Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/CThdV5g4ygRrivxgBokEuVdopBs.roa
File: CThdV5g4ygRrivxgBokEuVdopBs.roa (raw, json)
Hash identifier: WPxPTxoHAVEc5YtWHeOsPVQZXpBEvvCCnPKt/CVQOPc=
Subject key identifier: 09:38:5D:57:98:38:CA:04:6B:8A:FC:60:06:89:04:B9:57:68:A4:1B
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 0193DE8DA10007611F3B6786BFB206D6F5F5
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/CThdV5g4ygRrivxgBokEuVdopBs.roa
Signing time: Thu 19 Dec 2024 10:54:03 +0000
ROA not before: Thu 19 Dec 2024 10:54:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15557
IP address blocks: 37.64.0.0/13 maxlen: 24
46.35.0.0/19 maxlen: 24
62.8.0.0/19 maxlen: 19
62.39.0.0/16 maxlen: 24
62.62.128.0/17 maxlen: 24
62.106.128.0/17 maxlen: 24
62.129.160.0/19 maxlen: 24
62.241.64.0/18 maxlen: 24
77.128.0.0/13 maxlen: 24
77.134.204.0/24 maxlen: 24
77.136.0.0/16 maxlen: 24
77.136.172.0/24 maxlen: 24
77.136.173.0/24 maxlen: 24
77.136.174.0/24 maxlen: 24
77.137.196.0/22 maxlen: 24
77.137.200.0/21 maxlen: 24
77.137.208.0/20 maxlen: 24
77.140.0.0/14 maxlen: 24
77.140.0.0/15 maxlen: 24
77.142.0.0/16 maxlen: 24
77.144.0.0/12 maxlen: 24
77.192.0.0/12 maxlen: 24
78.112.0.0/12 maxlen: 24
78.155.128.0/19 maxlen: 24
79.80.0.0/12 maxlen: 24
79.174.192.0/18 maxlen: 24
79.174.232.0/21 maxlen: 21
80.70.32.0/20 maxlen: 24
80.118.0.0/15 maxlen: 24
80.118.4.0/24 maxlen: 24
80.124.0.0/15 maxlen: 24
80.124.0.0/16 maxlen: 24
80.125.0.0/16 maxlen: 24
80.236.0.0/17 maxlen: 24
81.1.0.0/18 maxlen: 24
81.64.0.0/14 maxlen: 24
81.65.0.0/16 maxlen: 16
81.185.0.0/16 maxlen: 24
81.185.160.0/20 maxlen: 20
81.185.160.0/21 maxlen: 21
81.185.168.0/21 maxlen: 21
81.220.0.0/16 maxlen: 24
82.216.0.0/16 maxlen: 24
83.141.128.0/17 maxlen: 24
84.4.0.0/14 maxlen: 24
84.55.128.0/18 maxlen: 24
84.96.0.0/13 maxlen: 24
84.205.128.0/19 maxlen: 24
84.205.144.0/20 maxlen: 20
85.68.0.0/15 maxlen: 24
85.168.0.0/14 maxlen: 24
86.64.0.0/12 maxlen: 24
86.66.127.0/24 maxlen: 24
87.231.0.0/16 maxlen: 24
88.136.0.0/13 maxlen: 24
88.136.0.0/14 maxlen: 24
88.140.0.0/15 maxlen: 24
88.140.0.0/16 maxlen: 24
88.141.0.0/16 maxlen: 24
88.142.0.0/16 maxlen: 24
88.143.252.0/24 maxlen: 24
88.143.253.0/24 maxlen: 24
88.143.254.0/24 maxlen: 24
88.143.255.0/24 maxlen: 24
88.219.0.0/16 maxlen: 16
89.2.0.0/15 maxlen: 24
89.156.0.0/14 maxlen: 24
91.68.0.0/14 maxlen: 24
91.68.0.0/22 maxlen: 22
91.151.112.0/20 maxlen: 24
92.88.0.0/13 maxlen: 24
93.0.0.0/11 maxlen: 24
95.157.192.0/18 maxlen: 18
109.0.0.0/11 maxlen: 24
141.170.216.0/21 maxlen: 24
185.147.204.0/22 maxlen: 24
194.6.128.0/19 maxlen: 19
194.183.192.0/19 maxlen: 19
194.242.176.0/20 maxlen: 20
195.3.0.0/18 maxlen: 24
195.7.96.0/19 maxlen: 24
195.98.96.0/19 maxlen: 24
195.115.0.0/16 maxlen: 24
195.132.0.0/16 maxlen: 24
195.146.192.0/19 maxlen: 24
212.30.96.0/19 maxlen: 24
212.39.128.0/19 maxlen: 24
212.94.160.0/19 maxlen: 24
212.198.0.0/16 maxlen: 24
213.128.32.0/19 maxlen: 24
213.144.192.0/19 maxlen: 24
213.169.160.0/19 maxlen: 24
213.203.64.0/18 maxlen: 24
213.223.0.0/16 maxlen: 24
213.245.0.0/16 maxlen: 24
217.19.192.0/20 maxlen: 24
217.70.80.0/20 maxlen: 24
217.112.224.0/20 maxlen: 24
2a00:6200::/29 maxlen: 48
2a00:7180::/32 maxlen: 32
2a00:8380::/32 maxlen: 32
2a00:8d80::/32 maxlen: 32
2a00:9380::/32 maxlen: 32
2a00:e080::/32 maxlen: 32
2a00:ec80::/32 maxlen: 32
2a02:8400::/25 maxlen: 48
2a02:8400::/48 maxlen: 48
2a02:8400:11::/48 maxlen: 48
2a02:8400:12::/48 maxlen: 48
2a02:8400:13::/48 maxlen: 48
2a02:8400:14::/48 maxlen: 48
2a02:8440:5000::/36 maxlen: 36
2a04:800::/30 maxlen: 30
2a04:807::/48 maxlen: 48
2a04:807:1::/48 maxlen: 48
2a04:807:2::/48 maxlen: 48
2a04:807:3::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:50:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:de:8d:a1:00:07:61:1f:3b:67:86:bf:b2:06:d6:f5:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Dec 19 10:54:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=09385d579838ca046b8afc60068904b95768a41b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:00:13:7e:b3:63:d8:1e:40:51:a1:e4:fc:9a:
1e:5a:b4:58:f7:59:6e:f5:df:9a:2f:66:cd:6b:0b:
d6:a9:14:d2:86:1d:2b:11:50:fd:89:e3:e0:e0:63:
7b:d7:51:19:03:e9:93:5e:c1:49:85:27:1d:c1:d2:
02:17:e2:21:11:92:73:59:f2:8a:57:25:c0:0b:72:
d8:9c:37:b6:49:00:d7:9e:b3:34:bf:e6:7c:a2:f0:
e7:eb:06:e1:27:e9:f1:77:ea:c4:d7:a5:ea:4f:74:
e4:ef:7e:c6:70:b8:9b:2b:ac:07:13:c5:a7:fe:41:
85:34:cb:86:03:86:0e:26:5e:5c:f6:94:e3:8f:00:
7d:5c:82:1c:6c:55:23:21:5e:c6:df:e7:52:5d:c2:
6d:6f:e6:45:0d:0b:10:c9:0e:2c:f6:32:a3:a8:e4:
a4:77:f9:19:df:ba:86:ac:aa:09:53:b5:96:1d:2c:
94:68:d2:17:fd:9c:b5:3b:b2:d4:a3:d1:25:b2:f7:
f5:7a:ad:87:fd:c6:f7:d4:c3:88:32:f6:3b:77:fe:
bc:a7:18:fa:d8:0b:70:41:2c:70:9f:ae:0c:90:7a:
26:45:fa:64:21:07:7c:13:f5:38:0c:2a:69:49:ee:
81:11:11:1c:fb:64:24:58:0d:52:4d:21:52:6c:f2:
ff:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:38:5D:57:98:38:CA:04:6B:8A:FC:60:06:89:04:B9:57:68:A4:1B
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/CThdV5g4ygRrivxgBokEuVdopBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.64.0.0/13
46.35.0.0/19
62.8.0.0/19
62.39.0.0/16
62.62.128.0/17
62.106.128.0/17
62.129.160.0/19
62.241.64.0/18
77.128.0.0-77.136.255.255
77.137.196.0-77.137.223.255
77.140.0.0-77.159.255.255
77.192.0.0/12
78.112.0.0/12
78.155.128.0/19
79.80.0.0/12
79.174.192.0/18
80.70.32.0/20
80.118.0.0/15
80.124.0.0/15
80.236.0.0/17
81.1.0.0/18
81.64.0.0/14
81.185.0.0/16
81.220.0.0/16
82.216.0.0/16
83.141.128.0/17
84.4.0.0/14
84.55.128.0/18
84.96.0.0/13
84.205.128.0/19
85.68.0.0/15
85.168.0.0/14
86.64.0.0/12
87.231.0.0/16
88.136.0.0/13
88.219.0.0/16
89.2.0.0/15
89.156.0.0/14
91.68.0.0/14
91.151.112.0/20
92.88.0.0/13
93.0.0.0/11
95.157.192.0/18
109.0.0.0/11
141.170.216.0/21
185.147.204.0/22
194.6.128.0/19
194.183.192.0/19
194.242.176.0/20
195.3.0.0/18
195.7.96.0/19
195.98.96.0/19
195.115.0.0/16
195.132.0.0/16
195.146.192.0/19
212.30.96.0/19
212.39.128.0/19
212.94.160.0/19
212.198.0.0/16
213.128.32.0/19
213.144.192.0/19
213.169.160.0/19
213.203.64.0/18
213.223.0.0/16
213.245.0.0/16
217.19.192.0/20
217.70.80.0/20
217.112.224.0/20
IPv6:
2a00:6200::/29
2a00:7180::/32
2a00:8380::/32
2a00:8d80::/32
2a00:9380::/32
2a00:e080::/32
2a00:ec80::/32
2a02:8400::/25
2a04:800::/30
2a04:807::/46
Signature Algorithm: sha256WithRSAEncryption
a2:af:97:b3:ca:8d:7d:36:5a:de:c0:32:dc:ef:20:17:cb:e0:
7b:d1:15:9b:86:33:72:3c:f3:b9:a2:9f:72:f0:11:c4:e8:c1:
4e:59:cc:90:5d:08:4e:27:44:d0:bd:87:23:37:a4:d8:a6:47:
cf:c0:33:35:9a:aa:04:85:98:bd:12:29:e2:cb:2b:37:ff:29:
10:cc:c7:79:ca:02:71:81:fc:29:f0:d7:77:f2:88:e7:15:84:
7a:b5:74:c9:15:92:8b:9a:f4:17:34:4a:2b:d9:a2:01:76:33:
e7:8c:c5:a2:18:9e:fb:7a:78:c1:d1:15:49:d0:30:d5:f2:96:
ec:cf:f7:00:9d:d8:8b:66:38:e6:6f:2a:48:f6:b3:75:f8:b4:
b1:5f:bb:dc:e7:06:6e:28:24:ca:2e:f3:a6:4b:1a:03:17:4d:
a7:9e:df:44:46:a8:f2:21:69:01:8b:d9:ad:27:44:4a:2f:04:
7b:2a:69:a8:f5:60:af:ba:72:72:79:8b:3b:f6:e3:95:d0:86:
7a:c8:22:54:53:78:50:db:34:78:f2:ff:86:a1:4b:f0:55:e3:
32:4e:1a:d8:37:a9:3e:83:42:40:48:1d:ee:eb:01:30:bc:42:
4a:c6:f0:0e:37:f3:97:f2:b8:8e:13:95:12:11:57:07:c6:30:
4c:46:3c:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 03:10:53 2025 by rpki-client