Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/68554b-4f97-406c-90a6-48d31c75f31e/1/kuKPWPu_ajZ0sYAvlbMUx_-jLuM.roa
File: kuKPWPu_ajZ0sYAvlbMUx_-jLuM.roa (raw, json)
Hash identifier: jVbXTC6Dt3/pyiZjcWHKkIjoscf5dHhm+2TZZS2tQrM=
Subject key identifier: 92:E2:8F:58:FB:BF:6A:36:74:B1:80:2F:95:B3:14:C7:FF:A3:2E:E3
Certificate issuer: /CN=d41703db3020cc1ef2fd71091a468f4a649c238f
Certificate serial: 01903090313A628B4546EB0AAC52FD39556C
Authority key identifier: D4:17:03:DB:30:20:CC:1E:F2:FD:71:09:1A:46:8F:4A:64:9C:23:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1BcD2zAgzB7y_XEJGkaPSmScI48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/68554b-4f97-406c-90a6-48d31c75f31e/1/kuKPWPu_ajZ0sYAvlbMUx_-jLuM.roa
Signing time: Wed 19 Jun 2024 12:54:34 +0000
ROA not before: Wed 19 Jun 2024 12:54:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49544
IP address blocks: 5.180.216.0/23 maxlen: 23
5.180.218.0/23 maxlen: 23
5.200.0.0/19 maxlen: 24
31.204.128.0/19 maxlen: 24
31.204.132.0/22 maxlen: 22
31.204.136.0/23 maxlen: 23
89.104.168.0/23 maxlen: 23
89.104.170.0/23 maxlen: 23
91.195.234.0/23 maxlen: 23
91.198.152.0/24 maxlen: 24
91.216.207.0/24 maxlen: 24
104.153.84.0/22 maxlen: 22
109.200.192.0/19 maxlen: 24
109.200.194.0/23 maxlen: 23
109.200.208.0/22 maxlen: 22
138.128.136.0/22 maxlen: 22
138.128.140.0/22 maxlen: 22
146.247.76.0/22 maxlen: 22
162.244.52.0/22 maxlen: 23
162.245.204.0/22 maxlen: 22
185.41.140.0/22 maxlen: 22
185.50.104.0/22 maxlen: 22
185.52.12.0/22 maxlen: 24
185.179.200.0/23 maxlen: 24
185.179.202.0/23 maxlen: 24
185.197.24.0/22 maxlen: 23
188.122.64.0/19 maxlen: 24
193.43.218.0/23 maxlen: 23
212.19.224.0/22 maxlen: 22
213.163.64.0/19 maxlen: 24
213.179.192.0/19 maxlen: 19
213.179.192.0/22 maxlen: 22
213.179.196.0/22 maxlen: 22
213.179.200.0/22 maxlen: 22
213.179.204.0/22 maxlen: 22
213.179.209.0/24 maxlen: 24
213.179.210.0/23 maxlen: 23
213.179.212.0/22 maxlen: 22
213.179.216.0/22 maxlen: 22
213.179.220.0/22 maxlen: 22
213.179.220.0/23 maxlen: 23
2a00:1630::/29 maxlen: 32
2a00:1630::/32 maxlen: 48
2a00:1631::/32 maxlen: 32
2a00:1632::/32 maxlen: 32
2a00:1637::/32 maxlen: 32
2a00:1d20::/29 maxlen: 32
2a00:1d20::/34 maxlen: 34
2a00:1d26::/32 maxlen: 34
2a01:9580::/32 maxlen: 34
2a01:9580:c000::/34 maxlen: 34
2a04:c600::/29 maxlen: 34
Validation: Failed, certificate revoked on Thu 20 Jun 2024 13:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:30:90:31:3a:62:8b:45:46:eb:0a:ac:52:fd:39:55:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d41703db3020cc1ef2fd71091a468f4a649c238f
Validity
Not Before: Jun 19 12:54:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=92e28f58fbbf6a3674b1802f95b314c7ffa32ee3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:50:04:d8:44:bb:1d:91:c3:1e:84:81:27:5c:
cf:2f:b1:65:d2:57:20:56:70:c4:95:d3:d5:35:ff:
05:00:9e:47:c3:f9:af:80:06:60:b4:fb:24:b0:01:
84:02:f2:f8:25:7d:fc:4c:fb:d6:06:ae:2d:20:bc:
75:b9:f2:90:4a:12:a0:c6:0d:5b:63:22:66:5e:e3:
a3:81:95:6c:09:ed:32:de:64:24:c3:0f:34:c3:d6:
af:cb:3f:2d:01:07:fd:73:cc:5e:35:2c:e9:7b:1e:
84:82:a5:6b:5d:ef:59:e3:7f:3e:50:3a:c8:7b:fd:
1e:c5:61:2b:d0:63:4b:16:96:3c:83:c5:d6:41:6e:
32:d0:b1:f4:90:ce:19:9d:c1:b2:b4:0b:7a:12:30:
2c:0f:b7:51:ef:a8:48:9c:01:4a:a0:69:57:14:69:
1e:7e:12:a8:b7:f7:95:a8:a6:5f:63:e2:2f:e3:6d:
d1:cd:35:bc:3f:d8:08:dd:fe:46:2d:d0:72:91:2a:
f9:51:05:6f:69:79:ee:8c:19:81:7a:dd:4b:e4:9c:
7f:b1:a8:e1:eb:60:dc:00:e4:a4:35:ca:95:1d:56:
cc:0d:90:07:c0:0b:c9:cb:05:52:2d:31:5d:57:b0:
07:25:95:cf:93:9a:f6:8d:5a:be:cc:75:71:fb:46:
a2:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:E2:8F:58:FB:BF:6A:36:74:B1:80:2F:95:B3:14:C7:FF:A3:2E:E3
X509v3 Authority Key Identifier:
keyid:D4:17:03:DB:30:20:CC:1E:F2:FD:71:09:1A:46:8F:4A:64:9C:23:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1BcD2zAgzB7y_XEJGkaPSmScI48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/68554b-4f97-406c-90a6-48d31c75f31e/1/kuKPWPu_ajZ0sYAvlbMUx_-jLuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/68554b-4f97-406c-90a6-48d31c75f31e/1/1BcD2zAgzB7y_XEJGkaPSmScI48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.216.0/22
5.200.0.0/19
31.204.128.0/19
89.104.168.0/22
91.195.234.0/23
91.198.152.0/24
91.216.207.0/24
104.153.84.0/22
109.200.192.0/19
138.128.136.0/21
146.247.76.0/22
162.244.52.0/22
162.245.204.0/22
185.41.140.0/22
185.50.104.0/22
185.52.12.0/22
185.179.200.0/22
185.197.24.0/22
188.122.64.0/19
193.43.218.0/23
212.19.224.0/22
213.163.64.0/19
213.179.192.0/19
IPv6:
2a00:1630::/29
2a00:1d20::/29
2a01:9580::/32
2a04:c600::/29
Signature Algorithm: sha256WithRSAEncryption
57:cf:d7:4b:b1:50:36:b6:2b:1d:95:06:42:fd:f5:12:b1:1b:
e7:1b:29:95:58:3b:8d:ff:ad:44:1a:a0:5d:4e:34:d2:e5:ed:
22:51:46:d9:20:99:8f:c0:68:d0:b2:b5:65:01:33:49:ec:2b:
87:7a:8b:66:47:4e:cf:f8:aa:de:d7:46:3e:fa:e1:f0:1d:91:
c3:a0:8c:d7:d9:bf:52:d4:96:ec:b5:68:a9:fd:53:89:45:ee:
4c:35:83:35:7b:3b:c0:a7:e9:0c:46:b8:be:40:84:6d:dd:2f:
53:db:31:80:c8:1d:30:77:39:20:09:e4:70:2b:ee:b2:92:58:
73:7e:e8:e5:cb:01:02:71:a0:44:46:3c:0d:36:17:e0:9d:ec:
d7:ce:44:81:60:ab:48:a9:6b:9a:17:b9:3e:f7:8e:0d:3c:19:
5f:ff:18:55:45:38:ea:c2:42:7d:81:0f:71:72:7e:8a:5c:4e:
6d:4b:22:22:32:9c:61:b0:0f:98:31:63:25:e2:e1:8a:ab:b7:
98:fb:f9:04:11:79:5e:f2:6d:e2:12:00:e0:e2:83:62:f5:93:
bf:b8:45:f8:46:2b:26:7a:5a:40:0b:d0:cc:11:bd:6e:1e:da:
a6:df:f0:49:57:57:42:bd:74:28:b5:fd:7b:cd:82:5b:a0:94:
89:89:89:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 15:31:37 2025 by rpki-client