Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/mwHJhJDNcwE8Kere0quCmR89vjE.roa
File: mwHJhJDNcwE8Kere0quCmR89vjE.roa (raw, json)
Hash identifier: LZdxzln8kLls1P7djudyNVsDLq8o+04l7jUGzYyB+JE=
Subject key identifier: 9B:01:C9:84:90:CD:73:01:3C:29:EA:DE:D2:AB:82:99:1F:3D:BE:31
Certificate issuer: /CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Certificate serial: 0193735720AB221C6BEFA48644226E98A052
Authority key identifier: AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/mwHJhJDNcwE8Kere0quCmR89vjE.roa
Signing time: Thu 28 Nov 2024 15:15:09 +0000
ROA not before: Thu 28 Nov 2024 15:15:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31520
IP address blocks: 5.1.0.0/23 maxlen: 24
5.1.4.0/22 maxlen: 24
5.1.8.0/21 maxlen: 24
5.1.16.0/20 maxlen: 24
31.128.76.0/23 maxlen: 24
31.128.78.0/23 maxlen: 24
31.128.80.0/22 maxlen: 22
31.128.84.0/22 maxlen: 22
31.128.88.0/22 maxlen: 22
31.128.92.0/22 maxlen: 22
77.222.139.0/24 maxlen: 24
77.222.152.0/22 maxlen: 24
77.222.156.0/23 maxlen: 24
77.222.158.0/23 maxlen: 24
80.77.32.0/22 maxlen: 24
80.77.36.0/24 maxlen: 24
80.77.37.0/24 maxlen: 24
80.77.38.0/24 maxlen: 24
80.77.39.0/24 maxlen: 24
80.77.40.0/21 maxlen: 24
80.77.40.0/22 maxlen: 22
80.77.44.0/22 maxlen: 22
80.91.166.0/24 maxlen: 24
85.159.0.0/21 maxlen: 24
91.197.220.0/24 maxlen: 24
91.197.221.0/24 maxlen: 24
91.197.222.0/24 maxlen: 24
91.197.223.0/24 maxlen: 24
93.183.214.0/24 maxlen: 24
93.183.216.0/24 maxlen: 24
93.183.217.0/24 maxlen: 24
93.183.218.0/23 maxlen: 23
93.183.220.0/22 maxlen: 22
93.183.224.0/24 maxlen: 24
93.183.225.0/24 maxlen: 24
93.183.226.0/24 maxlen: 24
93.183.227.0/24 maxlen: 24
93.183.230.0/24 maxlen: 24
93.183.231.0/24 maxlen: 24
93.183.232.0/22 maxlen: 22
93.183.240.0/21 maxlen: 21
93.183.248.0/21 maxlen: 21
94.232.72.0/21 maxlen: 21
109.206.32.0/19 maxlen: 24
176.102.48.0/23 maxlen: 23
176.102.50.0/24 maxlen: 24
176.102.51.0/24 maxlen: 24
176.102.52.0/22 maxlen: 24
176.102.56.0/21 maxlen: 24
176.112.0.0/19 maxlen: 24
176.241.128.0/19 maxlen: 24
176.241.148.0/22 maxlen: 22
178.213.168.0/21 maxlen: 24
185.46.248.0/22 maxlen: 24
188.247.96.0/20 maxlen: 20
188.247.116.0/24 maxlen: 24
188.247.117.0/24 maxlen: 24
188.247.118.0/24 maxlen: 24
188.247.119.0/24 maxlen: 24
193.108.49.0/24 maxlen: 24
193.108.128.0/24 maxlen: 24
194.29.60.0/22 maxlen: 24
195.114.128.0/24 maxlen: 24
195.114.129.0/24 maxlen: 24
195.114.135.0/24 maxlen: 24
195.114.141.0/24 maxlen: 24
195.114.142.0/24 maxlen: 24
195.114.143.0/24 maxlen: 24
195.114.144.0/24 maxlen: 24
195.114.145.0/24 maxlen: 24
195.114.146.0/23 maxlen: 24
195.114.148.0/23 maxlen: 24
195.114.150.0/24 maxlen: 24
195.114.151.0/24 maxlen: 24
195.114.152.0/24 maxlen: 24
195.114.153.0/24 maxlen: 24
195.114.154.0/24 maxlen: 24
195.114.155.0/24 maxlen: 24
195.114.156.0/24 maxlen: 24
195.114.157.0/24 maxlen: 24
195.114.158.0/24 maxlen: 24
195.114.159.0/24 maxlen: 24
213.111.192.0/18 maxlen: 24
213.111.201.0/24 maxlen: 24
213.111.202.0/24 maxlen: 24
213.111.206.0/23 maxlen: 23
213.111.215.0/24 maxlen: 24
213.111.216.0/24 maxlen: 24
213.111.218.0/23 maxlen: 23
213.111.248.0/24 maxlen: 24
213.111.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 15:47:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:73:57:20:ab:22:1c:6b:ef:a4:86:44:22:6e:98:a0:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Validity
Not Before: Nov 28 15:15:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9b01c98490cd73013c29eaded2ab82991f3dbe31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:48:43:79:df:65:b2:61:77:e7:39:09:b2:28:
93:3e:36:39:87:6a:de:ec:d3:1c:13:9e:e0:c4:59:
88:f2:6c:21:9f:fb:78:1f:1b:a6:26:9c:d0:af:f2:
1f:54:1d:9e:dd:00:ff:0f:77:79:20:60:6c:d1:8f:
4c:90:31:12:93:25:5b:e9:64:b4:a2:bf:23:c2:3d:
fe:8b:50:5e:59:fa:47:d4:93:89:ed:e7:77:b6:26:
81:ef:cc:a3:c6:37:40:3f:8c:54:ec:1f:bd:80:0e:
8e:f6:03:9c:69:87:5b:e3:bc:16:a0:ad:f2:ca:e2:
aa:75:b8:6b:40:61:82:25:d0:2a:7b:76:c5:ac:c0:
13:b9:04:6b:1a:dd:a0:9f:e5:79:03:0b:2b:d9:60:
fb:ba:4b:c6:f0:45:0a:1f:05:08:2a:35:cc:30:e2:
05:fd:09:a7:f6:a4:41:e3:da:27:57:db:02:46:d5:
cc:93:bb:74:cb:2f:4a:03:fa:d3:2b:4b:d9:5a:5b:
3f:05:49:0b:2d:0c:79:1e:82:1e:23:6a:7b:cd:19:
9c:f9:56:ad:a6:fc:e6:34:e1:50:53:ed:a6:b3:a3:
36:54:ab:ec:f1:84:0e:fc:0f:6a:fa:6e:23:61:aa:
bb:27:fd:70:f5:b9:d8:b6:f4:61:fa:4f:b5:5a:c9:
ee:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:01:C9:84:90:CD:73:01:3C:29:EA:DE:D2:AB:82:99:1F:3D:BE:31
X509v3 Authority Key Identifier:
keyid:AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/mwHJhJDNcwE8Kere0quCmR89vjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q8jb5SCDrTNcnx_eYBbsi0kpMUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.0.0/23
5.1.4.0-5.1.31.255
31.128.76.0-31.128.95.255
77.222.139.0/24
77.222.152.0/21
80.77.32.0/20
80.91.166.0/24
85.159.0.0/21
91.197.220.0/22
93.183.214.0/24
93.183.216.0-93.183.227.255
93.183.230.0-93.183.235.255
93.183.240.0/20
94.232.72.0/21
109.206.32.0/19
176.102.48.0/20
176.112.0.0/19
176.241.128.0/19
178.213.168.0/21
185.46.248.0/22
188.247.96.0/20
188.247.116.0/22
193.108.49.0/24
193.108.128.0/24
194.29.60.0/22
195.114.128.0/23
195.114.135.0/24
195.114.141.0-195.114.159.255
213.111.192.0/18
Signature Algorithm: sha256WithRSAEncryption
3c:23:db:4c:71:7f:c1:e0:aa:f9:46:68:fa:dd:bd:5e:ab:ee:
09:81:96:77:28:b2:4b:66:67:e6:c6:32:7c:14:ce:14:9b:43:
a0:d2:d1:05:5d:55:34:2f:36:8d:7d:65:0b:ed:2e:ce:99:b0:
f6:2a:c5:55:bd:d5:b7:f5:de:25:29:3c:15:74:5b:5e:f0:db:
a2:60:07:a3:c3:71:8d:15:c0:8e:22:3b:a8:2b:24:37:bd:af:
e0:43:bb:c0:f8:e3:58:84:a7:a7:66:81:e5:7d:60:c1:24:33:
d9:20:a1:a4:6d:5a:21:08:a7:5b:33:b0:dd:06:85:49:44:96:
58:c8:ca:90:d3:8b:af:c5:4d:36:0d:80:b7:97:11:a1:28:bb:
ec:a8:aa:16:0c:89:61:6f:a7:0d:69:38:4d:74:16:e6:ba:b5:
54:82:b8:18:38:67:d3:aa:4d:02:1e:91:2d:76:42:df:4d:d3:
8a:d4:94:3f:45:bd:81:2e:f7:5e:a2:a5:a7:65:b3:8f:7e:21:
08:ee:57:cc:28:ad:5b:32:2e:3e:4a:17:b4:19:f4:40:3d:f9:
80:1a:7c:0f:9d:9a:4b:22:fa:8e:63:fc:f4:35:9c:3c:06:ce:
4e:68:25:81:21:42:22:ee:0b:83:b7:de:37:47:4e:25:00:40:
79:aa:a4:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 02:46:41 2025 by rpki-client