Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/8UMW5sHtd6wMqKdUe5HkG4RZPn4.roa
File: 8UMW5sHtd6wMqKdUe5HkG4RZPn4.roa (raw, json)
Hash identifier: rBXrne00qTZi77HxN7+vR2R7FwexnqQ2uRz0JifdXFI=
Subject key identifier: F1:43:16:E6:C1:ED:77:AC:0C:A8:A7:54:7B:91:E4:1B:84:59:3E:7E
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018E144A0F9BB41AF546E12988AB1E7ACC34
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/8UMW5sHtd6wMqKdUe5HkG4RZPn4.roa
Signing time: Wed 06 Mar 2024 15:03:01 +0000
ROA not before: Wed 06 Mar 2024 15:03:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 5.1.46.0/24 maxlen: 24
31.216.60.0/24 maxlen: 24
31.222.237.0/24 maxlen: 24
31.222.246.0/24 maxlen: 24
37.140.255.0/24 maxlen: 24
45.84.178.0/24 maxlen: 24
45.129.1.0/24 maxlen: 24
45.129.129.0/24 maxlen: 24
45.129.130.0/24 maxlen: 24
45.129.131.0/24 maxlen: 24
45.132.51.0/24 maxlen: 24
45.135.34.0/24 maxlen: 24
45.138.4.0/24 maxlen: 24
45.138.5.0/24 maxlen: 24
45.138.6.0/24 maxlen: 24
45.138.156.0/24 maxlen: 24
45.138.159.0/24 maxlen: 24
45.140.66.0/24 maxlen: 24
45.140.67.0/24 maxlen: 24
45.142.37.0/24 maxlen: 24
45.144.0.0/24 maxlen: 24
45.146.26.0/24 maxlen: 24
45.159.85.0/24 maxlen: 24
62.3.4.0/24 maxlen: 24
62.3.23.0/24 maxlen: 24
62.106.69.0/24 maxlen: 24
62.204.38.0/24 maxlen: 24
77.246.244.0/24 maxlen: 24
80.68.148.0/24 maxlen: 24
80.68.150.0/24 maxlen: 24
80.73.242.0/24 maxlen: 24
80.73.244.0/24 maxlen: 24
80.91.212.0/24 maxlen: 24
84.246.81.0/24 maxlen: 24
89.107.12.0/24 maxlen: 24
89.248.68.0/24 maxlen: 24
91.247.78.0/24 maxlen: 24
92.119.192.0/24 maxlen: 24
93.93.206.0/24 maxlen: 24
93.190.120.0/24 maxlen: 24
94.103.179.0/24 maxlen: 24
94.103.190.0/24 maxlen: 24
94.124.75.0/24 maxlen: 24
94.124.77.0/24 maxlen: 24
94.143.224.0/24 maxlen: 24
146.19.10.0/24 maxlen: 24
146.19.15.0/24 maxlen: 24
146.19.25.0/24 maxlen: 24
146.19.31.0/24 maxlen: 24
146.19.72.0/24 maxlen: 24
146.19.76.0/24 maxlen: 24
146.19.96.0/24 maxlen: 24
146.19.107.0/24 maxlen: 24
146.19.126.0/24 maxlen: 24
176.100.47.0/24 maxlen: 24
176.116.8.0/24 maxlen: 24
176.116.12.0/24 maxlen: 24
176.222.58.0/24 maxlen: 24
178.212.136.0/24 maxlen: 24
178.212.138.0/24 maxlen: 24
185.81.71.0/24 maxlen: 24
185.140.174.0/24 maxlen: 24
185.207.213.0/24 maxlen: 24
185.222.41.0/24 maxlen: 24
193.32.164.0/24 maxlen: 24
193.32.165.0/24 maxlen: 24
193.32.166.0/24 maxlen: 24
193.32.167.0/24 maxlen: 24
193.36.231.0/24 maxlen: 24
193.53.169.0/24 maxlen: 24
193.58.176.0/24 maxlen: 24
193.58.177.0/24 maxlen: 24
193.160.216.0/24 maxlen: 24
193.160.217.0/24 maxlen: 24
193.160.218.0/24 maxlen: 24
193.163.16.0/24 maxlen: 24
193.163.18.0/24 maxlen: 24
193.201.127.0/24 maxlen: 24
194.26.233.0/24 maxlen: 24
194.104.142.0/24 maxlen: 24
194.104.238.0/24 maxlen: 24
195.225.99.0/24 maxlen: 24
212.52.27.0/24 maxlen: 24
212.52.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Mar 2024 15:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:14:4a:0f:9b:b4:1a:f5:46:e1:29:88:ab:1e:7a:cc:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Mar 6 15:03:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f14316e6c1ed77ac0ca8a7547b91e41b84593e7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b2:61:8d:a4:15:52:46:45:27:92:83:74:58:
c3:9d:ca:ce:26:db:40:4b:93:7a:dd:d1:3b:1c:95:
42:66:2a:5a:51:38:83:16:61:6f:ea:b3:a4:dd:93:
2b:5e:6e:ea:b6:e2:f4:b0:40:27:a4:d9:ec:0f:99:
79:65:bc:c0:04:f8:b3:57:a6:8f:3e:43:65:ac:d7:
0a:02:17:92:16:c7:86:c5:86:4c:35:5f:6a:26:86:
41:69:87:ba:10:48:31:b9:fa:37:b7:97:a8:b7:5a:
64:01:0a:a6:84:f9:65:79:35:4b:d7:29:1c:6d:a6:
8b:b1:e9:a6:b8:69:b0:17:e2:f3:b6:e2:89:63:b4:
37:2e:5b:e5:f9:f9:c9:2f:b5:fa:09:09:99:34:5c:
c7:38:60:25:fb:0f:98:05:8c:7a:52:ad:b7:56:be:
72:be:72:f2:f1:19:60:89:00:2f:d4:a5:a7:6b:30:
8a:44:c8:0b:4d:f8:43:e7:9c:74:0d:c4:79:35:d9:
69:0e:e8:5e:f8:85:f5:cb:1b:6b:11:0d:1e:d7:28:
17:97:4f:15:9b:67:d3:b0:98:51:5b:18:54:f1:8c:
cd:08:d3:68:b9:01:a8:3d:b0:02:f5:50:92:16:71:
ee:d7:62:14:f2:61:ac:9c:9a:77:6d:e7:ab:29:5c:
98:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:43:16:E6:C1:ED:77:AC:0C:A8:A7:54:7B:91:E4:1B:84:59:3E:7E
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/8UMW5sHtd6wMqKdUe5HkG4RZPn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.46.0/24
31.216.60.0/24
31.222.237.0/24
31.222.246.0/24
37.140.255.0/24
45.84.178.0/24
45.129.1.0/24
45.129.129.0-45.129.131.255
45.132.51.0/24
45.135.34.0/24
45.138.4.0-45.138.6.255
45.138.156.0/24
45.138.159.0/24
45.140.66.0/23
45.142.37.0/24
45.144.0.0/24
45.146.26.0/24
45.159.85.0/24
62.3.4.0/24
62.3.23.0/24
62.106.69.0/24
62.204.38.0/24
77.246.244.0/24
80.68.148.0/24
80.68.150.0/24
80.73.242.0/24
80.73.244.0/24
80.91.212.0/24
84.246.81.0/24
89.107.12.0/24
89.248.68.0/24
91.247.78.0/24
92.119.192.0/24
93.93.206.0/24
93.190.120.0/24
94.103.179.0/24
94.103.190.0/24
94.124.75.0/24
94.124.77.0/24
94.143.224.0/24
146.19.10.0/24
146.19.15.0/24
146.19.25.0/24
146.19.31.0/24
146.19.72.0/24
146.19.76.0/24
146.19.96.0/24
146.19.107.0/24
146.19.126.0/24
176.100.47.0/24
176.116.8.0/24
176.116.12.0/24
176.222.58.0/24
178.212.136.0/24
178.212.138.0/24
185.81.71.0/24
185.140.174.0/24
185.207.213.0/24
185.222.41.0/24
193.32.164.0/22
193.36.231.0/24
193.53.169.0/24
193.58.176.0/23
193.160.216.0-193.160.218.255
193.163.16.0/24
193.163.18.0/24
193.201.127.0/24
194.26.233.0/24
194.104.142.0/24
194.104.238.0/24
195.225.99.0/24
212.52.27.0/24
212.52.31.0/24
Signature Algorithm: sha256WithRSAEncryption
23:8b:bf:1a:51:83:d2:5b:61:78:84:01:7e:64:ce:27:b3:94:
e1:ec:df:66:2b:74:9d:63:49:bc:34:95:1f:d8:12:63:e1:be:
95:7e:3e:8a:91:7e:ed:0a:25:e0:e1:3f:ec:14:0a:27:83:71:
e0:b1:f6:f0:14:d8:bc:4b:b5:61:10:71:b1:9d:f9:de:4c:42:
ec:af:15:24:fa:00:c0:8f:56:48:01:d1:bf:3c:54:01:2d:dc:
54:f3:9a:ef:39:1b:3a:14:19:f1:b6:46:ef:fa:c5:ac:a0:2c:
85:67:f4:9c:f8:6c:4d:07:ee:c4:5c:f8:cb:cc:7e:ae:ef:e1:
c8:18:e7:7a:e6:10:b3:fe:6e:bc:1f:04:c0:2a:68:aa:53:fd:
5f:fe:ed:39:23:76:1e:5b:aa:83:0c:5d:d2:9e:80:31:8a:77:
ef:87:9d:78:16:6b:a5:02:57:2c:92:37:c2:6a:fa:2f:03:bd:
9c:46:2f:4e:34:cf:87:9b:3d:2f:62:94:84:63:b9:25:dd:8d:
7c:fd:1f:c0:28:6d:22:15:15:75:ec:7d:d6:e7:85:91:09:ca:
ac:90:6d:53:59:cd:96:a5:31:a0:c5:9b:4a:16:f0:19:5e:02:
6b:83:bb:28:ab:42:ad:1b:43:ce:2d:35:14:66:95:75:8b:14:
a1:9a:7d:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:48 2024 by rpki-client on console-ams.rpki-client.org