Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/UIImoKgi46ZQEz12bMcfadtaL_o.roa
File: UIImoKgi46ZQEz12bMcfadtaL_o.roa (raw, json)
Hash identifier: Y1T13rEJ4lmognycVbOksEksitcIUuSfllDssfIziCg=
Subject key identifier: 50:82:26:A0:A8:22:E3:A6:50:13:3D:76:6C:C7:1F:69:DB:5A:2F:FA
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018DC6C9A49343B09397F808F34E916BDBB8
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/UIImoKgi46ZQEz12bMcfadtaL_o.roa
Signing time: Tue 20 Feb 2024 13:52:00 +0000
ROA not before: Tue 20 Feb 2024 13:52:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41111
IP address blocks: 5.180.20.0/24 maxlen: 24
5.180.21.0/24 maxlen: 24
5.180.40.0/24 maxlen: 24
5.180.42.0/24 maxlen: 24
5.180.43.0/24 maxlen: 24
5.180.46.0/24 maxlen: 24
5.180.47.0/24 maxlen: 24
5.180.52.0/24 maxlen: 24
5.180.54.0/24 maxlen: 24
5.180.145.0/24 maxlen: 24
5.180.147.0/24 maxlen: 24
5.253.28.0/24 maxlen: 24
5.253.29.0/24 maxlen: 24
5.253.30.0/24 maxlen: 24
5.253.31.0/24 maxlen: 24
5.253.42.0/24 maxlen: 24
45.66.160.0/22 maxlen: 24
45.86.66.0/24 maxlen: 24
45.128.60.0/24 maxlen: 24
45.136.117.0/24 maxlen: 24
45.136.124.0/22 maxlen: 24
85.208.119.0/24 maxlen: 24
85.209.155.0/24 maxlen: 24
85.209.156.0/22 maxlen: 24
85.209.194.0/24 maxlen: 24
88.218.92.0/24 maxlen: 24
88.218.94.0/24 maxlen: 24
88.218.95.0/24 maxlen: 24
194.36.36.0/24 maxlen: 24
194.36.37.0/24 maxlen: 24
194.55.136.0/23 maxlen: 24
194.55.189.0/24 maxlen: 24
194.59.221.0/24 maxlen: 24
194.59.245.0/24 maxlen: 24
194.76.146.0/24 maxlen: 24
194.76.147.0/24 maxlen: 24
194.76.154.0/23 maxlen: 24
194.124.250.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 24 Mar 2024 06:18:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c6:c9:a4:93:43:b0:93:97:f8:08:f3:4e:91:6b:db:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Feb 20 13:52:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=508226a0a822e3a650133d766cc71f69db5a2ffa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:89:d0:34:98:94:7c:32:57:e0:74:39:2e:8d:
6b:94:eb:0f:2c:34:8c:d2:9c:49:ce:f1:8a:a8:04:
d4:03:c7:b9:01:34:6a:bb:e9:be:ec:4c:53:9c:1a:
16:b4:dc:96:60:1c:0e:3e:dc:c7:94:a4:42:f5:9a:
b2:10:71:ba:71:ee:e5:d8:b3:de:17:a5:54:1c:25:
57:46:08:93:68:07:21:de:4c:0f:22:29:d4:70:3f:
57:d6:ec:fa:e5:46:ca:08:7b:26:47:ab:85:07:3e:
78:c5:c9:d9:1c:f6:df:89:3e:49:b9:03:01:8d:dc:
72:64:49:c5:cc:4e:66:31:30:d5:d7:b1:fe:bd:1a:
23:16:c0:46:df:0d:0e:59:02:42:eb:7a:7f:69:6e:
b8:05:7b:a3:25:f2:f5:ac:eb:20:07:70:b8:aa:c2:
c2:41:1d:bb:21:77:8c:56:5a:30:f4:a3:af:4a:e3:
43:8f:7f:50:04:00:9c:61:54:f1:b5:fe:55:ee:2e:
53:f8:8e:ad:09:72:c6:5d:71:21:8f:32:60:63:de:
ad:b0:9c:63:87:6b:59:30:4a:52:50:f8:e9:ef:70:
b9:85:38:71:ec:20:f8:37:c6:82:78:2a:1e:c8:b2:
d5:28:eb:75:29:60:8c:47:1d:0d:85:3f:58:f1:e1:
c8:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:82:26:A0:A8:22:E3:A6:50:13:3D:76:6C:C7:1F:69:DB:5A:2F:FA
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/UIImoKgi46ZQEz12bMcfadtaL_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.20.0/23
5.180.40.0/24
5.180.42.0/23
5.180.46.0/23
5.180.52.0/24
5.180.54.0/24
5.180.145.0/24
5.180.147.0/24
5.253.28.0/22
5.253.42.0/24
45.66.160.0/22
45.86.66.0/24
45.128.60.0/24
45.136.117.0/24
45.136.124.0/22
85.208.119.0/24
85.209.155.0-85.209.159.255
85.209.194.0/24
88.218.92.0/24
88.218.94.0/23
194.36.36.0/23
194.55.136.0/23
194.55.189.0/24
194.59.221.0/24
194.59.245.0/24
194.76.146.0/23
194.76.154.0/23
194.124.250.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:9a:52:bf:ec:30:f2:f0:b6:06:c1:b0:2c:a4:00:5f:cd:50:
f9:f7:4b:a3:bc:f9:91:b0:1d:ff:7f:d7:3f:70:25:af:7b:a3:
bd:53:dc:cf:14:07:5a:6e:f6:8b:fd:fa:4a:51:1b:19:b1:2e:
7d:af:81:1b:93:52:08:b2:3a:b3:f8:c3:5c:49:aa:97:95:d3:
7d:d7:35:d2:be:8d:98:03:4d:f2:a7:ea:5f:81:fa:88:5d:75:
3d:c3:93:a2:c1:4e:54:73:4b:fa:2d:87:83:3c:a4:a9:91:2a:
28:33:53:11:3e:48:51:3e:e1:e2:71:df:50:40:4a:e2:e3:da:
b3:bc:04:cd:7f:c9:d1:61:1e:1f:c0:be:6c:fa:0b:ae:68:7c:
c7:61:27:e1:42:81:6b:25:07:12:9c:4a:49:97:6f:a9:4e:68:
82:40:e4:3d:92:0f:77:e8:ab:3e:1d:a7:11:33:d8:dd:cb:c7:
6b:86:1c:a5:34:3f:b1:78:23:71:9f:38:24:ac:b0:9e:92:39:
26:6f:01:05:44:9a:4f:8f:08:7e:38:2b:a5:8d:9d:37:77:4f:
a9:6d:18:c7:28:6e:98:07:89:71:d6:79:df:85:c2:82:a1:a6:
37:cf:97:15:46:e2:4e:0e:f2:93:86:16:2c:24:10:42:55:9d:
16:b4:e2:b5
-----BEGIN CERTIFICATE-----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Generated at Sun Mar 24 10:01:01 2024 by rpki-client on console-ams.rpki-client.org