Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/1-K_1Vcn84DGzM3toTV_ymYTK-xs.roa
File: 1-K_1Vcn84DGzM3toTV_ymYTK-xs.roa (raw, json)
Hash identifier: PydhPfnsgP9u7Uoj82tVqiPolpcl2iXyfw+Kk7fFHvk=
Subject key identifier: F8:AF:F5:55:C9:FC:E0:31:B3:33:7B:68:4D:5F:F2:99:84:CA:FB:1B
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 01919E4A69FB7250034BD6E9799756DB8092
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/1-K_1Vcn84DGzM3toTV_ymYTK-xs.roa
Signing time: Thu 29 Aug 2024 13:19:22 +0000
ROA not before: Thu 29 Aug 2024 13:19:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 5.157.136.0/24 maxlen: 24
5.157.139.0/24 maxlen: 24
5.157.160.0/22 maxlen: 22
37.35.36.0/24 maxlen: 24
37.35.37.0/24 maxlen: 24
37.35.39.0/24 maxlen: 24
62.216.92.0/24 maxlen: 24
62.216.93.0/24 maxlen: 24
91.225.14.0/24 maxlen: 24
91.225.15.0/24 maxlen: 24
91.235.123.0/24 maxlen: 24
146.66.208.0/24 maxlen: 24
146.66.209.0/24 maxlen: 24
146.66.212.0/22 maxlen: 22
146.66.212.0/23 maxlen: 23
146.66.212.0/24 maxlen: 24
146.66.213.0/24 maxlen: 24
146.66.214.0/24 maxlen: 24
146.66.215.0/24 maxlen: 24
146.66.220.0/24 maxlen: 24
146.66.221.0/24 maxlen: 24
146.66.222.0/24 maxlen: 24
146.66.223.0/24 maxlen: 24
178.157.76.0/24 maxlen: 24
178.157.94.0/24 maxlen: 24
178.157.108.0/24 maxlen: 24
178.157.124.0/24 maxlen: 24
178.157.126.0/24 maxlen: 24
185.76.60.0/24 maxlen: 24
185.76.62.0/24 maxlen: 24
188.74.128.0/24 maxlen: 24
188.74.130.0/24 maxlen: 24
188.74.152.0/24 maxlen: 24
188.74.155.0/24 maxlen: 24
188.74.171.0/24 maxlen: 24
188.74.181.0/24 maxlen: 24
188.74.190.0/24 maxlen: 24
188.74.208.0/24 maxlen: 24
188.74.209.0/24 maxlen: 24
188.74.212.0/22 maxlen: 22
188.74.245.0/24 maxlen: 24
188.119.165.0/24 maxlen: 24
188.119.166.0/24 maxlen: 24
188.119.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 23 Oct 2024 10:33:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9e:4a:69:fb:72:50:03:4b:d6:e9:79:97:56:db:80:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Aug 29 13:19:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f8aff555c9fce031b3337b684d5ff29984cafb1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:06:51:e3:67:76:53:e9:d2:fb:a2:8c:39:e4:
94:47:3b:b1:b5:1c:83:62:17:0f:8e:cb:3c:a3:31:
4c:cc:0d:f4:39:3b:5c:9c:0a:8c:11:59:42:ef:b6:
f5:dd:b9:05:fb:95:5d:9f:f4:56:78:12:d0:bc:9a:
84:ac:a1:12:62:13:eb:a0:6a:54:b8:37:e1:3c:c5:
4d:20:cf:a1:c0:09:d8:f2:5c:50:07:63:ed:f1:9d:
3c:5c:bb:60:40:c3:cb:51:57:af:54:ec:ba:ef:5d:
0f:eb:a3:ab:6f:6a:12:50:dc:e9:6d:60:7b:8d:f2:
19:5d:8b:56:b4:18:f4:9d:02:3a:fb:78:f1:1f:02:
47:f4:e5:29:33:53:c8:44:5b:e0:ed:93:3a:58:23:
a3:34:dc:63:20:de:cb:82:7d:99:b8:ea:6f:7f:02:
51:6f:54:2a:5a:96:30:2d:54:d8:ec:94:fb:77:8b:
d2:57:4e:8f:f8:b0:56:63:15:e0:d3:da:ee:fe:a8:
82:5b:00:2d:fe:6b:4d:de:8a:d7:0c:30:0c:5d:16:
f8:a3:26:f3:a1:20:b7:28:a0:6a:6e:7e:ea:30:bd:
25:5e:ec:22:76:34:66:b6:ab:be:f3:4f:df:eb:e7:
ca:39:9d:f4:08:95:4d:44:d3:52:74:2e:49:c1:2b:
02:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:AF:F5:55:C9:FC:E0:31:B3:33:7B:68:4D:5F:F2:99:84:CA:FB:1B
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/1-K_1Vcn84DGzM3toTV_ymYTK-xs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.136.0/24
5.157.139.0/24
5.157.160.0/22
37.35.36.0/23
37.35.39.0/24
62.216.92.0/23
91.225.14.0/23
91.235.123.0/24
146.66.208.0/23
146.66.212.0/22
146.66.220.0/22
178.157.76.0/24
178.157.94.0/24
178.157.108.0/24
178.157.124.0/24
178.157.126.0/24
185.76.60.0/24
185.76.62.0/24
188.74.128.0/24
188.74.130.0/24
188.74.152.0/24
188.74.155.0/24
188.74.171.0/24
188.74.181.0/24
188.74.190.0/24
188.74.208.0/23
188.74.212.0/22
188.74.245.0/24
188.119.165.0-188.119.166.255
188.119.181.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:cc:1f:cd:71:4f:29:f4:fc:25:8c:e5:12:44:fc:48:4b:db:
29:ca:21:16:f0:17:ad:f3:ff:a5:a8:14:bd:62:cc:8a:93:44:
44:ad:cd:93:6a:2a:7e:ac:ea:5c:ec:40:e9:5b:95:96:9c:85:
4e:f1:12:0a:09:0c:92:49:8c:a7:6c:f2:07:be:63:d4:b9:78:
b4:0a:fd:32:32:11:2e:9a:5a:87:a4:21:d3:b6:3d:50:93:36:
52:6d:52:71:18:80:60:a2:d1:0a:d5:e9:01:ca:ce:c7:47:49:
df:37:cb:39:57:1c:6d:77:46:ea:e9:94:53:d6:a0:2a:54:29:
9e:21:0c:3e:19:a6:5f:bb:64:64:b7:c6:a5:8b:38:1b:40:62:
16:15:4c:67:b3:91:63:c7:90:a1:d4:c2:36:1d:98:3c:9f:e4:
b4:95:51:fa:6d:a0:10:bf:f8:fd:0e:f0:f0:7e:24:ea:d3:3b:
42:fd:d7:dd:2d:d6:b6:20:55:63:d1:a7:76:34:d0:81:f9:18:
58:e9:7e:ac:9e:aa:c5:82:6a:51:48:14:37:6b:01:a0:45:d0:
2c:30:09:21:40:07:f9:5c:b3:3a:90:b6:2e:71:b3:bc:84:fa:
ce:2a:05:ee:cb:7f:16:8a:ba:2d:43:87:c7:d1:7e:97:99:04:
f4:42:12:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 13:19:16 2024 by rpki-client on console-ams.rpki-client.org