Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/akFq7n84Z-HmqCHsXxMvPGYRVB4.roa
File: akFq7n84Z-HmqCHsXxMvPGYRVB4.roa (raw, json)
Hash identifier: ns0TNbowh3qIDz8NBdBirku2N3o2OxzsbrXwaqJf8qI=
Subject key identifier: 6A:41:6A:EE:7F:38:67:E1:E6:A8:21:EC:5F:13:2F:3C:66:11:54:1E
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 018AFE98BFDD422BE2DC97985747B6A4983D
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/akFq7n84Z-HmqCHsXxMvPGYRVB4.roa
Signing time: Thu 05 Oct 2023 06:48:57 +0000
ROA not before: Thu 05 Oct 2023 06:48:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198949
IP address blocks: 95.174.160.0/19 maxlen: 24
87.255.128.0/19 maxlen: 24
217.19.192.0/20 maxlen: 24
159.20.8.0/21 maxlen: 24
213.222.64.0/18 maxlen: 24
95.168.0.0/19 maxlen: 24
79.80.0.0/12 maxlen: 24
185.147.204.0/22 maxlen: 24
79.174.192.0/18 maxlen: 24
185.147.232.0/22 maxlen: 22
85.168.0.0/14 maxlen: 24
194.6.128.0/19 maxlen: 24
195.146.192.0/19 maxlen: 24
62.39.0.0/16 maxlen: 24
77.140.0.0/14 maxlen: 24
62.106.128.0/17 maxlen: 24
217.112.224.0/20 maxlen: 24
194.153.89.0/24 maxlen: 24
194.153.90.0/24 maxlen: 24
194.153.88.0/23 maxlen: 24
194.153.97.0/24 maxlen: 24
194.153.92.0/24 maxlen: 24
178.18.176.0/20 maxlen: 24
87.100.0.0/17 maxlen: 24
176.52.224.0/20 maxlen: 20
212.39.128.0/19 maxlen: 24
62.241.64.0/18 maxlen: 24
178.19.0.0/20 maxlen: 24
81.220.0.0/16 maxlen: 24
77.233.96.0/19 maxlen: 24
78.112.0.0/12 maxlen: 24
62.85.128.0/19 maxlen: 24
37.64.0.0/13 maxlen: 24
46.165.64.0/18 maxlen: 24
89.185.160.0/19 maxlen: 24
84.205.128.0/19 maxlen: 24
212.23.160.0/19 maxlen: 24
212.30.96.0/19 maxlen: 24
91.91.0.0/16 maxlen: 24
88.219.0.0/16 maxlen: 24
81.64.0.0/14 maxlen: 24
80.118.0.0/15 maxlen: 24
195.132.0.0/16 maxlen: 24
195.98.96.0/19 maxlen: 24
78.159.0.0/19 maxlen: 24
84.4.0.0/14 maxlen: 24
85.192.192.0/18 maxlen: 24
79.132.32.0/19 maxlen: 24
77.192.0.0/12 maxlen: 24
86.64.0.0/12 maxlen: 24
80.70.32.0/20 maxlen: 24
80.124.0.0/15 maxlen: 24
82.151.0.0/19 maxlen: 24
95.157.192.0/18 maxlen: 18
95.157.128.0/18 maxlen: 24
212.198.0.0/16 maxlen: 24
93.191.80.0/21 maxlen: 24
77.84.0.0/16 maxlen: 24
91.151.112.0/20 maxlen: 24
86.63.224.0/19 maxlen: 24
213.144.192.0/19 maxlen: 24
77.144.0.0/12 maxlen: 24
217.70.80.0/20 maxlen: 24
85.117.128.0/19 maxlen: 24
195.3.0.0/18 maxlen: 24
77.137.196.0/22 maxlen: 24
77.137.200.0/21 maxlen: 24
95.171.128.0/19 maxlen: 24
77.137.208.0/20 maxlen: 24
81.185.0.0/16 maxlen: 24
80.185.0.0/16 maxlen: 24
77.137.224.0/19 maxlen: 24
84.96.0.0/13 maxlen: 24
87.231.0.0/16 maxlen: 24
62.62.169.0/24 maxlen: 24
89.2.0.0/15 maxlen: 24
188.224.0.0/17 maxlen: 24
95.136.128.0/17 maxlen: 24
194.183.192.0/19 maxlen: 24
62.62.128.0/17 maxlen: 24
89.157.88.0/21 maxlen: 24
89.157.96.0/19 maxlen: 24
141.170.216.0/21 maxlen: 24
213.245.0.0/16 maxlen: 24
185.150.120.0/22 maxlen: 24
213.203.64.0/18 maxlen: 24
89.156.0.0/14 maxlen: 24
213.169.160.0/19 maxlen: 24
109.0.0.0/11 maxlen: 24
93.0.0.0/11 maxlen: 24
93.182.192.0/18 maxlen: 24
81.1.0.0/18 maxlen: 24
88.136.0.0/13 maxlen: 24
213.176.192.0/19 maxlen: 24
84.55.128.0/18 maxlen: 24
89.170.0.0/16 maxlen: 24
62.129.160.0/19 maxlen: 24
62.8.0.0/19 maxlen: 24
77.136.0.0/16 maxlen: 24
46.35.0.0/19 maxlen: 24
80.236.0.0/17 maxlen: 24
77.128.0.0/13 maxlen: 24
188.7.0.0/16 maxlen: 24
212.94.160.0/19 maxlen: 24
130.0.96.0/19 maxlen: 19
188.141.128.0/17 maxlen: 24
83.141.128.0/17 maxlen: 24
213.128.32.0/19 maxlen: 24
194.242.176.0/20 maxlen: 24
195.7.96.0/19 maxlen: 24
92.88.0.0/13 maxlen: 24
85.68.0.0/15 maxlen: 24
213.223.0.0/16 maxlen: 24
91.68.0.0/14 maxlen: 24
91.88.0.0/16 maxlen: 24
82.216.0.0/16 maxlen: 24
95.175.160.0/19 maxlen: 24
195.115.0.0/16 maxlen: 24
78.155.128.0/19 maxlen: 24
2a00:8d80::/32 maxlen: 48
2a00:ec80::/32 maxlen: 48
2a00:5e80::/32 maxlen: 48
2a00:ec81::/32 maxlen: 48
2a00:6200::/29 maxlen: 48
2a00:8380::/32 maxlen: 48
2a00:7180::/32 maxlen: 48
2a02:8400::/25 maxlen: 48
2a00:ec80::/29 maxlen: 48
2a00:9380::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fe:98:bf:dd:42:2b:e2:dc:97:98:57:47:b6:a4:98:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Oct 5 06:48:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a416aee7f3867e1e6a821ec5f132f3c6611541e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:80:5b:37:a5:3f:42:71:33:97:97:d8:48:64:
da:42:99:e6:22:5d:5d:f5:e6:9e:b2:fc:cb:87:f4:
f3:21:be:2f:b2:e2:49:d0:b8:c8:25:41:52:22:eb:
5e:1c:20:ef:49:53:26:9c:21:ee:6e:cd:7d:56:ec:
df:50:f5:80:45:e5:ac:eb:60:83:c5:1e:fc:18:1d:
b9:74:bc:8c:72:3f:ad:ff:d2:53:1b:7c:26:c0:a4:
47:34:99:79:a0:5b:b4:42:36:1d:9a:19:2f:58:1f:
6b:33:72:b3:69:79:27:3b:1e:87:13:2c:b5:97:d6:
92:08:fa:51:a4:f7:47:ef:35:41:0a:03:01:ea:91:
c6:a3:f2:fe:e2:54:3b:71:6d:f1:e1:14:bc:a6:c3:
d3:2c:b8:45:bc:10:b6:5b:99:98:39:5e:bd:20:98:
64:b9:d0:08:ec:ef:19:72:f9:86:31:d0:6c:05:81:
df:ba:74:43:05:b1:5e:ab:88:9a:ed:fd:dd:04:53:
fd:49:13:8b:76:b4:18:e8:f3:0b:30:57:cc:2c:d5:
8f:c9:4b:67:fc:08:58:e2:e5:3d:2f:5a:4f:31:dc:
56:72:7b:19:39:1d:d9:b9:0d:bd:d6:b5:85:55:73:
b3:81:01:38:11:25:8c:01:a0:30:fe:cc:0e:44:27:
33:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:41:6A:EE:7F:38:67:E1:E6:A8:21:EC:5F:13:2F:3C:66:11:54:1E
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/akFq7n84Z-HmqCHsXxMvPGYRVB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.64.0.0/13
46.35.0.0/19
46.165.64.0/18
62.8.0.0/19
62.39.0.0/16
62.62.128.0/17
62.85.128.0/19
62.106.128.0/17
62.129.160.0/19
62.241.64.0/18
77.84.0.0/16
77.128.0.0-77.136.255.255
77.137.196.0-77.137.255.255
77.140.0.0-77.159.255.255
77.192.0.0/12
77.233.96.0/19
78.112.0.0/12
78.155.128.0/19
78.159.0.0/19
79.80.0.0/12
79.132.32.0/19
79.174.192.0/18
80.70.32.0/20
80.118.0.0/15
80.124.0.0/15
80.185.0.0/16
80.236.0.0/17
81.1.0.0/18
81.64.0.0/14
81.185.0.0/16
81.220.0.0/16
82.151.0.0/19
82.216.0.0/16
83.141.128.0/17
84.4.0.0/14
84.55.128.0/18
84.96.0.0/13
84.205.128.0/19
85.68.0.0/15
85.117.128.0/19
85.168.0.0/14
85.192.192.0/18
86.63.224.0-86.79.255.255
87.100.0.0/17
87.231.0.0/16
87.255.128.0/19
88.136.0.0/13
88.219.0.0/16
89.2.0.0/15
89.156.0.0/14
89.170.0.0/16
89.185.160.0/19
91.68.0.0/14
91.88.0.0/16
91.91.0.0/16
91.151.112.0/20
92.88.0.0/13
93.0.0.0/11
93.182.192.0/18
93.191.80.0/21
95.136.128.0/17
95.157.128.0/17
95.168.0.0/19
95.171.128.0/19
95.174.160.0/19
95.175.160.0/19
109.0.0.0/11
130.0.96.0/19
141.170.216.0/21
159.20.8.0/21
176.52.224.0/20
178.18.176.0/20
178.19.0.0/20
185.147.204.0/22
185.147.232.0/22
185.150.120.0/22
188.7.0.0/16
188.141.128.0/17
188.224.0.0/17
194.6.128.0/19
194.153.88.0-194.153.90.255
194.153.92.0/24
194.153.97.0/24
194.183.192.0/19
194.242.176.0/20
195.3.0.0/18
195.7.96.0/19
195.98.96.0/19
195.115.0.0/16
195.132.0.0/16
195.146.192.0/19
212.23.160.0/19
212.30.96.0/19
212.39.128.0/19
212.94.160.0/19
212.198.0.0/16
213.128.32.0/19
213.144.192.0/19
213.169.160.0/19
213.176.192.0/19
213.203.64.0/18
213.222.64.0/18
213.223.0.0/16
213.245.0.0/16
217.19.192.0/20
217.70.80.0/20
217.112.224.0/20
IPv6:
2a00:5e80::/32
2a00:6200::/29
2a00:7180::/32
2a00:8380::/32
2a00:8d80::/32
2a00:9380::/32
2a00:ec80::/29
2a02:8400::/25
Signature Algorithm: sha256WithRSAEncryption
47:4e:ba:e8:d0:cc:ac:4e:f6:2b:eb:88:9f:ea:44:9b:fa:16:
86:ae:48:1e:33:62:69:b9:ac:e0:47:34:3a:80:cf:87:e8:74:
14:dc:d2:a4:d8:89:0d:6f:37:68:1a:96:f2:57:75:e1:c0:02:
73:e5:75:b2:bb:92:39:2f:7d:8a:4e:78:1a:1b:50:9e:64:7a:
49:52:a6:e2:75:9c:00:e5:6c:d8:0b:9e:e2:90:78:30:09:4d:
2c:84:c7:ba:fa:45:92:1b:fe:1f:4d:fc:77:ee:39:3d:2f:2c:
eb:63:2e:09:3d:2d:a7:26:6d:ca:0a:e7:91:eb:b9:a1:77:fe:
09:d0:97:87:49:7b:a2:6b:a4:db:bf:66:0f:02:3b:36:88:da:
63:03:01:da:b9:3a:46:15:ad:9a:7f:c9:f4:24:61:ae:55:aa:
a4:db:d2:9c:47:b7:92:15:aa:bc:51:00:ab:88:23:45:42:0e:
e2:91:4e:cf:a3:82:f3:8b:50:48:c8:c6:bb:67:7e:99:b8:e5:
63:9e:10:5a:0c:6e:14:4a:89:50:94:4f:af:57:26:27:32:71:
06:14:1c:18:71:5c:17:ba:55:58:87:43:3f:9e:70:b2:f1:47:
fb:aa:7b:8a:6c:39:d8:da:b5:60:9c:1d:2c:b5:f6:c0:da:5a:
36:06:4c:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:55 2024 by rpki-client on console-fra.rpki-client.org