Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/M8XqHwLgBMhPSxu-oCUztEaiukg.roa
File: M8XqHwLgBMhPSxu-oCUztEaiukg.roa (raw, json)
Hash identifier: qjshDeZokCZUgP3tlxrcGz0FxxDmWmpTMeXk+kZgg5c=
Subject key identifier: 33:C5:EA:1F:02:E0:04:C8:4F:4B:1B:BE:A0:25:33:B4:46:A2:BA:48
Certificate issuer: /CN=1319f052bc9e7284888074390c9d0bc127606692
Certificate serial: 0192B5085C8EDBBC6D964935145AAE35EF8E
Authority key identifier: 13:19:F0:52:BC:9E:72:84:88:80:74:39:0C:9D:0B:C1:27:60:66:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExnwUryecoSIgHQ5DJ0LwSdgZpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/M8XqHwLgBMhPSxu-oCUztEaiukg.roa
Signing time: Tue 22 Oct 2024 16:21:16 +0000
ROA not before: Tue 22 Oct 2024 16:21:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2860
IP address blocks: 62.169.64.0/18 maxlen: 18
78.130.0.0/17 maxlen: 17
79.168.0.0/15 maxlen: 15
79.168.0.0/18 maxlen: 18
79.168.64.0/18 maxlen: 18
79.168.128.0/18 maxlen: 18
79.168.192.0/18 maxlen: 18
79.169.0.0/18 maxlen: 18
79.169.64.0/18 maxlen: 18
79.169.128.0/18 maxlen: 18
79.169.192.0/18 maxlen: 18
80.243.80.0/20 maxlen: 20
81.84.0.0/16 maxlen: 16
81.84.0.0/18 maxlen: 18
81.84.64.0/18 maxlen: 18
81.84.128.0/18 maxlen: 18
81.84.192.0/18 maxlen: 18
83.132.0.0/16 maxlen: 16
83.132.0.0/18 maxlen: 18
83.132.64.0/18 maxlen: 18
83.132.128.0/18 maxlen: 18
83.132.192.0/18 maxlen: 18
83.144.128.0/18 maxlen: 18
85.138.0.0/15 maxlen: 15
85.138.0.0/18 maxlen: 18
85.138.64.0/18 maxlen: 18
85.138.128.0/18 maxlen: 18
85.138.192.0/18 maxlen: 18
85.139.0.0/18 maxlen: 18
85.139.64.0/18 maxlen: 18
85.139.128.0/18 maxlen: 18
85.139.192.0/18 maxlen: 18
87.196.0.0/16 maxlen: 16
87.196.0.0/18 maxlen: 18
87.196.64.0/19 maxlen: 19
88.157.0.0/16 maxlen: 16
88.157.134.0/24 maxlen: 24
88.157.157.0/24 maxlen: 24
88.157.230.0/24 maxlen: 24
88.157.231.0/24 maxlen: 24
88.210.64.0/18 maxlen: 18
89.152.0.0/14 maxlen: 14
89.152.0.0/18 maxlen: 18
89.152.64.0/18 maxlen: 18
89.152.128.0/18 maxlen: 18
89.152.192.0/18 maxlen: 18
89.153.0.0/18 maxlen: 18
89.153.64.0/18 maxlen: 18
89.153.128.0/18 maxlen: 18
89.153.192.0/18 maxlen: 18
89.154.0.0/18 maxlen: 18
89.154.64.0/18 maxlen: 18
89.154.128.0/18 maxlen: 18
89.154.192.0/18 maxlen: 18
89.155.0.0/18 maxlen: 18
89.155.64.0/18 maxlen: 18
89.155.128.0/18 maxlen: 18
89.155.192.0/18 maxlen: 18
89.180.0.0/15 maxlen: 15
89.180.0.0/16 maxlen: 16
89.180.128.0/18 maxlen: 18
89.181.0.0/16 maxlen: 16
89.181.128.0/18 maxlen: 18
89.181.192.0/18 maxlen: 18
93.102.0.0/16 maxlen: 16
93.102.0.0/18 maxlen: 18
93.102.64.0/18 maxlen: 18
94.132.0.0/15 maxlen: 15
94.132.0.0/18 maxlen: 18
94.132.64.0/18 maxlen: 18
94.132.128.0/18 maxlen: 18
94.132.192.0/18 maxlen: 18
94.133.0.0/18 maxlen: 18
94.133.64.0/18 maxlen: 18
94.133.128.0/18 maxlen: 18
94.133.192.0/18 maxlen: 18
95.92.0.0/14 maxlen: 14
95.92.0.0/18 maxlen: 18
95.92.64.0/18 maxlen: 18
95.92.128.0/18 maxlen: 18
95.92.192.0/18 maxlen: 18
95.93.0.0/18 maxlen: 18
95.93.64.0/18 maxlen: 18
95.93.128.0/18 maxlen: 18
95.93.192.0/18 maxlen: 18
95.94.0.0/18 maxlen: 18
95.94.64.0/18 maxlen: 18
95.94.128.0/18 maxlen: 18
95.94.192.0/18 maxlen: 18
95.95.0.0/18 maxlen: 18
95.95.64.0/18 maxlen: 18
95.95.128.0/18 maxlen: 18
95.95.192.0/18 maxlen: 18
109.48.0.0/14 maxlen: 14
109.48.0.0/18 maxlen: 18
109.48.64.0/18 maxlen: 18
109.48.128.0/18 maxlen: 18
109.48.192.0/18 maxlen: 18
109.49.0.0/18 maxlen: 18
109.49.64.0/18 maxlen: 18
109.49.128.0/18 maxlen: 18
109.49.192.0/18 maxlen: 18
109.50.64.0/18 maxlen: 18
109.50.128.0/18 maxlen: 18
109.50.192.0/18 maxlen: 18
109.51.0.0/18 maxlen: 18
109.51.64.0/18 maxlen: 18
109.51.128.0/18 maxlen: 18
109.51.192.0/18 maxlen: 18
185.224.164.0/22 maxlen: 22
193.126.0.0/16 maxlen: 16
193.126.120.0/24 maxlen: 24
194.79.64.0/19 maxlen: 19
194.79.69.0/24 maxlen: 24
194.79.86.0/24 maxlen: 24
195.23.0.0/16 maxlen: 16
195.23.13.0/24 maxlen: 24
195.23.37.0/24 maxlen: 24
195.23.255.0/24 maxlen: 24
212.0.160.0/19 maxlen: 19
212.113.160.0/19 maxlen: 19
212.113.173.0/24 maxlen: 24
212.113.183.0/24 maxlen: 24
213.22.0.0/16 maxlen: 16
213.22.0.0/18 maxlen: 18
213.22.64.0/18 maxlen: 18
213.22.128.0/18 maxlen: 18
213.22.192.0/18 maxlen: 18
213.205.64.0/19 maxlen: 19
213.205.64.0/24 maxlen: 24
217.70.64.0/20 maxlen: 20
2001:1588::/29 maxlen: 29
2a01:8::/29 maxlen: 29
2a01:8:8011::/48 maxlen: 48
2a01:10::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 22 Oct 2024 21:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b5:08:5c:8e:db:bc:6d:96:49:35:14:5a:ae:35:ef:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1319f052bc9e7284888074390c9d0bc127606692
Validity
Not Before: Oct 22 16:21:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33c5ea1f02e004c84f4b1bbea02533b446a2ba48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4d:70:53:b8:a5:6b:ee:cb:b5:7a:94:0b:7e:
a2:d9:19:bf:8c:75:f9:50:99:40:07:b5:f6:d7:56:
2a:34:f3:78:eb:40:58:72:e2:0b:d3:3c:f8:dc:6f:
31:a6:95:9e:70:7d:b9:bd:b6:54:3f:3f:ab:bc:14:
d6:0b:61:cc:b4:92:e5:25:70:69:c3:61:6e:b8:2b:
9f:58:85:49:32:b8:db:ed:9b:c5:ad:a1:7e:52:51:
17:b5:49:2f:45:68:a2:80:66:19:ba:26:a0:f8:d7:
64:1a:a8:e7:4c:b4:aa:f0:1a:c0:ff:7e:2c:92:1a:
74:8e:59:84:8f:18:97:7a:79:a6:24:b4:85:44:b6:
1c:60:19:69:98:dd:b6:5f:09:10:1e:2e:38:53:8f:
f7:28:79:16:43:c1:36:64:71:45:55:7b:a8:4d:6e:
5b:26:85:a9:6a:48:95:79:ec:7f:a8:81:d0:e2:9c:
0b:1a:1e:c2:c9:e3:66:09:4f:c1:e6:85:e6:7e:a5:
13:f8:7b:51:15:71:ab:57:18:7c:14:e4:12:78:7b:
38:9b:f2:9e:7b:d0:65:56:ba:40:22:06:ba:f0:46:
ff:0a:b8:7e:47:e7:d0:39:aa:73:f4:0f:ef:25:4d:
48:e8:0f:35:fc:ae:e1:d1:c5:74:2b:90:05:bd:54:
ed:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:C5:EA:1F:02:E0:04:C8:4F:4B:1B:BE:A0:25:33:B4:46:A2:BA:48
X509v3 Authority Key Identifier:
keyid:13:19:F0:52:BC:9E:72:84:88:80:74:39:0C:9D:0B:C1:27:60:66:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExnwUryecoSIgHQ5DJ0LwSdgZpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/M8XqHwLgBMhPSxu-oCUztEaiukg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/ExnwUryecoSIgHQ5DJ0LwSdgZpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.169.64.0/18
78.130.0.0/17
79.168.0.0/15
80.243.80.0/20
81.84.0.0/16
83.132.0.0/16
83.144.128.0/18
85.138.0.0/15
87.196.0.0/16
88.157.0.0/16
88.210.64.0/18
89.152.0.0/14
89.180.0.0/15
93.102.0.0/16
94.132.0.0/15
95.92.0.0/14
109.48.0.0/14
185.224.164.0/22
193.126.0.0/16
194.79.64.0/19
195.23.0.0/16
212.0.160.0/19
212.113.160.0/19
213.22.0.0/16
213.205.64.0/19
217.70.64.0/20
IPv6:
2001:1588::/29
2a01:8::-2a01:17:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
a4:00:6e:9f:de:55:2d:e2:3e:12:16:c5:48:6a:27:1a:b4:e2:
5d:23:fb:58:9a:21:a7:18:eb:a0:21:f1:59:e0:a0:1a:97:01:
02:64:6a:dc:8f:34:c4:04:6e:ee:2e:97:ca:7b:5b:5b:df:ea:
20:6e:7d:31:64:68:46:62:77:3c:e6:74:52:8d:4d:f6:23:08:
6f:06:95:63:43:46:a9:c6:6f:1f:ce:12:47:7f:29:ce:fb:56:
93:4c:53:8e:3c:fc:ce:dc:8a:5d:fb:3d:53:a1:ad:f7:d7:a9:
58:ed:1f:00:d2:f4:b5:01:6c:74:98:0e:b0:37:53:c1:ec:dc:
da:c7:e3:a8:1c:5f:22:29:91:e3:e9:1e:99:55:0c:6d:1a:23:
df:48:ac:24:2f:c7:01:5b:63:d4:7c:b7:b8:f7:52:ed:db:9e:
ce:a6:af:27:49:1b:0f:31:45:10:ee:c6:e8:fb:e7:42:56:68:
ad:b8:32:22:71:2b:24:d6:29:9a:78:73:5c:1a:4b:da:49:a7:
39:af:b9:54:8f:9e:42:08:4b:d2:59:d3:48:83:79:d3:7f:ef:
4b:7b:1b:41:56:4d:17:6d:4a:cc:58:b0:de:76:07:0d:fe:8d:
70:13:e7:66:48:e1:62:fc:6c:50:5c:bd:41:fd:06:aa:ff:35:
06:96:ac:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 00:58:35 2025 by rpki-client