Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/99SyAGgWlKeoPKazvekCKcG9rDI.roa
File: 99SyAGgWlKeoPKazvekCKcG9rDI.roa (raw, json)
Hash identifier: K2CLp53IEDWbR/R0kYEzwv7LtBkR2on/rQfu3quVDBg=
Subject key identifier: F7:D4:B2:00:68:16:94:A7:A8:3C:A6:B3:BD:E9:02:29:C1:BD:AC:32
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018FAA237A754EFCE50E673D9DDFCCEAD7BE
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/99SyAGgWlKeoPKazvekCKcG9rDI.roa
Signing time: Fri 24 May 2024 10:26:42 +0000
ROA not before: Fri 24 May 2024 10:26:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49505
IP address blocks: 2.59.49.0/24 maxlen: 24
31.216.60.0/24 maxlen: 24
37.221.82.0/23 maxlen: 23
45.10.64.0/22 maxlen: 22
45.10.80.0/22 maxlen: 22
45.11.196.0/24 maxlen: 24
45.15.238.0/24 maxlen: 24
45.93.80.0/24 maxlen: 24
45.132.36.0/24 maxlen: 24
45.132.37.0/24 maxlen: 24
45.132.38.0/24 maxlen: 24
45.132.128.0/24 maxlen: 24
45.132.129.0/24 maxlen: 24
45.138.213.0/24 maxlen: 24
45.138.214.0/24 maxlen: 24
45.139.52.0/24 maxlen: 24
45.139.53.0/24 maxlen: 24
45.139.55.0/24 maxlen: 24
45.140.64.0/24 maxlen: 24
45.140.72.0/22 maxlen: 22
45.146.24.0/24 maxlen: 24
45.146.25.0/24 maxlen: 24
45.146.27.0/24 maxlen: 24
45.147.12.0/24 maxlen: 24
45.147.13.0/24 maxlen: 24
45.147.14.0/24 maxlen: 24
45.147.15.0/24 maxlen: 24
45.149.129.0/24 maxlen: 24
45.152.116.0/24 maxlen: 24
45.152.117.0/24 maxlen: 24
45.159.84.0/24 maxlen: 24
45.159.87.0/24 maxlen: 24
62.233.34.0/24 maxlen: 24
62.233.48.0/24 maxlen: 24
84.246.81.0/24 maxlen: 24
84.246.110.0/24 maxlen: 24
87.236.150.0/24 maxlen: 24
89.107.12.0/24 maxlen: 24
91.199.189.0/24 maxlen: 24
91.206.68.0/24 maxlen: 24
91.236.121.0/24 maxlen: 24
93.157.111.0/24 maxlen: 24
93.190.120.0/24 maxlen: 24
93.190.121.0/24 maxlen: 24
94.124.75.0/24 maxlen: 24
94.124.77.0/24 maxlen: 24
176.116.8.0/24 maxlen: 24
176.116.12.0/24 maxlen: 24
176.116.24.0/24 maxlen: 24
176.116.28.0/24 maxlen: 24
176.222.56.0/24 maxlen: 24
176.222.57.0/24 maxlen: 24
176.222.59.0/24 maxlen: 24
185.188.41.0/24 maxlen: 24
193.5.28.0/24 maxlen: 24
193.31.4.0/24 maxlen: 24
193.31.5.0/24 maxlen: 24
193.58.170.0/24 maxlen: 24
193.107.22.0/24 maxlen: 24
193.187.97.0/24 maxlen: 24
194.104.228.0/24 maxlen: 24
195.216.132.0/22 maxlen: 22
195.225.99.0/24 maxlen: 24
213.166.64.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 07 Jun 2024 12:21:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:aa:23:7a:75:4e:fc:e5:0e:67:3d:9d:df:cc:ea:d7:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: May 24 10:26:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f7d4b200681694a7a83ca6b3bde90229c1bdac32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d8:19:d4:be:72:71:11:2a:4b:84:d4:41:7e:
4f:81:66:18:14:cf:68:43:f3:bc:ef:92:fe:b4:38:
33:13:b1:ac:a4:0b:93:7f:cc:62:4d:ae:09:b1:43:
9e:db:ff:44:5b:65:ff:4a:17:37:4b:bd:c5:9c:6c:
77:89:dd:3f:fd:c3:cb:30:ab:48:ff:9c:2e:4e:71:
a9:09:74:c1:f4:c2:50:15:fb:84:db:d5:1b:77:bb:
2e:ea:1a:2a:2f:5c:1f:0e:df:a4:ef:7f:9e:4c:1f:
62:a1:9b:9b:8d:63:c5:66:0e:df:0d:dd:c3:41:5c:
fb:13:e9:38:5a:92:04:0f:08:8a:5e:32:a2:b6:38:
13:a3:59:e0:f7:e0:ae:08:0b:95:68:f6:7d:20:34:
70:f0:89:eb:6e:9f:20:ec:33:de:b2:59:f5:90:71:
37:99:d6:8b:cb:a1:b5:64:c0:d3:1f:28:54:90:e6:
90:56:84:2f:07:bf:81:42:93:67:3d:3a:57:59:75:
f7:6c:a1:cb:7f:79:31:02:ed:27:c6:e1:ff:21:04:
21:cd:dd:4b:56:13:15:e2:5e:1e:09:ae:9f:8a:21:
4f:e7:a8:1d:0a:86:59:8c:26:8c:0e:a1:22:df:53:
09:16:08:a3:ac:92:3b:47:43:3d:e1:d0:6e:03:72:
e1:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:D4:B2:00:68:16:94:A7:A8:3C:A6:B3:BD:E9:02:29:C1:BD:AC:32
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/99SyAGgWlKeoPKazvekCKcG9rDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.49.0/24
31.216.60.0/24
37.221.82.0/23
45.10.64.0/22
45.10.80.0/22
45.11.196.0/24
45.15.238.0/24
45.93.80.0/24
45.132.36.0-45.132.38.255
45.132.128.0/23
45.138.213.0-45.138.214.255
45.139.52.0/23
45.139.55.0/24
45.140.64.0/24
45.140.72.0/22
45.146.24.0/23
45.146.27.0/24
45.147.12.0/22
45.149.129.0/24
45.152.116.0/23
45.159.84.0/24
45.159.87.0/24
62.233.34.0/24
62.233.48.0/24
84.246.81.0/24
84.246.110.0/24
87.236.150.0/24
89.107.12.0/24
91.199.189.0/24
91.206.68.0/24
91.236.121.0/24
93.157.111.0/24
93.190.120.0/23
94.124.75.0/24
94.124.77.0/24
176.116.8.0/24
176.116.12.0/24
176.116.24.0/24
176.116.28.0/24
176.222.56.0/23
176.222.59.0/24
185.188.41.0/24
193.5.28.0/24
193.31.4.0/23
193.58.170.0/24
193.107.22.0/24
193.187.97.0/24
194.104.228.0/24
195.216.132.0/22
195.225.99.0/24
213.166.64.0/22
Signature Algorithm: sha256WithRSAEncryption
48:5f:9c:dd:3e:28:b7:63:15:ef:d2:4d:f3:5b:d8:29:b7:b6:
82:68:04:85:96:93:cc:49:bf:4c:65:84:46:b0:b7:a6:20:56:
0e:84:20:29:9a:cc:ed:52:ad:4a:24:9c:b2:8d:9b:89:34:d4:
e4:71:86:1e:b1:34:36:85:cf:78:ff:97:65:b7:93:bd:1d:40:
b2:77:44:54:0a:ed:16:07:f9:a9:47:96:26:4a:7b:83:d5:54:
d3:48:80:6e:b5:00:d5:d4:b7:d4:84:86:44:9b:56:88:96:22:
39:a4:4e:de:7a:ff:93:b7:33:a3:67:e3:f0:f5:74:fc:54:29:
dc:95:aa:36:0d:93:e1:df:e1:7f:60:4f:8e:d2:16:6e:e0:7c:
73:11:9a:14:30:06:f4:3e:18:d3:d0:88:77:67:60:55:f4:30:
92:af:87:ed:b3:6e:ad:b4:58:fc:b0:c1:eb:73:cd:bf:9a:46:
93:ad:81:2b:d5:00:02:d9:d1:45:16:b5:f7:3a:94:36:73:1c:
3f:dc:05:e0:09:2e:67:c3:51:91:20:16:15:19:ce:82:4b:27:
49:25:eb:60:eb:a5:cd:47:fc:d7:43:c2:92:78:dd:f2:5e:2c:
b6:9a:5c:84:f2:3b:b0:a8:17:db:66:e8:7f:75:f8:a9:6f:68:
75:cc:83:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 18:17:22 2024 by rpki-client on console-ams.rpki-client.org