Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/ShcsM1iuqKbYUXX1aRWaEgtp1EM.roa
File: ShcsM1iuqKbYUXX1aRWaEgtp1EM.roa (raw, json)
Hash identifier: 8vhWGupvtM6UGo1Fxpkn7rqwf/gDfRWXP04ryb1X40A=
Subject key identifier: 4A:17:2C:33:58:AE:A8:A6:D8:51:75:F5:69:15:9A:12:0B:69:D4:43
Certificate issuer: /CN=2f8675457594d7e740aaeef2e7d7efd02239c617
Certificate serial: 018E9ED2CA931623342BC03FF984FAE9E82B
Authority key identifier: 2F:86:75:45:75:94:D7:E7:40:AA:EE:F2:E7:D7:EF:D0:22:39:C6:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L4Z1RXWU1-dAqu7y59fv0CI5xhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/ShcsM1iuqKbYUXX1aRWaEgtp1EM.roa
Signing time: Tue 02 Apr 2024 12:39:58 +0000
ROA not before: Tue 02 Apr 2024 12:39:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47583
IP address blocks: 2.57.88.0/23 maxlen: 23
2.57.90.0/24 maxlen: 24
2.57.91.0/24 maxlen: 24
31.170.160.0/22 maxlen: 22
31.170.164.0/23 maxlen: 23
31.170.164.0/24 maxlen: 24
31.170.165.0/24 maxlen: 24
31.170.166.0/23 maxlen: 23
31.220.16.0/24 maxlen: 24
31.220.17.0/24 maxlen: 24
31.220.18.0/24 maxlen: 24
31.220.19.0/24 maxlen: 24
31.220.20.0/23 maxlen: 23
31.220.20.0/24 maxlen: 24
31.220.21.0/24 maxlen: 24
31.220.22.0/24 maxlen: 24
31.220.23.0/24 maxlen: 24
31.220.48.0/20 maxlen: 20
31.220.104.0/24 maxlen: 24
31.220.105.0/24 maxlen: 24
31.220.106.0/24 maxlen: 24
31.220.107.0/24 maxlen: 24
31.220.108.0/24 maxlen: 24
31.220.109.0/24 maxlen: 24
31.220.110.0/24 maxlen: 24
31.220.111.0/24 maxlen: 24
45.13.132.0/23 maxlen: 23
45.13.134.0/23 maxlen: 23
45.13.252.0/23 maxlen: 23
45.13.254.0/23 maxlen: 23
45.87.80.0/22 maxlen: 22
45.93.136.0/22 maxlen: 22
93.188.160.0/21 maxlen: 21
153.92.1.0/24 maxlen: 24
153.92.2.0/24 maxlen: 24
153.92.3.0/24 maxlen: 24
153.92.4.0/23 maxlen: 23
153.92.6.0/23 maxlen: 23
153.92.6.0/24 maxlen: 24
153.92.7.0/24 maxlen: 24
153.92.8.0/21 maxlen: 21
153.92.8.0/24 maxlen: 24
153.92.9.0/24 maxlen: 24
153.92.10.0/24 maxlen: 24
153.92.11.0/24 maxlen: 24
153.92.12.0/24 maxlen: 24
153.92.13.0/24 maxlen: 24
153.92.14.0/24 maxlen: 24
153.92.15.0/24 maxlen: 24
156.67.208.0/20 maxlen: 20
185.28.20.0/24 maxlen: 24
185.28.21.0/24 maxlen: 24
185.28.22.0/24 maxlen: 24
185.28.23.0/24 maxlen: 24
185.77.96.0/24 maxlen: 24
185.77.97.0/24 maxlen: 24
194.11.154.0/23 maxlen: 23
194.11.214.0/23 maxlen: 23
195.110.58.0/23 maxlen: 23
212.1.208.0/21 maxlen: 21
212.1.208.0/24 maxlen: 24
212.1.210.0/24 maxlen: 24
212.1.211.0/24 maxlen: 24
212.1.212.0/22 maxlen: 22
212.1.212.0/24 maxlen: 24
212.1.215.0/24 maxlen: 24
2a02:4780::/48 maxlen: 48
2a02:4780:1::/48 maxlen: 48
2a02:4780:2::/48 maxlen: 48
2a02:4780:3::/48 maxlen: 48
2a02:4780:4::/48 maxlen: 48
2a02:4780:5::/48 maxlen: 48
2a02:4780:6::/48 maxlen: 48
2a02:4780:8::/48 maxlen: 48
2a02:4780:9::/48 maxlen: 48
2a02:4780:a::/48 maxlen: 48
2a02:4780:b::/48 maxlen: 48
2a02:4780:c::/48 maxlen: 48
2a02:4780:d::/48 maxlen: 48
2a02:4780:e::/48 maxlen: 48
2a02:4780:f::/48 maxlen: 48
2a02:4780:10::/48 maxlen: 48
2a02:4780:11::/48 maxlen: 48
2a02:4780:12::/48 maxlen: 48
2a02:4780:13::/48 maxlen: 48
2a02:4780:14::/48 maxlen: 48
2a02:4780:15::/48 maxlen: 48
2a02:4780:16::/48 maxlen: 48
2a02:4780:17::/48 maxlen: 48
2a02:4780:18::/48 maxlen: 48
2a02:4780:19::/48 maxlen: 48
2a02:4780:1a::/48 maxlen: 48
2a02:4780:1b::/48 maxlen: 48
2a02:4780:1c::/48 maxlen: 48
2a02:4780:1d::/48 maxlen: 48
2a02:4780:1e::/48 maxlen: 48
2a02:4780:1f::/48 maxlen: 48
2a02:4780:20::/48 maxlen: 48
2a02:4780:21::/48 maxlen: 48
2a02:4780:22::/48 maxlen: 48
2a02:4780:23::/48 maxlen: 48
2a02:4780:24::/48 maxlen: 48
2a02:4780:25::/48 maxlen: 48
2a02:4780:26::/48 maxlen: 48
2a02:4780:27::/48 maxlen: 48
2a02:4780:28::/48 maxlen: 48
2a02:4780:29::/48 maxlen: 48
2a02:4780:2a::/48 maxlen: 48
2a02:4780:2b::/48 maxlen: 48
2a02:4780:2c::/48 maxlen: 48
2a02:4780:84::/48 maxlen: 48
2a02:4780:85::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 18 Apr 2024 12:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:9e:d2:ca:93:16:23:34:2b:c0:3f:f9:84:fa:e9:e8:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f8675457594d7e740aaeef2e7d7efd02239c617
Validity
Not Before: Apr 2 12:39:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4a172c3358aea8a6d85175f569159a120b69d443
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:96:49:25:86:19:3a:38:b4:c3:d0:47:57:04:
5f:3a:4f:37:0f:11:43:47:64:ea:b2:d8:eb:4a:6f:
c3:e6:56:79:ec:d0:f0:3a:2a:cf:e4:54:ff:ad:d0:
ca:a5:9b:58:f3:69:5b:14:81:b0:fb:4e:68:d9:82:
9c:4a:e2:66:73:f1:07:8a:9b:71:a2:d0:a2:b5:8f:
3c:c4:d5:56:92:8a:5d:d1:4e:77:99:c8:4d:2f:91:
9f:2e:8d:26:6e:53:bc:26:6a:5f:ae:99:2f:a6:4c:
57:c5:6f:84:c0:ec:2a:bf:04:1d:75:f1:4b:92:5c:
d7:1c:91:68:7f:5c:cf:60:94:2f:e6:cf:6e:b3:b5:
5b:3f:ea:4e:78:3f:bc:21:ca:04:21:68:6f:11:fa:
57:ab:e9:1e:28:a2:8a:71:96:c5:f9:74:66:4f:93:
e0:b4:ef:a5:b7:3c:66:ff:6b:e4:34:0f:83:c4:9c:
21:d0:22:8c:33:ca:b0:8e:cd:8d:39:8b:07:f2:a3:
59:a1:66:48:e8:7a:79:db:60:0d:20:64:ed:a4:81:
e0:84:32:a4:46:92:42:68:3a:c4:dc:81:22:e8:dd:
bc:00:ac:af:4d:05:36:2f:08:a3:58:28:d4:e5:ca:
7a:49:86:2a:c7:44:ba:68:91:dc:1a:f8:3a:21:f2:
f6:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:17:2C:33:58:AE:A8:A6:D8:51:75:F5:69:15:9A:12:0B:69:D4:43
X509v3 Authority Key Identifier:
keyid:2F:86:75:45:75:94:D7:E7:40:AA:EE:F2:E7:D7:EF:D0:22:39:C6:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L4Z1RXWU1-dAqu7y59fv0CI5xhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/ShcsM1iuqKbYUXX1aRWaEgtp1EM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/L4Z1RXWU1-dAqu7y59fv0CI5xhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.88.0/22
31.170.160.0/21
31.220.16.0/21
31.220.48.0/20
31.220.104.0/21
45.13.132.0/22
45.13.252.0/22
45.87.80.0/22
45.93.136.0/22
93.188.160.0/21
153.92.1.0-153.92.15.255
156.67.208.0/20
185.28.20.0/22
185.77.96.0/23
194.11.154.0/23
194.11.214.0/23
195.110.58.0/23
212.1.208.0/21
IPv6:
2a02:4780::-2a02:4780:6:ffff:ffff:ffff:ffff:ffff
2a02:4780:8::-2a02:4780:2c:ffff:ffff:ffff:ffff:ffff
2a02:4780:84::/47
Signature Algorithm: sha256WithRSAEncryption
83:d9:ed:8f:92:5b:51:4a:d4:51:7b:17:1e:03:eb:06:0a:c5:
fb:cc:56:46:ab:34:4a:2d:f5:69:56:39:29:1d:62:b0:c0:2b:
e0:70:a2:42:96:98:88:06:52:49:86:f8:0a:85:8f:87:38:26:
e7:26:ad:ad:31:08:57:f2:87:96:82:18:89:91:7e:51:96:da:
c6:d1:fb:f0:e7:35:bd:1f:39:a7:c2:7b:6e:09:60:74:5e:38:
60:db:99:9a:32:57:0a:2e:45:6b:ce:f9:d3:f1:98:fa:61:be:
05:c1:c3:06:09:e0:13:d1:94:65:31:bd:cd:df:70:75:53:11:
a0:6b:b3:61:68:3a:38:c3:10:68:d2:8e:7a:56:51:3c:0b:24:
1b:eb:d0:d6:3e:0f:62:55:75:93:bf:6e:6e:b1:f2:47:3d:cf:
c2:17:46:56:d3:30:b6:3f:ee:3a:d1:9f:1d:e8:e3:59:58:61:
09:7c:8b:18:43:5d:19:a2:f3:de:49:aa:0e:4d:87:ae:12:5d:
80:49:98:78:b1:fc:d0:2d:f0:1a:85:18:38:fb:c5:43:5a:4d:
36:74:32:02:f0:ee:97:e0:75:c4:a9:59:73:5a:55:b2:25:43:
b9:b8:cc:a4:dd:48:06:6f:27:a6:28:1d:90:dc:52:cb:66:10:
cb:a2:0c:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:23 2024 by rpki-client on console-ams.rpki-client.org