Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/1mwksX_6GWzw9W5a3xlILE78fgY.roa
File: 1mwksX_6GWzw9W5a3xlILE78fgY.roa (raw, json)
Hash identifier: h48b0nkRSfJ1iZQJX9Sc7Fe+FfKP0SYrpvxylFjAxF8=
Subject key identifier: D6:6C:24:B1:7F:FA:19:6C:F0:F5:6E:5A:DF:19:48:2C:4E:FC:7E:06
Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Certificate serial: 0192B7E4C95C54B8008559F982E464CC3DC4
Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/1mwksX_6GWzw9W5a3xlILE78fgY.roa
Signing time: Wed 23 Oct 2024 05:41:17 +0000
ROA not before: Wed 23 Oct 2024 05:41:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1680
IP address blocks: 37.26.144.0/21 maxlen: 21
37.26.145.0/24 maxlen: 24
37.26.146.0/24 maxlen: 24
37.26.147.0/24 maxlen: 24
37.26.148.0/24 maxlen: 24
37.26.149.0/24 maxlen: 24
37.26.150.0/24 maxlen: 24
37.26.151.0/24 maxlen: 24
46.116.0.0/16 maxlen: 16
46.117.0.0/16 maxlen: 16
46.210.0.0/16 maxlen: 24
62.0.0.0/16 maxlen: 24
62.0.87.0/24 maxlen: 24
62.0.88.0/22 maxlen: 24
62.0.92.0/23 maxlen: 24
62.0.94.0/24 maxlen: 24
62.0.114.0/23 maxlen: 24
62.0.116.0/22 maxlen: 24
62.0.120.0/21 maxlen: 24
62.0.128.0/23 maxlen: 24
62.90.0.0/16 maxlen: 24
62.90.135.0/24 maxlen: 24
80.250.144.0/20 maxlen: 24
82.166.0.0/16 maxlen: 24
82.166.100.0/22 maxlen: 24
82.166.112.0/21 maxlen: 24
82.166.201.128/25 maxlen: 25
85.64.0.0/16 maxlen: 16
85.65.0.0/16 maxlen: 16
85.250.0.0/16 maxlen: 16
89.138.0.0/16 maxlen: 16
89.139.0.0/16 maxlen: 16
93.172.0.0/16 maxlen: 16
93.173.0.0/16 maxlen: 16
95.35.0.0/16 maxlen: 24
109.186.0.0/16 maxlen: 16
109.253.0.0/16 maxlen: 24
141.226.132.0/24 maxlen: 24
141.226.134.0/24 maxlen: 24
147.161.8.0/21 maxlen: 24
147.234.17.0/24 maxlen: 24
147.234.22.0/24 maxlen: 24
147.234.27.0/24 maxlen: 24
147.234.27.0/25 maxlen: 25
147.234.27.128/25 maxlen: 25
147.234.28.0/24 maxlen: 24
147.234.43.0/24 maxlen: 24
147.234.83.0/24 maxlen: 24
147.234.84.0/24 maxlen: 24
147.234.86.0/24 maxlen: 24
176.12.128.0/17 maxlen: 24
176.13.0.0/16 maxlen: 24
192.118.28.0/22 maxlen: 22
192.118.28.0/23 maxlen: 23
192.118.30.0/23 maxlen: 23
194.90.0.0/16 maxlen: 24
194.90.1.0/24 maxlen: 24
194.90.229.0/24 maxlen: 24
199.203.0.0/16 maxlen: 16
199.203.1.0/24 maxlen: 24
199.203.21.0/24 maxlen: 24
199.203.76.0/24 maxlen: 24
199.203.191.0/24 maxlen: 24
207.232.0.0/18 maxlen: 18
212.29.192.0/18 maxlen: 18
212.29.244.0/24 maxlen: 24
212.143.0.0/16 maxlen: 24
212.143.194.0/24 maxlen: 24
212.150.0.0/16 maxlen: 24
212.235.0.0/17 maxlen: 24
217.132.0.0/16 maxlen: 16
2001:4df0::/29 maxlen: 32
2001:4df0::/32 maxlen: 32
2001:4df1::/32 maxlen: 32
2001:4df2::/32 maxlen: 32
2001:4df3::/32 maxlen: 32
2001:4df4::/32 maxlen: 32
2001:4df5::/32 maxlen: 32
2001:4df6::/32 maxlen: 32
2001:4df7::/32 maxlen: 32
2a02:148::/29 maxlen: 32
2a02:148::/32 maxlen: 32
2a02:149::/32 maxlen: 32
2a02:14a::/32 maxlen: 32
2a02:14b::/32 maxlen: 32
2a02:14c::/32 maxlen: 32
2a02:14d::/32 maxlen: 32
2a02:14e::/32 maxlen: 32
2a02:14f::/32 maxlen: 32
2a03:c5c0::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 16 Dec 2024 15:35:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b7:e4:c9:5c:54:b8:00:85:59:f9:82:e4:64:cc:3d:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Validity
Not Before: Oct 23 05:41:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d66c24b17ffa196cf0f56e5adf19482c4efc7e06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:96:07:a3:47:6b:7b:71:2b:e8:dd:89:e9:0a:
79:ea:34:8d:db:50:cf:b7:a4:22:83:ac:af:ae:f9:
aa:52:b8:09:e5:f6:2f:25:b4:c5:6a:e5:80:cb:76:
14:f6:4c:02:52:13:27:77:81:33:fd:29:5d:28:57:
2e:f5:8c:a0:14:74:93:ea:38:a5:2a:55:c2:b3:fd:
8e:e2:69:b4:4c:18:22:b2:75:02:ed:7e:57:a2:99:
ea:d9:8a:ae:9a:5b:dc:73:05:e5:bd:4d:84:05:f2:
ce:b3:d1:a4:e2:4a:d2:a6:64:72:b9:da:cf:70:b1:
f6:5a:87:e4:b6:23:a4:35:ca:f9:41:e2:61:a2:88:
b9:13:f3:6b:17:47:04:00:c3:ad:44:ce:97:a5:3f:
a9:4a:c3:9b:19:b2:28:59:ff:87:8a:22:6a:95:68:
7c:cb:89:5d:50:6f:e9:b4:a0:e9:b6:e9:73:dd:f0:
58:9e:19:2e:e3:fb:93:e0:01:17:77:63:4f:ba:6d:
cc:13:ed:c5:6c:aa:9d:b7:7a:34:56:56:f6:db:0d:
e3:d3:82:cd:8d:56:cc:84:f0:3a:47:19:5e:f1:cd:
15:da:d4:03:6f:d8:6e:e1:c0:f7:6b:c9:8b:7d:65:
8d:68:e0:1c:bd:c2:9f:c9:23:d6:03:31:66:34:84:
09:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:6C:24:B1:7F:FA:19:6C:F0:F5:6E:5A:DF:19:48:2C:4E:FC:7E:06
X509v3 Authority Key Identifier:
keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/1mwksX_6GWzw9W5a3xlILE78fgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.26.144.0/21
46.116.0.0/15
46.210.0.0/16
62.0.0.0/16
62.90.0.0/16
80.250.144.0/20
82.166.0.0/16
85.64.0.0/15
85.250.0.0/16
89.138.0.0/15
93.172.0.0/15
95.35.0.0/16
109.186.0.0/16
109.253.0.0/16
141.226.132.0/24
141.226.134.0/24
147.161.8.0/21
147.234.17.0/24
147.234.22.0/24
147.234.27.0-147.234.28.255
147.234.43.0/24
147.234.83.0-147.234.84.255
147.234.86.0/24
176.12.128.0-176.13.255.255
192.118.28.0/22
194.90.0.0/16
199.203.0.0/16
207.232.0.0/18
212.29.192.0/18
212.143.0.0/16
212.150.0.0/16
212.235.0.0/17
217.132.0.0/16
IPv6:
2001:4df0::/29
2a02:148::/29
2a03:c5c0::/32
Signature Algorithm: sha256WithRSAEncryption
94:2d:66:cf:b9:6a:36:48:45:45:a7:bf:fa:43:a0:e9:59:8f:
bf:fe:03:9a:24:a4:03:44:21:c8:03:e1:03:79:1c:71:71:ec:
fe:4f:59:66:6b:89:91:5d:75:79:0a:de:ba:b2:23:cc:dd:96:
0c:b7:22:d3:e9:58:f3:c3:38:22:f9:97:4a:4f:11:19:a1:cd:
1f:ac:0a:31:80:26:0d:d8:00:0a:e9:27:36:6c:8f:8e:6f:15:
59:cb:dc:fc:e4:cd:bc:5b:67:6d:29:d9:bb:2a:55:97:51:c4:
20:b1:18:1a:e2:a3:f4:c7:92:01:52:2a:2f:99:e6:25:4b:b1:
bd:66:38:c1:58:c7:eb:70:da:aa:f7:68:4c:e2:5c:d7:87:41:
a3:5d:0d:0b:49:cb:ec:e4:fe:3a:d4:f5:9d:2d:2d:47:55:44:
62:3f:be:53:96:24:33:a1:46:ef:d9:91:65:94:64:8e:51:90:
d3:77:7a:71:db:92:ef:23:8a:c1:b8:e1:f3:01:39:1d:b2:d7:
30:09:b5:5d:a5:43:21:0f:d7:4b:68:34:e8:4f:48:9f:7a:29:
46:00:52:e9:26:09:4a:78:43:ec:ae:f7:5a:a5:35:35:4a:57:
c8:28:19:30:50:fb:fb:a5:8e:77:7c:fc:64:17:d8:1f:13:6d:
f9:d3:2a:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:56:08 2025 by rpki-client