Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/4PgSY8D3I9vnmMnFP1xbMXCFmPg.roa
File: 4PgSY8D3I9vnmMnFP1xbMXCFmPg.roa (raw, json)
Hash identifier: Y9CU3nY4n8zSJhiCiNPehLeR6CbQzkibBA2oDBoEHdY=
Subject key identifier: E0:F8:12:63:C0:F7:23:DB:E7:98:C9:C5:3F:5C:5B:31:70:85:98:F8
Certificate issuer: /CN=2f8675457594d7e740aaeef2e7d7efd02239c617
Certificate serial: 019302B82064A79897031BF81AFF0DD71229
Authority key identifier: 2F:86:75:45:75:94:D7:E7:40:AA:EE:F2:E7:D7:EF:D0:22:39:C6:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L4Z1RXWU1-dAqu7y59fv0CI5xhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/4PgSY8D3I9vnmMnFP1xbMXCFmPg.roa
Signing time: Wed 06 Nov 2024 18:24:01 +0000
ROA not before: Wed 06 Nov 2024 18:24:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47583
IP address blocks: 2.57.88.0/23 maxlen: 24
2.57.90.0/24 maxlen: 24
2.57.91.0/24 maxlen: 24
31.170.160.0/22 maxlen: 24
31.170.164.0/23 maxlen: 24
31.170.164.0/24 maxlen: 24
31.170.165.0/24 maxlen: 24
31.170.166.0/23 maxlen: 24
31.220.16.0/24 maxlen: 24
31.220.17.0/24 maxlen: 24
31.220.18.0/24 maxlen: 24
31.220.19.0/24 maxlen: 24
31.220.20.0/23 maxlen: 24
31.220.20.0/24 maxlen: 24
31.220.21.0/24 maxlen: 24
31.220.22.0/24 maxlen: 24
31.220.23.0/24 maxlen: 24
31.220.48.0/20 maxlen: 24
31.220.104.0/24 maxlen: 24
31.220.105.0/24 maxlen: 24
31.220.106.0/24 maxlen: 24
31.220.107.0/24 maxlen: 24
31.220.108.0/24 maxlen: 24
31.220.109.0/24 maxlen: 24
31.220.110.0/24 maxlen: 24
31.220.111.0/24 maxlen: 24
45.13.132.0/23 maxlen: 24
45.13.134.0/23 maxlen: 24
45.13.252.0/23 maxlen: 24
45.13.254.0/23 maxlen: 24
45.87.80.0/22 maxlen: 24
45.93.136.0/22 maxlen: 24
93.188.160.0/21 maxlen: 24
141.136.33.0/24 maxlen: 24
141.136.35.0/24 maxlen: 24
141.136.36.0/24 maxlen: 24
141.136.39.0/24 maxlen: 24
141.136.41.0/24 maxlen: 24
141.136.42.0/24 maxlen: 24
141.136.44.0/24 maxlen: 24
141.136.46.0/24 maxlen: 24
153.92.1.0/24 maxlen: 24
153.92.2.0/24 maxlen: 24
153.92.3.0/24 maxlen: 24
153.92.4.0/23 maxlen: 24
153.92.6.0/23 maxlen: 24
153.92.6.0/24 maxlen: 24
153.92.7.0/24 maxlen: 24
153.92.8.0/21 maxlen: 24
153.92.8.0/24 maxlen: 24
153.92.9.0/24 maxlen: 24
153.92.10.0/24 maxlen: 24
153.92.11.0/24 maxlen: 24
153.92.12.0/24 maxlen: 24
153.92.13.0/24 maxlen: 24
153.92.14.0/24 maxlen: 24
153.92.15.0/24 maxlen: 24
153.92.208.0/22 maxlen: 24
153.92.212.0/22 maxlen: 24
153.92.216.0/21 maxlen: 24
156.67.64.0/20 maxlen: 24
156.67.208.0/20 maxlen: 24
185.28.20.0/24 maxlen: 24
185.28.21.0/24 maxlen: 24
185.28.22.0/24 maxlen: 24
185.28.23.0/24 maxlen: 24
185.77.96.0/24 maxlen: 24
185.77.97.0/24 maxlen: 24
194.11.154.0/23 maxlen: 24
194.11.214.0/23 maxlen: 24
195.110.58.0/23 maxlen: 24
212.1.208.0/21 maxlen: 24
212.1.208.0/24 maxlen: 24
212.1.210.0/24 maxlen: 24
212.1.211.0/24 maxlen: 24
212.1.212.0/22 maxlen: 24
212.1.212.0/24 maxlen: 24
212.1.215.0/24 maxlen: 24
2a02:4780::/48 maxlen: 48
2a02:4780:1::/48 maxlen: 48
2a02:4780:2::/48 maxlen: 48
2a02:4780:3::/48 maxlen: 48
2a02:4780:4::/48 maxlen: 48
2a02:4780:5::/48 maxlen: 48
2a02:4780:6::/48 maxlen: 48
2a02:4780:8::/48 maxlen: 48
2a02:4780:9::/48 maxlen: 48
2a02:4780:a::/48 maxlen: 48
2a02:4780:b::/48 maxlen: 48
2a02:4780:c::/48 maxlen: 48
2a02:4780:d::/48 maxlen: 48
2a02:4780:e::/48 maxlen: 48
2a02:4780:f::/48 maxlen: 48
2a02:4780:10::/48 maxlen: 48
2a02:4780:11::/48 maxlen: 48
2a02:4780:12::/48 maxlen: 48
2a02:4780:13::/48 maxlen: 48
2a02:4780:14::/48 maxlen: 48
2a02:4780:15::/48 maxlen: 48
2a02:4780:16::/48 maxlen: 48
2a02:4780:17::/48 maxlen: 48
2a02:4780:18::/48 maxlen: 48
2a02:4780:19::/48 maxlen: 48
2a02:4780:1a::/48 maxlen: 48
2a02:4780:1b::/48 maxlen: 48
2a02:4780:1c::/48 maxlen: 48
2a02:4780:1d::/48 maxlen: 48
2a02:4780:1e::/48 maxlen: 48
2a02:4780:1f::/48 maxlen: 48
2a02:4780:20::/48 maxlen: 48
2a02:4780:21::/48 maxlen: 48
2a02:4780:22::/48 maxlen: 48
2a02:4780:23::/48 maxlen: 48
2a02:4780:24::/48 maxlen: 48
2a02:4780:25::/48 maxlen: 48
2a02:4780:26::/48 maxlen: 48
2a02:4780:27::/48 maxlen: 48
2a02:4780:28::/48 maxlen: 48
2a02:4780:29::/48 maxlen: 48
2a02:4780:2a::/48 maxlen: 48
2a02:4780:2b::/48 maxlen: 48
2a02:4780:2c::/48 maxlen: 48
2a02:4780:2d::/48 maxlen: 48
2a02:4780:2e::/48 maxlen: 48
2a02:4780:2f::/48 maxlen: 48
2a02:4780:30::/48 maxlen: 48
2a02:4780:31::/48 maxlen: 48
2a02:4780:32::/48 maxlen: 48
2a02:4780:33::/48 maxlen: 48
2a02:4780:34::/48 maxlen: 48
2a02:4780:35::/48 maxlen: 48
2a02:4780:36::/48 maxlen: 48
2a02:4780:37::/48 maxlen: 48
2a02:4780:38::/48 maxlen: 48
2a02:4780:39::/48 maxlen: 48
2a02:4780:3a::/48 maxlen: 48
2a02:4780:3b::/48 maxlen: 48
2a02:4780:3c::/48 maxlen: 48
2a02:4780:3d::/48 maxlen: 48
2a02:4780:3e::/48 maxlen: 48
2a02:4780:3f::/48 maxlen: 48
2a02:4780:40::/48 maxlen: 48
2a02:4780:41::/48 maxlen: 48
2a02:4780:42::/48 maxlen: 48
2a02:4780:43::/48 maxlen: 48
2a02:4780:44::/48 maxlen: 48
2a02:4780:45::/48 maxlen: 48
2a02:4780:46::/48 maxlen: 48
2a02:4780:47::/48 maxlen: 48
2a02:4780:48::/48 maxlen: 48
2a02:4780:49::/48 maxlen: 48
2a02:4780:4a::/48 maxlen: 48
2a02:4780:4b::/48 maxlen: 48
2a02:4780:4c::/48 maxlen: 48
2a02:4780:4d::/48 maxlen: 48
2a02:4780:4e::/48 maxlen: 48
2a02:4780:4f::/48 maxlen: 48
2a02:4780:50::/48 maxlen: 48
2a02:4780:51::/48 maxlen: 48
2a02:4780:84::/48 maxlen: 48
2a02:4780:85::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 07 Nov 2024 10:57:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:02:b8:20:64:a7:98:97:03:1b:f8:1a:ff:0d:d7:12:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f8675457594d7e740aaeef2e7d7efd02239c617
Validity
Not Before: Nov 6 18:24:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e0f81263c0f723dbe798c9c53f5c5b31708598f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1b:8f:83:3d:0b:f9:ed:1b:83:4e:26:ed:39:
e6:75:dd:a3:cd:76:16:2a:bc:c4:f0:99:60:0a:a5:
38:a7:70:78:71:94:1c:e0:3d:40:78:87:a9:ff:f0:
d3:cb:7e:31:3a:f8:b1:1d:f3:55:5a:e1:e4:e6:57:
ae:c1:34:85:ee:cf:c7:67:80:9d:1f:2a:ad:1b:9a:
fb:34:e1:d3:88:ce:41:77:95:29:3e:0d:5b:97:4f:
0c:f7:3a:3c:75:bc:43:88:49:cd:8a:41:31:64:d8:
d5:64:ba:59:99:54:2c:db:84:32:32:0f:57:d1:cc:
51:3f:14:8c:a0:d6:34:9e:e6:9c:97:3e:03:f0:74:
d2:ad:a0:1e:7c:1e:b5:4c:33:9e:b6:0e:7d:1c:70:
23:62:3d:0f:ac:30:5b:99:46:5b:8a:c5:8a:59:aa:
6d:cc:51:13:8c:58:1c:21:19:a8:9b:49:2a:ca:36:
1b:66:84:d9:b6:03:f4:36:9b:96:d2:2e:26:8f:1b:
ac:4c:35:9a:42:ae:34:e8:5b:12:d2:b4:88:67:76:
29:d1:8a:29:c4:ed:67:58:44:1e:dd:75:f4:b3:33:
88:39:1f:36:18:42:ea:9f:5f:7f:b6:f8:32:a2:b1:
6d:46:f7:db:b5:01:9d:21:ab:f9:91:63:ae:2f:b6:
ae:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:F8:12:63:C0:F7:23:DB:E7:98:C9:C5:3F:5C:5B:31:70:85:98:F8
X509v3 Authority Key Identifier:
keyid:2F:86:75:45:75:94:D7:E7:40:AA:EE:F2:E7:D7:EF:D0:22:39:C6:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L4Z1RXWU1-dAqu7y59fv0CI5xhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/4PgSY8D3I9vnmMnFP1xbMXCFmPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/L4Z1RXWU1-dAqu7y59fv0CI5xhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.88.0/22
31.170.160.0/21
31.220.16.0/21
31.220.48.0/20
31.220.104.0/21
45.13.132.0/22
45.13.252.0/22
45.87.80.0/22
45.93.136.0/22
93.188.160.0/21
141.136.33.0/24
141.136.35.0-141.136.36.255
141.136.39.0/24
141.136.41.0-141.136.42.255
141.136.44.0/24
141.136.46.0/24
153.92.1.0-153.92.15.255
153.92.208.0/20
156.67.64.0/20
156.67.208.0/20
185.28.20.0/22
185.77.96.0/23
194.11.154.0/23
194.11.214.0/23
195.110.58.0/23
212.1.208.0/21
IPv6:
2a02:4780::-2a02:4780:6:ffff:ffff:ffff:ffff:ffff
2a02:4780:8::-2a02:4780:51:ffff:ffff:ffff:ffff:ffff
2a02:4780:84::/47
Signature Algorithm: sha256WithRSAEncryption
23:3a:5a:f8:13:09:4d:04:03:80:08:bf:9c:e6:b8:df:3b:09:
81:98:de:d3:67:94:d6:ed:ba:45:b7:8a:47:7b:9a:a2:a7:7e:
3d:93:de:44:c5:e5:29:5c:ba:5c:af:8e:34:53:30:0c:5f:34:
fe:f0:eb:e2:31:42:39:03:8a:07:e5:30:e6:54:af:e7:ab:b5:
69:05:da:85:f3:87:31:fb:28:7a:f5:a7:ed:0e:a5:c0:b7:b0:
3b:d3:12:60:e4:98:9d:fc:0a:83:60:5d:49:86:40:4f:14:49:
8e:f5:a0:3f:03:a9:bd:99:73:dd:ae:1d:25:31:63:ab:b5:91:
20:ff:9e:c4:3a:b8:63:a1:ab:03:be:ca:49:ad:ba:4f:d2:05:
47:b9:c3:b2:ee:bd:b2:91:ba:a7:1b:3d:99:86:e8:ad:e9:e5:
03:12:5f:48:7c:9a:db:0e:23:11:7c:a5:ae:f7:25:d6:01:70:
86:1b:54:d5:9b:7d:fd:9b:a9:71:ed:55:fd:f2:94:f6:72:1b:
df:02:50:24:d7:21:2f:00:2d:cd:36:4f:27:b3:9c:b8:0d:07:
18:e0:f8:6f:18:78:77:4a:9c:f2:3e:2c:4e:29:13:c2:27:e9:
b5:26:25:51:dc:94:92:da:7f:0f:a1:9f:69:99:35:3e:e2:02:
51:06:14:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 7 14:04:43 2024 by rpki-client on console-ams.rpki-client.org