Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/evQCX9d1Z7F5th0-VMqsgTPFlhQ.roa
File: evQCX9d1Z7F5th0-VMqsgTPFlhQ.roa (raw, json)
Hash identifier: lQ7IyRU5eFBzMYrkTZAsHbr4gp3sz6YQxSQmyxB+NpQ=
Subject key identifier: 7A:F4:02:5F:D7:75:67:B1:79:B6:1D:3E:54:CA:AC:81:33:C5:96:14
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01939C0216CFCAC0BD498CAC9AD88F717462
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/evQCX9d1Z7F5th0-VMqsgTPFlhQ.roa
Signing time: Fri 06 Dec 2024 12:46:42 +0000
ROA not before: Fri 06 Dec 2024 12:46:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201942
IP address blocks: 31.170.100.0/22 maxlen: 24
37.32.99.0/24 maxlen: 24
45.81.152.0/22 maxlen: 24
45.90.238.0/24 maxlen: 24
45.137.160.0/22 maxlen: 24
45.147.104.0/22 maxlen: 24
45.147.116.0/22 maxlen: 24
45.159.76.0/22 maxlen: 24
81.21.228.0/22 maxlen: 24
85.115.192.0/22 maxlen: 24
88.135.64.0/22 maxlen: 24
91.235.40.0/24 maxlen: 24
91.235.41.0/24 maxlen: 24
91.238.239.0/24 maxlen: 24
92.60.34.0/24 maxlen: 24
92.60.35.0/24 maxlen: 24
93.92.228.0/22 maxlen: 24
93.189.120.0/24 maxlen: 24
93.189.123.0/24 maxlen: 24
95.214.144.0/22 maxlen: 24
109.230.194.0/24 maxlen: 24
109.230.250.0/24 maxlen: 24
185.91.108.0/22 maxlen: 24
185.105.12.0/22 maxlen: 24
185.105.232.0/22 maxlen: 24
185.106.124.0/22 maxlen: 24
185.107.152.0/22 maxlen: 24
185.118.52.0/23 maxlen: 23
185.118.54.0/23 maxlen: 23
185.119.48.0/22 maxlen: 24
185.128.52.0/22 maxlen: 24
185.129.104.0/22 maxlen: 24
185.150.78.0/23 maxlen: 24
185.163.168.0/22 maxlen: 24
185.163.232.0/22 maxlen: 24
185.166.172.0/22 maxlen: 24
185.175.152.0/22 maxlen: 24
185.176.188.0/22 maxlen: 24
185.179.228.0/22 maxlen: 24
185.179.232.0/22 maxlen: 24
185.189.64.0/22 maxlen: 24
185.196.40.0/22 maxlen: 24
185.196.42.0/24 maxlen: 24
185.196.43.0/24 maxlen: 24
185.197.216.0/22 maxlen: 24
185.199.44.0/22 maxlen: 24
185.199.55.0/24 maxlen: 24
185.200.228.0/22 maxlen: 24
185.201.152.0/22 maxlen: 24
185.202.204.0/22 maxlen: 24
185.204.108.0/24 maxlen: 24
185.204.244.0/22 maxlen: 24
185.212.84.0/22 maxlen: 24
185.216.28.0/22 maxlen: 24
185.217.12.0/22 maxlen: 24
185.218.16.0/22 maxlen: 24
185.220.240.0/22 maxlen: 24
185.221.16.0/22 maxlen: 24
185.222.188.0/22 maxlen: 24
185.223.220.0/22 maxlen: 24
185.224.184.0/22 maxlen: 24
185.224.220.0/22 maxlen: 24
185.226.8.0/22 maxlen: 24
185.226.28.0/22 maxlen: 24
185.227.176.0/22 maxlen: 24
185.227.204.0/24 maxlen: 24
185.230.48.0/22 maxlen: 24
185.232.8.0/22 maxlen: 24
185.239.252.0/22 maxlen: 24
185.239.252.0/24 maxlen: 24
185.239.253.0/24 maxlen: 24
185.239.255.0/24 maxlen: 24
185.245.32.0/23 maxlen: 23
185.247.4.0/24 maxlen: 24
193.17.180.0/22 maxlen: 24
193.17.180.0/24 maxlen: 24
193.17.182.0/24 maxlen: 24
193.26.152.0/22 maxlen: 24
193.35.88.0/22 maxlen: 24
193.105.66.0/24 maxlen: 24
194.35.40.0/24 maxlen: 24
194.38.56.0/22 maxlen: 24
194.41.116.0/22 maxlen: 24
194.41.118.0/24 maxlen: 24
195.182.13.0/24 maxlen: 24
212.80.208.0/22 maxlen: 24
212.115.44.0/22 maxlen: 24
213.232.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 31 Dec 2024 11:14:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:9c:02:16:cf:ca:c0:bd:49:8c:ac:9a:d8:8f:71:74:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Dec 6 12:46:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7af4025fd77567b179b61d3e54caac8133c59614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:fb:dc:c3:bb:05:8c:85:98:aa:c6:53:1d:6d:
91:7c:eb:0e:31:4a:68:eb:42:17:3b:c9:a3:62:32:
82:09:54:de:ed:c4:5c:a4:7f:8f:ae:53:12:82:78:
fe:ba:0e:02:a4:aa:7a:93:fa:a4:a6:a4:6c:3d:bc:
d7:5f:ac:a1:58:25:1a:92:c8:ce:f6:59:7f:b0:b2:
94:da:54:55:82:24:e3:d8:5f:27:f6:0e:f9:b8:6c:
cb:59:45:f4:f8:a1:3b:e5:d7:cd:39:fa:a0:14:64:
e0:71:e1:99:b2:86:3c:5f:8c:c1:03:16:39:9e:93:
31:bf:30:5a:cd:88:dd:6c:a0:04:62:dc:f6:bc:5f:
f5:1d:eb:41:25:cb:17:33:c5:a3:55:20:b0:05:a2:
56:ec:1f:c7:f1:7f:ea:ec:3f:c6:62:3a:7b:01:8b:
0a:4b:a0:30:ee:6a:48:bd:f2:1e:7c:84:c1:d5:c2:
77:b8:af:be:2c:5d:ff:67:bf:ba:42:35:3d:f6:a0:
62:d1:10:03:d9:c2:d4:07:27:12:f1:2f:2e:9f:08:
c1:f5:72:35:2b:7d:44:01:f7:f9:4d:fc:81:22:03:
01:60:7b:26:e2:d4:aa:2a:1a:88:e3:ca:78:f9:2e:
a9:88:37:4f:93:f2:14:30:a0:be:78:4d:fe:e5:af:
ca:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:F4:02:5F:D7:75:67:B1:79:B6:1D:3E:54:CA:AC:81:33:C5:96:14
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/evQCX9d1Z7F5th0-VMqsgTPFlhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.100.0/22
37.32.99.0/24
45.81.152.0/22
45.90.238.0/24
45.137.160.0/22
45.147.104.0/22
45.147.116.0/22
45.159.76.0/22
81.21.228.0/22
85.115.192.0/22
88.135.64.0/22
91.235.40.0/23
91.238.239.0/24
92.60.34.0/23
93.92.228.0/22
93.189.120.0/24
93.189.123.0/24
95.214.144.0/22
109.230.194.0/24
109.230.250.0/24
185.91.108.0/22
185.105.12.0/22
185.105.232.0/22
185.106.124.0/22
185.107.152.0/22
185.118.52.0/22
185.119.48.0/22
185.128.52.0/22
185.129.104.0/22
185.150.78.0/23
185.163.168.0/22
185.163.232.0/22
185.166.172.0/22
185.175.152.0/22
185.176.188.0/22
185.179.228.0-185.179.235.255
185.189.64.0/22
185.196.40.0/22
185.197.216.0/22
185.199.44.0/22
185.199.55.0/24
185.200.228.0/22
185.201.152.0/22
185.202.204.0/22
185.204.108.0/24
185.204.244.0/22
185.212.84.0/22
185.216.28.0/22
185.217.12.0/22
185.218.16.0/22
185.220.240.0/22
185.221.16.0/22
185.222.188.0/22
185.223.220.0/22
185.224.184.0/22
185.224.220.0/22
185.226.8.0/22
185.226.28.0/22
185.227.176.0/22
185.227.204.0/24
185.230.48.0/22
185.232.8.0/22
185.239.252.0/22
185.245.32.0/23
185.247.4.0/24
193.17.180.0/22
193.26.152.0/22
193.35.88.0/22
193.105.66.0/24
194.35.40.0/24
194.38.56.0/22
194.41.116.0/22
195.182.13.0/24
212.80.208.0/22
212.115.44.0/22
213.232.232.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:62:77:c5:85:af:35:0c:a2:7f:a9:3b:eb:0c:39:8b:f3:2f:
68:9d:0e:fa:74:f5:04:ed:22:4a:06:06:f7:56:a1:18:09:66:
d6:a4:12:fb:ae:3e:19:a8:1d:0d:a0:70:3f:88:b8:88:1a:15:
8b:a9:9d:9a:89:57:2f:34:7f:04:41:91:05:a2:7e:5a:73:7d:
d7:49:4f:8a:d9:eb:9e:92:e8:e9:fb:95:2e:7e:05:80:8b:e3:
7d:a7:d4:b6:eb:d1:2d:f0:73:05:6e:fb:4d:a1:09:f9:6f:ae:
03:b1:b5:62:cb:43:8a:da:6c:10:26:34:5d:9e:c5:0b:5b:bd:
4e:dd:de:c6:3d:c9:db:8e:ad:6d:2b:ca:28:6c:ca:b2:94:aa:
23:d7:ae:c1:19:0f:3c:b1:ab:74:86:37:d2:70:af:a0:1b:fd:
a4:da:df:ce:18:3d:bd:93:15:3f:a7:6e:b2:19:3c:bb:98:e9:
90:5c:63:c3:33:e7:38:03:30:5e:87:72:64:54:59:46:5b:94:
e7:3f:3f:63:9a:38:37:75:b1:d1:e4:b3:bd:57:68:63:5a:a9:
c8:57:59:76:b7:aa:83:4c:73:30:7c:4d:4d:3d:e0:13:d9:06:
80:f3:90:67:f0:35:be:a3:e6:98:7d:32:76:91:41:db:fa:e2:
87:fd:cb:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:26:51 2025 by rpki-client