Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/cGRh4_NSgr6aKoSBccZm0pudF-0.roa
File: cGRh4_NSgr6aKoSBccZm0pudF-0.roa (raw, json)
Hash identifier: /ygrxzxBUUI9mdl3zu65AKVFHnJPCCKpbkX0jhfIHeo=
Subject key identifier: 70:64:61:E3:F3:52:82:BE:9A:2A:84:81:71:C6:66:D2:9B:9D:17:ED
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018E2D6DFA8FCB6912B01F1219EB87DEB0C3
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/cGRh4_NSgr6aKoSBccZm0pudF-0.roa
Signing time: Mon 11 Mar 2024 12:12:45 +0000
ROA not before: Mon 11 Mar 2024 12:12:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49505
IP address blocks: 2.59.49.0/24 maxlen: 24
31.216.60.0/24 maxlen: 24
37.221.82.0/23 maxlen: 23
45.10.64.0/22 maxlen: 22
45.10.80.0/22 maxlen: 22
45.11.196.0/24 maxlen: 24
45.15.238.0/24 maxlen: 24
45.93.80.0/24 maxlen: 24
45.132.36.0/24 maxlen: 24
45.132.37.0/24 maxlen: 24
45.132.38.0/24 maxlen: 24
45.132.128.0/24 maxlen: 24
45.132.129.0/24 maxlen: 24
45.138.213.0/24 maxlen: 24
45.138.214.0/24 maxlen: 24
45.139.52.0/24 maxlen: 24
45.139.53.0/24 maxlen: 24
45.139.55.0/24 maxlen: 24
45.140.64.0/24 maxlen: 24
45.140.72.0/22 maxlen: 22
45.146.24.0/24 maxlen: 24
45.146.25.0/24 maxlen: 24
45.146.27.0/24 maxlen: 24
45.147.12.0/24 maxlen: 24
45.147.13.0/24 maxlen: 24
45.147.14.0/24 maxlen: 24
45.147.15.0/24 maxlen: 24
45.149.129.0/24 maxlen: 24
45.152.116.0/24 maxlen: 24
45.152.117.0/24 maxlen: 24
45.159.84.0/24 maxlen: 24
45.159.87.0/24 maxlen: 24
62.233.34.0/24 maxlen: 24
62.233.48.0/24 maxlen: 24
84.246.81.0/24 maxlen: 24
89.107.12.0/24 maxlen: 24
91.199.189.0/24 maxlen: 24
91.206.68.0/24 maxlen: 24
91.236.121.0/24 maxlen: 24
93.157.111.0/24 maxlen: 24
93.190.120.0/24 maxlen: 24
94.124.75.0/24 maxlen: 24
94.124.77.0/24 maxlen: 24
176.116.8.0/24 maxlen: 24
176.116.12.0/24 maxlen: 24
176.116.24.0/24 maxlen: 24
176.222.56.0/24 maxlen: 24
176.222.57.0/24 maxlen: 24
176.222.59.0/24 maxlen: 24
185.188.41.0/24 maxlen: 24
193.5.28.0/24 maxlen: 24
193.31.4.0/24 maxlen: 24
193.31.5.0/24 maxlen: 24
193.58.170.0/24 maxlen: 24
193.107.22.0/24 maxlen: 24
194.104.228.0/24 maxlen: 24
195.216.132.0/22 maxlen: 22
195.225.99.0/24 maxlen: 24
213.166.64.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 12 Mar 2024 10:44:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:2d:6d:fa:8f:cb:69:12:b0:1f:12:19:eb:87:de:b0:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Mar 11 12:12:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=706461e3f35282be9a2a848171c666d29b9d17ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:29:d6:3a:3c:53:54:3d:42:7e:0e:ad:4b:ae:
89:d3:de:81:93:31:db:c8:ae:80:72:c2:8b:49:67:
02:67:fc:1c:3b:06:19:f8:53:1f:64:e0:04:6e:e9:
3b:5a:21:8f:0f:94:64:14:55:0f:7a:a0:06:98:42:
b5:01:2e:b0:9c:9b:5b:2c:0c:47:4c:fb:c1:af:26:
7d:4c:e8:a8:34:3e:be:7b:fc:af:cf:1c:b9:04:21:
fb:66:b6:dd:d5:e6:30:88:17:5b:72:11:07:c0:93:
5a:e6:30:05:00:e5:9a:19:1c:3a:74:1c:12:36:44:
1a:db:be:da:b2:1b:48:2a:e7:54:87:d4:ec:df:1f:
ac:fb:be:b2:b4:51:38:7a:8a:13:4e:d2:f2:d9:57:
8f:9c:31:71:1d:83:1d:bf:aa:a3:75:a7:cd:ed:44:
ae:2e:57:e5:ca:83:8d:96:5f:ed:6e:3b:c7:fb:62:
62:d6:c1:e9:e6:b9:54:ae:5a:bb:61:0a:ff:37:3b:
84:4f:6d:80:1d:f2:6e:57:95:47:f8:75:e4:d3:ee:
5b:4d:d1:c8:05:5d:25:19:4b:a4:67:6f:4f:08:75:
d9:2b:3a:4a:4d:a0:21:5b:26:cf:b8:7b:08:7e:94:
b7:1a:2c:e4:41:f5:ff:d6:3e:8e:49:a6:a6:38:c1:
41:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:64:61:E3:F3:52:82:BE:9A:2A:84:81:71:C6:66:D2:9B:9D:17:ED
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/cGRh4_NSgr6aKoSBccZm0pudF-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.49.0/24
31.216.60.0/24
37.221.82.0/23
45.10.64.0/22
45.10.80.0/22
45.11.196.0/24
45.15.238.0/24
45.93.80.0/24
45.132.36.0-45.132.38.255
45.132.128.0/23
45.138.213.0-45.138.214.255
45.139.52.0/23
45.139.55.0/24
45.140.64.0/24
45.140.72.0/22
45.146.24.0/23
45.146.27.0/24
45.147.12.0/22
45.149.129.0/24
45.152.116.0/23
45.159.84.0/24
45.159.87.0/24
62.233.34.0/24
62.233.48.0/24
84.246.81.0/24
89.107.12.0/24
91.199.189.0/24
91.206.68.0/24
91.236.121.0/24
93.157.111.0/24
93.190.120.0/24
94.124.75.0/24
94.124.77.0/24
176.116.8.0/24
176.116.12.0/24
176.116.24.0/24
176.222.56.0/23
176.222.59.0/24
185.188.41.0/24
193.5.28.0/24
193.31.4.0/23
193.58.170.0/24
193.107.22.0/24
194.104.228.0/24
195.216.132.0/22
195.225.99.0/24
213.166.64.0/22
Signature Algorithm: sha256WithRSAEncryption
52:ca:25:f8:94:da:9f:50:b8:96:38:45:b0:c5:ea:d7:6d:2d:
80:48:08:a6:9f:3c:45:1e:0c:c5:64:88:47:84:16:77:a4:9a:
52:57:31:f7:76:a5:c7:be:95:74:98:4b:01:55:91:7c:45:d5:
c9:1d:56:e5:ce:d7:02:a4:91:47:bf:8a:45:76:60:a0:ae:67:
82:97:ba:64:5e:61:b3:43:6d:63:af:19:03:5d:c2:37:40:c2:
12:98:af:71:3b:c9:bb:e2:67:13:af:2c:56:ed:77:5d:1a:f0:
e8:f1:4d:66:4d:e7:ae:88:96:10:f7:ea:63:8c:07:86:6b:2a:
ac:98:5f:46:81:3b:44:95:ce:72:2c:43:31:a4:09:cb:7c:21:
4c:48:05:3c:65:d3:ca:0c:07:3d:5b:7f:c4:df:33:9a:ee:82:
f4:85:49:e5:25:62:51:1c:da:6f:4e:e4:8f:a1:7a:f4:ad:ae:
35:8d:87:79:80:63:ce:e6:9c:e2:4c:f8:e2:2e:47:15:07:99:
d3:08:6b:64:bb:ee:5d:ed:31:08:21:39:7c:ac:fd:e6:eb:27:
34:5d:51:75:08:b8:fa:4c:1e:38:d1:f6:a4:20:9f:a7:bc:13:
2c:c5:89:dc:6c:53:c2:70:bb:fc:b7:fc:de:b7:5f:95:b8:da:
32:ac:bd:de
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org