Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/Ul8TYMuEOOiK7AFj45WhXWZSTN4.roa
File: Ul8TYMuEOOiK7AFj45WhXWZSTN4.roa (raw, json)
Hash identifier: wKtTn+ERQnBCXXkbghtSzb9hjwcFL0OPsxpbNOSNETk=
Subject key identifier: 52:5F:13:60:CB:84:38:E8:8A:EC:01:63:E3:95:A1:5D:66:52:4C:DE
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 018CC94E38406A2D1BF5CFEA28CA1CAFA3C1
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/Ul8TYMuEOOiK7AFj45WhXWZSTN4.roa
Signing time: Tue 02 Jan 2024 08:33:15 +0000
ROA not before: Tue 02 Jan 2024 08:33:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198949
IP address blocks: 95.174.160.0/19 maxlen: 24
87.255.128.0/19 maxlen: 24
217.19.192.0/20 maxlen: 24
159.20.8.0/21 maxlen: 24
213.222.64.0/18 maxlen: 24
95.168.0.0/19 maxlen: 24
79.80.0.0/12 maxlen: 24
185.147.204.0/22 maxlen: 24
79.174.192.0/18 maxlen: 24
185.147.232.0/22 maxlen: 22
85.168.0.0/14 maxlen: 24
194.6.128.0/19 maxlen: 24
195.146.192.0/19 maxlen: 24
62.39.0.0/16 maxlen: 24
77.140.0.0/14 maxlen: 24
62.106.128.0/17 maxlen: 24
217.112.224.0/20 maxlen: 24
194.153.89.0/24 maxlen: 24
194.153.90.0/24 maxlen: 24
194.153.88.0/23 maxlen: 24
194.153.97.0/24 maxlen: 24
194.153.92.0/24 maxlen: 24
178.18.176.0/20 maxlen: 24
87.100.0.0/17 maxlen: 24
176.52.224.0/20 maxlen: 20
212.39.128.0/19 maxlen: 24
62.241.64.0/18 maxlen: 24
178.19.0.0/20 maxlen: 24
81.220.0.0/16 maxlen: 24
77.233.96.0/19 maxlen: 24
78.112.0.0/12 maxlen: 24
62.85.128.0/19 maxlen: 24
37.64.0.0/13 maxlen: 24
46.165.64.0/18 maxlen: 24
89.185.160.0/19 maxlen: 24
84.205.128.0/19 maxlen: 24
212.23.160.0/19 maxlen: 24
212.30.96.0/19 maxlen: 24
91.91.0.0/16 maxlen: 24
88.219.0.0/16 maxlen: 24
81.64.0.0/14 maxlen: 24
80.118.0.0/15 maxlen: 24
195.132.0.0/16 maxlen: 24
195.98.96.0/19 maxlen: 24
78.159.0.0/19 maxlen: 24
84.4.0.0/14 maxlen: 24
85.192.192.0/18 maxlen: 24
79.132.32.0/19 maxlen: 24
77.192.0.0/12 maxlen: 24
86.64.0.0/12 maxlen: 24
80.70.32.0/20 maxlen: 24
80.124.0.0/15 maxlen: 24
82.151.0.0/19 maxlen: 24
95.157.192.0/18 maxlen: 18
95.157.128.0/18 maxlen: 24
212.198.0.0/16 maxlen: 24
93.191.80.0/21 maxlen: 24
77.84.0.0/16 maxlen: 24
91.151.112.0/20 maxlen: 24
86.63.224.0/19 maxlen: 24
213.144.192.0/19 maxlen: 24
77.144.0.0/12 maxlen: 24
217.70.80.0/20 maxlen: 24
85.117.128.0/19 maxlen: 24
195.3.0.0/18 maxlen: 24
77.137.196.0/22 maxlen: 24
77.137.200.0/21 maxlen: 24
95.171.128.0/19 maxlen: 24
77.137.208.0/20 maxlen: 24
80.185.0.0/16 maxlen: 24
81.185.0.0/16 maxlen: 24
77.137.224.0/19 maxlen: 24
84.96.0.0/13 maxlen: 24
87.231.0.0/16 maxlen: 24
62.62.169.0/24 maxlen: 24
89.2.0.0/15 maxlen: 24
188.224.0.0/17 maxlen: 24
95.136.128.0/17 maxlen: 24
194.183.192.0/19 maxlen: 24
62.62.128.0/17 maxlen: 24
89.157.88.0/21 maxlen: 24
89.157.96.0/19 maxlen: 24
141.170.216.0/21 maxlen: 24
213.245.0.0/16 maxlen: 24
185.150.120.0/22 maxlen: 24
213.203.64.0/18 maxlen: 24
89.156.0.0/14 maxlen: 24
213.169.160.0/19 maxlen: 24
93.0.0.0/11 maxlen: 24
109.0.0.0/11 maxlen: 24
93.182.192.0/18 maxlen: 24
81.1.0.0/18 maxlen: 24
88.136.0.0/13 maxlen: 24
213.176.192.0/19 maxlen: 24
84.55.128.0/18 maxlen: 24
89.170.0.0/16 maxlen: 24
62.129.160.0/19 maxlen: 24
62.8.0.0/19 maxlen: 24
77.136.0.0/16 maxlen: 24
46.35.0.0/19 maxlen: 24
80.236.0.0/17 maxlen: 24
77.128.0.0/13 maxlen: 24
188.7.0.0/16 maxlen: 24
212.94.160.0/19 maxlen: 24
130.0.96.0/19 maxlen: 19
83.141.128.0/17 maxlen: 24
188.141.128.0/17 maxlen: 24
213.128.32.0/19 maxlen: 24
194.242.176.0/20 maxlen: 24
195.7.96.0/19 maxlen: 24
92.88.0.0/13 maxlen: 24
85.68.0.0/15 maxlen: 24
213.223.0.0/16 maxlen: 24
91.68.0.0/14 maxlen: 24
91.88.0.0/16 maxlen: 24
82.216.0.0/16 maxlen: 24
95.175.160.0/19 maxlen: 24
195.115.0.0/16 maxlen: 24
78.155.128.0/19 maxlen: 24
2a00:8d80::/32 maxlen: 48
2a00:ec80::/32 maxlen: 48
2a00:5e80::/32 maxlen: 48
2a00:ec81::/32 maxlen: 48
2a00:6200::/29 maxlen: 48
2a00:8380::/32 maxlen: 48
2a00:7180::/32 maxlen: 48
2a02:8400::/25 maxlen: 48
2a00:ec80::/29 maxlen: 48
2a00:9380::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 28 Mar 2024 09:25:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:38:40:6a:2d:1b:f5:cf:ea:28:ca:1c:af:a3:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jan 2 08:33:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=525f1360cb8438e88aec0163e395a15d66524cde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a4:bd:f5:ed:33:07:86:52:81:71:9b:a3:3a:
dc:4f:08:68:ec:36:d9:6f:7f:0f:65:93:e4:04:b5:
ea:d7:3f:f5:42:02:c7:1a:ce:21:c4:a8:35:47:74:
2b:1d:ba:8c:d9:b4:23:49:31:fd:94:0e:66:61:c7:
70:a3:a1:41:7d:b8:50:42:da:2d:9a:1c:e5:da:18:
5a:44:f3:75:10:c7:79:b0:5b:f5:cd:3a:b7:aa:2f:
73:22:cb:14:67:0c:95:17:8f:b8:9e:fb:3c:ad:6b:
6d:b9:dc:3f:94:73:bb:96:60:f1:c8:7d:95:57:4f:
71:4a:64:bc:de:66:d6:32:13:9c:b6:12:2c:f1:3a:
e5:6b:76:2b:dd:ba:14:84:d3:e6:c6:f3:a8:b3:8b:
8b:f2:5a:8a:2f:33:ee:44:3a:0d:66:3c:67:20:ca:
3a:21:7b:ad:d3:2e:42:dd:4e:ef:a4:65:da:f5:70:
4c:7d:4c:97:0d:c8:51:60:ea:98:b5:be:af:a3:15:
8f:e7:dd:61:88:3e:ee:42:58:14:c9:79:3b:ae:5c:
84:a2:a9:c5:29:9e:9d:19:7c:7f:98:4f:f7:1a:9f:
b1:9f:65:a6:71:ab:a4:ec:62:57:b1:8a:56:f9:7e:
a8:4f:b6:4c:cc:8f:3c:39:63:b1:86:3f:63:91:77:
16:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:5F:13:60:CB:84:38:E8:8A:EC:01:63:E3:95:A1:5D:66:52:4C:DE
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/Ul8TYMuEOOiK7AFj45WhXWZSTN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.64.0.0/13
46.35.0.0/19
46.165.64.0/18
62.8.0.0/19
62.39.0.0/16
62.62.128.0/17
62.85.128.0/19
62.106.128.0/17
62.129.160.0/19
62.241.64.0/18
77.84.0.0/16
77.128.0.0-77.136.255.255
77.137.196.0-77.137.255.255
77.140.0.0-77.159.255.255
77.192.0.0/12
77.233.96.0/19
78.112.0.0/12
78.155.128.0/19
78.159.0.0/19
79.80.0.0/12
79.132.32.0/19
79.174.192.0/18
80.70.32.0/20
80.118.0.0/15
80.124.0.0/15
80.185.0.0/16
80.236.0.0/17
81.1.0.0/18
81.64.0.0/14
81.185.0.0/16
81.220.0.0/16
82.151.0.0/19
82.216.0.0/16
83.141.128.0/17
84.4.0.0/14
84.55.128.0/18
84.96.0.0/13
84.205.128.0/19
85.68.0.0/15
85.117.128.0/19
85.168.0.0/14
85.192.192.0/18
86.63.224.0-86.79.255.255
87.100.0.0/17
87.231.0.0/16
87.255.128.0/19
88.136.0.0/13
88.219.0.0/16
89.2.0.0/15
89.156.0.0/14
89.170.0.0/16
89.185.160.0/19
91.68.0.0/14
91.88.0.0/16
91.91.0.0/16
91.151.112.0/20
92.88.0.0/13
93.0.0.0/11
93.182.192.0/18
93.191.80.0/21
95.136.128.0/17
95.157.128.0/17
95.168.0.0/19
95.171.128.0/19
95.174.160.0/19
95.175.160.0/19
109.0.0.0/11
130.0.96.0/19
141.170.216.0/21
159.20.8.0/21
176.52.224.0/20
178.18.176.0/20
178.19.0.0/20
185.147.204.0/22
185.147.232.0/22
185.150.120.0/22
188.7.0.0/16
188.141.128.0/17
188.224.0.0/17
194.6.128.0/19
194.153.88.0-194.153.90.255
194.153.92.0/24
194.153.97.0/24
194.183.192.0/19
194.242.176.0/20
195.3.0.0/18
195.7.96.0/19
195.98.96.0/19
195.115.0.0/16
195.132.0.0/16
195.146.192.0/19
212.23.160.0/19
212.30.96.0/19
212.39.128.0/19
212.94.160.0/19
212.198.0.0/16
213.128.32.0/19
213.144.192.0/19
213.169.160.0/19
213.176.192.0/19
213.203.64.0/18
213.222.64.0/18
213.223.0.0/16
213.245.0.0/16
217.19.192.0/20
217.70.80.0/20
217.112.224.0/20
IPv6:
2a00:5e80::/32
2a00:6200::/29
2a00:7180::/32
2a00:8380::/32
2a00:8d80::/32
2a00:9380::/32
2a00:ec80::/29
2a02:8400::/25
Signature Algorithm: sha256WithRSAEncryption
31:89:be:7b:7f:a8:ab:91:82:dc:60:21:28:4a:b4:d2:5c:5c:
ac:b7:76:fe:c9:94:ad:4c:90:cb:c8:78:9b:74:12:a0:da:4b:
d7:f4:49:25:c0:02:1d:40:b6:89:2e:65:a5:b1:6c:bc:36:12:
ea:c8:13:df:44:e4:4e:5d:21:52:c3:61:86:12:84:80:e2:a5:
37:29:d6:5d:08:72:9d:34:c4:07:b5:11:8d:78:ce:0e:55:ea:
08:e7:de:42:9b:8b:c5:6a:7e:b3:ac:14:0e:c4:9a:ad:14:03:
c9:1f:80:34:85:5d:97:81:7b:be:7a:a2:30:fc:2a:6e:b1:f1:
2f:0a:52:77:23:ca:31:d1:b8:53:03:40:df:f3:1f:c9:30:81:
3b:b2:0f:a9:91:7e:f0:22:c7:48:86:ea:4e:b8:36:79:86:1b:
ab:a1:af:49:db:74:62:a5:5d:ca:ae:6e:52:48:7e:b1:9a:a5:
86:9e:bb:49:03:0d:20:2f:11:18:ed:6d:de:1f:0d:7a:53:db:
d3:a3:76:a9:8f:3e:15:e3:af:7e:ea:04:cc:ce:3b:a2:c2:1d:
90:ff:54:5f:9a:84:c2:3f:b7:36:e1:67:48:dd:4d:91:01:93:
36:2e:a5:20:cb:ec:5d:8f:45:7c:72:35:16:ad:ab:aa:2e:19:
c7:2d:db:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:50 2024 by rpki-client on console-ams.rpki-client.org