Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/xSuXqn5h2Hm0Xd3Td3s3juzgQvI.roa
File: xSuXqn5h2Hm0Xd3Td3s3juzgQvI.roa (raw, json)
Hash identifier: XOKQKXm6C4h2wysr3EcWmdZvBqO43+rxNpsz1J4jo7k=
Subject key identifier: C5:2B:97:AA:7E:61:D8:79:B4:5D:DD:D3:77:7B:37:8E:EC:E0:42:F2
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018E5C84B796CB6142ED1F9EC384723483D4
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/xSuXqn5h2Hm0Xd3Td3s3juzgQvI.roa
Signing time: Wed 20 Mar 2024 15:39:45 +0000
ROA not before: Wed 20 Mar 2024 15:39:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201942
IP address blocks: 31.170.100.0/22 maxlen: 24
45.81.152.0/22 maxlen: 24
45.137.160.0/22 maxlen: 24
45.147.104.0/22 maxlen: 24
45.147.116.0/22 maxlen: 24
45.159.76.0/22 maxlen: 24
81.21.228.0/22 maxlen: 24
85.115.192.0/22 maxlen: 24
88.135.64.0/22 maxlen: 24
91.235.40.0/24 maxlen: 24
91.235.41.0/24 maxlen: 24
91.238.239.0/24 maxlen: 24
92.60.35.0/24 maxlen: 24
93.92.228.0/22 maxlen: 24
93.189.120.0/24 maxlen: 24
93.189.123.0/24 maxlen: 24
95.214.144.0/22 maxlen: 24
109.230.194.0/24 maxlen: 24
109.230.250.0/24 maxlen: 24
185.91.108.0/22 maxlen: 24
185.105.12.0/22 maxlen: 24
185.105.232.0/22 maxlen: 24
185.106.124.0/22 maxlen: 24
185.107.152.0/22 maxlen: 24
185.118.52.0/23 maxlen: 23
185.118.54.0/23 maxlen: 23
185.119.48.0/22 maxlen: 24
185.128.52.0/22 maxlen: 24
185.129.104.0/22 maxlen: 24
185.150.78.0/23 maxlen: 24
185.163.168.0/22 maxlen: 24
185.163.232.0/22 maxlen: 24
185.166.172.0/22 maxlen: 24
185.175.152.0/22 maxlen: 24
185.176.188.0/22 maxlen: 24
185.179.228.0/22 maxlen: 24
185.179.232.0/22 maxlen: 24
185.189.64.0/22 maxlen: 24
185.196.40.0/22 maxlen: 24
185.196.42.0/24 maxlen: 24
185.196.43.0/24 maxlen: 24
185.197.216.0/22 maxlen: 24
185.199.44.0/22 maxlen: 24
185.200.228.0/22 maxlen: 24
185.201.152.0/22 maxlen: 24
185.202.204.0/22 maxlen: 24
185.204.108.0/24 maxlen: 24
185.204.244.0/22 maxlen: 24
185.212.84.0/22 maxlen: 24
185.216.28.0/22 maxlen: 24
185.217.12.0/22 maxlen: 24
185.218.16.0/22 maxlen: 24
185.220.240.0/22 maxlen: 24
185.221.16.0/22 maxlen: 24
185.222.188.0/22 maxlen: 24
185.223.220.0/22 maxlen: 24
185.224.184.0/22 maxlen: 24
185.224.220.0/22 maxlen: 24
185.226.8.0/22 maxlen: 24
185.226.28.0/22 maxlen: 24
185.227.176.0/22 maxlen: 24
185.227.204.0/24 maxlen: 24
185.230.48.0/22 maxlen: 24
185.232.8.0/22 maxlen: 24
185.239.252.0/22 maxlen: 24
185.239.252.0/24 maxlen: 24
185.239.253.0/24 maxlen: 24
185.239.255.0/24 maxlen: 24
185.245.32.0/23 maxlen: 23
185.247.4.0/24 maxlen: 24
193.17.180.0/22 maxlen: 24
193.17.180.0/24 maxlen: 24
193.17.182.0/24 maxlen: 24
193.26.152.0/22 maxlen: 24
193.35.88.0/22 maxlen: 24
193.105.66.0/24 maxlen: 24
194.35.40.0/24 maxlen: 24
194.38.56.0/22 maxlen: 24
194.41.116.0/22 maxlen: 24
194.41.118.0/24 maxlen: 24
195.182.13.0/24 maxlen: 24
212.80.208.0/22 maxlen: 24
212.115.44.0/22 maxlen: 24
213.232.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 May 2024 15:56:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:5c:84:b7:96:cb:61:42:ed:1f:9e:c3:84:72:34:83:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 20 15:39:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c52b97aa7e61d879b45dddd3777b378eece042f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:cf:22:e0:ad:5a:d1:c8:8d:11:1f:46:c9:08:
ad:74:5b:be:a4:90:0c:05:2f:00:bb:e5:f5:86:61:
15:d3:8c:07:7b:22:8d:32:bb:cf:db:8f:17:ba:6e:
86:2f:13:8f:c0:53:a0:76:e4:94:15:41:d6:35:2c:
17:0e:23:ff:ee:8a:66:86:01:2a:73:dc:d6:2e:03:
2a:98:c7:e4:e0:76:5f:4f:6b:d3:ff:6a:11:4b:95:
7c:55:85:10:d9:a7:2c:c5:bc:e0:1b:c2:b2:ed:c5:
29:84:e2:b1:ed:fd:53:dc:45:dc:43:68:3c:e8:d6:
aa:8a:4b:9a:ff:5e:ba:ea:c4:c5:34:72:b8:8d:61:
a6:9c:b0:78:97:b9:2a:47:fe:af:50:7e:70:40:6b:
9d:6c:d6:d6:e3:1c:c3:8a:3c:80:7d:c1:f9:e4:21:
c7:44:ed:e9:57:d2:37:51:49:68:75:e8:41:90:09:
7c:29:ca:70:dc:2f:93:95:75:f7:aa:99:f4:18:35:
cc:a2:61:f3:28:1c:a8:74:cb:55:96:4f:74:ce:02:
10:6b:b4:39:b3:a9:eb:f7:7b:49:a0:70:26:57:a7:
a8:93:ca:e2:56:a0:e5:5a:2b:ff:a3:0d:fa:ee:f3:
51:5c:f3:75:52:18:f5:7a:7f:2e:0a:bb:1d:41:00:
9f:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:2B:97:AA:7E:61:D8:79:B4:5D:DD:D3:77:7B:37:8E:EC:E0:42:F2
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/xSuXqn5h2Hm0Xd3Td3s3juzgQvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.100.0/22
45.81.152.0/22
45.137.160.0/22
45.147.104.0/22
45.147.116.0/22
45.159.76.0/22
81.21.228.0/22
85.115.192.0/22
88.135.64.0/22
91.235.40.0/23
91.238.239.0/24
92.60.35.0/24
93.92.228.0/22
93.189.120.0/24
93.189.123.0/24
95.214.144.0/22
109.230.194.0/24
109.230.250.0/24
185.91.108.0/22
185.105.12.0/22
185.105.232.0/22
185.106.124.0/22
185.107.152.0/22
185.118.52.0/22
185.119.48.0/22
185.128.52.0/22
185.129.104.0/22
185.150.78.0/23
185.163.168.0/22
185.163.232.0/22
185.166.172.0/22
185.175.152.0/22
185.176.188.0/22
185.179.228.0-185.179.235.255
185.189.64.0/22
185.196.40.0/22
185.197.216.0/22
185.199.44.0/22
185.200.228.0/22
185.201.152.0/22
185.202.204.0/22
185.204.108.0/24
185.204.244.0/22
185.212.84.0/22
185.216.28.0/22
185.217.12.0/22
185.218.16.0/22
185.220.240.0/22
185.221.16.0/22
185.222.188.0/22
185.223.220.0/22
185.224.184.0/22
185.224.220.0/22
185.226.8.0/22
185.226.28.0/22
185.227.176.0/22
185.227.204.0/24
185.230.48.0/22
185.232.8.0/22
185.239.252.0/22
185.245.32.0/23
185.247.4.0/24
193.17.180.0/22
193.26.152.0/22
193.35.88.0/22
193.105.66.0/24
194.35.40.0/24
194.38.56.0/22
194.41.116.0/22
195.182.13.0/24
212.80.208.0/22
212.115.44.0/22
213.232.232.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:53:dd:c7:95:06:34:29:8b:89:85:98:9e:4c:ca:57:0c:86:
f0:00:6e:45:bf:58:b0:e2:7a:d2:dc:6c:02:2b:4c:85:69:5d:
d1:16:04:4a:45:b7:f0:a4:79:fd:b9:4a:cb:a7:92:7f:3b:a0:
66:11:eb:e0:a6:c8:a6:bc:a8:37:48:8a:c1:a4:a8:55:8e:20:
c7:be:ce:23:cd:6e:e3:2f:19:d8:0a:d0:21:5f:87:59:7a:a9:
b4:69:52:86:4d:65:3d:36:1e:f2:7d:32:d1:72:90:b9:f8:b7:
14:3c:62:dd:ae:df:03:d7:4d:30:a9:fd:28:f3:a0:7b:b2:55:
c9:8b:d5:67:77:c0:5c:b9:c7:a4:0e:75:d2:01:20:fd:64:a4:
2d:77:2f:e2:4d:74:90:ff:05:07:c7:74:b4:fd:e4:d8:ee:45:
a3:fb:90:43:51:90:75:1c:72:cc:71:0b:42:b1:75:ce:7b:a3:
ad:2b:5f:91:82:e2:ee:a5:a3:ab:16:d4:c4:6e:cf:14:0d:19:
7a:a9:e1:64:ee:70:8c:92:3f:9c:f0:29:d0:54:09:2c:b7:cf:
d6:bb:67:ea:3f:2e:4b:76:6e:e4:95:7b:4b:30:4a:3f:00:77:
e9:b0:27:5a:2e:76:16:37:af:a1:a7:a6:f9:a8:6b:67:8a:50:
e6:36:4b:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 18:54:45 2024 by rpki-client on console-ams.rpki-client.org