Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/60e8fa-ec5c-4594-9ec4-be7a1a001ccf/1/1-rU3pjMS1lXMTZxcW2HSqpbpPHI.roa
File: 1-rU3pjMS1lXMTZxcW2HSqpbpPHI.roa (raw, json)
Hash identifier: /4d7Dpehfg6MK7JyYPSFbCQvv4YLopB0lIRm6gyDt0I=
Subject key identifier: FA:B5:37:A6:33:12:D6:55:CC:4D:9C:5C:5B:61:D2:AA:96:E9:3C:72
Certificate issuer: /CN=845c2379efed10056cf865d52c32e1e1eba8c140
Certificate serial: 01924ED229CC038315713287ED487FBB39A1
Authority key identifier: 84:5C:23:79:EF:ED:10:05:6C:F8:65:D5:2C:32:E1:E1:EB:A8:C1:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFwjee_tEAVs-GXVLDLh4euowUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/60e8fa-ec5c-4594-9ec4-be7a1a001ccf/1/1-rU3pjMS1lXMTZxcW2HSqpbpPHI.roa
Signing time: Wed 02 Oct 2024 20:00:49 +0000
ROA not before: Wed 02 Oct 2024 20:00:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1299
IP address blocks: 62.77.196.0/22 maxlen: 24
62.77.240.0/23 maxlen: 24
62.77.248.0/21 maxlen: 24
62.165.192.0/18 maxlen: 24
77.234.64.0/19 maxlen: 24
79.120.160.0/21 maxlen: 24
79.120.170.0/23 maxlen: 24
79.120.172.0/22 maxlen: 24
79.120.248.0/23 maxlen: 24
79.120.252.0/22 maxlen: 24
81.0.82.0/23 maxlen: 24
81.0.84.0/22 maxlen: 24
81.0.90.0/23 maxlen: 24
81.0.92.0/22 maxlen: 24
81.0.98.0/23 maxlen: 24
81.0.108.0/23 maxlen: 24
81.0.122.0/23 maxlen: 24
81.0.126.0/23 maxlen: 24
82.144.164.0/22 maxlen: 24
82.144.172.0/22 maxlen: 24
82.144.176.0/23 maxlen: 24
82.144.188.0/23 maxlen: 24
89.186.96.0/23 maxlen: 24
89.186.102.0/23 maxlen: 24
89.186.106.0/23 maxlen: 24
89.186.108.0/22 maxlen: 24
89.186.112.0/22 maxlen: 24
89.186.118.0/23 maxlen: 24
89.186.120.0/21 maxlen: 24
91.82.0.0/21 maxlen: 24
91.82.24.0/21 maxlen: 24
91.82.32.0/21 maxlen: 24
91.82.56.0/23 maxlen: 24
91.82.60.0/23 maxlen: 24
91.82.64.0/21 maxlen: 24
91.82.82.0/23 maxlen: 24
91.82.130.0/23 maxlen: 24
91.82.132.0/22 maxlen: 24
91.82.144.0/22 maxlen: 24
91.82.168.0/22 maxlen: 24
91.82.172.0/23 maxlen: 24
91.82.176.0/21 maxlen: 24
91.82.188.0/22 maxlen: 24
91.82.210.0/23 maxlen: 24
91.82.212.0/22 maxlen: 24
91.82.228.0/22 maxlen: 24
91.82.232.0/22 maxlen: 24
91.82.240.0/22 maxlen: 24
91.82.250.0/23 maxlen: 24
94.247.88.0/21 maxlen: 24
185.29.80.0/22 maxlen: 24
185.62.128.0/22 maxlen: 24
193.110.56.0/21 maxlen: 24
193.226.192.0/23 maxlen: 24
193.226.212.0/22 maxlen: 24
193.226.226.0/23 maxlen: 24
193.226.232.0/23 maxlen: 24
193.226.238.0/23 maxlen: 24
193.226.240.0/23 maxlen: 24
193.226.244.0/22 maxlen: 24
193.226.248.0/23 maxlen: 24
212.40.72.0/21 maxlen: 24
212.40.80.0/20 maxlen: 24
213.197.72.0/21 maxlen: 24
213.197.80.0/20 maxlen: 24
217.197.176.0/20 maxlen: 24
2a01:368::/29 maxlen: 48
2a01:368::/32 maxlen: 48
Validation: Failed, certificate revoked on Thu 03 Oct 2024 07:56:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:4e:d2:29:cc:03:83:15:71:32:87:ed:48:7f:bb:39:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=845c2379efed10056cf865d52c32e1e1eba8c140
Validity
Not Before: Oct 2 20:00:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fab537a63312d655cc4d9c5c5b61d2aa96e93c72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ab:44:42:d9:10:1b:2c:02:f4:f4:8f:b5:fe:
30:98:42:b5:2d:3f:8b:c4:a3:21:82:0a:59:75:59:
74:6b:21:e2:dd:1f:f4:a6:60:dd:bc:ba:09:23:4e:
1e:56:69:7e:e1:6e:9b:00:9b:ee:99:56:ed:a3:04:
50:a1:ab:ff:a4:f3:40:dc:06:42:d0:2e:e2:4b:fc:
42:81:f2:21:e6:20:e8:17:2d:51:ef:a2:b0:48:80:
6f:21:ea:61:23:2d:10:58:7f:c2:8d:d8:29:d0:b5:
82:d9:c0:17:1d:21:35:f1:81:c9:d9:a4:3d:3b:19:
5b:16:19:7a:81:5d:15:8b:40:54:a6:10:2b:59:94:
8b:8b:72:f9:37:88:4e:a2:1f:e8:89:6a:af:f3:36:
da:68:14:d9:7f:ad:54:95:b8:88:51:d9:3b:8a:ce:
cf:04:e6:ee:e4:ee:5e:76:67:33:fa:2d:ba:43:96:
c3:9d:a8:a9:c5:1e:4a:3d:ac:52:ca:22:fa:83:59:
b8:ea:f7:a3:ec:f9:24:d0:68:cd:94:ed:e7:9c:20:
6b:f0:91:a2:42:21:52:6f:52:f9:59:88:35:74:8b:
c8:04:41:72:a7:56:e3:ec:ee:25:60:27:d1:66:00:
04:63:35:5f:56:60:5e:d4:6f:96:f9:60:64:84:e7:
b4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:B5:37:A6:33:12:D6:55:CC:4D:9C:5C:5B:61:D2:AA:96:E9:3C:72
X509v3 Authority Key Identifier:
keyid:84:5C:23:79:EF:ED:10:05:6C:F8:65:D5:2C:32:E1:E1:EB:A8:C1:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFwjee_tEAVs-GXVLDLh4euowUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/60e8fa-ec5c-4594-9ec4-be7a1a001ccf/1/1-rU3pjMS1lXMTZxcW2HSqpbpPHI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/60e8fa-ec5c-4594-9ec4-be7a1a001ccf/1/hFwjee_tEAVs-GXVLDLh4euowUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.77.196.0/22
62.77.240.0/23
62.77.248.0/21
62.165.192.0/18
77.234.64.0/19
79.120.160.0/21
79.120.170.0-79.120.175.255
79.120.248.0/23
79.120.252.0/22
81.0.82.0-81.0.87.255
81.0.90.0-81.0.95.255
81.0.98.0/23
81.0.108.0/23
81.0.122.0/23
81.0.126.0/23
82.144.164.0/22
82.144.172.0-82.144.177.255
82.144.188.0/23
89.186.96.0/23
89.186.102.0/23
89.186.106.0-89.186.115.255
89.186.118.0-89.186.127.255
91.82.0.0/21
91.82.24.0-91.82.39.255
91.82.56.0/23
91.82.60.0/23
91.82.64.0/21
91.82.82.0/23
91.82.130.0-91.82.135.255
91.82.144.0/22
91.82.168.0-91.82.173.255
91.82.176.0/21
91.82.188.0/22
91.82.210.0-91.82.215.255
91.82.228.0-91.82.235.255
91.82.240.0/22
91.82.250.0/23
94.247.88.0/21
185.29.80.0/22
185.62.128.0/22
193.110.56.0/21
193.226.192.0/23
193.226.212.0/22
193.226.226.0/23
193.226.232.0/23
193.226.238.0-193.226.241.255
193.226.244.0-193.226.249.255
212.40.72.0-212.40.95.255
213.197.72.0-213.197.95.255
217.197.176.0/20
IPv6:
2a01:368::/29
Signature Algorithm: sha256WithRSAEncryption
82:51:2b:39:d7:d7:a3:4a:12:41:2d:4e:5b:97:bf:52:24:86:
42:bd:16:a3:40:36:3b:84:cd:33:de:60:45:2b:3d:10:36:a1:
02:5f:cd:a7:49:6b:4d:8b:43:ae:fc:8c:99:d0:db:4b:15:c7:
85:2e:6a:b0:c7:94:a1:00:22:8b:6d:a1:b4:f4:d2:e4:4d:96:
ac:c8:f1:97:32:b1:21:7d:af:bb:b2:ac:68:0f:39:f3:13:2f:
12:52:09:6d:b7:f2:ea:51:4e:f7:d7:c3:d3:4c:91:a2:c7:83:
81:ba:93:5b:a0:59:b1:69:d2:90:ee:a1:26:1c:43:6b:71:16:
b3:71:47:9e:4e:65:89:94:b4:41:a2:ed:a2:da:56:88:d9:1a:
3a:4b:5d:fc:6b:f3:2b:5b:40:6d:f2:7b:89:26:8b:36:08:1d:
5a:b4:45:31:87:6e:18:43:d0:ea:0e:f0:9c:4a:40:9a:e7:bf:
12:7e:4a:11:bb:d7:a9:06:b7:b8:9b:15:88:05:34:0a:24:f2:
ee:08:e2:54:50:94:d1:6c:0e:b4:ee:cb:b8:70:a3:b3:c6:3e:
68:f3:e2:d1:92:09:26:5d:b1:c5:81:20:06:94:3f:13:5d:06:
bd:5c:a7:75:b7:de:4c:03:b0:91:f3:78:b1:02:f3:93:4c:27:
e5:a8:07:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:47 2025 by rpki-client