Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/9vQ7wthR3JeaVYURZQ9vnjePWQs.roa
File: 9vQ7wthR3JeaVYURZQ9vnjePWQs.roa (raw, json)
Hash identifier: Wn7nJJxQSfH0y6ogkjSJPjJDHFzYXnTI0bFoZAoWdsg=
Subject key identifier: F6:F4:3B:C2:D8:51:DC:97:9A:55:85:11:65:0F:6F:9E:37:8F:59:0B
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 01916985D0398E8C7FFBE110EB5D6F0E3C40
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/9vQ7wthR3JeaVYURZQ9vnjePWQs.roa
Signing time: Mon 19 Aug 2024 07:24:22 +0000
ROA not before: Mon 19 Aug 2024 07:24:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3352
IP address blocks: 2.136.0.0/16 maxlen: 16
2.137.0.0/16 maxlen: 16
2.138.0.0/16 maxlen: 16
2.139.0.0/16 maxlen: 16
79.144.0.0/16 maxlen: 16
79.145.0.0/16 maxlen: 16
79.146.0.0/16 maxlen: 16
79.147.0.0/16 maxlen: 16
79.148.0.0/16 maxlen: 16
80.24.0.0/16 maxlen: 16
80.25.0.0/16 maxlen: 16
80.30.0.0/16 maxlen: 16
80.31.0.0/16 maxlen: 16
80.32.0.0/16 maxlen: 16
80.33.0.0/16 maxlen: 16
80.34.0.0/16 maxlen: 16
80.35.0.0/16 maxlen: 16
80.36.0.0/16 maxlen: 16
80.37.0.0/16 maxlen: 16
80.38.0.0/16 maxlen: 16
80.39.0.0/16 maxlen: 16
80.59.0.0/16 maxlen: 16
81.32.0.0/16 maxlen: 16
81.33.0.0/16 maxlen: 16
81.34.0.0/16 maxlen: 16
81.35.0.0/16 maxlen: 16
81.36.0.0/16 maxlen: 16
81.37.0.0/16 maxlen: 16
81.38.0.0/16 maxlen: 16
81.39.0.0/16 maxlen: 16
81.40.0.0/16 maxlen: 16
81.41.0.0/16 maxlen: 16
81.42.0.0/16 maxlen: 16
81.43.0.0/16 maxlen: 16
81.44.0.0/16 maxlen: 16
83.32.0.0/16 maxlen: 16
83.33.0.0/16 maxlen: 16
83.34.0.0/16 maxlen: 16
83.35.0.0/16 maxlen: 16
83.36.0.0/16 maxlen: 16
83.37.0.0/16 maxlen: 16
83.38.0.0/16 maxlen: 16
83.39.0.0/16 maxlen: 16
83.47.0.0/16 maxlen: 16
83.52.0.0/16 maxlen: 16
83.53.0.0/16 maxlen: 16
83.54.0.0/16 maxlen: 16
83.55.0.0/16 maxlen: 16
83.56.0.0/16 maxlen: 16
83.57.0.0/16 maxlen: 16
83.58.0.0/16 maxlen: 16
83.59.0.0/16 maxlen: 16
83.60.0.0/16 maxlen: 16
83.61.0.0/16 maxlen: 16
83.62.0.0/16 maxlen: 21
83.63.0.0/16 maxlen: 16
88.0.0.0/16 maxlen: 16
88.1.0.0/16 maxlen: 16
88.2.0.0/16 maxlen: 16
88.3.0.0/16 maxlen: 16
88.8.0.0/16 maxlen: 16
88.9.0.0/16 maxlen: 16
88.10.0.0/16 maxlen: 16
88.11.0.0/16 maxlen: 16
88.12.0.0/16 maxlen: 16
88.13.0.0/16 maxlen: 16
88.14.0.0/16 maxlen: 16
88.15.0.0/16 maxlen: 16
88.16.0.0/16 maxlen: 16
88.24.0.0/16 maxlen: 16
88.25.0.0/16 maxlen: 16
88.26.0.0/16 maxlen: 16
88.27.0.0/16 maxlen: 16
88.28.0.0/16 maxlen: 24
88.30.0.0/16 maxlen: 16
95.121.0.0/16 maxlen: 16
95.122.0.0/16 maxlen: 16
95.123.0.0/16 maxlen: 16
95.124.0.0/16 maxlen: 24
95.125.0.0/16 maxlen: 24
95.126.0.0/16 maxlen: 24
95.127.0.0/16 maxlen: 24
176.80.0.0/16 maxlen: 24
176.81.0.0/16 maxlen: 16
176.82.0.0/16 maxlen: 24
176.83.0.0/16 maxlen: 24
176.85.0.0/16 maxlen: 16
176.86.0.0/16 maxlen: 16
176.87.0.0/16 maxlen: 24
192.101.1.0/24 maxlen: 24
193.153.0.0/16 maxlen: 16
194.69.225.0/24 maxlen: 24
194.179.34.0/24 maxlen: 24
194.179.112.0/24 maxlen: 24
194.224.157.0/24 maxlen: 24
195.53.0.0/16 maxlen: 16
195.53.69.0/24 maxlen: 24
195.53.193.0/24 maxlen: 24
195.53.218.0/23 maxlen: 23
195.55.78.0/24 maxlen: 24
195.55.79.0/24 maxlen: 24
195.55.110.0/24 maxlen: 24
195.57.5.0/24 maxlen: 24
195.57.27.0/24 maxlen: 24
195.76.0.0/16 maxlen: 16
195.76.141.0/24 maxlen: 24
195.76.164.0/24 maxlen: 24
195.77.57.0/24 maxlen: 24
195.77.132.0/22 maxlen: 22
195.77.132.0/23 maxlen: 23
195.77.132.0/24 maxlen: 24
195.235.0.0/16 maxlen: 16
195.235.95.0/24 maxlen: 24
195.235.188.0/24 maxlen: 24
195.235.225.0/24 maxlen: 24
195.235.241.0/24 maxlen: 24
195.235.242.0/24 maxlen: 24
212.170.0.0/16 maxlen: 16
212.170.156.0/24 maxlen: 24
212.170.159.0/24 maxlen: 24
213.96.0.0/16 maxlen: 16
213.97.0.0/16 maxlen: 16
213.98.0.0/16 maxlen: 16
213.99.0.0/16 maxlen: 24
213.99.44.0/24 maxlen: 24
213.99.59.0/24 maxlen: 24
217.11.96.0/19 maxlen: 19
217.124.182.0/24 maxlen: 24
217.126.0.0/16 maxlen: 16
217.127.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 19 Aug 2024 12:24:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:69:85:d0:39:8e:8c:7f:fb:e1:10:eb:5d:6f:0e:3c:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Aug 19 07:24:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f6f43bc2d851dc979a558511650f6f9e378f590b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2b:54:09:90:99:4b:c1:14:3c:48:cf:ec:e5:
64:e3:26:72:cc:b9:96:01:03:a9:1c:11:ff:ac:61:
c0:83:e5:ff:59:13:12:70:19:8a:5c:6c:0e:3d:fd:
94:4f:24:86:04:b1:f9:9f:cf:e5:c1:0c:c4:e4:90:
ed:ee:7b:c5:ac:d7:f8:e5:7b:09:76:09:ca:86:dc:
32:c5:e6:b1:25:a4:84:de:a7:ea:74:86:8b:6f:c4:
51:a6:3c:c0:98:6e:b6:58:44:25:40:25:ad:c4:54:
34:cb:d6:5c:9f:f0:96:58:ba:ef:c0:2d:28:e0:2b:
5f:15:d7:85:21:95:c3:11:b0:4f:5a:88:16:47:91:
25:05:38:2c:27:c2:78:67:e4:ec:bd:18:2b:a3:86:
1a:35:ef:8c:53:01:ce:48:88:31:91:6c:ab:78:a3:
52:39:0f:c4:ce:05:e9:ec:26:1d:71:42:f0:78:b1:
c4:6d:4c:c3:8c:74:ab:71:b3:04:6d:71:7c:c5:91:
4b:b8:2f:27:2f:27:81:fc:4b:18:3e:dc:a4:e1:28:
b3:a7:1b:3d:d9:6a:09:9a:7e:e3:23:58:6f:06:72:
ef:53:6d:95:3f:2f:b1:16:c0:98:91:bb:73:38:46:
a5:55:5d:bc:16:63:1a:8c:90:9c:79:1c:fe:41:47:
e1:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:F4:3B:C2:D8:51:DC:97:9A:55:85:11:65:0F:6F:9E:37:8F:59:0B
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/9vQ7wthR3JeaVYURZQ9vnjePWQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.136.0.0/14
79.144.0.0-79.148.255.255
80.24.0.0/15
80.30.0.0-80.39.255.255
80.59.0.0/16
81.32.0.0-81.44.255.255
83.32.0.0/13
83.47.0.0/16
83.52.0.0-83.63.255.255
88.0.0.0/14
88.8.0.0-88.16.255.255
88.24.0.0-88.28.255.255
88.30.0.0/16
95.121.0.0-95.127.255.255
176.80.0.0/14
176.85.0.0-176.87.255.255
192.101.1.0/24
193.153.0.0/16
194.69.225.0/24
194.179.34.0/24
194.179.112.0/24
194.224.157.0/24
195.53.0.0/16
195.55.78.0/23
195.55.110.0/24
195.57.5.0/24
195.57.27.0/24
195.76.0.0/16
195.77.57.0/24
195.77.132.0/22
195.235.0.0/16
212.170.0.0/16
213.96.0.0/14
217.11.96.0/19
217.124.182.0/24
217.126.0.0/15
Signature Algorithm: sha256WithRSAEncryption
e7:25:a5:d1:eb:95:44:6d:82:07:75:c8:b0:b2:8d:02:44:e8:
8a:a3:c3:d1:a9:73:f4:ed:3b:2a:bc:73:3a:a6:bf:11:4a:ed:
b7:6b:c5:94:57:59:a9:f4:3f:b1:c5:47:53:39:1c:d5:ac:94:
a2:68:56:2f:b6:d8:44:1f:6f:ee:9a:29:2b:aa:a7:42:16:6f:
42:16:fb:68:c5:ac:7c:b4:4a:c1:0c:49:a8:80:55:c9:bf:be:
77:95:0f:21:dd:6f:7b:a0:a4:12:90:15:b7:4d:77:88:f4:30:
25:6f:52:16:f5:86:0c:a1:a7:ea:92:16:e7:fa:8b:51:77:9e:
a1:bb:c4:52:86:e9:6e:28:61:a1:b6:68:a2:17:0a:c2:7c:bd:
29:69:f3:58:c1:f4:b1:8f:0c:5b:d2:9e:1c:28:c1:8a:ef:2c:
86:52:7d:bd:fe:81:be:09:68:17:72:68:39:0d:86:a7:2a:d3:
ed:39:cb:7e:24:4c:b1:c9:c2:9e:4f:6e:87:18:ef:48:9d:db:
3e:0a:77:30:3b:d4:da:40:d0:4f:84:c5:e7:0f:06:f5:fe:76:
f3:44:ce:5c:8e:92:d8:9d:cd:e3:f8:03:21:da:75:fe:71:52:
64:9b:47:89:67:c3:75:40:54:cd:be:dd:7d:93:1b:33:61:d2:
61:15:e2:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 22:16:34 2025 by rpki-client