Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/gu2jlcxc_hYcKHumw4afwWzKfNM.roa
File: gu2jlcxc_hYcKHumw4afwWzKfNM.roa (raw, json)
Hash identifier: NFTWG5LKC4LVZIWa2Kt1dcDx6cZ0skzPSpe2dg8v3jc=
Subject key identifier: 82:ED:A3:95:CC:5C:FE:16:1C:28:7B:A6:C3:86:9F:C1:6C:CA:7C:D3
Certificate issuer: /CN=c42708df93954aac601aef1835bd5d69245fb02f
Certificate serial: 0190075C6768012D6591AFE9F4A16A0E23C0
Authority key identifier: C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/gu2jlcxc_hYcKHumw4afwWzKfNM.roa
Signing time: Tue 11 Jun 2024 12:53:34 +0000
ROA not before: Tue 11 Jun 2024 12:53:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 45012
IP address blocks: 5.44.100.0/23 maxlen: 24
5.44.102.0/23 maxlen: 24
5.44.104.0/22 maxlen: 24
5.44.108.0/22 maxlen: 24
31.47.240.0/20 maxlen: 24
37.218.248.0/22 maxlen: 22
37.218.252.0/24 maxlen: 24
37.218.254.0/24 maxlen: 24
37.228.152.0/21 maxlen: 24
46.243.88.0/21 maxlen: 24
77.75.248.0/21 maxlen: 24
81.88.16.0/24 maxlen: 24
81.88.28.0/22 maxlen: 24
81.88.32.0/20 maxlen: 24
85.158.176.0/21 maxlen: 24
89.22.100.0/22 maxlen: 24
89.22.106.0/24 maxlen: 24
89.22.108.0/24 maxlen: 24
89.22.110.0/23 maxlen: 24
89.22.112.0/22 maxlen: 24
89.22.116.0/22 maxlen: 24
89.22.122.0/23 maxlen: 24
89.22.124.0/22 maxlen: 24
91.151.16.0/21 maxlen: 24
91.203.108.0/22 maxlen: 24
91.203.212.0/22 maxlen: 24
91.220.49.0/24 maxlen: 24
93.90.178.0/24 maxlen: 24
93.90.180.0/23 maxlen: 24
109.237.128.0/20 maxlen: 24
128.127.65.0/24 maxlen: 24
128.127.66.0/24 maxlen: 24
178.20.96.0/21 maxlen: 24
178.250.8.0/21 maxlen: 24
178.250.170.0/24 maxlen: 24
178.250.174.0/24 maxlen: 24
185.3.232.0/22 maxlen: 24
185.39.220.0/22 maxlen: 24
185.61.40.0/22 maxlen: 24
185.80.92.0/24 maxlen: 24
185.80.93.0/24 maxlen: 24
185.80.94.0/23 maxlen: 23
185.137.168.0/22 maxlen: 24
185.207.228.0/22 maxlen: 24
185.207.228.0/24 maxlen: 24
185.207.230.0/24 maxlen: 24
188.64.46.0/23 maxlen: 24
192.162.87.0/24 maxlen: 24
193.22.255.0/24 maxlen: 24
194.145.226.0/24 maxlen: 24
195.5.120.0/23 maxlen: 24
195.82.152.0/23 maxlen: 24
2a00:fa40:2000::/36 maxlen: 64
2a00:fa40:3000::/36 maxlen: 36
2a00:fa40:4000::/36 maxlen: 36
2a01:64c0::/32 maxlen: 32
2a02:2b80::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 11 Jun 2024 13:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:07:5c:67:68:01:2d:65:91:af:e9:f4:a1:6a:0e:23:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c42708df93954aac601aef1835bd5d69245fb02f
Validity
Not Before: Jun 11 12:53:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82eda395cc5cfe161c287ba6c3869fc16cca7cd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:7f:47:7a:77:a5:8d:29:36:00:7e:dc:e3:1c:
bb:18:bb:6a:0d:9f:82:00:4d:e9:0b:9f:3c:3b:de:
25:f1:3b:59:7d:b2:a2:4b:df:06:01:39:e7:f3:ae:
82:3d:c3:66:aa:25:d0:4a:92:4f:d2:4b:72:92:f4:
3e:d6:92:4c:cd:fa:3b:e8:a5:dd:83:5b:d6:a3:f6:
0f:83:f3:c9:2d:4c:87:f2:f1:a7:39:17:4f:8b:6f:
5c:6c:7c:e0:ee:06:33:59:8f:5e:f8:ed:d1:01:f3:
f6:a9:77:05:3e:ba:a5:4d:d8:98:19:82:9c:67:b4:
5c:b0:ed:0e:ed:2d:c5:f8:a5:57:76:d8:62:fa:97:
a5:bb:d1:d2:5a:ec:1f:d3:2c:03:12:b3:6b:0b:ea:
5b:1d:3f:b5:09:d6:b5:78:5e:ce:af:da:a2:a6:30:
fd:02:2e:2c:e0:9a:d2:74:59:23:a2:7b:0f:39:67:
94:39:9a:57:9f:37:60:1a:2c:1d:d0:43:b9:d6:5f:
bb:21:73:e1:73:47:8b:13:dd:fc:bc:98:c2:28:12:
c6:79:67:06:7b:71:02:90:d5:e6:03:65:ab:91:3b:
95:11:a7:77:a0:ed:16:45:3e:e9:e8:a4:e4:9b:b4:
96:10:cd:4b:8d:a2:e5:8e:4c:80:13:54:ab:01:dc:
2a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:ED:A3:95:CC:5C:FE:16:1C:28:7B:A6:C3:86:9F:C1:6C:CA:7C:D3
X509v3 Authority Key Identifier:
keyid:C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/gu2jlcxc_hYcKHumw4afwWzKfNM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/xCcI35OVSqxgGu8YNb1daSRfsC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.100.0-5.44.111.255
31.47.240.0/20
37.218.248.0-37.218.252.255
37.218.254.0/24
37.228.152.0/21
46.243.88.0/21
77.75.248.0/21
81.88.16.0/24
81.88.28.0-81.88.47.255
85.158.176.0/21
89.22.100.0/22
89.22.106.0/24
89.22.108.0/24
89.22.110.0-89.22.119.255
89.22.122.0-89.22.127.255
91.151.16.0/21
91.203.108.0/22
91.203.212.0/22
91.220.49.0/24
93.90.178.0/24
93.90.180.0/23
109.237.128.0/20
128.127.65.0-128.127.66.255
178.20.96.0/21
178.250.8.0/21
178.250.170.0/24
178.250.174.0/24
185.3.232.0/22
185.39.220.0/22
185.61.40.0/22
185.80.92.0/22
185.137.168.0/22
185.207.228.0/22
188.64.46.0/23
192.162.87.0/24
193.22.255.0/24
194.145.226.0/24
195.5.120.0/23
195.82.152.0/23
IPv6:
2a00:fa40:2000::-2a00:fa40:4fff:ffff:ffff:ffff:ffff:ffff
2a01:64c0::/32
2a02:2b80::/32
Signature Algorithm: sha256WithRSAEncryption
07:85:e6:90:96:c9:c5:59:57:55:76:d6:61:25:b1:43:84:fd:
98:89:17:91:ff:89:5d:31:ee:ea:08:cf:b8:82:6e:79:e6:d8:
a8:ad:66:61:37:d1:b6:22:c5:29:1e:97:3b:39:fa:05:a8:50:
6f:18:6a:30:96:f1:2c:13:51:be:21:e9:24:c1:63:8d:16:e9:
37:66:18:7d:99:09:64:6b:95:3b:de:e0:d6:b2:ec:82:09:ad:
57:b6:21:09:01:cc:7e:14:f1:2d:a4:87:a3:74:ef:39:9b:da:
5e:14:8a:b9:70:9f:1a:78:59:25:be:b3:40:22:6a:02:9e:42:
52:1d:11:34:17:63:d6:6c:3f:72:01:71:db:4c:05:b9:e5:e0:
86:7e:c3:cb:4e:c5:d9:91:f6:6c:1e:83:f5:b9:c4:02:38:25:
51:55:64:43:74:b1:02:fc:79:6f:84:99:24:bb:45:8a:ed:ba:
9c:1b:94:35:57:ca:02:3d:e8:c0:45:b2:60:d7:fd:13:af:f1:
13:ec:4c:f1:28:37:93:0d:b0:90:c5:d0:18:03:36:93:d0:58:
a8:ce:85:71:b0:93:c5:b8:99:75:1b:1b:09:74:2c:4c:ee:8f:
8d:09:5d:d7:95:2b:8e:66:21:89:f6:24:c4:5f:a6:f8:64:10:
bd:f4:1c:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 11 17:40:40 2024 by rpki-client on console-fra.rpki-client.org