Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/JvnpWbmym5zqXXBzSXxdjkB_8Bo.roa
File: JvnpWbmym5zqXXBzSXxdjkB_8Bo.roa (raw, json)
Hash identifier: WpZPepuAsvBCXZ+yDBqgmcFgv6KVYTvHKNVVJE3PM7I=
Subject key identifier: 26:F9:E9:59:B9:B2:9B:9C:EA:5D:70:73:49:7C:5D:8E:40:7F:F0:1A
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018DEBD9CE3510A1217D2C0CE170CEC954F0
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/JvnpWbmym5zqXXBzSXxdjkB_8Bo.roa
Signing time: Tue 27 Feb 2024 18:35:36 +0000
ROA not before: Tue 27 Feb 2024 18:35:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49505
IP address blocks: 2.59.49.0/24 maxlen: 24
31.216.60.0/24 maxlen: 24
37.221.82.0/23 maxlen: 23
45.10.64.0/22 maxlen: 22
45.10.80.0/22 maxlen: 22
45.11.196.0/24 maxlen: 24
45.15.238.0/24 maxlen: 24
45.93.80.0/24 maxlen: 24
45.132.36.0/24 maxlen: 24
45.132.37.0/24 maxlen: 24
45.132.38.0/24 maxlen: 24
45.132.128.0/24 maxlen: 24
45.132.129.0/24 maxlen: 24
45.138.213.0/24 maxlen: 24
45.138.214.0/24 maxlen: 24
45.139.52.0/24 maxlen: 24
45.139.53.0/24 maxlen: 24
45.139.55.0/24 maxlen: 24
45.140.64.0/24 maxlen: 24
45.140.72.0/22 maxlen: 22
45.146.24.0/24 maxlen: 24
45.146.25.0/24 maxlen: 24
45.146.27.0/24 maxlen: 24
45.147.12.0/24 maxlen: 24
45.147.13.0/24 maxlen: 24
45.147.14.0/24 maxlen: 24
45.147.15.0/24 maxlen: 24
45.149.129.0/24 maxlen: 24
45.152.116.0/24 maxlen: 24
45.152.117.0/24 maxlen: 24
45.159.84.0/24 maxlen: 24
45.159.87.0/24 maxlen: 24
62.233.48.0/24 maxlen: 24
84.246.81.0/24 maxlen: 24
89.107.12.0/24 maxlen: 24
91.206.68.0/24 maxlen: 24
91.236.121.0/24 maxlen: 24
176.116.12.0/24 maxlen: 24
176.222.56.0/24 maxlen: 24
176.222.57.0/24 maxlen: 24
176.222.59.0/24 maxlen: 24
185.188.41.0/24 maxlen: 24
193.5.28.0/24 maxlen: 24
193.31.4.0/24 maxlen: 24
193.31.5.0/24 maxlen: 24
193.58.170.0/24 maxlen: 24
193.107.22.0/24 maxlen: 24
194.104.228.0/24 maxlen: 24
195.216.132.0/22 maxlen: 22
195.225.99.0/24 maxlen: 24
213.166.64.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 29 Feb 2024 14:11:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:eb:d9:ce:35:10:a1:21:7d:2c:0c:e1:70:ce:c9:54:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 27 18:35:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=26f9e959b9b29b9cea5d7073497c5d8e407ff01a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:fc:d5:df:2c:c8:8e:94:66:5b:73:47:6c:d2:
ce:6d:35:65:0e:c6:45:08:8a:7e:74:af:bf:cf:1d:
1a:68:d8:6d:9d:d6:0d:0d:50:7c:74:14:97:4f:e4:
3f:cf:5b:72:32:1f:c6:d6:dc:fd:a1:3d:fe:8c:ee:
1f:f0:07:88:f5:cc:47:ae:70:c9:e5:95:ae:3b:a6:
30:90:09:6e:01:10:2d:79:52:86:e3:d8:0d:9e:59:
af:d6:b3:72:c7:72:8d:66:19:6f:41:e0:05:2b:6d:
0a:e0:fa:64:2d:c8:16:61:7a:31:48:38:2d:f2:76:
91:c2:ed:ba:af:a5:84:5d:1d:dc:f1:b2:b6:3a:31:
5b:50:47:52:f8:47:ba:28:4d:73:c8:e2:e5:ac:39:
a7:37:7d:00:f9:9f:ff:a2:d4:30:09:b0:f1:8f:91:
fd:c6:9a:a3:7a:e0:22:95:2c:28:cf:e0:1b:ea:55:
7e:2c:1b:d3:7c:f2:11:15:25:eb:ee:53:4a:ca:24:
79:3e:11:e4:a7:55:0a:3d:2d:ea:f2:4b:48:81:3a:
71:a4:72:36:c6:b3:20:1b:0f:ee:58:ca:88:37:75:
14:ec:92:98:ec:3e:f7:3d:b4:f1:af:74:d5:76:fe:
86:76:e0:2e:61:4c:f3:2d:eb:5b:4b:2c:9b:a5:84:
20:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:F9:E9:59:B9:B2:9B:9C:EA:5D:70:73:49:7C:5D:8E:40:7F:F0:1A
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/JvnpWbmym5zqXXBzSXxdjkB_8Bo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.49.0/24
31.216.60.0/24
37.221.82.0/23
45.10.64.0/22
45.10.80.0/22
45.11.196.0/24
45.15.238.0/24
45.93.80.0/24
45.132.36.0-45.132.38.255
45.132.128.0/23
45.138.213.0-45.138.214.255
45.139.52.0/23
45.139.55.0/24
45.140.64.0/24
45.140.72.0/22
45.146.24.0/23
45.146.27.0/24
45.147.12.0/22
45.149.129.0/24
45.152.116.0/23
45.159.84.0/24
45.159.87.0/24
62.233.48.0/24
84.246.81.0/24
89.107.12.0/24
91.206.68.0/24
91.236.121.0/24
176.116.12.0/24
176.222.56.0/23
176.222.59.0/24
185.188.41.0/24
193.5.28.0/24
193.31.4.0/23
193.58.170.0/24
193.107.22.0/24
194.104.228.0/24
195.216.132.0/22
195.225.99.0/24
213.166.64.0/22
Signature Algorithm: sha256WithRSAEncryption
97:08:da:da:7e:1e:1e:7e:33:fd:4d:60:20:ea:f7:08:c1:2b:
54:26:86:14:ef:42:1c:51:c4:6d:90:2e:d2:93:16:e1:3c:c0:
b8:62:da:03:e3:70:86:ba:b4:93:f9:8f:3f:49:74:fb:83:9b:
0b:1d:7e:92:2a:20:8d:66:2b:2a:ce:01:f8:24:fb:95:49:5b:
b0:e7:95:9d:48:8c:c0:03:27:53:db:3f:db:c9:ea:f3:09:05:
98:90:0a:98:0e:65:ef:07:d5:f6:02:ab:f7:b9:7b:40:a5:b7:
f8:77:dd:55:51:4a:5a:06:7c:b2:d7:6e:ab:52:94:9e:b3:b1:
33:99:2b:aa:fb:d7:4a:5b:ea:89:b8:eb:c9:0a:77:6f:5a:44:
fd:4e:24:5d:7a:41:a7:1d:99:4d:35:9e:0f:72:01:eb:e1:3a:
28:23:1c:84:f6:28:d1:92:53:0b:33:f4:64:82:9f:eb:fb:97:
92:aa:d1:a5:23:ae:47:72:94:ca:64:3f:7f:92:98:b2:b9:49:
6c:72:c8:0c:0b:39:ba:d0:9f:3b:21:e6:9b:84:86:7f:22:ca:
c1:91:e7:08:f2:2f:c9:fc:4d:fb:e2:fe:4c:01:26:62:88:d6:
11:2e:a1:9b:bb:01:94:3e:f8:ae:de:71:3f:71:62:7b:38:e3:
93:c7:e8:4e
-----BEGIN CERTIFICATE-----
MIIF+jCCBOKgAwIBAgISAY3r2c41EKEhfSwM4XDOyVTwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NmJiNDhlOTNlOGEwMDU4YzVjNzJhODFhODc5OTQ1NTMw
N2VlNTYwHhcNMjQwMjI3MTgzNTM2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNmY5ZTk1OWI5YjI5YjljZWE1ZDcwNzM0OTdjNWQ4ZTQwN2ZmMDFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyfzV3yzIjpRmW3NHbNLObTVlDsZF
CIp+dK+/zx0aaNhtndYNDVB8dBSXT+Q/z1tyMh/G1tz9oT3+jO4f8AeI9cxHrnDJ
5ZWuO6YwkAluARAteVKG49gNnlmv1rNyx3KNZhlvQeAFK20K4PpkLcgWYXoxSDgt
8naRwu26r6WEXR3c8bK2OjFbUEdS+Ee6KE1zyOLlrDmnN30A+Z//otQwCbDxj5H9
xpqjeuAilSwoz+Ab6lV+LBvTfPIRFSXr7lNKyiR5PhHkp1UKPS3q8ktIgTpxpHI2
xrMgGw/uWMqIN3UU7JKY7D73PbTxr3TVdv6GduAuYUzzLetbSyybpYQgAwIDAQAB
o4IDBjCCAwIwHQYDVR0OBBYEFCb56Vm5spuc6l1wc0l8XY5Af/AaMB8GA1UdIwQY
MBaAFNdrtI6T6KAFjFxyqBqHmUVTB+5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgt
OGJmYmRkNDVjYjYyLzEvSnZucFdibXltNXpxWFhCelNYeGRqa0JfOEJvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgtOGJmYmRkNDVjYjYy
LzEvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBGgYIKwYBBQUHAQcBAf8EggEJMIIBBTCCAQEEAgABMIH6
AwQAAjsxAwQAH9g8AwQBJd1SAwQCLQpAAwQCLQpQAwQALQvEAwQALQ/uAwQALV1Q
MAwDBAIthCQDBAAthCYDBAEthIAwDAMEAC2K1QMEAC2K1gMEAS2LNAMEAC2LNwME
AC2MQAMEAi2MSAMEAS2SGAMEAC2SGwMEAi2TDAMEAC2VgQMEAS2YdAMEAC2fVAME
AC2fVwMEAD7pMAMEAFT2UQMEAFlrDAMEAFvORAMEAFvseQMEALB0DAMEAbDeOAME
ALDeOwMEALm8KQMEAMEFHAMEAcEfBAMEAME6qgMEAMFrFgMEAMJo5AMEAsPYhAME
AMPhYwMEAtWmQDANBgkqhkiG9w0BAQsFAAOCAQEAlwja2n4eHn4z/U1gIOr3CMEr
VCaGFO9CHFHEbZAu0pMW4TzAuGLaA+Nwhrq0k/mPP0l0+4ObCx1+kiogjWYrKs4B
+CT7lUlbsOeVnUiMwAMnU9s/28nq8wkFmJAKmA5l7wfV9gKr97l7QKW3+HfdVVFK
WgZ8stduq1KUnrOxM5krqvvXSlvqibjryQp3b1pE/U4kXXpBpx2ZTTWeD3IB6+E6
KCMchPYo0ZJTCzP0ZIKf6/uXkqrRpSOuR3KUymQ/f5KYsrlJbHLIDAs5utCfOyHm
m4SGfyLKwZHnCPIvyfxN++L+TAEmYojWES6hm7sBlD74rt5xP3Fiezjjk8foTg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:22 2024 by rpki-client on console-fra.rpki-client.org