Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/PsH7Qs6mhDXo8ckUdFBrR7Vnbjw.roa
File: PsH7Qs6mhDXo8ckUdFBrR7Vnbjw.roa (raw, json)
Hash identifier: LjopTvvK67+LIxuj65TQbzr7ZLmpb2zwvPBoge4HgVs=
Subject key identifier: 3E:C1:FB:42:CE:A6:84:35:E8:F1:C9:14:74:50:6B:47:B5:67:6E:3C
Certificate issuer: /CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff
Certificate serial: 018CEEF19E271F200D1084DB10B699E72337
Authority key identifier: 1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/PsH7Qs6mhDXo8ckUdFBrR7Vnbjw.roa
Signing time: Tue 09 Jan 2024 15:57:41 +0000
ROA not before: Tue 09 Jan 2024 15:57:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9119
IP address blocks: 85.208.172.0/24 maxlen: 24
185.175.0.0/22 maxlen: 22
80.65.174.0/24 maxlen: 24
80.65.173.0/24 maxlen: 24
80.65.175.0/24 maxlen: 24
213.253.120.0/22 maxlen: 22
213.253.124.0/22 maxlen: 22
91.132.74.0/23 maxlen: 23
2.58.48.0/22 maxlen: 22
80.65.166.0/24 maxlen: 24
80.65.165.0/24 maxlen: 24
80.65.160.0/24 maxlen: 24
80.65.160.0/20 maxlen: 20
80.65.164.0/24 maxlen: 24
80.65.163.0/24 maxlen: 24
80.65.162.0/24 maxlen: 24
80.65.161.0/24 maxlen: 24
80.65.172.0/24 maxlen: 24
80.65.167.0/24 maxlen: 24
80.65.171.0/24 maxlen: 24
80.65.170.0/24 maxlen: 24
80.65.169.0/24 maxlen: 24
80.65.168.0/24 maxlen: 24
147.78.219.0/24 maxlen: 24
147.78.218.0/24 maxlen: 24
147.78.216.0/24 maxlen: 24
147.78.216.0/22 maxlen: 22
213.253.96.0/20 maxlen: 20
213.253.96.0/21 maxlen: 21
217.199.132.0/24 maxlen: 24
217.199.131.0/24 maxlen: 24
213.253.104.0/22 maxlen: 22
217.199.130.0/24 maxlen: 24
217.199.129.0/24 maxlen: 24
217.199.128.0/20 maxlen: 24
217.199.128.0/24 maxlen: 24
217.199.133.0/24 maxlen: 24
217.199.139.0/24 maxlen: 24
213.253.112.0/22 maxlen: 22
217.199.138.0/24 maxlen: 24
213.253.111.0/24 maxlen: 24
217.199.134.0/24 maxlen: 24
217.199.137.0/24 maxlen: 24
217.199.136.0/24 maxlen: 24
213.253.110.0/24 maxlen: 24
213.253.108.0/22 maxlen: 22
217.199.135.0/24 maxlen: 24
213.253.108.0/24 maxlen: 24
213.253.109.0/24 maxlen: 24
217.199.140.0/24 maxlen: 24
213.253.116.0/22 maxlen: 22
217.199.143.0/24 maxlen: 24
217.199.142.0/24 maxlen: 24
217.199.141.0/24 maxlen: 24
213.253.64.0/19 maxlen: 19
45.15.44.0/22 maxlen: 22
212.103.128.0/19 maxlen: 19
84.41.122.0/23 maxlen: 23
84.41.120.0/23 maxlen: 23
84.41.124.0/22 maxlen: 22
84.41.96.0/21 maxlen: 21
84.41.104.0/22 maxlen: 22
84.41.108.0/23 maxlen: 23
84.41.112.0/23 maxlen: 23
84.41.111.0/24 maxlen: 24
84.41.110.0/24 maxlen: 24
84.41.115.0/24 maxlen: 24
84.41.114.0/24 maxlen: 24
84.41.116.0/22 maxlen: 22
46.163.48.0/21 maxlen: 21
46.163.58.0/24 maxlen: 24
46.163.58.0/23 maxlen: 23
46.163.56.0/23 maxlen: 23
46.163.56.0/24 maxlen: 24
46.163.59.0/24 maxlen: 24
46.163.60.0/22 maxlen: 22
45.156.140.0/23 maxlen: 23
45.156.140.0/24 maxlen: 24
45.156.143.0/24 maxlen: 24
45.8.0.0/22 maxlen: 22
46.163.0.0/19 maxlen: 19
46.163.32.0/20 maxlen: 20
212.13.224.0/19 maxlen: 19
84.41.32.0/19 maxlen: 19
84.41.64.0/19 maxlen: 19
84.41.0.0/18 maxlen: 18
84.41.0.0/19 maxlen: 19
84.41.0.0/21 maxlen: 21
185.54.131.0/24 maxlen: 24
185.54.130.0/24 maxlen: 24
185.54.128.0/24 maxlen: 24
185.54.128.0/23 maxlen: 23
2a0b:c300::/29 maxlen: 29
2a02:805::/33 maxlen: 33
2a0b:c306::/32 maxlen: 32
2a02:801::/33 maxlen: 33
2a02:801::/32 maxlen: 32
2a02:800::/32 maxlen: 32
2a0f:2180::/29 maxlen: 29
2a0e:2e00::/29 maxlen: 29
2a0e:1e80::/29 maxlen: 29
2a09:e140::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 22 Feb 2024 10:42:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ee:f1:9e:27:1f:20:0d:10:84:db:10:b6:99:e7:23:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff
Validity
Not Before: Jan 9 15:57:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3ec1fb42cea68435e8f1c91474506b47b5676e3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b1:10:51:78:89:bd:bd:9b:b6:a7:a2:18:e1:
41:a8:64:94:07:b2:11:15:35:e6:68:cf:75:1a:26:
c5:aa:c3:66:5b:86:46:f0:b7:9c:be:08:0a:2d:fd:
7b:f7:56:5a:d9:14:44:68:e5:cd:33:74:ff:8c:44:
57:2d:b3:33:43:a6:7f:6d:8f:56:bf:fb:4b:54:58:
29:77:77:43:60:73:c1:a2:69:df:ac:95:d9:ce:26:
69:3d:77:64:17:fe:7c:97:42:7b:42:30:29:83:ea:
8a:b7:f7:e6:67:3a:90:52:56:74:4b:8c:a6:f2:0b:
32:68:cb:18:bd:22:6d:92:6f:64:4b:6b:10:3a:6d:
f2:13:88:05:8f:5e:18:25:b2:e7:1e:86:ee:22:16:
ac:a0:82:21:76:c5:d1:f5:72:7a:3e:61:3f:53:4b:
08:82:d2:37:5b:ba:79:64:cb:a5:33:76:f7:8d:57:
6e:05:95:bf:11:a7:bb:ea:4e:47:af:75:29:0e:e8:
e4:2b:63:98:9e:c0:c5:d3:9b:61:6b:b4:b7:44:62:
47:36:bb:bc:ff:f2:55:00:39:4c:fa:5f:fa:e6:86:
e0:9c:8b:81:b5:5e:87:6d:ff:e0:eb:4d:a7:6a:43:
85:f1:3f:e7:8a:c5:b6:13:99:57:12:94:05:55:c8:
5b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:C1:FB:42:CE:A6:84:35:E8:F1:C9:14:74:50:6B:47:B5:67:6E:3C
X509v3 Authority Key Identifier:
keyid:1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/PsH7Qs6mhDXo8ckUdFBrR7Vnbjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/HHsGv0EwDcTTDz0OGAybldK83f8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.48.0/22
45.8.0.0/22
45.15.44.0/22
45.156.140.0/23
45.156.143.0/24
46.163.0.0/18
80.65.160.0/20
84.41.0.0/17
85.208.172.0/24
91.132.74.0/23
147.78.216.0/22
185.54.128.0/22
185.175.0.0/22
212.13.224.0/19
212.103.128.0/19
213.253.64.0/18
217.199.128.0/20
IPv6:
2a02:800::/31
2a02:805::/33
2a09:e140::/29
2a0b:c300::/29
2a0e:1e80::/29
2a0e:2e00::/29
2a0f:2180::/29
Signature Algorithm: sha256WithRSAEncryption
51:c7:ee:54:79:50:2c:7a:3c:34:fa:9e:5d:1f:c4:fd:63:f4:
62:d3:0f:88:cd:e7:69:6b:0f:26:69:38:67:c4:a0:29:cf:46:
69:0e:59:30:f9:82:1e:eb:78:3a:37:51:ea:84:41:84:e8:2b:
18:d5:4a:68:95:a8:60:1f:23:d9:53:e9:0c:ad:fa:b2:91:e3:
39:a7:2e:83:c9:22:d3:60:90:17:86:a8:d6:3f:0d:7a:92:e5:
8e:9e:5c:d6:b8:a5:a1:f6:4b:57:a3:1c:1e:f8:cb:2a:60:b9:
0c:f7:66:de:be:32:96:99:21:1d:51:19:70:46:be:19:43:1e:
1d:7e:7e:0f:08:01:99:b0:ee:c6:91:f5:50:fd:17:fa:29:9e:
3f:39:e9:9e:d3:28:a0:b7:97:91:4e:84:0c:87:bb:cd:28:a5:
fc:7a:49:7a:4d:07:1f:c3:57:ba:e3:5e:29:2d:2a:ae:0b:ea:
5b:6f:86:83:93:d5:75:b2:7c:e6:1e:b4:44:13:c2:67:f8:f0:
59:6b:ae:42:cd:75:7c:ba:25:76:90:65:b3:3d:e1:dc:ad:33:
04:27:f0:fa:de:8f:1a:91:69:a9:b3:54:28:e2:31:29:9a:2e:
56:8b:28:53:cb:5b:9c:5f:fb:51:a7:fe:fb:43:bb:fc:a1:55:
29:05:51:15
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue Apr 8 07:48:53 2025 by rpki-client