Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/hCP_Znkj19Hs_pIEUeyt6zysE2o.roa
File: hCP_Znkj19Hs_pIEUeyt6zysE2o.roa (raw, json)
Hash identifier: a1Ic/CC39RJkCkfP0mt8+KqTKZ8fIAog5Cb/RXYePTI=
Subject key identifier: 84:23:FF:66:79:23:D7:D1:EC:FE:92:04:51:EC:AD:EB:3C:AC:13:6A
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 018F7F2B28B1F7BAC1178D3A5A35E9F0C34D
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/hCP_Znkj19Hs_pIEUeyt6zysE2o.roa
Signing time: Thu 16 May 2024 02:11:25 +0000
ROA not before: Thu 16 May 2024 02:11:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12668
IP address blocks: 5.141.234.0/23 maxlen: 23
31.192.171.0/24 maxlen: 24
31.192.180.0/24 maxlen: 24
46.229.96.0/20 maxlen: 20
90.157.5.0/24 maxlen: 24
90.157.16.0/24 maxlen: 24
90.157.30.0/24 maxlen: 24
90.157.34.0/24 maxlen: 24
90.157.58.0/24 maxlen: 24
90.157.68.0/23 maxlen: 23
90.157.78.0/23 maxlen: 23
90.157.80.0/23 maxlen: 23
90.157.109.0/24 maxlen: 24
90.157.115.0/24 maxlen: 24
92.54.69.0/24 maxlen: 24
92.54.90.0/24 maxlen: 24
92.54.117.0/24 maxlen: 24
94.31.134.0/24 maxlen: 24
94.31.135.0/24 maxlen: 24
94.31.136.0/24 maxlen: 24
94.31.147.0/24 maxlen: 24
94.31.158.0/24 maxlen: 24
94.31.159.0/24 maxlen: 24
94.31.176.0/24 maxlen: 24
94.31.193.0/24 maxlen: 24
94.31.194.0/24 maxlen: 24
94.31.195.0/24 maxlen: 24
94.31.196.0/24 maxlen: 24
94.31.202.0/24 maxlen: 24
94.31.206.0/23 maxlen: 23
94.31.207.0/24 maxlen: 24
94.31.210.0/24 maxlen: 24
94.31.212.0/24 maxlen: 24
94.31.221.0/24 maxlen: 24
94.31.229.0/24 maxlen: 24
94.31.240.0/24 maxlen: 24
94.31.241.0/24 maxlen: 24
94.31.243.0/24 maxlen: 24
94.31.246.0/23 maxlen: 23
94.31.250.0/24 maxlen: 24
94.31.253.0/24 maxlen: 24
94.31.255.0/24 maxlen: 24
94.51.232.0/21 maxlen: 21
188.17.116.0/23 maxlen: 23
188.18.112.0/24 maxlen: 24
188.18.113.0/24 maxlen: 24
188.18.116.0/24 maxlen: 24
188.73.139.0/24 maxlen: 24
188.73.141.0/24 maxlen: 24
188.73.144.0/23 maxlen: 23
188.73.144.0/24 maxlen: 24
188.73.147.0/24 maxlen: 24
188.73.151.0/24 maxlen: 24
188.73.154.0/24 maxlen: 24
188.73.158.0/24 maxlen: 24
188.73.168.0/24 maxlen: 24
188.73.170.0/23 maxlen: 23
188.73.183.0/24 maxlen: 24
213.142.34.0/24 maxlen: 24
213.142.40.0/24 maxlen: 24
213.142.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 May 2024 10:31:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7f:2b:28:b1:f7:ba:c1:17:8d:3a:5a:35:e9:f0:c3:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: May 16 02:11:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8423ff667923d7d1ecfe920451ecadeb3cac136a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8d:a1:04:cd:ef:85:31:ae:08:e5:b6:1f:dd:
a1:6b:55:11:3c:d2:46:ca:ae:4b:fb:b9:78:66:64:
b4:1e:f3:8a:7a:24:48:f0:7d:df:55:e4:26:0a:7f:
60:8e:92:73:d1:ae:c5:a7:64:f0:2c:0d:de:ab:dc:
76:98:ea:e3:70:b3:ac:1d:0e:cb:f1:a3:59:e7:3f:
5a:0d:79:1f:af:8d:80:95:87:93:62:43:0a:a2:e0:
80:15:0c:d0:a2:c5:6a:b1:81:3c:b4:c8:9c:72:4c:
15:89:11:1f:a1:56:6d:25:f7:0e:ab:9a:8d:83:b5:
b8:f4:37:8f:23:4e:f8:69:f3:e7:05:e6:63:c3:22:
dd:26:b1:e0:3e:c1:30:bc:de:f0:10:8b:9b:52:a9:
c0:02:90:0e:df:da:d9:2a:e8:78:31:e4:d1:c7:71:
a7:25:8f:28:8f:29:73:b4:55:d4:e3:4b:e2:39:dd:
ac:5a:78:9f:cc:eb:73:3f:a8:f9:ea:e6:7e:3f:83:
e6:4a:d7:40:55:b5:37:66:ca:8c:90:3d:96:6a:4d:
24:8c:81:02:1e:b2:0b:98:db:33:4e:ae:dd:6b:68:
95:39:0b:50:24:6b:cb:c6:81:8f:c5:90:7a:32:dc:
bd:a5:a7:f5:9c:89:4c:f5:8b:9c:25:d1:19:50:27:
1d:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:23:FF:66:79:23:D7:D1:EC:FE:92:04:51:EC:AD:EB:3C:AC:13:6A
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/hCP_Znkj19Hs_pIEUeyt6zysE2o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.141.234.0/23
31.192.171.0/24
31.192.180.0/24
46.229.96.0/20
90.157.5.0/24
90.157.16.0/24
90.157.30.0/24
90.157.34.0/24
90.157.58.0/24
90.157.68.0/23
90.157.78.0-90.157.81.255
90.157.109.0/24
90.157.115.0/24
92.54.69.0/24
92.54.90.0/24
92.54.117.0/24
94.31.134.0-94.31.136.255
94.31.147.0/24
94.31.158.0/23
94.31.176.0/24
94.31.193.0-94.31.196.255
94.31.202.0/24
94.31.206.0/23
94.31.210.0/24
94.31.212.0/24
94.31.221.0/24
94.31.229.0/24
94.31.240.0/23
94.31.243.0/24
94.31.246.0/23
94.31.250.0/24
94.31.253.0/24
94.31.255.0/24
94.51.232.0/21
188.17.116.0/23
188.18.112.0/23
188.18.116.0/24
188.73.139.0/24
188.73.141.0/24
188.73.144.0/23
188.73.147.0/24
188.73.151.0/24
188.73.154.0/24
188.73.158.0/24
188.73.168.0/24
188.73.170.0/23
188.73.183.0/24
213.142.34.0/24
213.142.40.0/24
213.142.57.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:ab:24:40:f0:c3:ce:1a:dc:26:50:74:23:5a:c4:e6:cc:28:
1d:cb:1c:05:b8:04:b2:c5:a7:f4:8c:91:a8:d0:f6:2c:36:34:
b4:cd:99:01:85:8a:d1:0d:3b:ef:0a:2e:25:db:b7:ec:e4:e5:
e4:46:0c:ea:9d:c1:22:44:d5:71:63:7d:7e:72:d2:e4:81:39:
cc:dd:5c:dd:a2:60:69:55:59:da:b1:d4:65:24:51:13:c6:6c:
ff:7a:57:60:3f:92:14:0b:2b:e5:0f:fd:0b:81:04:25:de:0b:
9b:7d:f6:27:34:10:26:4f:3f:60:79:53:ee:07:6f:bd:a8:4a:
ef:29:01:e7:6e:3c:8f:ef:7d:7f:1c:e3:d7:bf:38:1a:36:e2:
a0:43:39:6d:94:3c:83:b1:6b:59:b9:fb:2d:cd:5b:5d:30:cc:
55:a3:f2:20:c4:b3:83:58:af:c4:0a:74:52:14:de:00:d1:e2:
3f:ac:e3:5a:9b:45:2f:83:52:7c:89:2b:e2:1f:3c:00:31:04:
24:96:33:c2:16:15:c8:07:a2:d2:a7:33:4c:fe:25:ba:37:92:
65:c7:92:88:e8:77:7c:c5:bb:a5:63:d1:d0:8c:67:a1:b3:1d:
58:57:e2:a5:68:c1:a5:2a:e8:1d:27:aa:17:e3:4d:03:e8:99:
27:80:04:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:26 2024 by rpki-client on console-ams.rpki-client.org