Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/XveAhjxFjrJnOhYz37tpTKmg1yk.roa
File: XveAhjxFjrJnOhYz37tpTKmg1yk.roa (raw, json)
Hash identifier: G7ZvQu63ttTYLxV5aVjtALrhVrrEFFL7lcqP4zVIZw4=
Subject key identifier: 5E:F7:80:86:3C:45:8E:B2:67:3A:16:33:DF:BB:69:4C:A9:A0:D7:29
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018E08D48540BA209842CE459B765AFF7683
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/XveAhjxFjrJnOhYz37tpTKmg1yk.roa
Signing time: Mon 04 Mar 2024 09:38:49 +0000
ROA not before: Mon 04 Mar 2024 09:38:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 5.1.46.0/24 maxlen: 24
31.216.60.0/24 maxlen: 24
31.222.237.0/24 maxlen: 24
31.222.246.0/24 maxlen: 24
37.140.255.0/24 maxlen: 24
45.84.178.0/24 maxlen: 24
45.129.1.0/24 maxlen: 24
45.129.129.0/24 maxlen: 24
45.129.130.0/24 maxlen: 24
45.129.131.0/24 maxlen: 24
45.132.51.0/24 maxlen: 24
45.135.34.0/24 maxlen: 24
45.138.4.0/24 maxlen: 24
45.138.5.0/24 maxlen: 24
45.138.6.0/24 maxlen: 24
45.138.156.0/24 maxlen: 24
45.138.159.0/24 maxlen: 24
45.140.66.0/24 maxlen: 24
45.140.67.0/24 maxlen: 24
45.142.37.0/24 maxlen: 24
45.144.0.0/24 maxlen: 24
45.146.26.0/24 maxlen: 24
45.159.85.0/24 maxlen: 24
62.3.4.0/24 maxlen: 24
62.3.23.0/24 maxlen: 24
62.106.69.0/24 maxlen: 24
62.204.38.0/24 maxlen: 24
77.246.244.0/24 maxlen: 24
80.68.148.0/24 maxlen: 24
80.68.150.0/24 maxlen: 24
80.73.242.0/24 maxlen: 24
80.73.244.0/24 maxlen: 24
80.91.212.0/24 maxlen: 24
84.246.81.0/24 maxlen: 24
89.107.12.0/24 maxlen: 24
89.248.68.0/24 maxlen: 24
91.247.78.0/24 maxlen: 24
92.119.192.0/24 maxlen: 24
93.93.206.0/24 maxlen: 24
93.190.120.0/24 maxlen: 24
94.103.179.0/24 maxlen: 24
94.103.190.0/24 maxlen: 24
94.124.77.0/24 maxlen: 24
94.143.224.0/24 maxlen: 24
146.19.10.0/24 maxlen: 24
146.19.25.0/24 maxlen: 24
146.19.72.0/24 maxlen: 24
146.19.76.0/24 maxlen: 24
146.19.96.0/24 maxlen: 24
146.19.107.0/24 maxlen: 24
176.100.47.0/24 maxlen: 24
176.116.12.0/24 maxlen: 24
176.222.58.0/24 maxlen: 24
178.212.136.0/24 maxlen: 24
185.81.71.0/24 maxlen: 24
185.140.174.0/24 maxlen: 24
185.207.213.0/24 maxlen: 24
185.222.41.0/24 maxlen: 24
193.32.164.0/24 maxlen: 24
193.32.165.0/24 maxlen: 24
193.32.166.0/24 maxlen: 24
193.32.167.0/24 maxlen: 24
193.36.231.0/24 maxlen: 24
193.53.169.0/24 maxlen: 24
193.58.176.0/24 maxlen: 24
193.58.177.0/24 maxlen: 24
193.160.216.0/24 maxlen: 24
193.160.217.0/24 maxlen: 24
193.160.218.0/24 maxlen: 24
193.163.16.0/24 maxlen: 24
193.163.18.0/24 maxlen: 24
193.201.127.0/24 maxlen: 24
194.104.142.0/24 maxlen: 24
194.104.238.0/24 maxlen: 24
195.225.99.0/24 maxlen: 24
212.52.27.0/24 maxlen: 24
212.52.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Mar 2024 14:13:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:08:d4:85:40:ba:20:98:42:ce:45:9b:76:5a:ff:76:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Mar 4 09:38:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5ef780863c458eb2673a1633dfbb694ca9a0d729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:28:a0:e9:3d:49:fb:9d:ee:40:39:58:23:7d:
60:8e:81:e1:c9:28:fb:89:90:62:62:1c:56:b9:8b:
64:38:32:f1:74:3c:ce:f9:ff:55:dd:89:24:cd:45:
ae:b4:eb:f3:73:e8:9d:9a:eb:5c:8d:ab:99:9d:b1:
46:ee:27:48:3e:df:27:de:d6:c9:84:2a:66:21:34:
81:fa:39:82:62:bc:9a:a2:d4:cf:90:48:81:26:fd:
c0:50:1d:64:06:21:fa:53:0d:78:75:d1:6f:ab:a6:
f6:ff:6d:32:dc:6a:46:f3:c0:64:f6:d1:8f:9f:3e:
4d:2e:6f:71:eb:90:e4:8a:52:f7:e4:e3:56:52:99:
69:48:30:31:f4:7b:56:72:37:a4:f5:b1:bb:ca:e5:
75:dc:de:4d:04:a8:cf:64:e7:53:11:fd:c4:4a:77:
17:4f:88:4b:5d:26:8b:40:be:7a:95:18:f8:a3:25:
45:ae:a9:c9:f8:ad:4a:2c:ae:87:dd:a3:8d:c2:0c:
7b:0d:49:81:34:58:5d:74:75:da:cb:7b:4f:bd:ff:
17:f9:00:75:d7:27:a2:8c:18:64:49:69:62:07:07:
03:53:ff:11:22:ce:5e:d4:b4:b9:61:c4:db:80:30:
f7:83:b1:45:76:22:a8:22:e5:1f:e6:5d:04:bf:5b:
fb:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:F7:80:86:3C:45:8E:B2:67:3A:16:33:DF:BB:69:4C:A9:A0:D7:29
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/XveAhjxFjrJnOhYz37tpTKmg1yk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.46.0/24
31.216.60.0/24
31.222.237.0/24
31.222.246.0/24
37.140.255.0/24
45.84.178.0/24
45.129.1.0/24
45.129.129.0-45.129.131.255
45.132.51.0/24
45.135.34.0/24
45.138.4.0-45.138.6.255
45.138.156.0/24
45.138.159.0/24
45.140.66.0/23
45.142.37.0/24
45.144.0.0/24
45.146.26.0/24
45.159.85.0/24
62.3.4.0/24
62.3.23.0/24
62.106.69.0/24
62.204.38.0/24
77.246.244.0/24
80.68.148.0/24
80.68.150.0/24
80.73.242.0/24
80.73.244.0/24
80.91.212.0/24
84.246.81.0/24
89.107.12.0/24
89.248.68.0/24
91.247.78.0/24
92.119.192.0/24
93.93.206.0/24
93.190.120.0/24
94.103.179.0/24
94.103.190.0/24
94.124.77.0/24
94.143.224.0/24
146.19.10.0/24
146.19.25.0/24
146.19.72.0/24
146.19.76.0/24
146.19.96.0/24
146.19.107.0/24
176.100.47.0/24
176.116.12.0/24
176.222.58.0/24
178.212.136.0/24
185.81.71.0/24
185.140.174.0/24
185.207.213.0/24
185.222.41.0/24
193.32.164.0/22
193.36.231.0/24
193.53.169.0/24
193.58.176.0/23
193.160.216.0-193.160.218.255
193.163.16.0/24
193.163.18.0/24
193.201.127.0/24
194.104.142.0/24
194.104.238.0/24
195.225.99.0/24
212.52.27.0/24
212.52.31.0/24
Signature Algorithm: sha256WithRSAEncryption
45:16:52:2e:5e:4c:c5:0d:92:80:1a:c2:66:09:ea:6e:54:9f:
48:1c:d9:0d:ae:ac:ae:79:35:c5:a4:27:fa:d8:1f:06:bf:f4:
d0:33:ca:94:95:55:23:95:77:00:f3:1f:8c:33:14:e9:f1:48:
fe:7a:56:11:26:7e:91:0a:f6:f7:25:1a:85:c9:b7:4f:ca:cb:
ea:a5:8a:9e:d7:d3:a8:2d:c6:35:fc:d5:80:96:cc:7c:be:a1:
f6:2c:f3:2c:4c:30:15:ec:63:ba:fe:57:f8:27:a4:06:b3:a9:
9d:c6:30:71:8f:93:7c:e5:90:e2:90:e2:6b:6c:53:0e:19:0d:
02:e1:22:76:a4:e2:9d:40:2e:16:69:42:a6:7e:1a:d5:52:c6:
cd:c3:80:91:f2:04:13:ab:91:8f:ad:68:c7:c2:fe:75:20:9d:
9f:eb:dc:10:26:20:2f:45:3c:f4:f4:12:d6:89:71:30:1d:37:
76:96:ac:b5:5a:8c:86:c1:cd:a8:9c:e1:57:1a:bb:2c:f9:b8:
32:d9:08:4b:b8:95:e2:1b:0d:4f:a1:44:26:57:f8:e8:af:16:
8e:52:26:4d:8b:21:64:4a:ae:6d:71:5e:32:28:6c:04:d1:9d:
e6:54:82:1c:33:4f:41:e2:c2:2d:eb:a5:c7:c9:fa:4d:a5:db:
1e:21:f2:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org