Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/cOHFQOvm4fMXmRC_ytRdhdHmAz8.roa
File: cOHFQOvm4fMXmRC_ytRdhdHmAz8.roa (raw, json)
Hash identifier: y1TpKuWA75GAcqoIb2aPxqXaxaJ9hQZHLIg0OS9ZWGU=
Subject key identifier: 70:E1:C5:40:EB:E6:E1:F3:17:99:10:BF:CA:D4:5D:85:D1:E6:03:3F
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018E1EACE43D6A025C6E58F908A47C8BDB65
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/cOHFQOvm4fMXmRC_ytRdhdHmAz8.roa
Signing time: Fri 08 Mar 2024 15:27:10 +0000
ROA not before: Fri 08 Mar 2024 15:27:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 5.1.46.0/24 maxlen: 24
31.216.60.0/24 maxlen: 24
31.222.237.0/24 maxlen: 24
31.222.246.0/24 maxlen: 24
37.140.255.0/24 maxlen: 24
45.84.178.0/24 maxlen: 24
45.129.1.0/24 maxlen: 24
45.129.129.0/24 maxlen: 24
45.129.130.0/24 maxlen: 24
45.129.131.0/24 maxlen: 24
45.132.51.0/24 maxlen: 24
45.135.34.0/24 maxlen: 24
45.138.4.0/24 maxlen: 24
45.138.5.0/24 maxlen: 24
45.138.6.0/24 maxlen: 24
45.138.156.0/24 maxlen: 24
45.138.159.0/24 maxlen: 24
45.140.66.0/24 maxlen: 24
45.140.67.0/24 maxlen: 24
45.142.37.0/24 maxlen: 24
45.144.0.0/24 maxlen: 24
45.146.26.0/24 maxlen: 24
45.159.85.0/24 maxlen: 24
62.3.4.0/24 maxlen: 24
62.3.23.0/24 maxlen: 24
62.106.69.0/24 maxlen: 24
62.204.38.0/24 maxlen: 24
77.246.244.0/24 maxlen: 24
80.68.148.0/24 maxlen: 24
80.68.150.0/24 maxlen: 24
80.73.242.0/24 maxlen: 24
80.73.244.0/24 maxlen: 24
80.91.212.0/24 maxlen: 24
84.246.81.0/24 maxlen: 24
89.107.12.0/24 maxlen: 24
89.248.68.0/24 maxlen: 24
91.247.78.0/24 maxlen: 24
92.119.192.0/24 maxlen: 24
93.93.206.0/24 maxlen: 24
93.157.111.0/24 maxlen: 24
93.190.120.0/24 maxlen: 24
94.103.179.0/24 maxlen: 24
94.103.190.0/24 maxlen: 24
94.124.75.0/24 maxlen: 24
94.124.77.0/24 maxlen: 24
94.143.224.0/24 maxlen: 24
146.19.10.0/24 maxlen: 24
146.19.15.0/24 maxlen: 24
146.19.25.0/24 maxlen: 24
146.19.31.0/24 maxlen: 24
146.19.68.0/24 maxlen: 24
146.19.72.0/24 maxlen: 24
146.19.76.0/24 maxlen: 24
146.19.96.0/24 maxlen: 24
146.19.107.0/24 maxlen: 24
146.19.126.0/24 maxlen: 24
176.100.47.0/24 maxlen: 24
176.116.8.0/24 maxlen: 24
176.116.12.0/24 maxlen: 24
176.222.58.0/24 maxlen: 24
178.212.136.0/24 maxlen: 24
178.212.138.0/24 maxlen: 24
185.81.71.0/24 maxlen: 24
185.140.174.0/24 maxlen: 24
185.207.213.0/24 maxlen: 24
185.222.41.0/24 maxlen: 24
193.32.164.0/24 maxlen: 24
193.32.165.0/24 maxlen: 24
193.32.166.0/24 maxlen: 24
193.32.167.0/24 maxlen: 24
193.36.231.0/24 maxlen: 24
193.53.169.0/24 maxlen: 24
193.58.176.0/24 maxlen: 24
193.58.177.0/24 maxlen: 24
193.160.216.0/24 maxlen: 24
193.160.217.0/24 maxlen: 24
193.160.218.0/24 maxlen: 24
193.163.16.0/24 maxlen: 24
193.163.18.0/24 maxlen: 24
193.201.127.0/24 maxlen: 24
194.26.233.0/24 maxlen: 24
194.104.142.0/24 maxlen: 24
194.104.238.0/24 maxlen: 24
195.64.111.0/24 maxlen: 24
195.96.149.0/24 maxlen: 24
195.225.99.0/24 maxlen: 24
212.52.27.0/24 maxlen: 24
212.52.31.0/24 maxlen: 24
213.109.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Mar 2024 12:12:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:1e:ac:e4:3d:6a:02:5c:6e:58:f9:08:a4:7c:8b:db:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Mar 8 15:27:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=70e1c540ebe6e1f3179910bfcad45d85d1e6033f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:05:ad:39:35:53:5e:02:f1:6e:fe:5a:83:7e:
4d:e0:6d:76:84:66:69:83:ae:51:da:d2:77:70:c9:
db:94:94:0a:a9:c6:2f:20:77:07:45:36:c5:1f:d1:
54:80:0d:a5:e8:32:19:b0:16:8b:ba:07:2a:c3:c3:
da:1f:0f:92:58:00:ae:59:51:3f:a9:ad:5f:8b:8c:
e6:9e:4b:ce:66:65:a0:0b:18:e6:fa:b4:0d:1b:57:
d5:cd:54:06:73:42:b0:bd:68:3c:48:2c:e4:40:c7:
6b:bb:87:90:eb:f1:bb:88:a8:da:a1:fa:a0:3b:05:
0a:bb:1b:0a:a3:e3:00:21:d8:7d:a3:32:57:e6:bc:
9f:ba:11:a7:03:1d:ea:12:ea:d9:d2:8a:91:d7:6f:
6b:b2:25:f2:9c:4e:ca:c9:4c:6b:bc:67:7e:1a:b6:
9e:ba:58:80:a0:81:42:58:f3:87:61:e5:59:5a:f7:
6a:bf:ce:78:1f:86:e6:b1:fe:ea:e9:2e:71:2b:94:
3b:1f:29:96:72:c7:7f:08:82:80:d2:ca:4e:fe:dc:
79:02:91:7a:a2:16:b0:61:64:79:5e:44:03:2d:0e:
2e:52:01:07:67:d9:ff:66:0c:93:3f:a3:dd:88:21:
9f:e8:0b:3b:f5:d9:24:d8:70:7f:1c:e5:5f:ad:76:
c0:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:E1:C5:40:EB:E6:E1:F3:17:99:10:BF:CA:D4:5D:85:D1:E6:03:3F
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/cOHFQOvm4fMXmRC_ytRdhdHmAz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.46.0/24
31.216.60.0/24
31.222.237.0/24
31.222.246.0/24
37.140.255.0/24
45.84.178.0/24
45.129.1.0/24
45.129.129.0-45.129.131.255
45.132.51.0/24
45.135.34.0/24
45.138.4.0-45.138.6.255
45.138.156.0/24
45.138.159.0/24
45.140.66.0/23
45.142.37.0/24
45.144.0.0/24
45.146.26.0/24
45.159.85.0/24
62.3.4.0/24
62.3.23.0/24
62.106.69.0/24
62.204.38.0/24
77.246.244.0/24
80.68.148.0/24
80.68.150.0/24
80.73.242.0/24
80.73.244.0/24
80.91.212.0/24
84.246.81.0/24
89.107.12.0/24
89.248.68.0/24
91.247.78.0/24
92.119.192.0/24
93.93.206.0/24
93.157.111.0/24
93.190.120.0/24
94.103.179.0/24
94.103.190.0/24
94.124.75.0/24
94.124.77.0/24
94.143.224.0/24
146.19.10.0/24
146.19.15.0/24
146.19.25.0/24
146.19.31.0/24
146.19.68.0/24
146.19.72.0/24
146.19.76.0/24
146.19.96.0/24
146.19.107.0/24
146.19.126.0/24
176.100.47.0/24
176.116.8.0/24
176.116.12.0/24
176.222.58.0/24
178.212.136.0/24
178.212.138.0/24
185.81.71.0/24
185.140.174.0/24
185.207.213.0/24
185.222.41.0/24
193.32.164.0/22
193.36.231.0/24
193.53.169.0/24
193.58.176.0/23
193.160.216.0-193.160.218.255
193.163.16.0/24
193.163.18.0/24
193.201.127.0/24
194.26.233.0/24
194.104.142.0/24
194.104.238.0/24
195.64.111.0/24
195.96.149.0/24
195.225.99.0/24
212.52.27.0/24
212.52.31.0/24
213.109.196.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:e1:f9:73:7d:e9:f0:5b:61:89:1f:9d:2a:9a:05:21:91:5a:
8f:e6:19:45:e3:0d:3e:aa:67:a6:66:cc:5e:ae:23:b4:ce:16:
7e:b2:f9:e2:d3:76:68:05:25:31:5e:f9:17:eb:17:fd:65:3b:
c2:d8:6b:39:85:16:5c:1b:36:47:a6:51:6b:ff:eb:96:df:64:
72:de:ac:31:2c:ae:94:6c:2d:65:b2:4f:11:c0:72:7f:0a:52:
a5:45:b7:3b:7e:f0:3f:b4:89:43:e7:3e:fe:34:b4:35:a8:72:
4b:45:b6:b7:94:9f:17:d5:ce:b0:4f:a7:7b:dd:01:cf:91:e4:
36:75:7a:ee:49:62:f2:51:97:4e:44:83:b4:37:af:2d:30:c3:
7d:19:92:d0:48:c4:36:05:6e:e4:d4:21:01:bf:71:7b:24:56:
8a:37:1e:31:65:d1:09:6e:8e:61:e5:4f:83:4b:06:da:47:e2:
60:07:07:1f:7f:7a:7f:62:56:d9:39:bd:16:b1:04:d5:58:5c:
3a:38:34:0c:dc:b6:24:8a:22:d1:90:0b:b9:68:37:1e:8a:79:
31:1e:00:be:56:a4:a5:2b:a8:1c:29:a7:b3:be:3b:16:95:4d:
84:f3:8b:ec:df:e6:6f:94:58:09:8e:27:cf:21:6b:8b:34:a5:
43:3f:81:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 11 15:12:35 2024 by rpki-client on console-ams.rpki-client.org