Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/KJb0dISMdow1eaZWN9AzZL9RQn0.roa
File: KJb0dISMdow1eaZWN9AzZL9RQn0.roa (raw, json)
Hash identifier: bJtFHVBOsaqdKigHnUe/1c++gLmLY3fhRqhydQGk3b8=
Subject key identifier: 28:96:F4:74:84:8C:76:8C:35:79:A6:56:37:D0:33:64:BF:51:42:7D
Certificate issuer: /CN=01f3ef3e0ea95a975537d5c25d93cb76af687234
Certificate serial: 019156579942ABD44440F14F8A132BA35059
Authority key identifier: 01:F3:EF:3E:0E:A9:5A:97:55:37:D5:C2:5D:93:CB:76:AF:68:72:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/KJb0dISMdow1eaZWN9AzZL9RQn0.roa
Signing time: Thu 15 Aug 2024 14:01:07 +0000
ROA not before: Thu 15 Aug 2024 14:01:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 4809
IP address blocks: 5.10.136.0/24 maxlen: 24
5.10.136.112/29 maxlen: 29
5.10.136.208/30 maxlen: 30
5.10.137.0/24 maxlen: 24
5.10.138.0/24 maxlen: 24
5.10.139.0/24 maxlen: 24
5.10.140.0/24 maxlen: 24
5.10.141.8/30 maxlen: 30
5.10.141.136/30 maxlen: 30
5.10.142.0/24 maxlen: 24
5.10.143.0/24 maxlen: 24
5.154.132.0/24 maxlen: 24
5.154.133.0/24 maxlen: 24
5.154.136.0/24 maxlen: 24
5.154.137.0/24 maxlen: 24
5.154.138.0/24 maxlen: 24
5.154.139.0/24 maxlen: 24
5.154.140.0/24 maxlen: 24
5.154.141.0/24 maxlen: 24
5.154.158.0/24 maxlen: 24
5.154.159.0/24 maxlen: 24
145.14.64.0/24 maxlen: 24
145.14.65.0/24 maxlen: 24
145.14.66.0/24 maxlen: 24
145.14.67.0/24 maxlen: 24
145.14.68.0/24 maxlen: 24
145.14.69.0/24 maxlen: 24
145.14.70.0/24 maxlen: 24
145.14.71.0/24 maxlen: 24
145.14.72.0/24 maxlen: 24
145.14.73.0/24 maxlen: 24
145.14.74.0/24 maxlen: 24
145.14.75.0/24 maxlen: 24
145.14.76.0/24 maxlen: 24
145.14.77.0/24 maxlen: 24
145.14.78.0/24 maxlen: 24
145.14.79.0/24 maxlen: 24
145.14.80.0/24 maxlen: 24
145.14.81.0/24 maxlen: 24
145.14.82.0/24 maxlen: 24
145.14.83.0/24 maxlen: 24
145.14.84.0/24 maxlen: 24
145.14.85.0/24 maxlen: 24
145.14.86.0/24 maxlen: 24
145.14.87.0/24 maxlen: 24
145.14.88.0/24 maxlen: 24
145.14.89.0/24 maxlen: 24
145.14.90.0/24 maxlen: 24
145.14.91.0/24 maxlen: 24
145.14.92.0/24 maxlen: 24
145.14.93.0/24 maxlen: 24
185.75.172.0/24 maxlen: 24
185.75.173.0/24 maxlen: 24
185.75.174.0/24 maxlen: 24
2a04:f580:9000::/48 maxlen: 48
2a04:f580:9001::/48 maxlen: 48
2a04:f580:9002::/48 maxlen: 48
2a04:f580:9010::/48 maxlen: 48
2a04:f580:9012::/48 maxlen: 48
2a04:f580:9013::/48 maxlen: 48
2a04:f580:9020::/48 maxlen: 48
2a04:f580:9030::/48 maxlen: 48
2a04:f580:9040::/48 maxlen: 48
2a04:f580:9050::/48 maxlen: 48
2a04:f580:9060::/48 maxlen: 48
2a04:f580:9070::/48 maxlen: 48
2a04:f580:9080::/48 maxlen: 48
2a04:f580:9090::/48 maxlen: 48
2a04:f580:9200::/48 maxlen: 48
2a04:f580:9201::/48 maxlen: 48
2a04:f580:9202::/48 maxlen: 48
2a04:f580:9210::/48 maxlen: 48
2a04:f580:9212::/48 maxlen: 48
2a04:f580:9213::/48 maxlen: 48
2a04:f580:9220::/48 maxlen: 48
2a04:f580:9230::/48 maxlen: 48
2a04:f580:9240::/48 maxlen: 48
2a04:f580:9250::/48 maxlen: 48
2a04:f580:9260::/48 maxlen: 48
2a04:f580:9270::/48 maxlen: 48
2a04:f580:9280::/48 maxlen: 48
2a04:f580:9290::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 22 Oct 2024 16:32:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:56:57:99:42:ab:d4:44:40:f1:4f:8a:13:2b:a3:50:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01f3ef3e0ea95a975537d5c25d93cb76af687234
Validity
Not Before: Aug 15 14:01:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2896f474848c768c3579a65637d03364bf51427d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ad:57:a1:ee:61:01:9f:fe:fe:bb:bc:07:4d:
55:ba:c1:50:6c:e9:61:be:23:02:d8:3a:e6:61:b9:
87:5a:fb:b3:7a:f7:4b:21:64:4e:7f:09:94:44:bf:
3f:e4:e5:e5:84:9e:33:83:24:a3:1f:fe:68:40:f6:
8e:ba:c7:e4:94:7b:91:e2:38:51:af:ce:63:8a:49:
95:99:6a:4d:e2:95:25:bb:69:db:35:68:c0:6d:e0:
6f:f6:0b:3f:47:f6:a5:4f:4d:9c:87:26:8a:45:70:
56:a8:5c:c7:44:20:d0:a7:63:b4:14:47:7e:03:bd:
94:35:6e:fc:6a:10:cf:3a:59:4d:94:51:59:81:bc:
f5:1a:ac:64:20:41:af:1e:67:34:3e:eb:c6:9c:d9:
3d:47:98:d7:70:5d:43:0b:52:52:80:43:4a:c8:e9:
b7:22:5b:c3:af:a9:08:e9:a6:51:11:af:54:11:92:
c9:18:b4:28:ef:4b:bf:61:2c:10:7b:78:8e:75:f7:
2d:00:f7:b4:24:cb:09:c8:66:80:53:8a:af:ed:0d:
89:ca:f8:cf:36:48:1c:7b:48:3d:31:2d:96:8a:e1:
9e:36:3b:15:81:38:33:2e:9b:0a:3e:2b:51:e6:a8:
b4:fb:71:2c:17:20:72:dc:a9:ad:14:be:3a:2f:7e:
97:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:96:F4:74:84:8C:76:8C:35:79:A6:56:37:D0:33:64:BF:51:42:7D
X509v3 Authority Key Identifier:
keyid:01:F3:EF:3E:0E:A9:5A:97:55:37:D5:C2:5D:93:CB:76:AF:68:72:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/KJb0dISMdow1eaZWN9AzZL9RQn0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.136.0-5.10.140.255
5.10.141.8/30
5.10.141.136/30
5.10.142.0/23
5.154.132.0/23
5.154.136.0-5.154.141.255
5.154.158.0/23
145.14.64.0-145.14.93.255
185.75.172.0-185.75.174.255
IPv6:
2a04:f580:9000::-2a04:f580:9002:ffff:ffff:ffff:ffff:ffff
2a04:f580:9010::/48
2a04:f580:9012::/47
2a04:f580:9020::/48
2a04:f580:9030::/48
2a04:f580:9040::/48
2a04:f580:9050::/48
2a04:f580:9060::/48
2a04:f580:9070::/48
2a04:f580:9080::/48
2a04:f580:9090::/48
2a04:f580:9200::-2a04:f580:9202:ffff:ffff:ffff:ffff:ffff
2a04:f580:9210::/48
2a04:f580:9212::/47
2a04:f580:9220::/48
2a04:f580:9230::/48
2a04:f580:9240::/48
2a04:f580:9250::/48
2a04:f580:9260::/48
2a04:f580:9270::/48
2a04:f580:9280::/48
2a04:f580:9290::/48
Signature Algorithm: sha256WithRSAEncryption
c7:3c:d9:1c:a1:7c:6d:89:54:85:e3:ea:a9:cc:17:4d:f2:18:
0b:94:2a:69:fa:c4:89:85:ac:ef:e8:1c:fe:ae:d1:72:00:5f:
dd:d7:cb:30:d7:0f:fb:3a:6e:48:8c:9e:71:bb:16:72:e7:8d:
64:43:20:e3:bb:34:d1:d9:f2:60:5d:e8:26:3d:69:8c:d8:0c:
69:4f:0e:d3:49:6f:64:0e:a0:2d:a9:42:f8:53:e8:89:94:3a:
44:74:2d:6a:65:09:39:e1:05:1f:cb:c7:56:03:23:77:1c:3c:
7c:19:10:26:75:10:fa:7f:f1:f8:2d:68:1a:3c:fb:97:14:31:
15:3c:d4:1f:79:c1:19:83:09:28:22:20:65:e5:d3:90:d3:e5:
b1:f9:8a:60:db:44:04:2c:4e:2c:06:27:a7:fc:17:21:39:db:
87:e2:8f:32:5f:a1:6c:01:bb:2c:61:ab:f3:6c:f9:0e:8a:87:
4c:a6:69:c4:8f:53:f1:ce:c7:02:1d:f5:15:4c:d9:6c:3c:ab:
d3:59:a8:33:b0:37:e6:d8:57:da:ef:9a:32:78:a0:62:14:bf:
15:83:84:4b:c8:34:b3:23:88:c5:ac:62:cf:09:78:72:39:88:
ab:00:6e:dd:c1:9d:74:ed:0a:a0:ce:56:2a:e4:f3:2d:b4:62:
d6:eb:54:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 17:31:00 2024 by rpki-client on console-fra.rpki-client.org