Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/K8sLaB5txF898fR9A4rmfbZ6jfA.roa
File: K8sLaB5txF898fR9A4rmfbZ6jfA.roa (raw, json)
Hash identifier: cMDDt7KsnrD49MF7cZHL7EFmzKkVxxdAQyMiGT9dqHk=
Subject key identifier: 2B:CB:0B:68:1E:6D:C4:5F:3D:F1:F4:7D:03:8A:E6:7D:B6:7A:8D:F0
Certificate issuer: /CN=edb926f8c603aab79cb46a883bf632564a3faabf
Certificate serial: 019256BA640543394EF602E302D825F60AC3
Authority key identifier: ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/K8sLaB5txF898fR9A4rmfbZ6jfA.roa
Signing time: Fri 04 Oct 2024 08:51:48 +0000
ROA not before: Fri 04 Oct 2024 08:51:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42695
IP address blocks: 31.12.84.0/22 maxlen: 24
31.132.58.0/24 maxlen: 24
37.153.138.0/23 maxlen: 24
37.153.172.0/23 maxlen: 24
45.114.120.0/22 maxlen: 24
45.114.121.0/24 maxlen: 24
45.114.122.0/24 maxlen: 24
45.114.123.0/24 maxlen: 24
46.254.8.0/21 maxlen: 24
46.254.10.0/23 maxlen: 23
46.254.12.0/24 maxlen: 24
46.254.13.0/24 maxlen: 24
46.254.14.0/24 maxlen: 24
46.254.15.0/24 maxlen: 24
77.81.6.0/23 maxlen: 24
77.81.188.0/23 maxlen: 24
86.107.48.0/23 maxlen: 24
86.107.49.0/24 maxlen: 24
86.107.242.0/23 maxlen: 24
89.36.90.0/23 maxlen: 23
89.40.216.0/23 maxlen: 23
89.42.140.0/23 maxlen: 24
89.45.226.0/23 maxlen: 24
89.45.226.0/24 maxlen: 24
89.45.227.0/24 maxlen: 24
89.46.80.0/24 maxlen: 24
89.46.81.0/24 maxlen: 24
89.46.82.0/24 maxlen: 24
89.46.83.0/24 maxlen: 24
89.46.86.0/24 maxlen: 24
91.106.192.0/21 maxlen: 24
91.123.192.0/20 maxlen: 24
103.57.72.0/22 maxlen: 24
103.57.74.0/24 maxlen: 24
103.81.140.0/23 maxlen: 24
103.81.143.0/24 maxlen: 24
116.206.168.0/22 maxlen: 24
141.255.184.0/21 maxlen: 24
185.2.152.0/22 maxlen: 22
185.16.84.0/22 maxlen: 24
185.52.156.0/22 maxlen: 24
185.62.204.0/22 maxlen: 24
185.62.204.0/24 maxlen: 24
185.62.205.0/24 maxlen: 24
185.62.207.0/24 maxlen: 24
185.103.48.0/23 maxlen: 23
185.103.50.0/24 maxlen: 24
185.103.51.0/24 maxlen: 24
188.95.224.0/21 maxlen: 24
188.212.108.0/23 maxlen: 24
188.240.18.0/23 maxlen: 24
188.240.92.0/22 maxlen: 24
188.240.222.0/23 maxlen: 24
188.241.198.0/23 maxlen: 24
188.241.198.0/24 maxlen: 24
2a00:16d8::/32 maxlen: 48
2a03:b000:200::/40 maxlen: 40
2a03:b000:400::/40 maxlen: 40
2a03:b000:600::/40 maxlen: 40
2a03:b000:700::/40 maxlen: 40
2a03:b000:800::/40 maxlen: 40
2a03:b000:900::/40 maxlen: 40
2a03:b000:b00::/40 maxlen: 40
2a03:d7c0::/29 maxlen: 48
2a04:f180::/29 maxlen: 48
2a06:2980::/29 maxlen: 48
Validation: Failed, certificate revoked on Fri 04 Oct 2024 09:02:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:56:ba:64:05:43:39:4e:f6:02:e3:02:d8:25:f6:0a:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edb926f8c603aab79cb46a883bf632564a3faabf
Validity
Not Before: Oct 4 08:51:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2bcb0b681e6dc45f3df1f47d038ae67db67a8df0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9e:b3:40:9d:88:92:15:c7:b3:78:60:e8:62:
7f:f7:93:d1:1a:43:18:0f:0f:bc:f5:da:03:d1:6b:
38:e5:76:65:fd:80:63:aa:a4:40:bf:64:7e:6a:4a:
e9:ba:57:45:40:77:46:03:f0:ab:2f:3d:80:c1:01:
a1:fb:e4:3d:fd:24:78:ca:29:7c:0a:62:6d:e1:71:
02:f1:f1:54:22:d1:2a:17:ce:a6:b3:d0:02:9e:98:
43:54:a3:b5:f7:a1:cd:c1:1e:cc:73:65:9a:2e:03:
27:b1:aa:be:4e:1b:f7:a9:e2:88:4a:91:f2:b4:8c:
15:0f:17:83:84:b7:39:ae:7b:a4:0e:82:2e:cb:79:
a1:15:64:ac:6d:bb:05:38:17:2b:9b:4a:32:66:4b:
5a:55:95:e5:ef:2d:c9:46:15:03:cd:05:a2:f7:b8:
a7:63:d1:b7:e2:a5:00:05:f6:0a:93:bc:2d:cf:f2:
62:96:39:7a:17:05:69:d2:cd:c3:f8:5a:aa:34:29:
83:bd:5d:0c:a0:1b:f7:d2:e4:c8:75:85:ad:37:20:
90:c7:77:45:41:5b:29:11:a8:9b:d0:d3:18:49:2d:
1f:18:25:32:b3:e8:42:ec:79:ed:1f:df:65:de:a0:
74:4f:63:c5:65:a4:ef:60:31:12:e4:2a:a0:c4:93:
95:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:CB:0B:68:1E:6D:C4:5F:3D:F1:F4:7D:03:8A:E6:7D:B6:7A:8D:F0
X509v3 Authority Key Identifier:
keyid:ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/K8sLaB5txF898fR9A4rmfbZ6jfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/7bkm-MYDqrectGqIO_YyVko_qr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.12.84.0/22
31.132.58.0/24
37.153.138.0/23
37.153.172.0/23
45.114.120.0/22
46.254.8.0/21
77.81.6.0/23
77.81.188.0/23
86.107.48.0/23
86.107.242.0/23
89.36.90.0/23
89.40.216.0/23
89.42.140.0/23
89.45.226.0/23
89.46.80.0/22
89.46.86.0/24
91.106.192.0/21
91.123.192.0/20
103.57.72.0/22
103.81.140.0/23
103.81.143.0/24
116.206.168.0/22
141.255.184.0/21
185.2.152.0/22
185.16.84.0/22
185.52.156.0/22
185.62.204.0/22
185.103.48.0/22
188.95.224.0/21
188.212.108.0/23
188.240.18.0/23
188.240.92.0/22
188.240.222.0/23
188.241.198.0/23
IPv6:
2a00:16d8::/32
2a03:b000:200::/40
2a03:b000:400::/40
2a03:b000:600::-2a03:b000:9ff:ffff:ffff:ffff:ffff:ffff
2a03:b000:b00::/40
2a03:d7c0::/29
2a04:f180::/29
2a06:2980::/29
Signature Algorithm: sha256WithRSAEncryption
af:7d:97:01:bf:a9:79:f6:fa:0d:f8:c0:fe:52:39:19:2b:91:
44:4e:ad:f3:7f:0c:96:6a:c6:04:3b:29:8e:e2:b8:02:c5:bb:
16:75:48:06:b2:60:ad:37:56:32:db:cf:f5:30:f4:13:8a:a8:
ad:8a:7f:fd:af:03:10:e4:a0:a1:e7:11:a7:85:70:86:17:d5:
27:63:92:b8:ed:e3:72:ac:c6:c1:1d:35:64:8f:7b:96:56:58:
9c:99:d4:84:d3:91:76:88:a9:ea:eb:7d:54:3f:3a:49:c6:a6:
f6:9f:d4:76:8c:fa:d5:87:fa:1a:1e:51:a7:a8:a3:3c:2a:5b:
29:08:57:79:bd:91:78:14:99:6a:0b:38:64:4e:bc:4f:6a:91:
2f:57:41:b1:b8:46:5f:96:5d:80:49:9c:ae:c4:2a:b1:95:61:
63:ad:ad:e2:2b:26:19:5a:6b:c6:d9:16:18:d7:5f:d3:ac:21:
ba:4e:84:ab:60:1b:ae:dd:fb:3d:2a:e0:a1:e6:22:3b:30:d7:
55:83:a3:35:d0:94:ed:93:75:7c:72:8d:e3:83:48:b4:66:aa:
8a:d6:db:36:d8:b0:ba:97:64:80:92:56:b8:9f:e7:21:5b:d6:
75:f7:55:c6:42:36:59:ac:f9:63:25:36:c5:cd:a0:92:85:f2:
e6:4d:0f:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:14:05 2025 by rpki-client