Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/A8pjBPjC_R5BnqpHtqP6jONMnjI.roa
File: A8pjBPjC_R5BnqpHtqP6jONMnjI.roa (raw, json)
Hash identifier: dqm7xJAHG4JJArcjo+WLIxJVOlzdk4NafQ9ZIKxibf4=
Subject key identifier: 03:CA:63:04:F8:C2:FD:1E:41:9E:AA:47:B6:A3:FA:8C:E3:4C:9E:32
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 019436089274A963710688A7C747BBCC0423
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/A8pjBPjC_R5BnqpHtqP6jONMnjI.roa
Signing time: Sun 05 Jan 2025 10:35:18 +0000
ROA not before: Sun 05 Jan 2025 10:35:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48309
IP address blocks: 31.25.104.0/22 maxlen: 22
31.25.108.0/24 maxlen: 24
31.25.109.0/24 maxlen: 24
31.25.110.0/23 maxlen: 23
37.191.64.0/20 maxlen: 24
37.191.80.0/22 maxlen: 24
37.191.84.0/23 maxlen: 24
37.191.86.0/24 maxlen: 24
37.191.88.0/22 maxlen: 22
37.191.88.0/23 maxlen: 24
37.191.92.0/22 maxlen: 24
188.136.128.0/24 maxlen: 24
188.136.129.0/24 maxlen: 24
188.136.130.0/24 maxlen: 24
188.136.131.0/24 maxlen: 24
188.136.132.0/24 maxlen: 24
188.136.133.0/24 maxlen: 24
188.136.134.0/24 maxlen: 24
188.136.135.0/24 maxlen: 24
188.136.140.0/22 maxlen: 24
188.136.141.0/24 maxlen: 24
188.136.142.0/24 maxlen: 24
188.136.143.0/24 maxlen: 24
188.136.144.0/22 maxlen: 22
188.136.144.0/24 maxlen: 24
188.136.145.0/24 maxlen: 24
188.136.146.0/24 maxlen: 24
188.136.147.0/24 maxlen: 24
188.136.149.0/24 maxlen: 24
188.136.150.0/24 maxlen: 24
188.136.151.0/24 maxlen: 24
188.136.152.0/24 maxlen: 24
188.136.153.0/24 maxlen: 24
188.136.154.0/24 maxlen: 24
188.136.155.0/24 maxlen: 24
188.136.156.0/24 maxlen: 24
188.136.157.0/24 maxlen: 24
188.136.159.0/24 maxlen: 24
188.136.160.0/24 maxlen: 24
188.136.161.0/24 maxlen: 24
188.136.162.0/24 maxlen: 24
188.136.163.0/24 maxlen: 24
188.136.164.0/24 maxlen: 24
188.136.165.0/24 maxlen: 24
188.136.166.0/24 maxlen: 24
188.136.167.0/24 maxlen: 24
188.136.168.0/24 maxlen: 24
188.136.169.0/24 maxlen: 24
188.136.170.0/24 maxlen: 24
188.136.171.0/24 maxlen: 24
188.136.172.0/24 maxlen: 24
188.136.173.0/24 maxlen: 24
188.136.187.0/24 maxlen: 24
188.136.189.0/24 maxlen: 24
188.136.190.0/24 maxlen: 24
188.136.191.0/24 maxlen: 24
188.136.196.0/24 maxlen: 24
188.136.210.0/24 maxlen: 24
188.136.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Feb 2025 08:26:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:36:08:92:74:a9:63:71:06:88:a7:c7:47:bb:cc:04:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Jan 5 10:35:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=03ca6304f8c2fd1e419eaa47b6a3fa8ce34c9e32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:2a:f2:31:53:0a:aa:bc:78:81:d1:65:a9:b7:
ae:9b:e7:83:97:a5:47:b1:ec:89:f9:1c:35:88:4f:
68:d9:60:bc:67:33:cf:13:63:85:19:17:0a:9c:b9:
39:a3:d1:15:de:86:bd:87:23:5f:ef:10:50:83:7b:
a0:78:09:4e:d6:4e:d0:9c:bb:06:17:e3:33:1e:6f:
36:d5:b6:c0:28:14:62:cc:75:d8:5e:b1:03:70:66:
6a:bb:4f:79:a6:fc:5d:a8:51:a1:13:7b:59:51:1b:
76:fb:ed:9e:49:9b:65:66:97:ca:e5:7d:d3:08:f9:
73:4b:bc:81:7d:78:5a:e3:85:c3:48:63:f1:8a:c9:
58:5a:94:a5:fd:d2:bc:26:43:62:b8:33:4c:f1:0c:
8a:7a:c0:f4:cf:0c:6f:39:c8:d7:23:f8:0a:e6:d9:
6e:bc:01:fd:19:18:86:72:77:e0:f1:dc:7d:cf:aa:
a7:98:0b:61:fb:09:73:a4:9d:d0:3d:52:88:88:ab:
0a:48:ec:d2:74:2d:67:50:85:87:51:eb:2a:28:0a:
f0:5a:ca:ed:ff:b9:51:1c:10:a2:c3:1a:3e:1f:f3:
4f:aa:c5:99:60:bc:d0:2b:61:af:91:c2:a9:9d:70:
c9:7f:81:8b:b7:19:4f:53:99:61:c6:a5:0d:b6:0a:
6b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:CA:63:04:F8:C2:FD:1E:41:9E:AA:47:B6:A3:FA:8C:E3:4C:9E:32
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/A8pjBPjC_R5BnqpHtqP6jONMnjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.104.0/21
37.191.64.0-37.191.86.255
37.191.88.0/21
188.136.128.0/21
188.136.140.0-188.136.147.255
188.136.149.0-188.136.157.255
188.136.159.0-188.136.173.255
188.136.187.0/24
188.136.189.0-188.136.191.255
188.136.196.0/24
188.136.210.0/23
Signature Algorithm: sha256WithRSAEncryption
13:9f:18:40:d5:db:f2:7c:f2:a8:75:df:d8:8c:4c:dc:54:6c:
fd:0b:96:7e:bc:02:da:9d:af:80:5c:f3:94:89:18:a4:73:0b:
f8:f0:c4:c5:a1:13:e6:d0:75:61:b1:b5:19:44:58:f7:fb:2b:
85:3e:9e:16:7b:da:2b:87:8e:ce:4d:fe:91:23:ce:d0:60:44:
5b:09:97:dc:98:24:08:11:43:af:7f:e0:43:95:c7:31:b7:f3:
92:88:45:4d:f9:16:5b:65:cb:e7:9e:71:47:66:5c:b8:ab:53:
51:62:03:4a:73:01:f7:39:b6:1a:ab:25:e4:d6:2d:1b:c0:be:
28:fd:dd:34:32:a9:e8:f5:52:b0:33:3f:2f:fa:5e:e5:f8:30:
20:2f:b1:e2:1c:e6:8e:3d:75:35:6e:9d:21:c1:a0:2f:7b:d5:
5f:5b:75:9b:13:00:65:6a:73:d8:df:cf:9c:02:58:08:11:0e:
94:89:e5:a0:9d:1b:0e:c6:c9:ac:64:e1:10:3e:39:f9:2c:87:
e5:25:40:13:b0:96:da:f3:c4:e7:6b:e5:97:fb:ef:ba:32:87:
78:2b:76:7e:36:0b:91:35:20:8a:c8:fa:00:6e:6d:82:27:60:
a0:08:a8:34:d7:72:87:b6:3c:14:2e:36:5c:88:68:c9:c1:05:
5c:86:ed:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 09:36:20 2025 by rpki-client