Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/BEGlmVvUHVPQgfQlJLqwSaBMjls.roa
File: BEGlmVvUHVPQgfQlJLqwSaBMjls.roa (raw, json)
Hash identifier: O4vmRc/0Jd9F2bx2rcEC+NQmzOIPwwhQBLrIq0Z/YVU=
Subject key identifier: 04:41:A5:99:5B:D4:1D:53:D0:81:F4:25:24:BA:B0:49:A0:4C:8E:5B
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 01904A3AEEAB25AC7A9684C9C99244D5B8B8
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/BEGlmVvUHVPQgfQlJLqwSaBMjls.roa
Signing time: Mon 24 Jun 2024 12:31:34 +0000
ROA not before: Mon 24 Jun 2024 12:31:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 2.56.112.0/24 maxlen: 24
2.56.113.0/24 maxlen: 24
5.183.128.0/24 maxlen: 24
31.222.248.0/24 maxlen: 24
45.132.48.0/24 maxlen: 24
45.157.136.0/24 maxlen: 24
62.68.83.0/24 maxlen: 24
62.68.86.0/24 maxlen: 24
62.68.87.0/24 maxlen: 24
62.204.36.0/24 maxlen: 24
62.204.57.0/24 maxlen: 24
62.233.35.0/24 maxlen: 24
62.233.45.0/24 maxlen: 24
62.233.49.0/24 maxlen: 24
62.233.56.0/24 maxlen: 24
62.233.60.0/24 maxlen: 24
80.68.145.0/24 maxlen: 24
80.68.158.0/24 maxlen: 24
80.91.209.0/24 maxlen: 24
80.91.210.0/24 maxlen: 24
91.213.117.0/24 maxlen: 24
91.226.247.0/24 maxlen: 24
91.242.225.0/24 maxlen: 24
91.242.227.0/24 maxlen: 24
91.242.236.0/24 maxlen: 24
91.242.238.0/24 maxlen: 24
93.177.104.0/24 maxlen: 24
93.177.105.0/24 maxlen: 24
93.177.107.0/24 maxlen: 24
94.143.226.0/24 maxlen: 24
94.158.191.0/24 maxlen: 24
130.193.79.0/24 maxlen: 24
130.255.169.0/24 maxlen: 24
146.19.108.0/24 maxlen: 24
146.19.137.0/24 maxlen: 24
146.19.148.0/24 maxlen: 24
146.19.150.0/24 maxlen: 24
146.19.152.0/24 maxlen: 24
146.19.185.0/24 maxlen: 24
146.19.187.0/24 maxlen: 24
146.19.190.0/24 maxlen: 24
146.19.194.0/24 maxlen: 24
176.56.37.0/24 maxlen: 24
176.56.38.0/24 maxlen: 24
178.211.140.0/24 maxlen: 24
185.122.206.0/24 maxlen: 24
185.140.172.0/24 maxlen: 24
185.155.101.0/24 maxlen: 24
185.198.153.0/24 maxlen: 24
185.218.1.0/24 maxlen: 24
185.232.47.0/24 maxlen: 24
193.3.22.0/24 maxlen: 24
193.141.53.0/24 maxlen: 24
193.239.209.0/24 maxlen: 24
194.26.216.0/24 maxlen: 24
194.26.221.0/24 maxlen: 24
194.32.243.0/24 maxlen: 24
195.64.106.0/24 maxlen: 24
195.64.109.0/24 maxlen: 24
195.64.110.0/24 maxlen: 24
195.64.112.0/24 maxlen: 24
195.64.114.0/24 maxlen: 24
195.64.117.0/24 maxlen: 24
195.93.249.0/24 maxlen: 24
195.96.136.0/24 maxlen: 24
195.96.146.0/24 maxlen: 24
195.96.148.0/24 maxlen: 24
195.96.155.0/24 maxlen: 24
195.96.157.0/24 maxlen: 24
212.18.96.0/24 maxlen: 24
212.18.103.0/24 maxlen: 24
212.52.5.0/24 maxlen: 24
217.114.32.0/24 maxlen: 24
217.119.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Jul 2024 20:23:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4a:3a:ee:ab:25:ac:7a:96:84:c9:c9:92:44:d5:b8:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Jun 24 12:31:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0441a5995bd41d53d081f42524bab049a04c8e5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:82:f8:3f:40:de:6f:0e:b8:7b:f2:f7:98:3c:
09:50:6e:9f:27:9e:5e:95:5c:f3:d7:2d:11:74:0a:
b6:b4:48:d0:ee:39:30:59:7e:fa:da:e5:5b:3f:83:
04:89:75:ce:c5:2e:8e:73:d2:eb:ae:1d:43:3a:84:
fe:42:6d:15:33:1f:5b:cd:ef:a9:3b:62:10:bd:a9:
07:4a:9b:48:5c:8d:f5:b1:fa:bd:3b:bb:93:7c:ab:
63:6e:fb:2e:14:ab:b4:dd:d5:15:45:13:d0:b4:23:
27:7b:e2:8c:e2:cb:f5:89:94:0e:c2:19:7e:ff:03:
c9:95:82:29:c2:73:58:e0:30:2c:af:21:98:70:fa:
bd:f5:be:ba:76:af:c2:0d:62:d1:6a:83:48:30:90:
f0:0c:5b:01:97:cc:d5:a7:51:58:3d:84:a1:d5:1c:
76:0c:b9:7a:aa:cb:43:b3:41:38:29:22:1a:8a:2b:
85:08:cb:f7:9c:76:86:97:fd:c1:3e:a2:a3:0e:23:
10:e6:63:8e:40:cf:d6:d6:46:77:e7:3a:bd:a1:04:
84:34:c9:8c:fe:82:39:49:ac:ff:1d:b7:07:b6:53:
0a:99:88:1c:b6:5e:a2:38:7e:ad:d3:3a:89:c4:04:
ed:7d:bc:8d:76:af:71:f5:4e:78:12:c5:43:40:c2:
b2:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:41:A5:99:5B:D4:1D:53:D0:81:F4:25:24:BA:B0:49:A0:4C:8E:5B
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/BEGlmVvUHVPQgfQlJLqwSaBMjls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.112.0/23
5.183.128.0/24
31.222.248.0/24
45.132.48.0/24
45.157.136.0/24
62.68.83.0/24
62.68.86.0/23
62.204.36.0/24
62.204.57.0/24
62.233.35.0/24
62.233.45.0/24
62.233.49.0/24
62.233.56.0/24
62.233.60.0/24
80.68.145.0/24
80.68.158.0/24
80.91.209.0-80.91.210.255
91.213.117.0/24
91.226.247.0/24
91.242.225.0/24
91.242.227.0/24
91.242.236.0/24
91.242.238.0/24
93.177.104.0/23
93.177.107.0/24
94.143.226.0/24
94.158.191.0/24
130.193.79.0/24
130.255.169.0/24
146.19.108.0/24
146.19.137.0/24
146.19.148.0/24
146.19.150.0/24
146.19.152.0/24
146.19.185.0/24
146.19.187.0/24
146.19.190.0/24
146.19.194.0/24
176.56.37.0-176.56.38.255
178.211.140.0/24
185.122.206.0/24
185.140.172.0/24
185.155.101.0/24
185.198.153.0/24
185.218.1.0/24
185.232.47.0/24
193.3.22.0/24
193.141.53.0/24
193.239.209.0/24
194.26.216.0/24
194.26.221.0/24
194.32.243.0/24
195.64.106.0/24
195.64.109.0-195.64.110.255
195.64.112.0/24
195.64.114.0/24
195.64.117.0/24
195.93.249.0/24
195.96.136.0/24
195.96.146.0/24
195.96.148.0/24
195.96.155.0/24
195.96.157.0/24
212.18.96.0/24
212.18.103.0/24
212.52.5.0/24
217.114.32.0/24
217.119.130.0/24
Signature Algorithm: sha256WithRSAEncryption
11:74:cc:84:71:cb:4b:79:6f:ac:90:28:94:5e:42:28:5b:ff:
12:ba:3b:77:c5:d7:4e:12:e3:12:22:ea:5f:af:36:26:0c:fd:
f7:00:1b:7a:b2:a5:8c:bb:8a:6f:98:de:e4:42:16:1b:39:63:
69:61:32:8a:22:2e:19:a5:6d:4c:5b:3a:04:90:9a:73:4b:cc:
23:2a:86:24:84:43:9d:90:33:83:d4:3f:1d:ce:0b:db:66:0d:
34:61:7c:05:b1:df:88:e3:f8:c0:cd:94:11:f4:d7:1f:26:77:
7c:34:52:df:77:bd:ab:5a:a7:60:ff:90:73:a6:c7:e1:42:e3:
ef:81:2d:1f:67:4c:6d:ce:10:ef:0b:90:84:71:11:7f:e9:37:
6f:8d:5d:01:50:3d:d1:84:1c:34:a3:ca:95:19:ea:d4:5e:3c:
d3:e2:2a:06:9f:2e:8e:92:3c:bf:bd:b4:9f:23:19:c8:f5:e1:
03:ed:ba:5a:14:a4:74:bc:66:32:64:49:1d:c3:04:f3:cb:42:
64:69:27:7b:6a:4d:2f:15:e4:45:75:e0:cc:bd:43:f9:a1:a6:
b0:79:c0:4a:e3:ad:67:9a:8d:0c:70:e5:da:7e:a9:47:ea:3d:
19:96:33:29:25:4d:81:ad:7c:80:54:87:0d:62:2f:3f:51:3b:
af:42:f9:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 25 00:42:20 2024 by rpki-client on console-ams.rpki-client.org