Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/ppB47ckxJ674JO21aUUztuoIPqw.roa
File: ppB47ckxJ674JO21aUUztuoIPqw.roa (raw, json)
Hash identifier: 8i0ScZgTN0oTw7SGojQVAYJMU8+6VqwaEaO2t32zytg=
Subject key identifier: A6:90:78:ED:C9:31:27:AE:F8:24:ED:B5:69:45:33:B6:EA:08:3E:AC
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 018E9A29A8C5225DC338CB73123060F34D4B
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/ppB47ckxJ674JO21aUUztuoIPqw.roa
Signing time: Mon 01 Apr 2024 14:56:45 +0000
ROA not before: Mon 01 Apr 2024 14:56:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47690
IP address blocks: 104.222.176.0/24 maxlen: 24
104.222.177.0/24 maxlen: 24
104.222.178.0/24 maxlen: 24
104.222.179.0/24 maxlen: 24
104.222.180.0/24 maxlen: 24
104.222.181.0/24 maxlen: 24
104.222.182.0/24 maxlen: 24
104.222.183.0/24 maxlen: 24
104.222.189.0/24 maxlen: 24
104.233.10.0/24 maxlen: 24
104.233.11.0/24 maxlen: 24
104.233.27.0/24 maxlen: 24
104.233.28.0/24 maxlen: 24
104.233.29.0/24 maxlen: 24
104.233.30.0/24 maxlen: 24
104.233.31.0/24 maxlen: 24
104.233.32.0/24 maxlen: 24
104.233.33.0/24 maxlen: 24
104.233.60.0/24 maxlen: 24
104.238.6.0/24 maxlen: 24
104.238.11.0/24 maxlen: 24
104.238.12.0/24 maxlen: 24
104.238.13.0/24 maxlen: 24
104.238.25.0/24 maxlen: 24
104.238.26.0/24 maxlen: 24
104.238.27.0/24 maxlen: 24
104.238.28.0/24 maxlen: 24
104.238.29.0/24 maxlen: 24
104.238.30.0/24 maxlen: 24
104.238.31.0/24 maxlen: 24
104.239.8.0/24 maxlen: 24
104.239.12.0/24 maxlen: 24
104.239.14.0/24 maxlen: 24
104.239.15.0/24 maxlen: 24
104.239.29.0/24 maxlen: 24
104.239.45.0/24 maxlen: 24
104.239.46.0/24 maxlen: 24
104.239.47.0/24 maxlen: 24
104.239.48.0/24 maxlen: 24
104.239.49.0/24 maxlen: 24
104.239.50.0/24 maxlen: 24
104.239.51.0/24 maxlen: 24
104.239.54.0/24 maxlen: 24
104.239.55.0/24 maxlen: 24
104.239.56.0/24 maxlen: 24
104.239.57.0/24 maxlen: 24
104.239.58.0/24 maxlen: 24
104.239.59.0/24 maxlen: 24
104.239.60.0/24 maxlen: 24
104.239.61.0/24 maxlen: 24
104.239.62.0/24 maxlen: 24
104.239.63.0/24 maxlen: 24
104.239.64.0/24 maxlen: 24
104.239.65.0/24 maxlen: 24
104.239.66.0/24 maxlen: 24
104.239.67.0/24 maxlen: 24
104.239.72.0/24 maxlen: 24
104.239.74.0/24 maxlen: 24
104.239.79.0/24 maxlen: 24
104.239.83.0/24 maxlen: 24
104.239.87.0/24 maxlen: 24
104.239.89.0/24 maxlen: 24
104.239.99.0/24 maxlen: 24
104.239.100.0/24 maxlen: 24
104.239.102.0/24 maxlen: 24
104.239.103.0/24 maxlen: 24
104.239.109.0/24 maxlen: 24
104.239.110.0/24 maxlen: 24
104.239.127.0/24 maxlen: 24
104.249.8.0/24 maxlen: 24
104.249.9.0/24 maxlen: 24
104.249.10.0/24 maxlen: 24
104.249.11.0/24 maxlen: 24
104.249.12.0/24 maxlen: 24
104.249.13.0/24 maxlen: 24
104.249.14.0/24 maxlen: 24
104.249.15.0/24 maxlen: 24
104.249.16.0/24 maxlen: 24
104.249.17.0/24 maxlen: 24
104.249.18.0/24 maxlen: 24
104.249.19.0/24 maxlen: 24
104.249.20.0/24 maxlen: 24
104.249.21.0/24 maxlen: 24
104.249.22.0/24 maxlen: 24
104.249.23.0/24 maxlen: 24
104.249.42.0/24 maxlen: 24
104.249.43.0/24 maxlen: 24
104.249.44.0/24 maxlen: 24
104.249.45.0/24 maxlen: 24
104.249.46.0/24 maxlen: 24
104.249.47.0/24 maxlen: 24
104.249.48.0/24 maxlen: 24
104.249.49.0/24 maxlen: 24
104.249.50.0/24 maxlen: 24
104.249.51.0/24 maxlen: 24
104.249.52.0/24 maxlen: 24
104.249.53.0/24 maxlen: 24
104.249.54.0/24 maxlen: 24
216.173.77.0/24 maxlen: 24
216.173.90.0/24 maxlen: 24
216.173.91.0/24 maxlen: 24
216.173.92.0/24 maxlen: 24
216.173.93.0/24 maxlen: 24
216.173.94.0/24 maxlen: 24
216.173.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Apr 2024 15:11:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:9a:29:a8:c5:22:5d:c3:38:cb:73:12:30:60:f3:4d:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Apr 1 14:56:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a69078edc93127aef824edb5694533b6ea083eac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:52:dc:04:34:d1:6e:05:32:de:b6:f6:0f:44:
b4:d2:01:00:4b:db:28:9f:78:40:47:03:0a:9c:52:
4f:43:98:b9:4d:7d:4c:c6:ec:43:4a:45:09:2a:5b:
75:9b:ef:41:bb:19:57:c9:1b:a8:b7:99:a8:73:8d:
75:10:cf:6c:a4:b4:c5:69:29:cb:79:c4:ee:68:74:
a5:a8:4c:a4:d7:fb:cc:96:67:2e:12:18:5a:0c:c4:
0a:76:9e:d8:24:66:e3:45:ad:ad:33:07:1a:d0:f9:
1c:c9:b4:6b:23:8e:96:3a:a8:b2:72:8d:c1:f0:4d:
14:c6:81:b1:72:57:5b:df:16:0c:36:b7:fb:62:95:
b5:d9:aa:95:e8:3c:25:a3:fd:47:e5:a4:97:dc:41:
79:5b:c7:d8:b7:6b:50:19:14:9a:6c:19:81:8f:34:
d7:c8:95:fe:12:cd:59:36:58:5b:e8:4b:dc:ed:fb:
27:e5:31:75:76:19:0d:10:8d:35:2a:4a:e8:38:97:
29:ed:49:fe:60:f4:7d:e9:f9:c4:48:9d:dd:7d:38:
18:69:c8:06:29:41:18:0a:ba:be:d9:b7:7b:67:f6:
68:b2:ca:21:f0:e2:73:89:82:b2:d5:af:96:1c:9b:
6d:7e:02:26:6a:98:68:9c:92:24:00:78:e0:4d:55:
09:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:90:78:ED:C9:31:27:AE:F8:24:ED:B5:69:45:33:B6:EA:08:3E:AC
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/ppB47ckxJ674JO21aUUztuoIPqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.222.176.0/21
104.222.189.0/24
104.233.10.0/23
104.233.27.0-104.233.33.255
104.233.60.0/24
104.238.6.0/24
104.238.11.0-104.238.13.255
104.238.25.0-104.238.31.255
104.239.8.0/24
104.239.12.0/24
104.239.14.0/23
104.239.29.0/24
104.239.45.0-104.239.51.255
104.239.54.0-104.239.67.255
104.239.72.0/24
104.239.74.0/24
104.239.79.0/24
104.239.83.0/24
104.239.87.0/24
104.239.89.0/24
104.239.99.0-104.239.100.255
104.239.102.0/23
104.239.109.0-104.239.110.255
104.239.127.0/24
104.249.8.0-104.249.23.255
104.249.42.0-104.249.54.255
216.173.77.0/24
216.173.90.0-216.173.95.255
Signature Algorithm: sha256WithRSAEncryption
2c:32:f5:e4:e6:6e:b0:4e:03:e7:39:ab:b4:9d:71:d2:53:92:
ee:a6:00:55:5b:74:ce:7e:ef:24:e0:db:3f:52:69:ee:cc:90:
b4:36:0b:b7:9a:ea:7a:6c:61:5f:99:94:e1:f5:bb:f0:7a:e3:
08:41:78:c0:59:d4:c7:bb:8f:4c:eb:92:a0:c2:d5:d5:61:3c:
23:d7:dc:8f:96:d6:75:d6:ae:ea:ed:d9:06:db:89:5f:2f:1f:
72:c0:0d:69:11:b3:15:cc:29:c1:30:fc:a3:e1:57:dd:b6:af:
0a:a3:11:7f:bd:5b:56:69:8e:36:78:95:fc:48:95:d6:8d:75:
f9:ca:e8:8f:89:57:37:ca:e9:c9:85:c6:48:1d:c9:22:be:99:
ab:a2:a6:b5:db:70:eb:a5:dc:86:eb:1e:94:36:35:c4:84:e3:
d6:0e:8c:84:b0:a3:f5:63:f2:cf:a5:cc:bf:ef:4a:43:fc:60:
af:64:3a:e9:b0:7a:00:34:41:35:bd:ed:68:4d:3f:59:1c:d3:
16:c3:91:02:0f:2c:cc:2a:95:08:7d:4a:dc:81:24:12:46:00:
c1:e6:aa:01:b8:25:c3:52:80:36:ec:9f:6a:d1:b9:f7:d6:3f:
75:e0:ab:33:24:58:cf:4e:e7:41:49:31:00:a5:f1:d3:c3:4f:
41:ce:7c:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 1 20:28:33 2024 by rpki-client on console.sobornost.net