Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/A6WnLM64bMf45NySOIopR1wqVW0.roa
File: A6WnLM64bMf45NySOIopR1wqVW0.roa (raw, json)
Hash identifier: Px0zQd1hylkmr9/Ddbz7zu4/cQvT6Bfurb49SZXw/SY=
Subject key identifier: 03:A5:A7:2C:CE:B8:6C:C7:F8:E4:DC:92:38:8A:29:47:5C:2A:55:6D
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 019128487E4AD6DE432C2043057D77C64620
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/A6WnLM64bMf45NySOIopR1wqVW0.roa
Signing time: Tue 06 Aug 2024 15:22:05 +0000
ROA not before: Tue 06 Aug 2024 15:22:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 5.42.218.0/24 maxlen: 24
31.41.253.0/24 maxlen: 24
45.87.124.0/24 maxlen: 24
45.87.125.0/24 maxlen: 24
45.87.127.0/24 maxlen: 24
45.128.124.0/24 maxlen: 24
45.128.128.0/24 maxlen: 24
45.129.198.0/24 maxlen: 24
62.3.7.0/24 maxlen: 24
62.3.31.0/24 maxlen: 24
77.72.83.0/24 maxlen: 24
77.72.84.0/24 maxlen: 24
84.252.69.0/24 maxlen: 24
88.218.184.0/24 maxlen: 24
88.218.185.0/24 maxlen: 24
88.218.186.0/24 maxlen: 24
88.218.187.0/24 maxlen: 24
91.190.158.0/24 maxlen: 24
91.209.31.0/24 maxlen: 24
91.212.169.0/24 maxlen: 24
91.228.215.0/24 maxlen: 24
91.239.212.0/24 maxlen: 24
91.239.213.0/24 maxlen: 24
146.19.120.0/24 maxlen: 24
146.255.186.0/24 maxlen: 24
176.116.17.0/24 maxlen: 24
176.126.102.0/24 maxlen: 24
185.109.236.0/24 maxlen: 24
185.109.237.0/24 maxlen: 24
185.128.224.0/24 maxlen: 24
185.209.50.0/24 maxlen: 24
185.211.168.0/24 maxlen: 24
185.211.171.0/24 maxlen: 24
185.214.164.0/24 maxlen: 24
185.214.165.0/24 maxlen: 24
185.214.167.0/24 maxlen: 24
193.0.62.0/24 maxlen: 24
193.17.65.0/24 maxlen: 24
193.228.129.0/24 maxlen: 24
194.59.222.0/24 maxlen: 24
194.60.76.0/24 maxlen: 24
195.64.103.0/24 maxlen: 24
195.69.161.0/24 maxlen: 24
195.211.164.0/24 maxlen: 24
212.107.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Aug 2024 10:22:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:28:48:7e:4a:d6:de:43:2c:20:43:05:7d:77:c6:46:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Aug 6 15:22:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=03a5a72cceb86cc7f8e4dc92388a29475c2a556d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:03:65:81:fe:3c:93:7c:b2:d5:63:75:59:32:
48:f2:d2:b3:96:ae:f1:59:4c:43:39:46:c4:4e:7b:
bb:93:39:4e:af:dd:db:e2:24:1e:12:d2:b5:ae:67:
55:6a:c4:f1:2d:0a:61:db:ab:66:11:40:95:1f:6a:
1a:11:7d:a8:35:40:6a:da:48:72:34:65:0d:a4:8a:
c2:38:15:5d:82:cf:f2:13:e1:4c:d5:34:c3:c4:5d:
d7:40:8e:3e:92:d5:0b:bd:3e:bc:6f:a0:b7:2c:42:
14:74:9e:0e:57:0f:65:47:fe:f3:5b:ea:ce:3c:46:
28:89:86:f4:9b:c5:a6:0a:e5:7a:0a:86:d0:60:f7:
d5:73:b9:29:0a:f4:38:d0:e7:bf:a2:33:74:fa:a5:
b2:4e:a4:62:13:89:77:01:2c:9e:fe:47:f7:b4:16:
c7:81:93:5f:b8:18:d3:93:13:17:29:e4:c5:fc:11:
9b:6c:b1:8b:af:61:b5:eb:97:72:34:95:ff:ce:7b:
8e:09:67:5d:6f:b4:82:05:b6:30:f6:7d:42:c9:6b:
47:54:b9:a4:7a:7c:00:2d:1e:a2:c8:82:3b:e8:96:
db:0d:22:09:62:85:69:a9:84:8f:b1:47:96:14:ab:
c6:47:90:34:99:eb:9f:23:e8:86:37:a2:86:cf:56:
0c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:A5:A7:2C:CE:B8:6C:C7:F8:E4:DC:92:38:8A:29:47:5C:2A:55:6D
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/A6WnLM64bMf45NySOIopR1wqVW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.218.0/24
31.41.253.0/24
45.87.124.0/23
45.87.127.0/24
45.128.124.0/24
45.128.128.0/24
45.129.198.0/24
62.3.7.0/24
62.3.31.0/24
77.72.83.0-77.72.84.255
84.252.69.0/24
88.218.184.0/22
91.190.158.0/24
91.209.31.0/24
91.212.169.0/24
91.228.215.0/24
91.239.212.0/23
146.19.120.0/24
146.255.186.0/24
176.116.17.0/24
176.126.102.0/24
185.109.236.0/23
185.128.224.0/24
185.209.50.0/24
185.211.168.0/24
185.211.171.0/24
185.214.164.0/23
185.214.167.0/24
193.0.62.0/24
193.17.65.0/24
193.228.129.0/24
194.59.222.0/24
194.60.76.0/24
195.64.103.0/24
195.69.161.0/24
195.211.164.0/24
212.107.25.0/24
Signature Algorithm: sha256WithRSAEncryption
20:ba:3c:8b:4a:db:bc:ca:cd:ab:8d:37:a1:50:06:5c:8a:ce:
47:75:b6:85:3c:48:be:12:43:39:ad:57:50:82:da:0b:05:9a:
5b:69:69:f3:5f:2e:78:3c:8b:a7:70:39:fb:07:c5:da:f1:f5:
98:34:bd:ef:ab:ae:ba:a1:f3:08:63:2e:88:e7:93:98:a8:40:
83:0f:ab:97:b9:f2:08:43:d0:45:5e:4d:68:a2:a1:c7:30:02:
86:7f:cf:ae:ed:4d:97:9d:df:9b:14:16:c4:61:4a:a1:ba:4d:
aa:84:be:27:36:4e:64:a7:17:d1:8a:2e:a4:24:12:68:86:df:
a2:de:59:74:51:f2:a1:38:46:bb:7d:9d:c7:2b:1a:2c:90:4d:
05:19:b5:43:7b:54:e7:1b:a5:08:32:3f:15:a9:5e:94:6f:a4:
13:61:9e:04:18:fa:ed:c6:a4:bb:4b:e2:02:74:84:d9:6b:ad:
45:f0:91:32:26:1a:51:4f:99:b2:56:5c:19:c3:75:c1:4a:51:
da:ac:1d:94:7a:ef:22:19:1b:88:fc:9d:b9:ce:ad:b0:bf:31:
74:9f:90:cf:2c:37:53:73:30:76:cf:1d:f7:ad:36:b4:a9:10:
9c:52:77:6e:b1:1a:26:54:c2:db:9a:54:73:34:73:bf:8d:36:
73:de:62:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 8 13:04:23 2024 by rpki-client on console-fra.rpki-client.org