Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/TgN8eXUS1Ks4Xs4yrk-K7QdbrAc.roa
File: TgN8eXUS1Ks4Xs4yrk-K7QdbrAc.roa (raw, json)
Hash identifier: CNqQHeUt/ObSCgUcuSKK4N8BWfUpulMURjfrtebBwfw=
Subject key identifier: 4E:03:7C:79:75:12:D4:AB:38:5E:CE:32:AE:4F:8A:ED:07:5B:AC:07
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 019193143F10EC2A94A2D23BAB18CCD6CA4A
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/TgN8eXUS1Ks4Xs4yrk-K7QdbrAc.roa
Signing time: Tue 27 Aug 2024 09:04:23 +0000
ROA not before: Tue 27 Aug 2024 09:04:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 5.42.218.0/24 maxlen: 24
31.41.253.0/24 maxlen: 24
45.87.124.0/24 maxlen: 24
45.87.125.0/24 maxlen: 24
45.87.127.0/24 maxlen: 24
45.128.124.0/24 maxlen: 24
45.128.128.0/24 maxlen: 24
45.129.198.0/24 maxlen: 24
45.150.112.0/24 maxlen: 24
62.3.7.0/24 maxlen: 24
62.3.31.0/24 maxlen: 24
77.72.83.0/24 maxlen: 24
77.72.84.0/24 maxlen: 24
84.252.69.0/24 maxlen: 24
88.151.11.0/24 maxlen: 24
88.151.112.0/24 maxlen: 24
88.151.115.0/24 maxlen: 24
88.218.184.0/24 maxlen: 24
88.218.185.0/24 maxlen: 24
88.218.186.0/24 maxlen: 24
88.218.187.0/24 maxlen: 24
91.190.158.0/24 maxlen: 24
91.209.31.0/24 maxlen: 24
91.210.68.0/24 maxlen: 24
91.210.71.0/24 maxlen: 24
91.212.169.0/24 maxlen: 24
91.228.215.0/24 maxlen: 24
91.239.212.0/24 maxlen: 24
91.239.213.0/24 maxlen: 24
94.143.230.0/24 maxlen: 24
109.205.62.0/24 maxlen: 24
146.19.51.0/24 maxlen: 24
146.19.111.0/24 maxlen: 24
146.19.120.0/24 maxlen: 24
146.255.186.0/24 maxlen: 24
176.116.17.0/24 maxlen: 24
176.118.38.0/24 maxlen: 24
176.126.98.0/24 maxlen: 24
176.126.102.0/24 maxlen: 24
185.94.67.0/24 maxlen: 24
185.109.236.0/24 maxlen: 24
185.109.237.0/24 maxlen: 24
185.109.239.0/24 maxlen: 24
185.128.41.0/24 maxlen: 24
185.128.42.0/24 maxlen: 24
185.128.43.0/24 maxlen: 24
185.128.224.0/24 maxlen: 24
185.209.50.0/24 maxlen: 24
185.211.168.0/24 maxlen: 24
185.211.169.0/24 maxlen: 24
185.211.171.0/24 maxlen: 24
185.214.164.0/24 maxlen: 24
185.214.165.0/24 maxlen: 24
185.214.167.0/24 maxlen: 24
185.244.161.0/24 maxlen: 24
193.0.62.0/24 maxlen: 24
193.17.65.0/24 maxlen: 24
193.33.188.0/24 maxlen: 24
193.104.177.0/24 maxlen: 24
193.200.61.0/24 maxlen: 24
193.228.129.0/24 maxlen: 24
193.228.131.0/24 maxlen: 24
194.59.222.0/24 maxlen: 24
194.60.76.0/24 maxlen: 24
194.110.251.0/24 maxlen: 24
195.35.105.0/24 maxlen: 24
195.64.103.0/24 maxlen: 24
195.69.161.0/24 maxlen: 24
195.69.162.0/24 maxlen: 24
195.211.164.0/24 maxlen: 24
212.6.36.0/24 maxlen: 24
212.107.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 30 Aug 2024 06:46:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:93:14:3f:10:ec:2a:94:a2:d2:3b:ab:18:cc:d6:ca:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Aug 27 09:04:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4e037c797512d4ab385ece32ae4f8aed075bac07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:79:d1:a3:50:e2:c6:52:f3:1c:4e:9e:11:7e:
86:6a:e0:b6:2b:74:88:a0:03:26:93:af:8e:bc:cd:
fc:5c:35:68:1a:2f:d3:28:10:65:fb:cf:2a:8b:5b:
11:67:a5:da:47:68:9d:ca:a0:7c:d0:37:92:f6:2a:
cf:ae:05:bf:46:ca:b9:cb:9c:1d:b3:39:95:ee:97:
0b:2e:94:1b:44:8c:1d:7b:e0:7f:4a:98:b9:1c:9e:
e2:36:72:b4:a6:9f:c2:c9:e3:0a:6c:71:e1:f8:50:
ac:8a:89:8e:11:50:88:60:eb:6f:28:11:83:89:53:
ba:fb:09:55:a2:62:62:7c:57:a7:59:5a:46:ff:ad:
db:e3:61:8b:c5:82:c8:28:04:5c:98:17:a0:eb:10:
65:3e:a2:1e:f7:6e:eb:bd:45:85:19:26:dc:55:a3:
ec:b0:0d:1d:3f:95:ec:49:9d:a3:ad:7f:06:41:42:
71:14:25:a0:2f:84:9b:90:20:8d:d1:70:b7:84:9f:
bc:ae:6d:29:5e:6e:7b:91:ea:6b:19:c3:b2:7e:1b:
39:b7:5b:e8:cb:4b:5a:b3:c3:91:72:a5:39:af:e2:
f5:df:7d:b0:9b:29:17:ad:6d:d9:53:03:95:7d:8e:
3a:14:af:0f:ce:33:57:6d:fe:a6:61:ff:44:9e:e2:
80:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:03:7C:79:75:12:D4:AB:38:5E:CE:32:AE:4F:8A:ED:07:5B:AC:07
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/TgN8eXUS1Ks4Xs4yrk-K7QdbrAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.218.0/24
31.41.253.0/24
45.87.124.0/23
45.87.127.0/24
45.128.124.0/24
45.128.128.0/24
45.129.198.0/24
45.150.112.0/24
62.3.7.0/24
62.3.31.0/24
77.72.83.0-77.72.84.255
84.252.69.0/24
88.151.11.0/24
88.151.112.0/24
88.151.115.0/24
88.218.184.0/22
91.190.158.0/24
91.209.31.0/24
91.210.68.0/24
91.210.71.0/24
91.212.169.0/24
91.228.215.0/24
91.239.212.0/23
94.143.230.0/24
109.205.62.0/24
146.19.51.0/24
146.19.111.0/24
146.19.120.0/24
146.255.186.0/24
176.116.17.0/24
176.118.38.0/24
176.126.98.0/24
176.126.102.0/24
185.94.67.0/24
185.109.236.0/23
185.109.239.0/24
185.128.41.0-185.128.43.255
185.128.224.0/24
185.209.50.0/24
185.211.168.0/23
185.211.171.0/24
185.214.164.0/23
185.214.167.0/24
185.244.161.0/24
193.0.62.0/24
193.17.65.0/24
193.33.188.0/24
193.104.177.0/24
193.200.61.0/24
193.228.129.0/24
193.228.131.0/24
194.59.222.0/24
194.60.76.0/24
194.110.251.0/24
195.35.105.0/24
195.64.103.0/24
195.69.161.0-195.69.162.255
195.211.164.0/24
212.6.36.0/24
212.107.25.0/24
Signature Algorithm: sha256WithRSAEncryption
64:9b:40:4c:2c:12:52:b3:08:ee:ac:c7:02:f8:b6:ff:46:e4:
7f:18:a6:25:fd:6d:9d:ee:1d:97:52:7a:d8:52:68:89:b4:7d:
eb:a0:ef:4e:78:5a:0c:c1:b8:47:94:89:32:f5:c2:35:9e:c3:
4d:5d:6e:fa:8a:1d:69:cf:ee:1c:b9:e7:f1:32:27:d6:fa:1a:
6a:8b:3c:1f:ca:7e:e3:98:5b:ed:db:87:0f:5d:3e:81:d8:7f:
19:79:84:56:2e:50:17:4a:3e:28:37:96:9f:d3:58:4e:a1:65:
ca:2b:a4:11:74:43:69:d3:0f:71:3b:5b:6b:8c:f9:9c:42:0a:
8d:44:83:f7:ec:9b:56:3f:24:99:c9:22:33:f8:aa:37:36:a4:
ad:09:73:d5:cf:c2:db:53:0f:b4:0f:9b:4d:a6:41:2c:3a:bb:
e7:7d:fd:4d:af:15:20:b5:18:62:c5:cb:68:8a:fa:7c:19:51:
f1:30:b6:d8:dd:9d:54:fa:9d:07:88:41:54:ab:6e:59:15:16:
c9:bc:b3:07:02:12:ff:9e:58:a0:1f:b3:07:81:2f:fe:a5:9f:
e1:3b:cb:bb:81:c3:2d:72:ec:4b:05:56:da:9e:bb:15:56:fe:
2c:4c:4a:85:35:ec:27:9e:fe:55:13:64:e3:2f:72:a1:8f:16:
cd:30:bb:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 30 09:05:03 2024 by rpki-client on console-ams.rpki-client.org