Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/DG2mLqf7KmKv2C5XGv4clewoV9o.roa
File: DG2mLqf7KmKv2C5XGv4clewoV9o.roa (raw, json)
Hash identifier: lwVTIac/mSrPYsHAQjNgMAR9P6EjnIxxV5X0xsBW00s=
Subject key identifier: 0C:6D:A6:2E:A7:FB:2A:62:AF:D8:2E:57:1A:FE:1C:95:EC:28:57:DA
Certificate issuer: /CN=ad243dcff0cb38211f7fe7db3f913169b44cf456
Certificate serial: 018F4B42C178CE40B83EB558D1702AC21459
Authority key identifier: AD:24:3D:CF:F0:CB:38:21:1F:7F:E7:DB:3F:91:31:69:B4:4C:F4:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rSQ9z_DLOCEff-fbP5ExabRM9FY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/DG2mLqf7KmKv2C5XGv4clewoV9o.roa
Signing time: Mon 06 May 2024 00:16:57 +0000
ROA not before: Mon 06 May 2024 00:16:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25400
IP address blocks: 46.212.0.0/17 maxlen: 17
46.212.0.0/20 maxlen: 20
46.212.16.0/20 maxlen: 20
46.212.48.0/20 maxlen: 20
46.212.64.0/21 maxlen: 21
46.212.72.0/21 maxlen: 21
46.212.80.0/21 maxlen: 21
46.212.88.0/21 maxlen: 21
46.212.128.0/17 maxlen: 17
46.249.224.0/19 maxlen: 19
46.249.224.0/22 maxlen: 22
46.249.230.0/23 maxlen: 23
46.249.233.0/24 maxlen: 24
46.249.234.0/23 maxlen: 23
46.249.236.0/23 maxlen: 23
46.249.238.0/24 maxlen: 24
46.249.252.0/22 maxlen: 22
62.73.252.0/24 maxlen: 24
62.97.160.0/19 maxlen: 19
62.97.168.0/22 maxlen: 22
62.97.172.0/23 maxlen: 23
62.141.128.0/19 maxlen: 19
78.156.0.0/19 maxlen: 24
80.239.0.0/17 maxlen: 17
82.194.192.0/19 maxlen: 19
82.194.198.0/24 maxlen: 24
82.194.204.0/22 maxlen: 22
82.194.204.0/23 maxlen: 23
82.194.206.0/23 maxlen: 23
82.194.209.0/24 maxlen: 24
82.194.210.0/24 maxlen: 24
82.194.216.0/24 maxlen: 24
82.194.218.0/23 maxlen: 23
84.208.0.0/13 maxlen: 17
84.208.20.0/24 maxlen: 24
84.208.21.0/24 maxlen: 24
84.208.22.0/23 maxlen: 23
84.208.192.0/20 maxlen: 20
84.208.208.0/20 maxlen: 20
84.208.224.0/20 maxlen: 20
84.208.240.0/20 maxlen: 20
84.209.80.0/20 maxlen: 20
84.209.210.0/24 maxlen: 24
84.209.216.0/24 maxlen: 24
84.209.218.0/24 maxlen: 24
84.209.221.0/24 maxlen: 24
84.209.234.0/24 maxlen: 24
84.209.240.0/20 maxlen: 20
84.210.112.0/20 maxlen: 20
84.210.128.0/20 maxlen: 20
84.210.160.0/23 maxlen: 23
84.210.178.0/23 maxlen: 23
84.210.186.0/23 maxlen: 23
84.210.208.0/20 maxlen: 20
84.210.251.0/24 maxlen: 24
84.211.2.0/23 maxlen: 23
84.211.36.0/23 maxlen: 23
84.211.42.0/24 maxlen: 24
84.211.48.0/20 maxlen: 20
84.212.0.0/20 maxlen: 20
84.212.16.0/20 maxlen: 20
84.212.32.0/20 maxlen: 20
84.212.240.0/20 maxlen: 20
84.213.16.0/20 maxlen: 20
84.213.128.0/20 maxlen: 20
84.213.135.0/24 maxlen: 24
84.213.144.0/20 maxlen: 20
84.213.152.0/22 maxlen: 22
84.213.156.0/22 maxlen: 22
84.213.162.0/23 maxlen: 23
84.214.0.0/20 maxlen: 20
84.214.16.0/20 maxlen: 20
84.214.32.0/20 maxlen: 20
84.214.46.0/23 maxlen: 23
84.214.64.0/23 maxlen: 23
84.214.68.0/23 maxlen: 23
84.214.114.0/24 maxlen: 24
84.214.138.0/23 maxlen: 23
84.214.168.0/24 maxlen: 24
84.214.172.0/22 maxlen: 22
84.214.192.0/24 maxlen: 24
84.214.193.0/24 maxlen: 24
84.214.229.0/24 maxlen: 24
84.214.236.0/22 maxlen: 22
84.214.242.0/23 maxlen: 23
84.215.16.0/20 maxlen: 20
84.215.32.0/20 maxlen: 20
84.215.96.0/20 maxlen: 20
84.215.248.0/21 maxlen: 21
109.108.192.0/19 maxlen: 19
109.108.192.0/24 maxlen: 24
109.108.194.0/23 maxlen: 23
109.108.200.0/21 maxlen: 21
109.108.200.0/22 maxlen: 22
109.108.213.0/24 maxlen: 24
109.108.216.0/21 maxlen: 21
176.74.208.0/21 maxlen: 21
178.17.144.0/20 maxlen: 20
178.232.0.0/16 maxlen: 16
185.46.224.0/22 maxlen: 22
185.71.208.0/22 maxlen: 22
185.138.32.0/22 maxlen: 22
185.201.120.0/22 maxlen: 22
188.113.64.0/18 maxlen: 18
188.113.66.0/23 maxlen: 23
188.113.68.0/22 maxlen: 22
188.113.68.0/23 maxlen: 23
188.113.71.0/24 maxlen: 24
188.113.74.0/23 maxlen: 23
188.113.76.0/24 maxlen: 24
188.113.78.0/23 maxlen: 23
188.113.80.0/21 maxlen: 21
188.113.92.0/22 maxlen: 22
188.113.92.0/23 maxlen: 23
188.113.94.0/23 maxlen: 23
188.113.104.0/21 maxlen: 21
188.113.112.0/20 maxlen: 20
188.113.112.0/22 maxlen: 22
188.113.116.0/22 maxlen: 22
188.124.128.0/19 maxlen: 19
188.124.145.0/24 maxlen: 24
188.124.148.0/22 maxlen: 22
188.124.152.0/21 maxlen: 21
188.126.192.0/19 maxlen: 19
188.126.197.0/24 maxlen: 24
188.126.200.0/21 maxlen: 21
188.126.214.0/24 maxlen: 24
2a02:228::/29 maxlen: 29
2a02:fe0::/29 maxlen: 40
2a02:fe0:dd05::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 06 May 2024 22:07:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4b:42:c1:78:ce:40:b8:3e:b5:58:d1:70:2a:c2:14:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad243dcff0cb38211f7fe7db3f913169b44cf456
Validity
Not Before: May 6 00:16:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0c6da62ea7fb2a62afd82e571afe1c95ec2857da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:5a:01:10:dc:33:ef:c0:e4:53:96:d0:3c:ac:
71:54:68:05:33:2c:e9:82:28:96:ad:9f:ce:57:aa:
e6:9c:ea:42:a7:95:10:c8:d3:97:75:2f:61:f4:8f:
bd:b0:16:1b:16:5b:f0:cb:49:8f:1a:55:c2:90:9c:
fe:db:77:20:5d:e5:fa:ed:a6:36:bb:25:08:84:c6:
3d:28:14:87:8a:d3:91:5d:d7:45:26:c6:15:2c:9a:
81:f8:93:ac:d4:0a:68:f7:e5:15:cd:70:46:42:8f:
20:c5:57:85:84:e1:69:e0:3b:5f:44:a2:6e:30:36:
57:f7:02:29:75:0f:56:64:23:dd:a1:50:35:ef:12:
4f:23:bb:43:61:29:ab:cc:f5:98:22:77:34:55:c9:
93:a7:2c:73:b9:18:dd:e7:71:0a:04:17:1c:53:44:
88:43:f6:57:7c:d8:b7:98:34:63:ad:26:02:1a:d1:
2b:2c:f7:fe:92:be:82:94:76:82:24:97:36:2a:39:
6d:76:a7:06:0d:28:63:cb:47:a6:f9:a8:04:4f:5d:
34:ca:1a:0d:b7:16:6f:9f:d6:05:95:ef:64:ac:06:
e8:06:a0:3b:09:eb:68:f0:c4:32:44:ab:8e:2c:a8:
1b:ef:9c:de:89:a8:0b:13:c3:ed:27:08:e0:19:f6:
98:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:6D:A6:2E:A7:FB:2A:62:AF:D8:2E:57:1A:FE:1C:95:EC:28:57:DA
X509v3 Authority Key Identifier:
keyid:AD:24:3D:CF:F0:CB:38:21:1F:7F:E7:DB:3F:91:31:69:B4:4C:F4:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rSQ9z_DLOCEff-fbP5ExabRM9FY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/DG2mLqf7KmKv2C5XGv4clewoV9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/rSQ9z_DLOCEff-fbP5ExabRM9FY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.212.0.0/16
46.249.224.0/19
62.73.252.0/24
62.97.160.0/19
62.141.128.0/19
78.156.0.0/19
80.239.0.0/17
82.194.192.0/19
84.208.0.0/13
109.108.192.0/19
176.74.208.0/21
178.17.144.0/20
178.232.0.0/16
185.46.224.0/22
185.71.208.0/22
185.138.32.0/22
185.201.120.0/22
188.113.64.0/18
188.124.128.0/19
188.126.192.0/19
IPv6:
2a02:228::/29
2a02:fe0::/29
Signature Algorithm: sha256WithRSAEncryption
4c:b1:89:58:46:bd:86:81:9d:7d:7c:0a:cc:ea:f0:9b:2c:56:
88:0e:16:64:51:d5:eb:6e:ce:05:0f:b4:07:f8:ab:4c:d5:06:
53:dc:b6:0b:06:ca:5f:94:78:fe:c6:ef:df:4d:10:68:32:44:
1a:9d:08:98:92:84:bb:40:70:4e:f7:ef:64:d8:db:4d:64:e1:
ff:e3:43:1e:ce:b9:28:d5:15:00:93:60:3e:84:17:0b:e4:11:
68:75:87:82:2b:e5:85:e5:bb:ab:69:64:80:86:67:4d:ee:73:
89:b2:81:53:9b:da:87:b4:81:13:63:50:51:f7:70:e6:9b:4e:
2b:48:0c:5c:c7:7d:a8:3c:e9:3f:cc:1a:6a:b2:89:45:2a:20:
23:56:a5:d4:d8:22:0b:f3:4c:dd:e1:7a:62:aa:84:8f:9e:0d:
96:e1:23:3d:b4:21:41:8e:51:0f:af:ea:b5:26:07:fd:0e:73:
27:64:db:e0:02:aa:9a:02:2f:1a:e8:92:9f:53:1d:c4:2e:d2:
e2:6a:27:7e:a2:19:b1:38:a2:90:4c:85:e6:e2:36:e8:24:c7:
1b:9b:9a:a3:a0:72:fd:43:47:a7:6e:44:32:41:94:7e:e6:6e:
9f:b6:14:ff:f7:91:8e:ad:a5:13:76:99:a3:51:68:b1:bd:a0:
38:ec:b6:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:43 2024 by rpki-client on console-fra.rpki-client.org