Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/z0TIMp4MQBo5mqb2mSSalJ8vNwc.roa
File: z0TIMp4MQBo5mqb2mSSalJ8vNwc.roa (raw, json)
Hash identifier: AIJEDe5S/vnexUxG5/qCOIohaC0bKC/xD9AQbZat1Xc=
Subject key identifier: CF:44:C8:32:9E:0C:40:1A:39:9A:A6:F6:99:24:9A:94:9F:2F:37:07
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018E3352C0A82A1FB7972828AE034A82FCA1
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/z0TIMp4MQBo5mqb2mSSalJ8vNwc.roa
Signing time: Tue 12 Mar 2024 15:40:45 +0000
ROA not before: Tue 12 Mar 2024 15:40:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 2.56.112.0/24 maxlen: 24
2.56.113.0/24 maxlen: 24
5.183.128.0/24 maxlen: 24
31.222.248.0/24 maxlen: 24
45.157.136.0/24 maxlen: 24
62.68.83.0/24 maxlen: 24
62.68.86.0/24 maxlen: 24
62.204.36.0/24 maxlen: 24
62.204.57.0/24 maxlen: 24
62.233.35.0/24 maxlen: 24
62.233.49.0/24 maxlen: 24
62.233.56.0/24 maxlen: 24
62.233.60.0/24 maxlen: 24
80.68.145.0/24 maxlen: 24
80.91.209.0/24 maxlen: 24
80.91.210.0/24 maxlen: 24
91.213.117.0/24 maxlen: 24
91.226.247.0/24 maxlen: 24
91.242.225.0/24 maxlen: 24
91.242.236.0/24 maxlen: 24
91.242.238.0/24 maxlen: 24
94.143.226.0/24 maxlen: 24
94.158.191.0/24 maxlen: 24
130.193.79.0/24 maxlen: 24
130.255.169.0/24 maxlen: 24
146.19.137.0/24 maxlen: 24
146.19.148.0/24 maxlen: 24
146.19.150.0/24 maxlen: 24
146.19.152.0/24 maxlen: 24
146.19.185.0/24 maxlen: 24
146.19.187.0/24 maxlen: 24
146.19.194.0/24 maxlen: 24
176.56.38.0/24 maxlen: 24
178.211.140.0/24 maxlen: 24
185.122.206.0/24 maxlen: 24
185.140.172.0/24 maxlen: 24
185.198.153.0/24 maxlen: 24
185.218.1.0/24 maxlen: 24
185.232.47.0/24 maxlen: 24
193.3.22.0/24 maxlen: 24
193.141.53.0/24 maxlen: 24
193.239.209.0/24 maxlen: 24
194.26.216.0/24 maxlen: 24
194.26.221.0/24 maxlen: 24
194.32.243.0/24 maxlen: 24
195.64.106.0/24 maxlen: 24
195.64.109.0/24 maxlen: 24
195.64.110.0/24 maxlen: 24
195.64.112.0/24 maxlen: 24
195.64.114.0/24 maxlen: 24
195.64.117.0/24 maxlen: 24
195.93.249.0/24 maxlen: 24
195.96.136.0/24 maxlen: 24
195.96.146.0/24 maxlen: 24
195.96.155.0/24 maxlen: 24
195.96.157.0/24 maxlen: 24
212.18.96.0/24 maxlen: 24
212.18.103.0/24 maxlen: 24
212.52.5.0/24 maxlen: 24
217.114.32.0/24 maxlen: 24
217.119.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 15:27:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:33:52:c0:a8:2a:1f:b7:97:28:28:ae:03:4a:82:fc:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Mar 12 15:40:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cf44c8329e0c401a399aa6f699249a949f2f3707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:8b:3b:e8:03:c0:b9:f1:cd:ad:c2:77:56:24:
d1:25:3d:e3:b4:b6:bd:80:5e:cd:2c:07:01:6c:f9:
c4:29:5b:87:f5:45:e5:55:1a:95:2e:07:42:78:5f:
06:a6:79:52:81:83:db:12:9b:7b:26:2d:21:f9:11:
73:79:e8:54:8e:13:f4:76:54:5f:5c:46:fa:ad:21:
11:12:85:7e:ed:2b:46:61:43:03:33:b4:a3:83:38:
3e:53:88:04:1a:11:ec:25:4f:ab:98:37:1c:90:d9:
5c:9d:f3:55:1c:58:21:5d:e6:da:ce:aa:e0:fa:96:
e7:3d:83:e4:ee:dc:6a:9e:54:c9:64:93:d9:56:d5:
a8:84:e8:1d:3e:f6:7e:e5:2b:9f:22:13:ff:3f:33:
d3:a5:1c:d2:32:27:b2:91:4e:51:3e:51:37:4b:86:
6e:41:ea:7e:71:7f:87:88:6a:af:70:16:27:bf:ea:
61:2e:42:68:9f:e4:78:10:10:9c:58:f4:55:18:cb:
0d:e0:07:29:66:6d:f6:78:92:48:ee:40:e0:40:d3:
df:ce:0c:28:ce:43:b5:17:95:a3:c6:fe:b1:08:63:
d1:4b:d4:72:b9:94:76:48:2d:ef:00:64:b1:17:85:
53:bc:da:02:6f:33:b0:0d:c8:aa:ca:4d:30:1b:41:
df:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:44:C8:32:9E:0C:40:1A:39:9A:A6:F6:99:24:9A:94:9F:2F:37:07
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/z0TIMp4MQBo5mqb2mSSalJ8vNwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.112.0/23
5.183.128.0/24
31.222.248.0/24
45.157.136.0/24
62.68.83.0/24
62.68.86.0/24
62.204.36.0/24
62.204.57.0/24
62.233.35.0/24
62.233.49.0/24
62.233.56.0/24
62.233.60.0/24
80.68.145.0/24
80.91.209.0-80.91.210.255
91.213.117.0/24
91.226.247.0/24
91.242.225.0/24
91.242.236.0/24
91.242.238.0/24
94.143.226.0/24
94.158.191.0/24
130.193.79.0/24
130.255.169.0/24
146.19.137.0/24
146.19.148.0/24
146.19.150.0/24
146.19.152.0/24
146.19.185.0/24
146.19.187.0/24
146.19.194.0/24
176.56.38.0/24
178.211.140.0/24
185.122.206.0/24
185.140.172.0/24
185.198.153.0/24
185.218.1.0/24
185.232.47.0/24
193.3.22.0/24
193.141.53.0/24
193.239.209.0/24
194.26.216.0/24
194.26.221.0/24
194.32.243.0/24
195.64.106.0/24
195.64.109.0-195.64.110.255
195.64.112.0/24
195.64.114.0/24
195.64.117.0/24
195.93.249.0/24
195.96.136.0/24
195.96.146.0/24
195.96.155.0/24
195.96.157.0/24
212.18.96.0/24
212.18.103.0/24
212.52.5.0/24
217.114.32.0/24
217.119.130.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:7a:8c:ac:46:a5:d7:10:d0:cc:c4:a2:90:38:79:ce:13:1b:
41:3d:f2:08:8a:3e:71:2c:6a:4b:7f:ee:93:3e:c0:67:8a:31:
e4:d2:14:78:13:13:e9:44:00:8b:50:3f:e6:29:4c:fa:58:ed:
dd:ce:d1:94:85:dc:d6:f6:e7:9c:4c:ee:c1:b7:49:43:62:69:
62:f6:52:19:91:2d:20:3b:e5:b3:83:91:9e:1c:2e:2c:89:2b:
3c:8b:6f:eb:3c:00:b1:50:c3:fa:3c:5e:ae:98:cf:f3:b2:d2:
49:62:2c:8d:ab:a6:17:ad:bb:17:55:89:c8:ad:9b:4c:e7:f3:
9e:92:4c:01:a4:ea:3e:b6:7b:93:7b:1a:ce:e9:c8:09:72:a2:
d5:19:54:53:87:5b:74:d1:31:e5:97:ef:dd:f5:11:79:f1:81:
26:f9:54:a7:44:f6:64:18:b5:b8:a5:ad:b6:e9:0b:d3:6b:5b:
9a:17:4a:a5:bb:0c:a1:8a:0f:ce:69:51:b5:3b:d3:64:22:75:
cc:8c:ef:28:2c:15:d4:a6:4c:70:e8:93:81:39:a6:a9:7a:70:
bc:1f:6f:a4:7b:e3:d2:d1:f4:e7:de:a5:02:1e:e8:1a:f0:b3:
e7:b6:52:53:5d:6b:b0:20:7d:24:fe:6c:ea:8e:c1:36:03:34:
5d:fd:dc:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org