Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/UM-J1sRR3CwyVAzprofV5hJZXE8.roa
File: UM-J1sRR3CwyVAzprofV5hJZXE8.roa (raw, json)
Hash identifier: 9hNLpFWrIWyCEq4IcBYejYWXKkqQlxWud3B46eFKXsg=
Subject key identifier: 50:CF:89:D6:C4:51:DC:2C:32:54:0C:E9:AE:87:D5:E6:12:59:5C:4F
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 0190548596B822427674E7F5EEF36F4D11C0
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/UM-J1sRR3CwyVAzprofV5hJZXE8.roa
Signing time: Wed 26 Jun 2024 12:29:19 +0000
ROA not before: Wed 26 Jun 2024 12:29:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48309
IP address blocks: 31.25.104.0/22 maxlen: 22
31.25.108.0/24 maxlen: 24
31.25.109.0/24 maxlen: 24
31.25.110.0/23 maxlen: 23
37.191.64.0/22 maxlen: 22
37.191.68.0/22 maxlen: 22
37.191.72.0/22 maxlen: 22
37.191.74.0/24 maxlen: 24
37.191.76.0/22 maxlen: 22
37.191.80.0/21 maxlen: 24
37.191.88.0/22 maxlen: 22
37.191.92.0/22 maxlen: 24
185.85.68.0/22 maxlen: 22
188.136.128.0/24 maxlen: 24
188.136.129.0/24 maxlen: 24
188.136.130.0/24 maxlen: 24
188.136.131.0/24 maxlen: 24
188.136.132.0/24 maxlen: 24
188.136.133.0/24 maxlen: 24
188.136.134.0/24 maxlen: 24
188.136.135.0/24 maxlen: 24
188.136.140.0/22 maxlen: 24
188.136.141.0/24 maxlen: 24
188.136.142.0/24 maxlen: 24
188.136.143.0/24 maxlen: 24
188.136.144.0/22 maxlen: 22
188.136.144.0/24 maxlen: 24
188.136.145.0/24 maxlen: 24
188.136.146.0/24 maxlen: 24
188.136.147.0/24 maxlen: 24
188.136.149.0/24 maxlen: 24
188.136.150.0/24 maxlen: 24
188.136.151.0/24 maxlen: 24
188.136.152.0/24 maxlen: 24
188.136.153.0/24 maxlen: 24
188.136.154.0/24 maxlen: 24
188.136.155.0/24 maxlen: 24
188.136.156.0/24 maxlen: 24
188.136.157.0/24 maxlen: 24
188.136.158.0/24 maxlen: 24
188.136.159.0/24 maxlen: 24
188.136.160.0/24 maxlen: 24
188.136.161.0/24 maxlen: 24
188.136.162.0/24 maxlen: 24
188.136.163.0/24 maxlen: 24
188.136.164.0/24 maxlen: 24
188.136.165.0/24 maxlen: 24
188.136.166.0/24 maxlen: 24
188.136.167.0/24 maxlen: 24
188.136.168.0/24 maxlen: 24
188.136.169.0/24 maxlen: 24
188.136.170.0/24 maxlen: 24
188.136.171.0/24 maxlen: 24
188.136.172.0/24 maxlen: 24
188.136.173.0/24 maxlen: 24
188.136.175.0/24 maxlen: 24
188.136.176.0/21 maxlen: 21
188.136.184.0/24 maxlen: 24
188.136.185.0/24 maxlen: 24
188.136.186.0/24 maxlen: 24
188.136.187.0/24 maxlen: 24
188.136.188.0/24 maxlen: 24
188.136.189.0/24 maxlen: 24
188.136.190.0/24 maxlen: 24
188.136.191.0/24 maxlen: 24
188.136.192.0/23 maxlen: 23
188.136.194.0/24 maxlen: 24
188.136.195.0/24 maxlen: 24
188.136.196.0/22 maxlen: 22
188.136.196.0/24 maxlen: 24
188.136.200.0/24 maxlen: 24
188.136.201.0/24 maxlen: 24
188.136.202.0/24 maxlen: 24
188.136.203.0/24 maxlen: 24
188.136.204.0/24 maxlen: 24
188.136.205.0/24 maxlen: 24
188.136.206.0/24 maxlen: 24
188.136.207.0/24 maxlen: 24
188.136.208.0/24 maxlen: 24
188.136.209.0/24 maxlen: 24
188.136.210.0/24 maxlen: 24
188.136.211.0/24 maxlen: 24
188.136.212.0/24 maxlen: 24
188.136.213.0/24 maxlen: 24
188.136.214.0/24 maxlen: 24
188.136.215.0/24 maxlen: 24
188.136.216.0/22 maxlen: 22
188.136.222.0/24 maxlen: 24
188.136.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 30 Jun 2024 13:22:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:54:85:96:b8:22:42:76:74:e7:f5:ee:f3:6f:4d:11:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Jun 26 12:29:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=50cf89d6c451dc2c32540ce9ae87d5e612595c4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:73:f9:2b:df:3b:ef:f4:75:05:fa:16:a6:a8:
de:9e:b7:75:6d:e2:ef:9c:16:5d:75:c2:6b:dd:c7:
67:12:f7:c6:fc:77:2b:5c:f0:1c:5e:ee:46:23:56:
a3:a0:2d:4b:91:04:4f:19:15:a5:6c:dc:e9:5a:a0:
0e:f1:c4:64:2e:fd:d0:42:18:d6:25:1a:4d:15:54:
b4:2d:30:0b:ec:36:b9:43:80:52:e2:96:f3:6f:ae:
bc:aa:2a:68:7d:09:1f:2b:61:93:30:c8:e4:67:5d:
f8:03:e9:88:46:e6:5f:4a:5b:fb:0b:a5:1a:f2:0c:
53:10:02:65:d9:46:69:10:e2:1c:94:0e:53:01:eb:
85:bd:b7:00:a1:7a:66:95:57:f4:45:7f:73:a3:f5:
ca:98:80:f5:8c:71:0b:36:5f:7f:bc:bf:5a:d6:97:
10:46:79:e8:50:fe:8c:e4:07:6f:60:5b:6b:4d:9d:
91:fe:8b:ed:af:67:eb:e6:65:59:a0:e9:4b:ff:c6:
cb:6d:d8:4d:ea:e0:82:9b:dc:83:03:7e:7d:7a:d7:
0e:02:01:77:a4:b2:25:02:b0:b1:5f:d3:37:88:78:
c9:80:7e:88:a9:ae:3a:72:9e:a8:0f:6a:14:4a:53:
c9:cd:84:73:d4:d0:85:f5:e0:20:93:1e:00:14:8f:
6b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:CF:89:D6:C4:51:DC:2C:32:54:0C:E9:AE:87:D5:E6:12:59:5C:4F
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/UM-J1sRR3CwyVAzprofV5hJZXE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.104.0/21
37.191.64.0/19
185.85.68.0/22
188.136.128.0/21
188.136.140.0-188.136.147.255
188.136.149.0-188.136.173.255
188.136.175.0-188.136.219.255
188.136.222.0/23
Signature Algorithm: sha256WithRSAEncryption
37:ef:08:11:ed:19:60:2f:35:50:22:36:a4:b5:85:7e:24:32:
53:0f:bd:81:84:9c:a1:96:37:4d:4e:ad:64:30:47:d9:66:87:
5d:c0:98:57:85:17:e9:0a:b9:8d:0e:a1:46:d8:de:5f:a7:49:
c2:32:ce:e9:2c:56:c4:a3:b6:71:5a:7b:cd:c7:d9:e8:fe:97:
b8:7f:4f:92:8a:b5:c4:fb:a2:20:58:a4:f5:78:04:11:68:51:
eb:77:c3:9e:c7:f1:7e:64:bd:58:b3:fb:e6:46:d0:4b:0f:1b:
ca:2b:30:2b:2d:08:c0:bb:c5:c9:4f:8f:78:f1:86:10:f6:fa:
3a:a3:e0:c7:92:05:37:cb:40:92:a8:1c:b6:80:5c:37:63:bb:
b8:a4:90:83:47:01:ce:21:07:50:fb:cc:3a:84:07:d3:af:76:
09:a2:b6:5a:aa:6a:54:50:58:28:c3:a6:c2:bd:95:e6:2f:9b:
fc:a4:32:a8:d4:ed:72:55:82:70:fb:0b:eb:81:c0:a3:fb:f8:
c9:06:58:24:cb:31:32:42:48:9a:d7:1b:f6:d5:35:fd:3c:26:
37:27:77:3e:fd:32:a6:54:57:fb:2a:38:06:db:fa:ce:a9:f8:
f7:fc:c5:70:84:2f:7a:dd:7a:87:89:97:e0:e0:46:04:af:8a:
75:96:be:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 18:29:25 2024 by rpki-client on console-ams.rpki-client.org