Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/t11wQ9kxoG698IyfWTPOjk4lkns.roa
File: t11wQ9kxoG698IyfWTPOjk4lkns.roa (raw, json)
Hash identifier: F5ydLe+u/0pfHdbw6zLBuyVgtrBbWksl9Hf/oIb5e9M=
Subject key identifier: B7:5D:70:43:D9:31:A0:6E:BD:F0:8C:9F:59:33:CE:8E:4E:25:92:7B
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018E1EACE32363790C5698AB40336B388208
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/t11wQ9kxoG698IyfWTPOjk4lkns.roa
Signing time: Fri 08 Mar 2024 15:27:10 +0000
ROA not before: Fri 08 Mar 2024 15:27:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49505
IP address blocks: 2.59.49.0/24 maxlen: 24
31.216.60.0/24 maxlen: 24
37.221.82.0/23 maxlen: 23
45.10.64.0/22 maxlen: 22
45.10.80.0/22 maxlen: 22
45.11.196.0/24 maxlen: 24
45.15.238.0/24 maxlen: 24
45.93.80.0/24 maxlen: 24
45.132.36.0/24 maxlen: 24
45.132.37.0/24 maxlen: 24
45.132.38.0/24 maxlen: 24
45.132.128.0/24 maxlen: 24
45.132.129.0/24 maxlen: 24
45.138.213.0/24 maxlen: 24
45.138.214.0/24 maxlen: 24
45.139.52.0/24 maxlen: 24
45.139.53.0/24 maxlen: 24
45.139.55.0/24 maxlen: 24
45.140.64.0/24 maxlen: 24
45.140.72.0/22 maxlen: 22
45.146.24.0/24 maxlen: 24
45.146.25.0/24 maxlen: 24
45.146.27.0/24 maxlen: 24
45.147.12.0/24 maxlen: 24
45.147.13.0/24 maxlen: 24
45.147.14.0/24 maxlen: 24
45.147.15.0/24 maxlen: 24
45.149.129.0/24 maxlen: 24
45.152.116.0/24 maxlen: 24
45.152.117.0/24 maxlen: 24
45.159.84.0/24 maxlen: 24
45.159.87.0/24 maxlen: 24
62.233.34.0/24 maxlen: 24
62.233.48.0/24 maxlen: 24
84.246.81.0/24 maxlen: 24
89.107.12.0/24 maxlen: 24
91.199.189.0/24 maxlen: 24
91.206.68.0/24 maxlen: 24
91.236.121.0/24 maxlen: 24
93.157.111.0/24 maxlen: 24
93.190.120.0/24 maxlen: 24
94.124.75.0/24 maxlen: 24
94.124.77.0/24 maxlen: 24
176.116.8.0/24 maxlen: 24
176.116.12.0/24 maxlen: 24
176.222.56.0/24 maxlen: 24
176.222.57.0/24 maxlen: 24
176.222.59.0/24 maxlen: 24
185.188.41.0/24 maxlen: 24
193.5.28.0/24 maxlen: 24
193.31.4.0/24 maxlen: 24
193.31.5.0/24 maxlen: 24
193.58.170.0/24 maxlen: 24
193.107.22.0/24 maxlen: 24
194.104.228.0/24 maxlen: 24
195.216.132.0/22 maxlen: 22
195.225.99.0/24 maxlen: 24
213.166.64.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 11 Mar 2024 12:12:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:1e:ac:e3:23:63:79:0c:56:98:ab:40:33:6b:38:82:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Mar 8 15:27:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b75d7043d931a06ebdf08c9f5933ce8e4e25927b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:27:54:a9:14:67:c9:a9:0f:d1:bf:ae:57:88:
08:75:53:6c:33:51:04:c2:60:c9:4f:d9:1a:c5:3e:
ad:a0:43:04:88:22:28:9f:63:31:1b:e8:96:82:8c:
3c:6d:7a:71:1b:f9:ab:ed:53:34:73:a9:50:3f:f9:
f2:b4:3e:09:cb:2c:10:4c:34:0b:6e:75:0c:55:dd:
dd:e7:52:3c:d1:13:79:e0:93:08:36:46:a4:89:7d:
9e:a5:01:71:93:83:77:26:35:6b:6a:9b:18:e2:bc:
12:b7:6a:f0:ed:19:3b:9b:6c:85:14:43:00:2b:f9:
6c:06:0c:53:ab:07:c9:0e:c6:33:c1:25:e2:34:81:
06:6a:97:b4:0b:73:88:c1:14:5d:c6:ea:c2:d9:77:
2f:a3:37:47:8a:ba:4e:23:61:81:9a:20:65:01:c8:
b5:96:dc:95:b5:4d:30:42:bc:45:49:f5:15:35:df:
07:3f:db:54:77:c5:77:fa:0a:77:71:c2:70:0c:4b:
db:3f:af:b0:11:5a:53:9d:a3:55:b5:0e:cd:1b:f1:
58:af:f3:af:97:c1:19:99:42:63:5a:bf:fe:de:dc:
85:c5:79:5a:af:cd:c1:e1:d9:90:e4:81:34:e0:4b:
35:5e:4e:d6:e9:e6:f5:6e:b0:5a:12:ca:46:e8:a3:
31:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:5D:70:43:D9:31:A0:6E:BD:F0:8C:9F:59:33:CE:8E:4E:25:92:7B
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/t11wQ9kxoG698IyfWTPOjk4lkns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.49.0/24
31.216.60.0/24
37.221.82.0/23
45.10.64.0/22
45.10.80.0/22
45.11.196.0/24
45.15.238.0/24
45.93.80.0/24
45.132.36.0-45.132.38.255
45.132.128.0/23
45.138.213.0-45.138.214.255
45.139.52.0/23
45.139.55.0/24
45.140.64.0/24
45.140.72.0/22
45.146.24.0/23
45.146.27.0/24
45.147.12.0/22
45.149.129.0/24
45.152.116.0/23
45.159.84.0/24
45.159.87.0/24
62.233.34.0/24
62.233.48.0/24
84.246.81.0/24
89.107.12.0/24
91.199.189.0/24
91.206.68.0/24
91.236.121.0/24
93.157.111.0/24
93.190.120.0/24
94.124.75.0/24
94.124.77.0/24
176.116.8.0/24
176.116.12.0/24
176.222.56.0/23
176.222.59.0/24
185.188.41.0/24
193.5.28.0/24
193.31.4.0/23
193.58.170.0/24
193.107.22.0/24
194.104.228.0/24
195.216.132.0/22
195.225.99.0/24
213.166.64.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:65:95:45:6f:cc:00:e1:a2:0c:54:df:b7:12:b4:0d:08:77:
97:3c:35:97:e7:66:47:cd:78:4b:35:b2:eb:77:31:d0:58:38:
9b:38:89:5d:82:9c:9a:eb:ee:c4:5e:aa:fa:91:30:a1:19:47:
94:c8:54:b3:dd:e5:db:06:ae:e5:47:0e:f0:b9:1a:64:15:c9:
c7:db:93:25:3d:d5:38:91:17:1b:53:26:0e:dd:3e:9a:a8:5b:
9f:e4:4a:00:32:ce:64:cc:40:af:b1:9b:00:3a:4c:5c:b2:25:
f7:74:c3:f5:2c:19:87:73:f6:cf:e4:d9:5c:99:9b:98:73:9b:
a9:3d:4f:89:e6:20:11:55:f5:b9:ae:6d:52:e5:cb:80:2f:62:
bd:f3:5c:13:7a:17:13:b0:02:6c:e5:19:fd:17:9f:46:80:a9:
44:a2:93:68:f1:53:4f:6f:23:61:0c:e3:49:b3:2f:06:69:9c:
a8:21:bd:45:dd:78:02:b2:4a:b1:ec:c4:95:6a:63:8a:9f:68:
8a:b3:d7:ea:de:c9:20:14:3a:0f:a9:14:57:f7:27:d3:71:c3:
2c:c6:12:a4:96:fd:b2:88:a9:f9:f4:bc:c0:1b:e1:ee:b5:f2:
a5:d9:2c:0a:d4:2a:c2:64:18:92:6e:e5:de:46:e2:a7:62:a0:
d6:d5:4d:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org