Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/JoVzSuKzjRGjYy4gTG2PMtyRyIA.roa
File: JoVzSuKzjRGjYy4gTG2PMtyRyIA.roa (raw, json)
Hash identifier: 5L29jl6J4qF05HD96JRyflibUjE+J1BgnSU639/Omkg=
Subject key identifier: 26:85:73:4A:E2:B3:8D:11:A3:63:2E:20:4C:6D:8F:32:DC:91:C8:80
Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Certificate serial: 01916A64BBD5B54C9FB0EDD15C58A97D3DE3
Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/JoVzSuKzjRGjYy4gTG2PMtyRyIA.roa
Signing time: Mon 19 Aug 2024 11:27:52 +0000
ROA not before: Mon 19 Aug 2024 11:27:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1680
IP address blocks: 37.26.144.0/21 maxlen: 21
37.26.145.0/24 maxlen: 24
37.26.146.0/24 maxlen: 24
37.26.147.0/24 maxlen: 24
37.26.148.0/24 maxlen: 24
37.26.149.0/24 maxlen: 24
37.26.150.0/24 maxlen: 24
37.26.151.0/24 maxlen: 24
46.116.0.0/16 maxlen: 16
46.117.0.0/16 maxlen: 16
46.210.0.0/16 maxlen: 24
62.0.0.0/16 maxlen: 24
62.0.87.0/24 maxlen: 24
62.0.88.0/22 maxlen: 24
62.0.92.0/23 maxlen: 24
62.0.94.0/24 maxlen: 24
62.0.114.0/23 maxlen: 24
62.0.116.0/22 maxlen: 24
62.0.120.0/21 maxlen: 24
62.0.128.0/23 maxlen: 24
62.90.0.0/16 maxlen: 24
62.90.135.0/24 maxlen: 24
80.250.144.0/20 maxlen: 24
82.166.0.0/16 maxlen: 24
82.166.100.0/22 maxlen: 24
82.166.112.0/21 maxlen: 24
82.166.201.128/25 maxlen: 25
85.64.0.0/16 maxlen: 16
85.65.0.0/16 maxlen: 16
85.250.0.0/16 maxlen: 16
89.138.0.0/16 maxlen: 16
89.139.0.0/16 maxlen: 16
93.172.0.0/16 maxlen: 16
93.173.0.0/16 maxlen: 16
95.35.0.0/16 maxlen: 24
109.186.0.0/16 maxlen: 16
109.253.0.0/16 maxlen: 24
141.226.132.0/24 maxlen: 24
141.226.134.0/24 maxlen: 24
147.161.8.0/21 maxlen: 24
147.234.17.0/24 maxlen: 24
147.234.22.0/24 maxlen: 24
147.234.27.0/24 maxlen: 24
147.234.27.0/25 maxlen: 25
147.234.27.128/25 maxlen: 25
147.234.28.0/24 maxlen: 24
147.234.43.0/24 maxlen: 24
147.234.83.0/24 maxlen: 24
147.234.84.0/24 maxlen: 24
147.234.86.0/24 maxlen: 24
176.12.128.0/17 maxlen: 24
176.13.0.0/16 maxlen: 24
192.118.28.0/22 maxlen: 22
192.118.28.0/23 maxlen: 23
192.118.30.0/23 maxlen: 23
194.90.0.0/16 maxlen: 24
194.90.1.0/24 maxlen: 24
194.90.229.0/24 maxlen: 24
199.203.0.0/16 maxlen: 16
199.203.1.0/24 maxlen: 24
199.203.21.0/24 maxlen: 24
199.203.191.0/24 maxlen: 24
207.232.0.0/18 maxlen: 18
212.29.192.0/18 maxlen: 18
212.29.244.0/24 maxlen: 24
212.143.0.0/16 maxlen: 24
212.143.194.0/24 maxlen: 24
212.150.0.0/16 maxlen: 24
212.235.0.0/17 maxlen: 24
217.132.0.0/16 maxlen: 16
2001:4df0::/29 maxlen: 32
2001:4df0::/32 maxlen: 32
2001:4df1::/32 maxlen: 32
2001:4df2::/32 maxlen: 32
2001:4df3::/32 maxlen: 32
2001:4df4::/32 maxlen: 32
2001:4df5::/32 maxlen: 32
2001:4df6::/32 maxlen: 32
2001:4df7::/32 maxlen: 32
2a02:148::/29 maxlen: 32
2a02:148::/32 maxlen: 32
2a02:149::/32 maxlen: 32
2a02:14a::/32 maxlen: 32
2a02:14b::/32 maxlen: 32
2a02:14c::/32 maxlen: 32
2a02:14d::/32 maxlen: 32
2a02:14e::/32 maxlen: 32
2a02:14f::/32 maxlen: 32
2a03:c5c0::/32 maxlen: 48
Validation: Failed, certificate revoked on Wed 23 Oct 2024 05:41:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6a:64:bb:d5:b5:4c:9f:b0:ed:d1:5c:58:a9:7d:3d:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Validity
Not Before: Aug 19 11:27:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2685734ae2b38d11a3632e204c6d8f32dc91c880
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:65:5f:ad:9c:21:44:84:47:c0:5a:4e:75:41:
c7:65:74:95:74:47:5a:10:56:10:b8:11:dc:64:8d:
6b:5d:6b:98:64:9a:36:b5:f4:a6:97:01:62:b7:b2:
65:93:9a:ee:37:d5:1a:40:78:ee:b9:94:e8:1f:2e:
a7:0d:34:db:84:45:60:49:90:46:19:a9:17:2d:4f:
28:7c:41:98:4c:5f:02:45:69:3c:a0:f3:f9:60:d3:
c7:81:84:62:8a:22:69:99:e8:38:d0:e4:0a:7a:0b:
82:f4:3e:c3:df:83:d6:5a:f4:da:53:3e:02:b4:d5:
77:d2:52:16:e4:f4:1c:eb:10:67:c0:0c:fa:d6:01:
12:40:d6:e9:88:82:a6:a4:68:6a:cb:a7:86:ab:2d:
98:39:0c:d1:bb:1e:70:87:c2:c9:2d:9e:6c:0a:b3:
0c:37:2c:7d:21:c4:89:30:74:6f:19:6d:57:69:42:
6a:67:ff:ce:c1:ad:a8:12:3c:72:d7:6b:ed:07:3e:
a4:28:a6:2b:fe:bc:39:96:84:9f:99:74:0e:f5:38:
07:5a:ba:30:31:f5:ad:b2:d0:ea:e5:6e:3d:d9:e5:
d0:9c:a9:bb:25:10:83:f2:48:21:3d:9a:23:2e:08:
4d:c7:29:7f:24:74:53:02:ec:a2:f8:b1:d4:a3:f2:
68:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:85:73:4A:E2:B3:8D:11:A3:63:2E:20:4C:6D:8F:32:DC:91:C8:80
X509v3 Authority Key Identifier:
keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/JoVzSuKzjRGjYy4gTG2PMtyRyIA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.26.144.0/21
46.116.0.0/15
46.210.0.0/16
62.0.0.0/16
62.90.0.0/16
80.250.144.0/20
82.166.0.0/16
85.64.0.0/15
85.250.0.0/16
89.138.0.0/15
93.172.0.0/15
95.35.0.0/16
109.186.0.0/16
109.253.0.0/16
141.226.132.0/24
141.226.134.0/24
147.161.8.0/21
147.234.17.0/24
147.234.22.0/24
147.234.27.0-147.234.28.255
147.234.43.0/24
147.234.83.0-147.234.84.255
147.234.86.0/24
176.12.128.0-176.13.255.255
192.118.28.0/22
194.90.0.0/16
199.203.0.0/16
207.232.0.0/18
212.29.192.0/18
212.143.0.0/16
212.150.0.0/16
212.235.0.0/17
217.132.0.0/16
IPv6:
2001:4df0::/29
2a02:148::/29
2a03:c5c0::/32
Signature Algorithm: sha256WithRSAEncryption
08:b0:9f:46:b2:32:d8:f5:8d:10:20:5f:3e:ef:79:58:b1:58:
1f:4e:3a:f9:32:b6:f8:bd:ee:f7:69:83:aa:ef:8e:10:e0:e1:
d3:5c:4d:27:58:ce:c5:ce:55:68:50:d4:43:a0:ef:56:cc:91:
84:0d:9a:4f:e9:a4:a3:7b:0e:46:5a:98:0a:a7:ec:b0:ad:89:
b8:96:0a:c7:b4:e3:ab:1f:f8:9d:d2:47:05:72:58:67:a6:49:
65:5b:45:0f:ff:06:27:e1:85:ec:58:d3:ea:0e:53:35:7e:7e:
5c:21:1a:3f:ae:d9:a3:61:47:f7:d3:3e:0e:38:bb:28:81:fa:
ab:7d:d1:76:8d:ae:6e:f9:7a:e1:c4:92:5b:97:b4:04:23:40:
e1:6a:e1:4a:ac:37:45:ce:09:c0:ea:55:d0:48:37:c0:ec:d3:
86:c4:4e:d9:cf:c9:fa:02:99:ea:7f:d7:ec:59:68:50:77:a9:
36:e1:28:b8:81:1f:7c:63:78:7e:ba:d1:9f:97:98:31:67:5c:
ef:11:ff:f7:df:93:05:2b:b7:4a:47:da:2c:c7:24:d9:95:ed:
44:be:29:23:2d:65:15:e6:58:f8:22:53:aa:7d:e5:75:8b:dd:
bf:39:4a:85:16:e0:2e:f6:45:d4:e6:57:bb:b4:0f:71:75:b1:
89:2c:4d:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:20:20 2025 by rpki-client