Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/wLQv3_RJfDZd1J20QgN7OQ2RvDg.roa
File: wLQv3_RJfDZd1J20QgN7OQ2RvDg.roa (raw, json)
Hash identifier: xPvi36QLK6sKw+MVfBmnm2/AZUrQP5rAxxp2aB32f/E=
Subject key identifier: C0:B4:2F:DF:F4:49:7C:36:5D:D4:9D:B4:42:03:7B:39:0D:91:BC:38
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018DD1E8C5880E75D2AC620CEE10765DDD9A
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/wLQv3_RJfDZd1J20QgN7OQ2RvDg.roa
Signing time: Thu 22 Feb 2024 17:41:49 +0000
ROA not before: Thu 22 Feb 2024 17:41:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 5.1.46.0/24 maxlen: 24
45.84.178.0/24 maxlen: 24
45.129.1.0/24 maxlen: 24
45.129.129.0/24 maxlen: 24
45.129.130.0/24 maxlen: 24
45.129.131.0/24 maxlen: 24
45.132.51.0/24 maxlen: 24
45.135.34.0/24 maxlen: 24
45.138.4.0/24 maxlen: 24
45.138.5.0/24 maxlen: 24
45.138.6.0/24 maxlen: 24
45.138.156.0/24 maxlen: 24
45.138.159.0/24 maxlen: 24
45.140.66.0/24 maxlen: 24
45.140.67.0/24 maxlen: 24
45.142.37.0/24 maxlen: 24
45.144.0.0/24 maxlen: 24
45.146.26.0/24 maxlen: 24
45.159.85.0/24 maxlen: 24
62.3.4.0/24 maxlen: 24
62.3.23.0/24 maxlen: 24
77.246.244.0/24 maxlen: 24
80.68.148.0/24 maxlen: 24
80.68.150.0/24 maxlen: 24
84.246.81.0/24 maxlen: 24
89.107.12.0/24 maxlen: 24
89.248.68.0/24 maxlen: 24
91.247.78.0/24 maxlen: 24
92.119.192.0/24 maxlen: 24
93.93.206.0/24 maxlen: 24
94.103.179.0/24 maxlen: 24
146.19.76.0/24 maxlen: 24
176.100.47.0/24 maxlen: 24
176.116.12.0/24 maxlen: 24
176.222.58.0/24 maxlen: 24
185.81.71.0/24 maxlen: 24
185.207.213.0/24 maxlen: 24
185.222.41.0/24 maxlen: 24
193.32.164.0/24 maxlen: 24
193.32.165.0/24 maxlen: 24
193.32.166.0/24 maxlen: 24
193.32.167.0/24 maxlen: 24
193.36.231.0/24 maxlen: 24
193.53.169.0/24 maxlen: 24
193.58.176.0/24 maxlen: 24
193.58.177.0/24 maxlen: 24
193.160.216.0/24 maxlen: 24
193.160.217.0/24 maxlen: 24
193.160.218.0/24 maxlen: 24
193.163.16.0/24 maxlen: 24
193.201.127.0/24 maxlen: 24
194.104.142.0/24 maxlen: 24
194.104.238.0/24 maxlen: 24
195.225.99.0/24 maxlen: 24
212.52.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Feb 2024 18:35:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d1:e8:c5:88:0e:75:d2:ac:62:0c:ee:10:76:5d:dd:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 22 17:41:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c0b42fdff4497c365dd49db442037b390d91bc38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:df:27:6c:b6:54:39:78:39:48:cb:ec:24:bf:
dd:d2:34:dc:2d:e6:60:51:e7:19:8d:cc:83:df:57:
55:ee:2b:f8:07:93:5e:45:5c:63:e5:22:a6:76:4c:
85:68:24:aa:26:22:00:d7:e7:c3:f6:90:9f:e8:e0:
22:1c:f5:32:14:92:ea:cd:96:8c:73:d0:0b:ff:8f:
cd:9e:38:e7:91:f1:31:20:86:bb:a2:16:6e:4f:17:
54:1a:31:ba:1c:ea:db:ac:15:f1:7a:6b:0b:c3:61:
c8:83:0a:2e:8c:d3:7c:a7:d2:8e:10:40:20:0d:24:
2a:74:59:7e:24:f3:05:ad:f0:78:20:9d:19:be:fe:
93:9c:0d:a6:22:32:5b:e7:1f:94:b1:c8:05:78:18:
4c:33:8c:a6:dd:98:3b:f6:cd:18:63:eb:49:f2:22:
6d:10:50:bd:fe:5c:9e:02:3c:d3:e8:2e:52:f0:d4:
de:47:a0:ed:60:84:81:8e:0b:bf:01:5a:eb:4e:5e:
db:da:38:f8:3a:ed:46:83:15:cc:fa:67:17:51:2e:
a8:4c:fe:f3:77:c8:36:27:46:3c:71:6d:f5:8e:b9:
76:6e:a5:ea:d4:5e:fb:4e:67:74:e5:38:6c:b0:70:
63:b2:35:fa:d6:36:9b:ec:1b:19:c5:44:65:7a:cd:
e9:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:B4:2F:DF:F4:49:7C:36:5D:D4:9D:B4:42:03:7B:39:0D:91:BC:38
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/wLQv3_RJfDZd1J20QgN7OQ2RvDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.46.0/24
45.84.178.0/24
45.129.1.0/24
45.129.129.0-45.129.131.255
45.132.51.0/24
45.135.34.0/24
45.138.4.0-45.138.6.255
45.138.156.0/24
45.138.159.0/24
45.140.66.0/23
45.142.37.0/24
45.144.0.0/24
45.146.26.0/24
45.159.85.0/24
62.3.4.0/24
62.3.23.0/24
77.246.244.0/24
80.68.148.0/24
80.68.150.0/24
84.246.81.0/24
89.107.12.0/24
89.248.68.0/24
91.247.78.0/24
92.119.192.0/24
93.93.206.0/24
94.103.179.0/24
146.19.76.0/24
176.100.47.0/24
176.116.12.0/24
176.222.58.0/24
185.81.71.0/24
185.207.213.0/24
185.222.41.0/24
193.32.164.0/22
193.36.231.0/24
193.53.169.0/24
193.58.176.0/23
193.160.216.0-193.160.218.255
193.163.16.0/24
193.201.127.0/24
194.104.142.0/24
194.104.238.0/24
195.225.99.0/24
212.52.31.0/24
Signature Algorithm: sha256WithRSAEncryption
52:80:ea:70:26:80:0b:54:dd:97:c9:fd:f7:df:e5:99:fd:14:
e8:a9:8b:e0:27:c3:0e:44:67:47:0c:ca:7c:32:7c:96:ba:eb:
9b:51:0d:7e:bd:57:bb:72:77:26:89:4d:af:8e:ee:0e:41:20:
2d:5d:91:d9:04:d7:a3:03:37:47:ea:75:d2:84:a1:b4:05:84:
ad:fd:cb:b9:0c:e2:60:4f:6f:2b:a5:a7:54:a1:3d:85:2c:0e:
fc:e1:66:d6:50:8c:69:d7:d3:70:5e:44:75:b5:dd:d9:c6:52:
b4:c7:a4:7c:8c:ea:99:dd:60:9a:b4:5d:f1:66:8d:4f:ed:a8:
5b:b4:09:f6:dc:75:ca:80:7c:c4:67:45:27:cd:59:f6:5f:b7:
79:b1:73:7e:a3:1a:62:fe:e3:6f:68:b3:64:aa:22:ad:3c:cb:
ba:5a:4c:12:1f:32:5f:78:2f:74:88:60:67:a8:53:4c:e7:51:
a5:58:08:1b:d0:20:84:af:8d:5d:37:cc:b3:08:ad:9a:c0:25:
a9:4c:fe:7e:27:f1:18:2a:48:a4:8d:6d:3a:0a:47:86:40:6d:
08:55:c0:d5:b8:20:ea:1e:a6:fa:ef:bf:9b:9f:4e:48:a4:58:
fa:46:2b:0d:7d:f8:cb:69:d5:1c:54:b7:7f:6f:5b:44:58:d6:
ae:5a:a0:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org