Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/JASBgdlYue2rfpC_RJLic5CNXqo.roa
File: JASBgdlYue2rfpC_RJLic5CNXqo.roa (raw, json)
Hash identifier: P8V3vBrptQNZIUcmXIwJjijxuuKaKS0RSQOaF90tQB8=
Subject key identifier: 24:04:81:81:D9:58:B9:ED:AB:7E:90:BF:44:92:E2:73:90:8D:5E:AA
Certificate issuer: /CN=d79785de62dcf9e7930babd7b1d39c5853d1944f
Certificate serial: 0193CEAC0DCF7C88C8CDE05F37EDBE33424C
Authority key identifier: D7:97:85:DE:62:DC:F9:E7:93:0B:AB:D7:B1:D3:9C:58:53:D1:94:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/15eF3mLc-eeTC6vXsdOcWFPRlE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/JASBgdlYue2rfpC_RJLic5CNXqo.roa
Signing time: Mon 16 Dec 2024 08:53:22 +0000
ROA not before: Mon 16 Dec 2024 08:53:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202196
IP address blocks: 5.57.20.0/23 maxlen: 23
5.57.20.0/24 maxlen: 24
5.57.21.0/24 maxlen: 24
37.10.1.0/24 maxlen: 24
37.10.24.0/23 maxlen: 23
37.10.24.0/24 maxlen: 24
37.10.25.0/24 maxlen: 24
37.10.26.0/24 maxlen: 24
37.10.27.0/24 maxlen: 24
37.10.28.0/24 maxlen: 24
37.10.29.0/24 maxlen: 24
37.10.30.0/23 maxlen: 23
37.10.30.0/24 maxlen: 24
37.10.31.0/24 maxlen: 24
37.10.40.0/24 maxlen: 24
37.10.41.0/24 maxlen: 24
37.10.42.0/24 maxlen: 24
37.10.43.0/24 maxlen: 24
37.10.44.0/23 maxlen: 23
37.10.44.0/24 maxlen: 24
37.10.45.0/24 maxlen: 24
37.10.46.0/24 maxlen: 24
91.195.236.0/24 maxlen: 24
2a01:5041::/32 maxlen: 48
2a01:5041::/48 maxlen: 48
2a01:5041:1::/48 maxlen: 48
2a01:5041:2::/48 maxlen: 48
2a01:5041:3::/48 maxlen: 48
2a01:5041:4::/48 maxlen: 48
2a01:5041:6::/48 maxlen: 48
2a01:5041:7::/48 maxlen: 48
2a01:5041:8::/48 maxlen: 48
2a01:5041:b::/48 maxlen: 48
2a01:5041:e::/48 maxlen: 48
2a01:5041:f::/48 maxlen: 48
2a01:5041:efd::/48 maxlen: 48
2a01:5041:efe::/48 maxlen: 48
2a01:5041:eff::/48 maxlen: 48
2a01:5041:1000::/48 maxlen: 48
2a01:5041:1003::/48 maxlen: 48
2a01:5041:1014::/48 maxlen: 48
2a01:5041:2000::/48 maxlen: 48
2a01:5041:2001::/48 maxlen: 48
2a01:5041:2003::/48 maxlen: 48
2a01:5041:2004::/48 maxlen: 48
2a01:5041:2006::/48 maxlen: 48
2a01:5041:2007::/48 maxlen: 48
2a01:5041:2008::/48 maxlen: 48
2a01:5041:200b::/48 maxlen: 48
2a01:5041:200c::/48 maxlen: 48
2a01:5041:200e::/48 maxlen: 48
2a01:5041:200f::/48 maxlen: 48
2a01:5041:2010::/48 maxlen: 48
2a01:5041:2efd::/48 maxlen: 48
2a01:5041:2efe::/48 maxlen: 48
2a01:5041:2eff::/48 maxlen: 48
2a01:5041:3000::/48 maxlen: 48
2a01:5041:3003::/48 maxlen: 48
2a01:5041:3014::/48 maxlen: 48
2a01:5041:4000::/48 maxlen: 48
2a01:5041:4003::/48 maxlen: 48
2a01:5041:4007::/48 maxlen: 48
2a01:5041:400b::/48 maxlen: 48
2a01:5041:400e::/48 maxlen: 48
2a01:5041:4efd::/48 maxlen: 48
2a01:5041:4efe::/48 maxlen: 48
2a01:5041:4eff::/48 maxlen: 48
2a01:5041:5000::/48 maxlen: 48
2a01:5041:5003::/48 maxlen: 48
2a01:5041:500e::/48 maxlen: 48
2a01:5041:6000::/48 maxlen: 48
2a01:5041:6003::/48 maxlen: 48
2a01:5041:6004::/48 maxlen: 48
2a01:5041:6006::/48 maxlen: 48
2a01:5041:6008::/48 maxlen: 48
2a01:5041:600e::/48 maxlen: 48
2a01:5041:7001::/48 maxlen: 48
2a01:5041:ea09::/48 maxlen: 48
2a01:5041:ea14::/48 maxlen: 48
2a01:5041:ea15::/48 maxlen: 48
2a01:5041:ea16::/48 maxlen: 48
2a01:5041:ea20::/48 maxlen: 48
2a01:5042:1::/48 maxlen: 48
2a01:5042:3::/48 maxlen: 48
2a01:5042:7::/48 maxlen: 48
2a01:5042:b::/48 maxlen: 48
2a01:5042:e::/48 maxlen: 48
2a01:5042:efd::/48 maxlen: 48
2a01:5042:eff::/48 maxlen: 48
2a01:5042:2001::/48 maxlen: 48
2a01:5042:2003::/48 maxlen: 48
2a01:5042:2007::/48 maxlen: 48
2a01:5042:200b::/48 maxlen: 48
2a01:5042:200e::/48 maxlen: 48
2a01:5042:2efd::/48 maxlen: 48
2a01:5042:2eff::/48 maxlen: 48
2a01:5043::/48 maxlen: 48
2a01:5043:3::/48 maxlen: 48
2a01:5043:7::/48 maxlen: 48
2a01:5043:b::/48 maxlen: 48
2a01:5043:e::/48 maxlen: 48
2a01:5043:efd::/48 maxlen: 48
2a01:5043:eff::/48 maxlen: 48
2a01:5043:2000::/48 maxlen: 48
2a01:5043:2003::/48 maxlen: 48
2a01:5043:2007::/48 maxlen: 48
2a01:5043:2efd::/48 maxlen: 48
2a01:5043:2eff::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 16 Dec 2024 10:37:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ce:ac:0d:cf:7c:88:c8:cd:e0:5f:37:ed:be:33:42:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d79785de62dcf9e7930babd7b1d39c5853d1944f
Validity
Not Before: Dec 16 08:53:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=24048181d958b9edab7e90bf4492e273908d5eaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:37:e3:a0:18:f4:dd:a4:44:96:52:6f:51:cc:
62:70:c7:98:7c:8d:2c:28:20:ea:ac:cf:a8:29:ee:
f6:cf:ee:06:e0:b4:a2:30:7d:e5:ea:13:fc:d4:aa:
40:fe:e4:d0:c3:e1:8c:04:b7:6c:85:fc:e5:43:ef:
dd:1f:25:eb:69:43:bb:63:29:ee:a5:7a:6f:11:d9:
0d:e9:04:ec:c8:2e:9d:a2:a2:eb:df:4e:09:4d:9f:
63:b5:46:27:c2:80:6d:aa:7c:19:50:e5:fe:72:b9:
b4:32:f7:b9:a6:a1:59:16:58:0d:58:36:22:9b:55:
9c:27:4c:8a:b0:41:1a:f4:69:e0:b7:15:b4:73:7b:
af:6a:a0:49:2c:45:d7:8e:4b:bf:27:0e:1e:e4:1e:
6d:f2:00:07:5f:2a:fc:da:fc:0a:83:04:ac:88:b6:
37:41:d6:65:ea:fa:70:ba:db:5c:e9:7b:76:74:fc:
77:90:43:e3:21:07:37:ee:78:bf:78:2a:d5:06:ff:
b6:ab:e6:8c:79:68:a0:84:92:5f:4b:a0:ea:d2:7b:
42:94:28:72:9e:f9:fb:64:80:f7:cc:f2:d2:98:39:
c7:4c:b0:7b:17:25:32:31:35:c2:be:36:9f:e7:f8:
0d:a4:58:6d:0c:fd:9a:93:8c:7a:1d:73:16:94:15:
d8:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:04:81:81:D9:58:B9:ED:AB:7E:90:BF:44:92:E2:73:90:8D:5E:AA
X509v3 Authority Key Identifier:
keyid:D7:97:85:DE:62:DC:F9:E7:93:0B:AB:D7:B1:D3:9C:58:53:D1:94:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/15eF3mLc-eeTC6vXsdOcWFPRlE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/JASBgdlYue2rfpC_RJLic5CNXqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/7f9728-9559-4263-bcfa-75855db7151f/1/15eF3mLc-eeTC6vXsdOcWFPRlE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.20.0/23
37.10.1.0/24
37.10.24.0/21
37.10.40.0-37.10.46.255
91.195.236.0/24
IPv6:
2a01:5041::/32
2a01:5042:1::/48
2a01:5042:3::/48
2a01:5042:7::/48
2a01:5042:b::/48
2a01:5042:e::/48
2a01:5042:efd::/48
2a01:5042:eff::/48
2a01:5042:2001::/48
2a01:5042:2003::/48
2a01:5042:2007::/48
2a01:5042:200b::/48
2a01:5042:200e::/48
2a01:5042:2efd::/48
2a01:5042:2eff::/48
2a01:5043::/48
2a01:5043:3::/48
2a01:5043:7::/48
2a01:5043:b::/48
2a01:5043:e::/48
2a01:5043:efd::/48
2a01:5043:eff::/48
2a01:5043:2000::/48
2a01:5043:2003::/48
2a01:5043:2007::/48
2a01:5043:2efd::/48
2a01:5043:2eff::/48
Signature Algorithm: sha256WithRSAEncryption
0c:25:c9:95:d7:fc:2e:fa:67:8b:67:9b:50:ec:91:73:11:f3:
85:51:aa:20:e0:29:3f:41:6e:00:52:bd:ae:d9:d5:be:37:53:
1d:25:b8:03:e6:de:f0:93:d3:5b:38:d1:8c:53:27:77:10:b8:
cf:bd:a3:71:26:b8:9f:2e:d7:92:bc:dc:d5:13:ec:d0:6e:c8:
7c:63:44:f1:b8:72:40:e0:16:42:b8:b4:88:9a:62:5d:14:87:
27:74:14:60:e7:29:ae:7e:99:14:3e:3c:22:9b:49:16:f1:12:
0f:62:39:92:fa:87:f7:36:53:06:fb:f3:fe:56:d1:fb:4c:d3:
be:ab:40:86:d9:cd:b8:32:11:26:5b:84:22:f6:76:b6:ef:df:
a2:be:8d:84:14:6d:f3:bb:27:cf:fd:34:5b:85:66:0b:fb:5f:
7f:10:9f:bd:7d:dd:c8:8c:1d:44:72:03:06:1a:60:1d:c2:f2:
5b:e1:70:c5:3e:c6:45:9e:2c:6a:a7:26:6c:15:ed:d2:82:81:
ea:1d:58:11:51:a6:13:96:6e:a6:e4:e1:26:c2:5d:34:62:73:
e4:77:ab:8e:08:d6:72:dc:86:bd:82:7b:3f:c3:65:78:91:ba:
97:04:35:e0:09:b5:54:7e:28:dd:c2:a5:7f:26:71:54:77:7d:
a1:fc:9c:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 04:37:05 2025 by rpki-client