Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lGHilT7-1XJXFH8V-eRhG1TQK4w.roa
File: lGHilT7-1XJXFH8V-eRhG1TQK4w.roa (raw, json)
Hash identifier: rE0z5Gj1psnAYBm8xywGFmQnztViXGMMapqlnvRREy8=
Subject key identifier: 94:61:E2:95:3E:FE:D5:72:57:14:7F:15:F9:E4:61:1B:54:D0:2B:8C
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018E3760F77E673D747E97F468F5CF30C37F
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lGHilT7-1XJXFH8V-eRhG1TQK4w.roa
Signing time: Wed 13 Mar 2024 10:34:45 +0000
ROA not before: Wed 13 Mar 2024 10:34:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58057
IP address blocks: 31.42.183.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
45.136.136.0/22 maxlen: 24
77.81.50.0/23 maxlen: 24
85.202.203.0/24 maxlen: 24
93.88.200.0/21 maxlen: 24
94.177.122.0/24 maxlen: 24
109.61.104.0/21 maxlen: 24
139.28.96.0/22 maxlen: 24
185.232.117.0/24 maxlen: 24
193.33.94.0/23 maxlen: 24
193.163.85.0/24 maxlen: 24
193.163.86.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
2a04:ccc0:ffff::/48 maxlen: 48
2a04:ccc1::/32 maxlen: 48
2a04:ccc3::/32 maxlen: 48
2a04:ccc4::/32 maxlen: 48
2a04:ccc5::/32 maxlen: 48
2a04:ccc6::/32 maxlen: 48
2a04:ccc7::/32 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0c:3b80::/32 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a0c:3b83::/32 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2a0e:97c0:1d0::/44 maxlen: 44
2a0e:97c0:260::/44 maxlen: 44
2a0e:97c1:200::/40 maxlen: 48
2a0e:97c3:110::/44 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0e:b107:1165::/48 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:b107:21c0::/45 maxlen: 48
2a0e:b107:2220::/45 maxlen: 48
2a0e:b107:2228::/45 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a10:2f00:193::/48 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a10:cc45:130::/44 maxlen: 44
Validation: Failed, certificate revoked on Fri 05 Apr 2024 16:33:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:37:60:f7:7e:67:3d:74:7e:97:f4:68:f5:cf:30:c3:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 13 10:34:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9461e2953efed57257147f15f9e4611b54d02b8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:2c:c6:64:dd:61:02:ef:10:6c:ab:9c:d3:0b:
3d:8f:56:de:3a:fd:8d:5d:b4:bb:fd:88:f5:49:b8:
ae:3b:e2:f9:14:b4:7a:96:fb:c4:f6:d3:65:cd:28:
bb:e7:a1:00:f4:72:ac:15:2d:a3:2e:81:10:ca:2c:
0d:0e:26:c8:37:80:26:0b:cd:40:bc:f9:e3:2e:ca:
a7:cb:b4:da:f3:78:9e:d8:a3:ed:b6:f0:d4:ae:58:
04:77:72:6d:53:9e:f6:94:30:30:f8:56:00:33:96:
4c:78:50:32:fa:6a:99:4d:ed:ec:4f:3e:f2:25:ec:
78:b2:cb:8e:fa:73:ca:d4:a8:2e:3a:4c:fa:8c:45:
e9:68:14:de:7b:6d:82:1e:0d:41:c5:a3:32:1b:ca:
f0:81:b8:50:41:6b:64:3c:aa:73:4d:e4:86:69:a6:
3b:f8:d1:e3:c2:99:b5:bb:ec:98:ac:f6:5b:35:64:
53:8e:47:9a:3a:d0:44:f6:f1:01:22:2b:49:f9:d4:
9e:f0:06:be:2e:7a:00:bd:2d:32:ed:95:e7:44:a0:
4c:20:ab:8b:87:e0:9d:29:75:7c:18:d7:4e:c7:d9:
4b:05:34:fc:31:5a:ff:a3:63:fc:50:a9:90:27:ae:
fd:b1:8f:7c:32:ec:35:86:c3:58:b4:2b:4a:f7:75:
ce:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:61:E2:95:3E:FE:D5:72:57:14:7F:15:F9:E4:61:1B:54:D0:2B:8C
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lGHilT7-1XJXFH8V-eRhG1TQK4w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.131.184.0/22
45.136.136.0/22
77.81.50.0/23
85.202.203.0/24
93.88.200.0/21
94.177.122.0/24
109.61.104.0/21
139.28.96.0/22
185.232.117.0/24
193.33.94.0/23
193.163.85.0-193.163.86.255
194.50.92.0/24
194.50.94.0/24
IPv6:
2a04:ccc0:ffff::-2a04:ccc1:ffff:ffff:ffff:ffff:ffff:ffff
2a04:ccc3::-2a04:ccc7:ffff:ffff:ffff:ffff:ffff:ffff
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:1d0::/44
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0e:b107:21c0::/45
2a0e:b107:2220::/44
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:2f00:193::/48
2a10:cc40:250::/44
2a10:cc45:130::/44
Signature Algorithm: sha256WithRSAEncryption
78:99:44:a0:da:e7:25:8b:da:9e:51:b3:ec:d2:a6:c9:88:30:
55:49:ea:67:8b:31:f9:e1:55:04:5a:31:fe:fa:50:de:ec:4e:
c7:45:dc:30:e9:ec:59:d4:57:4b:16:4c:ec:50:db:c5:54:80:
73:dc:13:7e:92:4a:60:86:d4:8c:fb:7d:cf:af:37:a1:70:1b:
cc:1e:b2:4d:17:53:b9:e8:47:8a:b1:bc:52:cb:35:d8:04:5f:
f8:9b:58:91:b7:c0:8b:91:0c:16:67:59:ff:e6:6a:9e:5d:92:
05:74:f6:81:21:89:b7:44:80:99:3d:8b:65:5e:1d:f9:2c:81:
4a:2b:6d:03:25:86:c2:a0:7e:94:5f:db:96:81:49:e6:eb:94:
9d:c3:a0:21:9e:23:b9:85:9f:6e:69:7d:1a:7b:03:9a:22:23:
25:c9:00:98:6a:2a:56:fe:c9:ad:b1:17:8f:d0:46:5a:a6:84:
02:b1:fd:31:11:7f:54:9b:a7:de:ff:bd:21:c1:a8:be:40:af:
65:5b:a6:32:08:ae:e1:31:8a:03:8e:f3:bf:4a:f9:92:92:e4:
06:d5:c8:a9:4d:7f:8e:1f:f9:37:57:be:0b:ff:81:11:7f:44:
9b:b9:59:08:e8:9b:6a:99:09:4b:3d:08:16:9d:83:ca:e5:49:
9c:81:2a:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 5 21:45:33 2024 by rpki-client on console-ams.rpki-client.org