Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/b65126-31cb-4ae6-beca-e3e04bd4f242/1/DOHWtTd5JFzkOWKraKo-iZBfrcQ.roa
File: DOHWtTd5JFzkOWKraKo-iZBfrcQ.roa (raw, json)
Hash identifier: NsOJkGg647A7eQx3oIYoZ6QKny1y3WWvqlg7IrP6NEw=
Subject key identifier: 0C:E1:D6:B5:37:79:24:5C:E4:39:62:AB:68:AA:3E:89:90:5F:AD:C4
Certificate issuer: /CN=56d641486bdc98d4a7de0928a42d7d68e6015f30
Certificate serial: 0193B62BC7466EAEF287CF15502ABB4EDEB9
Authority key identifier: 56:D6:41:48:6B:DC:98:D4:A7:DE:09:28:A4:2D:7D:68:E6:01:5F:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VtZBSGvcmNSn3gkopC19aOYBXzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/b65126-31cb-4ae6-beca-e3e04bd4f242/1/DOHWtTd5JFzkOWKraKo-iZBfrcQ.roa
Signing time: Wed 11 Dec 2024 14:42:22 +0000
ROA not before: Wed 11 Dec 2024 14:42:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216071
IP address blocks: 46.151.24.0/24 maxlen: 24
46.151.25.0/24 maxlen: 24
46.151.26.0/24 maxlen: 24
46.151.27.0/24 maxlen: 24
46.151.28.0/24 maxlen: 24
46.151.29.0/24 maxlen: 24
46.151.30.0/24 maxlen: 24
46.151.31.0/24 maxlen: 24
77.238.224.0/24 maxlen: 24
77.238.225.0/24 maxlen: 24
77.238.226.0/24 maxlen: 24
77.238.227.0/24 maxlen: 24
77.238.228.0/24 maxlen: 24
77.238.229.0/24 maxlen: 24
77.238.230.0/24 maxlen: 24
77.238.231.0/24 maxlen: 24
77.238.232.0/24 maxlen: 24
77.238.233.0/24 maxlen: 24
77.238.234.0/24 maxlen: 24
77.238.235.0/24 maxlen: 24
77.238.236.0/24 maxlen: 24
77.238.237.0/24 maxlen: 24
77.238.238.0/24 maxlen: 24
77.238.239.0/24 maxlen: 24
77.238.240.0/24 maxlen: 24
77.238.241.0/24 maxlen: 24
77.238.242.0/24 maxlen: 24
77.238.243.0/24 maxlen: 24
77.238.244.0/24 maxlen: 24
77.238.245.0/24 maxlen: 24
77.238.246.0/24 maxlen: 24
77.238.247.0/24 maxlen: 24
77.238.248.0/24 maxlen: 24
77.238.249.0/24 maxlen: 24
77.238.250.0/24 maxlen: 24
77.238.251.0/24 maxlen: 24
77.238.252.0/24 maxlen: 24
77.238.253.0/24 maxlen: 24
77.238.254.0/24 maxlen: 24
77.238.255.0/24 maxlen: 24
80.85.244.0/24 maxlen: 24
80.85.245.0/24 maxlen: 24
80.85.246.0/24 maxlen: 24
80.85.247.0/24 maxlen: 24
88.210.3.0/24 maxlen: 24
88.210.6.0/24 maxlen: 24
88.210.9.0/24 maxlen: 24
88.210.10.0/24 maxlen: 24
88.210.11.0/24 maxlen: 24
88.210.12.0/24 maxlen: 24
88.210.13.0/24 maxlen: 24
88.210.14.0/24 maxlen: 24
91.201.112.0/24 maxlen: 24
91.201.113.0/24 maxlen: 24
91.201.114.0/24 maxlen: 24
91.201.115.0/24 maxlen: 24
91.246.41.0/24 maxlen: 24
93.183.124.0/24 maxlen: 24
93.183.125.0/24 maxlen: 24
93.183.126.0/24 maxlen: 24
93.183.127.0/24 maxlen: 24
94.103.80.0/24 maxlen: 24
94.103.81.0/24 maxlen: 24
94.103.82.0/24 maxlen: 24
94.103.94.0/24 maxlen: 24
94.103.95.0/24 maxlen: 24
109.234.33.0/24 maxlen: 24
109.234.34.0/24 maxlen: 24
109.234.35.0/24 maxlen: 24
109.234.36.0/24 maxlen: 24
109.234.37.0/24 maxlen: 24
109.234.38.0/24 maxlen: 24
109.234.39.0/24 maxlen: 24
185.121.232.0/24 maxlen: 24
185.121.233.0/24 maxlen: 24
185.121.234.0/24 maxlen: 24
185.121.235.0/24 maxlen: 24
185.157.212.0/24 maxlen: 24
185.157.213.0/24 maxlen: 24
185.157.214.0/24 maxlen: 24
185.157.215.0/24 maxlen: 24
185.245.104.0/24 maxlen: 24
185.245.105.0/24 maxlen: 24
185.245.106.0/24 maxlen: 24
185.245.107.0/24 maxlen: 24
193.33.194.0/24 maxlen: 24
193.33.195.0/24 maxlen: 24
193.178.169.0/24 maxlen: 24
193.178.172.0/24 maxlen: 24
193.178.174.0/24 maxlen: 24
194.164.32.0/24 maxlen: 24
194.164.33.0/24 maxlen: 24
194.164.34.0/24 maxlen: 24
194.164.35.0/24 maxlen: 24
195.2.86.0/24 maxlen: 24
195.2.92.0/24 maxlen: 24
195.2.93.0/24 maxlen: 24
195.26.224.0/24 maxlen: 24
195.26.225.0/24 maxlen: 24
195.26.226.0/24 maxlen: 24
195.26.227.0/24 maxlen: 24
195.200.16.0/24 maxlen: 24
195.200.17.0/24 maxlen: 24
195.200.18.0/24 maxlen: 24
195.200.19.0/24 maxlen: 24
195.200.26.0/24 maxlen: 24
195.200.28.0/24 maxlen: 24
195.200.29.0/24 maxlen: 24
195.200.30.0/24 maxlen: 24
195.200.31.0/24 maxlen: 24
212.34.128.0/24 maxlen: 24
212.34.129.0/24 maxlen: 24
212.34.130.0/24 maxlen: 24
212.34.131.0/24 maxlen: 24
212.34.132.0/24 maxlen: 24
212.34.133.0/24 maxlen: 24
212.34.134.0/24 maxlen: 24
212.34.135.0/24 maxlen: 24
212.34.136.0/24 maxlen: 24
212.34.137.0/24 maxlen: 24
212.34.138.0/24 maxlen: 24
212.34.139.0/24 maxlen: 24
212.34.144.0/24 maxlen: 24
212.34.145.0/24 maxlen: 24
212.34.146.0/24 maxlen: 24
212.34.147.0/24 maxlen: 24
212.34.148.0/24 maxlen: 24
212.34.149.0/24 maxlen: 24
212.34.150.0/24 maxlen: 24
212.34.151.0/24 maxlen: 24
212.34.152.0/24 maxlen: 24
212.34.153.0/24 maxlen: 24
212.34.154.0/24 maxlen: 24
212.34.155.0/24 maxlen: 24
212.118.36.0/24 maxlen: 24
212.118.37.0/24 maxlen: 24
212.118.38.0/24 maxlen: 24
212.118.39.0/24 maxlen: 24
212.118.40.0/24 maxlen: 24
212.118.41.0/24 maxlen: 24
212.118.42.0/24 maxlen: 24
212.118.43.0/24 maxlen: 24
212.118.52.0/24 maxlen: 24
212.118.53.0/24 maxlen: 24
212.118.54.0/24 maxlen: 24
212.118.55.0/24 maxlen: 24
2a06:7740::/48 maxlen: 48
2a0d:8480:1::/48 maxlen: 48
2a0d:8480:3::/48 maxlen: 48
2a14:1e00:1::/48 maxlen: 48
2a14:1e00:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 12 Dec 2024 06:22:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b6:2b:c7:46:6e:ae:f2:87:cf:15:50:2a:bb:4e:de:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56d641486bdc98d4a7de0928a42d7d68e6015f30
Validity
Not Before: Dec 11 14:42:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0ce1d6b53779245ce43962ab68aa3e89905fadc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:31:8e:67:2b:2c:19:cf:2f:41:54:80:ed:e0:
a6:fe:39:3a:8f:5c:53:12:56:d2:8e:ac:81:ab:68:
94:15:14:c3:69:88:c5:8a:b3:d4:f9:5c:15:03:a7:
6c:ea:5b:97:ab:ab:cd:c5:70:b3:3f:ff:53:ed:d1:
d0:91:fe:f8:41:39:dd:ad:82:22:f2:97:9b:39:5f:
72:22:5e:05:e5:27:91:7a:25:16:34:88:4c:a7:b3:
98:35:27:2c:9e:f8:4f:9c:a7:c3:53:85:94:1c:f7:
41:db:23:e7:6b:3b:09:dd:41:48:89:81:a9:31:ad:
85:98:6f:24:3a:9e:b3:bf:b5:e3:8d:64:6d:a8:8e:
21:8a:81:92:0e:13:53:7f:c4:1c:5e:dd:64:fb:98:
76:11:9b:3b:57:31:72:39:31:c7:26:4f:95:98:a2:
46:e0:b4:bf:b8:ad:f4:02:c4:b4:b2:a4:23:7c:97:
8d:6b:e1:9c:00:78:41:12:c2:fc:1b:32:ae:1a:e3:
0a:ef:fc:73:b7:ce:a1:8b:8e:b4:70:1a:b1:c4:20:
5b:8d:b2:1a:ca:cf:19:87:4e:7a:1f:d6:73:af:7f:
fa:ce:18:3f:85:17:b7:af:d3:60:b3:de:e5:8e:80:
38:70:f5:7b:29:96:7a:77:b3:18:de:29:7c:17:85:
ac:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:E1:D6:B5:37:79:24:5C:E4:39:62:AB:68:AA:3E:89:90:5F:AD:C4
X509v3 Authority Key Identifier:
keyid:56:D6:41:48:6B:DC:98:D4:A7:DE:09:28:A4:2D:7D:68:E6:01:5F:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VtZBSGvcmNSn3gkopC19aOYBXzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b65126-31cb-4ae6-beca-e3e04bd4f242/1/DOHWtTd5JFzkOWKraKo-iZBfrcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b65126-31cb-4ae6-beca-e3e04bd4f242/1/VtZBSGvcmNSn3gkopC19aOYBXzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.151.24.0/21
77.238.224.0/19
80.85.244.0/22
88.210.3.0/24
88.210.6.0/24
88.210.9.0-88.210.14.255
91.201.112.0/22
91.246.41.0/24
93.183.124.0/22
94.103.80.0-94.103.82.255
94.103.94.0/23
109.234.33.0-109.234.39.255
185.121.232.0/22
185.157.212.0/22
185.245.104.0/22
193.33.194.0/23
193.178.169.0/24
193.178.172.0/24
193.178.174.0/24
194.164.32.0/22
195.2.86.0/24
195.2.92.0/23
195.26.224.0/22
195.200.16.0/22
195.200.26.0/24
195.200.28.0/22
212.34.128.0-212.34.139.255
212.34.144.0-212.34.155.255
212.118.36.0-212.118.43.255
212.118.52.0/22
IPv6:
2a06:7740::/48
2a0d:8480:1::/48
2a0d:8480:3::/48
2a14:1e00:1::-2a14:1e00:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
96:d5:cc:53:4e:f1:91:a4:ba:ba:27:4c:36:9e:f2:d7:59:4b:
42:53:3a:e9:78:03:28:d9:3b:f0:0a:44:38:29:63:ff:d6:fc:
c1:b8:07:ef:eb:98:ae:05:9f:0f:72:02:ad:7f:14:61:4c:f0:
b0:c4:70:59:2d:47:b3:af:2b:d6:3b:d8:c3:74:b9:d3:d9:c2:
e6:e8:dc:c1:a3:3b:9c:fd:98:0d:bd:b1:92:de:b4:79:2b:fc:
da:92:57:48:f3:bf:7a:d4:e0:82:a3:86:3d:9c:41:31:cc:f9:
67:f6:80:97:a8:31:91:9d:83:e5:b6:d8:cd:d0:f4:90:c3:4b:
b4:0c:14:94:23:27:b4:dc:b5:f4:40:04:b1:22:1f:cb:40:55:
e2:3d:0c:37:5a:16:87:4d:92:df:d5:8f:1d:08:71:65:47:96:
f1:24:9a:b1:a5:09:9b:cb:ee:04:df:89:fe:b7:8d:fb:85:6f:
b5:31:98:1b:4a:6d:bb:98:22:79:76:44:df:34:6b:80:25:a3:
c9:31:62:08:64:be:72:ca:e0:54:01:27:fa:24:ce:d6:ac:09:
a0:0c:3b:3b:34:6e:ab:ca:2c:e9:18:90:ff:61:59:17:bc:d4:
16:01:22:f7:93:55:13:a2:b4:86:e9:65:64:60:86:78:8b:9f:
14:c8:09:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 07:12:03 2025 by rpki-client