Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/pH1bkmrcMgZL-62lwhGhBnGIIAM.roa
File: pH1bkmrcMgZL-62lwhGhBnGIIAM.roa (raw, json)
Hash identifier: G0j1/gidZ0b+Wfc4PE0v8UxQrK5gU3vvcSYg6I0VgVM=
Subject key identifier: A4:7D:5B:92:6A:DC:32:06:4B:FB:AD:A5:C2:11:A1:06:71:88:20:03
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018A5AC289520AC207EB8D2D8FDDAF4AD5DB
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/pH1bkmrcMgZL-62lwhGhBnGIIAM.roa
Signing time: Sun 03 Sep 2023 11:16:53 +0000
ROA not before: Sun 03 Sep 2023 11:16:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 45.83.148.0/22 maxlen: 24
2.56.172.0/22 maxlen: 24
95.214.248.0/22 maxlen: 24
2.56.176.0/22 maxlen: 24
194.33.36.0/22 maxlen: 24
2.56.116.0/22 maxlen: 24
2.56.124.0/22 maxlen: 24
2.56.120.0/22 maxlen: 24
45.83.116.0/22 maxlen: 24
45.83.128.0/22 maxlen: 24
45.83.140.0/22 maxlen: 24
185.161.70.0/23 maxlen: 24
185.161.69.0/24 maxlen: 24
185.106.96.0/22 maxlen: 24
139.28.232.0/22 maxlen: 24
45.15.124.0/22 maxlen: 24
45.86.64.0/22 maxlen: 24
45.86.60.0/22 maxlen: 24
45.15.128.0/22 maxlen: 24
45.86.68.0/22 maxlen: 24
45.15.144.0/22 maxlen: 24
45.15.140.0/22 maxlen: 24
45.86.76.0/22 maxlen: 24
45.86.72.0/22 maxlen: 24
45.92.160.0/22 maxlen: 24
45.92.164.0/22 maxlen: 24
45.92.192.0/22 maxlen: 24
45.89.96.0/22 maxlen: 24
45.89.104.0/22 maxlen: 24
45.89.100.0/22 maxlen: 24
45.89.108.0/22 maxlen: 24
45.9.12.0/22 maxlen: 24
171.22.136.0/22 maxlen: 24
45.9.16.0/22 maxlen: 24
45.12.112.0/22 maxlen: 24
45.12.108.0/22 maxlen: 24
45.12.128.0/22 maxlen: 24
45.12.132.0/22 maxlen: 24
194.76.136.0/22 maxlen: 24
45.12.136.0/22 maxlen: 24
45.12.140.0/22 maxlen: 24
45.12.144.0/22 maxlen: 24
45.83.84.0/22 maxlen: 24
45.12.148.0/22 maxlen: 24
45.15.152.0/22 maxlen: 24
45.82.244.0/22 maxlen: 24
45.82.252.0/22 maxlen: 24
45.82.248.0/22 maxlen: 24
185.153.180.0/22 maxlen: 24
45.15.164.0/22 maxlen: 24
45.15.160.0/22 maxlen: 24
45.15.168.0/22 maxlen: 24
213.59.112.0/20 maxlen: 24
45.89.196.0/22 maxlen: 24
45.15.176.0/22 maxlen: 24
171.22.112.0/22 maxlen: 24
171.22.108.0/22 maxlen: 24
45.83.24.0/22 maxlen: 24
45.15.184.0/22 maxlen: 24
45.83.20.0/22 maxlen: 24
171.22.116.0/22 maxlen: 24
31.12.92.0/22 maxlen: 24
171.22.124.0/22 maxlen: 24
171.22.120.0/22 maxlen: 24
171.22.132.0/22 maxlen: 24
171.22.128.0/22 maxlen: 24
45.88.160.0/22 maxlen: 24
45.88.168.0/22 maxlen: 24
45.88.176.0/22 maxlen: 24
45.88.180.0/22 maxlen: 24
185.149.20.0/22 maxlen: 24
185.203.4.0/22 maxlen: 24
141.98.164.0/22 maxlen: 24
141.98.160.0/22 maxlen: 24
92.118.228.0/22 maxlen: 24
92.118.232.0/22 maxlen: 24
92.118.236.0/22 maxlen: 24
185.156.108.0/22 maxlen: 24
185.166.152.0/22 maxlen: 24
45.92.124.0/22 maxlen: 24
185.166.160.0/22 maxlen: 24
45.92.140.0/22 maxlen: 24
92.119.40.0/22 maxlen: 24
45.128.56.0/22 maxlen: 24
45.128.52.0/22 maxlen: 24
45.128.72.0/22 maxlen: 24
45.128.48.0/22 maxlen: 24
141.98.132.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Sep 2023 07:45:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5a:c2:89:52:0a:c2:07:eb:8d:2d:8f:dd:af:4a:d5:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Sep 3 11:16:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a47d5b926adc32064bfbada5c211a10671882003
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:60:38:82:a1:8d:5a:f0:7d:74:cb:dc:d2:3d:
58:e8:ac:01:4d:fd:17:bd:17:2d:dd:f3:9f:a4:b0:
33:60:e3:a5:60:79:38:05:93:03:8b:6b:03:52:b2:
ed:f2:4b:5c:ef:80:d5:44:26:8b:3f:43:ec:a3:6d:
4e:fc:8d:76:7d:6c:42:ef:7a:aa:68:39:f0:09:2c:
74:3c:36:a2:46:8b:be:d6:f0:e5:22:de:51:84:10:
94:b6:95:e1:08:95:b9:a4:aa:c0:13:a7:95:77:6a:
89:2e:3b:3d:ad:a5:dc:87:8a:68:ba:1e:ee:72:8b:
27:25:f8:6a:27:f4:d0:90:4b:c4:68:21:9b:8e:61:
c5:46:c0:ab:53:bb:3b:f2:be:38:71:23:ab:63:50:
04:06:73:66:37:ac:c4:68:2c:33:15:89:ba:ba:bf:
51:40:dd:df:86:51:5c:20:50:34:66:9c:9e:41:66:
3a:b3:d8:15:56:0e:24:c3:1b:98:f3:8b:ce:4f:c5:
53:00:15:cb:14:01:40:5d:a7:3d:52:5a:46:61:ee:
49:ad:69:20:55:5f:85:9d:ec:e1:ba:76:d1:20:6b:
06:ca:37:24:e1:64:37:b6:51:48:fa:82:bb:e9:05:
75:e9:fa:d2:2b:ea:29:02:91:03:ca:a8:c8:37:de:
0f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:7D:5B:92:6A:DC:32:06:4B:FB:AD:A5:C2:11:A1:06:71:88:20:03
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/pH1bkmrcMgZL-62lwhGhBnGIIAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.116.0-2.56.127.255
2.56.172.0-2.56.179.255
31.12.92.0/22
45.9.12.0-45.9.19.255
45.12.108.0-45.12.115.255
45.12.128.0-45.12.151.255
45.15.124.0-45.15.131.255
45.15.140.0-45.15.147.255
45.15.152.0/22
45.15.160.0-45.15.171.255
45.15.176.0/22
45.15.184.0/22
45.82.244.0-45.82.255.255
45.83.20.0-45.83.27.255
45.83.84.0/22
45.83.116.0/22
45.83.128.0/22
45.83.140.0/22
45.83.148.0/22
45.86.60.0-45.86.79.255
45.88.160.0/22
45.88.168.0/22
45.88.176.0/21
45.89.96.0/20
45.89.196.0/22
45.92.124.0/22
45.92.140.0/22
45.92.160.0/21
45.92.192.0/22
45.128.48.0-45.128.59.255
45.128.72.0/22
92.118.228.0-92.118.239.255
92.119.40.0/22
95.214.248.0/22
139.28.232.0/22
141.98.132.0/22
141.98.160.0/21
171.22.108.0-171.22.139.255
185.106.96.0/22
185.149.20.0/22
185.153.180.0/22
185.156.108.0/22
185.161.69.0-185.161.71.255
185.166.152.0/22
185.166.160.0/22
185.203.4.0/22
194.33.36.0/22
194.76.136.0/22
213.59.112.0/20
Signature Algorithm: sha256WithRSAEncryption
84:7d:2b:06:e2:d0:d5:e1:b5:38:15:40:91:28:c6:3b:09:01:
2f:6b:8f:22:50:40:83:dd:d5:9f:73:99:1c:19:24:4a:f2:eb:
ce:7d:ae:72:9e:23:40:dd:43:89:a5:86:46:b2:4c:c3:85:cb:
fb:b9:5a:ea:6e:f5:d6:b0:d1:a5:23:e3:b4:4e:34:c3:4a:fa:
45:49:6a:aa:17:b6:ad:41:53:2e:b5:29:0a:43:b8:58:06:3b:
73:9d:93:bf:7a:6e:ee:96:7f:52:a1:36:10:d6:df:7c:0b:1f:
3d:fe:c2:ac:d0:af:42:a8:00:fc:35:69:f0:fb:e4:7b:53:3c:
f7:08:35:a0:bb:c8:74:af:a7:ad:f2:74:c3:9e:64:31:dc:8b:
00:61:60:77:e5:c9:71:c2:31:ce:2b:07:f7:c7:94:da:f3:84:
36:43:95:70:d0:d5:36:4b:c4:de:9d:34:c9:6e:a7:1b:4b:20:
d4:c4:bb:b8:d6:1d:8d:f4:c9:4c:6d:c6:f9:25:52:01:e8:eb:
4c:18:29:4a:7a:a2:6f:02:7d:f3:d5:2f:27:63:b1:ab:3d:e0:
e7:f3:ef:78:b8:42:fd:f4:54:0f:d9:53:77:3a:2e:91:3a:ca:
5f:b5:54:67:a8:63:50:40:ad:2d:d7:0c:89:e8:85:b8:01:ea:
67:ec:92:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:20 2024 by rpki-client on console-ams.rpki-client.org