Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/LCYGTLXakFfWA0_XtJR2K9HdRdI.roa
File: LCYGTLXakFfWA0_XtJR2K9HdRdI.roa (raw, json)
Hash identifier: Oq/F52TKeE0l/F0t3MYr66HpYQWGvVzr/NU7JigtlBk=
Subject key identifier: 2C:26:06:4C:B5:DA:90:57:D6:03:4F:D7:B4:94:76:2B:D1:DD:45:D2
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 01945E76C6EDD1C4DB38C6ECF896EB9CE9D5
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/LCYGTLXakFfWA0_XtJR2K9HdRdI.roa
Signing time: Mon 13 Jan 2025 07:00:29 +0000
ROA not before: Mon 13 Jan 2025 07:00:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34665
IP address blocks: 5.8.8.0/22 maxlen: 22
5.8.8.0/23 maxlen: 23
5.8.8.0/24 maxlen: 24
5.8.9.0/24 maxlen: 24
5.8.10.0/23 maxlen: 23
5.8.10.0/24 maxlen: 24
5.8.11.0/24 maxlen: 24
5.8.12.0/22 maxlen: 22
5.8.16.0/24 maxlen: 24
5.8.48.0/22 maxlen: 22
5.8.48.0/23 maxlen: 23
5.8.48.0/24 maxlen: 24
5.8.49.0/24 maxlen: 24
5.8.50.0/23 maxlen: 23
5.8.50.0/24 maxlen: 24
5.8.51.0/24 maxlen: 24
5.8.52.0/22 maxlen: 22
5.8.52.0/23 maxlen: 23
5.8.52.0/24 maxlen: 24
5.8.53.0/24 maxlen: 24
5.8.54.0/23 maxlen: 23
5.8.54.0/24 maxlen: 24
5.8.55.0/24 maxlen: 24
5.8.60.0/23 maxlen: 23
5.8.65.0/24 maxlen: 24
5.8.80.0/21 maxlen: 23
5.101.0.0/22 maxlen: 22
5.101.0.0/23 maxlen: 23
5.101.0.0/24 maxlen: 24
5.101.1.0/24 maxlen: 24
5.101.2.0/23 maxlen: 23
5.101.2.0/24 maxlen: 24
5.101.3.0/24 maxlen: 24
5.101.4.0/22 maxlen: 22
5.101.4.0/23 maxlen: 23
5.101.4.0/24 maxlen: 24
5.101.5.0/24 maxlen: 24
5.101.6.0/23 maxlen: 23
5.101.6.0/24 maxlen: 24
5.101.7.0/24 maxlen: 24
5.101.32.0/22 maxlen: 24
5.101.64.0/22 maxlen: 22
5.101.64.0/23 maxlen: 23
5.101.64.0/24 maxlen: 24
5.101.65.0/24 maxlen: 24
5.101.66.0/23 maxlen: 23
5.101.66.0/24 maxlen: 24
5.101.67.0/24 maxlen: 24
5.101.80.0/21 maxlen: 21
5.101.90.0/23 maxlen: 23
5.188.44.0/22 maxlen: 22
5.188.44.0/23 maxlen: 23
5.188.44.0/24 maxlen: 24
5.188.45.0/24 maxlen: 24
5.188.46.0/23 maxlen: 23
5.188.46.0/24 maxlen: 24
5.188.47.0/24 maxlen: 24
5.188.49.0/24 maxlen: 24
5.188.62.0/24 maxlen: 24
5.188.207.0/24 maxlen: 24
5.188.208.0/23 maxlen: 23
5.188.210.0/24 maxlen: 24
5.188.211.0/24 maxlen: 24
5.188.223.0/24 maxlen: 24
5.188.233.0/24 maxlen: 24
5.188.234.0/23 maxlen: 23
31.44.188.0/22 maxlen: 32
31.184.192.0/22 maxlen: 22
31.184.192.0/23 maxlen: 23
31.184.192.0/24 maxlen: 24
31.184.193.0/24 maxlen: 24
31.184.194.0/23 maxlen: 23
31.184.194.0/24 maxlen: 24
31.184.195.0/24 maxlen: 24
31.184.196.0/22 maxlen: 22
31.184.196.0/23 maxlen: 23
31.184.196.0/24 maxlen: 24
31.184.197.0/24 maxlen: 24
31.184.198.0/23 maxlen: 23
31.184.198.0/24 maxlen: 24
31.184.199.0/24 maxlen: 24
31.184.231.0/24 maxlen: 24
31.184.238.0/23 maxlen: 23
31.184.243.0/24 maxlen: 24
37.9.48.0/24 maxlen: 24
37.139.53.0/24 maxlen: 24
37.139.54.0/23 maxlen: 23
37.139.56.0/22 maxlen: 22
37.139.56.0/23 maxlen: 23
37.139.56.0/24 maxlen: 24
37.139.57.0/24 maxlen: 24
37.139.58.0/23 maxlen: 23
37.139.58.0/24 maxlen: 24
37.139.59.0/24 maxlen: 24
46.161.2.0/23 maxlen: 23
46.161.8.0/24 maxlen: 24
46.161.10.0/24 maxlen: 24
46.161.14.0/23 maxlen: 23
46.161.20.0/22 maxlen: 22
46.161.32.0/22 maxlen: 22
46.161.44.0/22 maxlen: 22
46.161.48.0/22 maxlen: 22
46.161.48.0/23 maxlen: 23
46.161.48.0/24 maxlen: 24
46.161.49.0/24 maxlen: 24
46.161.50.0/23 maxlen: 23
46.161.50.0/24 maxlen: 24
46.161.51.0/24 maxlen: 24
91.243.48.0/22 maxlen: 22
91.243.48.0/23 maxlen: 23
91.243.48.0/24 maxlen: 24
91.243.49.0/24 maxlen: 24
91.243.50.0/23 maxlen: 23
91.243.50.0/24 maxlen: 24
91.243.51.0/24 maxlen: 24
91.243.60.0/24 maxlen: 24
91.243.61.0/24 maxlen: 24
91.243.90.0/24 maxlen: 24
91.243.91.0/24 maxlen: 24
91.243.93.0/24 maxlen: 24
95.215.0.0/22 maxlen: 24
95.215.0.0/23 maxlen: 23
95.215.0.0/24 maxlen: 24
95.215.1.0/24 maxlen: 24
95.215.2.0/23 maxlen: 23
95.215.2.0/24 maxlen: 24
95.215.3.0/24 maxlen: 24
146.185.223.0/24 maxlen: 24
146.185.224.0/21 maxlen: 21
188.143.232.0/22 maxlen: 22
188.143.232.0/23 maxlen: 23
188.143.232.0/24 maxlen: 24
188.143.233.0/24 maxlen: 24
188.143.235.0/24 maxlen: 24
195.2.240.0/23 maxlen: 24
2a00:1d78:100:1c0::/58 maxlen: 58
Validation: Failed, certificate revoked on Wed 26 Feb 2025 17:45:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:5e:76:c6:ed:d1:c4:db:38:c6:ec:f8:96:eb:9c:e9:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 13 07:00:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2c26064cb5da9057d6034fd7b494762bd1dd45d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:73:1f:6c:3d:d9:c4:9c:95:ab:c9:66:a5:cb:
b6:a8:11:87:1b:8c:45:bd:71:e1:66:4c:1f:21:bc:
18:d6:fc:68:97:38:f6:08:94:ae:96:4d:b6:56:4d:
bd:22:3a:04:6b:4d:28:76:70:33:4a:ef:97:f1:ea:
8c:f9:de:09:b7:1d:aa:77:55:da:7f:0f:1b:37:e1:
23:f9:89:a3:40:ed:af:9e:84:62:10:55:13:e8:9a:
54:a2:fa:8d:72:b2:56:cb:c1:bb:c5:84:40:9b:c6:
1d:29:0b:e4:a0:08:f7:b2:1f:6f:da:8a:80:1d:5b:
57:14:0a:1d:f8:62:1d:f4:e2:8a:bb:97:9a:1d:41:
f0:1f:b7:5c:60:9c:59:a6:ab:48:fb:60:16:1c:f5:
f8:8f:39:3a:09:9d:7c:dd:93:66:dc:98:d1:76:d0:
88:f8:3f:2c:58:0c:89:08:d4:da:4d:c0:66:fa:e5:
88:c1:55:34:30:b7:a5:9c:00:07:76:a3:01:99:8a:
3f:9b:c4:25:99:49:11:1c:10:a2:4b:c1:23:65:b6:
7b:51:83:67:79:66:0e:1f:c9:54:89:a1:86:17:07:
ee:ff:e0:34:a0:1c:d0:39:d4:b9:d2:7b:35:ec:76:
17:bb:99:a9:22:a4:a0:7d:f1:54:f3:9f:86:62:b3:
3d:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:26:06:4C:B5:DA:90:57:D6:03:4F:D7:B4:94:76:2B:D1:DD:45:D2
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/LCYGTLXakFfWA0_XtJR2K9HdRdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.8.0-5.8.16.255
5.8.48.0/21
5.8.60.0/23
5.8.65.0/24
5.8.80.0/21
5.101.0.0/21
5.101.32.0/22
5.101.64.0/22
5.101.80.0/21
5.101.90.0/23
5.188.44.0/22
5.188.49.0/24
5.188.62.0/24
5.188.207.0-5.188.211.255
5.188.223.0/24
5.188.233.0-5.188.235.255
31.44.188.0/22
31.184.192.0/21
31.184.231.0/24
31.184.238.0/23
31.184.243.0/24
37.9.48.0/24
37.139.53.0-37.139.59.255
46.161.2.0/23
46.161.8.0/24
46.161.10.0/24
46.161.14.0/23
46.161.20.0/22
46.161.32.0/22
46.161.44.0-46.161.51.255
91.243.48.0/22
91.243.60.0/23
91.243.90.0/23
91.243.93.0/24
95.215.0.0/22
146.185.223.0-146.185.231.255
188.143.232.0/22
195.2.240.0/23
IPv6:
2a00:1d78:100:1c0::/58
Signature Algorithm: sha256WithRSAEncryption
21:f8:50:5e:a8:d1:6b:fd:4d:07:a1:2c:c3:f7:e9:e6:b0:2f:
15:51:da:f6:bc:d5:c6:c7:2b:24:40:ac:c9:d1:0f:58:9c:1c:
e4:72:52:64:15:46:fb:58:2f:ba:4c:61:ca:bd:7e:77:95:f7:
2a:73:c7:2a:a2:2f:33:57:f5:e6:08:b2:05:e1:85:24:75:c2:
ca:37:a4:39:9a:4a:3e:66:0e:cc:1c:83:dd:d0:69:9c:ef:e2:
8c:b6:15:a1:a5:1f:78:33:4a:ad:cf:b0:92:a3:f0:db:b1:82:
aa:78:a6:ba:e0:ce:5d:8f:6f:14:c0:ed:f6:c1:d8:8a:c0:26:
93:df:b0:f6:be:b7:49:2c:08:0a:39:c7:8e:a7:3f:bb:0e:4e:
47:7d:6b:4e:ba:31:22:fc:be:42:4a:70:2f:32:9a:d1:44:2f:
98:9e:59:55:36:65:c0:2f:f1:74:f9:7b:08:96:21:bc:c5:2a:
52:60:61:59:f4:c6:fa:99:9e:b5:d1:55:b9:f7:97:40:58:78:
fb:4a:7c:01:c0:12:00:b9:e0:22:7b:d6:e7:9a:78:a5:de:9d:
43:72:df:e4:3c:68:95:b0:35:5f:f8:ec:0a:16:e7:58:8d:fd:
76:31:f5:15:81:a2:ab:1f:c1:42:5f:7c:b1:58:ef:67:7a:f6:
3d:95:3e:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 16:08:09 2025 by rpki-client