Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/13ea1f-0bc1-457c-8ab5-04e812d48e72/1/r-OHONyqnTP13rtQrIshjwnwaZ0.roa
File: r-OHONyqnTP13rtQrIshjwnwaZ0.roa (raw, json)
Hash identifier: 63Wz1Q+mRPc5RnuYeY0rLyOff+Z/RLkkf5RGCwSVWZw=
Subject key identifier: AF:E3:87:38:DC:AA:9D:33:F5:DE:BB:50:AC:8B:21:8F:09:F0:69:9D
Certificate issuer: /CN=0fe39b41074c7d6adc8ee274e239f7b8eb3585e9
Certificate serial: 019072D9407CFD5A915A8F285CE1F1E0803F
Authority key identifier: 0F:E3:9B:41:07:4C:7D:6A:DC:8E:E2:74:E2:39:F7:B8:EB:35:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D-ObQQdMfWrcjuJ04jn3uOs1hek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/13ea1f-0bc1-457c-8ab5-04e812d48e72/1/r-OHONyqnTP13rtQrIshjwnwaZ0.roa
Signing time: Tue 02 Jul 2024 09:49:18 +0000
ROA not before: Tue 02 Jul 2024 09:49:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12338
IP address blocks: 5.159.128.0/18 maxlen: 18
5.159.128.0/21 maxlen: 21
5.159.136.0/21 maxlen: 21
5.159.144.0/21 maxlen: 21
5.159.152.0/21 maxlen: 21
5.159.160.0/21 maxlen: 21
5.159.168.0/21 maxlen: 21
5.159.168.0/22 maxlen: 22
5.159.172.0/22 maxlen: 22
5.159.176.0/23 maxlen: 23
5.159.178.0/23 maxlen: 23
5.159.180.0/23 maxlen: 23
5.159.182.0/23 maxlen: 23
5.159.184.0/23 maxlen: 23
5.159.186.0/23 maxlen: 23
5.159.188.0/23 maxlen: 23
5.159.190.0/23 maxlen: 23
37.218.0.0/17 maxlen: 17
62.99.0.0/17 maxlen: 17
81.9.128.0/17 maxlen: 17
81.9.128.0/19 maxlen: 19
81.9.160.0/19 maxlen: 19
81.9.192.0/21 maxlen: 21
81.9.192.0/22 maxlen: 22
81.9.196.0/24 maxlen: 24
81.9.198.0/24 maxlen: 24
81.9.199.0/24 maxlen: 24
81.9.202.0/23 maxlen: 23
81.9.204.0/22 maxlen: 22
81.9.208.0/21 maxlen: 21
81.9.208.0/22 maxlen: 22
81.9.212.0/24 maxlen: 24
81.9.216.0/23 maxlen: 23
81.9.218.0/23 maxlen: 23
81.9.220.0/22 maxlen: 22
81.9.248.0/21 maxlen: 21
82.130.128.0/17 maxlen: 17
82.130.247.0/24 maxlen: 24
83.213.0.0/16 maxlen: 16
83.213.184.0/22 maxlen: 22
85.84.0.0/16 maxlen: 16
85.84.16.0/21 maxlen: 21
85.84.168.0/21 maxlen: 21
85.84.176.0/21 maxlen: 21
85.85.0.0/16 maxlen: 16
85.85.16.0/21 maxlen: 21
85.85.48.0/21 maxlen: 21
85.85.144.0/21 maxlen: 21
85.86.0.0/16 maxlen: 16
85.87.0.0/16 maxlen: 16
85.87.24.0/24 maxlen: 24
85.87.25.0/24 maxlen: 24
85.87.26.0/24 maxlen: 24
85.87.27.0/24 maxlen: 24
85.87.40.0/24 maxlen: 24
85.87.43.0/24 maxlen: 24
85.87.64.0/22 maxlen: 22
85.87.68.0/24 maxlen: 24
85.87.69.0/24 maxlen: 24
85.87.70.0/24 maxlen: 24
85.87.72.0/22 maxlen: 22
85.87.84.0/22 maxlen: 22
85.87.96.0/22 maxlen: 22
85.87.100.0/22 maxlen: 22
85.87.124.0/22 maxlen: 22
85.87.192.0/24 maxlen: 24
85.87.193.0/24 maxlen: 24
85.87.194.0/24 maxlen: 24
85.87.195.0/24 maxlen: 24
91.116.0.0/18 maxlen: 18
91.116.0.0/19 maxlen: 19
91.116.0.0/22 maxlen: 22
91.116.4.0/24 maxlen: 24
91.116.16.0/20 maxlen: 20
91.116.32.0/21 maxlen: 21
91.116.32.0/22 maxlen: 22
91.116.36.0/24 maxlen: 24
91.116.38.0/24 maxlen: 24
91.116.40.0/22 maxlen: 22
91.116.44.0/22 maxlen: 22
91.116.48.0/21 maxlen: 21
91.116.56.0/21 maxlen: 21
178.60.64.0/18 maxlen: 18
178.60.64.0/21 maxlen: 21
178.60.64.0/22 maxlen: 22
178.60.68.0/24 maxlen: 24
178.60.69.0/24 maxlen: 24
178.60.70.0/24 maxlen: 24
178.60.71.0/24 maxlen: 24
178.60.72.0/24 maxlen: 24
178.60.73.0/24 maxlen: 24
178.60.76.0/22 maxlen: 22
178.60.80.0/22 maxlen: 22
178.60.96.0/21 maxlen: 21
178.60.104.0/22 maxlen: 22
178.60.108.0/22 maxlen: 22
178.60.112.0/22 maxlen: 22
178.60.116.0/24 maxlen: 24
178.60.117.0/24 maxlen: 24
178.60.118.0/24 maxlen: 24
178.60.120.0/24 maxlen: 24
178.60.121.0/24 maxlen: 24
178.60.122.0/23 maxlen: 23
185.116.180.0/22 maxlen: 22
212.8.64.0/18 maxlen: 18
212.55.0.0/19 maxlen: 19
212.142.128.0/17 maxlen: 17
2a00:7b00::/29 maxlen: 29
2a00:7b00::/40 maxlen: 40
2a00:7b00:10::/48 maxlen: 48
2a00:7b00:11::/48 maxlen: 48
2a00:7b00:12::/48 maxlen: 48
2a00:7b00:13::/48 maxlen: 48
2a00:7b00:14::/48 maxlen: 48
2a00:7b00:15::/48 maxlen: 48
2a00:7b00:16::/48 maxlen: 48
2a00:7b00:17::/48 maxlen: 48
2a00:7b00:18::/48 maxlen: 48
2a00:7b00:19::/48 maxlen: 48
2a00:7b00:c10::/48 maxlen: 48
2a00:7b00:b000::/40 maxlen: 40
2a00:7b00:c000::/40 maxlen: 40
2a00:7b00:c800::/40 maxlen: 40
2a00:7b00:d000::/40 maxlen: 40
2a00:7b00:d800::/40 maxlen: 40
2a00:7b00:e000::/40 maxlen: 40
2a00:7b00:e800::/40 maxlen: 40
2a00:7b00:ef00::/40 maxlen: 40
2a00:7b00:f000::/40 maxlen: 40
2a00:7b00:f800::/40 maxlen: 40
2a00:7b00:ff00::/40 maxlen: 40
Validation: Failed, certificate revoked on Mon 19 Aug 2024 09:09:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:72:d9:40:7c:fd:5a:91:5a:8f:28:5c:e1:f1:e0:80:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fe39b41074c7d6adc8ee274e239f7b8eb3585e9
Validity
Not Before: Jul 2 09:49:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=afe38738dcaa9d33f5debb50ac8b218f09f0699d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3a:37:ce:14:95:27:18:7c:63:f9:ae:c2:af:
d8:5a:50:b2:64:1d:03:53:75:ef:31:0a:cd:dc:85:
6e:21:06:fd:17:b7:5d:dc:04:16:16:75:96:74:8c:
79:67:a0:65:97:2e:c2:f5:a5:6e:dd:f9:b7:14:23:
6c:10:b4:25:0e:1f:20:45:17:72:bc:ca:46:96:6a:
95:8f:85:a5:b3:b4:ab:0a:a2:d7:ad:45:e6:84:a0:
54:d4:73:77:95:e0:33:2f:85:93:d9:2b:46:08:ed:
f1:44:3a:a1:65:43:49:e9:c8:5b:be:b8:c4:37:cf:
3a:78:c5:bf:75:5d:79:43:43:a7:02:b9:69:d3:69:
f8:d4:80:a6:83:c3:60:91:cd:0c:a0:27:84:07:54:
cd:19:79:2f:53:27:60:e8:07:48:9d:97:d7:4f:a6:
98:e3:40:20:6e:3d:da:8d:fd:47:4b:e3:bb:90:cf:
66:32:6c:56:35:e9:a1:ff:69:7d:5f:64:6a:33:4d:
45:cd:9f:3c:98:af:e5:0f:5b:7a:b6:8a:19:b1:f4:
05:e3:eb:f9:3c:80:71:6b:df:36:fe:87:4d:14:ec:
7d:f6:65:25:c4:69:70:a8:4e:47:0f:69:6e:21:32:
b2:f3:fc:d6:e9:eb:01:d5:19:bf:f5:70:4b:9d:b5:
2f:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:E3:87:38:DC:AA:9D:33:F5:DE:BB:50:AC:8B:21:8F:09:F0:69:9D
X509v3 Authority Key Identifier:
keyid:0F:E3:9B:41:07:4C:7D:6A:DC:8E:E2:74:E2:39:F7:B8:EB:35:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D-ObQQdMfWrcjuJ04jn3uOs1hek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/13ea1f-0bc1-457c-8ab5-04e812d48e72/1/r-OHONyqnTP13rtQrIshjwnwaZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/13ea1f-0bc1-457c-8ab5-04e812d48e72/1/D-ObQQdMfWrcjuJ04jn3uOs1hek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.159.128.0/18
37.218.0.0/17
62.99.0.0/17
81.9.128.0/17
82.130.128.0/17
83.213.0.0/16
85.84.0.0/14
91.116.0.0/18
178.60.64.0/18
185.116.180.0/22
212.8.64.0/18
212.55.0.0/19
212.142.128.0/17
IPv6:
2a00:7b00::/29
Signature Algorithm: sha256WithRSAEncryption
44:59:c2:69:8c:a4:02:0c:11:41:45:e5:0a:63:92:83:72:cc:
a4:95:34:88:64:73:d8:52:3b:cc:19:cc:5c:94:79:f8:ba:a1:
53:64:7d:ad:f1:f2:04:b6:53:0f:f6:7b:f5:6d:1a:4f:79:cb:
d3:4a:e6:49:34:fa:3b:91:a8:ce:36:cd:7e:76:ba:69:9c:3a:
cc:1e:4d:f4:5a:b3:b7:83:8b:30:aa:3c:09:04:f7:5c:63:3e:
6d:0f:c2:c5:df:5a:84:8b:ab:f7:d8:ac:21:26:16:20:f3:cc:
6b:65:c5:7d:0d:02:6d:59:ae:fc:7f:cd:a3:38:c2:18:60:e8:
9d:0a:5d:92:45:5c:05:56:bb:a4:1d:f4:a5:b3:52:d4:d6:4a:
8e:27:dc:17:de:56:bf:48:47:be:a1:02:7c:d9:fe:52:6a:d9:
6b:2d:6f:03:9f:ff:33:7e:3f:00:cf:e3:f7:a9:5d:94:bc:87:
5a:a0:eb:40:8e:7e:a9:0a:d8:e4:9f:ef:78:9b:3f:e0:d0:88:
ac:73:91:35:89:46:fb:d1:a1:49:e8:37:2a:67:a7:38:82:d9:
58:08:a9:9d:e3:2f:71:21:4b:a1:1b:43:67:d0:73:27:fa:46:
0f:37:77:00:9a:1c:21:cf:ac:83:54:23:00:31:94:bb:78:5e:
33:9a:2d:f3
-----BEGIN CERTIFICATE-----
MIIFUjCCBDqgAwIBAgISAZBy2UB8/VqRWo8oXOHx4IA/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmZTM5YjQxMDc0YzdkNmFkYzhlZTI3NGUyMzlmN2I4ZWIz
NTg1ZTkwHhcNMjQwNzAyMDk0OTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZmUzODczOGRjYWE5ZDMzZjVkZWJiNTBhYzhiMjE4ZjA5ZjA2OTlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtDo3zhSVJxh8Y/muwq/YWlCyZB0D
U3XvMQrN3IVuIQb9F7dd3AQWFnWWdIx5Z6Blly7C9aVu3fm3FCNsELQlDh8gRRdy
vMpGlmqVj4Wls7SrCqLXrUXmhKBU1HN3leAzL4WT2StGCO3xRDqhZUNJ6chbvrjE
N886eMW/dV15Q0OnArlp02n41ICmg8Ngkc0MoCeEB1TNGXkvUydg6AdInZfXT6aY
40Agbj3ajf1HS+O7kM9mMmxWNemh/2l9X2RqM01FzZ88mK/lD1t6tooZsfQF4+v5
PIBxa982/odNFOx99mUlxGlwqE5HD2luITKy8/zW6esB1Rm/9XBLnbUvjwIDAQAB
o4ICXjCCAlowHQYDVR0OBBYEFK/jhzjcqp0z9d67UKyLIY8J8GmdMB8GA1UdIwQY
MBaAFA/jm0EHTH1q3I7idOI597jrNYXpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRC1PYlFRZE1mV3JjanVKMDRqbjN1T3MxaGVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8xM2VhMWYtMGJjMS00NTdjLThhYjUt
MDRlODEyZDQ4ZTcyLzEvci1PSE9OeXFuVFAxM3J0UXJJc2hqd253YVowLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS8xM2VhMWYtMGJjMS00NTdjLThhYjUtMDRlODEyZDQ4ZTcy
LzEvRC1PYlFRZE1mV3JjanVKMDRqbjN1T3MxaGVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHQGCCsGAQUFBwEHAQH/BGUwYzBSBAIAATBMAwQGBZ+AAwQH
JdoAAwQHPmMAAwQHUQmAAwQHUoKAAwMAU9UDAwJVVAMEBlt0AAMEBrI8QAMEArl0
tAMEBtQIQAMEBdQ3AAMEB9SOgDANBAIAAjAHAwUDKgB7ADANBgkqhkiG9w0BAQsF
AAOCAQEARFnCaYykAgwRQUXlCmOSg3LMpJU0iGRz2FI7zBnMXJR5+LqhU2R9rfHy
BLZTD/Z79W0aT3nL00rmSTT6O5GozjbNfna6aZw6zB5N9Fqzt4OLMKo8CQT3XGM+
bQ/Cxd9ahIur99isISYWIPPMa2XFfQ0CbVmu/H/NozjCGGDonQpdkkVcBVa7pB30
pbNS1NZKjifcF95Wv0hHvqECfNn+UmrZay1vA5//M34/AM/j96ldlLyHWqDrQI5+
qQrY5J/veJs/4NCIrHORNYlG+9GhSeg3KmenOILZWAipneMvcSFLoRtDZ9BzJ/pG
Dzd3AJocIc+sg1QjADGUu3heM5ot8w==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:46 2025 by rpki-client