Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/cZ7CCNuikySm2Zp0phOKTt-_kvw.roa
File: cZ7CCNuikySm2Zp0phOKTt-_kvw.roa (raw, json)
Hash identifier: AShRW4am8jsOWPx1ZvwjrM8GuQsr/EJi6sM/Gm+/nSs=
Subject key identifier: 71:9E:C2:08:DB:A2:93:24:A6:D9:9A:74:A6:13:8A:4E:DF:BF:92:FC
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 018FC441920C6C012F5D0F64D7D67D0A192C
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/cZ7CCNuikySm2Zp0phOKTt-_kvw.roa
Signing time: Wed 29 May 2024 12:09:42 +0000
ROA not before: Wed 29 May 2024 12:09:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57344
IP address blocks: 5.104.168.0/23 maxlen: 23
5.104.174.0/24 maxlen: 24
77.76.8.0/24 maxlen: 24
77.76.10.0/24 maxlen: 24
77.76.11.0/24 maxlen: 24
78.128.0.0/24 maxlen: 24
78.128.8.0/24 maxlen: 24
78.128.43.0/24 maxlen: 24
78.128.60.0/24 maxlen: 24
78.128.67.0/24 maxlen: 24
78.128.72.0/24 maxlen: 24
78.128.76.0/24 maxlen: 24
78.128.79.0/24 maxlen: 24
78.128.81.0/24 maxlen: 24
78.128.92.0/24 maxlen: 24
78.128.94.0/24 maxlen: 24
78.128.98.0/24 maxlen: 24
78.128.108.0/23 maxlen: 23
78.142.1.0/24 maxlen: 24
78.142.4.0/23 maxlen: 23
78.142.17.0/24 maxlen: 24
78.142.20.0/24 maxlen: 24
78.142.24.0/24 maxlen: 24
78.142.33.0/24 maxlen: 24
78.142.34.0/24 maxlen: 24
78.142.47.0/24 maxlen: 24
78.142.60.0/24 maxlen: 24
78.142.63.0/24 maxlen: 24
79.124.0.0/24 maxlen: 24
79.124.15.0/24 maxlen: 24
79.124.20.0/23 maxlen: 23
79.124.23.0/24 maxlen: 24
79.124.24.0/22 maxlen: 24
79.124.28.0/24 maxlen: 24
79.124.50.0/24 maxlen: 24
79.124.51.0/24 maxlen: 24
79.124.73.0/24 maxlen: 24
79.124.74.0/24 maxlen: 24
79.124.76.0/24 maxlen: 24
79.124.79.0/24 maxlen: 24
79.124.82.0/24 maxlen: 24
82.118.224.0/24 maxlen: 24
82.118.236.0/24 maxlen: 24
82.118.238.0/24 maxlen: 24
82.118.244.0/24 maxlen: 24
82.118.246.0/23 maxlen: 23
91.148.131.0/24 maxlen: 24
91.148.140.0/24 maxlen: 24
91.148.160.0/24 maxlen: 24
91.148.168.0/24 maxlen: 24
94.72.145.0/24 maxlen: 24
94.72.148.0/22 maxlen: 24
94.72.158.0/24 maxlen: 24
94.72.159.0/24 maxlen: 24
130.185.224.0/24 maxlen: 24
130.185.226.0/24 maxlen: 24
130.185.229.0/24 maxlen: 24
130.185.235.0/24 maxlen: 24
130.185.236.0/24 maxlen: 24
130.185.237.0/24 maxlen: 24
130.185.248.0/24 maxlen: 24
130.185.250.0/24 maxlen: 24
178.132.80.0/24 maxlen: 24
178.132.81.0/24 maxlen: 24
178.132.82.0/23 maxlen: 24
178.132.84.0/23 maxlen: 24
185.148.160.0/22 maxlen: 22
217.174.148.0/23 maxlen: 24
217.174.150.0/24 maxlen: 24
217.174.152.0/23 maxlen: 24
217.174.154.0/24 maxlen: 24
217.174.159.0/24 maxlen: 24
2a01:8740::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 03 Jul 2024 10:12:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c4:41:92:0c:6c:01:2f:5d:0f:64:d7:d6:7d:0a:19:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: May 29 12:09:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=719ec208dba29324a6d99a74a6138a4edfbf92fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:61:15:8b:4e:fe:72:4e:2c:f3:1b:04:79:21:
0d:c7:af:cb:46:b3:72:34:13:75:c2:45:39:fd:26:
73:8b:48:00:1a:b3:d9:5c:c9:db:ce:53:45:17:14:
5e:2d:74:66:9f:31:d7:4c:10:99:0a:ba:09:57:51:
c4:11:ed:c5:23:0f:45:29:d1:30:57:7e:63:44:93:
2d:1e:8a:16:41:83:57:a9:3a:f3:37:bc:67:ef:3d:
64:70:30:11:c1:3a:11:b6:3b:1d:37:c0:c4:d8:49:
6d:6a:d9:35:6d:d3:e5:2f:b0:83:af:1b:3e:95:15:
c3:f1:1e:86:76:2c:53:d1:3e:72:b7:2f:b2:ba:f5:
b8:4f:9b:a3:d9:dc:02:f1:70:cc:18:7c:b4:7a:95:
c0:18:e4:5c:9d:eb:e3:a2:10:81:96:39:a9:5c:1b:
67:45:63:72:bb:7b:1e:c1:05:fd:f6:28:e9:09:2f:
5a:30:14:a5:7a:f0:92:76:21:0e:47:9f:23:48:97:
0e:f4:b2:91:55:98:23:28:3d:79:26:89:58:5b:2f:
45:7a:0b:03:1b:47:2c:ef:91:95:63:eb:af:e6:46:
69:34:54:61:0d:72:db:f7:c7:08:36:bb:51:2f:f4:
ac:f1:e4:0c:32:71:fb:d9:73:40:f6:1d:89:02:34:
2b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:9E:C2:08:DB:A2:93:24:A6:D9:9A:74:A6:13:8A:4E:DF:BF:92:FC
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/cZ7CCNuikySm2Zp0phOKTt-_kvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.168.0/23
5.104.174.0/24
77.76.8.0/24
77.76.10.0/23
78.128.0.0/24
78.128.8.0/24
78.128.43.0/24
78.128.60.0/24
78.128.67.0/24
78.128.72.0/24
78.128.76.0/24
78.128.79.0/24
78.128.81.0/24
78.128.92.0/24
78.128.94.0/24
78.128.98.0/24
78.128.108.0/23
78.142.1.0/24
78.142.4.0/23
78.142.17.0/24
78.142.20.0/24
78.142.24.0/24
78.142.33.0-78.142.34.255
78.142.47.0/24
78.142.60.0/24
78.142.63.0/24
79.124.0.0/24
79.124.15.0/24
79.124.20.0/23
79.124.23.0-79.124.28.255
79.124.50.0/23
79.124.73.0-79.124.74.255
79.124.76.0/24
79.124.79.0/24
79.124.82.0/24
82.118.224.0/24
82.118.236.0/24
82.118.238.0/24
82.118.244.0/24
82.118.246.0/23
91.148.131.0/24
91.148.140.0/24
91.148.160.0/24
91.148.168.0/24
94.72.145.0/24
94.72.148.0/22
94.72.158.0/23
130.185.224.0/24
130.185.226.0/24
130.185.229.0/24
130.185.235.0-130.185.237.255
130.185.248.0/24
130.185.250.0/24
178.132.80.0-178.132.85.255
185.148.160.0/22
217.174.148.0-217.174.150.255
217.174.152.0-217.174.154.255
217.174.159.0/24
IPv6:
2a01:8740::/32
Signature Algorithm: sha256WithRSAEncryption
80:93:d2:4a:8c:09:93:cd:5d:78:97:6a:01:47:87:0e:b9:67:
74:5b:cb:08:72:39:a6:cb:85:ef:97:70:3d:94:46:e0:46:e7:
b7:69:c3:28:1a:c4:2f:39:91:93:4d:91:9b:3f:20:45:53:e6:
9f:3d:00:2c:ac:22:0d:0f:0e:d1:48:79:e6:d3:76:86:e0:4f:
84:21:cf:c8:f7:75:ad:84:35:72:31:77:95:1f:93:5e:0b:19:
c9:fb:15:1b:67:02:0d:65:c1:f3:78:f7:43:c6:84:c8:de:c8:
a6:aa:bc:97:e3:23:61:c1:d6:c5:c3:d7:48:d5:46:9c:fc:a4:
a4:7f:96:7a:cf:73:3b:bb:e1:ba:0f:6b:86:6d:4e:49:5e:7d:
06:81:16:01:8e:1e:02:7f:49:69:03:03:4d:dd:5b:ad:9b:2e:
f5:af:40:5f:a1:c9:4d:fd:a9:3a:6a:99:c6:88:de:90:45:07:
79:21:af:5b:1f:96:d0:d3:0a:fc:16:68:8f:37:52:6c:59:74:
b9:8e:65:6d:74:43:83:15:a5:67:78:39:90:2f:e1:e1:03:da:
d1:fd:bf:94:87:e3:a4:6c:2c:91:00:fd:3b:75:28:08:50:f4:
8e:6c:48:0e:57:79:23:b9:d7:0a:47:00:6a:43:36:9b:aa:7d:
b6:8a:5f:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 3 11:06:34 2024 by rpki-client on console-fra.rpki-client.org