Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/Q903GDGGSHCHMWm-Z4-SbZO4yUk.roa
File: Q903GDGGSHCHMWm-Z4-SbZO4yUk.roa (raw, json)
Hash identifier: W8BGIuraROQTvQedm0fTL+SPoYX/NssLG5WWXq5zmz0=
Subject key identifier: 43:DD:37:18:31:86:48:70:87:31:69:BE:67:8F:92:6D:93:B8:C9:49
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 018978C079F5EA70D037D806DB78BA0C5346
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/Q903GDGGSHCHMWm-Z4-SbZO4yUk.roa
Signing time: Fri 21 Jul 2023 14:00:27 +0000
ROA not before: Fri 21 Jul 2023 14:00:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198949
IP address blocks: 95.174.160.0/19 maxlen: 24
87.255.128.0/19 maxlen: 24
217.19.192.0/20 maxlen: 24
159.20.8.0/21 maxlen: 24
213.222.64.0/18 maxlen: 24
95.168.0.0/19 maxlen: 24
79.80.0.0/12 maxlen: 24
185.147.204.0/22 maxlen: 24
79.174.192.0/18 maxlen: 24
185.147.232.0/22 maxlen: 24
85.168.0.0/14 maxlen: 24
194.6.128.0/19 maxlen: 24
195.146.192.0/19 maxlen: 24
62.39.0.0/16 maxlen: 24
77.140.0.0/14 maxlen: 24
62.106.128.0/17 maxlen: 24
217.112.224.0/20 maxlen: 24
194.153.89.0/24 maxlen: 24
194.153.90.0/24 maxlen: 24
194.153.88.0/23 maxlen: 24
194.153.97.0/24 maxlen: 24
194.153.92.0/24 maxlen: 24
178.18.176.0/20 maxlen: 24
87.100.0.0/17 maxlen: 24
212.39.128.0/19 maxlen: 24
62.241.64.0/18 maxlen: 24
178.19.0.0/20 maxlen: 24
81.220.0.0/16 maxlen: 24
77.233.96.0/19 maxlen: 24
78.112.0.0/12 maxlen: 24
62.85.128.0/19 maxlen: 24
37.64.0.0/13 maxlen: 24
46.165.64.0/18 maxlen: 24
89.185.160.0/19 maxlen: 24
84.205.128.0/19 maxlen: 24
212.23.160.0/19 maxlen: 24
212.30.96.0/19 maxlen: 24
91.91.0.0/16 maxlen: 24
88.219.0.0/16 maxlen: 24
81.64.0.0/14 maxlen: 24
80.118.0.0/15 maxlen: 24
195.132.0.0/16 maxlen: 24
195.98.96.0/19 maxlen: 24
78.159.0.0/19 maxlen: 24
84.4.0.0/14 maxlen: 24
85.192.192.0/18 maxlen: 24
79.132.32.0/19 maxlen: 24
77.192.0.0/12 maxlen: 24
86.64.0.0/12 maxlen: 24
80.70.32.0/20 maxlen: 24
80.124.0.0/15 maxlen: 24
82.151.0.0/19 maxlen: 24
95.157.192.0/18 maxlen: 24
212.198.0.0/16 maxlen: 24
93.191.80.0/21 maxlen: 24
77.84.0.0/16 maxlen: 24
91.151.112.0/20 maxlen: 24
86.63.224.0/19 maxlen: 24
213.144.192.0/19 maxlen: 24
77.144.0.0/12 maxlen: 24
217.70.80.0/20 maxlen: 24
85.117.128.0/19 maxlen: 24
195.3.0.0/18 maxlen: 24
77.137.196.0/22 maxlen: 24
77.137.200.0/21 maxlen: 24
95.171.128.0/19 maxlen: 24
77.137.208.0/20 maxlen: 24
80.185.0.0/16 maxlen: 24
81.185.0.0/16 maxlen: 24
77.137.224.0/19 maxlen: 24
84.96.0.0/13 maxlen: 24
87.231.0.0/16 maxlen: 24
62.62.169.0/24 maxlen: 24
89.2.0.0/15 maxlen: 24
188.224.0.0/17 maxlen: 24
95.136.128.0/17 maxlen: 24
194.183.192.0/19 maxlen: 24
62.62.128.0/17 maxlen: 24
89.157.88.0/21 maxlen: 24
89.157.96.0/19 maxlen: 24
141.170.216.0/21 maxlen: 24
213.245.0.0/16 maxlen: 24
185.150.120.0/22 maxlen: 24
213.203.64.0/18 maxlen: 24
89.156.0.0/14 maxlen: 24
213.169.160.0/19 maxlen: 24
93.0.0.0/11 maxlen: 24
109.0.0.0/11 maxlen: 24
93.182.192.0/18 maxlen: 24
81.1.0.0/18 maxlen: 24
88.136.0.0/13 maxlen: 24
213.176.192.0/19 maxlen: 24
84.55.128.0/18 maxlen: 24
89.170.0.0/16 maxlen: 24
62.129.160.0/19 maxlen: 24
62.8.0.0/19 maxlen: 24
77.136.0.0/16 maxlen: 24
46.35.0.0/19 maxlen: 24
80.236.0.0/17 maxlen: 24
77.128.0.0/13 maxlen: 24
188.7.0.0/16 maxlen: 24
212.94.160.0/19 maxlen: 24
83.141.128.0/17 maxlen: 24
188.141.128.0/17 maxlen: 24
213.128.32.0/19 maxlen: 24
194.242.176.0/20 maxlen: 24
195.7.96.0/19 maxlen: 24
92.88.0.0/13 maxlen: 24
85.68.0.0/15 maxlen: 24
213.223.0.0/16 maxlen: 24
91.68.0.0/14 maxlen: 24
91.88.0.0/16 maxlen: 24
82.216.0.0/16 maxlen: 24
95.175.160.0/19 maxlen: 24
195.115.0.0/16 maxlen: 24
78.155.128.0/19 maxlen: 24
2a00:8d80::/32 maxlen: 48
2a00:ec80::/32 maxlen: 48
2a00:5e80::/32 maxlen: 48
2a00:ec81::/32 maxlen: 48
2a00:6200::/29 maxlen: 48
2a00:8380::/32 maxlen: 48
2a00:7180::/32 maxlen: 48
2a02:8400::/25 maxlen: 48
2a00:9380::/32 maxlen: 48
Validation: Failed, certificate revoked on Fri 21 Jul 2023 14:47:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:78:c0:79:f5:ea:70:d0:37:d8:06:db:78:ba:0c:53:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jul 21 14:00:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43dd371831864870873169be678f926d93b8c949
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8a:bb:f4:31:1d:bd:3b:79:a2:de:97:e4:a8:
24:0a:2d:83:56:28:ca:10:63:e4:2b:fd:5a:47:7a:
bb:5a:6a:a9:d9:84:74:06:2d:bb:fd:ee:f9:3c:c4:
9f:6a:7b:5a:65:97:84:60:45:f0:28:aa:00:fb:6a:
dd:c4:39:c1:e0:b6:de:dc:22:ad:d1:db:8c:84:22:
8f:cc:5c:57:ab:f2:0d:a6:27:d2:73:b6:a4:dd:73:
56:40:e4:86:70:49:2e:ce:00:93:03:29:05:2d:10:
b7:83:54:35:b4:57:c7:39:a2:d3:65:06:e2:24:11:
c9:4c:f4:1f:ad:76:7a:69:bb:50:7a:9c:b0:a4:ed:
e8:e2:c6:03:bf:95:ac:85:a6:f0:d8:57:ef:c7:0f:
bb:13:42:cb:14:34:72:d4:11:9f:9c:ff:3b:d0:35:
11:31:f7:89:8c:c3:57:4f:3d:d3:fe:9c:5e:07:8a:
52:6b:6e:56:71:b0:f6:28:78:e5:99:f1:07:e7:c8:
ce:03:22:21:ec:be:9e:21:a4:f1:a7:55:37:39:6b:
9e:4a:6d:e7:cc:cc:8b:a7:aa:02:96:ea:4b:e0:02:
85:57:58:ba:07:75:9c:1f:76:62:e2:33:7f:fd:bc:
80:e2:ad:2b:ce:f2:d7:72:b4:2c:d3:6e:8a:a3:35:
b7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:DD:37:18:31:86:48:70:87:31:69:BE:67:8F:92:6D:93:B8:C9:49
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/Q903GDGGSHCHMWm-Z4-SbZO4yUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.64.0.0/13
46.35.0.0/19
46.165.64.0/18
62.8.0.0/19
62.39.0.0/16
62.62.128.0/17
62.85.128.0/19
62.106.128.0/17
62.129.160.0/19
62.241.64.0/18
77.84.0.0/16
77.128.0.0-77.136.255.255
77.137.196.0-77.137.255.255
77.140.0.0-77.159.255.255
77.192.0.0/12
77.233.96.0/19
78.112.0.0/12
78.155.128.0/19
78.159.0.0/19
79.80.0.0/12
79.132.32.0/19
79.174.192.0/18
80.70.32.0/20
80.118.0.0/15
80.124.0.0/15
80.185.0.0/16
80.236.0.0/17
81.1.0.0/18
81.64.0.0/14
81.185.0.0/16
81.220.0.0/16
82.151.0.0/19
82.216.0.0/16
83.141.128.0/17
84.4.0.0/14
84.55.128.0/18
84.96.0.0/13
84.205.128.0/19
85.68.0.0/15
85.117.128.0/19
85.168.0.0/14
85.192.192.0/18
86.63.224.0-86.79.255.255
87.100.0.0/17
87.231.0.0/16
87.255.128.0/19
88.136.0.0/13
88.219.0.0/16
89.2.0.0/15
89.156.0.0/14
89.170.0.0/16
89.185.160.0/19
91.68.0.0/14
91.88.0.0/16
91.91.0.0/16
91.151.112.0/20
92.88.0.0/13
93.0.0.0/11
93.182.192.0/18
93.191.80.0/21
95.136.128.0/17
95.157.192.0/18
95.168.0.0/19
95.171.128.0/19
95.174.160.0/19
95.175.160.0/19
109.0.0.0/11
141.170.216.0/21
159.20.8.0/21
178.18.176.0/20
178.19.0.0/20
185.147.204.0/22
185.147.232.0/22
185.150.120.0/22
188.7.0.0/16
188.141.128.0/17
188.224.0.0/17
194.6.128.0/19
194.153.88.0-194.153.90.255
194.153.92.0/24
194.153.97.0/24
194.183.192.0/19
194.242.176.0/20
195.3.0.0/18
195.7.96.0/19
195.98.96.0/19
195.115.0.0/16
195.132.0.0/16
195.146.192.0/19
212.23.160.0/19
212.30.96.0/19
212.39.128.0/19
212.94.160.0/19
212.198.0.0/16
213.128.32.0/19
213.144.192.0/19
213.169.160.0/19
213.176.192.0/19
213.203.64.0/18
213.222.64.0/18
213.223.0.0/16
213.245.0.0/16
217.19.192.0/20
217.70.80.0/20
217.112.224.0/20
IPv6:
2a00:5e80::/32
2a00:6200::/29
2a00:7180::/32
2a00:8380::/32
2a00:8d80::/32
2a00:9380::/32
2a00:ec80::/31
2a02:8400::/25
Signature Algorithm: sha256WithRSAEncryption
0a:09:81:c7:b3:af:05:fa:c1:66:78:aa:71:f1:d6:60:d6:1d:
1d:d0:85:f0:c9:d5:f5:5c:bc:4d:31:0d:8c:54:e4:d9:b7:b3:
77:9e:0d:59:dd:2e:f9:c8:13:05:d2:a4:c4:1f:e4:b8:ee:1a:
3b:32:96:a0:38:54:f9:4f:4e:2a:52:65:93:3a:d8:f7:ea:3e:
03:b7:fc:62:bb:9f:ec:a9:28:0a:5b:ed:ec:46:48:fe:be:cb:
f7:85:71:91:e2:a0:05:a9:8b:3e:6e:c6:fa:5e:79:b2:02:61:
4e:cf:5e:35:2b:72:f1:20:7c:17:c3:da:3a:e8:53:43:72:32:
cc:2a:1d:50:01:6d:ba:28:80:53:4e:04:d0:d1:95:f3:1d:5e:
37:dc:a0:47:94:be:14:df:84:02:fd:16:a0:e7:99:e5:e4:85:
17:9d:f5:e3:51:cb:fb:1a:35:a5:65:d2:75:1e:46:83:6d:98:
7a:13:d7:e0:5e:e5:1b:ef:fa:4a:b6:bd:6d:ff:25:d3:49:f4:
31:02:44:87:ea:4f:81:9b:62:27:21:e9:f5:94:f3:79:f0:44:
e8:30:2b:3e:6b:29:e6:bd:60:3e:02:c5:74:57:da:f1:59:d8:
ff:d6:f1:05:d2:db:00:12:33:27:15:05:2e:2c:bf:24:ab:7c:
a7:b7:43:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:55 2024 by rpki-client on console-fra.rpki-client.org