Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/397546-dc7b-4660-8a51-bf59fc1cb26d/1/nlHNHeFT-6sR6n8ARc9yoqXD7UU.roa
File: nlHNHeFT-6sR6n8ARc9yoqXD7UU.roa (raw, json)
Hash identifier: NR6+uKVWlgxOsd4/92cdbEzaLhloRnBTc0eSkbcR+zw=
Subject key identifier: 9E:51:CD:1D:E1:53:FB:AB:11:EA:7F:00:45:CF:72:A2:A5:C3:ED:45
Certificate issuer: /CN=24ba4f52ac1be0755d34bc5483c061bdf293447e
Certificate serial: 018CC8DE62CAE3A6C8CB6CD0AB1121A84322
Authority key identifier: 24:BA:4F:52:AC:1B:E0:75:5D:34:BC:54:83:C0:61:BD:F2:93:44:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JLpPUqwb4HVdNLxUg8BhvfKTRH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/397546-dc7b-4660-8a51-bf59fc1cb26d/1/nlHNHeFT-6sR6n8ARc9yoqXD7UU.roa
Signing time: Tue 02 Jan 2024 06:31:06 +0000
ROA not before: Tue 02 Jan 2024 06:31:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42298
IP address blocks: 78.100.112.0/20 maxlen: 24
78.100.144.0/20 maxlen: 24
78.100.62.0/24 maxlen: 24
37.208.160.0/20 maxlen: 24
78.100.224.0/20 maxlen: 24
37.208.176.0/20 maxlen: 24
176.202.0.0/20 maxlen: 24
78.100.240.0/20 maxlen: 24
78.101.0.0/21 maxlen: 24
176.202.16.0/20 maxlen: 24
78.101.8.0/21 maxlen: 24
78.100.160.0/20 maxlen: 24
78.100.176.0/20 maxlen: 24
37.208.128.0/20 maxlen: 24
78.100.192.0/20 maxlen: 24
37.208.144.0/20 maxlen: 24
78.100.208.0/20 maxlen: 24
178.153.128.0/20 maxlen: 24
178.153.144.0/20 maxlen: 24
178.153.160.0/20 maxlen: 24
178.153.80.0/20 maxlen: 24
178.153.96.0/20 maxlen: 24
78.100.10.0/24 maxlen: 24
178.153.240.0/20 maxlen: 24
178.153.176.0/20 maxlen: 24
178.153.192.0/20 maxlen: 24
178.153.208.0/20 maxlen: 24
178.153.224.0/20 maxlen: 24
178.152.112.0/20 maxlen: 24
178.153.16.0/20 maxlen: 24
178.153.32.0/20 maxlen: 24
178.153.48.0/20 maxlen: 24
178.153.64.0/20 maxlen: 24
178.153.0.0/20 maxlen: 24
178.152.64.0/20 maxlen: 24
178.152.80.0/20 maxlen: 24
178.152.96.0/20 maxlen: 24
178.152.0.0/20 maxlen: 24
178.152.16.0/20 maxlen: 24
89.211.160.0/20 maxlen: 24
37.211.160.0/20 maxlen: 24
89.211.176.0/20 maxlen: 24
37.211.176.0/20 maxlen: 24
89.211.192.0/20 maxlen: 24
89.211.96.0/20 maxlen: 24
89.211.112.0/20 maxlen: 24
89.211.128.0/20 maxlen: 24
37.211.128.0/20 maxlen: 24
37.211.144.0/20 maxlen: 24
89.211.144.0/20 maxlen: 24
89.211.208.0/20 maxlen: 24
89.211.224.0/20 maxlen: 24
89.211.240.0/20 maxlen: 24
37.210.192.0/20 maxlen: 24
37.210.208.0/20 maxlen: 24
37.210.224.0/20 maxlen: 24
37.210.144.0/20 maxlen: 24
37.210.160.0/20 maxlen: 24
37.210.176.0/20 maxlen: 24
86.62.242.0/24 maxlen: 24
86.62.245.0/24 maxlen: 24
86.62.246.0/24 maxlen: 24
86.62.243.0/24 maxlen: 24
86.62.244.0/24 maxlen: 24
86.62.252.0/24 maxlen: 24
86.62.251.0/24 maxlen: 24
86.62.248.0/24 maxlen: 24
86.62.249.0/24 maxlen: 24
37.211.48.0/20 maxlen: 24
86.62.255.0/24 maxlen: 24
213.130.96.0/22 maxlen: 24
37.211.64.0/20 maxlen: 24
37.211.80.0/20 maxlen: 24
213.130.127.0/24 maxlen: 24
37.210.240.0/20 maxlen: 24
86.62.192.0/22 maxlen: 24
86.62.196.0/22 maxlen: 24
86.62.200.0/22 maxlen: 24
86.62.204.0/22 maxlen: 24
37.211.0.0/20 maxlen: 24
86.62.211.0/24 maxlen: 24
86.62.209.0/24 maxlen: 24
37.211.16.0/20 maxlen: 24
86.62.218.0/24 maxlen: 24
86.62.216.0/24 maxlen: 24
86.62.224.0/22 maxlen: 24
86.62.223.0/24 maxlen: 24
86.62.221.0/24 maxlen: 24
86.62.228.0/22 maxlen: 24
86.62.232.0/22 maxlen: 24
37.211.32.0/20 maxlen: 24
86.62.236.0/22 maxlen: 24
37.210.0.0/20 maxlen: 24
37.210.16.0/20 maxlen: 24
37.210.80.0/20 maxlen: 24
37.210.96.0/20 maxlen: 24
37.210.112.0/20 maxlen: 24
37.210.128.0/20 maxlen: 24
37.210.32.0/20 maxlen: 24
37.210.48.0/20 maxlen: 24
37.210.64.0/20 maxlen: 24
176.202.80.0/20 maxlen: 24
82.148.107.0/24 maxlen: 24
176.202.96.0/20 maxlen: 24
78.101.80.0/20 maxlen: 24
78.101.16.0/20 maxlen: 24
176.202.32.0/20 maxlen: 24
176.202.48.0/20 maxlen: 24
78.101.48.0/20 maxlen: 24
78.101.64.0/20 maxlen: 24
78.101.176.0/20 maxlen: 24
78.101.192.0/20 maxlen: 24
78.101.208.0/20 maxlen: 24
78.101.224.0/20 maxlen: 24
78.101.128.0/20 maxlen: 24
78.101.144.0/20 maxlen: 24
176.202.160.0/20 maxlen: 24
176.202.176.0/20 maxlen: 24
78.101.160.0/20 maxlen: 24
2001:1a10:1004::/48 maxlen: 48
2001:1a10:1001::/48 maxlen: 48
2001:1a10:100a::/48 maxlen: 48
2001:1a10:1007::/48 maxlen: 48
2001:1a10:1009::/48 maxlen: 48
2001:1a10:1006::/48 maxlen: 48
2001:1a10:100f::/48 maxlen: 48
2001:1a10:100c::/48 maxlen: 48
2001:1a10:100e::/48 maxlen: 48
2001:1a10:1008::/48 maxlen: 48
2001:1a10:100b::/48 maxlen: 48
2001:1a11::/32 maxlen: 53
2001:1a10:1000::/48 maxlen: 48
2001:1a10:1003::/48 maxlen: 48
2001:1a10:100d::/48 maxlen: 48
2001:1a10:1005::/48 maxlen: 48
2001:1a10:1002::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 28 Jan 2024 08:03:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:62:ca:e3:a6:c8:cb:6c:d0:ab:11:21:a8:43:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24ba4f52ac1be0755d34bc5483c061bdf293447e
Validity
Not Before: Jan 2 06:31:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9e51cd1de153fbab11ea7f0045cf72a2a5c3ed45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:82:0e:28:ea:ed:c7:85:4b:ea:23:31:a9:26:
1b:ba:6b:59:7e:76:6b:e9:57:17:dc:1e:a2:f4:a6:
f4:a0:d5:90:2a:1c:80:da:66:3a:53:a5:51:d5:b4:
ad:f4:4d:c1:56:71:b3:c7:18:0e:9a:8c:a3:26:04:
c7:47:98:4f:8a:dd:6d:0e:ed:43:cc:e9:17:77:0b:
a4:f9:be:f0:46:28:31:10:04:45:9e:9d:93:23:60:
26:bc:e8:1a:80:6d:47:6c:2b:a4:ce:fc:4e:1d:49:
fb:42:09:c4:a9:64:c8:36:62:dc:00:41:4f:74:6b:
2f:94:6b:a4:de:03:96:30:aa:66:2a:a9:1a:93:49:
b7:90:ea:47:de:31:78:c6:b4:3a:8c:e1:0f:f7:0d:
13:5e:d7:08:05:cf:7c:f9:db:d6:c7:9d:92:9e:e9:
92:d3:fb:2b:02:d5:27:7c:9f:25:68:89:30:ef:a0:
89:42:d0:87:f2:44:f9:4b:56:8e:df:3c:6e:9f:61:
09:17:52:29:22:3d:90:42:13:49:1f:cf:e7:09:68:
2b:73:d6:fc:f5:0f:65:7a:16:3b:28:da:39:1e:27:
f4:bb:51:9d:a7:3b:f9:63:31:bc:34:48:3b:e3:16:
a3:a9:d2:c5:87:b6:91:c4:8b:b1:31:2b:9f:71:c2:
e0:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:51:CD:1D:E1:53:FB:AB:11:EA:7F:00:45:CF:72:A2:A5:C3:ED:45
X509v3 Authority Key Identifier:
keyid:24:BA:4F:52:AC:1B:E0:75:5D:34:BC:54:83:C0:61:BD:F2:93:44:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JLpPUqwb4HVdNLxUg8BhvfKTRH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/397546-dc7b-4660-8a51-bf59fc1cb26d/1/nlHNHeFT-6sR6n8ARc9yoqXD7UU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/397546-dc7b-4660-8a51-bf59fc1cb26d/1/JLpPUqwb4HVdNLxUg8BhvfKTRH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.208.128.0/18
37.210.0.0-37.211.95.255
37.211.128.0/18
78.100.10.0/24
78.100.62.0/24
78.100.112.0/20
78.100.144.0-78.101.31.255
78.101.48.0-78.101.95.255
78.101.128.0-78.101.239.255
82.148.107.0/24
86.62.192.0/20
86.62.209.0/24
86.62.211.0/24
86.62.216.0/24
86.62.218.0/24
86.62.221.0/24
86.62.223.0-86.62.239.255
86.62.242.0-86.62.246.255
86.62.248.0/23
86.62.251.0-86.62.252.255
86.62.255.0/24
89.211.96.0-89.211.255.255
176.202.0.0/18
176.202.80.0-176.202.111.255
176.202.160.0/19
178.152.0.0/19
178.152.64.0/18
178.153.0.0-178.153.111.255
178.153.128.0/17
213.130.96.0/22
213.130.127.0/24
IPv6:
2001:1a10:1000::/44
2001:1a11::/32
Signature Algorithm: sha256WithRSAEncryption
68:87:31:3c:a6:83:76:aa:f9:03:fc:f5:3c:a5:92:8e:23:7a:
28:8c:eb:06:3e:05:58:24:a3:66:39:dc:d3:68:34:56:4c:a6:
75:52:63:24:fa:6e:37:d1:87:67:0a:bb:2a:41:19:49:f5:93:
73:0a:95:b4:df:36:50:d4:de:8d:c8:f6:0f:19:b5:fc:3e:94:
c0:5c:a1:bc:41:1c:cc:00:c3:a6:34:1d:67:dd:16:95:77:ce:
b4:6f:3f:0e:e7:63:76:63:df:73:59:b6:23:7b:d8:4d:e7:1f:
85:a3:ef:c7:da:41:34:0d:c2:13:1a:cf:13:a0:9c:ff:d5:ef:
79:c3:69:da:5d:b2:17:89:23:71:af:5a:52:c4:34:e1:69:51:
19:60:a6:6e:bc:d3:0c:76:96:1d:6b:eb:28:17:61:ba:66:20:
d3:47:3b:33:65:23:78:b5:0e:71:22:45:cb:a1:bb:3b:0a:d5:
3b:48:ef:49:d2:df:21:52:4d:67:7d:cc:80:ed:d9:a8:2e:c6:
cb:bf:66:1a:b2:56:a1:07:7b:f3:67:f4:2e:00:c4:07:ee:ba:
29:1e:5f:3b:04:20:70:69:c0:9b:63:3b:cb:5a:9d:2a:5b:6e:
b5:7d:70:34:fd:89:73:68:65:b1:e8:12:82:4a:73:c7:9e:ba:
e9:36:5c:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:31 2024 by rpki-client on console-fra.rpki-client.org