Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/Su_f1FWmZBbxMMmDIicqc05nMAc.roa
File: Su_f1FWmZBbxMMmDIicqc05nMAc.roa (raw, json)
Hash identifier: HfRyKnT9K7vieA2bNyEnfQkpK5I3RzWZcu07YMocZMA=
Subject key identifier: 4A:EF:DF:D4:55:A6:64:16:F1:30:C9:83:22:27:2A:73:4E:67:30:07
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 0192B797E399C7506CF6751C88FFAD62004F
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/Su_f1FWmZBbxMMmDIicqc05nMAc.roa
Signing time: Wed 23 Oct 2024 04:17:17 +0000
ROA not before: Wed 23 Oct 2024 04:17:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 14.102.52.0/24 maxlen: 24
14.102.53.0/24 maxlen: 24
14.102.54.0/24 maxlen: 24
14.102.55.0/24 maxlen: 24
14.102.63.0/24 maxlen: 24
14.102.84.0/24 maxlen: 24
14.102.85.0/24 maxlen: 24
14.102.86.0/24 maxlen: 24
14.102.87.0/24 maxlen: 24
62.169.128.0/24 maxlen: 24
62.169.129.0/24 maxlen: 24
62.169.130.0/24 maxlen: 24
62.169.131.0/24 maxlen: 24
62.169.132.0/24 maxlen: 24
62.169.133.0/24 maxlen: 24
62.169.134.0/24 maxlen: 24
62.169.135.0/24 maxlen: 24
84.51.234.0/24 maxlen: 24
84.51.235.0/24 maxlen: 24
92.51.232.0/24 maxlen: 24
92.51.233.0/24 maxlen: 24
92.51.238.0/24 maxlen: 24
92.51.239.0/24 maxlen: 24
92.51.248.0/24 maxlen: 24
92.51.249.0/24 maxlen: 24
92.51.250.0/24 maxlen: 24
92.51.251.0/24 maxlen: 24
92.51.252.0/24 maxlen: 24
92.51.253.0/24 maxlen: 24
92.51.254.0/24 maxlen: 24
103.61.197.0/24 maxlen: 24
103.61.198.0/24 maxlen: 24
103.61.199.0/24 maxlen: 24
103.125.77.0/24 maxlen: 24
103.125.78.0/24 maxlen: 24
103.125.79.0/24 maxlen: 24
103.210.198.0/24 maxlen: 24
103.210.199.0/24 maxlen: 24
103.255.76.0/24 maxlen: 24
103.255.77.0/24 maxlen: 24
167.160.16.0/24 maxlen: 24
167.160.17.0/24 maxlen: 24
167.160.29.0/24 maxlen: 24
198.55.28.0/24 maxlen: 24
198.55.29.0/24 maxlen: 24
203.188.164.0/24 maxlen: 24
203.188.167.0/24 maxlen: 24
203.188.168.0/24 maxlen: 24
203.188.169.0/24 maxlen: 24
203.188.170.0/24 maxlen: 24
203.188.171.0/24 maxlen: 24
203.188.172.0/24 maxlen: 24
203.188.173.0/24 maxlen: 24
212.56.48.0/24 maxlen: 24
212.56.49.0/24 maxlen: 24
212.56.50.0/24 maxlen: 24
212.56.51.0/24 maxlen: 24
212.78.245.0/24 maxlen: 24
212.78.246.0/24 maxlen: 24
212.78.247.0/24 maxlen: 24
212.78.248.0/24 maxlen: 24
212.78.249.0/24 maxlen: 24
212.78.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 23 Oct 2024 09:07:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b7:97:e3:99:c7:50:6c:f6:75:1c:88:ff:ad:62:00:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Oct 23 04:17:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4aefdfd455a66416f130c98322272a734e673007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:30:53:d4:42:b0:27:e7:97:69:cb:77:ac:d1:
48:0e:59:6e:04:59:df:ff:24:76:8a:10:0a:9d:be:
ed:da:e3:db:65:cf:fa:0b:8c:dd:1c:4a:c9:fc:c9:
d0:77:21:df:01:fe:3a:33:13:10:85:a5:b1:93:39:
60:49:69:b1:0c:2b:bc:e2:55:46:76:b2:4a:5c:ea:
ed:65:21:07:9f:3a:19:92:6e:a4:f7:9d:04:5c:06:
10:c9:a5:be:c9:4a:34:28:29:1b:60:5c:b0:f8:48:
39:9f:b6:ed:84:d7:51:f1:30:3b:b8:ac:ad:dc:53:
b9:17:18:41:94:c5:f7:c0:30:ab:eb:a1:33:ae:b0:
e3:2f:02:19:83:4d:de:74:b3:f9:a4:25:ff:41:16:
99:33:fa:4c:0c:32:7c:9e:ae:0c:db:0a:2d:68:f6:
fd:fa:51:28:cd:a0:3a:b3:d4:33:12:b7:ac:80:dc:
d4:24:ea:ca:9c:68:1b:95:be:38:95:06:e8:39:81:
71:ce:52:fb:b1:c3:13:e9:9e:6b:35:07:16:de:c1:
00:b1:1a:f0:30:2d:38:02:c3:47:ea:d8:96:02:43:
bd:a1:5f:d3:fd:d9:a4:54:48:a4:62:fa:5e:0c:1a:
a0:cc:bb:ef:8b:47:ac:81:2e:47:49:20:33:e5:ed:
92:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:EF:DF:D4:55:A6:64:16:F1:30:C9:83:22:27:2A:73:4E:67:30:07
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/Su_f1FWmZBbxMMmDIicqc05nMAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.52.0/22
14.102.63.0/24
14.102.84.0/22
62.169.128.0/21
84.51.234.0/23
92.51.232.0/23
92.51.238.0/23
92.51.248.0-92.51.254.255
103.61.197.0-103.61.199.255
103.125.77.0-103.125.79.255
103.210.198.0/23
103.255.76.0/23
167.160.16.0/23
167.160.29.0/24
198.55.28.0/23
203.188.164.0/24
203.188.167.0-203.188.173.255
212.56.48.0/22
212.78.245.0-212.78.250.255
Signature Algorithm: sha256WithRSAEncryption
8f:4f:a9:04:05:7d:63:77:98:04:38:8e:98:85:25:af:94:66:
d7:c3:c3:98:1a:3d:47:62:c7:b6:a5:de:2c:be:b6:28:55:cc:
25:bf:7d:be:09:70:34:a9:38:9f:fb:7c:b3:83:89:3a:4e:8c:
4f:a3:a8:15:f2:48:e6:f7:7c:fa:58:a6:17:0e:4e:6a:76:d2:
e9:d2:bf:11:d7:6b:b0:88:04:82:d8:61:97:b4:59:6d:8d:67:
70:4b:dd:34:eb:a9:d9:c5:20:0f:69:f8:2b:6d:81:f4:99:1a:
0f:f8:f1:d1:09:4f:37:5b:4f:e7:ee:b1:91:63:bb:20:51:86:
6a:38:87:72:ec:61:13:38:14:22:ed:b8:ee:eb:b3:03:f8:d2:
c0:4b:44:55:3d:e8:08:9f:e8:04:f7:3e:01:0d:62:0a:e2:0a:
0d:bf:ff:15:5c:86:a7:01:67:97:93:9b:c2:3b:4b:80:67:82:
02:39:9d:43:33:37:9c:43:4c:5c:8e:05:7b:15:72:3b:6b:33:
c2:5d:a7:7f:b1:61:f1:61:51:cb:c7:98:ba:45:03:94:c6:0e:
a9:47:35:f4:d1:e7:c9:fb:0f:42:b4:5a:e3:d6:81:b6:f2:80:
f6:c4:e5:47:76:5a:cb:6e:f3:4d:c6:de:99:34:4a:9a:be:66:
b3:ac:a2:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 13:19:16 2024 by rpki-client on console-ams.rpki-client.org