Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/5442ce-48bc-4164-9350-9240d9f75ae6/1/OJ9UCLlj1TOLpKRuNipYm_au9Nc.roa
File: OJ9UCLlj1TOLpKRuNipYm_au9Nc.roa (raw, json)
Hash identifier: Odsgtw4ucKillNsNgWp98gzDvlXizs3scSwUR5ETE1U=
Subject key identifier: 38:9F:54:08:B9:63:D5:33:8B:A4:A4:6E:36:2A:58:9B:F6:AE:F4:D7
Certificate issuer: /CN=4283696716dbcc360b9a62ef7d84b4d28f958bdd
Certificate serial: 018E754C671E9B808687EF235F4B7A4983B4
Authority key identifier: 42:83:69:67:16:DB:CC:36:0B:9A:62:EF:7D:84:B4:D2:8F:95:8B:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QoNpZxbbzDYLmmLvfYS00o-Vi90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/5442ce-48bc-4164-9350-9240d9f75ae6/1/OJ9UCLlj1TOLpKRuNipYm_au9Nc.roa
Signing time: Mon 25 Mar 2024 11:08:45 +0000
ROA not before: Mon 25 Mar 2024 11:08:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29256
IP address blocks: 5.0.0.0/19 maxlen: 19
5.0.32.0/19 maxlen: 19
5.0.64.0/18 maxlen: 18
5.0.128.0/19 maxlen: 19
5.0.160.0/19 maxlen: 19
5.0.160.0/21 maxlen: 21
5.0.168.0/21 maxlen: 21
5.0.176.0/21 maxlen: 21
5.0.184.0/21 maxlen: 21
5.0.192.0/18 maxlen: 18
5.155.0.0/19 maxlen: 19
5.155.32.0/19 maxlen: 19
5.155.64.0/19 maxlen: 19
5.155.96.0/19 maxlen: 19
5.155.128.0/19 maxlen: 19
5.155.160.0/19 maxlen: 19
5.155.192.0/19 maxlen: 19
5.155.224.0/19 maxlen: 19
31.9.48.0/22 maxlen: 22
31.9.56.0/21 maxlen: 21
31.9.64.0/20 maxlen: 20
31.9.80.0/20 maxlen: 20
31.9.96.0/19 maxlen: 19
31.9.128.0/20 maxlen: 20
31.9.144.0/20 maxlen: 20
31.9.160.0/19 maxlen: 19
31.9.192.0/19 maxlen: 19
31.9.224.0/19 maxlen: 19
46.40.128.0/18 maxlen: 18
80.70.120.0/21 maxlen: 21
82.100.128.0/19 maxlen: 19
82.137.192.0/20 maxlen: 20
82.137.208.0/20 maxlen: 20
82.137.224.0/20 maxlen: 20
82.137.240.0/24 maxlen: 24
82.137.242.0/24 maxlen: 24
82.137.243.0/24 maxlen: 24
82.137.244.0/23 maxlen: 23
82.137.246.0/23 maxlen: 23
82.137.248.0/24 maxlen: 24
82.137.249.0/24 maxlen: 24
82.137.250.0/24 maxlen: 24
82.137.251.0/24 maxlen: 24
82.137.252.0/24 maxlen: 24
82.137.253.0/24 maxlen: 24
82.137.254.0/24 maxlen: 24
82.137.255.0/24 maxlen: 24
91.144.0.0/20 maxlen: 20
91.144.16.0/20 maxlen: 20
91.144.32.0/20 maxlen: 20
94.47.0.0/19 maxlen: 19
94.47.0.0/21 maxlen: 21
94.47.8.0/21 maxlen: 21
94.47.16.0/21 maxlen: 21
94.47.24.0/21 maxlen: 21
94.47.32.0/19 maxlen: 19
94.47.32.0/21 maxlen: 21
94.47.40.0/21 maxlen: 21
94.47.48.0/21 maxlen: 21
94.47.56.0/21 maxlen: 21
94.47.64.0/19 maxlen: 19
94.47.96.0/19 maxlen: 19
94.47.128.0/20 maxlen: 20
94.47.144.0/20 maxlen: 20
94.47.160.0/19 maxlen: 19
94.47.160.0/21 maxlen: 21
94.47.168.0/21 maxlen: 21
94.47.176.0/21 maxlen: 21
94.47.184.0/21 maxlen: 21
94.47.192.0/18 maxlen: 18
178.253.64.0/19 maxlen: 19
178.253.96.0/23 maxlen: 23
178.253.98.0/24 maxlen: 24
178.253.100.0/23 maxlen: 23
178.253.102.0/24 maxlen: 24
178.253.103.0/24 maxlen: 24
178.253.104.0/22 maxlen: 22
178.253.108.0/23 maxlen: 23
178.253.110.0/23 maxlen: 23
185.92.88.0/22 maxlen: 22
185.99.100.0/22 maxlen: 22
185.109.212.0/22 maxlen: 22
188.133.0.0/20 maxlen: 20
188.133.16.0/20 maxlen: 20
188.133.32.0/19 maxlen: 19
188.133.64.0/19 maxlen: 19
188.133.96.0/19 maxlen: 19
193.124.10.0/23 maxlen: 23
193.124.12.0/23 maxlen: 23
193.124.26.0/23 maxlen: 23
193.124.28.0/23 maxlen: 23
193.124.38.0/23 maxlen: 23
193.124.52.0/23 maxlen: 23
193.124.62.0/23 maxlen: 23
193.124.68.0/23 maxlen: 23
193.124.86.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 28 Apr 2024 06:54:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:75:4c:67:1e:9b:80:86:87:ef:23:5f:4b:7a:49:83:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4283696716dbcc360b9a62ef7d84b4d28f958bdd
Validity
Not Before: Mar 25 11:08:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=389f5408b963d5338ba4a46e362a589bf6aef4d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:53:6f:00:71:a0:1b:e2:41:76:a5:04:5d:51:
66:a5:e9:19:0e:1d:9c:e9:ca:cc:34:5c:c5:d8:d5:
93:f3:e1:55:6c:03:2d:c7:d6:0c:35:52:dd:7a:d5:
46:e3:f9:12:40:99:47:ea:00:f1:79:a1:da:db:3b:
de:83:1b:4b:77:92:b4:15:ae:35:d1:55:08:03:e3:
7e:c0:cf:eb:5b:01:80:30:de:a2:2f:1f:ab:ea:b0:
1c:4a:62:3e:0a:13:d7:d3:c1:48:85:9e:9d:40:56:
a8:79:a1:ae:28:a9:47:d0:80:a6:90:48:fd:c2:a3:
6f:84:1e:70:9e:70:54:a3:e8:dc:87:dc:28:42:21:
e8:22:c0:18:39:bf:fb:68:93:25:b9:cd:2a:cb:98:
7e:45:52:4b:b7:c5:fc:03:57:fe:e8:eb:43:ca:5b:
2b:a8:a0:5d:a9:77:bf:06:c4:d1:18:03:42:ab:4f:
d2:ee:96:5b:4e:0f:72:b0:0a:d6:6c:39:f5:a4:bd:
38:fa:b9:ec:6b:eb:ea:67:a4:95:52:7e:34:13:4f:
c8:29:7d:ee:71:b8:e0:6e:5f:c0:6f:80:c0:e4:7a:
50:1d:56:e4:48:11:bb:e3:70:1b:84:e3:df:eb:89:
e4:43:0a:ba:70:30:ea:90:d7:fe:e2:6d:fb:45:40:
fe:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:9F:54:08:B9:63:D5:33:8B:A4:A4:6E:36:2A:58:9B:F6:AE:F4:D7
X509v3 Authority Key Identifier:
keyid:42:83:69:67:16:DB:CC:36:0B:9A:62:EF:7D:84:B4:D2:8F:95:8B:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QoNpZxbbzDYLmmLvfYS00o-Vi90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/5442ce-48bc-4164-9350-9240d9f75ae6/1/OJ9UCLlj1TOLpKRuNipYm_au9Nc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/5442ce-48bc-4164-9350-9240d9f75ae6/1/QoNpZxbbzDYLmmLvfYS00o-Vi90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.0.0.0/16
5.155.0.0/16
31.9.48.0/22
31.9.56.0-31.9.255.255
46.40.128.0/18
80.70.120.0/21
82.100.128.0/19
82.137.192.0-82.137.240.255
82.137.242.0-82.137.255.255
91.144.0.0-91.144.47.255
94.47.0.0/16
178.253.64.0-178.253.98.255
178.253.100.0-178.253.111.255
185.92.88.0/22
185.99.100.0/22
185.109.212.0/22
188.133.0.0/17
193.124.10.0-193.124.13.255
193.124.26.0-193.124.29.255
193.124.38.0/23
193.124.52.0/23
193.124.62.0/23
193.124.68.0/23
193.124.86.0/23
Signature Algorithm: sha256WithRSAEncryption
51:31:e4:f7:8f:bd:ba:a5:b4:2c:76:4d:2e:51:bf:e5:43:2c:
a8:7a:79:ba:b6:90:91:d8:0c:06:d5:bb:95:42:9e:54:9c:b2:
21:c4:ed:04:05:a8:ed:76:63:64:58:6c:fd:b2:00:b8:c6:1a:
db:b4:aa:a9:a1:0b:19:92:cf:8a:13:a0:42:14:53:cd:ef:5f:
d4:cc:20:97:88:bb:f1:f5:0b:17:fe:94:71:59:5f:80:5d:ee:
37:ba:c5:a3:3d:f4:07:bf:d2:27:f3:e8:fc:a3:78:42:05:38:
ec:a0:27:1f:cf:72:e7:ea:3a:ba:e8:1b:eb:3e:39:e7:5a:12:
36:07:2c:12:d8:0c:56:57:51:df:eb:a6:ce:a9:02:29:12:a7:
c9:4f:ea:a6:b1:66:29:f3:b8:8c:33:1b:97:94:92:6a:7b:31:
59:6f:bd:c3:2d:7e:2d:2f:19:b7:5b:9e:e0:c3:f9:81:04:79:
60:7d:b5:87:2a:9c:2d:0b:55:8b:9c:63:58:28:2d:cd:c4:dc:
f1:3c:11:8c:fc:73:7f:3f:22:2e:60:14:97:78:18:a4:85:09:
75:ea:80:48:68:24:3c:2b:11:b6:56:c5:58:95:06:8c:ef:60:
dd:d8:ed:02:d9:b4:1d:c5:b8:9f:eb:76:7c:99:3b:5e:c5:6e:
32:70:a5:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 10:51:50 2025 by rpki-client