Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/a9352e-9a3a-49aa-ad77-7be6eb6bce87/1/SXftGJHS2Z7klsXStcabz45CVQY.roa
File: SXftGJHS2Z7klsXStcabz45CVQY.roa (raw, json)
Hash identifier: jFT3ZaH5FzXnM0UfWoqCEaFx1Mhtq6XtAxgPMIRl2UU=
Subject key identifier: 49:77:ED:18:91:D2:D9:9E:E4:96:C5:D2:B5:C6:9B:CF:8E:42:55:06
Certificate issuer: /CN=9e95a119d9c1a5d6e3f3e21f6fa863d87a2e4b0d
Certificate serial: 0190C0BCC27025752260ECD22C24FEDEDB3B
Authority key identifier: 9E:95:A1:19:D9:C1:A5:D6:E3:F3:E2:1F:6F:A8:63:D8:7A:2E:4B:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWhGdnBpdbj8-Ifb6hj2HouSw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/a9352e-9a3a-49aa-ad77-7be6eb6bce87/1/SXftGJHS2Z7klsXStcabz45CVQY.roa
Signing time: Wed 17 Jul 2024 12:48:34 +0000
ROA not before: Wed 17 Jul 2024 12:48:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56478
IP address blocks: 31.14.248.0/22 maxlen: 22
37.156.72.0/22 maxlen: 22
88.98.192.0/18 maxlen: 18
88.98.200.0/22 maxlen: 22
88.98.204.0/22 maxlen: 22
88.98.216.0/23 maxlen: 23
88.98.218.0/23 maxlen: 23
88.98.240.0/20 maxlen: 20
88.98.240.0/22 maxlen: 22
89.32.120.0/22 maxlen: 22
89.34.164.0/22 maxlen: 22
89.35.196.0/22 maxlen: 22
89.36.64.0/21 maxlen: 21
89.39.136.0/21 maxlen: 21
89.44.40.0/22 maxlen: 22
93.115.192.0/22 maxlen: 22
137.220.64.0/18 maxlen: 18
137.220.68.0/22 maxlen: 22
137.220.72.0/21 maxlen: 21
137.220.80.0/22 maxlen: 22
137.220.84.0/22 maxlen: 22
137.220.88.0/22 maxlen: 22
137.220.92.0/22 maxlen: 22
137.220.96.0/22 maxlen: 22
137.220.100.0/22 maxlen: 22
137.220.104.0/22 maxlen: 22
137.220.108.0/22 maxlen: 22
137.220.112.0/23 maxlen: 23
137.220.114.0/23 maxlen: 23
137.220.116.0/23 maxlen: 23
137.220.118.0/23 maxlen: 23
137.220.120.0/23 maxlen: 23
137.220.122.0/23 maxlen: 23
137.220.124.0/22 maxlen: 22
140.228.32.0/19 maxlen: 19
140.228.40.0/22 maxlen: 22
140.228.44.0/22 maxlen: 22
140.228.48.0/22 maxlen: 22
140.228.52.0/22 maxlen: 22
140.228.56.0/22 maxlen: 22
140.228.64.0/19 maxlen: 19
140.228.88.0/22 maxlen: 22
141.0.144.0/21 maxlen: 21
141.0.152.0/21 maxlen: 21
185.24.120.0/22 maxlen: 22
188.172.144.0/20 maxlen: 20
188.210.208.0/21 maxlen: 21
188.210.208.0/22 maxlen: 22
188.211.160.0/22 maxlen: 22
188.213.136.0/22 maxlen: 22
188.214.8.0/21 maxlen: 21
209.35.64.0/19 maxlen: 19
209.35.72.0/22 maxlen: 22
209.35.76.0/22 maxlen: 22
209.35.80.0/21 maxlen: 21
209.35.80.0/22 maxlen: 22
209.35.84.0/22 maxlen: 22
209.35.88.0/21 maxlen: 21
209.35.88.0/22 maxlen: 22
209.35.92.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 17 Jul 2024 13:45:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c0:bc:c2:70:25:75:22:60:ec:d2:2c:24:fe:de:db:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a119d9c1a5d6e3f3e21f6fa863d87a2e4b0d
Validity
Not Before: Jul 17 12:48:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4977ed1891d2d99ee496c5d2b5c69bcf8e425506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a8:b4:a7:9a:75:6f:5f:c4:2e:69:8b:94:8b:
0e:c9:36:9a:20:ea:79:2a:a6:4a:b9:f5:63:30:b4:
2c:91:3f:e2:24:44:ed:da:c2:a2:a3:58:8f:c1:2e:
cf:02:6e:83:f3:f5:31:66:8d:9a:fd:16:7d:43:51:
3d:9a:e8:38:4a:49:c7:58:9a:83:ab:32:b2:d0:af:
ab:4a:1b:f4:d4:4b:3c:2a:4c:ec:ae:aa:53:4e:bb:
b8:9a:18:25:c6:e1:2f:6b:0a:06:a5:a8:09:a2:c7:
c0:aa:34:fb:3d:b6:19:f0:7e:38:f5:91:ff:8c:8e:
32:68:e1:6b:2a:f7:26:07:55:e1:0e:60:e5:57:54:
4f:46:ff:0b:ca:48:c9:01:ba:1e:ea:86:b0:8f:8b:
a4:57:d9:7b:8d:5d:a5:7e:ee:07:40:15:34:8e:b3:
18:c0:ae:11:c4:ea:af:6a:61:55:27:c2:e7:65:6f:
87:c6:ab:31:dc:c3:04:68:41:04:15:c2:d2:9c:3b:
01:e7:16:8b:cf:c0:fd:24:89:30:bf:10:99:05:13:
21:66:99:1f:d1:46:66:d4:38:6e:dd:a0:89:13:08:
25:41:75:d9:24:9c:90:2d:e0:4b:1b:55:a5:ca:6d:
1e:d4:66:e6:76:08:b1:ed:5b:41:ed:fc:7f:e9:0a:
cb:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:77:ED:18:91:D2:D9:9E:E4:96:C5:D2:B5:C6:9B:CF:8E:42:55:06
X509v3 Authority Key Identifier:
keyid:9E:95:A1:19:D9:C1:A5:D6:E3:F3:E2:1F:6F:A8:63:D8:7A:2E:4B:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWhGdnBpdbj8-Ifb6hj2HouSw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/a9352e-9a3a-49aa-ad77-7be6eb6bce87/1/SXftGJHS2Z7klsXStcabz45CVQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/a9352e-9a3a-49aa-ad77-7be6eb6bce87/1/npWhGdnBpdbj8-Ifb6hj2HouSw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.248.0/22
37.156.72.0/22
88.98.192.0/18
89.32.120.0/22
89.34.164.0/22
89.35.196.0/22
89.36.64.0/21
89.39.136.0/21
89.44.40.0/22
93.115.192.0/22
137.220.64.0/18
140.228.32.0-140.228.95.255
141.0.144.0/20
185.24.120.0/22
188.172.144.0/20
188.210.208.0/21
188.211.160.0/22
188.213.136.0/22
188.214.8.0/21
209.35.64.0/19
Signature Algorithm: sha256WithRSAEncryption
61:60:e3:23:04:5e:d0:96:8a:77:db:8e:d8:02:c6:4e:c3:7c:
48:2e:4e:cf:6f:75:d4:91:4a:c6:46:fe:b7:0a:4a:22:44:0e:
4c:0b:73:64:b1:52:08:f7:65:7d:ce:37:9a:2b:1d:45:35:ae:
01:fc:fc:29:54:18:ee:98:74:fc:78:5d:9a:dc:56:a9:8d:aa:
83:6a:48:32:4f:a6:92:7f:16:a9:29:a5:7a:a1:25:c7:de:40:
73:40:f2:7e:f1:d3:7c:e3:bd:87:e1:dd:6e:61:56:43:c6:07:
cc:4e:f1:ea:58:be:59:46:00:83:20:fb:42:c0:fc:9a:dd:53:
57:04:d5:63:72:5b:1c:83:e1:e4:d4:2f:4e:4f:af:83:44:cc:
2a:67:73:32:eb:42:56:41:78:c8:32:e6:a4:d6:fe:17:be:9e:
12:79:cd:5c:70:dd:af:af:e2:c3:d7:4b:58:98:2f:50:d1:89:
47:d0:3a:ce:5f:08:db:87:86:38:a9:2f:8b:78:5f:d9:0a:5a:
4d:d3:97:04:3c:ca:d4:74:a1:ba:fc:87:fc:bd:51:58:2e:26:
e9:e0:3d:42:8b:4c:84:35:5e:48:f6:4e:af:16:27:e3:7d:c5:
9f:07:92:58:f5:f9:6d:d3:ba:ba:20:14:75:9d:ca:af:ab:68:
fa:99:53:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 01:11:59 2025 by rpki-client