Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/gPQ1Z1LCy3SdRJ3HbSrszMbhcYU.roa
File: gPQ1Z1LCy3SdRJ3HbSrszMbhcYU.roa (raw, json)
Hash identifier: J4ZFTbKw5WqAfThsSsTHfMvXRXEMNTbJiBMVuwGL2l8=
Subject key identifier: 80:F4:35:67:52:C2:CB:74:9D:44:9D:C7:6D:2A:EC:CC:C6:E1:71:85
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 018E9A3763A190FDEF251E03260F5EE76F79
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/gPQ1Z1LCy3SdRJ3HbSrszMbhcYU.roa
Signing time: Mon 01 Apr 2024 15:11:45 +0000
ROA not before: Mon 01 Apr 2024 15:11:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47690
IP address blocks: 45.43.136.0/21 maxlen: 21
45.43.136.0/24 maxlen: 24
45.43.137.0/24 maxlen: 24
45.43.138.0/24 maxlen: 24
45.43.139.0/24 maxlen: 24
45.43.140.0/24 maxlen: 24
45.43.141.0/24 maxlen: 24
45.43.142.0/24 maxlen: 24
45.43.143.0/24 maxlen: 24
45.43.144.0/24 maxlen: 24
45.43.145.0/24 maxlen: 24
45.43.146.0/24 maxlen: 24
45.43.148.0/24 maxlen: 24
45.43.149.0/24 maxlen: 24
45.43.150.0/24 maxlen: 24
45.43.151.0/24 maxlen: 24
45.43.152.0/24 maxlen: 24
45.43.153.0/24 maxlen: 24
45.43.154.0/24 maxlen: 24
45.43.155.0/24 maxlen: 24
45.43.156.0/24 maxlen: 24
45.43.157.0/24 maxlen: 24
45.43.158.0/24 maxlen: 24
45.43.159.0/24 maxlen: 24
45.43.160.0/24 maxlen: 24
45.43.161.0/24 maxlen: 24
45.43.162.0/24 maxlen: 24
45.43.172.0/22 maxlen: 22
64.137.16.0/24 maxlen: 24
104.222.176.0/24 maxlen: 24
104.222.177.0/24 maxlen: 24
104.222.178.0/24 maxlen: 24
104.222.179.0/24 maxlen: 24
104.222.180.0/24 maxlen: 24
104.222.181.0/24 maxlen: 24
104.222.182.0/24 maxlen: 24
104.222.183.0/24 maxlen: 24
104.222.189.0/24 maxlen: 24
104.233.8.0/24 maxlen: 24
104.233.9.0/24 maxlen: 24
104.233.10.0/24 maxlen: 24
104.233.11.0/24 maxlen: 24
104.233.22.0/24 maxlen: 24
104.233.23.0/24 maxlen: 24
104.233.27.0/24 maxlen: 24
104.233.28.0/24 maxlen: 24
104.233.29.0/24 maxlen: 24
104.233.30.0/24 maxlen: 24
104.233.31.0/24 maxlen: 24
104.233.32.0/24 maxlen: 24
104.233.33.0/24 maxlen: 24
104.233.34.0/24 maxlen: 24
104.233.35.0/24 maxlen: 24
104.233.36.0/24 maxlen: 24
104.233.37.0/24 maxlen: 24
104.233.38.0/24 maxlen: 24
104.233.39.0/24 maxlen: 24
104.233.40.0/24 maxlen: 24
104.233.41.0/24 maxlen: 24
104.233.42.0/24 maxlen: 24
104.233.43.0/24 maxlen: 24
104.233.44.0/24 maxlen: 24
104.233.45.0/24 maxlen: 24
104.233.46.0/24 maxlen: 24
104.233.47.0/24 maxlen: 24
104.233.56.0/24 maxlen: 24
104.233.57.0/24 maxlen: 24
104.233.58.0/24 maxlen: 24
104.233.59.0/24 maxlen: 24
104.233.60.0/24 maxlen: 24
104.233.61.0/24 maxlen: 24
104.233.62.0/24 maxlen: 24
104.233.63.0/24 maxlen: 24
104.238.6.0/24 maxlen: 24
104.238.11.0/24 maxlen: 24
104.238.12.0/24 maxlen: 24
104.238.13.0/24 maxlen: 24
104.238.15.0/24 maxlen: 24
104.238.16.0/24 maxlen: 24
104.238.17.0/24 maxlen: 24
104.238.18.0/24 maxlen: 24
104.238.21.0/24 maxlen: 24
104.238.22.0/24 maxlen: 24
104.238.23.0/24 maxlen: 24
104.238.24.0/24 maxlen: 24
104.238.25.0/24 maxlen: 24
104.238.26.0/24 maxlen: 24
104.238.27.0/24 maxlen: 24
104.238.28.0/24 maxlen: 24
104.238.29.0/24 maxlen: 24
104.238.30.0/24 maxlen: 24
104.238.31.0/24 maxlen: 24
104.239.8.0/24 maxlen: 24
104.239.9.0/24 maxlen: 24
104.239.12.0/24 maxlen: 24
104.239.14.0/24 maxlen: 24
104.239.15.0/24 maxlen: 24
104.239.29.0/24 maxlen: 24
104.239.45.0/24 maxlen: 24
104.239.46.0/24 maxlen: 24
104.239.47.0/24 maxlen: 24
104.239.48.0/24 maxlen: 24
104.239.49.0/24 maxlen: 24
104.239.50.0/24 maxlen: 24
104.239.51.0/24 maxlen: 24
104.239.54.0/24 maxlen: 24
104.239.55.0/24 maxlen: 24
104.239.56.0/24 maxlen: 24
104.239.57.0/24 maxlen: 24
104.239.58.0/24 maxlen: 24
104.239.59.0/24 maxlen: 24
104.239.60.0/24 maxlen: 24
104.239.61.0/24 maxlen: 24
104.239.62.0/24 maxlen: 24
104.239.63.0/24 maxlen: 24
104.239.64.0/24 maxlen: 24
104.239.65.0/24 maxlen: 24
104.239.66.0/24 maxlen: 24
104.239.67.0/24 maxlen: 24
104.239.72.0/24 maxlen: 24
104.239.74.0/24 maxlen: 24
104.239.79.0/24 maxlen: 24
104.239.83.0/24 maxlen: 24
104.239.87.0/24 maxlen: 24
104.239.89.0/24 maxlen: 24
104.239.99.0/24 maxlen: 24
104.239.100.0/24 maxlen: 24
104.239.102.0/24 maxlen: 24
104.239.103.0/24 maxlen: 24
104.239.109.0/24 maxlen: 24
104.239.110.0/24 maxlen: 24
104.239.127.0/24 maxlen: 24
104.249.8.0/24 maxlen: 24
104.249.9.0/24 maxlen: 24
104.249.10.0/24 maxlen: 24
104.249.11.0/24 maxlen: 24
104.249.12.0/24 maxlen: 24
104.249.13.0/24 maxlen: 24
104.249.14.0/24 maxlen: 24
104.249.15.0/24 maxlen: 24
104.249.16.0/24 maxlen: 24
104.249.17.0/24 maxlen: 24
104.249.18.0/24 maxlen: 24
104.249.19.0/24 maxlen: 24
104.249.20.0/24 maxlen: 24
104.249.21.0/24 maxlen: 24
104.249.22.0/24 maxlen: 24
104.249.23.0/24 maxlen: 24
104.249.40.0/24 maxlen: 24
104.249.42.0/24 maxlen: 24
104.249.43.0/24 maxlen: 24
104.249.44.0/24 maxlen: 24
104.249.45.0/24 maxlen: 24
104.249.46.0/24 maxlen: 24
104.249.47.0/24 maxlen: 24
104.249.48.0/24 maxlen: 24
104.249.49.0/24 maxlen: 24
104.249.50.0/24 maxlen: 24
104.249.51.0/24 maxlen: 24
104.249.52.0/24 maxlen: 24
104.249.53.0/24 maxlen: 24
104.249.54.0/24 maxlen: 24
216.173.64.0/22 maxlen: 22
216.173.77.0/24 maxlen: 24
216.173.90.0/24 maxlen: 24
216.173.91.0/24 maxlen: 24
216.173.92.0/24 maxlen: 24
216.173.93.0/24 maxlen: 24
216.173.94.0/24 maxlen: 24
216.173.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Apr 2024 10:13:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:9a:37:63:a1:90:fd:ef:25:1e:03:26:0f:5e:e7:6f:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Apr 1 15:11:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=80f4356752c2cb749d449dc76d2aecccc6e17185
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:c8:3b:f2:5c:0e:42:57:e1:f5:07:86:ad:d6:
f9:50:c8:27:d0:6d:f6:ac:88:a8:34:5d:ce:90:39:
be:03:ba:33:6b:80:5d:6a:94:fa:93:e5:32:34:ff:
b3:41:df:3a:d2:33:3e:2d:ff:a6:63:2a:20:5c:0c:
e1:2b:59:5e:a5:35:75:cb:44:33:ab:4e:39:84:9c:
5e:f2:e4:a9:0a:24:d2:69:e8:12:7b:4b:bd:43:24:
50:c5:48:b5:b1:9b:e4:06:1c:07:9e:97:32:a1:72:
ce:60:4e:4c:9c:6a:f8:95:d5:ae:15:b3:73:02:63:
d7:48:69:33:fe:a3:40:bc:77:96:42:8c:cf:40:d4:
fa:1e:fd:3b:78:78:0c:fc:8f:0a:fa:98:f2:57:b7:
7e:65:11:ad:05:46:94:7c:88:51:0a:76:1c:a7:5a:
74:a6:53:f6:a9:08:06:c8:c7:d7:c7:f7:ae:d8:5b:
18:63:ce:bd:45:04:9f:56:f6:bc:fe:b6:29:b9:0f:
15:42:a3:46:16:fb:8f:45:c4:02:8e:b6:84:c0:ec:
55:75:f5:18:12:34:ce:c1:e2:3d:95:cf:52:a5:89:
83:97:ac:05:5b:3e:4f:80:93:c3:71:89:67:85:a7:
3b:ef:69:c4:61:84:5f:22:41:d0:8c:79:0c:80:a1:
22:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:F4:35:67:52:C2:CB:74:9D:44:9D:C7:6D:2A:EC:CC:C6:E1:71:85
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/gPQ1Z1LCy3SdRJ3HbSrszMbhcYU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.43.136.0-45.43.146.255
45.43.148.0-45.43.162.255
45.43.172.0/22
64.137.16.0/24
104.222.176.0/21
104.222.189.0/24
104.233.8.0/22
104.233.22.0/23
104.233.27.0-104.233.47.255
104.233.56.0/21
104.238.6.0/24
104.238.11.0-104.238.13.255
104.238.15.0-104.238.18.255
104.238.21.0-104.238.31.255
104.239.8.0/23
104.239.12.0/24
104.239.14.0/23
104.239.29.0/24
104.239.45.0-104.239.51.255
104.239.54.0-104.239.67.255
104.239.72.0/24
104.239.74.0/24
104.239.79.0/24
104.239.83.0/24
104.239.87.0/24
104.239.89.0/24
104.239.99.0-104.239.100.255
104.239.102.0/23
104.239.109.0-104.239.110.255
104.239.127.0/24
104.249.8.0-104.249.23.255
104.249.40.0/24
104.249.42.0-104.249.54.255
216.173.64.0/22
216.173.77.0/24
216.173.90.0-216.173.95.255
Signature Algorithm: sha256WithRSAEncryption
04:e2:f0:b8:87:f5:0b:3f:f6:45:bb:bf:bb:00:12:6c:86:8e:
0e:b9:b7:4b:19:95:3a:da:29:8a:30:0f:65:06:da:09:e5:27:
91:c3:1c:28:1c:f9:93:a3:9a:9a:c3:91:87:7f:4c:69:85:e7:
12:78:3f:73:d5:b2:a2:c1:49:2e:f8:fd:87:74:21:7e:0d:24:
76:bc:3f:11:74:da:0c:93:29:d2:2a:47:cd:d8:2b:ac:d6:80:
eb:05:5b:32:50:5f:48:0b:c7:45:ee:d5:85:43:3d:6c:1a:35:
19:52:3f:4c:84:49:01:14:49:bb:80:d4:91:6a:04:9e:bb:45:
59:fc:a4:42:71:09:bc:95:d9:3c:f2:84:68:76:f2:a8:f3:aa:
62:f2:33:b9:ab:14:9f:2f:96:de:72:b6:30:5d:ea:aa:a5:bb:
41:3f:16:f1:8d:1d:7f:be:d5:9b:1d:74:a5:ff:b3:87:3f:03:
a7:54:2d:ca:bd:e5:99:1b:0d:39:7f:e7:d8:ec:f2:8f:42:b5:
a2:54:bd:80:57:e7:da:f0:9f:0f:9f:aa:98:35:03:df:85:48:
56:c2:d5:23:5f:e8:1c:6e:bf:53:e8:a5:d7:23:29:aa:94:70:
a3:3c:26:53:1f:ee:63:62:cf:0b:e6:04:b5:35:95:18:f7:3f:
cc:a3:6c:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 2 14:44:01 2024 by rpki-client on console-ams.rpki-client.org