Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/PbgJUvidheqG9wqXQtNDgO8_YlE.roa
File: PbgJUvidheqG9wqXQtNDgO8_YlE.roa (raw, json)
Hash identifier: UwNzoDihqEOdSbNc97ryd0zUppqNgm9WqZ1fwlGgE2w=
Subject key identifier: 3D:B8:09:52:F8:9D:85:EA:86:F7:0A:97:42:D3:43:80:EF:3F:62:51
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018DE6B3AA1E98C83D773ABBA3C041F493FB
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/PbgJUvidheqG9wqXQtNDgO8_YlE.roa
Signing time: Mon 26 Feb 2024 18:35:50 +0000
ROA not before: Mon 26 Feb 2024 18:35:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 5.1.46.0/24 maxlen: 24
31.216.60.0/24 maxlen: 24
31.222.237.0/24 maxlen: 24
37.140.255.0/24 maxlen: 24
45.84.178.0/24 maxlen: 24
45.129.1.0/24 maxlen: 24
45.129.129.0/24 maxlen: 24
45.129.130.0/24 maxlen: 24
45.129.131.0/24 maxlen: 24
45.132.51.0/24 maxlen: 24
45.135.34.0/24 maxlen: 24
45.138.4.0/24 maxlen: 24
45.138.5.0/24 maxlen: 24
45.138.6.0/24 maxlen: 24
45.138.156.0/24 maxlen: 24
45.138.159.0/24 maxlen: 24
45.140.66.0/24 maxlen: 24
45.140.67.0/24 maxlen: 24
45.142.37.0/24 maxlen: 24
45.144.0.0/24 maxlen: 24
45.146.26.0/24 maxlen: 24
45.159.85.0/24 maxlen: 24
62.3.4.0/24 maxlen: 24
62.3.23.0/24 maxlen: 24
77.246.244.0/24 maxlen: 24
80.68.148.0/24 maxlen: 24
80.68.150.0/24 maxlen: 24
80.73.242.0/24 maxlen: 24
84.246.81.0/24 maxlen: 24
89.107.12.0/24 maxlen: 24
89.248.68.0/24 maxlen: 24
91.247.78.0/24 maxlen: 24
92.119.192.0/24 maxlen: 24
93.93.206.0/24 maxlen: 24
94.103.179.0/24 maxlen: 24
94.103.190.0/24 maxlen: 24
94.143.224.0/24 maxlen: 24
146.19.76.0/24 maxlen: 24
176.100.47.0/24 maxlen: 24
176.116.12.0/24 maxlen: 24
176.222.58.0/24 maxlen: 24
185.81.71.0/24 maxlen: 24
185.207.213.0/24 maxlen: 24
185.222.41.0/24 maxlen: 24
193.32.164.0/24 maxlen: 24
193.32.165.0/24 maxlen: 24
193.32.166.0/24 maxlen: 24
193.32.167.0/24 maxlen: 24
193.36.231.0/24 maxlen: 24
193.53.169.0/24 maxlen: 24
193.58.176.0/24 maxlen: 24
193.58.177.0/24 maxlen: 24
193.160.216.0/24 maxlen: 24
193.160.217.0/24 maxlen: 24
193.160.218.0/24 maxlen: 24
193.163.16.0/24 maxlen: 24
193.163.18.0/24 maxlen: 24
193.201.127.0/24 maxlen: 24
194.104.142.0/24 maxlen: 24
194.104.238.0/24 maxlen: 24
195.225.99.0/24 maxlen: 24
212.52.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Feb 2024 18:35:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e6:b3:aa:1e:98:c8:3d:77:3a:bb:a3:c0:41:f4:93:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 26 18:35:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3db80952f89d85ea86f70a9742d34380ef3f6251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:82:b3:11:b7:bf:db:d2:42:36:00:12:10:25:
11:0c:1b:e3:17:10:99:cd:22:2c:0a:ca:2f:8d:5b:
fb:3d:81:94:3a:ec:ae:e4:3a:b0:56:2f:c3:d5:2f:
6f:e1:a4:cb:0c:c9:a8:02:03:6b:bc:40:47:cf:c9:
8d:7d:e6:c2:56:a0:81:8d:7a:d3:08:c7:4f:42:c5:
b0:8f:ac:7b:42:77:b3:e6:21:96:dd:48:cf:0d:87:
ee:6b:15:0a:4e:e3:32:78:f7:fc:84:2c:00:d9:15:
ce:1d:f3:d2:af:23:9f:8a:66:f6:5b:9f:a3:79:49:
da:77:c8:70:e5:a8:51:c6:70:72:87:a2:87:b6:c9:
4a:5e:8f:5e:7b:09:d6:73:ff:ca:e1:fe:e7:25:b1:
56:24:21:24:16:d5:aa:b1:ea:d6:1c:fb:b4:5c:c6:
0c:26:a5:fa:38:c8:d9:cc:86:e2:e0:79:2a:97:6a:
62:10:c0:1d:a0:eb:7d:02:44:a5:36:3b:ca:c2:27:
36:24:c8:19:b0:bb:a4:08:18:d7:92:71:f1:a5:47:
fe:f2:84:81:d2:af:d0:ba:4d:b9:58:0c:3a:5f:90:
34:34:c6:2c:c9:64:c3:21:e0:63:09:91:46:16:0d:
83:95:b9:17:04:18:d1:ff:00:fb:75:e3:4e:b8:bd:
fc:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:B8:09:52:F8:9D:85:EA:86:F7:0A:97:42:D3:43:80:EF:3F:62:51
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/PbgJUvidheqG9wqXQtNDgO8_YlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.46.0/24
31.216.60.0/24
31.222.237.0/24
37.140.255.0/24
45.84.178.0/24
45.129.1.0/24
45.129.129.0-45.129.131.255
45.132.51.0/24
45.135.34.0/24
45.138.4.0-45.138.6.255
45.138.156.0/24
45.138.159.0/24
45.140.66.0/23
45.142.37.0/24
45.144.0.0/24
45.146.26.0/24
45.159.85.0/24
62.3.4.0/24
62.3.23.0/24
77.246.244.0/24
80.68.148.0/24
80.68.150.0/24
80.73.242.0/24
84.246.81.0/24
89.107.12.0/24
89.248.68.0/24
91.247.78.0/24
92.119.192.0/24
93.93.206.0/24
94.103.179.0/24
94.103.190.0/24
94.143.224.0/24
146.19.76.0/24
176.100.47.0/24
176.116.12.0/24
176.222.58.0/24
185.81.71.0/24
185.207.213.0/24
185.222.41.0/24
193.32.164.0/22
193.36.231.0/24
193.53.169.0/24
193.58.176.0/23
193.160.216.0-193.160.218.255
193.163.16.0/24
193.163.18.0/24
193.201.127.0/24
194.104.142.0/24
194.104.238.0/24
195.225.99.0/24
212.52.31.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:40:ab:1f:80:4b:19:87:c8:62:e6:52:68:24:50:eb:3b:02:
40:46:17:6e:d8:01:ff:5e:36:ab:f2:94:66:7b:24:f5:8b:2d:
c2:4d:a6:f0:d5:f6:22:47:a3:00:96:df:44:03:ed:ff:4a:59:
fb:9f:2e:5f:6e:9d:64:53:b1:fb:df:4e:e0:26:93:77:47:e5:
12:1a:48:b5:1d:19:20:3d:e5:72:2d:28:90:66:d8:ac:18:34:
3a:e7:cd:f9:44:61:eb:20:97:ad:5e:f3:8e:12:a5:19:72:da:
52:b4:c9:ce:6b:e2:d5:aa:c4:a1:50:96:23:63:0a:c9:3c:88:
18:d0:2f:33:7b:06:b3:bb:ab:27:ed:9c:b2:08:e0:e6:ce:ce:
23:31:60:1c:9e:e1:19:d6:91:fa:e8:db:11:44:f5:28:1e:63:
4d:18:15:12:97:4a:5f:e7:9b:27:15:c6:88:78:7e:eb:0c:d3:
d2:79:91:00:ae:0f:21:42:aa:27:99:61:3a:83:aa:fe:9a:13:
17:ba:16:7e:97:3c:7c:56:08:d0:94:d0:8c:a2:4e:06:dc:ad:
1d:2f:57:93:e1:f6:75:fa:74:c5:21:c6:55:71:9e:5e:45:38:
8c:5b:c8:70:43:32:80:15:b5:6c:28:09:54:f5:db:0b:df:3d:
b0:4f:98:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 21:14:25 2024 by rpki-client on console-fra.rpki-client.org