Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/wBsSbzxZ1pYGQ8KEf98NoDa1MrA.roa
File: wBsSbzxZ1pYGQ8KEf98NoDa1MrA.roa (raw, json)
Hash identifier: Rg7/DNjELkAdcXkJzAaLqszjbg5Pwls1xvqqUkquUf4=
Subject key identifier: C0:1B:12:6F:3C:59:D6:96:06:43:C2:84:7F:DF:0D:A0:36:B5:32:B0
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 0192B8A24CA2E684EA922DD1FA6736F20273
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/wBsSbzxZ1pYGQ8KEf98NoDa1MrA.roa
Signing time: Wed 23 Oct 2024 09:08:17 +0000
ROA not before: Wed 23 Oct 2024 09:08:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 14.102.52.0/24 maxlen: 24
14.102.53.0/24 maxlen: 24
14.102.54.0/24 maxlen: 24
14.102.55.0/24 maxlen: 24
14.102.63.0/24 maxlen: 24
14.102.84.0/24 maxlen: 24
14.102.85.0/24 maxlen: 24
14.102.86.0/24 maxlen: 24
14.102.87.0/24 maxlen: 24
62.169.128.0/24 maxlen: 24
62.169.129.0/24 maxlen: 24
62.169.130.0/24 maxlen: 24
62.169.131.0/24 maxlen: 24
62.169.132.0/24 maxlen: 24
62.169.133.0/24 maxlen: 24
62.169.134.0/24 maxlen: 24
62.169.135.0/24 maxlen: 24
84.51.234.0/24 maxlen: 24
84.51.235.0/24 maxlen: 24
92.51.232.0/24 maxlen: 24
92.51.233.0/24 maxlen: 24
92.51.238.0/24 maxlen: 24
92.51.239.0/24 maxlen: 24
92.51.248.0/24 maxlen: 24
92.51.249.0/24 maxlen: 24
92.51.250.0/24 maxlen: 24
92.51.251.0/24 maxlen: 24
92.51.252.0/24 maxlen: 24
92.51.253.0/24 maxlen: 24
92.51.254.0/24 maxlen: 24
103.61.197.0/24 maxlen: 24
103.61.198.0/24 maxlen: 24
103.61.199.0/24 maxlen: 24
103.125.77.0/24 maxlen: 24
103.125.78.0/24 maxlen: 24
103.125.79.0/24 maxlen: 24
103.210.198.0/24 maxlen: 24
103.210.199.0/24 maxlen: 24
103.213.212.0/24 maxlen: 24
103.213.213.0/24 maxlen: 24
103.255.76.0/24 maxlen: 24
103.255.77.0/24 maxlen: 24
167.160.16.0/24 maxlen: 24
167.160.17.0/24 maxlen: 24
167.160.29.0/24 maxlen: 24
198.55.28.0/24 maxlen: 24
198.55.29.0/24 maxlen: 24
203.188.164.0/24 maxlen: 24
203.188.167.0/24 maxlen: 24
203.188.168.0/24 maxlen: 24
203.188.169.0/24 maxlen: 24
203.188.170.0/24 maxlen: 24
203.188.171.0/24 maxlen: 24
203.188.172.0/24 maxlen: 24
203.188.173.0/24 maxlen: 24
212.56.48.0/24 maxlen: 24
212.56.49.0/24 maxlen: 24
212.56.50.0/24 maxlen: 24
212.56.51.0/24 maxlen: 24
212.78.245.0/24 maxlen: 24
212.78.246.0/24 maxlen: 24
212.78.247.0/24 maxlen: 24
212.78.248.0/24 maxlen: 24
212.78.249.0/24 maxlen: 24
212.78.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 23 Oct 2024 11:36:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b8:a2:4c:a2:e6:84:ea:92:2d:d1:fa:67:36:f2:02:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Oct 23 09:08:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c01b126f3c59d6960643c2847fdf0da036b532b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:47:32:3a:cd:34:28:90:c7:b1:06:97:98:7a:
8d:21:cc:5f:3a:8d:14:c6:81:7f:49:db:e4:63:bf:
be:89:3d:8c:6f:b8:23:4c:18:5b:e9:db:43:63:93:
c6:6c:7b:ef:e3:f1:6c:25:50:ca:c9:07:8e:6b:4b:
20:8e:82:5f:49:c4:eb:d0:1e:dd:14:4b:73:3f:09:
d3:01:68:70:a2:29:e8:bf:86:63:60:d0:cd:e3:4a:
89:e3:46:6c:e4:22:84:54:ea:2c:82:a7:ea:47:65:
a9:a3:ea:a3:91:43:d1:dc:f9:9d:43:4a:bd:e3:6f:
cd:29:8a:eb:56:0e:ed:b3:8d:76:15:53:81:c1:a1:
ef:54:15:01:57:1b:30:80:be:4c:c9:9e:20:9b:f4:
d1:d9:78:09:5e:b1:3b:d9:b1:be:a3:2c:0a:79:25:
99:9b:d6:4b:e0:0c:21:9b:6a:63:e2:4b:dc:03:eb:
43:bb:d8:7d:6c:9e:23:1e:9a:b6:81:ce:00:94:4a:
42:ef:71:48:27:98:0d:ad:f2:b3:d2:04:83:1e:e8:
b6:dd:c1:91:d0:af:11:d8:fe:1a:7d:02:58:4e:0c:
96:14:2f:77:d2:47:ae:92:28:1d:d6:64:d5:9d:15:
f3:96:80:d5:84:95:79:c8:fb:78:26:63:ad:8b:a0:
59:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:1B:12:6F:3C:59:D6:96:06:43:C2:84:7F:DF:0D:A0:36:B5:32:B0
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/wBsSbzxZ1pYGQ8KEf98NoDa1MrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.52.0/22
14.102.63.0/24
14.102.84.0/22
62.169.128.0/21
84.51.234.0/23
92.51.232.0/23
92.51.238.0/23
92.51.248.0-92.51.254.255
103.61.197.0-103.61.199.255
103.125.77.0-103.125.79.255
103.210.198.0/23
103.213.212.0/23
103.255.76.0/23
167.160.16.0/23
167.160.29.0/24
198.55.28.0/23
203.188.164.0/24
203.188.167.0-203.188.173.255
212.56.48.0/22
212.78.245.0-212.78.250.255
Signature Algorithm: sha256WithRSAEncryption
50:cd:e7:9e:a0:68:fd:64:db:a2:af:fc:64:e5:c9:3c:f6:2d:
8f:e7:00:89:6e:ad:b1:0a:65:d5:4f:af:78:19:19:8f:82:86:
16:97:0f:16:25:3c:ed:24:ba:0a:a4:ec:d9:33:db:a2:1b:aa:
4f:b4:52:40:c3:fd:62:ab:b0:8a:ce:6d:25:0e:bf:b0:75:61:
d4:7f:73:8c:31:55:bc:35:fb:6c:ff:b0:15:fa:5f:aa:db:7e:
3b:a8:f3:c3:4f:b8:08:0f:7d:40:ba:cc:b1:61:b9:ab:40:18:
65:90:9a:ea:23:74:c1:69:b6:b5:9c:ce:fe:4f:b3:9f:af:0a:
2c:b1:6a:6b:97:f8:cc:1d:c0:06:c3:e7:e2:6c:26:c9:99:e2:
4b:fb:79:94:c6:79:34:f7:b4:d2:2b:76:28:9b:a6:13:91:35:
e8:18:44:d7:25:d9:28:d6:e8:9d:6a:60:86:c9:68:f4:6e:ee:
06:96:43:bd:f9:33:3a:b8:d9:97:05:26:e1:23:b9:57:44:69:
ee:f5:b7:4b:27:e4:e7:32:d4:08:86:ca:3f:54:49:b4:9b:bb:
1e:c6:4d:f4:7a:f5:b7:f4:7b:3c:8b:01:53:cd:ea:34:93:53:
40:72:05:82:3a:41:68:0b:63:13:70:ba:03:8e:e9:25:74:d6:
78:cf:51:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 16:02:56 2024 by rpki-client on console-ams.rpki-client.org