Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/27e6y1Ms3-IYCyPsF9Py7GFXy9o.roa
File: 27e6y1Ms3-IYCyPsF9Py7GFXy9o.roa (raw, json)
Hash identifier: jrUjr0je2WS5VjXx/WnmVsFX8v2Fy1ohjbD/+msAVdQ=
Subject key identifier: DB:B7:BA:CB:53:2C:DF:E2:18:0B:23:EC:17:D3:F2:EC:61:57:CB:DA
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0191B87AD25CE55E61721E128F728C2338FA
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/27e6y1Ms3-IYCyPsF9Py7GFXy9o.roa
Signing time: Tue 03 Sep 2024 15:22:22 +0000
ROA not before: Tue 03 Sep 2024 15:22:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41111
IP address blocks: 5.180.20.0/24 maxlen: 24
5.180.21.0/24 maxlen: 24
5.180.22.0/23 maxlen: 24
5.180.27.0/24 maxlen: 24
5.180.29.0/24 maxlen: 24
5.180.31.0/24 maxlen: 24
5.180.40.0/24 maxlen: 24
5.180.42.0/24 maxlen: 24
5.180.43.0/24 maxlen: 24
5.180.46.0/24 maxlen: 24
5.180.47.0/24 maxlen: 24
5.180.52.0/24 maxlen: 24
5.180.54.0/24 maxlen: 24
5.180.145.0/24 maxlen: 24
5.180.147.0/24 maxlen: 24
5.253.28.0/24 maxlen: 24
5.253.29.0/24 maxlen: 24
5.253.30.0/24 maxlen: 24
5.253.31.0/24 maxlen: 24
5.253.42.0/24 maxlen: 24
45.66.160.0/22 maxlen: 24
45.66.164.0/22 maxlen: 24
45.86.66.0/24 maxlen: 24
45.128.60.0/24 maxlen: 24
45.136.114.0/24 maxlen: 24
45.136.115.0/24 maxlen: 24
45.136.116.0/24 maxlen: 24
45.136.117.0/24 maxlen: 24
45.136.124.0/22 maxlen: 24
45.136.128.0/23 maxlen: 24
45.136.149.0/24 maxlen: 24
45.149.112.0/22 maxlen: 24
85.208.119.0/24 maxlen: 24
85.209.155.0/24 maxlen: 24
85.209.156.0/22 maxlen: 24
85.209.194.0/24 maxlen: 24
88.218.92.0/24 maxlen: 24
88.218.94.0/24 maxlen: 24
88.218.95.0/24 maxlen: 24
139.28.234.0/23 maxlen: 24
141.98.167.0/24 maxlen: 24
141.98.188.0/22 maxlen: 24
171.22.110.0/23 maxlen: 24
194.36.36.0/22 maxlen: 24
194.55.136.0/23 maxlen: 24
194.55.188.0/24 maxlen: 24
194.55.189.0/24 maxlen: 24
194.59.221.0/24 maxlen: 24
194.59.244.0/24 maxlen: 24
194.59.245.0/24 maxlen: 24
194.76.146.0/24 maxlen: 24
194.76.147.0/24 maxlen: 24
194.76.154.0/23 maxlen: 24
194.124.250.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 11:48:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b8:7a:d2:5c:e5:5e:61:72:1e:12:8f:72:8c:23:38:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Sep 3 15:22:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dbb7bacb532cdfe2180b23ec17d3f2ec6157cbda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7e:07:c9:dc:05:9a:74:16:11:ab:93:db:86:
eb:c1:24:7d:e8:13:72:ab:0c:50:e8:a8:09:f9:95:
56:aa:a3:20:cc:b7:39:8d:5b:85:69:02:89:c4:92:
2d:cf:5b:dc:9f:b6:35:26:01:42:a7:1e:b4:06:50:
7d:b7:c0:58:4f:1c:b8:12:67:d4:ec:14:f8:c0:54:
2d:26:fc:b7:de:e4:d6:87:94:c4:fc:97:b4:29:b8:
0c:df:ff:a8:31:5d:dc:d7:b3:fd:0c:96:a2:1f:4d:
24:80:2b:01:61:11:db:01:80:28:05:05:f4:25:42:
b1:92:45:86:56:fe:91:c8:22:df:a9:27:8a:8b:7f:
e3:92:81:60:ed:47:de:2c:7a:ec:38:03:aa:fd:46:
7c:70:5a:61:e0:d4:b6:a6:9a:aa:81:11:60:b9:8c:
41:b0:a2:2b:55:23:ee:3e:2b:e7:a7:4c:6f:9b:93:
e1:f6:5a:c4:2e:33:65:d0:59:c5:0c:0d:0e:8a:e2:
48:da:fe:d5:bf:d4:12:ff:9d:20:b4:7e:ae:08:19:
28:41:ae:ea:61:22:ed:39:32:5c:be:c9:5f:ae:4c:
f0:45:02:4a:ae:91:38:e5:33:db:f4:38:4a:4c:25:
84:b0:c5:ae:43:a9:b1:30:1f:05:a1:5a:04:c0:3e:
30:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B7:BA:CB:53:2C:DF:E2:18:0B:23:EC:17:D3:F2:EC:61:57:CB:DA
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/27e6y1Ms3-IYCyPsF9Py7GFXy9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.20.0/22
5.180.27.0/24
5.180.29.0/24
5.180.31.0/24
5.180.40.0/24
5.180.42.0/23
5.180.46.0/23
5.180.52.0/24
5.180.54.0/24
5.180.145.0/24
5.180.147.0/24
5.253.28.0/22
5.253.42.0/24
45.66.160.0/21
45.86.66.0/24
45.128.60.0/24
45.136.114.0-45.136.117.255
45.136.124.0-45.136.129.255
45.136.149.0/24
45.149.112.0/22
85.208.119.0/24
85.209.155.0-85.209.159.255
85.209.194.0/24
88.218.92.0/24
88.218.94.0/23
139.28.234.0/23
141.98.167.0/24
141.98.188.0/22
171.22.110.0/23
194.36.36.0/22
194.55.136.0/23
194.55.188.0/23
194.59.221.0/24
194.59.244.0/23
194.76.146.0/23
194.76.154.0/23
194.124.250.0/23
Signature Algorithm: sha256WithRSAEncryption
55:de:02:ef:c3:40:1f:2d:7c:64:f9:93:50:75:82:82:1a:c3:
62:7d:92:9f:96:16:8f:df:41:22:29:93:73:47:1b:e9:13:66:
fd:0e:da:b0:2e:25:12:ed:c3:95:a3:97:c2:4c:4d:bd:7d:c6:
fd:10:94:0c:c2:0e:20:3d:f3:50:fe:07:87:e1:b3:c5:e0:d4:
24:f4:87:0c:60:61:89:5e:d8:de:88:d1:3d:cc:59:f3:73:58:
c8:fc:9a:97:d0:93:26:3d:55:c8:38:80:78:11:2a:8a:be:65:
e1:cf:cd:5a:64:f6:a3:70:f0:6f:9f:ad:88:8b:a2:4b:d8:07:
2c:be:38:67:53:41:ee:09:d4:cf:6e:97:d1:cb:a7:3d:b6:24:
aa:78:2f:79:bf:c3:58:1b:b0:b9:fc:0e:3b:11:4a:8c:a2:a6:
c1:49:55:53:75:9b:63:b0:31:1c:8c:83:c0:0c:5e:56:2c:d6:
f3:34:1d:6e:81:14:31:15:4b:0e:83:cc:5a:3b:c2:42:d9:6a:
0b:82:1d:c9:8f:19:1c:59:e7:ca:19:a4:45:d7:84:7b:15:c4:
83:b4:71:17:17:d5:c1:e9:34:06:99:d6:88:6c:ae:8d:65:ba:
9d:b3:16:53:d1:4c:e6:16:d8:ab:25:b6:85:71:9c:a4:dc:dd:
9b:3c:0e:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:26 2025 by rpki-client