Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/rlhqTcRR259TWxZJtIsLTmijeg0.roa
File: rlhqTcRR259TWxZJtIsLTmijeg0.roa (raw, json)
Hash identifier: e1PxJlUem3Oc4nddZNMj9gQL/k1lohvu3jwgsgvw7vg=
Subject key identifier: AE:58:6A:4D:C4:51:DB:9F:53:5B:16:49:B4:8B:0B:4E:68:A3:7A:0D
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 0190043EFA9A8112B99251A65B0A8791EB81
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/rlhqTcRR259TWxZJtIsLTmijeg0.roa
Signing time: Mon 10 Jun 2024 22:22:34 +0000
ROA not before: Mon 10 Jun 2024 22:22:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 136787
IP address blocks: 82.140.135.0/24 maxlen: 24
82.140.136.0/24 maxlen: 24
82.140.137.0/24 maxlen: 24
82.140.142.0/24 maxlen: 24
82.140.144.0/24 maxlen: 24
82.140.145.0/24 maxlen: 24
82.140.147.0/24 maxlen: 24
82.140.149.0/24 maxlen: 24
82.140.151.0/24 maxlen: 24
82.140.154.0/24 maxlen: 24
82.140.155.0/24 maxlen: 24
82.140.157.0/24 maxlen: 24
82.140.162.0/24 maxlen: 24
82.140.163.0/24 maxlen: 24
82.140.164.0/24 maxlen: 24
82.140.167.0/24 maxlen: 24
82.140.168.0/24 maxlen: 24
82.140.172.0/24 maxlen: 24
82.140.173.0/24 maxlen: 24
82.140.174.0/24 maxlen: 24
82.140.175.0/24 maxlen: 24
82.140.181.0/24 maxlen: 24
82.140.186.0/24 maxlen: 24
82.140.190.0/24 maxlen: 24
84.46.128.0/24 maxlen: 24
84.46.129.0/24 maxlen: 24
84.46.130.0/24 maxlen: 24
84.46.132.0/24 maxlen: 24
84.46.133.0/24 maxlen: 24
84.46.135.0/24 maxlen: 24
84.46.137.0/24 maxlen: 24
84.46.138.0/24 maxlen: 24
84.46.140.0/24 maxlen: 24
84.46.141.0/24 maxlen: 24
84.46.142.0/24 maxlen: 24
84.46.143.0/24 maxlen: 24
84.46.144.0/24 maxlen: 24
84.46.150.0/24 maxlen: 24
84.46.151.0/24 maxlen: 24
84.46.152.0/24 maxlen: 24
84.46.154.0/24 maxlen: 24
84.46.155.0/24 maxlen: 24
84.46.158.0/24 maxlen: 24
84.46.165.0/24 maxlen: 24
84.46.166.0/24 maxlen: 24
84.46.174.0/24 maxlen: 24
86.38.2.0/24 maxlen: 24
86.38.44.0/24 maxlen: 24
86.38.46.0/24 maxlen: 24
86.38.91.0/24 maxlen: 24
86.38.157.0/24 maxlen: 24
86.38.206.0/24 maxlen: 24
86.38.207.0/24 maxlen: 24
86.38.224.0/24 maxlen: 24
86.38.231.0/24 maxlen: 24
89.116.0.0/24 maxlen: 24
89.116.18.0/24 maxlen: 24
89.116.40.0/24 maxlen: 24
89.116.55.0/24 maxlen: 24
89.116.57.0/24 maxlen: 24
89.116.79.0/24 maxlen: 24
89.116.94.0/24 maxlen: 24
89.116.95.0/24 maxlen: 24
89.116.98.0/24 maxlen: 24
89.116.142.0/24 maxlen: 24
89.116.145.0/24 maxlen: 24
89.116.194.0/24 maxlen: 24
89.116.195.0/24 maxlen: 24
89.116.196.0/24 maxlen: 24
89.116.197.0/24 maxlen: 24
89.116.199.0/24 maxlen: 24
89.116.201.0/24 maxlen: 24
89.116.204.0/24 maxlen: 24
89.116.205.0/24 maxlen: 24
89.116.206.0/24 maxlen: 24
89.116.207.0/24 maxlen: 24
89.116.216.0/24 maxlen: 24
89.116.217.0/24 maxlen: 24
89.116.219.0/24 maxlen: 24
89.116.222.0/24 maxlen: 24
89.116.251.0/24 maxlen: 24
89.116.254.0/24 maxlen: 24
89.117.4.0/24 maxlen: 24
89.117.34.0/24 maxlen: 24
89.117.131.0/24 maxlen: 24
89.117.189.0/24 maxlen: 24
89.117.191.0/24 maxlen: 24
89.117.230.0/24 maxlen: 24
89.117.231.0/24 maxlen: 24
89.117.244.0/24 maxlen: 24
217.9.251.0/24 maxlen: 24
217.9.252.0/24 maxlen: 24
217.9.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Jun 2024 04:54:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:04:3e:fa:9a:81:12:b9:92:51:a6:5b:0a:87:91:eb:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: Jun 10 22:22:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ae586a4dc451db9f535b1649b48b0b4e68a37a0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:8c:6a:c6:45:05:93:00:58:e0:1f:2f:b1:2d:
ff:66:59:45:68:d2:53:4e:83:c0:b4:9d:d3:b4:82:
35:4b:95:93:8e:84:c9:f1:2b:a4:2a:cf:d7:61:33:
7c:fc:b2:18:08:e9:48:90:b6:72:8c:d6:9e:c1:e4:
2f:f8:d2:fb:95:85:80:d0:a6:c9:87:22:f4:43:99:
fd:60:d3:5d:37:e0:e9:21:af:bc:5f:69:2d:4b:d9:
58:14:dc:47:54:b2:1b:c4:6c:d2:06:c5:40:1d:d2:
4b:10:56:af:fe:e6:2b:a7:e9:74:59:3f:20:2a:16:
bb:a4:c3:f5:c9:36:f9:89:77:11:60:eb:ea:a0:a5:
ee:18:de:83:35:17:51:4e:10:d7:61:1c:46:ff:b5:
a6:e3:a2:c6:9f:fd:47:06:81:90:dc:20:ff:96:28:
fa:dc:25:41:e3:64:49:26:16:00:c6:57:b6:70:9b:
c0:9e:58:e0:64:17:06:a4:6e:ca:5e:c6:69:fa:3e:
b1:9a:22:30:b4:43:80:33:93:4e:7f:25:69:2f:bd:
db:ee:b4:c3:22:80:90:6e:7c:dc:2d:d9:05:b8:81:
3b:af:85:85:b9:15:a1:af:38:c9:52:e1:fa:01:e8:
e0:c2:f5:4d:a6:f7:fd:61:2f:44:f1:a0:13:57:f3:
64:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:58:6A:4D:C4:51:DB:9F:53:5B:16:49:B4:8B:0B:4E:68:A3:7A:0D
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/rlhqTcRR259TWxZJtIsLTmijeg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.135.0-82.140.137.255
82.140.142.0/24
82.140.144.0/23
82.140.147.0/24
82.140.149.0/24
82.140.151.0/24
82.140.154.0/23
82.140.157.0/24
82.140.162.0-82.140.164.255
82.140.167.0-82.140.168.255
82.140.172.0/22
82.140.181.0/24
82.140.186.0/24
82.140.190.0/24
84.46.128.0-84.46.130.255
84.46.132.0/23
84.46.135.0/24
84.46.137.0-84.46.138.255
84.46.140.0-84.46.144.255
84.46.150.0-84.46.152.255
84.46.154.0/23
84.46.158.0/24
84.46.165.0-84.46.166.255
84.46.174.0/24
86.38.2.0/24
86.38.44.0/24
86.38.46.0/24
86.38.91.0/24
86.38.157.0/24
86.38.206.0/23
86.38.224.0/24
86.38.231.0/24
89.116.0.0/24
89.116.18.0/24
89.116.40.0/24
89.116.55.0/24
89.116.57.0/24
89.116.79.0/24
89.116.94.0/23
89.116.98.0/24
89.116.142.0/24
89.116.145.0/24
89.116.194.0-89.116.197.255
89.116.199.0/24
89.116.201.0/24
89.116.204.0/22
89.116.216.0/23
89.116.219.0/24
89.116.222.0/24
89.116.251.0/24
89.116.254.0/24
89.117.4.0/24
89.117.34.0/24
89.117.131.0/24
89.117.189.0/24
89.117.191.0/24
89.117.230.0/23
89.117.244.0/24
217.9.251.0-217.9.253.255
Signature Algorithm: sha256WithRSAEncryption
23:d1:18:2c:f1:0d:e4:87:cb:89:d3:10:b6:d6:67:40:02:e7:
7d:e6:f7:84:80:62:20:37:25:ce:58:4a:d1:c9:56:5e:42:31:
31:e6:4b:85:3b:4d:06:56:6a:9c:0b:fa:03:f1:7b:b6:9e:86:
ae:86:22:76:2a:7d:c3:9e:32:fd:09:ba:2b:ab:bd:57:06:c4:
e6:60:59:8f:76:9f:a3:8a:af:7e:a5:2c:ab:cf:ad:03:c0:a0:
cd:f5:19:27:31:f7:df:3b:d2:d8:49:52:c4:e4:e3:9c:63:d6:
dc:11:c0:89:bc:66:0a:d9:15:63:49:ad:f0:cf:05:6a:58:66:
10:20:4f:e1:79:e3:3e:02:ec:a7:fa:2b:63:bc:6c:81:d8:43:
c3:a4:10:87:c3:9e:28:fb:77:d1:1e:5a:0a:84:44:2b:ea:e2:
7d:cb:bb:34:6f:e2:a5:59:0e:4d:96:b3:da:ab:15:44:b6:a7:
37:e3:06:d5:63:0d:e4:98:3a:cd:64:e8:5d:7a:19:cf:3a:22:
f2:e6:14:28:0f:7a:1f:0f:53:2e:64:78:74:39:a6:eb:73:c7:
54:96:84:7a:0d:52:0f:64:82:b4:99:a8:c2:7d:9b:19:1b:35:
b8:90:e1:e5:44:28:73:97:e8:7e:31:0e:ad:95:72:94:68:08:
e3:54:cb:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 11 09:24:08 2024 by rpki-client on console-ams.rpki-client.org