Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/CM0DTjZ_fz0P6CV_CEagwG-wsS4.roa
File: CM0DTjZ_fz0P6CV_CEagwG-wsS4.roa (raw, json)
Hash identifier: Pd7xQyDVO+kutajsSU3QNUVExXWc7bEl5gA1Eitd9qg=
Subject key identifier: 08:CD:03:4E:36:7F:7F:3D:0F:E8:25:7F:08:46:A0:C0:6F:B0:B1:2E
Certificate issuer: /CN=be550b8eff90cccee9f8d3134b6438996b7d27cd
Certificate serial: 018CC425029444058CD0117D56A2BCB1E59B
Authority key identifier: BE:55:0B:8E:FF:90:CC:CE:E9:F8:D3:13:4B:64:38:99:6B:7D:27:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vlULjv-QzM7p-NMTS2Q4mWt9J80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/CM0DTjZ_fz0P6CV_CEagwG-wsS4.roa
Signing time: Mon 01 Jan 2024 08:30:08 +0000
ROA not before: Mon 01 Jan 2024 08:30:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204170
IP address blocks: 178.20.17.0/24 maxlen: 24
178.20.16.0/24 maxlen: 24
178.20.16.0/21 maxlen: 21
178.20.18.0/24 maxlen: 24
178.20.19.0/24 maxlen: 24
178.20.22.0/24 maxlen: 24
178.20.23.0/24 maxlen: 24
178.20.20.0/24 maxlen: 24
178.20.21.0/24 maxlen: 24
84.242.37.0/24 maxlen: 24
84.242.35.0/24 maxlen: 24
84.242.36.0/24 maxlen: 24
84.242.33.0/24 maxlen: 24
84.242.32.0/20 maxlen: 20
84.242.34.0/24 maxlen: 24
84.242.32.0/24 maxlen: 24
84.242.38.0/24 maxlen: 24
84.242.44.0/24 maxlen: 24
84.242.42.0/24 maxlen: 24
84.242.43.0/24 maxlen: 24
84.242.40.0/24 maxlen: 24
84.242.41.0/24 maxlen: 24
84.242.39.0/24 maxlen: 24
84.242.47.0/24 maxlen: 24
84.242.45.0/24 maxlen: 24
84.242.46.0/24 maxlen: 24
206.167.33.0/24 maxlen: 24
141.105.172.0/24 maxlen: 24
141.105.171.0/24 maxlen: 24
185.112.104.0/24 maxlen: 24
141.105.169.0/24 maxlen: 24
185.112.104.0/22 maxlen: 22
141.105.170.0/24 maxlen: 24
141.105.168.0/24 maxlen: 24
141.105.168.0/21 maxlen: 21
185.112.105.0/24 maxlen: 24
185.112.107.0/24 maxlen: 24
141.105.174.0/24 maxlen: 24
141.105.175.0/24 maxlen: 24
141.105.173.0/24 maxlen: 24
185.112.106.0/24 maxlen: 24
78.111.40.0/24 maxlen: 24
78.111.39.0/24 maxlen: 24
78.111.43.0/24 maxlen: 24
78.111.44.0/24 maxlen: 24
78.111.41.0/24 maxlen: 24
78.111.42.0/24 maxlen: 24
78.111.47.0/24 maxlen: 24
78.111.45.0/24 maxlen: 24
78.111.46.0/24 maxlen: 24
96.9.131.0/24 maxlen: 24
96.9.132.0/24 maxlen: 24
96.9.129.0/24 maxlen: 24
96.9.130.0/24 maxlen: 24
96.9.128.0/19 maxlen: 19
96.9.128.0/24 maxlen: 24
96.9.136.0/24 maxlen: 24
96.9.137.0/24 maxlen: 24
96.9.134.0/24 maxlen: 24
96.9.135.0/24 maxlen: 24
96.9.133.0/24 maxlen: 24
96.9.138.0/24 maxlen: 24
96.9.139.0/24 maxlen: 24
96.9.143.0/24 maxlen: 24
96.9.144.0/24 maxlen: 24
96.9.141.0/24 maxlen: 24
96.9.142.0/24 maxlen: 24
96.9.140.0/24 maxlen: 24
96.9.145.0/24 maxlen: 24
96.9.150.0/24 maxlen: 24
96.9.151.0/24 maxlen: 24
96.9.148.0/24 maxlen: 24
96.9.149.0/24 maxlen: 24
96.9.147.0/24 maxlen: 24
96.9.146.0/24 maxlen: 24
96.9.152.0/24 maxlen: 24
96.9.157.0/24 maxlen: 24
96.9.158.0/24 maxlen: 24
96.9.155.0/24 maxlen: 24
96.9.156.0/24 maxlen: 24
96.9.154.0/24 maxlen: 24
96.9.153.0/24 maxlen: 24
96.9.159.0/24 maxlen: 24
185.29.141.0/24 maxlen: 24
185.29.140.0/22 maxlen: 22
185.29.142.0/24 maxlen: 24
185.29.140.0/24 maxlen: 24
185.29.143.0/24 maxlen: 24
78.111.32.0/24 maxlen: 24
78.111.33.0/24 maxlen: 24
78.111.34.0/24 maxlen: 24
78.111.32.0/20 maxlen: 20
78.111.38.0/24 maxlen: 24
78.111.36.0/24 maxlen: 24
78.111.37.0/24 maxlen: 24
78.111.35.0/24 maxlen: 24
199.48.224.0/24 maxlen: 24
94.176.17.0/24 maxlen: 24
94.176.16.0/20 maxlen: 20
94.176.16.0/24 maxlen: 24
94.176.20.0/24 maxlen: 24
94.176.21.0/24 maxlen: 24
94.176.18.0/24 maxlen: 24
94.176.19.0/24 maxlen: 24
94.176.24.0/24 maxlen: 24
94.176.22.0/24 maxlen: 24
94.176.23.0/24 maxlen: 24
94.176.27.0/24 maxlen: 24
94.176.28.0/24 maxlen: 24
94.176.25.0/24 maxlen: 24
94.176.26.0/24 maxlen: 24
94.176.31.0/24 maxlen: 24
94.176.29.0/24 maxlen: 24
94.176.30.0/24 maxlen: 24
5.102.179.0/24 maxlen: 24
5.102.176.0/21 maxlen: 21
5.102.178.0/24 maxlen: 24
5.102.176.0/24 maxlen: 24
5.102.177.0/24 maxlen: 24
5.102.181.0/24 maxlen: 24
5.102.182.0/24 maxlen: 24
5.102.180.0/24 maxlen: 24
5.102.183.0/24 maxlen: 24
2a0a:c740:100::/48 maxlen: 48
2a0a:c740:8::/48 maxlen: 48
2a0a:c740:5::/48 maxlen: 48
2a0a:c740:2::/48 maxlen: 48
2a0a:c740:7::/48 maxlen: 48
2a0a:c740:4::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 10 Mar 2024 12:13:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:02:94:44:05:8c:d0:11:7d:56:a2:bc:b1:e5:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be550b8eff90cccee9f8d3134b6438996b7d27cd
Validity
Not Before: Jan 1 08:30:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=08cd034e367f7f3d0fe8257f0846a0c06fb0b12e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:3b:6f:46:70:7f:fe:96:86:b0:f7:0a:59:c8:
34:a2:8d:b3:6d:a4:c3:5d:07:a7:20:3e:df:49:60:
13:7b:88:f7:c5:7c:3c:d0:66:67:0e:2e:a9:57:72:
0d:74:6f:76:82:e8:34:aa:b9:e3:19:c0:be:b7:c1:
4d:66:1c:3e:b5:6f:15:a2:91:58:76:df:ff:3c:10:
9a:c9:df:99:9c:6c:b9:cf:05:c1:69:0d:48:66:6b:
2b:f3:77:b2:20:7a:62:61:28:d0:97:a7:5e:ac:3c:
30:3d:1e:ea:37:c0:c8:0b:54:bd:59:5c:44:33:07:
a5:e2:89:1f:56:f5:ed:ba:b9:26:ff:bb:e3:bb:00:
79:9f:39:be:99:24:55:79:ff:54:bd:b8:fe:f7:24:
0f:09:d4:a6:cc:79:06:e0:9a:59:dd:65:87:f2:85:
7d:ac:ab:22:66:59:7d:08:25:94:48:54:05:cd:85:
da:31:09:b3:72:d8:fa:c9:79:bb:4f:b1:a5:42:a2:
28:4f:8b:ba:6f:1d:a5:a5:8e:e3:25:cc:a3:d3:8c:
1c:8c:40:37:fa:7a:9c:04:9b:1e:ac:bb:dc:df:9c:
89:c3:62:2e:c2:7e:a5:dd:02:a0:42:a0:fe:13:71:
38:0f:b9:fe:be:82:1b:e0:82:90:f6:65:14:d9:9b:
b0:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:CD:03:4E:36:7F:7F:3D:0F:E8:25:7F:08:46:A0:C0:6F:B0:B1:2E
X509v3 Authority Key Identifier:
keyid:BE:55:0B:8E:FF:90:CC:CE:E9:F8:D3:13:4B:64:38:99:6B:7D:27:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vlULjv-QzM7p-NMTS2Q4mWt9J80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/CM0DTjZ_fz0P6CV_CEagwG-wsS4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/vlULjv-QzM7p-NMTS2Q4mWt9J80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.102.176.0/21
78.111.32.0/20
84.242.32.0/20
94.176.16.0/20
96.9.128.0/19
141.105.168.0/21
178.20.16.0/21
185.29.140.0/22
185.112.104.0/22
199.48.224.0/24
206.167.33.0/24
IPv6:
2a0a:c740:2::/48
2a0a:c740:4::/47
2a0a:c740:7::-2a0a:c740:8:ffff:ffff:ffff:ffff:ffff
2a0a:c740:100::/48
Signature Algorithm: sha256WithRSAEncryption
2a:9d:7e:08:a0:d8:68:f3:51:fc:6d:44:93:9a:17:4b:21:46:
4c:69:5f:d3:95:7a:97:99:f8:6f:41:57:c7:2d:11:97:c3:5e:
2a:e5:bf:e8:b3:c2:a7:ca:fc:4c:8f:c6:a6:b2:c6:43:7f:65:
e9:7f:aa:79:0c:ae:3c:ae:3a:19:e5:cc:30:c6:b8:6f:fd:ef:
d6:f3:1c:31:91:b9:5f:82:a6:5c:57:20:b2:02:a8:63:25:c1:
2b:7c:b0:12:18:b6:39:63:ef:9b:47:78:e4:a4:2e:38:64:5f:
63:2e:43:be:e1:d2:cc:a5:ac:b9:f0:df:2b:eb:5a:b8:82:f1:
da:6a:b7:d9:04:44:e0:29:d3:b9:8a:86:16:ad:70:49:26:1c:
32:bb:27:cc:d1:09:a6:41:e7:70:34:b9:4a:96:84:e6:eb:11:
0b:e9:d5:9e:c5:59:28:9f:54:d1:81:c3:60:aa:96:3f:5f:44:
47:20:e9:5f:cb:53:c1:c3:7c:bc:36:85:91:8e:ee:c9:5e:56:
12:ed:a6:b2:7b:52:89:49:3b:4f:00:d5:8f:5a:ba:19:cd:8a:
32:f3:f7:a0:d5:92:c4:1e:eb:41:bf:26:8d:cd:e3:7a:6c:3b:
42:98:5e:c7:17:59:59:4b:74:fa:3f:60:d8:10:91:3f:c2:54:
83:13:51:d9
-----BEGIN CERTIFICATE-----
MIIFczCCBFugAwIBAgISAYzEJQKURAWM0BF9VqK8seWbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJlNTUwYjhlZmY5MGNjY2VlOWY4ZDMxMzRiNjQzODk5NmI3
ZDI3Y2QwHhcNMjQwMTAxMDgzMDA4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOGNkMDM0ZTM2N2Y3ZjNkMGZlODI1N2YwODQ2YTBjMDZmYjBiMTJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlDtvRnB//paGsPcKWcg0oo2zbaTD
XQenID7fSWATe4j3xXw80GZnDi6pV3INdG92gug0qrnjGcC+t8FNZhw+tW8VopFY
dt//PBCayd+ZnGy5zwXBaQ1IZmsr83eyIHpiYSjQl6derDwwPR7qN8DIC1S9WVxE
Mwel4okfVvXturkm/7vjuwB5nzm+mSRVef9Uvbj+9yQPCdSmzHkG4JpZ3WWH8oV9
rKsiZll9CCWUSFQFzYXaMQmzctj6yXm7T7GlQqIoT4u6bx2lpY7jJcyj04wcjEA3
+nqcBJserLvc35yJw2Iuwn6l3QKgQqD+E3E4D7n+voIb4IKQ9mUU2ZuwOQIDAQAB
o4ICfzCCAnswHQYDVR0OBBYEFAjNA042f389D+glfwhGoMBvsLEuMB8GA1UdIwQY
MBaAFL5VC47/kMzO6fjTE0tkOJlrfSfNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmxVTGp2LVF6TTdwLU5NVFMyUTRtV3Q5SjgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi8zNDBkY2QtM2FlZS00MDEyLTkyMzMt
YzE1NTMyYmFmZjdkLzEvQ00wRFRqWl9mejBQNkNWX0NFYWd3Ry13c1M0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi8zNDBkY2QtM2FlZS00MDEyLTkyMzMtYzE1NTMyYmFmZjdk
LzEvdmxVTGp2LVF6TTdwLU5NVFMyUTRtV3Q5SjgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGUBggrBgEFBQcBBwEB/wSBhDCBgTBIBAIAATBCAwQDBWaw
AwQETm8gAwQEVPIgAwQEXrAQAwQFYAmAAwQDjWmoAwQDshQQAwQCuR2MAwQCuXBo
AwQAxzDgAwQAzqchMDUEAgACMC8DBwAqCsdAAAIDBwEqCsdAAAQwEgMHACoKx0AA
BwMHACoKx0AACAMHACoKx0ABADANBgkqhkiG9w0BAQsFAAOCAQEAKp1+CKDYaPNR
/G1Ek5oXSyFGTGlf05V6l5n4b0FXxy0Rl8NeKuW/6LPCp8r8TI/GprLGQ39l6X+q
eQyuPK46GeXMMMa4b/3v1vMcMZG5X4KmXFcgsgKoYyXBK3ywEhi2OWPvm0d45KQu
OGRfYy5DvuHSzKWsufDfK+tauILx2mq32QRE4CnTuYqGFq1wSSYcMrsnzNEJpkHn
cDS5SpaE5usRC+nVnsVZKJ9U0YHDYKqWP19ERyDpX8tTwcN8vDaFkY7uyV5WEu2m
sntSiUk7TwDVj1q6Gc2KMvP3oNWSxB7rQb8mjc3jemw7QphexxdZWUt0+j9g2BCR
P8JUgxNR2Q==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:46 2025 by rpki-client