Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/J3UfvRoTX5G6krweJlLrBtSACho.roa
File: J3UfvRoTX5G6krweJlLrBtSACho.roa (raw, json)
Hash identifier: U2ZEmG3GP/sEXJx5xqDQMC3IEUxUFRxFRMpVph5YHyc=
Subject key identifier: 27:75:1F:BD:1A:13:5F:91:BA:92:BC:1E:26:52:EB:06:D4:80:0A:1A
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 0191FFCD959A3BCE63FE93C46C3AA3ECCCD5
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/J3UfvRoTX5G6krweJlLrBtSACho.roa
Signing time: Tue 17 Sep 2024 11:45:48 +0000
ROA not before: Tue 17 Sep 2024 11:45:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31083
IP address blocks: 5.104.175.0/24 maxlen: 24
77.76.14.0/24 maxlen: 24
78.128.1.0/24 maxlen: 24
78.128.6.0/24 maxlen: 24
78.128.7.0/24 maxlen: 24
78.128.8.0/24 maxlen: 24
78.128.9.0/24 maxlen: 24
78.128.42.0/24 maxlen: 24
78.128.43.0/24 maxlen: 24
78.128.60.0/24 maxlen: 24
78.128.62.0/24 maxlen: 24
78.128.63.0/24 maxlen: 24
78.128.76.0/24 maxlen: 24
78.128.77.0/24 maxlen: 24
78.128.78.0/24 maxlen: 24
78.128.80.0/24 maxlen: 24
78.128.81.0/24 maxlen: 24
78.128.118.0/24 maxlen: 24
78.128.126.0/24 maxlen: 24
78.142.6.0/24 maxlen: 24
78.142.32.0/24 maxlen: 24
78.142.47.0/24 maxlen: 24
78.142.51.0/24 maxlen: 24
78.142.56.0/24 maxlen: 24
78.142.57.0/24 maxlen: 24
78.142.58.0/24 maxlen: 24
78.142.59.0/24 maxlen: 24
78.142.62.0/24 maxlen: 24
78.142.63.0/24 maxlen: 24
79.124.4.0/24 maxlen: 24
79.124.5.0/24 maxlen: 24
79.124.6.0/24 maxlen: 24
79.124.14.0/24 maxlen: 24
79.124.16.0/24 maxlen: 24
79.124.17.0/24 maxlen: 24
79.124.22.0/24 maxlen: 24
79.124.29.0/24 maxlen: 24
79.124.31.0/24 maxlen: 24
79.124.44.0/24 maxlen: 24
79.124.52.0/24 maxlen: 24
79.124.63.0/24 maxlen: 24
79.124.64.0/24 maxlen: 24
79.124.65.0/24 maxlen: 24
79.124.66.0/24 maxlen: 24
79.124.67.0/24 maxlen: 24
79.124.75.0/24 maxlen: 24
79.124.76.0/24 maxlen: 24
79.124.84.0/24 maxlen: 24
79.124.90.0/24 maxlen: 24
82.118.229.0/24 maxlen: 24
82.118.243.0/24 maxlen: 24
91.148.148.0/24 maxlen: 24
91.148.168.0/24 maxlen: 24
94.72.136.0/22 maxlen: 24
130.185.225.0/24 maxlen: 24
130.185.232.0/24 maxlen: 24
178.132.86.0/24 maxlen: 24
178.132.87.0/24 maxlen: 24
185.197.152.0/22 maxlen: 24
185.232.156.0/23 maxlen: 24
217.174.146.0/23 maxlen: 24
217.174.148.0/23 maxlen: 24
217.174.151.0/24 maxlen: 24
217.174.152.0/23 maxlen: 24
217.174.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Sep 2024 09:51:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ff:cd:95:9a:3b:ce:63:fe:93:c4:6c:3a:a3:ec:cc:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Sep 17 11:45:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=27751fbd1a135f91ba92bc1e2652eb06d4800a1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5c:db:40:e9:c0:d4:fc:3c:32:a9:cd:3e:80:
b7:ca:0b:55:bd:52:02:fe:7c:e3:c9:e1:6b:b9:53:
b0:be:a7:42:34:ca:5a:c5:ff:8b:91:ad:3a:40:a3:
cb:85:c1:94:d6:20:58:d2:53:9d:8e:e1:26:63:6f:
98:05:e0:d4:b8:5e:42:7a:01:34:83:bf:8d:9b:a2:
34:8c:62:79:46:0c:5e:95:3a:cf:6c:74:23:5a:44:
73:3a:8d:99:0c:cc:98:57:53:e7:04:2a:c6:a9:d7:
9a:f1:59:65:15:be:0f:a7:db:68:8b:99:3b:37:68:
a3:75:1d:c9:18:37:f6:43:f8:30:0d:ac:6e:80:00:
b7:bc:e9:05:5a:2b:92:b4:ce:f4:8b:2b:1e:16:2b:
c6:fa:13:e9:38:de:fb:ab:16:3d:be:fd:19:7d:ec:
1b:cd:f6:85:63:10:9a:36:1c:26:f3:79:ef:13:07:
12:b0:b5:9a:2f:01:f2:3f:44:11:df:26:49:ba:bb:
e8:f9:0d:01:b5:87:6b:02:2a:8c:d6:4e:b9:bf:5d:
a4:c6:f0:5b:b7:bd:99:d7:86:14:a7:4e:c5:92:bd:
eb:9b:b8:56:fc:b3:88:9c:cd:4a:dc:61:b2:dd:5c:
58:39:8b:bb:b8:54:04:df:f3:b1:93:75:89:ba:61:
76:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:75:1F:BD:1A:13:5F:91:BA:92:BC:1E:26:52:EB:06:D4:80:0A:1A
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/J3UfvRoTX5G6krweJlLrBtSACho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.175.0/24
77.76.14.0/24
78.128.1.0/24
78.128.6.0-78.128.9.255
78.128.42.0/23
78.128.60.0/24
78.128.62.0/23
78.128.76.0-78.128.78.255
78.128.80.0/23
78.128.118.0/24
78.128.126.0/24
78.142.6.0/24
78.142.32.0/24
78.142.47.0/24
78.142.51.0/24
78.142.56.0/22
78.142.62.0/23
79.124.4.0-79.124.6.255
79.124.14.0/24
79.124.16.0/23
79.124.22.0/24
79.124.29.0/24
79.124.31.0/24
79.124.44.0/24
79.124.52.0/24
79.124.63.0-79.124.67.255
79.124.75.0-79.124.76.255
79.124.84.0/24
79.124.90.0/24
82.118.229.0/24
82.118.243.0/24
91.148.148.0/24
91.148.168.0/24
94.72.136.0/22
130.185.225.0/24
130.185.232.0/24
178.132.86.0/23
185.197.152.0/22
185.232.156.0/23
217.174.146.0-217.174.149.255
217.174.151.0-217.174.153.255
217.174.155.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:16:1a:d6:a6:27:ab:d4:ec:6d:93:57:24:ba:90:ca:47:30:
eb:80:20:96:3e:09:c5:d7:55:3e:71:80:92:98:5d:3e:e2:c2:
50:24:d7:5c:1c:ec:28:e2:a5:bb:51:1e:49:f9:d2:94:ac:13:
07:95:ce:66:fc:42:f2:a2:da:2a:c2:6f:13:6b:cb:6d:30:6e:
37:4c:bb:9e:de:ac:36:fe:7b:be:b6:c8:c4:72:a1:df:a6:1f:
41:2d:f4:fd:0b:6d:dc:b1:e0:93:54:9c:cb:be:e3:0f:71:ec:
ea:2e:82:ab:32:42:28:21:e9:09:6d:f5:f9:7c:74:9e:db:8d:
c0:2e:bd:0e:ee:15:66:2c:04:53:a8:d5:96:f1:94:c6:fc:84:
c3:34:62:5e:be:50:c9:6c:76:76:99:2c:d5:56:8b:ce:e7:bd:
02:9c:39:c4:e7:23:c5:da:df:72:0d:43:59:a1:32:03:f0:5f:
b7:6a:b4:69:df:0c:d5:ba:b7:6f:02:bc:43:4d:ff:b6:11:92:
f8:14:79:7b:8a:b4:b2:43:4d:45:9b:dc:04:49:44:ae:c1:c6:
ca:9f:6e:c2:3a:ce:e2:3f:30:a4:92:85:28:e2:6f:1d:11:f9:
d9:e8:eb:44:36:3d:d6:91:37:a4:f9:cc:e8:86:60:1d:d9:48:
89:c9:45:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 12:51:52 2024 by rpki-client on console-fra.rpki-client.org