Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/fDHUUjPjEGW9_qORN1WYTWO5p1s.roa
File: fDHUUjPjEGW9_qORN1WYTWO5p1s.roa (raw, json)
Hash identifier: PanY4P2pVjgMomNva1xn9+9CYdHbFyTJ8xJRQJiMn50=
Subject key identifier: 7C:31:D4:52:33:E3:10:65:BD:FE:A3:91:37:55:98:4D:63:B9:A7:5B
Certificate issuer: /CN=1ada225cb7f29416e7534695fbfb21762fee93c8
Certificate serial: 018E0E99727AE89E5904646CB303B069DBB1
Authority key identifier: 1A:DA:22:5C:B7:F2:94:16:E7:53:46:95:FB:FB:21:76:2F:EE:93:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtoiXLfylBbnU0aV-_shdi_uk8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/fDHUUjPjEGW9_qORN1WYTWO5p1s.roa
Signing time: Tue 05 Mar 2024 12:32:01 +0000
ROA not before: Tue 05 Mar 2024 12:32:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5378
IP address blocks: 62.49.0.0/16 maxlen: 16
62.49.0.0/18 maxlen: 18
62.49.64.0/18 maxlen: 18
62.49.128.0/18 maxlen: 18
62.49.192.0/18 maxlen: 18
62.56.0.0/17 maxlen: 17
62.56.0.0/18 maxlen: 18
62.56.64.0/18 maxlen: 18
77.233.128.0/19 maxlen: 19
80.176.0.0/15 maxlen: 15
83.104.0.0/14 maxlen: 14
83.104.0.0/18 maxlen: 18
83.104.64.0/18 maxlen: 18
83.104.128.0/18 maxlen: 18
83.104.192.0/18 maxlen: 18
83.105.0.0/18 maxlen: 18
83.105.64.0/18 maxlen: 18
83.105.128.0/18 maxlen: 18
83.105.192.0/18 maxlen: 18
83.106.0.0/18 maxlen: 18
83.106.64.0/18 maxlen: 18
83.106.128.0/18 maxlen: 18
83.106.192.0/18 maxlen: 18
83.107.0.0/18 maxlen: 18
83.107.64.0/18 maxlen: 18
83.107.128.0/18 maxlen: 18
83.107.192.0/18 maxlen: 18
85.255.236.0/23 maxlen: 23
141.195.192.0/18 maxlen: 18
141.195.192.0/19 maxlen: 19
141.195.240.0/20 maxlen: 20
193.237.0.0/16 maxlen: 16
193.237.0.0/19 maxlen: 19
193.237.32.0/19 maxlen: 19
193.237.64.0/19 maxlen: 19
193.237.96.0/19 maxlen: 19
193.237.128.0/21 maxlen: 21
193.237.136.0/22 maxlen: 22
193.237.140.0/22 maxlen: 22
193.237.144.0/21 maxlen: 21
193.237.152.0/21 maxlen: 21
193.237.160.0/19 maxlen: 19
193.237.192.0/19 maxlen: 19
193.237.224.0/19 maxlen: 19
194.222.0.0/16 maxlen: 16
195.8.160.0/19 maxlen: 19
195.58.64.0/19 maxlen: 19
212.225.0.0/17 maxlen: 17
212.228.0.0/15 maxlen: 15
212.228.0.0/18 maxlen: 18
212.228.64.0/18 maxlen: 18
212.228.128.0/19 maxlen: 19
212.228.192.0/18 maxlen: 18
212.229.0.0/18 maxlen: 18
212.229.64.0/21 maxlen: 21
212.229.72.0/22 maxlen: 22
212.229.76.0/23 maxlen: 23
212.229.78.0/23 maxlen: 23
212.229.80.0/21 maxlen: 21
212.229.88.0/21 maxlen: 21
212.229.96.0/19 maxlen: 19
212.229.128.0/18 maxlen: 18
212.229.192.0/18 maxlen: 18
212.248.128.0/17 maxlen: 17
2001:958::/32 maxlen: 32
2a0a:ef40::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 05 Mar 2024 14:16:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0e:99:72:7a:e8:9e:59:04:64:6c:b3:03:b0:69:db:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ada225cb7f29416e7534695fbfb21762fee93c8
Validity
Not Before: Mar 5 12:32:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7c31d45233e31065bdfea3913755984d63b9a75b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:30:6d:21:53:05:5b:b5:55:ad:00:22:40:97:
77:85:0b:1c:3c:8b:f3:0c:62:0d:47:b8:0f:3c:85:
d2:d5:ba:4e:ae:58:97:1c:09:60:37:9d:9d:d2:d8:
ec:ce:94:fc:8e:e1:62:4c:74:2a:e1:b9:73:cf:22:
e6:d3:54:b2:8e:d5:45:ce:a4:96:ca:f7:55:10:4d:
a2:35:ec:00:ce:ee:23:64:0a:01:12:6b:58:86:b7:
54:2b:54:b0:a1:c2:76:52:2a:7f:47:45:90:e8:55:
d2:26:a2:be:e9:86:ce:99:c4:2e:ef:ce:16:a4:48:
75:cf:cd:63:f8:17:61:21:7e:28:7f:c7:79:03:5f:
21:7c:6b:37:1d:32:b2:35:cd:d8:48:a7:7a:11:31:
ad:5d:58:3a:c2:cf:ae:5d:87:72:3e:a0:f0:7b:f5:
ca:66:58:11:55:5a:cf:d1:34:dc:fa:1f:0f:2d:f4:
15:e3:95:53:7f:d2:4c:8b:79:01:ba:f7:49:00:62:
bb:27:be:05:40:5f:87:36:9b:2e:cc:83:d0:ec:b3:
5c:86:45:dc:98:91:ae:72:47:c9:50:dc:97:51:4e:
ff:c9:cf:bf:79:a5:e8:5b:d7:f8:12:f6:67:30:6a:
af:be:5a:89:24:95:f9:8c:83:bf:7d:81:0d:ef:4f:
89:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:31:D4:52:33:E3:10:65:BD:FE:A3:91:37:55:98:4D:63:B9:A7:5B
X509v3 Authority Key Identifier:
keyid:1A:DA:22:5C:B7:F2:94:16:E7:53:46:95:FB:FB:21:76:2F:EE:93:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtoiXLfylBbnU0aV-_shdi_uk8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/fDHUUjPjEGW9_qORN1WYTWO5p1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/GtoiXLfylBbnU0aV-_shdi_uk8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.49.0.0/16
62.56.0.0/17
77.233.128.0/19
80.176.0.0/15
83.104.0.0/14
85.255.236.0/23
141.195.192.0/18
193.237.0.0/16
194.222.0.0/16
195.8.160.0/19
195.58.64.0/19
212.225.0.0/17
212.228.0.0/15
212.248.128.0/17
IPv6:
2001:958::/32
2a0a:ef40::/29
Signature Algorithm: sha256WithRSAEncryption
4b:bd:fc:88:6e:87:02:8e:fb:5d:ae:b1:65:72:5b:d0:7b:fd:
ba:35:04:e8:ff:71:d6:fa:f2:46:69:79:18:18:a2:f3:11:f1:
24:fc:bb:66:a7:60:b8:b8:f0:62:96:ac:43:bf:bd:46:ef:1a:
ea:ea:66:78:9c:0e:fb:ea:e8:20:d8:81:48:e8:4f:27:2f:c7:
55:13:c1:78:91:7a:b7:a1:4f:68:3c:8a:86:38:d3:97:d9:dd:
86:45:67:e4:da:ac:7d:b0:25:4c:27:3b:fb:5e:79:ef:e8:db:
fa:27:99:2d:8b:ae:4c:17:73:ab:8c:03:86:1f:58:37:14:c7:
ab:0f:73:98:01:da:df:ed:27:0b:6d:8c:a0:db:7d:d2:22:74:
72:b0:98:cf:e0:e8:8b:8f:37:c0:93:6c:0e:54:12:95:eb:0a:
29:79:c7:5d:2e:cf:67:fc:7a:05:dd:d3:67:01:8f:d4:b8:76:
cc:97:b3:fa:83:5c:1e:e0:b1:5b:1b:e3:ed:4c:f3:f4:28:f9:
07:ab:52:d2:2d:37:03:9b:4f:d3:ef:5e:48:27:5d:42:bd:70:
2b:28:d6:92:12:2b:b7:91:60:c3:79:26:6c:09:0d:05:59:97:
af:8c:79:b8:49:e7:b0:8f:9d:42:5b:f3:66:f4:c6:b7:78:57:
3e:69:23:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:10 2024 by rpki-client on console-ams.rpki-client.org