Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/22RtS_hJujv-JF6honAMashLvf8.roa
File: 22RtS_hJujv-JF6honAMashLvf8.roa (raw, json)
Hash identifier: WkQ42lp4kmqWretKTHeBsJAbkzOMyuZCa7nqiN4EeKA=
Subject key identifier: DB:64:6D:4B:F8:49:BA:3B:FE:24:5E:A1:A2:70:0C:6A:C8:4B:BD:FF
Certificate issuer: /CN=01f3ef3e0ea95a975537d5c25d93cb76af687234
Certificate serial: 0191EC222E6BFBFB16D45ED22C3DC9350B37
Authority key identifier: 01:F3:EF:3E:0E:A9:5A:97:55:37:D5:C2:5D:93:CB:76:AF:68:72:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/22RtS_hJujv-JF6honAMashLvf8.roa
Signing time: Fri 13 Sep 2024 16:05:48 +0000
ROA not before: Fri 13 Sep 2024 16:05:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 23764
IP address blocks: 5.10.136.0/24 maxlen: 24
5.10.136.112/29 maxlen: 29
5.10.136.208/30 maxlen: 30
5.10.141.8/30 maxlen: 30
5.10.141.136/30 maxlen: 30
5.154.128.0/24 maxlen: 24
5.154.129.0/24 maxlen: 24
5.154.144.0/24 maxlen: 24
5.154.145.0/24 maxlen: 24
5.154.146.0/24 maxlen: 24
5.154.147.0/24 maxlen: 24
5.154.154.0/24 maxlen: 24
5.154.155.0/24 maxlen: 24
5.154.156.0/24 maxlen: 24
5.154.157.0/24 maxlen: 24
5.154.158.0/24 maxlen: 24
5.154.159.0/24 maxlen: 24
79.139.0.0/24 maxlen: 24
79.139.1.0/24 maxlen: 24
79.139.2.0/24 maxlen: 24
79.139.3.0/24 maxlen: 24
79.139.4.0/24 maxlen: 24
79.139.5.0/24 maxlen: 24
79.139.6.0/24 maxlen: 24
79.139.7.0/24 maxlen: 24
79.139.8.0/24 maxlen: 24
79.139.9.0/24 maxlen: 24
79.139.10.0/24 maxlen: 24
79.139.11.0/24 maxlen: 24
79.139.12.0/24 maxlen: 24
79.139.13.0/24 maxlen: 24
79.139.14.0/24 maxlen: 24
87.120.16.0/24 maxlen: 24
87.120.17.0/24 maxlen: 24
87.120.18.0/24 maxlen: 24
87.120.19.0/24 maxlen: 24
87.120.20.0/24 maxlen: 24
87.120.21.0/24 maxlen: 24
87.120.22.0/24 maxlen: 24
87.120.23.0/24 maxlen: 24
87.120.24.0/24 maxlen: 24
87.120.25.0/24 maxlen: 24
87.120.26.0/24 maxlen: 24
87.120.27.0/24 maxlen: 24
95.130.192.0/24 maxlen: 24
95.130.194.0/24 maxlen: 24
95.130.199.0/24 maxlen: 24
145.14.64.0/24 maxlen: 24
145.14.66.0/24 maxlen: 24
145.14.68.0/24 maxlen: 24
145.14.69.0/24 maxlen: 24
145.14.70.0/24 maxlen: 24
145.14.73.0/24 maxlen: 24
145.14.76.0/24 maxlen: 24
145.14.77.0/24 maxlen: 24
145.14.78.0/24 maxlen: 24
145.14.80.0/24 maxlen: 24
145.14.83.0/24 maxlen: 24
145.14.85.0/24 maxlen: 24
145.14.87.0/24 maxlen: 24
145.14.89.0/24 maxlen: 24
145.14.91.0/24 maxlen: 24
145.14.92.0/24 maxlen: 24
145.14.93.0/24 maxlen: 24
2a04:f580:9030:100::/56 maxlen: 56
2a04:f580:9210::/48 maxlen: 48
2a04:f581:110a::/48 maxlen: 48
2a04:f581:110b::/48 maxlen: 48
2a04:f581:8040::/48 maxlen: 48
2a04:f581:8070::/48 maxlen: 48
2a04:f581:8090::/48 maxlen: 48
2a04:f581:80b0::/48 maxlen: 48
2a04:f581:8140::/48 maxlen: 48
2a04:f581:8170::/48 maxlen: 48
2a04:f581:8190::/48 maxlen: 48
2a04:f581:81b0::/48 maxlen: 48
2a04:f581:8240::/48 maxlen: 48
2a04:f581:8270::/48 maxlen: 48
2a04:f581:8290::/48 maxlen: 48
2a04:f581:82b0::/48 maxlen: 48
2a04:f581:a00e:a001::/64 maxlen: 64
2a04:f581:a00e:a002::/64 maxlen: 64
2a04:f581:a00e:a003::/64 maxlen: 64
2a04:f581:a00e:a004::/64 maxlen: 64
2a04:f581:a00f::/48 maxlen: 48
2a04:f581:a111::/48 maxlen: 48
2a04:f581:a123::/48 maxlen: 48
2a04:f581:a125::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 16 Sep 2024 13:13:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ec:22:2e:6b:fb:fb:16:d4:5e:d2:2c:3d:c9:35:0b:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01f3ef3e0ea95a975537d5c25d93cb76af687234
Validity
Not Before: Sep 13 16:05:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=db646d4bf849ba3bfe245ea1a2700c6ac84bbdff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:eb:62:49:18:41:4d:18:81:3b:21:6f:fd:bf:
71:10:31:80:fa:a6:03:eb:f4:b5:39:36:9e:83:95:
da:ba:9c:b3:06:e8:ee:14:ad:47:2e:0a:3b:cd:67:
ec:72:b2:3c:14:f7:bf:bf:e7:93:c5:d9:26:5c:81:
07:ae:ec:10:50:fc:ca:53:b0:9c:a5:9d:1b:19:5f:
04:83:3b:4a:77:f9:90:02:c8:40:28:ee:3a:44:a9:
46:22:fa:e5:2f:e7:8d:34:56:86:fc:3c:55:90:85:
6f:06:0d:79:d2:ad:2e:b2:8c:d6:10:63:15:7d:34:
b7:45:53:be:01:52:cd:16:9f:bd:a6:9c:27:ee:fe:
65:7d:14:f8:13:b6:8e:48:fe:8a:d9:3b:45:b3:17:
3d:23:f4:33:94:63:f7:0f:d1:86:53:fc:d0:95:9b:
b8:4c:03:56:16:85:72:04:bd:73:c8:ee:e2:1f:51:
df:2e:41:71:05:f3:02:ff:87:1f:98:d8:54:b4:e2:
e1:c3:a6:cd:cd:63:b2:4c:0b:87:48:57:d7:47:26:
45:ec:4c:2e:13:5c:e6:c5:07:3e:22:46:e3:b0:9f:
70:7f:2a:ca:72:a5:20:6b:e2:b2:2c:c4:e8:eb:21:
f8:c3:b5:73:9a:18:5c:e8:80:58:82:df:30:35:8d:
9f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:64:6D:4B:F8:49:BA:3B:FE:24:5E:A1:A2:70:0C:6A:C8:4B:BD:FF
X509v3 Authority Key Identifier:
keyid:01:F3:EF:3E:0E:A9:5A:97:55:37:D5:C2:5D:93:CB:76:AF:68:72:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/22RtS_hJujv-JF6honAMashLvf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.136.0/24
5.10.141.8/30
5.10.141.136/30
5.154.128.0/23
5.154.144.0/22
5.154.154.0-5.154.159.255
79.139.0.0-79.139.14.255
87.120.16.0-87.120.27.255
95.130.192.0/24
95.130.194.0/24
95.130.199.0/24
145.14.64.0/24
145.14.66.0/24
145.14.68.0-145.14.70.255
145.14.73.0/24
145.14.76.0-145.14.78.255
145.14.80.0/24
145.14.83.0/24
145.14.85.0/24
145.14.87.0/24
145.14.89.0/24
145.14.91.0-145.14.93.255
IPv6:
2a04:f580:9030:100::/56
2a04:f580:9210::/48
2a04:f581:110a::/47
2a04:f581:8040::/48
2a04:f581:8070::/48
2a04:f581:8090::/48
2a04:f581:80b0::/48
2a04:f581:8140::/48
2a04:f581:8170::/48
2a04:f581:8190::/48
2a04:f581:81b0::/48
2a04:f581:8240::/48
2a04:f581:8270::/48
2a04:f581:8290::/48
2a04:f581:82b0::/48
2a04:f581:a00e:a001::-2a04:f581:a00e:a004:ffff:ffff:ffff:ffff
2a04:f581:a00f::/48
2a04:f581:a111::/48
2a04:f581:a123::/48
2a04:f581:a125::/48
Signature Algorithm: sha256WithRSAEncryption
23:df:24:4f:d3:e7:23:03:9b:3d:9c:99:bc:96:37:4a:08:92:
33:71:d2:c1:2a:32:4b:e9:be:b8:e9:96:93:9d:c8:35:77:ea:
fe:59:fe:79:58:70:94:43:b7:7d:3d:00:d7:96:de:0d:a8:aa:
4f:8f:11:53:1c:ba:6d:0c:13:c6:13:6a:3e:cb:5b:fe:20:95:
5f:0c:e4:dc:d7:3e:ac:52:ec:9f:1c:a5:c6:6c:8e:b3:52:b5:
3d:e0:75:df:97:c6:92:75:0a:2f:6d:4e:55:80:e3:ba:6e:a3:
f9:93:aa:fe:4f:b1:66:ea:85:02:00:b7:4b:f2:60:4c:3a:e3:
94:21:98:9c:3f:c0:f2:1d:a9:94:df:e7:66:70:0c:9f:9f:01:
8f:0f:1d:69:0a:8d:d6:a1:f2:df:05:97:44:cf:ce:c1:0a:ba:
f0:f2:c9:b2:8c:35:0e:08:a9:a7:22:15:6a:ed:b8:76:c6:1c:
35:65:fd:3f:d9:6f:e7:22:cd:4a:d8:80:33:09:9c:57:f4:52:
ba:e7:b9:e8:45:38:47:24:e6:87:3b:2a:97:06:88:bf:e0:fe:
76:af:7a:83:9a:1b:a4:9e:ae:59:b8:cc:d8:e5:9b:2b:20:9b:
bb:5e:d0:f8:93:a5:56:ab:87:80:1a:f0:22:91:1d:06:b5:d3:
32:54:8d:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 16:37:21 2024 by rpki-client on console-fra.rpki-client.org