Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/5442ce-48bc-4164-9350-9240d9f75ae6/1/JaudxIcwgPzTOu66gGuJGcCOXzw.roa
File: JaudxIcwgPzTOu66gGuJGcCOXzw.roa (raw, json)
Hash identifier: Sf/bZURl7Vsi5IfZ0WzTLZifR+MS0d6ZWGC2xdjwaN4=
Subject key identifier: 25:AB:9D:C4:87:30:80:FC:D3:3A:EE:BA:80:6B:89:19:C0:8E:5F:3C
Certificate issuer: /CN=4283696716dbcc360b9a62ef7d84b4d28f958bdd
Certificate serial: 018E754A9261BFD114B71E060206E18B1D09
Authority key identifier: 42:83:69:67:16:DB:CC:36:0B:9A:62:EF:7D:84:B4:D2:8F:95:8B:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QoNpZxbbzDYLmmLvfYS00o-Vi90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/5442ce-48bc-4164-9350-9240d9f75ae6/1/JaudxIcwgPzTOu66gGuJGcCOXzw.roa
Signing time: Mon 25 Mar 2024 11:06:45 +0000
ROA not before: Mon 25 Mar 2024 11:06:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29256
IP address blocks: 5.0.0.0/19 maxlen: 19
5.0.32.0/19 maxlen: 19
5.0.64.0/18 maxlen: 18
5.0.128.0/19 maxlen: 19
5.0.160.0/19 maxlen: 19
5.0.160.0/21 maxlen: 21
5.0.168.0/21 maxlen: 21
5.0.176.0/21 maxlen: 21
5.0.192.0/18 maxlen: 18
5.155.0.0/19 maxlen: 19
5.155.32.0/19 maxlen: 19
5.155.64.0/19 maxlen: 19
5.155.96.0/19 maxlen: 19
5.155.128.0/19 maxlen: 19
5.155.160.0/19 maxlen: 19
5.155.192.0/19 maxlen: 19
5.155.224.0/19 maxlen: 19
31.9.48.0/22 maxlen: 22
31.9.56.0/21 maxlen: 21
31.9.64.0/20 maxlen: 20
31.9.80.0/20 maxlen: 20
31.9.96.0/19 maxlen: 19
31.9.128.0/20 maxlen: 20
31.9.144.0/20 maxlen: 20
31.9.160.0/19 maxlen: 19
31.9.192.0/19 maxlen: 19
31.9.224.0/19 maxlen: 19
46.40.128.0/18 maxlen: 18
80.70.120.0/21 maxlen: 21
82.100.128.0/19 maxlen: 19
82.137.192.0/20 maxlen: 20
82.137.208.0/20 maxlen: 20
82.137.224.0/20 maxlen: 20
82.137.240.0/24 maxlen: 24
82.137.242.0/24 maxlen: 24
82.137.243.0/24 maxlen: 24
82.137.244.0/23 maxlen: 23
82.137.246.0/23 maxlen: 23
82.137.248.0/24 maxlen: 24
82.137.249.0/24 maxlen: 24
82.137.250.0/24 maxlen: 24
82.137.251.0/24 maxlen: 24
82.137.252.0/24 maxlen: 24
82.137.253.0/24 maxlen: 24
82.137.254.0/24 maxlen: 24
82.137.255.0/24 maxlen: 24
91.144.0.0/20 maxlen: 20
91.144.16.0/20 maxlen: 20
91.144.32.0/20 maxlen: 20
94.47.0.0/19 maxlen: 19
94.47.0.0/21 maxlen: 21
94.47.8.0/21 maxlen: 21
94.47.16.0/21 maxlen: 21
94.47.24.0/21 maxlen: 21
94.47.32.0/19 maxlen: 19
94.47.32.0/21 maxlen: 21
94.47.40.0/21 maxlen: 21
94.47.48.0/21 maxlen: 21
94.47.56.0/21 maxlen: 21
94.47.64.0/19 maxlen: 19
94.47.96.0/19 maxlen: 19
94.47.128.0/20 maxlen: 20
94.47.144.0/20 maxlen: 20
94.47.160.0/19 maxlen: 19
94.47.160.0/21 maxlen: 21
94.47.168.0/21 maxlen: 21
94.47.176.0/21 maxlen: 21
94.47.184.0/21 maxlen: 21
94.47.192.0/18 maxlen: 18
178.253.64.0/19 maxlen: 19
178.253.96.0/23 maxlen: 23
178.253.98.0/24 maxlen: 24
178.253.100.0/23 maxlen: 23
178.253.102.0/24 maxlen: 24
178.253.103.0/24 maxlen: 24
178.253.104.0/22 maxlen: 22
178.253.108.0/23 maxlen: 23
178.253.110.0/23 maxlen: 23
185.92.88.0/22 maxlen: 22
185.99.100.0/22 maxlen: 22
185.109.212.0/22 maxlen: 22
188.133.0.0/20 maxlen: 20
188.133.16.0/20 maxlen: 20
188.133.32.0/19 maxlen: 19
188.133.64.0/19 maxlen: 19
188.133.96.0/19 maxlen: 19
193.124.10.0/23 maxlen: 23
193.124.12.0/23 maxlen: 23
193.124.26.0/23 maxlen: 23
193.124.28.0/23 maxlen: 23
193.124.38.0/23 maxlen: 23
193.124.52.0/23 maxlen: 23
193.124.62.0/23 maxlen: 23
193.124.68.0/23 maxlen: 23
193.124.86.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 25 Mar 2024 11:08:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:75:4a:92:61:bf:d1:14:b7:1e:06:02:06:e1:8b:1d:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4283696716dbcc360b9a62ef7d84b4d28f958bdd
Validity
Not Before: Mar 25 11:06:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=25ab9dc4873080fcd33aeeba806b8919c08e5f3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0c:09:74:b6:27:17:61:fa:7c:e9:60:a6:d7:
6f:d2:2b:4a:97:af:5c:26:d1:15:19:5a:90:79:6c:
ea:c1:2f:2d:39:6b:90:d1:01:d5:d8:b9:b0:29:00:
10:b1:2e:fb:0e:02:6e:8b:a9:ad:63:95:2b:6a:78:
7a:29:0e:1d:3c:e6:5e:ca:cb:5e:c6:50:62:e4:ae:
60:7d:ca:fc:68:20:01:b8:0b:8a:e0:8c:77:66:db:
6d:46:29:2d:06:8f:1d:4e:a9:36:05:8f:31:f2:3d:
3d:df:3b:7c:f1:14:25:37:64:54:26:4d:d0:8e:94:
0a:16:2c:ed:43:64:03:82:60:9a:1d:48:42:4e:1f:
3b:cd:b6:63:1e:31:a1:9c:cc:89:ee:4e:98:a1:18:
c4:3b:c5:7b:f8:ac:43:6b:6c:a2:49:18:4f:6e:6a:
5a:6f:c3:eb:fa:be:6b:9d:d4:5b:c9:6a:42:8e:5c:
16:01:11:d1:e8:70:8b:80:eb:06:23:78:55:ec:0b:
02:e5:0c:d8:95:69:4e:80:84:02:01:05:4a:10:0c:
69:e0:f2:11:be:e9:41:14:9c:df:da:0d:b5:15:0c:
fc:4c:94:4f:7b:50:39:4b:31:5e:9e:a4:de:66:b1:
ff:32:fa:63:e3:7c:68:9d:b8:ee:cc:47:d3:76:a5:
f3:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:AB:9D:C4:87:30:80:FC:D3:3A:EE:BA:80:6B:89:19:C0:8E:5F:3C
X509v3 Authority Key Identifier:
keyid:42:83:69:67:16:DB:CC:36:0B:9A:62:EF:7D:84:B4:D2:8F:95:8B:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QoNpZxbbzDYLmmLvfYS00o-Vi90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/5442ce-48bc-4164-9350-9240d9f75ae6/1/JaudxIcwgPzTOu66gGuJGcCOXzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/5442ce-48bc-4164-9350-9240d9f75ae6/1/QoNpZxbbzDYLmmLvfYS00o-Vi90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.0.0.0/16
5.155.0.0/16
31.9.48.0/22
31.9.56.0-31.9.255.255
46.40.128.0/18
80.70.120.0/21
82.100.128.0/19
82.137.192.0-82.137.240.255
82.137.242.0-82.137.255.255
91.144.0.0-91.144.47.255
94.47.0.0/16
178.253.64.0-178.253.98.255
178.253.100.0-178.253.111.255
185.92.88.0/22
185.99.100.0/22
185.109.212.0/22
188.133.0.0/17
193.124.10.0-193.124.13.255
193.124.26.0-193.124.29.255
193.124.38.0/23
193.124.52.0/23
193.124.62.0/23
193.124.68.0/23
193.124.86.0/23
Signature Algorithm: sha256WithRSAEncryption
21:91:e2:46:80:34:3c:3c:b1:86:ea:b2:19:aa:1e:5f:43:aa:
ed:34:b2:fa:04:60:b8:b8:7a:50:57:3a:c6:49:b0:6f:91:9d:
1d:55:3d:32:94:61:6c:48:00:8e:12:bb:e8:30:66:8d:02:e7:
75:ed:ab:96:d1:05:32:75:fe:9a:95:32:80:d8:47:ca:04:41:
bd:c3:b9:be:95:a8:c7:cd:50:98:13:77:d1:e8:45:49:0d:83:
53:84:c9:59:c9:d2:d3:aa:81:e6:0c:03:98:1c:f3:a3:7b:55:
a5:5d:53:55:ca:83:85:e0:b3:6a:ad:7f:b0:8b:d4:cb:55:8b:
ca:ea:33:f6:b2:9e:c1:c1:22:75:03:6e:b9:c7:c8:9a:1c:43:
98:e7:cf:60:6c:55:9f:14:23:43:f4:19:49:4c:02:7d:3a:60:
85:df:26:81:c1:71:a2:95:97:7c:5c:5f:17:99:a8:11:75:04:
89:9a:f9:c0:6f:cd:8a:5c:1d:d3:ac:a6:98:73:17:f4:2d:83:
37:df:29:dd:7c:c4:86:c2:af:8d:76:de:9c:f0:b8:d0:cf:a9:
59:68:7b:54:7e:94:90:3d:68:4a:18:0f:90:14:e3:a5:ae:36:
db:c9:dc:55:a5:72:0c:68:3e:0a:d1:03:70:d5:3d:30:3b:e8:
41:b5:1d:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 25 17:36:31 2024 by rpki-client on console.sobornost.net