Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/fMaoBnFittVgmdgNIp-YooQY12Q.roa
File: fMaoBnFittVgmdgNIp-YooQY12Q.roa (raw, json)
Hash identifier: q0nst4pD/D5D+kWcFFkStY/mg81x7HldSvPQ6jf4d+I=
Subject key identifier: 7C:C6:A8:06:71:62:B6:D5:60:99:D8:0D:22:9F:98:A2:84:18:D7:64
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 018F4FB201904DB2800763AFF4DA6F069983
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/fMaoBnFittVgmdgNIp-YooQY12Q.roa
Signing time: Mon 06 May 2024 20:56:56 +0000
ROA not before: Mon 06 May 2024 20:56:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50113
IP address blocks: 5.180.136.0/24 maxlen: 24
5.180.136.76/32 maxlen: 32
5.180.136.221/32 maxlen: 32
5.180.137.0/24 maxlen: 24
5.252.116.0/24 maxlen: 24
45.8.211.0/24 maxlen: 24
45.89.64.0/24 maxlen: 24
91.217.77.0/24 maxlen: 24
147.78.66.7/32 maxlen: 32
185.17.3.102/32 maxlen: 32
185.104.248.0/24 maxlen: 24
185.139.68.28/32 maxlen: 32
185.139.70.116/32 maxlen: 32
185.172.130.0/24 maxlen: 24
185.172.131.0/24 maxlen: 24
185.174.139.0/24 maxlen: 24
185.180.230.0/24 maxlen: 24
185.180.231.87/32 maxlen: 32
185.188.180.0/24 maxlen: 24
185.189.12.0/22 maxlen: 22
185.189.12.0/24 maxlen: 24
185.189.13.0/24 maxlen: 24
185.189.14.0/24 maxlen: 24
185.189.15.0/24 maxlen: 24
185.244.174.0/24 maxlen: 24
192.162.100.0/22 maxlen: 22
192.162.100.0/24 maxlen: 24
192.162.101.0/24 maxlen: 24
192.162.102.0/24 maxlen: 24
192.162.103.0/24 maxlen: 24
193.0.200.0/24 maxlen: 24
193.0.202.0/24 maxlen: 24
193.0.203.0/24 maxlen: 24
193.168.226.0/24 maxlen: 24
194.53.52.0/24 maxlen: 24
194.63.140.0/22 maxlen: 22
194.63.140.0/23 maxlen: 23
194.63.140.0/24 maxlen: 24
194.63.141.0/24 maxlen: 24
194.63.142.0/23 maxlen: 23
194.63.142.0/24 maxlen: 24
194.63.143.0/24 maxlen: 24
194.67.196.127/32 maxlen: 32
194.67.198.7/32 maxlen: 32
194.67.198.108/32 maxlen: 32
194.67.203.54/32 maxlen: 32
194.67.208.6/32 maxlen: 32
194.67.208.12/32 maxlen: 32
194.67.208.48/32 maxlen: 32
213.108.197.0/24 maxlen: 24
213.108.198.0/24 maxlen: 24
213.108.199.0/24 maxlen: 24
2a04:5200::/29 maxlen: 29
2a04:5200::/32 maxlen: 32
2a04:5200::/48 maxlen: 48
2a04:5200:1::/48 maxlen: 48
2a04:5200:a::/48 maxlen: 48
2a04:5200:ff00::/48 maxlen: 48
2a04:5200:ff10::/48 maxlen: 48
2a04:5200:fff1::/48 maxlen: 48
2a04:5200:fff2::/48 maxlen: 48
2a04:5200:fff3::/48 maxlen: 48
2a04:5200:fff4::/48 maxlen: 48
2a04:5200:fff5::/48 maxlen: 48
2a04:5200:fff6::/48 maxlen: 48
2a04:5200:fff7::/48 maxlen: 48
2a04:5200:fff8::/48 maxlen: 48
2a04:5200:fff9::/48 maxlen: 48
2a04:5200:ffff::/48 maxlen: 48
2a04:5202::/32 maxlen: 32
2a04:5203::/32 maxlen: 32
2a04:5204::/32 maxlen: 32
2a04:5205::/32 maxlen: 32
2a04:5206::/32 maxlen: 32
2a04:5207::/32 maxlen: 32
2a09:5303::/32 maxlen: 32
2a0a:9300::/32 maxlen: 32
2a0a:9300::/48 maxlen: 48
2a0a:9300:aaaa::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 15 Aug 2024 15:21:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4f:b2:01:90:4d:b2:80:07:63:af:f4:da:6f:06:99:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: May 6 20:56:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7cc6a8067162b6d56099d80d229f98a28418d764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:dd:42:4e:cd:16:47:40:ad:0a:49:f1:a0:ec:
aa:47:1d:3a:48:6e:9b:3d:a5:d7:1d:76:91:1c:a3:
d1:93:af:1e:fc:71:67:d5:00:44:1d:1f:ef:d1:84:
b7:8e:1e:c9:91:90:07:42:ed:53:e9:62:46:6e:49:
28:c6:53:7d:68:7f:62:4b:6d:d3:1f:ca:5c:06:c4:
3d:8b:2f:2e:96:9f:82:39:fc:fb:b5:dd:cb:06:69:
7b:ca:7a:ad:56:e0:5a:87:8e:75:e8:df:70:ec:62:
93:20:f8:4c:22:64:7d:70:46:db:be:ea:b5:7b:71:
07:00:f3:d9:c2:9f:ac:14:86:09:27:00:e9:f7:c8:
99:8a:db:08:69:a8:cd:b5:b9:32:72:f1:7b:04:b6:
24:90:bd:2c:2b:95:15:ab:7b:02:4d:ec:94:ae:8c:
61:e0:44:72:35:81:34:7a:48:ad:f6:c7:9d:3b:94:
e4:dd:19:10:cd:a9:e5:f3:b7:56:ba:c1:4c:46:44:
f7:78:fa:26:6c:3b:ff:4f:58:63:04:ba:c2:bf:ec:
87:11:68:f3:f8:6f:55:35:ef:30:16:5c:df:07:31:
1c:9a:50:87:d8:fe:41:20:2a:ad:57:e8:d7:97:64:
9a:6a:97:de:e7:fd:5d:7a:fd:f6:af:d8:43:0b:a7:
20:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:C6:A8:06:71:62:B6:D5:60:99:D8:0D:22:9F:98:A2:84:18:D7:64
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/fMaoBnFittVgmdgNIp-YooQY12Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.136.0/23
5.252.116.0/24
45.8.211.0/24
45.89.64.0/24
91.217.77.0/24
147.78.66.7/32
185.17.3.102/32
185.104.248.0/24
185.139.68.28/32
185.139.70.116/32
185.172.130.0/23
185.174.139.0/24
185.180.230.0/24
185.180.231.87/32
185.188.180.0/24
185.189.12.0/22
185.244.174.0/24
192.162.100.0/22
193.0.200.0/24
193.0.202.0/23
193.168.226.0/24
194.53.52.0/24
194.63.140.0/22
194.67.196.127/32
194.67.198.7/32
194.67.198.108/32
194.67.203.54/32
194.67.208.6/32
194.67.208.12/32
194.67.208.48/32
213.108.197.0-213.108.199.255
IPv6:
2a04:5200::/29
2a09:5303::/32
2a0a:9300::/32
Signature Algorithm: sha256WithRSAEncryption
b5:0a:ee:58:1a:55:c0:8d:f2:4f:fe:ab:ba:cb:4f:44:41:e6:
48:98:44:77:0f:20:9d:28:34:fe:87:72:f8:54:4d:a9:8b:dd:
65:37:49:39:35:c5:18:8e:33:09:45:df:25:64:77:38:31:7d:
4e:8f:cd:56:d0:00:8a:78:31:14:29:40:eb:3e:fd:4b:51:31:
74:47:e4:d8:ef:7c:64:88:fc:d7:cc:91:92:fe:dd:b4:e7:e1:
03:ab:92:84:83:02:af:03:cf:26:fe:a7:46:52:d8:d2:c2:6f:
d4:54:41:ed:33:c6:31:2e:e9:47:6c:00:db:97:8b:e4:46:01:
5c:d8:72:a7:66:f5:34:9a:2d:c3:63:eb:c2:09:d8:a4:eb:63:
2b:2b:30:84:2b:7b:d0:e6:4e:75:bc:fc:55:58:bd:43:e1:5e:
23:13:21:b7:37:ef:88:9d:6c:46:c8:4d:e1:4a:79:72:4c:ac:
51:a4:14:40:8a:b3:af:35:85:9a:71:9f:16:59:35:16:30:cd:
76:e2:fe:60:1a:c6:39:b5:db:9d:ad:a2:cb:e3:cd:a2:4a:b1:
77:c3:6d:58:63:a3:6e:ad:20:1a:65:90:07:8b:af:63:c6:bf:
80:50:7b:3d:39:46:2e:ab:51:95:82:8b:ea:1a:ba:98:42:05:
45:07:8f:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 15 19:31:58 2024 by rpki-client on console-ams.rpki-client.org