Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/woUuzAgVx55UDjV3XGRoiU4_Oug.roa
File: woUuzAgVx55UDjV3XGRoiU4_Oug.roa (raw, json)
Hash identifier: SirGiI1P2fGxAsXdCmeOSwrOpLW6XS9SQXGgS7uAz58=
Subject key identifier: C2:85:2E:CC:08:15:C7:9E:54:0E:35:77:5C:64:68:89:4E:3F:3A:E8
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 0190C6148F83FC5E6BAC6D29C69650BCAE6A
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/woUuzAgVx55UDjV3XGRoiU4_Oug.roa
Signing time: Thu 18 Jul 2024 13:42:34 +0000
ROA not before: Thu 18 Jul 2024 13:42:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9009
IP address blocks: 5.157.132.0/22 maxlen: 22
5.157.152.0/21 maxlen: 21
5.157.168.0/22 maxlen: 24
5.157.172.0/22 maxlen: 24
5.157.192.0/22 maxlen: 22
5.157.196.0/22 maxlen: 22
5.157.200.0/21 maxlen: 21
5.157.208.0/21 maxlen: 21
5.157.216.0/22 maxlen: 24
5.157.220.0/22 maxlen: 24
5.157.228.0/22 maxlen: 22
5.157.232.0/21 maxlen: 21
5.157.248.0/21 maxlen: 21
37.35.48.0/22 maxlen: 22
37.35.52.0/24 maxlen: 24
62.216.72.0/22 maxlen: 22
62.216.72.0/24 maxlen: 24
62.216.73.0/24 maxlen: 24
62.216.74.0/24 maxlen: 24
62.216.75.0/24 maxlen: 24
62.216.80.0/22 maxlen: 22
62.216.80.0/24 maxlen: 24
62.216.81.0/24 maxlen: 24
62.216.82.0/24 maxlen: 24
62.216.83.0/24 maxlen: 24
62.216.92.0/24 maxlen: 24
62.216.93.0/24 maxlen: 24
62.216.94.0/24 maxlen: 24
62.216.95.0/24 maxlen: 24
178.157.68.0/22 maxlen: 22
178.157.94.0/24 maxlen: 24
178.157.100.0/24 maxlen: 24
178.157.101.0/24 maxlen: 24
178.157.112.0/21 maxlen: 21
178.157.120.0/22 maxlen: 22
188.74.144.0/22 maxlen: 22
188.74.148.0/22 maxlen: 22
188.74.160.0/21 maxlen: 21
188.74.180.0/24 maxlen: 24
188.74.184.0/22 maxlen: 22
188.74.192.0/21 maxlen: 21
188.74.200.0/21 maxlen: 21
188.74.216.0/21 maxlen: 21
188.74.224.0/21 maxlen: 21
188.74.232.0/21 maxlen: 21
188.74.248.0/21 maxlen: 21
188.119.128.0/20 maxlen: 24
188.119.168.0/21 maxlen: 21
188.119.184.0/22 maxlen: 22
188.119.188.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Sep 2024 14:19:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c6:14:8f:83:fc:5e:6b:ac:6d:29:c6:96:50:bc:ae:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Jul 18 13:42:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c2852ecc0815c79e540e35775c6468894e3f3ae8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:39:cf:ba:ac:31:9a:71:34:6c:c2:37:99:66:
d4:cb:30:a1:5d:84:16:31:56:87:6e:0c:c5:c1:d2:
e6:7c:be:c4:6f:ce:dc:ee:b1:e5:4c:f8:7d:15:8b:
38:44:66:41:f2:42:63:86:95:30:7d:55:ae:d0:15:
0d:eb:dc:ee:53:30:9e:a2:c6:bf:8c:f3:6d:50:b4:
ac:3c:06:5c:45:c8:ba:d1:63:e7:31:b1:78:58:1a:
7c:53:c2:0f:23:2e:ba:68:a0:c0:59:a1:38:06:56:
c1:b0:0d:75:d2:00:3a:95:ae:04:0b:79:ab:31:bf:
2c:60:7c:22:a7:ff:29:20:a4:9a:8d:7e:ed:99:1b:
e8:12:83:01:ea:ef:d5:a5:f3:81:08:a0:e0:60:d3:
3c:d7:05:1d:17:4f:ae:32:8a:6b:65:ea:94:d0:8b:
b3:f1:7c:9f:ae:4b:9a:ed:32:25:05:35:30:e5:26:
78:91:1a:07:0a:3f:5c:bf:58:66:f0:c4:d6:7c:1f:
d7:3d:09:cc:6b:1e:cc:6a:13:a2:ec:d8:d4:d8:c3:
b5:04:4e:60:93:31:db:75:cb:dc:aa:40:86:76:eb:
5e:d4:aa:2a:ea:32:94:c2:ef:bf:02:04:4b:67:c5:
46:f8:9f:91:5a:ec:b5:a0:89:40:a6:39:d7:3d:24:
50:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:85:2E:CC:08:15:C7:9E:54:0E:35:77:5C:64:68:89:4E:3F:3A:E8
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/woUuzAgVx55UDjV3XGRoiU4_Oug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.132.0/22
5.157.152.0/21
5.157.168.0/21
5.157.192.0/19
5.157.228.0-5.157.239.255
5.157.248.0/21
37.35.48.0-37.35.52.255
62.216.72.0/22
62.216.80.0/22
62.216.92.0/22
178.157.68.0/22
178.157.94.0/24
178.157.100.0/23
178.157.112.0-178.157.123.255
188.74.144.0/21
188.74.160.0/21
188.74.180.0/24
188.74.184.0/22
188.74.192.0/20
188.74.216.0-188.74.239.255
188.74.248.0/21
188.119.128.0/20
188.119.168.0/21
188.119.184.0/21
Signature Algorithm: sha256WithRSAEncryption
47:bc:af:b1:06:64:0b:e4:d2:71:a8:a0:8f:2e:cc:cd:48:71:
7e:ad:75:e7:da:2c:00:0f:86:ce:1c:00:2d:09:a2:b3:11:8c:
5a:5c:fc:22:34:8a:65:92:d0:0a:a4:7d:5c:86:a7:8e:74:7a:
07:94:68:c8:fd:0c:07:d2:65:76:a7:b3:07:a2:fe:d7:e0:9b:
f6:10:98:45:0a:73:7b:04:bf:a6:04:cf:fd:a3:1d:7c:80:5b:
9d:18:27:7b:81:9f:3d:6b:d8:d4:c3:60:fc:1c:b5:96:61:41:
fa:85:6e:28:9c:55:15:dd:ce:57:63:70:19:32:82:cc:96:b2:
c1:1c:80:ac:b6:e9:13:9b:70:f9:f1:a8:6b:09:85:f3:f8:f6:
38:55:6e:32:e0:3d:8c:40:a8:11:19:2b:62:b3:1d:0a:a0:d3:
23:fe:16:10:9b:bd:7e:62:08:a9:db:89:b5:19:30:02:42:0a:
93:1b:b3:85:c1:78:ad:14:bd:ef:c0:11:f2:37:bf:df:fb:bf:
7c:4b:92:a8:1d:22:51:f3:60:c9:79:eb:06:c9:ee:5d:9d:74:
95:1c:4d:3e:02:88:b6:87:63:a3:89:53:de:a5:a3:8d:ff:e8:
e5:63:69:12:19:fc:9b:5c:e2:22:bc:ce:74:3e:5b:26:cd:5b:
f5:3e:33:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 3 16:46:29 2024 by rpki-client on console-fra.rpki-client.org