Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/A9PzwZ0EgiQQWOtzBtKK2zCpLNo.roa
File: A9PzwZ0EgiQQWOtzBtKK2zCpLNo.roa (raw, json)
Hash identifier: ATiNQtPbDd7azYrWohatNZMgc0wYclVOfABhVhUinHU=
Subject key identifier: 03:D3:F3:C1:9D:04:82:24:10:58:EB:73:06:D2:8A:DB:30:A9:2C:DA
Certificate issuer: /CN=e2110acce33ac85011ca8c22d2001666e45b9377
Certificate serial: 019426D9DEACCE51434DC8544FB26788C17B
Authority key identifier: E2:11:0A:CC:E3:3A:C8:50:11:CA:8C:22:D2:00:16:66:E4:5B:93:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4hEKzOM6yFARyowi0gAWZuRbk3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/A9PzwZ0EgiQQWOtzBtKK2zCpLNo.roa
Signing time: Thu 02 Jan 2025 11:49:59 +0000
ROA not before: Thu 02 Jan 2025 11:49:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34762
IP address blocks: 5.134.0.0/21 maxlen: 24
31.14.50.0/23 maxlen: 24
31.193.176.0/21 maxlen: 24
37.72.160.0/21 maxlen: 24
37.148.176.0/21 maxlen: 24
46.21.224.0/20 maxlen: 24
62.182.56.0/21 maxlen: 21
77.73.96.0/21 maxlen: 24
77.241.80.0/20 maxlen: 24
77.241.83.0/24 maxlen: 24
77.241.87.0/24 maxlen: 24
77.241.93.0/24 maxlen: 24
77.241.95.0/24 maxlen: 24
79.174.128.0/21 maxlen: 24
83.217.64.0/19 maxlen: 24
83.217.64.0/20 maxlen: 20
83.217.80.0/20 maxlen: 24
87.238.160.0/21 maxlen: 24
88.151.240.0/21 maxlen: 24
89.36.74.0/23 maxlen: 24
89.42.54.0/23 maxlen: 24
89.44.166.0/23 maxlen: 24
93.115.168.0/23 maxlen: 23
94.176.98.0/23 maxlen: 24
176.62.160.0/20 maxlen: 24
178.208.32.0/19 maxlen: 24
185.2.52.0/22 maxlen: 24
185.18.8.0/22 maxlen: 24
185.76.236.0/22 maxlen: 24
185.86.16.0/22 maxlen: 24
185.111.196.0/22 maxlen: 24
185.162.28.0/22 maxlen: 24
185.175.196.0/22 maxlen: 24
185.190.84.0/22 maxlen: 24
188.93.96.0/21 maxlen: 24
188.93.152.0/21 maxlen: 24
188.208.36.0/23 maxlen: 24
188.211.170.0/23 maxlen: 24
193.111.95.0/24 maxlen: 24
193.239.210.0/23 maxlen: 24
194.26.24.0/24 maxlen: 24
194.150.224.0/23 maxlen: 23
194.150.224.0/24 maxlen: 24
194.150.225.0/24 maxlen: 24
194.165.51.0/24 maxlen: 24
195.13.56.0/23 maxlen: 24
195.13.56.0/24 maxlen: 24
195.47.215.0/24 maxlen: 24
195.234.184.0/24 maxlen: 24
217.19.224.0/20 maxlen: 24
217.19.228.0/22 maxlen: 24
217.19.232.0/23 maxlen: 24
217.19.234.0/23 maxlen: 24
217.21.176.0/20 maxlen: 24
217.21.176.0/21 maxlen: 24
217.21.179.0/24 maxlen: 24
217.21.184.0/22 maxlen: 24
217.21.188.0/22 maxlen: 24
2a00:1c98::/32 maxlen: 64
2a00:1c98:fff0::/44 maxlen: 64
2a00:7000::/32 maxlen: 64
2a02:d08::/32 maxlen: 64
2a03:a800::/32 maxlen: 32
2a07:ca80::/29 maxlen: 64
Validation: Failed, certificate revoked on Wed 19 Feb 2025 13:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:de:ac:ce:51:43:4d:c8:54:4f:b2:67:88:c1:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2110acce33ac85011ca8c22d2001666e45b9377
Validity
Not Before: Jan 2 11:49:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=03d3f3c19d0482241058eb7306d28adb30a92cda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:94:f4:88:0b:5f:86:a1:a5:ce:4e:9d:7b:ed:
e2:9d:23:e9:32:e1:ac:af:a5:0b:5d:14:3d:7a:7d:
6a:7e:a2:c4:b7:30:32:02:ef:2c:13:c6:d2:78:15:
bb:98:79:55:e1:68:e9:a3:31:fe:dd:32:31:5e:6f:
f4:3c:a5:1b:3b:00:1a:ef:e9:0c:e7:95:57:35:d9:
48:aa:4c:27:a4:ba:b5:d9:77:28:fb:f8:bc:09:c0:
b7:bf:6a:9c:db:66:17:47:c9:c2:5b:f4:57:57:49:
a6:73:3c:66:1b:cf:51:a4:d1:1b:a4:13:5b:5c:3a:
9d:d3:f8:83:97:7e:76:07:f1:7c:c6:22:18:e8:32:
b4:35:e0:7f:fb:f0:15:1f:0e:a6:0c:e2:8d:12:22:
57:03:fd:55:34:91:dc:aa:a4:f3:c6:b7:76:67:13:
22:6a:a4:2e:e8:fa:42:4c:ab:82:52:7f:6d:c8:f7:
d1:3e:92:25:6c:28:ee:44:26:b2:59:30:85:bf:4a:
62:18:fd:74:d1:80:23:c8:aa:79:b7:2d:31:dd:f3:
d6:7c:6a:08:37:0f:43:f9:78:bb:4d:3c:1e:9a:c9:
32:a6:18:1c:be:20:fd:eb:29:56:57:31:fc:19:ac:
29:6e:ce:22:6e:20:5e:8e:eb:5c:2e:fa:28:bc:2c:
23:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:D3:F3:C1:9D:04:82:24:10:58:EB:73:06:D2:8A:DB:30:A9:2C:DA
X509v3 Authority Key Identifier:
keyid:E2:11:0A:CC:E3:3A:C8:50:11:CA:8C:22:D2:00:16:66:E4:5B:93:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4hEKzOM6yFARyowi0gAWZuRbk3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/A9PzwZ0EgiQQWOtzBtKK2zCpLNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/4hEKzOM6yFARyowi0gAWZuRbk3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.0.0/21
31.14.50.0/23
31.193.176.0/21
37.72.160.0/21
37.148.176.0/21
46.21.224.0/20
62.182.56.0/21
77.73.96.0/21
77.241.80.0/20
79.174.128.0/21
83.217.64.0/19
87.238.160.0/21
88.151.240.0/21
89.36.74.0/23
89.42.54.0/23
89.44.166.0/23
93.115.168.0/23
94.176.98.0/23
176.62.160.0/20
178.208.32.0/19
185.2.52.0/22
185.18.8.0/22
185.76.236.0/22
185.86.16.0/22
185.111.196.0/22
185.162.28.0/22
185.175.196.0/22
185.190.84.0/22
188.93.96.0/21
188.93.152.0/21
188.208.36.0/23
188.211.170.0/23
193.111.95.0/24
193.239.210.0/23
194.26.24.0/24
194.150.224.0/23
194.165.51.0/24
195.13.56.0/23
195.47.215.0/24
195.234.184.0/24
217.19.224.0/20
217.21.176.0/20
IPv6:
2a00:1c98::/32
2a00:7000::/32
2a02:d08::/32
2a03:a800::/32
2a07:ca80::/29
Signature Algorithm: sha256WithRSAEncryption
91:2f:29:b7:93:29:f6:23:2e:84:ac:0b:a5:a5:c6:9d:0e:40:
ee:bc:ad:89:de:37:6f:02:97:28:27:34:7b:11:21:71:1d:27:
59:1f:9a:5a:2a:58:85:78:31:8e:ee:44:22:b1:00:89:ea:bc:
e1:31:af:d2:f4:09:0f:05:14:ae:24:cf:6a:6e:a5:eb:c8:63:
0d:ca:23:63:e2:f2:df:f1:82:5e:c9:4b:3e:0c:c6:7a:52:99:
b7:da:15:a0:ee:ce:9f:ce:67:97:5f:c6:31:bc:4a:04:0d:ff:
62:e2:83:9c:4a:6b:79:6f:09:f7:50:b3:12:02:29:d3:4e:72:
52:48:27:71:8d:76:ff:33:90:0b:2f:ff:63:87:6a:ae:01:0f:
71:21:85:70:06:5a:08:dd:a9:52:5e:3f:a0:34:c8:f9:b9:2a:
b2:47:15:e1:f3:43:3c:cc:31:39:32:81:b9:e8:4a:ca:45:53:
15:f8:c7:4e:26:b7:b7:49:7c:05:a8:04:09:8d:b4:ca:d4:a1:
81:db:93:0f:26:78:17:f9:07:24:d0:6e:ab:e1:29:ce:6f:e3:
63:24:04:df:e3:d0:08:9d:87:b3:71:16:5d:a0:ea:1c:45:c6:
79:b8:44:e7:10:d5:99:bb:8c:9b:00:2d:44:ff:da:47:66:b6:
4c:a6:90:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:51:42 2025 by rpki-client