Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/DwHJFSNZHdZ4L6V461fD8HjUv1Q.roa
File: DwHJFSNZHdZ4L6V461fD8HjUv1Q.roa (raw, json)
Hash identifier: zCLyj2DPEcg2k7rzC0H7+NHqZ8tKgXPFKhOtYMHJhDo=
Subject key identifier: 0F:01:C9:15:23:59:1D:D6:78:2F:A5:78:EB:57:C3:F0:78:D4:BF:54
Certificate issuer: /CN=1ada225cb7f29416e7534695fbfb21762fee93c8
Certificate serial: 018CC5DC327C6913D9D9BA92C52C5BCB34CE
Authority key identifier: 1A:DA:22:5C:B7:F2:94:16:E7:53:46:95:FB:FB:21:76:2F:EE:93:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtoiXLfylBbnU0aV-_shdi_uk8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/DwHJFSNZHdZ4L6V461fD8HjUv1Q.roa
Signing time: Mon 01 Jan 2024 16:29:51 +0000
ROA not before: Mon 01 Jan 2024 16:29:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5378
IP address blocks: 212.228.128.0/19 maxlen: 19
83.107.64.0/18 maxlen: 18
212.228.64.0/18 maxlen: 18
83.107.0.0/18 maxlen: 18
62.49.192.0/18 maxlen: 18
212.248.128.0/17 maxlen: 17
212.225.0.0/17 maxlen: 17
83.104.64.0/18 maxlen: 18
212.229.0.0/18 maxlen: 18
83.107.192.0/18 maxlen: 18
83.104.0.0/18 maxlen: 18
83.104.0.0/14 maxlen: 14
83.107.128.0/18 maxlen: 18
194.222.0.0/16 maxlen: 16
212.228.192.0/18 maxlen: 18
195.8.160.0/19 maxlen: 19
193.237.192.0/19 maxlen: 19
83.106.128.0/18 maxlen: 18
193.237.224.0/19 maxlen: 19
193.237.128.0/21 maxlen: 21
193.237.136.0/22 maxlen: 22
193.237.140.0/22 maxlen: 22
193.237.144.0/21 maxlen: 21
193.237.152.0/21 maxlen: 21
83.106.64.0/18 maxlen: 18
62.49.0.0/18 maxlen: 18
193.237.160.0/19 maxlen: 19
62.49.0.0/16 maxlen: 16
212.228.0.0/18 maxlen: 18
62.49.128.0/18 maxlen: 18
83.106.192.0/18 maxlen: 18
62.56.64.0/18 maxlen: 18
212.228.0.0/15 maxlen: 15
62.49.64.0/18 maxlen: 18
62.56.0.0/17 maxlen: 17
62.56.0.0/18 maxlen: 18
83.105.128.0/18 maxlen: 18
77.233.128.0/19 maxlen: 19
193.237.0.0/19 maxlen: 19
193.237.0.0/16 maxlen: 16
83.105.64.0/18 maxlen: 18
80.176.0.0/15 maxlen: 15
195.58.64.0/19 maxlen: 19
83.106.0.0/18 maxlen: 18
193.237.96.0/19 maxlen: 19
193.237.32.0/19 maxlen: 19
83.105.192.0/18 maxlen: 18
193.237.64.0/19 maxlen: 19
212.229.72.0/22 maxlen: 22
212.229.76.0/23 maxlen: 23
212.229.78.0/23 maxlen: 23
212.229.80.0/21 maxlen: 21
212.229.88.0/21 maxlen: 21
212.229.96.0/19 maxlen: 19
83.104.192.0/18 maxlen: 18
141.195.192.0/19 maxlen: 19
141.195.192.0/18 maxlen: 18
83.104.128.0/18 maxlen: 18
212.229.64.0/21 maxlen: 21
212.229.192.0/18 maxlen: 18
212.229.128.0/18 maxlen: 18
83.105.0.0/18 maxlen: 18
141.195.240.0/20 maxlen: 20
2a0a:ef40::/29 maxlen: 29
2001:958::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 05 Mar 2024 12:32:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:32:7c:69:13:d9:d9:ba:92:c5:2c:5b:cb:34:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ada225cb7f29416e7534695fbfb21762fee93c8
Validity
Not Before: Jan 1 16:29:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0f01c91523591dd6782fa578eb57c3f078d4bf54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8d:54:c5:4e:85:e3:38:45:a4:7e:9b:66:2a:
ee:8c:e2:af:0c:ae:db:fe:64:8b:a0:21:5a:92:73:
94:ae:8b:29:89:80:16:97:45:84:fb:d1:a6:e6:4a:
42:95:a5:af:87:01:d4:47:f6:7e:57:73:3c:70:f9:
0b:f5:b9:69:14:32:c9:fc:c8:5d:40:90:57:3c:20:
1b:ee:84:63:56:c5:d4:55:69:ed:ff:d7:85:75:54:
15:cb:8b:05:46:15:2e:7b:21:6b:43:db:87:fa:ed:
df:73:99:3f:0e:36:40:59:f3:e9:a3:5b:1b:e8:cc:
dd:bf:12:d8:45:57:31:1f:f2:87:00:fc:c0:68:37:
89:bc:b2:1f:3f:06:60:9a:66:04:3b:bc:d2:a5:a3:
c7:d8:00:d0:01:2f:f6:86:a5:35:ca:08:f2:cc:6c:
ae:9a:4c:e6:81:38:21:f2:b2:f9:60:9f:cb:cf:3b:
8f:1c:d7:00:e9:b9:f3:6a:35:a5:ae:cd:48:f2:16:
d8:bf:f7:70:68:9a:ca:a8:44:45:d5:e3:62:09:54:
d9:77:27:0d:83:d8:00:b1:9d:68:0c:a5:b8:65:6f:
02:37:13:aa:02:37:84:a1:2c:80:8e:29:5a:7a:7d:
92:6d:4a:cd:e0:c2:90:26:07:d4:3a:9b:4f:d2:bb:
2f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:01:C9:15:23:59:1D:D6:78:2F:A5:78:EB:57:C3:F0:78:D4:BF:54
X509v3 Authority Key Identifier:
keyid:1A:DA:22:5C:B7:F2:94:16:E7:53:46:95:FB:FB:21:76:2F:EE:93:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtoiXLfylBbnU0aV-_shdi_uk8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/DwHJFSNZHdZ4L6V461fD8HjUv1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/GtoiXLfylBbnU0aV-_shdi_uk8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.49.0.0/16
62.56.0.0/17
77.233.128.0/19
80.176.0.0/15
83.104.0.0/14
141.195.192.0/18
193.237.0.0/16
194.222.0.0/16
195.8.160.0/19
195.58.64.0/19
212.225.0.0/17
212.228.0.0/15
212.248.128.0/17
IPv6:
2001:958::/32
2a0a:ef40::/29
Signature Algorithm: sha256WithRSAEncryption
c1:8e:af:84:e1:51:f5:26:ed:02:62:69:c7:d4:58:fe:c9:9d:
45:a8:fb:43:b1:72:d7:d1:7a:3d:2e:17:ad:a3:e6:13:94:9a:
9d:0b:dc:5a:41:83:bf:f9:2e:d7:ed:f0:15:70:a0:5b:2a:3a:
19:e1:8b:12:ff:8f:c7:77:9a:ee:6d:71:7b:14:76:48:be:66:
e7:40:34:f3:89:9b:36:72:cc:1c:c8:4f:53:3f:f6:b6:08:f3:
62:f5:bb:0c:93:95:a7:3b:4f:59:10:e5:0a:12:9b:91:10:81:
c5:ae:c0:49:88:45:17:97:87:d9:ad:89:a2:87:6d:ca:d7:9f:
64:21:2a:54:ed:c6:27:5c:1b:41:db:87:41:d1:c3:5b:71:44:
44:0f:14:7f:7d:d7:16:a0:be:e8:ef:6d:db:c1:13:65:0d:99:
7f:89:17:be:04:5f:2e:08:f5:c4:a7:8d:52:9f:29:8c:07:3a:
33:dd:3c:ae:89:cd:22:c5:01:02:5f:5d:7f:de:d9:2f:ae:da:
73:92:e2:05:8c:2d:a8:85:4b:61:5c:fd:09:48:b7:f8:f3:c1:
d8:48:48:6b:76:5d:12:e3:1f:7a:4c:83:34:55:ec:f8:7a:b7:
98:46:e5:56:ea:e8:17:f6:b0:88:8d:3f:11:81:d2:12:96:68:
08:a9:1f:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 5 15:15:24 2024 by rpki-client on console-ams.rpki-client.org