Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/gy7ueUcVsTOV7WuC1viKdSH45yw.roa
File: gy7ueUcVsTOV7WuC1viKdSH45yw.roa (raw, json)
Hash identifier: XWJLLVriaEVoQRHqP4uD3b7CYg2VOVThIJfJquGl6H0=
Subject key identifier: 83:2E:EE:79:47:15:B1:33:95:ED:6B:82:D6:F8:8A:75:21:F8:E7:2C
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 0192B52C7C37DE34E109F97CF8C308165458
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/gy7ueUcVsTOV7WuC1viKdSH45yw.roa
Signing time: Tue 22 Oct 2024 17:00:44 +0000
ROA not before: Tue 22 Oct 2024 17:00:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 14.102.52.0/24 maxlen: 24
14.102.53.0/24 maxlen: 24
14.102.54.0/24 maxlen: 24
14.102.55.0/24 maxlen: 24
14.102.63.0/24 maxlen: 24
14.102.84.0/24 maxlen: 24
14.102.85.0/24 maxlen: 24
14.102.86.0/24 maxlen: 24
14.102.87.0/24 maxlen: 24
62.169.128.0/24 maxlen: 24
62.169.129.0/24 maxlen: 24
62.169.130.0/24 maxlen: 24
62.169.131.0/24 maxlen: 24
62.169.132.0/24 maxlen: 24
62.169.133.0/24 maxlen: 24
62.169.134.0/24 maxlen: 24
62.169.135.0/24 maxlen: 24
84.51.234.0/24 maxlen: 24
84.51.235.0/24 maxlen: 24
92.51.232.0/24 maxlen: 24
92.51.233.0/24 maxlen: 24
92.51.238.0/24 maxlen: 24
92.51.239.0/24 maxlen: 24
92.51.249.0/24 maxlen: 24
92.51.250.0/24 maxlen: 24
92.51.251.0/24 maxlen: 24
92.51.252.0/24 maxlen: 24
92.51.253.0/24 maxlen: 24
92.51.254.0/24 maxlen: 24
103.61.197.0/24 maxlen: 24
103.61.198.0/24 maxlen: 24
103.61.199.0/24 maxlen: 24
103.125.77.0/24 maxlen: 24
103.125.78.0/24 maxlen: 24
103.125.79.0/24 maxlen: 24
103.210.198.0/24 maxlen: 24
103.210.199.0/24 maxlen: 24
103.255.76.0/24 maxlen: 24
103.255.77.0/24 maxlen: 24
167.160.16.0/24 maxlen: 24
167.160.17.0/24 maxlen: 24
167.160.29.0/24 maxlen: 24
198.55.28.0/24 maxlen: 24
198.55.29.0/24 maxlen: 24
203.188.164.0/24 maxlen: 24
203.188.167.0/24 maxlen: 24
203.188.168.0/24 maxlen: 24
203.188.169.0/24 maxlen: 24
203.188.170.0/24 maxlen: 24
203.188.171.0/24 maxlen: 24
203.188.172.0/24 maxlen: 24
203.188.173.0/24 maxlen: 24
212.56.48.0/24 maxlen: 24
212.56.49.0/24 maxlen: 24
212.56.50.0/24 maxlen: 24
212.56.51.0/24 maxlen: 24
212.78.245.0/24 maxlen: 24
212.78.246.0/24 maxlen: 24
212.78.247.0/24 maxlen: 24
212.78.248.0/24 maxlen: 24
212.78.249.0/24 maxlen: 24
212.78.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 23 Oct 2024 04:17:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b5:2c:7c:37:de:34:e1:09:f9:7c:f8:c3:08:16:54:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Oct 22 17:00:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=832eee794715b13395ed6b82d6f88a7521f8e72c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:29:36:7f:ef:20:7d:39:20:43:64:7a:27:6e:
bb:b5:89:b0:c8:a6:0b:12:54:0b:76:ce:1c:7f:75:
14:b7:53:72:c7:49:b2:f3:86:57:05:83:7a:ca:46:
1f:64:be:ce:02:26:b3:57:3b:85:21:0f:6b:ae:95:
1d:a1:e9:2f:05:e4:64:49:98:a8:2b:c8:2c:df:83:
40:4a:d1:de:76:69:1e:b9:9a:7f:5f:44:b6:0d:9f:
86:fb:7b:7a:ed:71:08:25:27:84:90:45:37:9d:ae:
bf:be:2f:e3:9e:cb:24:cf:3a:f7:1a:96:55:cc:0a:
6d:32:95:d7:01:0f:4e:53:4b:e3:b8:2a:76:86:95:
2e:84:61:21:5b:1e:b8:1f:a9:f7:33:2b:76:bd:6c:
81:92:ba:22:36:f3:fe:92:0e:ff:cb:c3:c3:ce:bb:
e2:59:94:1c:71:b1:f9:5b:a7:73:cb:5c:86:a7:d6:
b2:89:e4:b7:29:2c:cc:47:a1:87:d8:5a:e8:d0:99:
e5:a3:12:6b:14:87:c3:89:ad:a6:d1:2b:55:a7:31:
a9:4c:84:c9:d2:df:44:4d:58:8d:7c:72:50:19:57:
ae:3a:fb:aa:6d:0f:61:fc:7d:c6:9c:24:bc:23:58:
9b:b8:28:c6:42:df:07:e8:9a:75:28:b3:7c:d2:04:
1e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:2E:EE:79:47:15:B1:33:95:ED:6B:82:D6:F8:8A:75:21:F8:E7:2C
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/gy7ueUcVsTOV7WuC1viKdSH45yw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.52.0/22
14.102.63.0/24
14.102.84.0/22
62.169.128.0/21
84.51.234.0/23
92.51.232.0/23
92.51.238.0/23
92.51.249.0-92.51.254.255
103.61.197.0-103.61.199.255
103.125.77.0-103.125.79.255
103.210.198.0/23
103.255.76.0/23
167.160.16.0/23
167.160.29.0/24
198.55.28.0/23
203.188.164.0/24
203.188.167.0-203.188.173.255
212.56.48.0/22
212.78.245.0-212.78.250.255
Signature Algorithm: sha256WithRSAEncryption
71:57:30:18:1e:26:2e:58:a3:26:68:cf:f5:1b:dd:ba:b1:3f:
dc:63:8e:7c:6c:e2:fb:0b:20:ed:dc:bc:33:49:01:6d:0c:fe:
99:fc:1d:c9:ee:68:9a:7e:b3:c5:f4:96:a3:86:d3:aa:c4:a1:
b7:e9:e4:c1:01:b5:3a:3d:d3:ab:35:36:05:51:be:b8:c9:96:
2c:2e:29:d4:8e:5b:20:ca:30:fd:e2:a3:22:08:ac:28:c7:36:
a9:e4:9f:0b:b2:a8:d6:50:c9:98:c2:78:8b:f6:b0:60:38:aa:
bd:7d:78:fc:a3:09:2b:f2:17:cc:81:33:5b:7b:69:79:fb:33:
f8:e1:19:9d:5b:e9:45:c2:d0:a8:e3:f9:1a:4b:50:cd:e3:5a:
d0:9d:d5:15:26:c9:a2:f0:1d:d8:a1:4a:d1:f0:5f:5f:2d:a0:
4a:8f:c3:41:1f:a6:2b:c7:b9:ec:06:86:f0:f7:9c:57:04:68:
05:77:7d:3e:40:b5:fb:a7:3b:5c:ee:c2:40:6a:37:9b:04:4e:
fa:58:06:68:d7:c0:5b:5e:5b:41:b8:89:76:a6:fd:d6:f6:b6:
19:68:1a:0c:fb:03:c1:86:98:c6:47:02:4c:14:ba:4d:f6:e6:
a4:e8:96:8b:21:c4:13:fd:cf:42:a5:a3:35:4c:55:83:af:5b:
58:7e:4b:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 05:14:41 2024 by rpki-client on console-fra.rpki-client.org