Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/D-Th0qrPlyFTCdArgQX0L02iW9Y.roa
File: D-Th0qrPlyFTCdArgQX0L02iW9Y.roa (raw, json)
Hash identifier: LGi+3ySIWk7gT+KTVaJyOV/mZSMzlhWvOqOduG2RY3k=
Subject key identifier: 0F:E4:E1:D2:AA:CF:97:21:53:09:D0:2B:81:05:F4:2F:4D:A2:5B:D6
Certificate issuer: /CN=1ada225cb7f29416e7534695fbfb21762fee93c8
Certificate serial: 018E0EF8A962D90ACF3D0968292F654E9890
Authority key identifier: 1A:DA:22:5C:B7:F2:94:16:E7:53:46:95:FB:FB:21:76:2F:EE:93:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtoiXLfylBbnU0aV-_shdi_uk8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/D-Th0qrPlyFTCdArgQX0L02iW9Y.roa
Signing time: Tue 05 Mar 2024 14:16:01 +0000
ROA not before: Tue 05 Mar 2024 14:16:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5378
IP address blocks: 62.49.0.0/16 maxlen: 16
62.49.0.0/18 maxlen: 18
62.49.64.0/18 maxlen: 18
62.49.128.0/18 maxlen: 18
62.49.192.0/18 maxlen: 18
62.56.0.0/17 maxlen: 17
62.56.0.0/18 maxlen: 18
62.56.64.0/18 maxlen: 18
77.233.128.0/19 maxlen: 19
80.176.0.0/15 maxlen: 15
83.104.0.0/14 maxlen: 14
83.104.0.0/18 maxlen: 18
83.104.64.0/18 maxlen: 18
83.104.128.0/18 maxlen: 18
83.104.192.0/18 maxlen: 18
83.105.0.0/18 maxlen: 18
83.105.64.0/18 maxlen: 18
83.105.128.0/18 maxlen: 18
83.105.192.0/18 maxlen: 18
83.106.0.0/18 maxlen: 18
83.106.64.0/18 maxlen: 18
83.106.128.0/18 maxlen: 18
83.106.192.0/18 maxlen: 18
83.107.0.0/18 maxlen: 18
83.107.64.0/18 maxlen: 18
83.107.128.0/18 maxlen: 18
83.107.192.0/18 maxlen: 18
141.195.192.0/18 maxlen: 18
141.195.192.0/19 maxlen: 19
141.195.240.0/20 maxlen: 20
193.237.0.0/16 maxlen: 16
193.237.0.0/19 maxlen: 19
193.237.32.0/19 maxlen: 19
193.237.64.0/19 maxlen: 19
193.237.96.0/19 maxlen: 19
193.237.128.0/21 maxlen: 21
193.237.136.0/22 maxlen: 22
193.237.140.0/22 maxlen: 22
193.237.144.0/21 maxlen: 21
193.237.152.0/21 maxlen: 21
193.237.160.0/19 maxlen: 19
193.237.192.0/19 maxlen: 19
193.237.224.0/19 maxlen: 19
194.222.0.0/16 maxlen: 16
195.8.160.0/19 maxlen: 19
195.58.64.0/19 maxlen: 19
212.225.0.0/17 maxlen: 17
212.228.0.0/15 maxlen: 15
212.228.0.0/18 maxlen: 18
212.228.64.0/18 maxlen: 18
212.228.128.0/19 maxlen: 19
212.228.192.0/18 maxlen: 18
212.229.0.0/18 maxlen: 18
212.229.64.0/21 maxlen: 21
212.229.72.0/22 maxlen: 22
212.229.76.0/23 maxlen: 23
212.229.78.0/23 maxlen: 23
212.229.80.0/21 maxlen: 21
212.229.88.0/21 maxlen: 21
212.229.96.0/19 maxlen: 19
212.229.128.0/18 maxlen: 18
212.229.192.0/18 maxlen: 18
212.248.128.0/17 maxlen: 17
2001:958::/32 maxlen: 32
2a0a:ef40::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 15 Apr 2024 10:33:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0e:f8:a9:62:d9:0a:cf:3d:09:68:29:2f:65:4e:98:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ada225cb7f29416e7534695fbfb21762fee93c8
Validity
Not Before: Mar 5 14:16:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0fe4e1d2aacf97215309d02b8105f42f4da25bd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:09:3b:ae:a4:9e:42:e8:d6:9d:c7:80:21:79:
86:5b:dc:d2:e4:cb:85:28:15:c8:27:2e:c9:64:4b:
38:a6:1b:9a:b1:a9:c0:bd:d3:76:7a:0a:87:8f:2c:
75:30:70:93:cf:26:a6:8b:d6:01:4d:1a:e3:b2:a7:
e5:97:04:d0:9f:ce:2d:fb:16:e7:bf:84:3b:1e:ec:
45:21:1a:eb:0d:c5:fd:d8:69:87:e5:70:1d:25:9e:
e2:8d:f9:8c:e5:b6:44:56:6c:8b:72:fa:92:b0:81:
e6:f0:e8:da:93:c2:f2:12:f3:9a:6a:d1:a5:88:b3:
20:9f:27:c6:cd:db:9d:51:7e:47:aa:d9:4a:63:52:
d2:51:c7:78:cd:96:38:ac:27:d8:03:96:f6:dc:3d:
c8:b0:cc:d9:63:0e:bd:b6:62:13:14:19:1d:f9:cb:
cd:38:43:80:84:2d:52:83:5d:34:a0:34:aa:27:2b:
4e:e7:56:73:ab:28:22:fe:dd:80:5b:84:7f:2e:fb:
98:fb:d6:41:2c:84:d9:d6:70:d4:eb:f1:a4:ca:66:
73:68:de:4f:a5:c5:85:ae:54:ec:db:b2:dd:b7:5d:
7a:3c:01:1b:15:29:84:8e:d9:ca:1c:4f:ef:a7:79:
4f:c4:1d:5e:7d:0f:d9:35:50:c8:ab:24:78:2f:8a:
c2:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:E4:E1:D2:AA:CF:97:21:53:09:D0:2B:81:05:F4:2F:4D:A2:5B:D6
X509v3 Authority Key Identifier:
keyid:1A:DA:22:5C:B7:F2:94:16:E7:53:46:95:FB:FB:21:76:2F:EE:93:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtoiXLfylBbnU0aV-_shdi_uk8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/D-Th0qrPlyFTCdArgQX0L02iW9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/GtoiXLfylBbnU0aV-_shdi_uk8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.49.0.0/16
62.56.0.0/17
77.233.128.0/19
80.176.0.0/15
83.104.0.0/14
141.195.192.0/18
193.237.0.0/16
194.222.0.0/16
195.8.160.0/19
195.58.64.0/19
212.225.0.0/17
212.228.0.0/15
212.248.128.0/17
IPv6:
2001:958::/32
2a0a:ef40::/29
Signature Algorithm: sha256WithRSAEncryption
76:7e:14:69:84:bf:d7:4b:4c:f4:48:59:75:e8:ba:91:5a:ae:
32:09:47:08:08:50:33:dd:ed:c6:1c:e0:96:18:62:88:e1:2a:
ae:7b:ae:57:8f:7f:8f:5e:e6:f3:e0:c9:61:23:16:e6:98:45:
29:cf:cf:e1:0a:14:05:98:a6:b4:b3:4b:8b:a8:76:ff:96:ee:
cf:d2:c9:86:be:36:a9:c3:10:40:67:73:65:48:89:49:6d:4f:
8f:ba:ad:d7:b3:8c:c8:36:e1:55:66:2a:3d:ea:9a:d3:4c:d9:
94:bc:11:f6:9c:36:07:c1:73:9f:72:8f:3e:54:46:9b:00:df:
9b:8c:23:af:6b:9c:96:88:11:55:1c:d2:fa:c7:cd:8e:fc:8a:
a3:d6:c3:0d:0a:e3:0e:1e:c9:3f:b6:37:5b:54:03:79:42:bd:
0d:8b:ee:ae:cb:cc:45:f1:91:55:95:07:37:ce:e5:36:c1:96:
63:93:e4:5c:18:a8:3e:b5:85:10:78:30:58:6e:3a:ec:04:dd:
ad:02:34:45:82:81:f1:c3:43:d1:12:3e:e1:20:07:26:c4:e9:
04:63:d3:3d:23:22:79:77:03:ec:22:29:9d:e7:f4:ae:44:c6:
09:6f:c1:65:b1:a4:fc:86:58:6a:26:7a:63:0c:bf:cd:63:de:
c2:9a:c4:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 14:34:13 2024 by rpki-client on console-ams.rpki-client.org