Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/397546-dc7b-4660-8a51-bf59fc1cb26d/1/ij6TDX3vNrL8Y14_OZDilOM68kw.roa
File: ij6TDX3vNrL8Y14_OZDilOM68kw.roa (raw, json)
Hash identifier: aG6P3I+wN/0T1GMDGNarQaxA9DhFAELHaDrH7E7XMwQ=
Subject key identifier: 8A:3E:93:0D:7D:EF:36:B2:FC:63:5E:3F:39:90:E2:94:E3:3A:F2:4C
Certificate issuer: /CN=24ba4f52ac1be0755d34bc5483c061bdf293447e
Certificate serial: 018D4F18760E7791C5DC3C23B0819BF773EF
Authority key identifier: 24:BA:4F:52:AC:1B:E0:75:5D:34:BC:54:83:C0:61:BD:F2:93:44:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JLpPUqwb4HVdNLxUg8BhvfKTRH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/397546-dc7b-4660-8a51-bf59fc1cb26d/1/ij6TDX3vNrL8Y14_OZDilOM68kw.roa
Signing time: Sun 28 Jan 2024 08:03:39 +0000
ROA not before: Sun 28 Jan 2024 08:03:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42298
IP address blocks: 37.208.128.0/20 maxlen: 24
37.208.144.0/20 maxlen: 24
37.208.160.0/20 maxlen: 24
37.208.176.0/20 maxlen: 24
37.210.0.0/20 maxlen: 24
37.210.16.0/20 maxlen: 24
37.210.32.0/20 maxlen: 24
37.210.48.0/20 maxlen: 24
37.210.64.0/20 maxlen: 24
37.210.80.0/20 maxlen: 24
37.210.96.0/20 maxlen: 24
37.210.112.0/20 maxlen: 24
37.210.128.0/20 maxlen: 24
37.210.144.0/20 maxlen: 24
37.210.160.0/20 maxlen: 24
37.210.176.0/20 maxlen: 24
37.210.192.0/20 maxlen: 24
37.210.208.0/20 maxlen: 24
37.210.224.0/20 maxlen: 24
37.210.240.0/20 maxlen: 24
37.211.0.0/20 maxlen: 24
37.211.16.0/20 maxlen: 24
37.211.32.0/20 maxlen: 24
37.211.48.0/20 maxlen: 24
37.211.64.0/20 maxlen: 24
37.211.80.0/20 maxlen: 24
37.211.128.0/20 maxlen: 24
37.211.144.0/20 maxlen: 24
37.211.160.0/20 maxlen: 24
37.211.176.0/20 maxlen: 24
78.100.10.0/24 maxlen: 24
78.100.62.0/24 maxlen: 24
78.100.112.0/20 maxlen: 24
78.100.144.0/20 maxlen: 24
78.100.160.0/20 maxlen: 24
78.100.176.0/20 maxlen: 24
78.100.192.0/20 maxlen: 24
78.100.208.0/20 maxlen: 24
78.100.224.0/20 maxlen: 24
78.100.240.0/20 maxlen: 24
78.101.0.0/21 maxlen: 24
78.101.8.0/21 maxlen: 24
78.101.16.0/20 maxlen: 24
78.101.48.0/20 maxlen: 24
78.101.64.0/20 maxlen: 24
78.101.80.0/20 maxlen: 24
78.101.128.0/20 maxlen: 24
78.101.144.0/20 maxlen: 24
78.101.160.0/20 maxlen: 24
78.101.176.0/20 maxlen: 24
78.101.192.0/20 maxlen: 24
78.101.208.0/20 maxlen: 24
78.101.224.0/20 maxlen: 24
82.148.107.0/24 maxlen: 24
86.62.192.0/22 maxlen: 24
86.62.196.0/22 maxlen: 24
86.62.200.0/22 maxlen: 24
86.62.204.0/22 maxlen: 24
86.62.209.0/24 maxlen: 24
86.62.211.0/24 maxlen: 24
86.62.216.0/24 maxlen: 24
86.62.218.0/24 maxlen: 24
86.62.221.0/24 maxlen: 24
86.62.223.0/24 maxlen: 24
86.62.224.0/22 maxlen: 24
86.62.228.0/22 maxlen: 24
86.62.232.0/22 maxlen: 24
86.62.236.0/22 maxlen: 24
86.62.242.0/24 maxlen: 24
86.62.243.0/24 maxlen: 24
86.62.244.0/24 maxlen: 24
86.62.245.0/24 maxlen: 24
86.62.246.0/24 maxlen: 24
86.62.248.0/24 maxlen: 24
86.62.249.0/24 maxlen: 24
86.62.251.0/24 maxlen: 24
86.62.252.0/24 maxlen: 24
86.62.255.0/24 maxlen: 24
89.211.96.0/20 maxlen: 24
89.211.112.0/20 maxlen: 24
89.211.128.0/20 maxlen: 24
89.211.144.0/20 maxlen: 24
89.211.160.0/20 maxlen: 24
89.211.176.0/20 maxlen: 24
89.211.192.0/20 maxlen: 24
89.211.208.0/20 maxlen: 24
89.211.224.0/20 maxlen: 24
89.211.240.0/20 maxlen: 24
176.202.0.0/20 maxlen: 24
176.202.16.0/20 maxlen: 24
176.202.32.0/20 maxlen: 24
176.202.48.0/20 maxlen: 24
176.202.80.0/20 maxlen: 24
176.202.96.0/20 maxlen: 24
176.202.160.0/20 maxlen: 24
176.202.176.0/20 maxlen: 24
178.152.0.0/20 maxlen: 24
178.152.16.0/20 maxlen: 24
178.152.64.0/20 maxlen: 24
178.152.80.0/20 maxlen: 24
178.152.96.0/20 maxlen: 24
178.152.112.0/20 maxlen: 24
178.153.0.0/20 maxlen: 24
178.153.16.0/20 maxlen: 24
178.153.32.0/20 maxlen: 24
178.153.48.0/20 maxlen: 24
178.153.64.0/20 maxlen: 24
178.153.80.0/20 maxlen: 24
178.153.96.0/20 maxlen: 24
178.153.128.0/20 maxlen: 24
178.153.144.0/20 maxlen: 24
178.153.160.0/20 maxlen: 24
178.153.176.0/20 maxlen: 24
178.153.192.0/20 maxlen: 24
178.153.208.0/20 maxlen: 24
178.153.224.0/20 maxlen: 24
178.153.240.0/20 maxlen: 24
213.130.96.0/22 maxlen: 24
213.130.127.0/24 maxlen: 24
2001:1a10:1000::/44 maxlen: 44
2001:1a10:1000::/48 maxlen: 48
2001:1a10:1001::/48 maxlen: 48
2001:1a10:1002::/48 maxlen: 48
2001:1a10:1003::/48 maxlen: 48
2001:1a10:1004::/48 maxlen: 48
2001:1a10:1005::/48 maxlen: 48
2001:1a10:1006::/48 maxlen: 48
2001:1a10:1007::/48 maxlen: 48
2001:1a10:1008::/48 maxlen: 48
2001:1a10:1009::/48 maxlen: 48
2001:1a10:100a::/48 maxlen: 48
2001:1a10:100b::/48 maxlen: 48
2001:1a10:100c::/48 maxlen: 48
2001:1a10:100d::/48 maxlen: 48
2001:1a10:100e::/48 maxlen: 48
2001:1a10:100f::/48 maxlen: 48
2001:1a10:1010::/44 maxlen: 44
2001:1a10:1020::/44 maxlen: 44
2001:1a10:1030::/44 maxlen: 44
2001:1a10:1040::/44 maxlen: 44
2001:1a10:1050::/44 maxlen: 44
2001:1a10:1060::/44 maxlen: 44
2001:1a10:1070::/44 maxlen: 44
2001:1a10:1080::/44 maxlen: 44
2001:1a10:1090::/44 maxlen: 44
2001:1a10:10a0::/44 maxlen: 44
2001:1a10:10b0::/44 maxlen: 44
2001:1a10:10c0::/44 maxlen: 44
2001:1a10:10d0::/44 maxlen: 44
2001:1a10:10e0::/44 maxlen: 44
2001:1a10:10f0::/44 maxlen: 44
2001:1a10:1100::/44 maxlen: 44
2001:1a10:1110::/44 maxlen: 44
2001:1a10:1120::/44 maxlen: 44
2001:1a10:1130::/44 maxlen: 44
2001:1a10:1140::/44 maxlen: 44
2001:1a10:1150::/44 maxlen: 44
2001:1a10:1160::/44 maxlen: 44
2001:1a10:1170::/44 maxlen: 44
2001:1a10:1180::/44 maxlen: 44
2001:1a11::/32 maxlen: 53
Validation: Failed, certificate revoked on Sun 28 Jan 2024 08:16:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:4f:18:76:0e:77:91:c5:dc:3c:23:b0:81:9b:f7:73:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24ba4f52ac1be0755d34bc5483c061bdf293447e
Validity
Not Before: Jan 28 08:03:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8a3e930d7def36b2fc635e3f3990e294e33af24c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:ff:61:3c:d8:b0:ec:0f:4b:db:09:60:bd:b8:
a2:61:6f:15:09:17:bb:c3:f2:e5:57:d7:b8:45:68:
8e:48:10:81:54:db:a5:37:4b:d9:70:9a:85:12:99:
60:56:3a:7f:e7:60:0d:60:fe:6a:2c:d6:01:04:2f:
be:d3:a8:83:96:1d:06:8d:06:fe:a5:b3:75:10:fe:
1c:81:f9:50:41:9f:b0:12:df:a6:d7:17:53:7e:4e:
fd:17:a2:dc:16:1c:6c:c7:c9:6c:f2:ef:11:69:99:
6d:f2:63:44:12:98:ed:57:4b:53:3c:8c:c8:0e:e2:
8c:27:35:26:62:23:cd:93:c3:48:c7:3b:61:28:aa:
54:d8:62:37:9b:43:44:ef:b5:10:a5:d2:1a:f9:13:
39:7b:bf:26:dc:bf:64:57:dc:e6:9b:03:4a:d2:af:
9f:e4:7e:4a:4f:e9:37:5c:b8:42:66:55:10:5c:87:
24:5a:42:5e:a4:fc:2f:d1:7a:34:96:2e:0b:75:2e:
2d:29:32:11:9d:bf:c4:91:26:fd:57:29:84:40:db:
9a:bc:e1:40:ff:a2:4b:a3:c6:24:e6:1b:25:24:56:
15:c6:57:cd:5d:b7:13:e1:29:c0:3b:fc:1c:49:c5:
c7:1f:d7:9d:fb:ff:f0:a2:60:ac:45:1a:01:a6:3c:
cc:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:3E:93:0D:7D:EF:36:B2:FC:63:5E:3F:39:90:E2:94:E3:3A:F2:4C
X509v3 Authority Key Identifier:
keyid:24:BA:4F:52:AC:1B:E0:75:5D:34:BC:54:83:C0:61:BD:F2:93:44:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JLpPUqwb4HVdNLxUg8BhvfKTRH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/397546-dc7b-4660-8a51-bf59fc1cb26d/1/ij6TDX3vNrL8Y14_OZDilOM68kw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/397546-dc7b-4660-8a51-bf59fc1cb26d/1/JLpPUqwb4HVdNLxUg8BhvfKTRH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.208.128.0/18
37.210.0.0-37.211.95.255
37.211.128.0/18
78.100.10.0/24
78.100.62.0/24
78.100.112.0/20
78.100.144.0-78.101.31.255
78.101.48.0-78.101.95.255
78.101.128.0-78.101.239.255
82.148.107.0/24
86.62.192.0/20
86.62.209.0/24
86.62.211.0/24
86.62.216.0/24
86.62.218.0/24
86.62.221.0/24
86.62.223.0-86.62.239.255
86.62.242.0-86.62.246.255
86.62.248.0/23
86.62.251.0-86.62.252.255
86.62.255.0/24
89.211.96.0-89.211.255.255
176.202.0.0/18
176.202.80.0-176.202.111.255
176.202.160.0/19
178.152.0.0/19
178.152.64.0/18
178.153.0.0-178.153.111.255
178.153.128.0/17
213.130.96.0/22
213.130.127.0/24
IPv6:
2001:1a10:1000::-2001:1a10:118f:ffff:ffff:ffff:ffff:ffff
2001:1a11::/32
Signature Algorithm: sha256WithRSAEncryption
20:d8:e0:b7:da:3a:cf:cb:92:9c:0c:4a:83:29:a9:dd:c1:03:
dd:b6:61:c1:9e:a2:1f:8b:85:5c:86:d2:dd:99:a9:34:cc:7c:
95:48:28:74:ae:c5:50:79:79:26:ef:07:29:ab:87:3a:eb:62:
11:62:5b:95:65:eb:29:c9:6a:37:17:17:e0:2b:a1:45:9a:56:
d1:bb:c5:53:cc:2f:44:ee:f5:32:bf:34:ca:c4:62:d2:9d:20:
5b:33:74:71:dd:cf:4e:38:62:80:2e:96:b1:52:43:65:33:31:
3e:41:d8:ff:5b:9e:73:56:b0:8c:c2:9e:6c:b4:fe:25:9c:b2:
75:8f:cf:ca:ad:02:c9:11:d3:76:fb:10:e4:4d:90:d9:23:93:
7f:25:e3:56:72:b4:bd:a3:1d:da:11:a4:2d:81:b7:c9:ac:e4:
92:00:6f:b9:ff:35:c7:5d:2a:dc:2c:66:1a:bd:f3:f9:5c:ef:
cc:27:a4:41:e6:30:65:46:f4:54:5a:af:b6:fc:47:43:a1:63:
fc:d8:10:7a:f1:ae:01:ad:86:09:8f:46:46:9b:ba:b5:4c:64:
96:94:3b:48:cb:ed:8d:d4:38:b0:37:e4:9c:cb:90:0f:5d:49:
42:4f:b6:64:29:8c:f0:26:e6:c9:1f:b5:97:3d:77:9f:56:d7:
36:d6:b5:8e
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu May 1 06:31:13 2025 by rpki-client