Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/LeQ8uq_L9YJ_hXgESgwKL6CyOsg.roa
File: LeQ8uq_L9YJ_hXgESgwKL6CyOsg.roa (raw, json)
Hash identifier: upyg3gSMHIWZZKcwkbTHdj/gMr+9r97ozybo2OxTXww=
Subject key identifier: 2D:E4:3C:BA:AF:CB:F5:82:7F:85:78:04:4A:0C:0A:2F:A0:B2:3A:C8
Certificate issuer: /CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Certificate serial: 018837BCDF0C2484FFD29D380FD2F2503234
Authority key identifier: 5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/LeQ8uq_L9YJ_hXgESgwKL6CyOsg.roa
Signing time: Sat 20 May 2023 05:58:24 +0000
ROA not before: Sat 20 May 2023 05:58:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43754
IP address blocks: 46.245.64.0/18 maxlen: 32
46.245.68.0/22 maxlen: 32
46.245.72.0/22 maxlen: 32
46.245.76.0/22 maxlen: 32
46.245.80.0/22 maxlen: 32
46.245.84.0/22 maxlen: 32
185.147.160.0/24 maxlen: 32
185.147.161.0/24 maxlen: 32
185.147.162.0/24 maxlen: 32
185.147.163.0/24 maxlen: 32
46.245.88.0/22 maxlen: 32
46.245.92.0/22 maxlen: 32
46.245.96.0/22 maxlen: 32
46.245.100.0/22 maxlen: 32
46.245.104.0/22 maxlen: 32
46.245.108.0/22 maxlen: 32
46.245.112.0/22 maxlen: 32
46.245.116.0/22 maxlen: 32
77.238.104.0/21 maxlen: 32
77.238.104.0/22 maxlen: 32
77.238.110.0/24 maxlen: 24
77.238.111.0/24 maxlen: 24
77.238.108.0/24 maxlen: 24
77.238.109.0/24 maxlen: 24
77.238.120.0/22 maxlen: 32
46.245.64.0/22 maxlen: 32
46.245.120.0/22 maxlen: 32
46.245.124.0/22 maxlen: 32
89.235.96.0/22 maxlen: 32
185.120.220.0/22 maxlen: 32
185.120.248.0/22 maxlen: 32
31.25.128.0/21 maxlen: 32
176.65.240.0/22 maxlen: 32
176.65.252.0/23 maxlen: 32
176.65.254.0/23 maxlen: 32
176.65.255.0/24 maxlen: 32
128.65.176.0/20 maxlen: 32
79.127.0.0/17 maxlen: 32
185.99.212.0/22 maxlen: 32
185.109.244.0/22 maxlen: 32
185.49.84.0/22 maxlen: 32
185.109.248.0/22 maxlen: 32
178.22.120.0/21 maxlen: 32
37.156.8.0/22 maxlen: 32
37.156.8.0/21 maxlen: 32
37.156.15.0/24 maxlen: 24
37.156.13.0/24 maxlen: 24
37.156.14.0/24 maxlen: 24
37.156.12.0/24 maxlen: 24
188.0.240.0/23 maxlen: 32
185.112.32.0/21 maxlen: 32
185.112.32.0/22 maxlen: 32
185.112.36.0/22 maxlen: 32
93.115.144.0/21 maxlen: 32
46.143.0.0/17 maxlen: 32
109.122.224.0/20 maxlen: 32
37.156.144.0/22 maxlen: 32
178.216.251.0/24 maxlen: 32
178.216.248.0/24 maxlen: 32
178.216.248.0/22 maxlen: 32
178.216.249.0/24 maxlen: 32
178.216.250.0/24 maxlen: 32
185.129.116.0/22 maxlen: 32
185.129.116.0/23 maxlen: 32
185.129.118.0/23 maxlen: 32
185.141.212.0/24 maxlen: 32
185.141.213.0/24 maxlen: 32
185.141.214.0/24 maxlen: 32
185.141.215.0/24 maxlen: 32
5.134.192.0/21 maxlen: 32
212.33.192.0/22 maxlen: 32
212.33.196.0/22 maxlen: 32
212.33.204.0/22 maxlen: 32
212.33.200.0/22 maxlen: 32
185.141.168.0/24 maxlen: 32
185.141.169.0/24 maxlen: 32
185.141.170.0/24 maxlen: 32
185.141.171.0/24 maxlen: 32
185.98.112.0/22 maxlen: 32
89.41.40.0/22 maxlen: 32
93.118.180.0/24 maxlen: 24
93.118.180.0/22 maxlen: 32
31.7.64.0/20 maxlen: 32
31.7.64.0/21 maxlen: 32
31.7.72.0/21 maxlen: 32
2a06:5484::/30 maxlen: 128
2a05:1a00::/26 maxlen: 128
Validation: Failed, certificate revoked on Wed 07 Jun 2023 08:04:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:37:bc:df:0c:24:84:ff:d2:9d:38:0f:d2:f2:50:32:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Validity
Not Before: May 20 05:58:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2de43cbaafcbf5827f8578044a0c0a2fa0b23ac8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:cb:b5:f3:b8:7a:fd:d4:ef:b6:2e:1d:dd:4d:
63:b5:aa:15:c5:08:02:70:87:7a:46:36:f2:ac:cc:
90:29:20:20:3f:2b:61:29:8f:0b:c3:83:40:92:1a:
29:0d:62:26:36:10:d9:1f:b3:12:b9:4a:36:36:bd:
62:92:e3:bb:d5:87:ff:c9:2e:20:c8:54:ce:90:c9:
9b:e8:83:8e:fd:17:22:69:61:62:89:a6:7e:54:59:
03:ba:23:35:0f:53:b8:72:8d:a5:7f:2d:5f:83:d1:
b4:b5:90:4b:06:4d:41:8e:94:cb:8d:ec:26:68:1e:
0a:38:5a:19:22:3a:4d:a8:78:6b:bc:30:39:d0:70:
ad:77:9b:a7:da:05:41:df:4f:26:bc:56:bd:0c:f7:
a8:b3:63:e2:92:36:a5:ea:8d:bb:96:84:f3:be:df:
43:24:c9:cd:d7:97:06:7a:ec:53:1d:a4:83:2e:9a:
35:30:ea:3b:f7:71:54:87:03:98:8e:c3:90:c6:71:
79:2e:e2:88:8e:94:8d:24:86:f6:1b:85:83:ac:aa:
82:4a:9f:52:8c:65:f9:db:4d:bf:a3:fc:ad:d8:bb:
e1:0f:1a:7a:68:f8:32:71:b8:77:f2:cc:15:2d:26:
34:42:15:f7:af:b4:d5:db:75:54:2b:17:15:2a:fd:
cf:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:E4:3C:BA:AF:CB:F5:82:7F:85:78:04:4A:0C:0A:2F:A0:B2:3A:C8
X509v3 Authority Key Identifier:
keyid:5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/LeQ8uq_L9YJ_hXgESgwKL6CyOsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/W1JjSi6wP4VlteM9wrn0kEH3z7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.192.0/21
31.7.64.0/20
31.25.128.0/21
37.156.8.0/21
37.156.144.0/22
46.143.0.0/17
46.245.64.0/18
77.238.104.0/21
77.238.120.0/22
79.127.0.0/17
89.41.40.0/22
89.235.96.0/22
93.115.144.0/21
93.118.180.0/22
109.122.224.0/20
128.65.176.0/20
176.65.240.0/22
176.65.252.0/22
178.22.120.0/21
178.216.248.0/22
185.49.84.0/22
185.98.112.0/22
185.99.212.0/22
185.109.244.0-185.109.251.255
185.112.32.0/21
185.120.220.0/22
185.120.248.0/22
185.129.116.0/22
185.141.168.0/22
185.141.212.0/22
185.147.160.0/22
188.0.240.0/23
212.33.192.0/20
IPv6:
2a05:1a00::/26
2a06:5484::/30
Signature Algorithm: sha256WithRSAEncryption
70:6b:c5:ee:1c:88:a0:e3:a1:48:08:58:25:bf:33:9b:27:c2:
6c:56:44:2c:51:a6:d8:00:5f:7f:c1:1e:33:f4:da:9e:d8:b2:
c9:7a:ea:22:71:67:a5:fd:4f:33:d1:04:9c:9f:77:78:ef:4f:
e2:eb:11:69:b2:7d:0a:0c:2d:e0:79:f7:df:b1:c4:19:b3:57:
6d:39:aa:0b:b1:01:1f:dc:23:88:c7:05:26:1e:ed:83:13:69:
3f:f4:35:b5:40:80:8c:26:cc:62:dc:64:6f:41:9d:f2:e4:42:
63:9e:fd:44:05:c4:21:db:2b:49:e7:94:07:34:cf:22:40:04:
bd:8a:fe:f3:58:07:95:66:74:37:c2:4b:38:2b:aa:15:62:2b:
d2:57:bc:f6:57:6a:f0:aa:65:12:b3:2c:c1:3f:70:03:c5:44:
1d:0e:39:2f:13:cc:41:bb:76:fa:c1:dd:c1:59:26:cd:56:46:
d3:91:d6:3e:2b:c2:8c:7f:39:a4:0a:a1:3b:d9:12:e2:e0:13:
26:42:1c:62:74:df:7c:9a:a7:cb:d5:97:64:81:72:57:fe:7a:
f4:d8:b4:20:d0:db:89:95:34:2e:57:c5:70:9e:b4:78:fd:86:
d2:6c:4a:eb:05:41:1d:fe:21:24:2b:ab:d8:24:83:99:65:b1:
74:3c:21:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:07 2024 by rpki-client on console-fra.rpki-client.org