Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/Rh9EtmPRgBBCmRDPM1zeedmgAsA.roa
File: Rh9EtmPRgBBCmRDPM1zeedmgAsA.roa (raw, json)
Hash identifier: 2MGIe4yUQceNCOoHonQtTh1HpzjbArRWBiU5VFaZtCE=
Subject key identifier: 46:1F:44:B6:63:D1:80:10:42:99:10:CF:33:5C:DE:79:D9:A0:02:C0
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 01947419919419505919244A3519C25D07B3
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/Rh9EtmPRgBBCmRDPM1zeedmgAsA.roa
Signing time: Fri 17 Jan 2025 11:50:20 +0000
ROA not before: Fri 17 Jan 2025 11:50:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50113
IP address blocks: 5.180.136.0/24 maxlen: 24
5.180.136.76/32 maxlen: 32
5.180.136.221/32 maxlen: 32
5.180.137.0/24 maxlen: 24
5.252.116.0/24 maxlen: 24
45.8.211.0/24 maxlen: 24
45.89.64.0/24 maxlen: 24
91.217.77.0/24 maxlen: 24
147.78.66.7/32 maxlen: 32
185.17.3.102/32 maxlen: 32
185.104.248.0/24 maxlen: 24
185.139.68.28/32 maxlen: 32
185.139.70.116/32 maxlen: 32
185.172.130.0/24 maxlen: 24
185.172.131.0/24 maxlen: 24
185.174.139.0/24 maxlen: 24
185.180.230.0/24 maxlen: 24
185.180.231.87/32 maxlen: 32
185.188.180.0/24 maxlen: 24
185.189.12.0/22 maxlen: 22
185.189.12.0/24 maxlen: 24
185.189.13.0/24 maxlen: 24
185.189.14.0/24 maxlen: 24
185.189.15.0/24 maxlen: 24
185.244.174.0/24 maxlen: 24
192.162.100.0/22 maxlen: 22
192.162.100.0/24 maxlen: 24
192.162.101.0/24 maxlen: 24
192.162.102.0/24 maxlen: 24
192.162.103.0/24 maxlen: 24
193.0.200.0/24 maxlen: 24
193.0.202.0/24 maxlen: 24
193.0.203.0/24 maxlen: 24
193.168.226.0/24 maxlen: 24
194.53.52.0/24 maxlen: 24
194.63.140.0/22 maxlen: 22
194.63.140.0/23 maxlen: 23
194.63.140.0/24 maxlen: 24
194.63.141.0/24 maxlen: 24
194.63.142.0/23 maxlen: 23
194.63.142.0/24 maxlen: 24
194.63.143.0/24 maxlen: 24
194.67.196.127/32 maxlen: 32
194.67.198.7/32 maxlen: 32
194.67.198.108/32 maxlen: 32
194.67.203.54/32 maxlen: 32
194.67.208.6/32 maxlen: 32
194.67.208.12/32 maxlen: 32
194.67.208.48/32 maxlen: 32
213.108.197.0/24 maxlen: 24
213.108.199.0/24 maxlen: 24
2a04:5200::/29 maxlen: 29
2a04:5200::/32 maxlen: 32
2a04:5200::/48 maxlen: 48
2a04:5200:1::/48 maxlen: 48
2a04:5200:a::/48 maxlen: 48
2a04:5200:ff00::/48 maxlen: 48
2a04:5200:ff10::/48 maxlen: 48
2a04:5200:fff1::/48 maxlen: 48
2a04:5200:fff2::/48 maxlen: 48
2a04:5200:fff3::/48 maxlen: 48
2a04:5200:fff4::/48 maxlen: 48
2a04:5200:fff5::/48 maxlen: 48
2a04:5200:fff6::/48 maxlen: 48
2a04:5200:fff7::/48 maxlen: 48
2a04:5200:fff8::/48 maxlen: 48
2a04:5200:fff9::/48 maxlen: 48
2a04:5200:ffff::/48 maxlen: 48
2a04:5202::/32 maxlen: 32
2a04:5203::/32 maxlen: 32
2a04:5204::/32 maxlen: 32
2a04:5205::/32 maxlen: 32
2a04:5206::/32 maxlen: 32
2a04:5207::/32 maxlen: 32
2a09:5303::/32 maxlen: 32
2a0a:9300::/32 maxlen: 32
2a0a:9300::/48 maxlen: 48
2a0a:9300:aaaa::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 20 Jan 2025 06:15:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:74:19:91:94:19:50:59:19:24:4a:35:19:c2:5d:07:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 17 11:50:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=461f44b663d18010429910cf335cde79d9a002c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a8:8a:af:54:a1:28:aa:ec:32:33:fa:8e:15:
38:ec:ba:f6:6f:2c:52:b9:bd:75:bf:05:bd:69:43:
98:25:52:b9:2c:54:59:bf:a7:00:90:7b:07:76:31:
4f:c1:52:c0:0d:89:d2:c4:5f:dd:ad:fb:dc:12:f5:
b1:a8:17:5a:0a:82:8d:25:70:39:ac:f7:60:f5:3a:
d8:6a:5b:4d:f9:33:03:36:5d:ce:94:cd:60:a6:88:
04:34:8f:b5:4a:6a:60:5a:ef:81:35:5d:bc:dc:f7:
0b:90:70:ef:44:51:f0:fe:9f:54:3f:44:cf:8e:f7:
8b:32:e6:cb:94:b6:fe:b0:7d:7c:c5:10:05:32:eb:
eb:93:4f:c6:e2:8e:6f:fd:b8:6b:22:79:98:c5:0b:
12:35:8c:05:ff:bd:f1:bc:f1:39:19:18:d6:0c:62:
2b:b1:08:05:93:4c:19:8a:8c:11:03:37:b1:c8:d0:
65:b7:6c:ad:51:d4:39:b1:fc:33:7c:90:52:76:c3:
29:70:fb:06:47:9b:2f:b0:c3:e6:c1:96:81:6d:e3:
41:74:df:fa:81:7d:a2:6b:46:24:3c:5d:08:89:fc:
3c:e0:f6:a2:da:e2:ce:26:7d:07:de:3f:b2:04:52:
14:03:34:52:3d:92:16:da:a6:e0:1d:5c:2b:93:51:
8d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:1F:44:B6:63:D1:80:10:42:99:10:CF:33:5C:DE:79:D9:A0:02:C0
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/Rh9EtmPRgBBCmRDPM1zeedmgAsA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.136.0/23
5.252.116.0/24
45.8.211.0/24
45.89.64.0/24
91.217.77.0/24
147.78.66.7/32
185.17.3.102/32
185.104.248.0/24
185.139.68.28/32
185.139.70.116/32
185.172.130.0/23
185.174.139.0/24
185.180.230.0/24
185.180.231.87/32
185.188.180.0/24
185.189.12.0/22
185.244.174.0/24
192.162.100.0/22
193.0.200.0/24
193.0.202.0/23
193.168.226.0/24
194.53.52.0/24
194.63.140.0/22
194.67.196.127/32
194.67.198.7/32
194.67.198.108/32
194.67.203.54/32
194.67.208.6/32
194.67.208.12/32
194.67.208.48/32
213.108.197.0/24
213.108.199.0/24
IPv6:
2a04:5200::/29
2a09:5303::/32
2a0a:9300::/32
Signature Algorithm: sha256WithRSAEncryption
a9:c4:59:13:75:4a:18:34:4a:ed:a4:9d:f2:e1:09:98:db:ea:
9a:a0:10:09:45:b7:9c:47:d1:c7:d4:f2:14:c2:f2:00:2a:02:
3a:e6:65:4c:a5:91:b9:80:be:44:73:7d:c3:2b:db:cb:79:2a:
fc:d2:54:1d:c7:22:bc:b6:35:f6:dc:8c:d3:36:81:e0:6b:08:
b3:c7:57:d7:e3:b3:3f:45:80:51:1b:8b:ff:8f:45:00:04:b3:
94:3f:9f:4f:de:16:ba:f4:dd:85:2f:38:e1:d9:21:7d:42:87:
36:9a:95:bf:14:40:69:e8:b2:ff:48:5c:7c:f0:91:ec:4a:20:
13:b2:99:d5:fa:2e:c6:2f:e2:33:ca:15:f0:ba:56:0c:af:f6:
1b:95:c4:38:41:ff:f2:55:2d:c1:c7:77:e3:50:1d:c2:e3:8c:
e6:12:da:d2:88:e0:45:5e:f5:37:6a:06:54:d7:3c:29:49:9b:
89:e8:30:85:83:5c:13:44:2f:ba:44:c6:0d:58:d7:ed:77:d2:
19:75:04:83:3e:64:16:1c:e3:7b:cd:87:13:80:1a:18:de:c0:
c1:8b:47:dd:ba:80:6b:4e:37:48:bc:38:e0:ee:0f:77:4e:a9:
a4:f3:e3:63:b4:31:93:83:19:28:bb:e1:99:75:21:1f:22:b3:
0d:37:2b:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 10:41:38 2025 by rpki-client