24 maxlen: 24
45.159.85.0/24 maxlen: 24
62.3.4.0/24 maxlen: 24
62.3.23.0/24 maxlen: 24
62.106.69.0/24 maxlen: 24
62.204.38.0/24 maxlen: 24
77.246.244.0/24 maxlen: 24
80.68.148.0/24 maxlen: 24
80.68.150.0/24 maxlen: 24
80.73.242.0/24 maxlen: 24
80.73.244.0/24 maxlen: 24
80.91.212.0/24 maxlen: 24
84.246.81.0/24 maxlen: 24
89.107.12.0/24 maxlen: 24
89.248.68.0/24 maxlen: 24
91.247.78.0/24 maxlen: 24
92.119.192.0/24 maxlen: 24
93.93.206.0/24 maxlen: 24
93.190.120.0/24 maxlen: 24
94.103.179.0/24 maxlen: 24
94.103.190.0/24 maxlen: 24
94.124.75.0/24 maxlen: 24
94.124.77.0/24 maxlen: 24
94.143.224.0/24 maxlen: 24
146.19.10.0/24 maxlen: 24
146.19.15.0/24 maxlen: 24
146.19.25.0/24 maxlen: 24
146.19.72.0/24 maxlen: 24
146.19.76.0/24 maxlen: 24
146.19.96.0/24 maxlen: 24
146.19.107.0/24 maxlen: 24
146.19.126.0/24 maxlen: 24
176.100.47.0/24 maxlen: 24
176.116.12.0/24 maxlen: 24
176.222.58.0/24 maxlen: 24
178.212.136.0/24 maxlen: 24
185.81.71.0/24 maxlen: 24
185.140.174.0/24 maxlen: 24
185.207.213.0/24 maxlen: 24
185.222.41.0/24 maxlen: 24
193.32.164.0/24 maxlen: 24
193.32.165.0/24 maxlen: 24
193.32.166.0/24 maxlen: 24
193.32.167.0/24 maxlen: 24
193.36.231.0/24 maxlen: 24
193.53.169.0/24 maxlen: 24
193.58.176.0/24 maxlen: 24
193.58.177.0/24 maxlen: 24
193.160.216.0/24 maxlen: 24
193.160.217.0/24 maxlen: 24
193.160.218.0/24 maxlen: 24
193.163.16.0/24 maxlen: 24
193.163.18.0/24 maxlen: 24
193.201.127.0/24 maxlen: 24
194.26.233.0/24 maxlen: 24
194.104.142.0/24 maxlen: 24
194.104.238.0/24 maxlen: 24
195.225.99.0/24 maxlen: 24
212.52.27.0/24 maxlen: 24
212.52.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Mar 2024 15:03:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0e:f5:ee:1d:cc:f7:d8:9c:f1:1d:40:88:4a:dd:43:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Mar 5 14:13:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=df0133c58424b3b48be8b5b4ce6157754b2b3c2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:62:c9:b0:d4:9a:d5:ea:05:5a:19:b2:01:55:
da:ae:3a:d3:66:2f:3b:4a:0a:19:a4:0e:41:1e:55:
cd:02:99:6d:03:e8:a8:b9:e7:fd:6d:5b:dd:36:40:
70:81:ba:32:5f:30:d1:b5:36:a7:d2:ff:50:94:21:
3f:0b:d1:c6:6a:24:07:ae:0b:b4:2f:53:72:bc:fa:
8c:30:ca:75:7b:47:d9:5b:dd:60:fd:86:3c:ef:75:
e9:29:65:93:8a:e7:d9:b7:bc:10:db:39:fb:62:b8:
9d:0c:de:dd:bd:ca:e5:6c:c9:84:22:48:f9:48:d2:
7f:e7:c8:a4:34:4c:e5:a8:2a:39:ae:7a:a9:0b:b0:
e7:e9:9b:f8:3a:7a:2e:fe:54:85:01:47:54:29:62:
0b:e3:d8:75:66:0e:de:ae:d8:2f:c8:21:54:6c:4a:
3c:a6:38:35:70:22:cd:bd:10:c1:d9:2b:e0:e5:8f:
ad:5f:b3:b5:0c:f7:0d:80:a5:ff:89:bb:47:77:c6:
60:47:e8:02:5a:c3:29:c7:0d:81:52:ca:b0:79:85:
54:29:c1:e5:6f:e3:d2:37:f4:9a:01:a0:be:22:ae:
82:f0:0c:76:fb:10:da:86:99:40:11:f0:b4:59:5d:
e6:51:92:e1:ec:7c:ad:39:f3:de:b2:7c:8f:43:69:
95:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:01:33:C5:84:24:B3:B4:8B:E8:B5:B4:CE:61:57:75:4B:2B:3C:2E
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/3wEzxYQks7SL6LW0zmFXdUsrPC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.46.0/24
31.216.60.0/24
31.222.237.0/24
31.222.246.0/24
37.140.255.0/24
45.84.178.0/24
45.129.1.0/24
45.129.129.0-45.129.131.255
45.132.51.0/24
45.135.34.0/24
45.138.4.0-45.138.6.255
45.138.156.0/24
45.138.159.0/24
45.140.66.0/23
45.142.37.0/24
45.144.0.0/24
45.146.26.0/24
45.159.85.0/24
62.3.4.0/24
62.3.23.0/24
62.106.69.0/24
62.204.38.0/24
77.246.244.0/24
80.68.148.0/24
80.68.150.0/24
80.73.242.0/24
80.73.244.0/24
80.91.212.0/24
84.246.81.0/24
89.107.12.0/24
89.248.68.0/24
91.247.78.0/24
92.119.192.0/24
93.93.206.0/24
93.190.120.0/24
94.103.179.0/24
94.103.190.0/24
94.124.75.0/24
94.124.77.0/24
94.143.224.0/24
146.19.10.0/24
146.19.15.0/24
146.19.25.0/24
146.19.72.0/24
146.19.76.0/24
146.19.96.0/24
146.19.107.0/24
146.19.126.0/24
176.100.47.0/24
176.116.12.0/24
176.222.58.0/24
178.212.136.0/24
185.81.71.0/24
185.140.174.0/24
185.207.213.0/24
185.222.41.0/24
193.32.164.0/22
193.36.231.0/24
193.53.169.0/24
193.58.176.0/23
193.160.216.0-193.160.218.255
193.163.16.0/24
193.163.18.0/24
193.201.127.0/24
194.26.233.0/24
194.104.142.0/24
194.104.238.0/24
195.225.99.0/24
212.52.27.0/24
212.52.31.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:24:c5:96:e3:8f:91:fd:55:c1:8a:20:33:28:a9:48:48:6b:
4b:b8:5a:52:01:20:65:e4:e2:1a:69:ac:63:c1:bd:86:97:ae:
56:80:b3:06:fd:93:56:6e:65:d5:5f:56:cf:90:35:e2:8a:24:
f1:b5:41:0d:91:21:15:31:45:8a:58:4e:d1:93:23:de:32:1e:
85:1d:58:63:5a:94:e6:9d:65:86:15:8e:e5:79:9b:8b:b1:fd:
25:69:c8:67:05:5b:76:77:cf:37:ec:33:33:26:05:17:86:13:
0b:fe:18:11:12:f1:aa:16:36:2b:c0:6f:a5:2a:02:be:18:da:
85:8b:04:71:58:7e:98:6a:d5:b9:cd:26:8b:d4:14:a1:00:28:
1c:dc:8b:a2:c5:4e:74:10:84:61:88:f8:7a:96:59:07:ba:af:
4d:de:9f:72:db:8f:3a:9c:2c:b3:6b:d6:ac:09:67:2a:11:7a:
0d:52:06:78:98:ca:1c:2e:c5:f7:f8:47:37:ee:22:14:12:c4:
b8:b9:96:2c:30:c2:47:61:0a:9a:c6:d7:fb:53:0e:bc:ff:30:
6e:78:0d:f3:61:88:73:cf:e6:fa:c3:8a:c1:aa:11:5e:1e:ad:
5b:73:73:b8:f2:d9:bd:2b:4c:ed:4f:e6:a9:ca:b6:84:d9:2d:
54:20:37:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:48 2024 by rpki-client on console-ams.rpki-client.org