Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/T3DmzT3mW2eY-l3P_S9ep6VLPBU.roa
File: T3DmzT3mW2eY-l3P_S9ep6VLPBU.roa (raw, json)
Hash identifier: ZhERGq5GeDNLUpMV3SBcYJMp0UIrBqIAfp6u/mv9kJE=
Subject key identifier: 4F:70:E6:CD:3D:E6:5B:67:98:FA:5D:CF:FD:2F:5E:A7:A5:4B:3C:15
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018EAF1C0C7C8E3843C9A535E848DF97B0EE
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/T3DmzT3mW2eY-l3P_S9ep6VLPBU.roa
Signing time: Fri 05 Apr 2024 16:33:54 +0000
ROA not before: Fri 05 Apr 2024 16:33:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58057
IP address blocks: 31.42.183.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
45.136.136.0/22 maxlen: 24
77.81.50.0/23 maxlen: 24
85.202.203.0/24 maxlen: 24
93.88.200.0/21 maxlen: 24
94.177.122.0/24 maxlen: 24
109.61.104.0/21 maxlen: 24
139.28.96.0/22 maxlen: 24
185.232.117.0/24 maxlen: 24
193.33.94.0/23 maxlen: 24
193.163.85.0/24 maxlen: 24
193.163.86.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
2a04:ccc0:ffff::/48 maxlen: 48
2a04:ccc1::/32 maxlen: 48
2a04:ccc3::/32 maxlen: 48
2a04:ccc4::/32 maxlen: 48
2a04:ccc5::/32 maxlen: 48
2a04:ccc6::/32 maxlen: 48
2a04:ccc7::/32 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0c:3b80::/32 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a0c:3b83::/32 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2a0e:97c0:1d0::/44 maxlen: 44
2a0e:97c0:260::/44 maxlen: 44
2a0e:97c1:200::/40 maxlen: 48
2a0e:97c3:110::/44 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0e:b107:1165::/48 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:b107:21c0::/45 maxlen: 48
2a0e:b107:2220::/45 maxlen: 48
2a0e:b107:2228::/45 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a10:2f00:193::/48 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a10:cc45:130::/44 maxlen: 44
Validation: Failed, certificate revoked on Mon 08 Apr 2024 10:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:af:1c:0c:7c:8e:38:43:c9:a5:35:e8:48:df:97:b0:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 5 16:33:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4f70e6cd3de65b6798fa5dcffd2f5ea7a54b3c15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:c9:3b:b5:21:78:36:7a:c0:70:06:15:33:c3:
66:87:17:4b:5b:28:3a:2e:49:23:2c:5b:41:59:6a:
4a:2d:b1:69:5e:2a:f9:1a:da:01:a7:b8:6f:76:bf:
33:2e:10:3d:11:ae:13:ec:e9:00:e9:cd:8d:bf:61:
3f:50:ce:eb:fe:b0:f0:3a:93:d9:86:c0:80:32:2f:
98:0a:24:bc:35:0d:9f:ed:75:97:ce:ed:f3:b0:b3:
22:bf:96:b0:1c:9d:c8:ce:d6:13:c6:37:e5:68:19:
88:06:1f:99:bc:80:5a:53:0a:4f:b3:82:d8:81:d6:
f7:fe:44:4e:83:b3:75:c5:97:7f:71:1e:c7:b2:f8:
a2:b1:de:ba:00:5e:35:90:35:22:19:f1:05:89:22:
98:fb:35:16:a5:a0:e6:c0:95:ed:77:44:c6:7c:b9:
92:f5:e0:24:a1:7d:5f:6b:36:37:77:e5:8c:a9:0a:
8f:4f:dc:fc:0a:99:c2:3d:03:ce:3b:4c:f6:2b:5c:
34:b0:2e:0f:10:68:22:91:24:d7:58:65:14:0d:92:
f9:a8:d6:ed:e8:02:55:4f:90:d1:6f:86:9a:d9:7b:
53:5e:d9:97:6c:29:7c:76:c2:b9:ac:6a:7b:93:ae:
1e:18:92:49:4d:25:65:44:12:a7:2a:bc:f4:d5:e0:
89:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:70:E6:CD:3D:E6:5B:67:98:FA:5D:CF:FD:2F:5E:A7:A5:4B:3C:15
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/T3DmzT3mW2eY-l3P_S9ep6VLPBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.136.136.0/22
77.81.50.0/23
85.202.203.0/24
93.88.200.0/21
94.177.122.0/24
109.61.104.0/21
139.28.96.0/22
185.232.117.0/24
193.33.94.0/23
193.163.85.0-193.163.86.255
194.50.92.0/24
194.50.94.0/24
IPv6:
2a04:ccc0:ffff::-2a04:ccc1:ffff:ffff:ffff:ffff:ffff:ffff
2a04:ccc3::-2a04:ccc7:ffff:ffff:ffff:ffff:ffff:ffff
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:1d0::/44
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0e:b107:21c0::/45
2a0e:b107:2220::/44
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:2f00:193::/48
2a10:cc40:250::/44
2a10:cc45:130::/44
Signature Algorithm: sha256WithRSAEncryption
70:29:22:18:17:7d:3f:f5:1b:0c:cd:2a:de:2b:77:93:e4:fe:
61:b8:04:72:47:c3:eb:8b:ac:65:84:00:6a:3b:f4:b1:b0:50:
f2:e2:04:eb:a2:c5:b3:bb:27:dc:01:cb:f3:8f:8c:8b:29:f3:
a7:ca:59:03:b8:46:48:7c:46:be:42:49:d1:e4:c6:67:84:f2:
1c:d3:d8:2e:39:fe:d0:cc:0d:bb:3e:0d:03:3c:16:9d:ae:28:
32:87:8c:e8:dc:c0:83:7c:65:8b:85:6b:63:e3:ee:66:b8:a8:
d5:e6:2b:44:3d:dd:d2:95:e8:e1:89:0f:ac:cf:18:64:b4:16:
7b:bf:e0:f0:18:51:ea:b6:39:11:eb:40:e8:a3:4b:9d:44:1b:
db:79:e7:2f:b1:90:fe:2a:a8:0e:b4:9a:60:06:6e:01:ab:47:
ea:16:4d:44:69:20:de:52:64:26:5e:ea:b3:64:df:33:2e:fa:
de:fb:d3:47:72:0a:a3:f5:56:75:05:df:03:7c:82:22:88:2e:
f3:71:92:a8:9f:28:f5:12:53:08:4f:48:49:d4:ac:ba:56:f3:
85:b4:c1:02:c7:2d:bc:72:0c:26:ec:d5:3c:f3:14:4d:65:2e:
55:3e:2a:25:24:d5:0d:15:b1:88:36:a4:8e:dd:aa:22:d2:3a:
58:d5:6b:e2
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Apr 8 14:03:08 2024 by rpki-client on console-ams.rpki-client.org