Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/YzgRRHvAEP7k9kh6O2qJ3XjkgDw.roa
File: YzgRRHvAEP7k9kh6O2qJ3XjkgDw.roa (raw, json)
Hash identifier: UKS/1q0zmIc/EZu/Cn0SV5VUwU8cpigFEyI+fltFSdE=
Subject key identifier: 63:38:11:44:7B:C0:10:FE:E4:F6:48:7A:3B:6A:89:DD:78:E4:80:3C
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018FAAD516C3B28FDEAC8284601A474F2E37
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/YzgRRHvAEP7k9kh6O2qJ3XjkgDw.roa
Signing time: Fri 24 May 2024 13:40:42 +0000
ROA not before: Fri 24 May 2024 13:40:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39855
IP address blocks: 2.56.56.0/22 maxlen: 24
5.10.194.0/24 maxlen: 24
5.10.196.0/24 maxlen: 24
5.10.198.0/24 maxlen: 24
5.181.112.0/22 maxlen: 24
5.183.224.0/22 maxlen: 24
37.46.148.0/24 maxlen: 24
37.156.66.0/24 maxlen: 24
37.156.247.0/24 maxlen: 24
45.9.92.0/22 maxlen: 24
45.9.184.0/22 maxlen: 24
45.10.184.0/22 maxlen: 24
45.11.8.0/22 maxlen: 24
45.12.180.0/22 maxlen: 24
45.13.180.0/22 maxlen: 24
45.91.149.0/24 maxlen: 24
45.91.150.0/24 maxlen: 24
45.92.76.0/24 maxlen: 24
45.134.128.0/24 maxlen: 24
45.134.130.0/24 maxlen: 24
45.134.136.0/23 maxlen: 24
45.134.139.0/24 maxlen: 24
45.143.52.0/23 maxlen: 24
45.143.55.0/24 maxlen: 24
45.145.44.0/23 maxlen: 24
45.145.47.0/24 maxlen: 24
46.102.154.0/24 maxlen: 24
46.102.172.0/24 maxlen: 24
46.102.176.0/24 maxlen: 24
46.102.181.0/24 maxlen: 24
46.229.254.0/24 maxlen: 24
62.197.130.0/23 maxlen: 24
77.81.3.0/24 maxlen: 24
81.21.236.0/22 maxlen: 24
84.247.24.0/22 maxlen: 24
84.247.52.0/23 maxlen: 24
85.204.117.0/24 maxlen: 24
86.104.134.0/24 maxlen: 24
86.105.148.0/23 maxlen: 24
86.105.150.0/24 maxlen: 24
86.105.168.0/24 maxlen: 24
86.105.221.0/24 maxlen: 24
86.106.92.0/24 maxlen: 24
86.107.107.0/24 maxlen: 24
86.107.196.0/24 maxlen: 24
89.31.217.0/24 maxlen: 24
89.32.188.0/24 maxlen: 24
89.32.190.0/24 maxlen: 24
89.33.0.0/22 maxlen: 24
89.34.77.0/24 maxlen: 24
89.34.179.0/24 maxlen: 24
89.34.216.0/23 maxlen: 24
89.35.114.0/24 maxlen: 24
89.36.172.0/24 maxlen: 24
89.37.105.0/24 maxlen: 24
89.37.137.0/24 maxlen: 24
89.37.138.0/24 maxlen: 24
89.38.39.0/24 maxlen: 24
89.39.162.0/23 maxlen: 24
89.39.164.0/23 maxlen: 24
89.40.180.0/24 maxlen: 24
89.44.114.0/24 maxlen: 24
89.44.126.0/23 maxlen: 24
89.45.8.0/24 maxlen: 24
89.45.14.0/24 maxlen: 24
89.46.115.0/24 maxlen: 24
89.47.90.0/24 maxlen: 24
89.47.95.0/24 maxlen: 24
91.190.108.0/22 maxlen: 24
91.217.239.0/24 maxlen: 24
91.221.81.0/24 maxlen: 24
91.235.113.0/24 maxlen: 24
92.114.0.0/24 maxlen: 24
93.113.38.0/23 maxlen: 24
93.113.220.0/23 maxlen: 24
93.114.67.0/24 maxlen: 24
93.114.85.0/24 maxlen: 24
93.114.132.0/24 maxlen: 24
93.117.136.0/24 maxlen: 24
94.103.248.0/22 maxlen: 24
94.176.4.0/24 maxlen: 24
94.176.41.0/24 maxlen: 24
94.177.60.0/22 maxlen: 24
95.214.156.0/22 maxlen: 24
178.212.141.0/24 maxlen: 24
185.67.136.0/24 maxlen: 24
185.67.138.0/24 maxlen: 24
185.76.149.0/24 maxlen: 24
185.160.80.0/22 maxlen: 24
185.161.78.0/24 maxlen: 24
185.184.132.0/23 maxlen: 24
185.184.134.0/24 maxlen: 24
185.192.18.0/23 maxlen: 24
185.205.188.0/24 maxlen: 24
185.205.190.0/23 maxlen: 24
185.211.116.0/22 maxlen: 24
185.214.8.0/23 maxlen: 24
185.214.11.0/24 maxlen: 24
185.216.0.0/24 maxlen: 24
185.216.2.0/24 maxlen: 24
185.228.224.0/24 maxlen: 24
185.239.240.0/24 maxlen: 24
185.244.136.0/24 maxlen: 24
185.245.4.0/24 maxlen: 24
185.245.6.0/24 maxlen: 24
188.212.4.0/24 maxlen: 24
188.213.241.0/24 maxlen: 24
188.215.66.0/23 maxlen: 24
188.215.249.0/24 maxlen: 24
188.240.15.0/24 maxlen: 24
188.240.72.0/23 maxlen: 24
188.240.74.0/24 maxlen: 24
193.19.107.0/24 maxlen: 24
193.84.133.0/24 maxlen: 24
193.218.33.0/24 maxlen: 24
193.223.72.0/22 maxlen: 24
203.159.84.0/24 maxlen: 24
203.159.86.0/24 maxlen: 24
203.159.88.0/24 maxlen: 24
217.74.18.0/24 maxlen: 24
217.74.21.0/24 maxlen: 24
217.74.22.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 May 2024 05:38:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:aa:d5:16:c3:b2:8f:de:ac:82:84:60:1a:47:4f:2e:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: May 24 13:40:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=633811447bc010fee4f6487a3b6a89dd78e4803c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:2e:ae:0c:2c:da:fa:d3:c8:bf:79:5d:4c:45:
7d:7d:b5:d6:7c:17:02:a1:38:de:04:90:39:7d:45:
a4:20:75:f8:8f:f5:d5:cc:79:a4:da:54:13:9e:2d:
67:0e:47:55:aa:92:a9:2e:d6:8a:ce:46:0b:e1:25:
25:a4:22:7f:8e:1f:ac:7c:cd:46:70:83:ba:fa:5b:
b0:f0:54:6c:91:f7:63:d3:d6:e0:b2:0e:23:d2:8b:
89:8b:17:4e:35:3e:03:01:95:d6:92:87:7c:e9:bf:
06:63:9a:b1:22:7f:03:58:cd:52:ed:39:e8:d5:e3:
ec:6c:cc:31:f0:f5:fc:e1:d4:25:60:10:22:ac:6a:
19:46:1d:d8:24:a7:40:54:91:c3:08:33:46:28:5d:
62:dd:40:86:cf:8a:1f:3e:91:7e:9d:35:1e:6a:50:
00:20:27:5e:f7:1f:c8:a0:d9:94:d1:f1:ef:8f:e2:
71:2f:c2:67:ca:b6:1c:eb:8c:26:d9:b7:9e:89:88:
81:0b:36:6e:0e:30:67:ff:92:78:c9:71:0a:0a:0a:
8f:03:14:4b:a7:41:31:a1:b8:6e:df:8a:5d:a6:3f:
d1:ea:6b:c5:08:ad:94:65:d7:4b:97:16:aa:b0:dc:
b4:c1:e7:86:46:16:4a:80:3b:c7:21:ff:1b:4f:92:
70:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:38:11:44:7B:C0:10:FE:E4:F6:48:7A:3B:6A:89:DD:78:E4:80:3C
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/YzgRRHvAEP7k9kh6O2qJ3XjkgDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.56.0/22
5.10.194.0/24
5.10.196.0/24
5.10.198.0/24
5.181.112.0/22
5.183.224.0/22
37.46.148.0/24
37.156.66.0/24
37.156.247.0/24
45.9.92.0/22
45.9.184.0/22
45.10.184.0/22
45.11.8.0/22
45.12.180.0/22
45.13.180.0/22
45.91.149.0-45.91.150.255
45.92.76.0/24
45.134.128.0/24
45.134.130.0/24
45.134.136.0/23
45.134.139.0/24
45.143.52.0/23
45.143.55.0/24
45.145.44.0/23
45.145.47.0/24
46.102.154.0/24
46.102.172.0/24
46.102.176.0/24
46.102.181.0/24
46.229.254.0/24
62.197.130.0/23
77.81.3.0/24
81.21.236.0/22
84.247.24.0/22
84.247.52.0/23
85.204.117.0/24
86.104.134.0/24
86.105.148.0-86.105.150.255
86.105.168.0/24
86.105.221.0/24
86.106.92.0/24
86.107.107.0/24
86.107.196.0/24
89.31.217.0/24
89.32.188.0/24
89.32.190.0/24
89.33.0.0/22
89.34.77.0/24
89.34.179.0/24
89.34.216.0/23
89.35.114.0/24
89.36.172.0/24
89.37.105.0/24
89.37.137.0-89.37.138.255
89.38.39.0/24
89.39.162.0-89.39.165.255
89.40.180.0/24
89.44.114.0/24
89.44.126.0/23
89.45.8.0/24
89.45.14.0/24
89.46.115.0/24
89.47.90.0/24
89.47.95.0/24
91.190.108.0/22
91.217.239.0/24
91.221.81.0/24
91.235.113.0/24
92.114.0.0/24
93.113.38.0/23
93.113.220.0/23
93.114.67.0/24
93.114.85.0/24
93.114.132.0/24
93.117.136.0/24
94.103.248.0/22
94.176.4.0/24
94.176.41.0/24
94.177.60.0/22
95.214.156.0/22
178.212.141.0/24
185.67.136.0/24
185.67.138.0/24
185.76.149.0/24
185.160.80.0/22
185.161.78.0/24
185.184.132.0-185.184.134.255
185.192.18.0/23
185.205.188.0/24
185.205.190.0/23
185.211.116.0/22
185.214.8.0/23
185.214.11.0/24
185.216.0.0/24
185.216.2.0/24
185.228.224.0/24
185.239.240.0/24
185.244.136.0/24
185.245.4.0/24
185.245.6.0/24
188.212.4.0/24
188.213.241.0/24
188.215.66.0/23
188.215.249.0/24
188.240.15.0/24
188.240.72.0-188.240.74.255
193.19.107.0/24
193.84.133.0/24
193.218.33.0/24
193.223.72.0/22
203.159.84.0/24
203.159.86.0/24
203.159.88.0/24
217.74.18.0/24
217.74.21.0-217.74.23.255
Signature Algorithm: sha256WithRSAEncryption
33:1c:fd:a7:cc:8a:44:ad:61:44:bf:5b:94:c3:ac:46:d3:55:
d2:83:c5:aa:dc:ab:48:55:35:c3:b0:00:86:32:29:ab:a7:46:
b1:c5:a1:9f:5d:8c:72:9b:a9:27:f0:dc:f5:52:54:fa:11:55:
ce:7e:f8:42:34:2c:0c:35:05:dc:76:98:34:94:fe:8f:63:07:
0e:67:f4:ee:ef:52:1e:1e:0c:73:5e:7f:90:03:63:3a:9c:8d:
02:c0:00:37:bb:62:c8:49:c9:0c:8a:67:d7:e3:69:79:85:8a:
7c:14:81:60:d3:a3:8e:4a:99:e4:00:a8:24:2f:e4:43:a9:61:
65:ec:87:54:bd:26:34:f7:55:59:f4:b2:67:d5:f3:b5:c7:27:
7b:db:fb:4b:4a:18:91:9a:b6:62:b5:95:f4:71:1a:6d:e2:00:
61:c3:90:61:23:c4:ee:11:0a:e5:76:33:7c:98:ed:a1:34:e5:
04:78:d5:af:ca:c9:8f:43:e8:d2:35:10:b9:b1:fa:dd:03:d6:
1d:15:27:21:3e:6d:7a:e1:1a:33:99:7a:79:8c:18:f0:76:da:
65:6c:75:43:83:a6:f8:fc:36:21:fa:ff:a7:e5:41:08:e9:72:
1a:9a:1d:7b:6e:6a:33:11:56:52:87:c3:01:f1:27:a8:89:51:
04:ee:5c:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:46 2024 by rpki-client on console-fra.rpki-client.org