Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/78a0m2fw9Of9DhXROz2A1ogUqCs.roa
File: 78a0m2fw9Of9DhXROz2A1ogUqCs.roa (raw, json)
Hash identifier: ZIigzn+blXZRx7F+TwnNbfkkLmZL+C6ilTY1KGfkgLs=
Subject key identifier: EF:C6:B4:9B:67:F0:F4:E7:FD:0E:15:D1:3B:3D:80:D6:88:14:A8:2B
Certificate issuer: /CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Certificate serial: 018D5E3E4EE301327F172CE807A2C01D6266
Authority key identifier: 7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/78a0m2fw9Of9DhXROz2A1ogUqCs.roa
Signing time: Wed 31 Jan 2024 06:39:18 +0000
ROA not before: Wed 31 Jan 2024 06:39:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204601
IP address blocks: 5.8.248.0/24 maxlen: 24
45.81.224.0/22 maxlen: 22
45.82.68.0/22 maxlen: 22
45.82.176.0/22 maxlen: 22
45.87.0.0/22 maxlen: 22
45.136.84.0/24 maxlen: 24
45.136.85.0/24 maxlen: 24
45.136.86.0/24 maxlen: 24
45.136.87.0/24 maxlen: 24
45.137.64.0/22 maxlen: 22
46.18.107.0/24 maxlen: 24
46.21.250.0/24 maxlen: 24
77.220.212.0/22 maxlen: 22
77.220.212.0/24 maxlen: 24
77.220.213.0/24 maxlen: 24
77.220.214.0/24 maxlen: 24
77.220.215.0/24 maxlen: 24
81.31.197.0/24 maxlen: 24
91.198.166.0/24 maxlen: 24
91.201.25.0/24 maxlen: 24
91.208.127.0/24 maxlen: 24
91.209.226.0/24 maxlen: 24
91.228.56.0/24 maxlen: 24
94.124.78.0/24 maxlen: 24
109.107.157.0/24 maxlen: 24
178.159.38.0/24 maxlen: 24
178.159.39.0/24 maxlen: 24
178.159.42.0/24 maxlen: 24
178.159.43.0/24 maxlen: 24
185.23.108.0/24 maxlen: 24
185.51.121.0/24 maxlen: 24
185.51.246.0/24 maxlen: 24
185.51.247.0/24 maxlen: 24
185.93.6.0/24 maxlen: 24
185.107.237.0/24 maxlen: 24
185.201.252.0/24 maxlen: 24
185.204.109.0/24 maxlen: 24
185.229.251.0/24 maxlen: 24
185.232.164.0/24 maxlen: 24
185.235.128.0/24 maxlen: 24
185.235.129.0/24 maxlen: 24
185.235.130.0/24 maxlen: 24
185.235.131.0/24 maxlen: 24
185.237.165.0/24 maxlen: 24
185.241.52.0/24 maxlen: 24
185.241.53.0/24 maxlen: 24
185.241.54.0/24 maxlen: 24
185.241.55.0/24 maxlen: 24
185.241.61.0/24 maxlen: 24
185.244.216.0/22 maxlen: 22
185.244.216.0/24 maxlen: 24
185.244.217.0/24 maxlen: 24
185.244.218.0/24 maxlen: 24
185.244.219.0/24 maxlen: 24
185.250.204.0/24 maxlen: 24
185.250.205.0/24 maxlen: 24
185.250.206.0/24 maxlen: 24
185.250.207.0/24 maxlen: 24
185.251.25.0/24 maxlen: 24
185.253.7.0/24 maxlen: 24
193.3.168.0/24 maxlen: 24
193.22.21.0/24 maxlen: 24
193.56.8.0/24 maxlen: 24
193.163.7.0/24 maxlen: 24
193.163.113.0/24 maxlen: 24
193.169.105.0/24 maxlen: 24
194.15.46.0/24 maxlen: 24
194.26.232.0/24 maxlen: 24
194.29.53.0/24 maxlen: 24
194.62.105.0/24 maxlen: 24
212.8.244.0/24 maxlen: 24
212.8.246.0/24 maxlen: 24
212.23.221.0/24 maxlen: 24
212.86.101.0/24 maxlen: 24
212.86.102.0/24 maxlen: 24
212.86.108.0/24 maxlen: 24
212.86.109.0/24 maxlen: 24
212.86.114.0/24 maxlen: 24
212.86.115.0/24 maxlen: 24
212.162.152.0/22 maxlen: 24
213.166.68.0/24 maxlen: 24
213.166.69.0/24 maxlen: 24
213.166.70.0/24 maxlen: 24
213.166.71.0/24 maxlen: 24
2a07:5980::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 06 Mar 2024 18:06:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5e:3e:4e:e3:01:32:7f:17:2c:e8:07:a2:c0:1d:62:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Validity
Not Before: Jan 31 06:39:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=efc6b49b67f0f4e7fd0e15d13b3d80d68814a82b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fb:6c:74:7c:92:82:8b:37:b4:b5:38:eb:4b:
b8:14:af:b1:8e:25:33:60:80:7b:7d:fd:22:8e:5c:
96:dc:24:f7:93:fb:9a:e6:8a:71:6a:5a:ad:a5:9b:
9a:6a:60:4a:c5:0a:65:be:4c:e4:4d:d8:08:c7:ec:
41:8c:1c:d4:59:e9:a0:b8:f5:13:f2:8d:11:73:be:
00:6e:1e:35:44:8f:6b:6f:39:55:90:58:ae:4f:f6:
6b:3e:87:18:dd:15:cd:0d:69:6b:07:10:8e:1a:1b:
31:69:c3:c9:bf:80:99:52:1c:c3:91:ba:db:ed:cd:
c7:7d:d2:59:02:d4:9e:d3:d2:2f:64:8d:f0:3f:12:
72:01:34:7e:0e:3d:ba:9f:f6:e4:a4:1f:b8:98:79:
db:51:f4:f1:c1:1f:92:dc:1d:91:83:62:b7:c2:af:
34:a3:60:09:b3:2a:2d:12:d9:26:3c:8e:75:83:6c:
f4:7a:e8:b4:43:96:a4:ab:0c:27:71:f8:34:68:95:
f2:19:1c:e8:7c:35:15:03:fe:d5:0c:0d:9b:ac:5b:
62:0d:15:43:df:ec:f4:88:d7:54:c7:14:19:d5:83:
44:5e:21:fe:40:16:9b:72:a7:e0:c5:5f:be:6f:63:
b2:33:6c:5b:b6:76:81:05:dd:af:70:eb:d7:fa:3b:
7f:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:C6:B4:9B:67:F0:F4:E7:FD:0E:15:D1:3B:3D:80:D6:88:14:A8:2B
X509v3 Authority Key Identifier:
keyid:7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/78a0m2fw9Of9DhXROz2A1ogUqCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/f8rYnfG_maNvKQzD7w8ee00CdTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.248.0/24
45.81.224.0/22
45.82.68.0/22
45.82.176.0/22
45.87.0.0/22
45.136.84.0/22
45.137.64.0/22
46.18.107.0/24
46.21.250.0/24
77.220.212.0/22
81.31.197.0/24
91.198.166.0/24
91.201.25.0/24
91.208.127.0/24
91.209.226.0/24
91.228.56.0/24
94.124.78.0/24
109.107.157.0/24
178.159.38.0/23
178.159.42.0/23
185.23.108.0/24
185.51.121.0/24
185.51.246.0/23
185.93.6.0/24
185.107.237.0/24
185.201.252.0/24
185.204.109.0/24
185.229.251.0/24
185.232.164.0/24
185.235.128.0/22
185.237.165.0/24
185.241.52.0/22
185.241.61.0/24
185.244.216.0/22
185.250.204.0/22
185.251.25.0/24
185.253.7.0/24
193.3.168.0/24
193.22.21.0/24
193.56.8.0/24
193.163.7.0/24
193.163.113.0/24
193.169.105.0/24
194.15.46.0/24
194.26.232.0/24
194.29.53.0/24
194.62.105.0/24
212.8.244.0/24
212.8.246.0/24
212.23.221.0/24
212.86.101.0-212.86.102.255
212.86.108.0/23
212.86.114.0/23
212.162.152.0/22
213.166.68.0/22
IPv6:
2a07:5980::/29
Signature Algorithm: sha256WithRSAEncryption
31:b7:f1:c1:de:52:0e:51:95:3c:89:79:ff:6b:96:7e:c4:4a:
a6:af:32:73:31:3e:4f:d1:49:a5:85:fa:e9:13:cc:6b:17:c4:
0f:dc:c5:0e:31:49:9b:be:11:15:54:7c:3b:89:e1:60:2c:91:
c3:5a:67:0a:82:b1:62:f3:a4:31:ea:be:61:da:ee:20:ea:bb:
23:93:17:a6:84:d5:1c:08:23:36:67:e9:42:aa:dc:68:b3:12:
c9:79:84:b8:b6:2e:2a:a3:70:cb:e0:ef:34:c8:82:90:e8:74:
d8:7b:0f:3f:0b:69:72:08:ef:a6:bb:af:b3:07:b6:c2:7c:85:
8e:19:f1:da:89:1a:09:11:ec:6c:ce:f7:ff:84:a1:6e:ef:8f:
b8:f1:f5:bb:fc:13:e2:11:cb:76:84:d3:f6:9c:12:e8:9d:32:
79:05:74:8a:fd:cd:0c:04:4a:af:4a:9c:53:60:ff:de:c1:e2:
b4:09:56:09:ce:8a:4b:66:2c:6b:af:48:5b:d9:c6:08:04:8d:
84:45:4f:e1:11:23:d6:d4:f1:57:08:db:96:b4:93:36:ad:cb:
20:17:a0:37:9e:68:69:6d:17:3f:c8:85:e3:af:7d:b1:d7:8b:
b1:d3:52:f8:61:7d:be:b1:bb:d0:8f:2c:e9:34:20:e5:4e:ac:
c4:3a:f0:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:24 2025 by rpki-client