Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/J2CAKl4wUEgDwcOgKmvekOoNLDQ.roa
File: J2CAKl4wUEgDwcOgKmvekOoNLDQ.roa (raw, json)
Hash identifier: j1FR0bpXuknHNgnVmn4BmXQOJBwpUD2JNs9WAzidRVU=
Subject key identifier: 27:60:80:2A:5E:30:50:48:03:C1:C3:A0:2A:6B:DE:90:EA:0D:2C:34
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018E335208874B62BDCBD76AD83CE5E3F585
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/J2CAKl4wUEgDwcOgKmvekOoNLDQ.roa
Signing time: Tue 12 Mar 2024 15:39:57 +0000
ROA not before: Tue 12 Mar 2024 15:39:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49505
IP address blocks: 2.59.49.0/24 maxlen: 24
31.216.60.0/24 maxlen: 24
37.221.82.0/23 maxlen: 23
45.10.64.0/22 maxlen: 22
45.10.80.0/22 maxlen: 22
45.11.196.0/24 maxlen: 24
45.15.238.0/24 maxlen: 24
45.93.80.0/24 maxlen: 24
45.132.36.0/24 maxlen: 24
45.132.37.0/24 maxlen: 24
45.132.38.0/24 maxlen: 24
45.132.128.0/24 maxlen: 24
45.132.129.0/24 maxlen: 24
45.138.213.0/24 maxlen: 24
45.138.214.0/24 maxlen: 24
45.139.52.0/24 maxlen: 24
45.139.53.0/24 maxlen: 24
45.139.55.0/24 maxlen: 24
45.140.64.0/24 maxlen: 24
45.140.72.0/22 maxlen: 22
45.146.24.0/24 maxlen: 24
45.146.25.0/24 maxlen: 24
45.146.27.0/24 maxlen: 24
45.147.12.0/24 maxlen: 24
45.147.13.0/24 maxlen: 24
45.147.14.0/24 maxlen: 24
45.147.15.0/24 maxlen: 24
45.149.129.0/24 maxlen: 24
45.152.116.0/24 maxlen: 24
45.152.117.0/24 maxlen: 24
45.159.84.0/24 maxlen: 24
45.159.87.0/24 maxlen: 24
62.233.34.0/24 maxlen: 24
62.233.48.0/24 maxlen: 24
84.246.81.0/24 maxlen: 24
89.107.12.0/24 maxlen: 24
91.199.189.0/24 maxlen: 24
91.206.68.0/24 maxlen: 24
91.236.121.0/24 maxlen: 24
93.157.111.0/24 maxlen: 24
93.190.120.0/24 maxlen: 24
94.124.75.0/24 maxlen: 24
94.124.77.0/24 maxlen: 24
176.116.8.0/24 maxlen: 24
176.116.12.0/24 maxlen: 24
176.116.24.0/24 maxlen: 24
176.116.28.0/24 maxlen: 24
176.222.56.0/24 maxlen: 24
176.222.57.0/24 maxlen: 24
176.222.59.0/24 maxlen: 24
185.188.41.0/24 maxlen: 24
193.5.28.0/24 maxlen: 24
193.31.4.0/24 maxlen: 24
193.31.5.0/24 maxlen: 24
193.58.170.0/24 maxlen: 24
193.107.22.0/24 maxlen: 24
193.187.97.0/24 maxlen: 24
194.104.228.0/24 maxlen: 24
195.216.132.0/22 maxlen: 22
195.225.99.0/24 maxlen: 24
213.166.64.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 13 Mar 2024 15:27:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:33:52:08:87:4b:62:bd:cb:d7:6a:d8:3c:e5:e3:f5:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Mar 12 15:39:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2760802a5e30504803c1c3a02a6bde90ea0d2c34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:d3:94:32:60:9f:1b:53:2e:40:ef:d1:0c:bf:
15:b6:f0:ed:ad:1b:e4:4b:bb:68:f1:98:1d:9f:95:
11:33:40:05:23:22:b1:06:2f:df:98:7d:e8:1a:4f:
84:43:db:b8:51:2e:5f:62:a4:b5:cc:4d:1b:db:f7:
fb:5a:15:82:1a:61:be:f2:ce:be:aa:ec:19:a5:b6:
84:fc:19:86:33:cd:02:0e:99:a3:f6:bf:30:c9:6b:
4c:70:cc:bb:17:cb:ad:3d:7c:65:cd:6c:d8:ea:2a:
b5:e0:2c:66:48:fb:8e:df:e2:bb:d3:b9:70:87:6b:
ae:c0:a0:b7:0a:46:23:e1:08:62:7d:97:d7:75:de:
13:a5:f9:5f:2b:1f:8c:60:30:b8:b3:48:c9:be:1b:
af:b9:8a:37:2f:9b:ac:1d:06:8d:ad:47:c9:67:6c:
4b:18:28:60:96:6e:3c:44:d3:17:a1:6e:dd:90:69:
d2:49:00:ca:d4:00:ca:04:78:92:b3:fe:12:e6:84:
e0:65:fa:0c:4d:96:ad:e5:46:36:49:b4:93:dc:a8:
08:e8:ac:2b:63:7b:e4:86:16:65:d4:42:7d:5a:ad:
69:0b:31:fa:81:ed:8b:c2:2f:bd:48:1f:bc:58:d9:
09:a4:de:b8:f6:4a:d1:0a:ff:7e:7a:f3:c0:31:25:
f7:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:60:80:2A:5E:30:50:48:03:C1:C3:A0:2A:6B:DE:90:EA:0D:2C:34
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/J2CAKl4wUEgDwcOgKmvekOoNLDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.49.0/24
31.216.60.0/24
37.221.82.0/23
45.10.64.0/22
45.10.80.0/22
45.11.196.0/24
45.15.238.0/24
45.93.80.0/24
45.132.36.0-45.132.38.255
45.132.128.0/23
45.138.213.0-45.138.214.255
45.139.52.0/23
45.139.55.0/24
45.140.64.0/24
45.140.72.0/22
45.146.24.0/23
45.146.27.0/24
45.147.12.0/22
45.149.129.0/24
45.152.116.0/23
45.159.84.0/24
45.159.87.0/24
62.233.34.0/24
62.233.48.0/24
84.246.81.0/24
89.107.12.0/24
91.199.189.0/24
91.206.68.0/24
91.236.121.0/24
93.157.111.0/24
93.190.120.0/24
94.124.75.0/24
94.124.77.0/24
176.116.8.0/24
176.116.12.0/24
176.116.24.0/24
176.116.28.0/24
176.222.56.0/23
176.222.59.0/24
185.188.41.0/24
193.5.28.0/24
193.31.4.0/23
193.58.170.0/24
193.107.22.0/24
193.187.97.0/24
194.104.228.0/24
195.216.132.0/22
195.225.99.0/24
213.166.64.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:b1:a0:df:dd:79:7d:dd:97:16:6a:70:8d:52:22:45:ab:5b:
30:c8:1a:7b:af:67:db:75:66:90:0a:ce:77:ab:8a:d4:0b:12:
7a:1a:b6:1a:c2:e0:6f:74:01:61:16:a1:b3:16:17:97:cc:be:
44:19:1b:1d:80:4a:0f:97:ce:c0:6f:eb:bd:fd:29:4e:73:11:
db:11:32:b8:2d:61:ad:10:4f:d4:48:0e:59:c0:a8:21:8b:91:
f0:79:c9:e8:4c:f8:60:d7:25:29:2e:35:f1:ad:e3:4a:0a:58:
11:46:3d:2d:ea:2b:5d:9e:d3:6b:2b:97:8a:4a:9c:6d:eb:8c:
9c:a9:9f:c6:49:a0:e1:bd:a1:dc:51:f4:fc:4e:77:6b:36:16:
4f:43:b0:3a:d5:9e:b3:20:f3:81:c2:3d:dd:b4:e7:0e:ea:9a:
d8:99:bd:75:f7:83:43:67:00:94:5d:8e:7a:b0:c3:94:15:eb:
50:8e:63:1d:a6:32:e9:20:31:70:4c:7b:42:45:e8:e2:90:0d:
ae:6c:11:8f:7a:69:ac:a3:89:31:e5:8b:1a:5e:c3:0f:62:b4:
cc:75:04:39:76:bc:e6:c2:4f:0f:71:7f:f4:41:bc:a3:48:23:
95:62:1f:05:b8:d9:e4:cc:fa:e1:03:3c:ad:5d:59:d6:82:b9:
1f:fe:f7:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:48 2024 by rpki-client on console-ams.rpki-client.org