Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/KO0_mKAshsBTVnEF5bAmK1aJFSA.roa
File: KO0_mKAshsBTVnEF5bAmK1aJFSA.roa (raw, json)
Hash identifier: 9vPL9rSfoInlKFPCo1iKDlZx+K+V20s4X80RjGygr1c=
Subject key identifier: 28:ED:3F:98:A0:2C:86:C0:53:56:71:05:E5:B0:26:2B:56:89:15:20
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 01914F59A15F719907B83780A4C77665061D
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/KO0_mKAshsBTVnEF5bAmK1aJFSA.roa
Signing time: Wed 14 Aug 2024 05:25:59 +0000
ROA not before: Wed 14 Aug 2024 05:25:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12668
IP address blocks: 5.141.234.0/23 maxlen: 23
31.192.171.0/24 maxlen: 24
31.192.180.0/24 maxlen: 24
31.192.181.0/24 maxlen: 24
31.192.187.0/24 maxlen: 24
46.229.96.0/20 maxlen: 20
90.157.5.0/24 maxlen: 24
90.157.16.0/24 maxlen: 24
90.157.24.0/24 maxlen: 24
90.157.30.0/24 maxlen: 24
90.157.34.0/24 maxlen: 24
90.157.58.0/24 maxlen: 24
90.157.68.0/23 maxlen: 23
90.157.70.0/23 maxlen: 23
90.157.78.0/23 maxlen: 23
90.157.80.0/23 maxlen: 23
90.157.82.0/23 maxlen: 23
90.157.109.0/24 maxlen: 24
90.157.110.0/24 maxlen: 24
90.157.115.0/24 maxlen: 24
92.54.69.0/24 maxlen: 24
92.54.90.0/24 maxlen: 24
92.54.117.0/24 maxlen: 24
94.31.134.0/24 maxlen: 24
94.31.135.0/24 maxlen: 24
94.31.136.0/24 maxlen: 24
94.31.147.0/24 maxlen: 24
94.31.158.0/24 maxlen: 24
94.31.159.0/24 maxlen: 24
94.31.176.0/24 maxlen: 24
94.31.178.0/23 maxlen: 23
94.31.184.0/23 maxlen: 23
94.31.193.0/24 maxlen: 24
94.31.194.0/24 maxlen: 24
94.31.195.0/24 maxlen: 24
94.31.196.0/24 maxlen: 24
94.31.202.0/24 maxlen: 24
94.31.206.0/23 maxlen: 23
94.31.207.0/24 maxlen: 24
94.31.210.0/24 maxlen: 24
94.31.212.0/24 maxlen: 24
94.31.221.0/24 maxlen: 24
94.31.226.0/24 maxlen: 24
94.31.229.0/24 maxlen: 24
94.31.233.0/24 maxlen: 24
94.31.240.0/24 maxlen: 24
94.31.241.0/24 maxlen: 24
94.31.243.0/24 maxlen: 24
94.31.246.0/23 maxlen: 23
94.31.250.0/24 maxlen: 24
94.31.253.0/24 maxlen: 24
94.31.255.0/24 maxlen: 24
94.51.232.0/21 maxlen: 21
188.17.116.0/23 maxlen: 23
188.18.112.0/24 maxlen: 24
188.18.113.0/24 maxlen: 24
188.18.116.0/24 maxlen: 24
188.73.137.0/24 maxlen: 24
188.73.139.0/24 maxlen: 24
188.73.141.0/24 maxlen: 24
188.73.144.0/23 maxlen: 23
188.73.144.0/24 maxlen: 24
188.73.147.0/24 maxlen: 24
188.73.151.0/24 maxlen: 24
188.73.154.0/24 maxlen: 24
188.73.156.0/24 maxlen: 24
188.73.158.0/24 maxlen: 24
188.73.168.0/24 maxlen: 24
188.73.170.0/23 maxlen: 23
188.73.183.0/24 maxlen: 24
188.73.185.0/24 maxlen: 24
213.142.34.0/24 maxlen: 24
213.142.35.0/24 maxlen: 24
213.142.40.0/24 maxlen: 24
213.142.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Sep 2024 08:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4f:59:a1:5f:71:99:07:b8:37:80:a4:c7:76:65:06:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Aug 14 05:25:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=28ed3f98a02c86c053567105e5b0262b56891520
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:27:32:93:b0:82:2b:9e:8f:5e:2a:38:e0:02:
ee:1a:3c:f4:47:5f:9e:0f:27:fa:3e:c5:19:16:8c:
29:b2:aa:6f:89:57:8a:1e:5c:3e:9e:be:86:b9:cc:
00:77:d5:c1:38:e9:e5:74:bf:44:cb:ba:d0:c4:3e:
1f:24:00:07:c7:e9:be:b6:31:68:ba:41:b8:46:8b:
92:31:81:66:9a:bd:b7:db:be:5b:2a:7c:1a:96:e1:
e1:52:f2:7c:28:19:ac:6f:f9:1b:db:ef:03:4c:08:
b7:e6:d3:34:7d:1f:30:d9:a7:91:b1:4a:08:dc:07:
3d:44:fa:8c:78:f6:2d:30:a8:8a:88:18:01:aa:15:
d2:06:8a:54:4a:c2:f2:a7:d9:b6:73:9a:e9:73:7c:
01:2d:55:4f:87:73:92:a3:33:c0:de:a5:86:64:3d:
12:57:27:27:42:39:14:24:5a:5e:1b:61:ea:20:30:
71:b4:fd:af:cc:12:22:4f:5a:af:e9:28:c1:13:17:
cc:f2:78:52:89:e7:d7:ea:e6:e5:7d:8c:94:7c:40:
b7:ec:7a:3f:dd:6c:fe:63:bf:57:45:53:e1:49:bd:
4f:a7:3d:67:13:e9:92:e9:8f:72:0a:20:f2:a8:14:
46:e6:a0:bc:dd:76:98:35:b0:9d:fc:5a:68:88:80:
a6:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:ED:3F:98:A0:2C:86:C0:53:56:71:05:E5:B0:26:2B:56:89:15:20
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/KO0_mKAshsBTVnEF5bAmK1aJFSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.141.234.0/23
31.192.171.0/24
31.192.180.0/23
31.192.187.0/24
46.229.96.0/20
90.157.5.0/24
90.157.16.0/24
90.157.24.0/24
90.157.30.0/24
90.157.34.0/24
90.157.58.0/24
90.157.68.0/22
90.157.78.0-90.157.83.255
90.157.109.0-90.157.110.255
90.157.115.0/24
92.54.69.0/24
92.54.90.0/24
92.54.117.0/24
94.31.134.0-94.31.136.255
94.31.147.0/24
94.31.158.0/23
94.31.176.0/24
94.31.178.0/23
94.31.184.0/23
94.31.193.0-94.31.196.255
94.31.202.0/24
94.31.206.0/23
94.31.210.0/24
94.31.212.0/24
94.31.221.0/24
94.31.226.0/24
94.31.229.0/24
94.31.233.0/24
94.31.240.0/23
94.31.243.0/24
94.31.246.0/23
94.31.250.0/24
94.31.253.0/24
94.31.255.0/24
94.51.232.0/21
188.17.116.0/23
188.18.112.0/23
188.18.116.0/24
188.73.137.0/24
188.73.139.0/24
188.73.141.0/24
188.73.144.0/23
188.73.147.0/24
188.73.151.0/24
188.73.154.0/24
188.73.156.0/24
188.73.158.0/24
188.73.168.0/24
188.73.170.0/23
188.73.183.0/24
188.73.185.0/24
213.142.34.0/23
213.142.40.0/24
213.142.57.0/24
Signature Algorithm: sha256WithRSAEncryption
79:7b:10:26:11:3c:99:62:a6:2a:97:59:00:18:a7:52:82:a9:
23:50:b3:1c:9f:62:25:96:7a:2f:19:bb:1e:3a:cf:6f:f7:db:
f4:fc:ac:66:30:f9:b8:36:b7:26:6a:68:38:73:50:97:0b:04:
2b:6b:59:e5:c7:d7:96:11:6a:cc:10:d9:89:75:46:a4:42:40:
19:fb:e8:92:b6:4c:b5:6d:16:29:23:e3:fb:f8:f5:ac:88:42:
01:70:9b:be:37:42:35:1b:ee:b6:13:0d:2c:c7:f6:11:7f:9e:
ac:b4:e6:3f:5d:7c:bc:ee:08:03:c2:35:63:d3:18:e1:69:2b:
9d:69:c3:f9:be:cc:bd:c4:50:20:bd:16:a8:d6:49:fa:8b:ca:
c2:30:df:6a:a8:e5:28:c3:93:44:98:19:c9:08:f8:3b:77:26:
5f:96:20:35:79:90:df:0b:7d:9b:f7:88:cc:d8:ec:29:e9:12:
7a:a7:ec:d5:54:51:85:ee:c3:4b:90:a4:49:1e:49:6a:b1:a8:
5d:af:18:d0:4f:46:47:d3:5a:de:2e:bd:14:9f:e8:ae:2f:8a:
17:38:f1:5e:a3:2b:dd:a0:80:28:15:d4:a0:a4:44:c0:2f:f5:
9f:93:57:63:7e:bc:61:35:5d:53:e5:9d:52:66:69:a7:ce:5b:
08:8b:d3:50
-----BEGIN CERTIFICATE-----
MIIGgzCCBWugAwIBAgISAZFPWaFfcZkHuDeApMd2ZQYdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlZTUzMWI5YWMyOTkwZDY5YThhNWMzMDIzZTcyZTZkODQx
ZTZjMDkwHhcNMjQwODE0MDUyNTU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOGVkM2Y5OGEwMmM4NmMwNTM1NjcxMDVlNWIwMjYyYjU2ODkxNTIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtycyk7CCK56PXio44ALuGjz0R1+e
Dyf6PsUZFowpsqpviVeKHlw+nr6GucwAd9XBOOnldL9Ey7rQxD4fJAAHx+m+tjFo
ukG4RouSMYFmmr23275bKnwaluHhUvJ8KBmsb/kb2+8DTAi35tM0fR8w2aeRsUoI
3Ac9RPqMePYtMKiKiBgBqhXSBopUSsLyp9m2c5rpc3wBLVVPh3OSozPA3qWGZD0S
VycnQjkUJFpeG2HqIDBxtP2vzBIiT1qv6SjBExfM8nhSiefX6ublfYyUfEC37Ho/
3Wz+Y79XRVPhSb1Ppz1nE+mS6Y9yCiDyqBRG5qC83XaYNbCd/FpoiICmQwIDAQAB
o4IDjzCCA4swHQYDVR0OBBYEFCjtP5igLIbAU1ZxBeWwJitWiRUgMB8GA1UdIwQY
MBaAFF7lMbmsKZDWmopcMCPnLm2EHmwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQt
NWE4NmMyNzU3YzFlLzEvS08wX21LQXNoc0JUVm5FRjViQW1LMWFKRlNBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQtNWE4NmMyNzU3YzFl
LzEvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBowYIKwYBBQUHAQcBAf8EggGSMIIBjjCCAYoEAgABMIIB
ggMEAQWN6gMEAB/AqwMEAR/AtAMEAB/AuwMEBC7lYAMEAFqdBQMEAFqdEAMEAFqd
GAMEAFqdHgMEAFqdIgMEAFqdOgMEAlqdRDAMAwQBWp1OAwQCWp1QMAwDBABanW0D
BABanW4DBABanXMDBABcNkUDBABcNloDBABcNnUwDAMEAV4fhgMEAF4fiAMEAF4f
kwMEAV4fngMEAF4fsAMEAV4fsgMEAV4fuDAMAwQAXh/BAwQAXh/EAwQAXh/KAwQB
Xh/OAwQAXh/SAwQAXh/UAwQAXh/dAwQAXh/iAwQAXh/lAwQAXh/pAwQBXh/wAwQA
Xh/zAwQBXh/2AwQAXh/6AwQAXh/9AwQAXh//AwQDXjPoAwQBvBF0AwQBvBJwAwQA
vBJ0AwQAvEmJAwQAvEmLAwQAvEmNAwQBvEmQAwQAvEmTAwQAvEmXAwQAvEmaAwQA
vEmcAwQAvEmeAwQAvEmoAwQBvEmqAwQAvEm3AwQAvEm5AwQB1Y4iAwQA1Y4oAwQA
1Y45MA0GCSqGSIb3DQEBCwUAA4IBAQB5exAmETyZYqYql1kAGKdSgqkjULMcn2Il
lnovGbseOs9v99v0/KxmMPm4Nrcmamg4c1CXCwQra1nlx9eWEWrMENmJdUakQkAZ
++iStky1bRYpI+P7+PWsiEIBcJu+N0I1G+62Ew0sx/YRf56stOY/XXy87ggDwjVj
0xjhaSudacP5vsy9xFAgvRao1kn6i8rCMN9qqOUow5NEmBnJCPg7dyZfliA1eZDf
C32b94jM2Owp6RJ6p+zVVFGF7sNLkKRJHklqsahdrxjQT0ZH01reLr0Un+iuL4oX
OPFeoyvdoIAoFdSgpETAL/Wfk1djfrxhNV1T5Z1SZmmnzlsIi9NQ
-----END CERTIFICATE-----
Generated at Thu Apr 17 10:30:57 2025 by rpki-client