Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/ho20GRU6dG_T0Jh1HnzsKSSGizU.roa
File: ho20GRU6dG_T0Jh1HnzsKSSGizU.roa (raw, json)
Hash identifier: 1I1oRTpPHFU+43QYwD44cd9b/BfHr6whQNZodg4jBCY=
Subject key identifier: 86:8D:B4:19:15:3A:74:6F:D3:D0:98:75:1E:7C:EC:29:24:86:8B:35
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 019294E9A1ED2E9787745C009857937BBEA1
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/ho20GRU6dG_T0Jh1HnzsKSSGizU.roa
Signing time: Wed 16 Oct 2024 10:39:52 +0000
ROA not before: Wed 16 Oct 2024 10:39:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12668
IP address blocks: 5.141.234.0/23 maxlen: 23
31.192.171.0/24 maxlen: 24
31.192.180.0/24 maxlen: 24
31.192.181.0/24 maxlen: 24
31.192.187.0/24 maxlen: 24
46.229.96.0/20 maxlen: 20
87.224.249.0/24 maxlen: 24
87.224.251.0/24 maxlen: 24
90.157.5.0/24 maxlen: 24
90.157.16.0/24 maxlen: 24
90.157.24.0/24 maxlen: 24
90.157.30.0/24 maxlen: 24
90.157.34.0/24 maxlen: 24
90.157.58.0/24 maxlen: 24
90.157.64.0/23 maxlen: 23
90.157.66.0/23 maxlen: 23
90.157.68.0/23 maxlen: 23
90.157.70.0/23 maxlen: 23
90.157.78.0/23 maxlen: 23
90.157.80.0/23 maxlen: 23
90.157.82.0/23 maxlen: 23
90.157.109.0/24 maxlen: 24
90.157.110.0/24 maxlen: 24
90.157.115.0/24 maxlen: 24
92.54.69.0/24 maxlen: 24
92.54.90.0/24 maxlen: 24
92.54.117.0/24 maxlen: 24
94.31.134.0/24 maxlen: 24
94.31.135.0/24 maxlen: 24
94.31.136.0/24 maxlen: 24
94.31.147.0/24 maxlen: 24
94.31.148.0/24 maxlen: 24
94.31.151.0/24 maxlen: 24
94.31.158.0/24 maxlen: 24
94.31.159.0/24 maxlen: 24
94.31.171.0/24 maxlen: 24
94.31.176.0/24 maxlen: 24
94.31.178.0/23 maxlen: 23
94.31.184.0/23 maxlen: 23
94.31.193.0/24 maxlen: 24
94.31.194.0/24 maxlen: 24
94.31.195.0/24 maxlen: 24
94.31.196.0/24 maxlen: 24
94.31.199.0/24 maxlen: 24
94.31.202.0/24 maxlen: 24
94.31.206.0/23 maxlen: 23
94.31.207.0/24 maxlen: 24
94.31.210.0/24 maxlen: 24
94.31.212.0/24 maxlen: 24
94.31.221.0/24 maxlen: 24
94.31.224.0/24 maxlen: 24
94.31.226.0/24 maxlen: 24
94.31.229.0/24 maxlen: 24
94.31.233.0/24 maxlen: 24
94.31.234.0/24 maxlen: 24
94.31.240.0/24 maxlen: 24
94.31.241.0/24 maxlen: 24
94.31.243.0/24 maxlen: 24
94.31.246.0/23 maxlen: 23
94.31.250.0/24 maxlen: 24
94.31.253.0/24 maxlen: 24
94.31.255.0/24 maxlen: 24
94.51.232.0/21 maxlen: 21
188.17.116.0/23 maxlen: 23
188.18.112.0/24 maxlen: 24
188.18.113.0/24 maxlen: 24
188.18.116.0/24 maxlen: 24
188.73.137.0/24 maxlen: 24
188.73.139.0/24 maxlen: 24
188.73.141.0/24 maxlen: 24
188.73.142.0/24 maxlen: 24
188.73.144.0/23 maxlen: 23
188.73.144.0/24 maxlen: 24
188.73.147.0/24 maxlen: 24
188.73.151.0/24 maxlen: 24
188.73.154.0/24 maxlen: 24
188.73.156.0/24 maxlen: 24
188.73.158.0/24 maxlen: 24
188.73.168.0/24 maxlen: 24
188.73.170.0/23 maxlen: 23
188.73.174.0/23 maxlen: 23
188.73.183.0/24 maxlen: 24
188.73.185.0/24 maxlen: 24
213.142.34.0/24 maxlen: 24
213.142.35.0/24 maxlen: 24
213.142.37.0/24 maxlen: 24
213.142.40.0/24 maxlen: 24
213.142.41.0/24 maxlen: 24
213.142.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 28 Oct 2024 13:53:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:94:e9:a1:ed:2e:97:87:74:5c:00:98:57:93:7b:be:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Oct 16 10:39:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=868db419153a746fd3d098751e7cec2924868b35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:4d:83:a9:76:80:e1:5f:c9:5b:f7:fe:27:35:
e2:32:84:77:e7:13:58:5d:4c:e5:72:4a:58:3c:8e:
c5:15:18:df:e2:b7:e4:ad:5d:81:2b:1c:ee:d2:14:
cf:62:21:4e:d5:9d:c0:07:e7:28:12:73:b5:36:df:
f3:ef:7b:39:a5:69:32:8b:a9:5c:52:cc:ea:52:ea:
7a:2f:19:de:d9:24:8a:63:25:23:5b:e0:1c:b0:7d:
d0:8e:d4:11:77:69:7c:67:ad:a3:7f:cd:71:ab:81:
1f:02:a2:f8:d0:22:5a:63:05:1e:13:a1:b7:f6:f8:
60:f9:0e:4b:f3:5a:db:08:0d:15:2e:5f:34:2d:14:
5d:61:a6:ca:df:5a:a0:db:bd:39:c1:2c:e5:c3:dd:
91:7a:ec:b9:3d:f3:77:85:33:8d:ce:3e:3e:fc:d4:
d6:3a:37:88:f8:01:54:d4:91:b7:c9:b0:aa:18:fa:
34:4a:dd:d7:73:e4:1f:c4:24:7d:e7:82:84:f2:8b:
7a:d3:33:4b:31:29:46:f5:6f:1d:9f:08:a3:65:90:
6e:3e:e5:8f:5c:31:02:b7:6b:2a:6c:12:87:82:8c:
85:0e:c5:1d:90:d9:cb:20:4f:23:f8:ce:c9:49:a0:
82:f6:07:73:78:eb:f4:4f:9a:8f:5a:ab:1f:90:ff:
90:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:8D:B4:19:15:3A:74:6F:D3:D0:98:75:1E:7C:EC:29:24:86:8B:35
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/ho20GRU6dG_T0Jh1HnzsKSSGizU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.141.234.0/23
31.192.171.0/24
31.192.180.0/23
31.192.187.0/24
46.229.96.0/20
87.224.249.0/24
87.224.251.0/24
90.157.5.0/24
90.157.16.0/24
90.157.24.0/24
90.157.30.0/24
90.157.34.0/24
90.157.58.0/24
90.157.64.0/21
90.157.78.0-90.157.83.255
90.157.109.0-90.157.110.255
90.157.115.0/24
92.54.69.0/24
92.54.90.0/24
92.54.117.0/24
94.31.134.0-94.31.136.255
94.31.147.0-94.31.148.255
94.31.151.0/24
94.31.158.0/23
94.31.171.0/24
94.31.176.0/24
94.31.178.0/23
94.31.184.0/23
94.31.193.0-94.31.196.255
94.31.199.0/24
94.31.202.0/24
94.31.206.0/23
94.31.210.0/24
94.31.212.0/24
94.31.221.0/24
94.31.224.0/24
94.31.226.0/24
94.31.229.0/24
94.31.233.0-94.31.234.255
94.31.240.0/23
94.31.243.0/24
94.31.246.0/23
94.31.250.0/24
94.31.253.0/24
94.31.255.0/24
94.51.232.0/21
188.17.116.0/23
188.18.112.0/23
188.18.116.0/24
188.73.137.0/24
188.73.139.0/24
188.73.141.0-188.73.142.255
188.73.144.0/23
188.73.147.0/24
188.73.151.0/24
188.73.154.0/24
188.73.156.0/24
188.73.158.0/24
188.73.168.0/24
188.73.170.0/23
188.73.174.0/23
188.73.183.0/24
188.73.185.0/24
213.142.34.0/23
213.142.37.0/24
213.142.40.0/23
213.142.57.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:ea:9d:6a:ac:0d:bf:68:68:da:88:cb:c8:fb:6d:29:a4:26:
e5:41:9a:3c:cb:5a:da:b6:40:c8:6a:07:33:58:23:ff:1e:90:
b4:ef:01:b9:13:81:bc:4b:6c:69:2d:78:98:5e:ef:df:c0:51:
7c:f0:93:0a:9a:ab:83:a3:44:d6:b5:8c:18:34:d6:75:57:dc:
0c:48:dc:02:55:c5:ac:77:40:d7:f3:a9:7c:ba:a3:2b:10:c0:
13:f2:68:c7:0f:76:0e:61:57:61:ab:25:1f:32:34:78:40:a9:
50:54:1d:b1:b5:6c:34:c1:5a:80:b4:ba:92:08:2f:f6:67:2b:
b0:d2:87:35:12:db:ce:f8:14:a0:63:05:9c:3b:de:03:1d:5f:
51:ae:86:63:c5:d9:e1:b4:c6:0a:09:c8:53:15:5b:7b:e8:20:
ad:98:f9:07:c6:7b:b2:56:ae:67:a9:30:aa:32:28:b0:78:e2:
aa:26:ed:08:42:c4:63:26:12:1a:cb:8b:24:c2:08:d3:35:a6:
15:f9:f7:ea:be:b2:20:71:e6:6a:c4:c7:23:e8:d0:3d:9b:54:
de:ac:fe:2d:b5:6e:82:7e:c1:0b:37:3d:ec:9e:30:77:9c:68:
86:7a:6f:84:50:1f:06:f2:c9:1b:f3:37:d0:9e:a6:07:bd:18:
b4:c1:8e:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 10:31:00 2025 by rpki-client