Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/neH3n-VGjngg1qYUGjrxxom3298.roa
File: neH3n-VGjngg1qYUGjrxxom3298.roa (raw, json)
Hash identifier: jFvcQNIiS46Macy+7rLgdYEQO7jix0ap6uY/Zpw2kzI=
Subject key identifier: 9D:E1:F7:9F:E5:46:8E:78:20:D6:A6:14:1A:3A:F1:C6:89:B7:DB:DF
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 01896423BFD782FE10607A29B5F880BA6E3B
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/neH3n-VGjngg1qYUGjrxxom3298.roa
Signing time: Mon 17 Jul 2023 13:56:51 +0000
ROA not before: Mon 17 Jul 2023 13:56:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198949
IP address blocks: 95.174.160.0/19 maxlen: 24
87.255.128.0/19 maxlen: 24
217.19.192.0/20 maxlen: 24
159.20.8.0/21 maxlen: 24
213.222.64.0/18 maxlen: 24
95.168.0.0/19 maxlen: 24
79.80.0.0/12 maxlen: 24
185.147.204.0/22 maxlen: 24
79.174.192.0/18 maxlen: 24
85.168.0.0/14 maxlen: 24
194.6.128.0/19 maxlen: 24
195.146.192.0/19 maxlen: 24
62.39.0.0/16 maxlen: 24
77.140.0.0/14 maxlen: 24
62.106.128.0/17 maxlen: 24
217.112.224.0/20 maxlen: 24
194.153.89.0/24 maxlen: 24
194.153.90.0/24 maxlen: 24
194.153.88.0/23 maxlen: 24
194.153.97.0/24 maxlen: 24
194.153.92.0/24 maxlen: 24
178.18.176.0/20 maxlen: 24
87.100.0.0/17 maxlen: 24
212.39.128.0/19 maxlen: 24
62.241.64.0/18 maxlen: 24
178.19.0.0/20 maxlen: 24
81.220.0.0/16 maxlen: 24
77.233.96.0/19 maxlen: 24
78.112.0.0/12 maxlen: 24
62.85.128.0/19 maxlen: 24
37.64.0.0/13 maxlen: 24
46.165.64.0/18 maxlen: 24
89.185.160.0/19 maxlen: 24
84.205.128.0/19 maxlen: 24
212.23.160.0/19 maxlen: 24
212.30.96.0/19 maxlen: 24
91.91.0.0/16 maxlen: 24
88.219.0.0/16 maxlen: 24
81.64.0.0/14 maxlen: 24
80.118.0.0/15 maxlen: 24
195.132.0.0/16 maxlen: 24
195.98.96.0/19 maxlen: 24
78.159.0.0/19 maxlen: 24
84.4.0.0/14 maxlen: 24
85.192.192.0/18 maxlen: 24
79.132.32.0/19 maxlen: 24
77.192.0.0/12 maxlen: 24
86.64.0.0/12 maxlen: 24
80.70.32.0/20 maxlen: 24
80.124.0.0/15 maxlen: 24
82.151.0.0/19 maxlen: 24
95.157.192.0/18 maxlen: 24
212.198.0.0/16 maxlen: 24
93.191.80.0/21 maxlen: 24
77.84.0.0/16 maxlen: 24
91.151.112.0/20 maxlen: 24
86.63.224.0/19 maxlen: 24
213.144.192.0/19 maxlen: 24
77.144.0.0/12 maxlen: 24
217.70.80.0/20 maxlen: 24
85.117.128.0/19 maxlen: 24
195.3.0.0/18 maxlen: 24
77.137.196.0/22 maxlen: 24
77.137.200.0/21 maxlen: 24
95.171.128.0/19 maxlen: 24
77.137.208.0/20 maxlen: 24
81.185.0.0/16 maxlen: 24
80.185.0.0/16 maxlen: 24
77.137.224.0/19 maxlen: 24
84.96.0.0/13 maxlen: 24
87.231.0.0/16 maxlen: 24
62.62.169.0/24 maxlen: 24
89.2.0.0/15 maxlen: 24
188.224.0.0/17 maxlen: 24
95.136.128.0/17 maxlen: 24
194.183.192.0/19 maxlen: 24
62.62.128.0/17 maxlen: 24
89.157.88.0/21 maxlen: 24
89.157.96.0/19 maxlen: 24
141.170.216.0/21 maxlen: 24
213.245.0.0/16 maxlen: 24
185.150.120.0/22 maxlen: 24
213.203.64.0/18 maxlen: 24
89.156.0.0/14 maxlen: 24
213.169.160.0/19 maxlen: 24
109.0.0.0/11 maxlen: 24
93.0.0.0/11 maxlen: 24
93.182.192.0/18 maxlen: 24
81.1.0.0/18 maxlen: 24
88.136.0.0/13 maxlen: 24
213.176.192.0/19 maxlen: 24
84.55.128.0/18 maxlen: 24
89.170.0.0/16 maxlen: 24
62.129.160.0/19 maxlen: 24
62.8.0.0/19 maxlen: 24
77.136.0.0/16 maxlen: 24
46.35.0.0/19 maxlen: 24
80.236.0.0/17 maxlen: 24
77.128.0.0/13 maxlen: 24
188.7.0.0/16 maxlen: 24
212.94.160.0/19 maxlen: 24
188.141.128.0/17 maxlen: 24
83.141.128.0/17 maxlen: 24
213.128.32.0/19 maxlen: 24
194.242.176.0/20 maxlen: 24
195.7.96.0/19 maxlen: 24
92.88.0.0/13 maxlen: 24
85.68.0.0/15 maxlen: 24
213.223.0.0/16 maxlen: 24
91.68.0.0/14 maxlen: 24
91.88.0.0/16 maxlen: 24
82.216.0.0/16 maxlen: 24
95.175.160.0/19 maxlen: 24
195.115.0.0/16 maxlen: 24
78.155.128.0/19 maxlen: 24
2a00:5e80::/32 maxlen: 48
2a00:ec81::/32 maxlen: 48
2a00:6200::/29 maxlen: 48
2a00:7180::/32 maxlen: 48
2a02:8400::/25 maxlen: 48
Validation: Failed, certificate revoked on Mon 17 Jul 2023 14:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:23:bf:d7:82:fe:10:60:7a:29:b5:f8:80:ba:6e:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jul 17 13:56:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9de1f79fe5468e7820d6a6141a3af1c689b7dbdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:7d:fc:1b:b9:13:92:a6:e4:9d:d2:17:e2:fa:
7e:f3:da:aa:49:14:70:37:8b:6a:63:de:93:ed:7f:
27:37:ce:31:35:b1:90:77:74:a0:5f:21:46:46:9d:
f8:5f:7b:73:2b:35:65:30:ec:a9:94:69:27:b5:b4:
85:76:02:16:95:d2:fc:87:74:fb:94:fa:4a:d8:3d:
a6:98:1f:21:c5:8b:60:f8:71:a2:8e:18:cb:f1:52:
1a:a0:ef:1b:8c:33:b5:92:81:a7:71:ea:66:41:3a:
a9:aa:71:6e:c1:0f:51:21:f0:23:74:2c:a0:48:59:
e8:2f:4a:f6:8c:2c:3e:6e:4f:ec:56:8e:52:c4:f1:
fb:47:4a:d7:96:2c:db:0d:11:fe:1a:24:b7:f6:b7:
76:86:60:97:98:ea:a0:c3:e0:21:3a:45:e4:e0:59:
1f:c6:fd:16:25:f9:4a:a0:29:63:c5:74:34:ad:ba:
54:ac:57:12:f6:7c:33:9e:cd:35:6c:62:10:f9:aa:
71:43:3e:9f:dd:09:8b:2c:e9:36:4b:d3:d9:ed:37:
33:2f:10:4b:5b:83:f3:b6:ae:f5:61:6e:bd:4b:b6:
aa:25:1b:0b:0a:c0:eb:b9:a9:03:02:84:60:a1:6c:
cf:6a:e1:12:01:39:0e:fc:b3:02:0f:3b:8b:5f:1c:
6a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:E1:F7:9F:E5:46:8E:78:20:D6:A6:14:1A:3A:F1:C6:89:B7:DB:DF
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/neH3n-VGjngg1qYUGjrxxom3298.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.64.0.0/13
46.35.0.0/19
46.165.64.0/18
62.8.0.0/19
62.39.0.0/16
62.62.128.0/17
62.85.128.0/19
62.106.128.0/17
62.129.160.0/19
62.241.64.0/18
77.84.0.0/16
77.128.0.0-77.136.255.255
77.137.196.0-77.137.255.255
77.140.0.0-77.159.255.255
77.192.0.0/12
77.233.96.0/19
78.112.0.0/12
78.155.128.0/19
78.159.0.0/19
79.80.0.0/12
79.132.32.0/19
79.174.192.0/18
80.70.32.0/20
80.118.0.0/15
80.124.0.0/15
80.185.0.0/16
80.236.0.0/17
81.1.0.0/18
81.64.0.0/14
81.185.0.0/16
81.220.0.0/16
82.151.0.0/19
82.216.0.0/16
83.141.128.0/17
84.4.0.0/14
84.55.128.0/18
84.96.0.0/13
84.205.128.0/19
85.68.0.0/15
85.117.128.0/19
85.168.0.0/14
85.192.192.0/18
86.63.224.0-86.79.255.255
87.100.0.0/17
87.231.0.0/16
87.255.128.0/19
88.136.0.0/13
88.219.0.0/16
89.2.0.0/15
89.156.0.0/14
89.170.0.0/16
89.185.160.0/19
91.68.0.0/14
91.88.0.0/16
91.91.0.0/16
91.151.112.0/20
92.88.0.0/13
93.0.0.0/11
93.182.192.0/18
93.191.80.0/21
95.136.128.0/17
95.157.192.0/18
95.168.0.0/19
95.171.128.0/19
95.174.160.0/19
95.175.160.0/19
109.0.0.0/11
141.170.216.0/21
159.20.8.0/21
178.18.176.0/20
178.19.0.0/20
185.147.204.0/22
185.150.120.0/22
188.7.0.0/16
188.141.128.0/17
188.224.0.0/17
194.6.128.0/19
194.153.88.0-194.153.90.255
194.153.92.0/24
194.153.97.0/24
194.183.192.0/19
194.242.176.0/20
195.3.0.0/18
195.7.96.0/19
195.98.96.0/19
195.115.0.0/16
195.132.0.0/16
195.146.192.0/19
212.23.160.0/19
212.30.96.0/19
212.39.128.0/19
212.94.160.0/19
212.198.0.0/16
213.128.32.0/19
213.144.192.0/19
213.169.160.0/19
213.176.192.0/19
213.203.64.0/18
213.222.64.0/18
213.223.0.0/16
213.245.0.0/16
217.19.192.0/20
217.70.80.0/20
217.112.224.0/20
IPv6:
2a00:5e80::/32
2a00:6200::/29
2a00:7180::/32
2a00:ec81::/32
2a02:8400::/25
Signature Algorithm: sha256WithRSAEncryption
47:3b:2c:7f:ab:d3:c8:fc:07:b4:5c:eb:6d:ee:6a:09:b8:8d:
b2:23:1d:2a:32:a8:2d:98:71:6a:b9:89:02:05:c1:1b:c8:ac:
9c:2e:5f:ad:1c:40:e3:b1:ac:6e:9e:63:84:25:9e:5e:52:dd:
6f:2b:28:30:cc:c5:53:48:c4:82:35:79:28:59:58:07:33:00:
3b:54:5f:e0:c4:8c:be:8e:b8:bf:42:76:a2:9e:34:94:44:a8:
58:91:08:15:be:25:c1:2a:68:2c:3f:84:ea:38:48:97:d3:95:
5a:a1:08:c8:8b:e4:65:91:1f:27:c4:50:71:57:da:f1:b6:88:
32:23:a4:f6:f9:63:f1:53:62:54:4e:a7:36:9d:eb:91:ce:3f:
c3:5b:89:67:85:c3:2c:ee:4b:6a:41:d1:6a:fe:bf:d5:0f:52:
21:66:3b:70:88:3b:86:3b:d0:99:82:15:4a:a3:0f:a1:df:df:
6c:3b:d7:f0:b1:e2:8a:a2:91:34:a4:57:fa:7c:4f:c5:93:29:
15:89:11:61:6e:1b:2d:5c:80:7e:e3:e0:32:47:1c:3c:2d:f8:
dc:69:e4:8f:96:a3:d7:c8:9b:01:46:23:80:bf:ad:2f:74:46:
ee:f6:28:85:53:96:2e:0f:2a:75:40:ef:ce:b3:23:4a:cb:36:
f1:3e:ea:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:51 2024 by rpki-client on console-ams.rpki-client.org