Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/LeVyPFjouTsxrQUTZfzL0QmmOY0.roa
File: LeVyPFjouTsxrQUTZfzL0QmmOY0.roa (raw, json)
Hash identifier: MIYDuLhxrMFFWYNbA8SpXbxjnxHwNic26CFRs3AoRTw=
Subject key identifier: 2D:E5:72:3C:58:E8:B9:3B:31:AD:05:13:65:FC:CB:D1:09:A6:39:8D
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018DD1E8C47CF8543FCDFB5B9C75480AAD73
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/LeVyPFjouTsxrQUTZfzL0QmmOY0.roa
Signing time: Thu 22 Feb 2024 17:41:49 +0000
ROA not before: Thu 22 Feb 2024 17:41:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49505
IP address blocks: 2.59.49.0/24 maxlen: 24
37.221.82.0/23 maxlen: 23
45.10.64.0/22 maxlen: 22
45.10.80.0/22 maxlen: 22
45.11.196.0/24 maxlen: 24
45.15.238.0/24 maxlen: 24
45.93.80.0/24 maxlen: 24
45.132.36.0/24 maxlen: 24
45.132.37.0/24 maxlen: 24
45.132.38.0/24 maxlen: 24
45.132.128.0/24 maxlen: 24
45.132.129.0/24 maxlen: 24
45.138.213.0/24 maxlen: 24
45.138.214.0/24 maxlen: 24
45.139.52.0/24 maxlen: 24
45.139.53.0/24 maxlen: 24
45.139.55.0/24 maxlen: 24
45.140.64.0/24 maxlen: 24
45.140.72.0/22 maxlen: 22
45.146.24.0/24 maxlen: 24
45.146.25.0/24 maxlen: 24
45.146.27.0/24 maxlen: 24
45.147.12.0/24 maxlen: 24
45.147.13.0/24 maxlen: 24
45.147.14.0/24 maxlen: 24
45.147.15.0/24 maxlen: 24
45.149.129.0/24 maxlen: 24
45.152.116.0/24 maxlen: 24
45.152.117.0/24 maxlen: 24
45.159.84.0/24 maxlen: 24
45.159.87.0/24 maxlen: 24
62.233.48.0/24 maxlen: 24
84.246.81.0/24 maxlen: 24
89.107.12.0/24 maxlen: 24
91.206.68.0/24 maxlen: 24
91.236.121.0/24 maxlen: 24
176.116.12.0/24 maxlen: 24
176.222.56.0/24 maxlen: 24
176.222.57.0/24 maxlen: 24
176.222.59.0/24 maxlen: 24
185.188.41.0/24 maxlen: 24
193.5.28.0/24 maxlen: 24
193.31.4.0/24 maxlen: 24
193.31.5.0/24 maxlen: 24
193.58.170.0/24 maxlen: 24
195.216.132.0/22 maxlen: 22
195.225.99.0/24 maxlen: 24
213.166.64.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 26 Feb 2024 18:35:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d1:e8:c4:7c:f8:54:3f:cd:fb:5b:9c:75:48:0a:ad:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 22 17:41:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2de5723c58e8b93b31ad051365fccbd109a6398d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6c:30:92:d4:cf:d8:94:bc:e1:dc:5b:ec:7a:
7b:39:5c:fb:1f:33:e7:ff:22:20:7f:4b:bd:8e:57:
91:56:05:98:fc:d4:a0:54:57:d6:62:c0:c9:89:98:
5d:56:a5:4f:21:e8:19:3e:0b:4c:34:c2:a6:16:c1:
ae:6e:35:88:cd:39:13:3a:48:4a:9f:61:a0:f6:cb:
5b:e0:6e:54:c4:ae:d4:2a:3f:7b:5e:3b:14:d7:70:
13:ea:9a:eb:eb:7a:ea:1b:84:53:96:d9:a6:96:df:
6a:8d:3a:42:82:e0:94:82:c2:2d:7f:0b:0a:d4:5f:
84:71:5f:0a:29:49:0c:2e:16:d6:c6:12:6a:96:71:
d7:1f:cd:26:76:70:0d:27:3e:76:9b:c1:f8:02:57:
74:08:52:fd:53:cf:ab:77:e4:5a:e6:05:88:e2:4e:
df:72:a3:d7:49:6a:ab:a1:4c:31:48:c2:bd:ed:ee:
4b:10:a1:e7:9b:c2:3d:75:98:bd:8b:2a:96:00:57:
01:4b:d1:5a:e3:d3:47:cf:c5:4c:57:d1:22:6f:f1:
d1:6f:15:a6:be:f3:a1:69:e2:cd:df:2b:9f:7a:c5:
c2:84:6f:59:d8:00:1d:9f:58:33:72:ce:e8:b5:ab:
50:f7:77:22:c3:68:44:4c:ed:18:5c:c4:9f:18:b9:
35:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:E5:72:3C:58:E8:B9:3B:31:AD:05:13:65:FC:CB:D1:09:A6:39:8D
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/LeVyPFjouTsxrQUTZfzL0QmmOY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.49.0/24
37.221.82.0/23
45.10.64.0/22
45.10.80.0/22
45.11.196.0/24
45.15.238.0/24
45.93.80.0/24
45.132.36.0-45.132.38.255
45.132.128.0/23
45.138.213.0-45.138.214.255
45.139.52.0/23
45.139.55.0/24
45.140.64.0/24
45.140.72.0/22
45.146.24.0/23
45.146.27.0/24
45.147.12.0/22
45.149.129.0/24
45.152.116.0/23
45.159.84.0/24
45.159.87.0/24
62.233.48.0/24
84.246.81.0/24
89.107.12.0/24
91.206.68.0/24
91.236.121.0/24
176.116.12.0/24
176.222.56.0/23
176.222.59.0/24
185.188.41.0/24
193.5.28.0/24
193.31.4.0/23
193.58.170.0/24
195.216.132.0/22
195.225.99.0/24
213.166.64.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:94:8b:6c:d6:3a:21:8e:d3:f8:d5:be:57:cb:af:77:08:d5:
ef:28:b0:ea:aa:a3:d1:63:22:66:83:6c:fd:40:b7:1e:21:21:
47:4e:db:ba:00:1e:ba:54:1f:57:5b:4f:0a:b1:ab:5b:09:32:
b5:4c:fa:7b:77:16:2e:2f:79:ef:b3:d1:b9:7d:ea:72:8d:93:
1e:d4:0f:d9:d8:de:ca:86:55:6e:b2:47:3f:17:06:9d:54:5b:
07:32:a8:08:7c:13:a2:3e:3d:64:50:6c:ee:41:7f:c4:39:58:
5a:1a:e3:54:3d:17:82:55:44:b0:82:59:09:ea:45:4b:0a:5b:
61:61:4d:ea:bd:76:62:0b:09:40:54:24:ba:1c:35:74:be:bc:
54:e8:56:1c:a0:94:a2:1d:d9:03:c4:cb:97:6b:35:0a:08:6a:
b1:8e:ec:19:1e:b1:90:0c:26:88:d8:3d:cf:da:24:10:a3:ae:
58:9a:7b:6b:e6:b3:c8:e0:2b:a4:5d:47:c5:e7:bc:c4:77:6f:
ac:41:61:2e:35:0c:98:ed:f7:f4:e1:e4:98:a2:68:5a:df:97:
be:df:b6:d5:53:5b:e8:ca:41:e0:47:df:4d:86:f6:b3:b4:43:
df:4c:d5:cf:76:02:9f:e0:cc:f4:55:31:83:6d:d5:61:04:03:
78:c3:6c:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:48 2024 by rpki-client on console-ams.rpki-client.org