Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/JCasj7-v1HZcs6SlvpUV31fbKOc.roa
File: JCasj7-v1HZcs6SlvpUV31fbKOc.roa (raw, json)
Hash identifier: CVza9bJUAm1qyGliwoQ7Zi3e5U2hdTq0r9hHdcRG9Po=
Subject key identifier: 24:26:AC:8F:BF:AF:D4:76:5C:B3:A4:A5:BE:95:15:DF:57:DB:28:E7
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 0190E905B92558D3ABE9C73F29ADF4BAA55F
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/JCasj7-v1HZcs6SlvpUV31fbKOc.roa
Signing time: Thu 25 Jul 2024 08:33:04 +0000
ROA not before: Thu 25 Jul 2024 08:33:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42473
IP address blocks: 2.57.104.0/22 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.4.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.228.0/24 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.244.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
45.84.252.0/24 maxlen: 24
45.84.253.0/24 maxlen: 24
45.132.60.0/24 maxlen: 24
45.132.61.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
94.16.5.0/24 maxlen: 24
94.16.8.0/24 maxlen: 24
94.16.12.0/24 maxlen: 24
94.16.17.0/24 maxlen: 24
94.16.21.0/24 maxlen: 24
94.16.22.0/24 maxlen: 24
94.16.26.0/24 maxlen: 24
94.16.97.0/24 maxlen: 24
94.16.98.0/24 maxlen: 24
94.16.99.0/24 maxlen: 24
94.16.100.0/24 maxlen: 24
94.16.101.0/24 maxlen: 24
94.16.102.0/24 maxlen: 24
94.16.103.0/24 maxlen: 24
94.16.124.0/24 maxlen: 24
94.16.125.0/24 maxlen: 24
94.16.126.0/24 maxlen: 24
144.208.192.0/18 maxlen: 32
144.208.204.0/24 maxlen: 24
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.207.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.216.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.228.0/24 maxlen: 24
144.208.229.0/24 maxlen: 24
144.208.230.0/24 maxlen: 24
144.208.231.0/24 maxlen: 24
144.208.232.0/24 maxlen: 24
144.208.233.0/24 maxlen: 24
144.208.235.0/24 maxlen: 24
144.208.236.0/24 maxlen: 24
144.208.237.0/24 maxlen: 24
144.208.238.0/24 maxlen: 24
144.208.240.0/24 maxlen: 24
144.208.241.0/24 maxlen: 24
144.208.242.0/24 maxlen: 24
144.208.244.0/24 maxlen: 24
176.123.54.0/23 maxlen: 23
178.255.152.0/21 maxlen: 32
185.2.176.0/22 maxlen: 32
185.2.176.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
185.81.206.0/24 maxlen: 24
185.81.209.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
185.228.148.0/22 maxlen: 22
188.65.72.0/21 maxlen: 32
188.172.192.0/18 maxlen: 32
188.172.208.0/24 maxlen: 24
188.172.230.0/23 maxlen: 23
188.172.247.0/24 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
193.33.114.0/23 maxlen: 32
194.1.206.0/24 maxlen: 32
213.227.160.0/19 maxlen: 32
213.227.184.0/24 maxlen: 24
217.146.0.0/19 maxlen: 24
217.146.6.0/24 maxlen: 24
217.146.7.0/24 maxlen: 24
2a00:11c0::/32 maxlen: 128
2a00:11c0:13::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:22::/48 maxlen: 48
2a00:11c0:24::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:40::/48 maxlen: 48
2a00:11c0:41::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:46::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:66::/48 maxlen: 48
2a00:11c0:79::/48 maxlen: 48
2a00:11c0:80::/48 maxlen: 48
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:87::/48 maxlen: 48
2a00:11c0:88::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:99::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a00:11c0:dc::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a00:11c0:1334::/48 maxlen: 48
2a00:11c0:1335::/48 maxlen: 48
2a00:11c0:1798::/48 maxlen: 48
2a00:11c0:179a::/48 maxlen: 48
2a00:11c0:179b::/48 maxlen: 48
2a00:11c0:9021::/48 maxlen: 48
2a01:aea0::/32 maxlen: 32
2a01:aea0::/40 maxlen: 40
2a01:aea0:dd1::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a05:8900:28::/48 maxlen: 48
2a05:8900:36::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 25 Jul 2024 10:03:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e9:05:b9:25:58:d3:ab:e9:c7:3f:29:ad:f4:ba:a5:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jul 25 08:33:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2426ac8fbfafd4765cb3a4a5be9515df57db28e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:96:c5:1f:6c:de:93:bd:2c:71:e2:b5:70:47:
d5:55:d8:f2:34:40:b9:2b:32:dd:2f:fc:63:ec:63:
52:c8:72:7d:97:33:9e:bf:81:63:5d:3c:68:0a:62:
01:cf:e1:b4:c5:e4:60:58:9a:a9:70:be:fe:b7:a3:
fd:f2:d5:03:d2:48:40:0c:f6:d4:2c:b4:ee:6e:ad:
89:a3:ec:46:8a:0a:8b:e1:9b:4a:28:e3:fa:5d:68:
ff:af:32:52:bf:62:71:fb:84:0b:9f:59:de:7a:0b:
8b:41:9d:68:27:f8:58:44:74:7e:75:a0:9c:e0:92:
4f:4b:e3:e0:f6:27:e1:b0:27:6c:11:f6:19:9a:fb:
f8:73:8b:1c:fe:9d:df:74:4d:c3:03:3d:2c:31:71:
8f:b0:56:c6:5b:f0:11:ec:f9:2c:38:81:dd:af:25:
75:43:c8:9f:57:d7:a1:10:f2:82:24:ed:c8:47:0a:
c8:79:a8:de:20:51:2d:8d:6b:88:4d:93:a7:1d:05:
b3:42:5d:48:b8:8f:13:0f:52:f3:dc:90:3a:14:39:
f6:cd:ee:5c:82:55:bd:87:bc:3e:e2:e7:ff:1e:c7:
46:b2:59:9d:30:a0:1b:9d:f9:35:b7:90:b4:e7:3a:
fd:03:fc:0f:c0:3b:4b:45:31:33:6a:91:99:af:1e:
61:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:26:AC:8F:BF:AF:D4:76:5C:B3:A4:A5:BE:95:15:DF:57:DB:28:E7
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/JCasj7-v1HZcs6SlvpUV31fbKOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.104.0/22
37.235.3.0-37.235.5.255
37.252.224.0/19
45.84.252.0/23
45.132.60.0/22
94.16.5.0/24
94.16.8.0/24
94.16.12.0/24
94.16.17.0/24
94.16.21.0-94.16.22.255
94.16.26.0/24
94.16.97.0-94.16.103.255
94.16.124.0-94.16.126.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.206.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
2a05:8900:28::/48
2a05:8900:36::/48
Signature Algorithm: sha256WithRSAEncryption
2e:e3:3a:2a:af:25:a8:b5:28:61:2b:46:11:d4:94:e2:1b:89:
6b:c2:9d:14:7f:a2:c6:f7:da:e9:8e:70:68:a0:86:21:01:11:
99:27:3b:ba:b2:5f:7b:ab:63:a1:3c:92:9c:4e:4a:84:86:db:
8f:62:60:9c:13:76:5e:60:ba:05:31:c8:75:6c:77:41:4b:10:
c8:c4:ba:9e:0f:0a:90:a8:76:04:32:5b:6b:21:1d:27:5a:ec:
56:24:36:3a:d3:77:63:5e:43:9e:2f:59:d6:b1:16:bb:d7:fa:
09:36:37:c5:53:12:d3:93:8f:1a:a3:85:8e:d3:dd:4e:1d:5e:
94:15:36:02:d4:17:d9:a6:e1:4f:38:fa:26:b5:5e:b7:e2:04:
85:66:e6:4e:50:fa:cf:3c:7f:30:4f:0e:07:ff:d2:0e:62:94:
27:e6:f5:05:c0:4f:85:06:b2:94:65:53:0f:9b:aa:37:60:7e:
06:1e:59:91:a1:9e:8a:49:29:02:47:22:7e:23:95:68:a5:ad:
f3:a2:26:4e:0f:f2:8d:65:fa:d7:42:58:92:b3:5f:7f:72:63:
0a:5b:97:46:54:76:be:13:fc:6a:75:eb:e1:1c:f6:ff:11:03:
46:0f:8d:f6:bc:ac:b6:a3:7a:74:a8:9c:5d:de:37:5e:39:60:
7d:90:5c:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 25 13:50:37 2024 by rpki-client on console-ams.rpki-client.org