Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/cO2V7KfQCWz0JrJXt1QxQDsiq0c.roa
File: cO2V7KfQCWz0JrJXt1QxQDsiq0c.roa (raw, json)
Hash identifier: bUd4oCDNawCRY5ssDshYAtz3VTxNfNVvkCc42xw4Hrs=
Subject key identifier: 70:ED:95:EC:A7:D0:09:6C:F4:26:B2:57:B7:54:31:40:3B:22:AB:47
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018E31B9841ACE05B22FC77F259845ACE107
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/cO2V7KfQCWz0JrJXt1QxQDsiq0c.roa
Signing time: Tue 12 Mar 2024 08:13:45 +0000
ROA not before: Tue 12 Mar 2024 08:13:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34224
IP address blocks: 2.58.92.0/24 maxlen: 24
31.13.195.0/24 maxlen: 24
31.13.197.0/24 maxlen: 24
31.13.208.0/24 maxlen: 24
31.13.216.0/21 maxlen: 24
31.13.217.0/24 maxlen: 24
31.13.221.0/24 maxlen: 24
31.13.223.0/24 maxlen: 24
31.13.230.0/23 maxlen: 24
31.13.236.0/22 maxlen: 24
31.13.241.0/24 maxlen: 24
31.13.245.0/24 maxlen: 24
31.13.248.0/24 maxlen: 24
37.60.138.0/24 maxlen: 24
37.60.139.0/24 maxlen: 24
45.81.38.0/24 maxlen: 24
82.115.210.0/24 maxlen: 24
83.143.115.0/24 maxlen: 24
85.217.140.0/24 maxlen: 24
87.120.6.0/23 maxlen: 24
87.120.6.0/24 maxlen: 24
87.120.8.0/24 maxlen: 24
87.120.13.0/24 maxlen: 24
87.120.36.100/32 maxlen: 32
87.120.37.0/24 maxlen: 24
87.120.39.0/24 maxlen: 24
87.120.43.0/24 maxlen: 24
87.120.61.0/24 maxlen: 24
87.120.104.0/24 maxlen: 24
87.120.109.0/24 maxlen: 24
87.120.128.0/23 maxlen: 24
87.120.132.0/24 maxlen: 24
87.120.133.0/24 maxlen: 24
87.120.134.0/24 maxlen: 24
87.120.135.0/24 maxlen: 24
87.120.165.0/24 maxlen: 24
87.120.176.0/24 maxlen: 24
87.120.195.0/24 maxlen: 24
87.120.199.0/24 maxlen: 24
87.120.200.0/24 maxlen: 24
87.120.201.0/24 maxlen: 24
87.120.206.0/23 maxlen: 24
87.120.206.0/24 maxlen: 24
87.120.207.0/24 maxlen: 24
87.120.217.0/24 maxlen: 24
87.120.223.0/24 maxlen: 24
87.120.253.0/24 maxlen: 24
87.120.254.0/24 maxlen: 24
87.120.255.0/24 maxlen: 24
87.121.0.0/23 maxlen: 24
87.121.0.0/24 maxlen: 24
87.121.1.0/24 maxlen: 24
87.121.2.0/24 maxlen: 24
87.121.6.0/23 maxlen: 24
87.121.42.0/24 maxlen: 24
87.121.52.0/24 maxlen: 24
87.121.64.0/24 maxlen: 24
87.121.79.0/24 maxlen: 24
87.121.82.0/24 maxlen: 24
87.121.83.0/24 maxlen: 24
87.121.90.0/23 maxlen: 24
87.121.111.0/24 maxlen: 24
87.121.112.0/24 maxlen: 24
87.121.113.0/24 maxlen: 24
87.121.118.0/24 maxlen: 24
87.121.150.0/23 maxlen: 24
87.121.161.0/24 maxlen: 24
91.92.0.0/24 maxlen: 24
91.92.1.0/24 maxlen: 24
91.92.2.0/24 maxlen: 24
91.92.65.0/24 maxlen: 24
91.92.66.0/24 maxlen: 24
91.92.68.0/24 maxlen: 24
91.92.69.0/24 maxlen: 24
91.92.105.0/24 maxlen: 24
91.92.109.0/24 maxlen: 24
91.92.139.0/24 maxlen: 24
91.92.197.0/24 maxlen: 24
91.92.198.0/23 maxlen: 24
91.92.219.0/24 maxlen: 24
91.92.230.0/24 maxlen: 24
91.212.233.0/24 maxlen: 24
92.249.49.0/24 maxlen: 24
93.123.8.0/24 maxlen: 24
93.123.12.0/24 maxlen: 24
93.123.18.0/24 maxlen: 24
93.123.28.0/23 maxlen: 24
93.123.32.0/22 maxlen: 24
93.123.36.0/24 maxlen: 24
93.123.37.0/24 maxlen: 24
93.123.64.0/24 maxlen: 24
93.123.117.0/24 maxlen: 24
94.156.12.0/24 maxlen: 24
94.156.15.0/24 maxlen: 24
94.156.42.0/24 maxlen: 24
94.156.44.0/24 maxlen: 24
94.156.77.0/24 maxlen: 24
94.156.94.0/24 maxlen: 24
94.156.98.0/24 maxlen: 24
94.156.100.0/24 maxlen: 24
94.156.106.0/24 maxlen: 24
94.156.129.0/24 maxlen: 24
94.156.130.0/24 maxlen: 24
94.156.153.0/24 maxlen: 24
94.156.158.0/24 maxlen: 24
94.156.159.0/24 maxlen: 24
94.156.172.0/23 maxlen: 24
94.156.179.0/24 maxlen: 24
94.156.185.0/24 maxlen: 24
94.156.188.0/24 maxlen: 24
94.156.190.0/24 maxlen: 24
94.156.216.0/21 maxlen: 24
94.156.227.0/24 maxlen: 24
94.156.232.0/24 maxlen: 24
94.156.233.0/24 maxlen: 24
94.156.249.0/24 maxlen: 24
94.156.251.0/24 maxlen: 24
94.156.252.0/24 maxlen: 24
194.55.184.0/23 maxlen: 24
194.169.173.0/24 maxlen: 24
212.73.128.0/23 maxlen: 24
212.73.130.0/23 maxlen: 24
212.73.131.0/24 maxlen: 24
212.73.132.0/24 maxlen: 24
212.73.133.0/24 maxlen: 24
212.73.134.0/24 maxlen: 24
212.73.136.0/24 maxlen: 24
212.73.138.0/23 maxlen: 24
212.73.138.0/24 maxlen: 24
212.73.140.0/24 maxlen: 24
212.73.141.0/24 maxlen: 24
212.73.142.0/24 maxlen: 24
212.73.143.0/24 maxlen: 24
212.73.144.0/24 maxlen: 24
212.73.145.0/24 maxlen: 24
212.73.146.0/24 maxlen: 24
212.73.147.0/24 maxlen: 24
212.73.148.0/24 maxlen: 24
212.73.155.0/24 maxlen: 24
212.73.157.0/24 maxlen: 24
212.87.207.0/24 maxlen: 24
2a00:1728::/32 maxlen: 48
2a00:1728:0:d::/64 maxlen: 64
2a00:1728:3::/48 maxlen: 48
2a00:1728:1b::/48 maxlen: 48
2a00:1728:1f::/48 maxlen: 48
2a00:1728:21::/48 maxlen: 48
2a00:1728:23::/48 maxlen: 48
2a00:1728:25::/48 maxlen: 48
2a00:1728:27::/48 maxlen: 48
2a00:1728:31::/48 maxlen: 48
2a00:1728:34::/48 maxlen: 48
2a00:1728:35::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 05 Apr 2024 11:14:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:31:b9:84:1a:ce:05:b2:2f:c7:7f:25:98:45:ac:e1:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Mar 12 08:13:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=70ed95eca7d0096cf426b257b75431403b22ab47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:9c:57:2c:19:06:11:1f:74:86:a7:02:7e:95:
ea:9d:bf:ea:0e:b7:f0:e0:7c:1d:c1:b2:59:52:21:
cd:14:b0:f5:ce:bf:32:bc:ac:12:05:3a:a9:3f:38:
e0:ae:5b:29:8c:38:ce:44:f7:e2:a7:34:e4:61:46:
a0:0f:aa:ba:38:60:f1:59:ab:4e:31:cd:eb:05:45:
c3:b0:af:1c:7a:0a:fd:4a:ce:8f:31:b2:ee:5d:17:
fc:2f:63:99:0a:10:d7:d0:ac:d4:93:06:b0:ec:ba:
d7:46:41:5c:a0:c3:31:97:78:97:fb:d9:fd:87:ac:
4f:68:72:5e:2d:8f:f0:4c:d7:33:f9:c4:80:84:62:
ed:a6:9d:c4:82:67:17:06:8a:22:63:b5:62:0d:02:
75:dd:b2:c3:b7:50:d3:a5:fd:52:d4:f7:9d:dc:2f:
0f:26:e7:4d:61:53:eb:b3:62:07:19:62:6c:10:9f:
84:77:b5:b9:ea:a6:22:e6:7a:6b:b5:60:6e:fa:f2:
52:01:f7:7f:4a:6c:d5:56:82:d3:d4:4f:30:e3:f4:
e6:95:0f:1f:1c:c1:b4:54:b1:84:34:a6:18:01:af:
5a:ba:d6:17:6b:40:e6:56:a9:c7:76:bb:48:3c:89:
0c:34:c5:10:ab:a3:94:bd:98:80:9e:23:15:7c:7d:
38:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:ED:95:EC:A7:D0:09:6C:F4:26:B2:57:B7:54:31:40:3B:22:AB:47
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/cO2V7KfQCWz0JrJXt1QxQDsiq0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.92.0/24
31.13.195.0/24
31.13.197.0/24
31.13.208.0/24
31.13.216.0/21
31.13.230.0/23
31.13.236.0/22
31.13.241.0/24
31.13.245.0/24
31.13.248.0/24
37.60.138.0/23
45.81.38.0/24
82.115.210.0/24
83.143.115.0/24
85.217.140.0/24
87.120.6.0-87.120.8.255
87.120.13.0/24
87.120.36.100/32
87.120.37.0/24
87.120.39.0/24
87.120.43.0/24
87.120.61.0/24
87.120.104.0/24
87.120.109.0/24
87.120.128.0/23
87.120.132.0/22
87.120.165.0/24
87.120.176.0/24
87.120.195.0/24
87.120.199.0-87.120.201.255
87.120.206.0/23
87.120.217.0/24
87.120.223.0/24
87.120.253.0-87.121.2.255
87.121.6.0/23
87.121.42.0/24
87.121.52.0/24
87.121.64.0/24
87.121.79.0/24
87.121.82.0/23
87.121.90.0/23
87.121.111.0-87.121.113.255
87.121.118.0/24
87.121.150.0/23
87.121.161.0/24
91.92.0.0-91.92.2.255
91.92.65.0-91.92.66.255
91.92.68.0/23
91.92.105.0/24
91.92.109.0/24
91.92.139.0/24
91.92.197.0-91.92.199.255
91.92.219.0/24
91.92.230.0/24
91.212.233.0/24
92.249.49.0/24
93.123.8.0/24
93.123.12.0/24
93.123.18.0/24
93.123.28.0/23
93.123.32.0-93.123.37.255
93.123.64.0/24
93.123.117.0/24
94.156.12.0/24
94.156.15.0/24
94.156.42.0/24
94.156.44.0/24
94.156.77.0/24
94.156.94.0/24
94.156.98.0/24
94.156.100.0/24
94.156.106.0/24
94.156.129.0-94.156.130.255
94.156.153.0/24
94.156.158.0/23
94.156.172.0/23
94.156.179.0/24
94.156.185.0/24
94.156.188.0/24
94.156.190.0/24
94.156.216.0/21
94.156.227.0/24
94.156.232.0/23
94.156.249.0/24
94.156.251.0-94.156.252.255
194.55.184.0/23
194.169.173.0/24
212.73.128.0-212.73.134.255
212.73.136.0/24
212.73.138.0-212.73.148.255
212.73.155.0/24
212.73.157.0/24
212.87.207.0/24
IPv6:
2a00:1728::/32
Signature Algorithm: sha256WithRSAEncryption
b3:bd:4b:87:0c:a5:02:73:5b:2a:08:3d:b0:f5:4f:5d:d3:86:
86:6a:1a:9e:1e:23:9d:2d:30:9d:f1:ab:c5:40:b6:e9:c6:d5:
d5:94:72:7c:90:c8:35:c1:0d:fb:e1:98:dc:a0:0a:a2:b2:5f:
07:f4:74:1b:36:7b:58:b4:a8:55:19:d7:52:5f:e4:ab:9a:28:
09:90:fa:43:2c:ad:1c:a6:cd:fa:b6:94:13:99:2e:fa:7b:05:
8a:8b:55:9f:66:59:75:b7:e9:e1:00:d4:95:6b:f9:7f:28:16:
6e:4c:e4:ad:a7:d0:58:98:f1:0a:77:68:4d:b5:6c:6d:dc:d5:
7b:06:7d:37:e5:30:25:c0:a0:a5:86:fd:5b:bf:32:08:e2:50:
3a:fd:ec:42:87:54:cc:5e:dc:f5:26:1a:0a:bd:79:5d:18:3d:
38:92:29:32:28:b3:78:d2:ec:e0:c0:97:7e:93:25:2b:47:b1:
98:43:fd:d9:17:53:7a:6c:e6:fe:fb:d4:ee:b3:f9:65:75:9b:
8f:a8:9c:e0:ac:12:7a:0d:b3:5a:35:db:bb:0d:93:5d:0b:17:
e5:8c:78:34:3a:d1:83:a2:ea:b6:94:76:63:12:3d:b9:71:36:
ce:d9:85:0a:13:4b:5f:46:cd:9a:32:21:9a:13:2c:58:d2:9f:
5a:c7:39:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:38 2024 by rpki-client on console-ams.rpki-client.org