Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/P2ooxEIeHsWfcd4FWLhMprWFT38.roa
File: P2ooxEIeHsWfcd4FWLhMprWFT38.roa (raw, json)
Hash identifier: i5EKUiX9CdZ7MsBaQIVh/7hgqORZ40iZpkZPSaZ7/7Q=
Subject key identifier: 3F:6A:28:C4:42:1E:1E:C5:9F:71:DE:05:58:B8:4C:A6:B5:85:4F:7F
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018F7CD293B0F574CCDEB826C8BF05D58AF8
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/P2ooxEIeHsWfcd4FWLhMprWFT38.roa
Signing time: Wed 15 May 2024 15:15:26 +0000
ROA not before: Wed 15 May 2024 15:15:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 2.56.112.0/24 maxlen: 24
2.56.113.0/24 maxlen: 24
5.183.128.0/24 maxlen: 24
31.222.248.0/24 maxlen: 24
45.157.136.0/24 maxlen: 24
62.68.83.0/24 maxlen: 24
62.68.86.0/24 maxlen: 24
62.68.87.0/24 maxlen: 24
62.204.36.0/24 maxlen: 24
62.204.57.0/24 maxlen: 24
62.233.35.0/24 maxlen: 24
62.233.49.0/24 maxlen: 24
62.233.56.0/24 maxlen: 24
62.233.60.0/24 maxlen: 24
80.68.145.0/24 maxlen: 24
80.68.158.0/24 maxlen: 24
80.91.209.0/24 maxlen: 24
80.91.210.0/24 maxlen: 24
91.213.117.0/24 maxlen: 24
91.226.247.0/24 maxlen: 24
91.242.225.0/24 maxlen: 24
91.242.227.0/24 maxlen: 24
91.242.236.0/24 maxlen: 24
91.242.238.0/24 maxlen: 24
93.177.104.0/24 maxlen: 24
93.177.105.0/24 maxlen: 24
94.143.226.0/24 maxlen: 24
94.158.191.0/24 maxlen: 24
130.193.79.0/24 maxlen: 24
130.255.169.0/24 maxlen: 24
146.19.137.0/24 maxlen: 24
146.19.148.0/24 maxlen: 24
146.19.150.0/24 maxlen: 24
146.19.152.0/24 maxlen: 24
146.19.185.0/24 maxlen: 24
146.19.187.0/24 maxlen: 24
146.19.190.0/24 maxlen: 24
146.19.194.0/24 maxlen: 24
176.56.37.0/24 maxlen: 24
176.56.38.0/24 maxlen: 24
178.211.140.0/24 maxlen: 24
185.122.206.0/24 maxlen: 24
185.140.172.0/24 maxlen: 24
185.155.101.0/24 maxlen: 24
185.198.153.0/24 maxlen: 24
185.218.1.0/24 maxlen: 24
185.232.47.0/24 maxlen: 24
193.3.22.0/24 maxlen: 24
193.141.53.0/24 maxlen: 24
193.239.209.0/24 maxlen: 24
194.26.216.0/24 maxlen: 24
194.26.221.0/24 maxlen: 24
194.32.243.0/24 maxlen: 24
195.64.106.0/24 maxlen: 24
195.64.109.0/24 maxlen: 24
195.64.110.0/24 maxlen: 24
195.64.112.0/24 maxlen: 24
195.64.114.0/24 maxlen: 24
195.64.117.0/24 maxlen: 24
195.93.249.0/24 maxlen: 24
195.96.136.0/24 maxlen: 24
195.96.146.0/24 maxlen: 24
195.96.148.0/24 maxlen: 24
195.96.155.0/24 maxlen: 24
195.96.157.0/24 maxlen: 24
212.18.96.0/24 maxlen: 24
212.18.103.0/24 maxlen: 24
212.52.5.0/24 maxlen: 24
217.114.32.0/24 maxlen: 24
217.119.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 May 2024 13:04:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7c:d2:93:b0:f5:74:cc:de:b8:26:c8:bf:05:d5:8a:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: May 15 15:15:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3f6a28c4421e1ec59f71de0558b84ca6b5854f7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:5b:46:7b:30:a6:94:c4:07:71:07:3d:39:2d:
36:5b:e2:91:4b:54:fa:98:da:20:e8:58:da:a2:8d:
1d:ad:59:cf:53:e6:aa:69:5c:24:08:15:c9:40:65:
fa:af:57:55:d5:18:7d:2b:d1:74:21:aa:d2:ca:7e:
d9:81:49:19:1f:ce:c9:f6:34:d5:5f:f3:c3:5f:66:
e6:8c:82:10:ee:d8:8a:5d:94:a3:bb:8f:e8:53:38:
5b:d0:ae:06:4c:dc:55:c8:a2:c3:bd:60:fd:0b:72:
cf:af:ed:93:bf:b5:4e:63:d7:96:7b:3b:13:21:c3:
c5:66:96:08:07:0e:06:3b:67:00:2c:09:43:50:b3:
52:11:86:ba:92:3e:80:5a:5c:d0:50:27:9a:12:e4:
74:61:26:35:55:14:63:56:30:6c:a9:68:47:cf:ff:
e8:5c:c4:03:c6:49:95:c7:5a:6a:13:2a:f1:d0:2e:
21:9d:24:5f:78:ca:6e:86:4b:8f:af:0f:7c:0d:1f:
5c:38:79:57:ed:47:86:3f:e9:74:47:56:31:e6:08:
cb:d4:45:09:88:4e:e1:8a:a8:32:6f:27:f0:a1:f2:
71:9a:21:ee:f8:6a:59:95:68:f8:3f:43:b2:f8:ef:
66:ac:bd:d7:12:24:6c:3c:dd:04:26:52:c7:b9:ce:
ed:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:6A:28:C4:42:1E:1E:C5:9F:71:DE:05:58:B8:4C:A6:B5:85:4F:7F
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/P2ooxEIeHsWfcd4FWLhMprWFT38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.112.0/23
5.183.128.0/24
31.222.248.0/24
45.157.136.0/24
62.68.83.0/24
62.68.86.0/23
62.204.36.0/24
62.204.57.0/24
62.233.35.0/24
62.233.49.0/24
62.233.56.0/24
62.233.60.0/24
80.68.145.0/24
80.68.158.0/24
80.91.209.0-80.91.210.255
91.213.117.0/24
91.226.247.0/24
91.242.225.0/24
91.242.227.0/24
91.242.236.0/24
91.242.238.0/24
93.177.104.0/23
94.143.226.0/24
94.158.191.0/24
130.193.79.0/24
130.255.169.0/24
146.19.137.0/24
146.19.148.0/24
146.19.150.0/24
146.19.152.0/24
146.19.185.0/24
146.19.187.0/24
146.19.190.0/24
146.19.194.0/24
176.56.37.0-176.56.38.255
178.211.140.0/24
185.122.206.0/24
185.140.172.0/24
185.155.101.0/24
185.198.153.0/24
185.218.1.0/24
185.232.47.0/24
193.3.22.0/24
193.141.53.0/24
193.239.209.0/24
194.26.216.0/24
194.26.221.0/24
194.32.243.0/24
195.64.106.0/24
195.64.109.0-195.64.110.255
195.64.112.0/24
195.64.114.0/24
195.64.117.0/24
195.93.249.0/24
195.96.136.0/24
195.96.146.0/24
195.96.148.0/24
195.96.155.0/24
195.96.157.0/24
212.18.96.0/24
212.18.103.0/24
212.52.5.0/24
217.114.32.0/24
217.119.130.0/24
Signature Algorithm: sha256WithRSAEncryption
38:b6:60:b5:55:bf:ca:0a:d1:7f:3e:8d:9c:69:b4:c7:98:89:
56:f7:5d:b3:d7:f4:24:b3:e5:22:97:18:60:c9:3b:04:f7:3c:
0a:d9:0c:4e:df:17:27:1a:b6:95:20:60:c9:8b:72:7c:01:00:
9e:1e:2b:f6:9b:0d:c6:4a:79:b7:44:7f:b2:dc:2a:c9:cb:4b:
cb:b0:f8:1a:b6:b9:a9:63:b2:03:47:5f:3d:35:ec:cf:5f:21:
c6:04:8e:75:28:54:4f:dc:66:e3:aa:40:26:9d:5e:30:74:09:
39:3a:27:b0:bf:48:ff:d4:4f:d0:90:f0:f9:5e:2d:82:be:13:
a6:24:3a:2f:12:1e:d2:34:77:50:85:94:9a:bf:fa:bf:06:6d:
f2:0a:6b:64:33:6e:16:6e:24:66:04:0a:21:eb:a2:92:a7:f8:
aa:8c:fe:45:dc:57:dc:11:b4:92:e1:68:8b:d8:22:05:08:9e:
05:1c:bb:05:b1:72:2c:62:04:8a:13:4e:22:53:3a:9e:f9:f4:
d8:e2:5b:fd:9b:b8:c3:5f:49:f2:28:e1:94:33:54:97:28:0f:
dd:42:5b:51:8e:b5:ac:d2:34:02:0c:03:96:db:8e:a5:08:9e:
6e:ea:71:f9:32:ab:18:33:fd:e6:fe:50:b9:6c:4f:ed:b7:0a:
73:05:c2:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:48 2024 by rpki-client on console-ams.rpki-client.org