Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/13ea1f-0bc1-457c-8ab5-04e812d48e72/1/XbBRWmXgEROklmMezeJ3WdoNe0w.roa
File: XbBRWmXgEROklmMezeJ3WdoNe0w.roa (raw, json)
Hash identifier: kjF33479KdcrS0awBk2Bs2KUgSLer4Q++KxBeyMrWtA=
Subject key identifier: 5D:B0:51:5A:65:E0:11:13:A4:96:63:1E:CD:E2:77:59:DA:0D:7B:4C
Certificate issuer: /CN=0fe39b41074c7d6adc8ee274e239f7b8eb3585e9
Certificate serial: 019169E5F0F6B3D295DD210625E0924133CB
Authority key identifier: 0F:E3:9B:41:07:4C:7D:6A:DC:8E:E2:74:E2:39:F7:B8:EB:35:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D-ObQQdMfWrcjuJ04jn3uOs1hek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/13ea1f-0bc1-457c-8ab5-04e812d48e72/1/XbBRWmXgEROklmMezeJ3WdoNe0w.roa
Signing time: Mon 19 Aug 2024 09:09:22 +0000
ROA not before: Mon 19 Aug 2024 09:09:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12338
IP address blocks: 5.159.128.0/18 maxlen: 18
5.159.128.0/21 maxlen: 21
5.159.136.0/21 maxlen: 21
5.159.144.0/21 maxlen: 21
5.159.152.0/21 maxlen: 21
5.159.160.0/21 maxlen: 21
5.159.168.0/21 maxlen: 21
5.159.168.0/22 maxlen: 22
5.159.172.0/22 maxlen: 22
5.159.176.0/23 maxlen: 23
5.159.178.0/23 maxlen: 23
5.159.180.0/23 maxlen: 23
5.159.182.0/23 maxlen: 23
5.159.184.0/23 maxlen: 23
5.159.186.0/23 maxlen: 23
5.159.188.0/23 maxlen: 23
5.159.190.0/23 maxlen: 23
37.218.0.0/17 maxlen: 17
62.99.0.0/17 maxlen: 17
81.9.128.0/17 maxlen: 17
81.9.128.0/19 maxlen: 19
81.9.160.0/19 maxlen: 19
81.9.192.0/21 maxlen: 21
81.9.192.0/22 maxlen: 22
81.9.196.0/24 maxlen: 24
81.9.198.0/24 maxlen: 24
81.9.199.0/24 maxlen: 24
81.9.202.0/23 maxlen: 23
81.9.204.0/22 maxlen: 22
81.9.208.0/21 maxlen: 21
81.9.208.0/22 maxlen: 22
81.9.212.0/24 maxlen: 24
81.9.216.0/23 maxlen: 23
81.9.218.0/23 maxlen: 23
81.9.220.0/22 maxlen: 22
81.9.248.0/21 maxlen: 21
82.130.128.0/17 maxlen: 17
82.130.247.0/24 maxlen: 24
83.213.0.0/16 maxlen: 16
83.213.184.0/22 maxlen: 22
85.84.0.0/16 maxlen: 16
85.84.16.0/21 maxlen: 21
85.84.168.0/21 maxlen: 21
85.84.176.0/21 maxlen: 21
85.85.0.0/16 maxlen: 16
85.85.16.0/21 maxlen: 21
85.85.48.0/21 maxlen: 21
85.85.144.0/21 maxlen: 21
85.86.0.0/16 maxlen: 16
85.87.0.0/16 maxlen: 16
85.87.24.0/24 maxlen: 24
85.87.25.0/24 maxlen: 24
85.87.26.0/24 maxlen: 24
85.87.27.0/24 maxlen: 24
85.87.40.0/24 maxlen: 24
85.87.43.0/24 maxlen: 24
85.87.64.0/22 maxlen: 22
85.87.68.0/24 maxlen: 24
85.87.69.0/24 maxlen: 24
85.87.70.0/24 maxlen: 24
85.87.71.0/24 maxlen: 24
85.87.72.0/22 maxlen: 22
85.87.84.0/22 maxlen: 22
85.87.96.0/22 maxlen: 22
85.87.100.0/22 maxlen: 22
85.87.124.0/22 maxlen: 22
85.87.192.0/24 maxlen: 24
85.87.193.0/24 maxlen: 24
85.87.194.0/24 maxlen: 24
85.87.195.0/24 maxlen: 24
91.116.0.0/18 maxlen: 18
91.116.0.0/19 maxlen: 19
91.116.0.0/22 maxlen: 22
91.116.4.0/24 maxlen: 24
91.116.16.0/20 maxlen: 20
91.116.32.0/21 maxlen: 21
91.116.32.0/22 maxlen: 22
91.116.36.0/24 maxlen: 24
91.116.38.0/24 maxlen: 24
91.116.40.0/22 maxlen: 22
91.116.44.0/22 maxlen: 22
91.116.48.0/21 maxlen: 21
91.116.56.0/21 maxlen: 21
178.60.64.0/18 maxlen: 18
178.60.64.0/21 maxlen: 21
178.60.64.0/22 maxlen: 22
178.60.68.0/24 maxlen: 24
178.60.69.0/24 maxlen: 24
178.60.70.0/24 maxlen: 24
178.60.71.0/24 maxlen: 24
178.60.72.0/24 maxlen: 24
178.60.73.0/24 maxlen: 24
178.60.76.0/22 maxlen: 22
178.60.80.0/22 maxlen: 22
178.60.96.0/21 maxlen: 21
178.60.104.0/22 maxlen: 22
178.60.108.0/22 maxlen: 22
178.60.112.0/22 maxlen: 22
178.60.116.0/24 maxlen: 24
178.60.117.0/24 maxlen: 24
178.60.118.0/24 maxlen: 24
178.60.120.0/24 maxlen: 24
178.60.121.0/24 maxlen: 24
178.60.122.0/23 maxlen: 23
185.116.180.0/22 maxlen: 22
212.8.64.0/18 maxlen: 18
212.55.0.0/19 maxlen: 19
212.142.128.0/17 maxlen: 17
2a00:7b00::/29 maxlen: 29
2a00:7b00::/40 maxlen: 40
2a00:7b00:10::/48 maxlen: 48
2a00:7b00:11::/48 maxlen: 48
2a00:7b00:12::/48 maxlen: 48
2a00:7b00:13::/48 maxlen: 48
2a00:7b00:14::/48 maxlen: 48
2a00:7b00:15::/48 maxlen: 48
2a00:7b00:16::/48 maxlen: 48
2a00:7b00:17::/48 maxlen: 48
2a00:7b00:18::/48 maxlen: 48
2a00:7b00:19::/48 maxlen: 48
2a00:7b00:c10::/48 maxlen: 48
2a00:7b00:b000::/40 maxlen: 40
2a00:7b00:c000::/40 maxlen: 40
2a00:7b00:c800::/40 maxlen: 40
2a00:7b00:d000::/40 maxlen: 40
2a00:7b00:d800::/40 maxlen: 40
2a00:7b00:e000::/40 maxlen: 40
2a00:7b00:e800::/40 maxlen: 40
2a00:7b00:ef00::/40 maxlen: 40
2a00:7b00:f000::/40 maxlen: 40
2a00:7b00:f800::/40 maxlen: 40
2a00:7b00:ff00::/40 maxlen: 40
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:69:e5:f0:f6:b3:d2:95:dd:21:06:25:e0:92:41:33:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fe39b41074c7d6adc8ee274e239f7b8eb3585e9
Validity
Not Before: Aug 19 09:09:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5db0515a65e01113a496631ecde27759da0d7b4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:c8:48:a8:5a:6c:81:ae:a0:3f:94:6e:f7:9f:
3c:07:08:90:e3:9d:49:ab:50:ee:d5:cd:ca:92:5c:
b4:0f:f6:c0:b1:df:55:5a:1e:24:2a:39:19:45:0a:
97:f4:f4:b3:3d:d2:7d:d1:55:a0:64:38:fa:c5:b8:
39:a0:63:4a:bd:99:88:38:db:74:ec:3d:54:a7:bc:
cd:59:0d:67:fb:00:65:a7:53:bc:13:4a:70:be:ba:
1d:0b:10:03:29:55:c8:cc:f4:e8:58:a9:8c:9b:8e:
5c:c2:b0:4e:c7:25:7a:d3:5d:05:84:f0:1a:90:a1:
0c:2c:c9:d9:64:59:ec:cd:da:88:58:15:9e:26:e8:
41:4c:d5:fd:21:10:16:7a:1a:16:f4:c5:1b:fc:d6:
b1:b6:76:c6:6a:3e:26:ab:81:10:a3:09:5d:f5:16:
bc:27:b3:b2:a3:ff:8d:c3:88:7a:ea:22:15:c0:45:
85:78:9a:c8:c0:80:ab:a4:d5:e5:c6:ee:ac:2c:36:
3f:28:d5:b0:f3:5e:37:97:72:5e:53:7b:ce:2b:64:
86:4c:0c:a0:f5:6c:90:28:4b:b4:2a:2c:ad:7b:21:
91:83:e1:5f:c0:59:e7:b8:78:57:e9:5c:85:ea:95:
1e:52:a6:3a:52:e2:b1:57:c4:5c:1a:14:c9:af:2d:
9d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:B0:51:5A:65:E0:11:13:A4:96:63:1E:CD:E2:77:59:DA:0D:7B:4C
X509v3 Authority Key Identifier:
keyid:0F:E3:9B:41:07:4C:7D:6A:DC:8E:E2:74:E2:39:F7:B8:EB:35:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D-ObQQdMfWrcjuJ04jn3uOs1hek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/13ea1f-0bc1-457c-8ab5-04e812d48e72/1/XbBRWmXgEROklmMezeJ3WdoNe0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/13ea1f-0bc1-457c-8ab5-04e812d48e72/1/D-ObQQdMfWrcjuJ04jn3uOs1hek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.159.128.0/18
37.218.0.0/17
62.99.0.0/17
81.9.128.0/17
82.130.128.0/17
83.213.0.0/16
85.84.0.0/14
91.116.0.0/18
178.60.64.0/18
185.116.180.0/22
212.8.64.0/18
212.55.0.0/19
212.142.128.0/17
IPv6:
2a00:7b00::/29
Signature Algorithm: sha256WithRSAEncryption
2e:c5:86:15:55:20:a1:5c:13:56:56:04:04:67:59:2b:e7:a1:
39:76:7d:d9:55:e4:5f:63:5f:6d:f2:1d:34:0b:6b:da:92:32:
6b:a5:84:ea:d6:c0:98:cd:a6:7d:3c:57:00:38:4b:cc:2f:e8:
30:43:7d:30:d2:0e:50:82:0b:a3:21:08:fc:ff:b6:b5:54:0d:
8a:76:bc:94:e2:23:31:ce:53:05:ad:e0:5a:a0:c1:e2:24:fa:
4f:e9:7d:b7:31:3a:bf:c9:21:75:98:c8:6a:ce:01:73:5a:c2:
b9:79:27:2c:51:ab:34:d2:1a:67:c6:db:a1:e1:18:01:2c:73:
27:0e:b3:ea:77:cb:59:53:8c:fc:ed:22:46:43:ac:f5:e5:36:
30:0b:a4:e8:7e:ee:da:13:09:66:42:34:53:52:0b:df:1e:e7:
c3:6c:89:68:65:d8:26:2f:f1:f3:86:db:83:d7:f9:d2:b2:f2:
74:60:c2:15:43:d5:0f:4a:bd:62:35:16:59:72:92:54:68:dd:
39:71:61:0f:78:90:85:25:da:87:c4:14:ff:96:b7:4c:e7:4f:
95:dd:0f:d0:ef:92:d7:0a:d6:df:47:8e:8a:d5:dc:c4:d0:37:
f5:a1:fb:2f:30:5b:bb:fc:4f:5c:9d:72:cb:c4:dc:2b:ad:18:
41:95:70:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:25:29 2025 by rpki-client