Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/w4vNsozfvpX3AC4AoiWENnGRkoo.roa
File: w4vNsozfvpX3AC4AoiWENnGRkoo.roa (raw, json)
Hash identifier: R+Zkq63JD78xfLacDkTl9C6Tsc/Zt5K8FAsCHMooFoI=
Subject key identifier: C3:8B:CD:B2:8C:DF:BE:95:F7:00:2E:00:A2:25:84:36:71:91:92:8A
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 01942369C80A1D36B42F9071F323219DAE4C
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/w4vNsozfvpX3AC4AoiWENnGRkoo.roa
Signing time: Wed 01 Jan 2025 19:48:42 +0000
ROA not before: Wed 01 Jan 2025 19:48:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 137409
IP address blocks: 14.102.62.0/24 maxlen: 24
103.61.196.0/24 maxlen: 24
103.138.78.0/24 maxlen: 24
167.160.28.0/24 maxlen: 24
192.253.208.0/24 maxlen: 24
192.253.209.0/24 maxlen: 24
192.253.210.0/24 maxlen: 24
192.253.211.0/24 maxlen: 24
198.55.31.0/24 maxlen: 24
203.188.166.0/24 maxlen: 24
203.188.174.0/24 maxlen: 24
203.188.175.0/24 maxlen: 24
203.188.176.0/24 maxlen: 24
203.188.177.0/24 maxlen: 24
203.188.178.0/24 maxlen: 24
203.188.179.0/24 maxlen: 24
203.188.180.0/24 maxlen: 24
203.188.181.0/24 maxlen: 24
203.188.182.0/24 maxlen: 24
203.188.183.0/24 maxlen: 24
203.188.184.0/24 maxlen: 24
203.188.185.0/24 maxlen: 24
203.188.186.0/24 maxlen: 24
203.188.187.0/24 maxlen: 24
203.188.188.0/24 maxlen: 24
203.188.189.0/24 maxlen: 24
203.188.190.0/24 maxlen: 24
203.188.191.0/24 maxlen: 24
212.32.48.0/24 maxlen: 24
212.32.49.0/24 maxlen: 24
212.32.50.0/24 maxlen: 24
212.32.51.0/24 maxlen: 24
212.32.68.0/24 maxlen: 24
212.32.69.0/24 maxlen: 24
212.32.70.0/24 maxlen: 24
212.32.71.0/24 maxlen: 24
212.32.72.0/24 maxlen: 24
212.32.73.0/24 maxlen: 24
212.32.74.0/24 maxlen: 24
212.32.75.0/24 maxlen: 24
212.32.76.0/24 maxlen: 24
212.32.77.0/24 maxlen: 24
212.32.78.0/24 maxlen: 24
212.32.79.0/24 maxlen: 24
212.56.52.0/24 maxlen: 24
212.56.53.0/24 maxlen: 24
212.56.54.0/24 maxlen: 24
212.56.55.0/24 maxlen: 24
213.254.160.0/24 maxlen: 24
213.254.161.0/24 maxlen: 24
213.254.162.0/24 maxlen: 24
213.254.163.0/24 maxlen: 24
213.254.172.0/24 maxlen: 24
213.254.173.0/24 maxlen: 24
213.254.174.0/24 maxlen: 24
213.254.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Jan 2025 10:23:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:c8:0a:1d:36:b4:2f:90:71:f3:23:21:9d:ae:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Jan 1 19:48:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c38bcdb28cdfbe95f7002e00a22584367191928a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a1:8f:8e:1a:5e:1d:ad:1c:e2:7e:11:df:c0:
17:0a:e9:36:d6:95:ff:c7:45:7f:c7:0b:c4:47:62:
bf:e6:22:81:be:14:75:b7:a1:57:ed:24:db:9c:98:
84:f0:c4:77:79:31:ba:a3:d1:1e:be:7c:6d:38:d3:
35:35:c4:94:6e:68:cb:8a:21:16:e8:78:d5:8e:d5:
94:09:c0:e9:22:71:3b:f7:8f:38:d1:6a:ae:ce:49:
c3:b6:6d:e3:22:c6:62:c7:ef:5b:9d:61:c4:0b:2f:
d3:1f:7c:ee:bd:f6:7e:c4:12:54:fa:b9:7f:13:8b:
b3:99:56:a5:7e:f6:d7:34:62:18:36:8d:a8:d5:b5:
3c:2f:22:81:2e:7d:6b:85:9a:b0:b9:0b:2e:df:88:
19:fe:7c:c3:71:be:85:48:8b:d3:dd:8f:71:d0:23:
82:78:e1:f6:2c:c0:54:13:9a:5e:1d:46:8c:d8:71:
b0:7a:ed:f7:5f:7f:d1:1c:1c:a4:77:2b:26:8f:f8:
c3:91:51:10:e0:88:f8:eb:83:47:16:f7:d0:19:48:
cc:b5:15:ce:63:6c:b4:14:4c:36:e0:61:5d:34:6e:
ab:84:9b:21:e4:bb:0f:8f:a9:a2:8b:c4:11:45:82:
a7:c5:8b:6b:95:6e:14:07:58:6a:55:98:59:80:e1:
3d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:8B:CD:B2:8C:DF:BE:95:F7:00:2E:00:A2:25:84:36:71:91:92:8A
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/w4vNsozfvpX3AC4AoiWENnGRkoo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.62.0/24
103.61.196.0/24
103.138.78.0/24
167.160.28.0/24
192.253.208.0/22
198.55.31.0/24
203.188.166.0/24
203.188.174.0-203.188.191.255
212.32.48.0/22
212.32.68.0-212.32.79.255
212.56.52.0/22
213.254.160.0/22
213.254.172.0/22
Signature Algorithm: sha256WithRSAEncryption
99:85:c6:0d:01:70:3b:6d:98:65:7c:ee:30:e6:5a:61:4c:4b:
d1:91:4d:b6:fb:09:07:af:7c:ab:2b:f8:83:1b:80:32:02:3b:
4b:b6:50:e6:9c:a5:72:0b:45:13:0e:a6:c5:0a:d5:80:12:08:
74:32:fb:e3:87:22:d4:13:ec:d9:91:d0:7e:e1:74:f4:cb:e4:
3b:70:6e:e6:ef:d0:7a:62:45:70:4e:2d:45:a1:ac:bb:a5:cd:
9b:07:42:1f:33:71:c7:8b:cb:c3:49:61:83:1e:8e:2f:22:72:
f2:a4:ba:0a:cc:fd:39:d1:0e:aa:8c:57:07:57:36:d1:e0:83:
56:a4:ea:d5:bb:2c:f5:a7:9a:c4:dd:3d:b0:78:48:bb:fa:b7:
21:2a:9c:c2:c0:58:79:76:1b:5c:94:61:81:44:76:4f:f1:49:
f9:c5:03:f7:71:83:2c:95:b0:64:d6:56:32:7a:ff:06:ba:df:
86:61:92:17:60:9b:01:9b:d0:a3:a2:9d:9c:3c:6a:45:88:b0:
77:30:bf:6c:ed:65:8a:7e:3c:f4:e7:b3:3e:58:cd:1f:b1:03:
c8:ff:30:f7:8e:82:08:16:9a:9d:0d:b9:09:bd:42:1a:09:9f:
cf:ad:11:53:6c:5c:d7:07:27:da:f8:bf:b5:35:ab:26:53:06:
9d:fc:44:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 11:36:37 2025 by rpki-client