Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/ca5e24-6e92-4d3a-9ad5-8935e9079796/1/0I2fzmRfrOS5mhqGykhu9k7h7W0.roa
File: 0I2fzmRfrOS5mhqGykhu9k7h7W0.roa (raw, json)
Hash identifier: Z3F0AsZnZxxdz14YKDQOdtHyUIxHd+5rAMgbU88sqk0=
Subject key identifier: D0:8D:9F:CE:64:5F:AC:E4:B9:9A:1A:86:CA:48:6E:F6:4E:E1:ED:6D
Certificate issuer: /CN=8ada4bf5f190f3998b80c6149a1463270fbbee15
Certificate serial: 01919D291C6E40550CE43444B4F7F8174BC8
Authority key identifier: 8A:DA:4B:F5:F1:90:F3:99:8B:80:C6:14:9A:14:63:27:0F:BB:EE:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/itpL9fGQ85mLgMYUmhRjJw-77hU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/ca5e24-6e92-4d3a-9ad5-8935e9079796/1/0I2fzmRfrOS5mhqGykhu9k7h7W0.roa
Signing time: Thu 29 Aug 2024 08:03:22 +0000
ROA not before: Thu 29 Aug 2024 08:03:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50463
IP address blocks: 5.22.128.0/21 maxlen: 21
5.22.130.0/23 maxlen: 23
5.22.132.0/24 maxlen: 24
5.22.134.0/24 maxlen: 24
5.144.48.0/20 maxlen: 20
5.144.48.0/24 maxlen: 24
5.144.55.0/24 maxlen: 24
5.144.57.0/24 maxlen: 24
5.144.61.0/24 maxlen: 24
37.19.112.0/20 maxlen: 20
37.19.112.0/24 maxlen: 24
37.19.113.0/24 maxlen: 24
37.19.114.0/24 maxlen: 24
37.19.115.0/24 maxlen: 24
37.19.116.0/24 maxlen: 24
37.19.125.0/24 maxlen: 24
109.226.0.0/18 maxlen: 18
109.226.0.0/24 maxlen: 24
109.226.2.0/24 maxlen: 24
109.226.3.0/24 maxlen: 24
109.226.4.0/24 maxlen: 24
109.226.5.0/24 maxlen: 24
109.226.6.0/24 maxlen: 24
109.226.7.0/24 maxlen: 24
109.226.13.0/24 maxlen: 24
109.226.14.0/24 maxlen: 24
109.226.15.0/24 maxlen: 24
109.226.16.0/22 maxlen: 22
109.226.17.0/24 maxlen: 24
109.226.21.0/24 maxlen: 24
109.226.22.0/24 maxlen: 24
109.226.23.0/24 maxlen: 24
109.226.24.0/24 maxlen: 24
109.226.25.0/24 maxlen: 24
109.226.26.0/24 maxlen: 24
109.226.28.0/24 maxlen: 24
109.226.29.0/24 maxlen: 24
109.226.31.0/24 maxlen: 24
109.226.32.0/24 maxlen: 24
109.226.33.0/24 maxlen: 24
109.226.34.0/24 maxlen: 24
109.226.35.0/24 maxlen: 24
109.226.36.0/24 maxlen: 24
109.226.37.0/24 maxlen: 24
109.226.38.0/24 maxlen: 24
109.226.44.0/24 maxlen: 24
109.226.45.0/24 maxlen: 24
109.226.47.0/24 maxlen: 24
109.226.48.0/24 maxlen: 24
109.226.49.0/24 maxlen: 24
109.226.50.0/24 maxlen: 24
109.226.51.0/24 maxlen: 24
109.226.52.0/24 maxlen: 24
109.226.53.0/24 maxlen: 24
109.226.55.0/24 maxlen: 24
109.226.56.0/24 maxlen: 24
109.226.57.0/24 maxlen: 24
109.226.59.0/24 maxlen: 24
109.226.60.0/24 maxlen: 24
109.226.61.0/24 maxlen: 24
141.226.192.0/19 maxlen: 19
141.226.192.0/24 maxlen: 24
141.226.193.0/24 maxlen: 24
141.226.194.0/24 maxlen: 24
141.226.195.0/24 maxlen: 24
141.226.196.0/24 maxlen: 24
141.226.198.0/24 maxlen: 24
141.226.203.0/24 maxlen: 24
141.226.204.0/24 maxlen: 24
141.226.205.0/24 maxlen: 24
141.226.206.0/24 maxlen: 24
141.226.212.0/24 maxlen: 24
141.226.223.0/24 maxlen: 24
185.3.144.0/22 maxlen: 22
185.3.145.0/24 maxlen: 24
185.3.146.0/24 maxlen: 24
2a00:c280::/29 maxlen: 29
2a00:c280:100::/48 maxlen: 48
2a00:c281:1::/48 maxlen: 48
2a00:c281:2::/48 maxlen: 48
2a00:c281:3::/48 maxlen: 48
2a00:c281:4::/48 maxlen: 48
2a00:c281:a::/48 maxlen: 48
2a00:c281:b::/48 maxlen: 48
2a00:c281:c::/48 maxlen: 48
2a00:c281:d::/48 maxlen: 48
2a00:c281:100::/40 maxlen: 40
2a00:c281:200::/40 maxlen: 40
2a00:c281:300::/40 maxlen: 40
2a00:c281:400::/40 maxlen: 40
2a00:c281:a00::/40 maxlen: 40
2a00:c281:b00::/40 maxlen: 40
2a00:c281:c00::/40 maxlen: 40
2a00:c281:d00::/40 maxlen: 40
2a00:c281:1001::/48 maxlen: 48
2a00:c281:1002::/48 maxlen: 48
2a00:c281:1003::/48 maxlen: 48
2a00:c281:1004::/48 maxlen: 48
2a00:c281:100a::/48 maxlen: 48
2a00:c281:100b::/48 maxlen: 48
2a00:c281:100c::/48 maxlen: 48
2a00:c281:100d::/48 maxlen: 48
2a00:c281:1011::/48 maxlen: 48
2a00:c281:1012::/48 maxlen: 48
2a00:c281:1013::/48 maxlen: 48
2a00:c281:1014::/48 maxlen: 48
2a00:c281:101a::/48 maxlen: 48
2a00:c281:101b::/48 maxlen: 48
2a00:c281:101c::/48 maxlen: 48
2a00:c281:101d::/48 maxlen: 48
2a00:c281:1100::/40 maxlen: 40
2a00:c281:1200::/40 maxlen: 40
2a00:c281:1300::/40 maxlen: 40
2a00:c281:1400::/40 maxlen: 40
2a00:c281:1500::/40 maxlen: 40
2a00:c281:1600::/40 maxlen: 40
2a00:c281:1700::/40 maxlen: 40
2a00:c281:1800::/40 maxlen: 40
2a00:c281:1a00::/40 maxlen: 40
2a00:c281:1b00::/40 maxlen: 40
2a00:c281:1c00::/40 maxlen: 40
2a00:c281:1d00::/40 maxlen: 40
2a00:c281:2001::/48 maxlen: 48
2a00:c281:2002::/48 maxlen: 48
2a00:c281:2003::/48 maxlen: 48
2a00:c281:2004::/48 maxlen: 48
2a00:c281:200a::/48 maxlen: 48
2a00:c281:200b::/48 maxlen: 48
2a00:c281:200c::/48 maxlen: 48
2a00:c281:200d::/48 maxlen: 48
2a00:c281:2100::/40 maxlen: 40
2a00:c281:2200::/40 maxlen: 40
2a00:c281:2300::/40 maxlen: 40
2a00:c281:2400::/40 maxlen: 40
2a00:c281:2a00::/40 maxlen: 40
2a00:c281:2b00::/40 maxlen: 40
2a00:c281:2c00::/40 maxlen: 40
2a00:c281:2d00::/40 maxlen: 40
2a00:c281:3001::/48 maxlen: 48
2a00:c281:3002::/48 maxlen: 48
2a00:c281:3003::/48 maxlen: 48
2a00:c281:3004::/48 maxlen: 48
2a00:c281:300a::/48 maxlen: 48
2a00:c281:300b::/48 maxlen: 48
2a00:c281:300c::/48 maxlen: 48
2a00:c281:300d::/48 maxlen: 48
2a00:c281:3100::/40 maxlen: 40
2a00:c281:3200::/40 maxlen: 40
2a00:c281:3300::/40 maxlen: 40
2a00:c281:3400::/40 maxlen: 40
2a00:c281:3a00::/40 maxlen: 40
2a00:c281:3b00::/40 maxlen: 40
2a00:c281:3c00::/40 maxlen: 40
2a00:c281:3d00::/40 maxlen: 40
2a00:c281:4000::/48 maxlen: 48
2a00:c281:4001::/48 maxlen: 48
2a00:c281:4100::/40 maxlen: 40
2a00:c281:4200::/40 maxlen: 40
2a00:c281:4300::/40 maxlen: 40
2a00:c281:4400::/40 maxlen: 40
Validation: Failed, certificate revoked on Tue 17 Sep 2024 09:16:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9d:29:1c:6e:40:55:0c:e4:34:44:b4:f7:f8:17:4b:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ada4bf5f190f3998b80c6149a1463270fbbee15
Validity
Not Before: Aug 29 08:03:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d08d9fce645face4b99a1a86ca486ef64ee1ed6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:8b:d2:af:1c:89:a4:40:79:15:64:ff:f8:59:
14:99:59:cd:ba:c9:d8:e8:0a:f8:7d:52:3f:6c:72:
6a:3a:50:f6:1c:e2:bb:4e:29:ce:8b:ff:92:45:99:
37:52:05:03:e8:a6:8f:c0:56:c7:29:3e:24:3f:28:
31:2e:00:1d:af:28:58:b1:b1:17:d7:c5:8e:5e:55:
5e:fa:29:a6:fd:e2:4e:5e:8f:c5:ce:8c:27:f3:55:
f2:9b:d5:4b:66:38:78:5a:b7:97:e7:98:38:3b:88:
f9:f5:a6:89:c4:33:b6:da:a7:71:a0:05:c0:8e:62:
f6:57:09:84:87:34:98:9d:83:98:77:42:d3:90:c7:
27:08:3d:aa:b2:d1:cf:ec:16:28:0a:7c:59:b2:39:
e5:55:68:0b:34:f7:aa:14:5e:67:50:21:9c:4e:30:
05:32:f8:00:29:45:89:54:12:5b:e4:09:d1:4d:c0:
97:14:8c:74:13:ca:fd:6f:2c:34:78:a6:c2:e2:f7:
d0:3f:5a:b8:a5:42:44:bb:35:b5:6c:87:11:76:bf:
16:b2:5f:43:7b:2f:5d:61:0b:c1:5b:e1:71:df:ec:
26:8a:28:22:b1:dd:65:c5:70:fc:2a:2b:dd:e0:b8:
f2:ad:99:10:19:87:96:ef:14:e1:38:f3:0a:f6:1f:
ca:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:8D:9F:CE:64:5F:AC:E4:B9:9A:1A:86:CA:48:6E:F6:4E:E1:ED:6D
X509v3 Authority Key Identifier:
keyid:8A:DA:4B:F5:F1:90:F3:99:8B:80:C6:14:9A:14:63:27:0F:BB:EE:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/itpL9fGQ85mLgMYUmhRjJw-77hU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/ca5e24-6e92-4d3a-9ad5-8935e9079796/1/0I2fzmRfrOS5mhqGykhu9k7h7W0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/ca5e24-6e92-4d3a-9ad5-8935e9079796/1/itpL9fGQ85mLgMYUmhRjJw-77hU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.22.128.0/21
5.144.48.0/20
37.19.112.0/20
109.226.0.0/18
141.226.192.0/19
185.3.144.0/22
IPv6:
2a00:c280::/29
Signature Algorithm: sha256WithRSAEncryption
28:98:0b:33:d9:72:0f:6c:59:41:47:70:c9:29:3d:e6:09:9c:
39:95:ac:a0:6b:36:5e:4a:78:5a:25:4a:17:6a:b5:c4:50:dc:
7f:fb:19:81:4f:5e:24:1d:dd:5f:98:52:db:7c:b3:e2:ac:86:
62:6f:1b:23:12:6c:85:3d:01:53:c7:a5:7a:07:b7:ea:6d:27:
80:46:e1:46:3c:f9:e7:ca:86:ee:e3:9a:2f:f8:c6:d3:f8:3e:
57:8a:7e:12:2a:55:3b:bc:14:b5:60:c6:fb:f3:0a:80:e4:8e:
df:27:50:6b:dc:91:6a:08:b3:4e:82:71:dc:cd:ba:2b:ca:95:
91:3e:92:46:dd:ae:ec:15:18:df:fd:d8:ea:b1:98:4e:9a:8a:
40:cb:e8:6b:51:02:b1:82:37:bc:9e:ab:35:7d:c4:e8:5c:89:
6a:e4:ab:cf:fa:bf:8a:c2:ba:8a:0a:4a:a2:db:d3:d1:12:40:
86:36:b0:d1:83:18:57:5e:3c:da:f0:a5:f3:db:1c:1c:66:68:
7a:18:dd:52:a3:14:6b:68:1c:ac:36:79:8e:50:c6:e6:c4:6d:
2d:76:cc:29:9e:2b:ff:18:8e:cc:ce:82:39:c4:f4:4c:42:f6:
e5:e1:9d:28:ce:e6:b9:d9:ec:d2:0e:71:a0:73:cd:4c:92:c2:
30:36:91:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 17 10:55:44 2024 by rpki-client on console-ams.rpki-client.org