Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/3BmwS-zQq3uDorUumKyq_wnxq2E.roa
File: 3BmwS-zQq3uDorUumKyq_wnxq2E.roa (raw, json)
Hash identifier: 3fJikJhPa47S11EMMLKM0A9Ev7TyfEPyhnTsUBKMeSI=
Subject key identifier: DC:19:B0:4B:EC:D0:AB:7B:83:A2:B5:2E:98:AC:AA:FF:09:F1:AB:61
Certificate issuer: /CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Certificate serial: 01938CC39C1BF5DCC208A28B4C77A10AA20B
Authority key identifier: 84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/3BmwS-zQq3uDorUumKyq_wnxq2E.roa
Signing time: Tue 03 Dec 2024 13:44:09 +0000
ROA not before: Tue 03 Dec 2024 13:44:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29684
IP address blocks: 46.235.88.0/21 maxlen: 24
46.235.88.0/23 maxlen: 23
46.235.90.0/23 maxlen: 23
46.235.91.0/24 maxlen: 24
46.235.92.0/23 maxlen: 23
46.235.94.0/23 maxlen: 23
46.235.94.0/24 maxlen: 24
62.204.48.0/24 maxlen: 24
77.75.224.0/24 maxlen: 24
79.110.229.0/24 maxlen: 24
88.85.224.0/19 maxlen: 24
88.85.224.0/21 maxlen: 21
88.85.224.0/23 maxlen: 23
88.85.226.0/23 maxlen: 23
88.85.228.0/23 maxlen: 23
88.85.228.0/24 maxlen: 24
88.85.230.0/23 maxlen: 23
88.85.231.0/24 maxlen: 24
88.85.232.0/21 maxlen: 21
88.85.232.0/24 maxlen: 24
88.85.235.0/24 maxlen: 24
88.85.236.0/24 maxlen: 24
88.85.237.0/24 maxlen: 24
88.85.238.0/23 maxlen: 23
88.85.238.0/24 maxlen: 24
88.85.239.0/24 maxlen: 24
88.85.240.0/21 maxlen: 21
88.85.240.0/23 maxlen: 23
88.85.242.0/24 maxlen: 24
88.85.244.0/24 maxlen: 24
88.85.245.0/24 maxlen: 24
88.85.246.0/23 maxlen: 23
88.85.247.0/24 maxlen: 24
88.85.248.0/21 maxlen: 21
88.85.248.0/23 maxlen: 23
88.85.250.0/23 maxlen: 23
88.85.250.0/24 maxlen: 24
88.85.252.0/23 maxlen: 23
88.85.254.0/24 maxlen: 24
88.85.255.0/24 maxlen: 24
146.19.71.0/24 maxlen: 24
176.97.216.0/24 maxlen: 24
176.98.32.0/22 maxlen: 22
176.98.32.0/24 maxlen: 24
176.98.33.0/24 maxlen: 24
176.98.34.0/23 maxlen: 23
176.98.34.0/24 maxlen: 24
176.98.35.0/24 maxlen: 24
176.241.184.0/21 maxlen: 24
176.241.184.0/23 maxlen: 23
176.241.186.0/23 maxlen: 23
176.241.188.0/24 maxlen: 24
176.241.189.0/24 maxlen: 24
176.241.190.0/24 maxlen: 24
176.241.191.0/24 maxlen: 24
178.20.144.0/21 maxlen: 24
178.20.144.0/23 maxlen: 23
178.20.146.0/23 maxlen: 23
178.20.148.0/23 maxlen: 23
178.20.150.0/23 maxlen: 23
185.10.112.0/22 maxlen: 24
185.10.112.0/24 maxlen: 24
185.10.113.0/24 maxlen: 24
185.10.114.0/23 maxlen: 23
185.10.114.0/24 maxlen: 24
185.10.115.0/24 maxlen: 24
185.224.252.0/22 maxlen: 24
185.224.252.0/24 maxlen: 24
185.224.253.0/24 maxlen: 24
185.224.254.0/24 maxlen: 24
185.224.255.0/24 maxlen: 24
193.105.25.0/24 maxlen: 24
193.242.127.0/24 maxlen: 24
194.104.226.0/24 maxlen: 24
212.12.160.0/19 maxlen: 24
212.12.160.0/20 maxlen: 20
212.12.160.0/23 maxlen: 23
212.12.160.0/24 maxlen: 24
212.12.161.0/24 maxlen: 24
212.12.162.0/23 maxlen: 23
212.12.162.0/24 maxlen: 24
212.12.163.0/24 maxlen: 24
212.12.164.0/23 maxlen: 23
212.12.164.0/24 maxlen: 24
212.12.166.0/23 maxlen: 23
212.12.166.0/24 maxlen: 24
212.12.167.0/24 maxlen: 24
212.12.168.0/23 maxlen: 23
212.12.168.0/24 maxlen: 24
212.12.169.0/24 maxlen: 24
212.12.170.0/23 maxlen: 23
212.12.170.0/24 maxlen: 24
212.12.171.0/24 maxlen: 24
212.12.172.0/23 maxlen: 23
212.12.174.0/23 maxlen: 23
212.12.175.0/24 maxlen: 24
212.12.176.0/20 maxlen: 20
212.12.176.0/23 maxlen: 23
212.12.178.0/23 maxlen: 23
212.12.180.0/23 maxlen: 23
212.12.182.0/23 maxlen: 23
212.12.182.0/24 maxlen: 24
212.12.183.0/24 maxlen: 24
212.12.184.0/23 maxlen: 23
212.12.185.0/24 maxlen: 24
212.12.186.0/23 maxlen: 23
212.12.187.0/24 maxlen: 24
212.12.188.0/23 maxlen: 23
212.12.189.0/24 maxlen: 24
212.12.190.0/23 maxlen: 23
2a00:1560::/32 maxlen: 32
2a00:1560:4::/47 maxlen: 47
2a00:1560:5::/48 maxlen: 48
2a00:1560:c::/48 maxlen: 48
2a00:1560:10::/48 maxlen: 48
2a00:1560:16::/48 maxlen: 48
2a00:1560:17::/48 maxlen: 48
2a00:1560:18::/48 maxlen: 48
2a00:1560:60::/48 maxlen: 48
2a00:1560:1111::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 16 Dec 2024 14:28:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:8c:c3:9c:1b:f5:dc:c2:08:a2:8b:4c:77:a1:0a:a2:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Validity
Not Before: Dec 3 13:44:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dc19b04becd0ab7b83a2b52e98acaaff09f1ab61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8a:33:e6:31:da:6c:8f:e4:bb:a9:db:52:90:
f4:33:9e:89:c5:22:bd:29:c4:43:5b:87:1c:6a:75:
2c:b1:8b:40:ce:3a:c5:c5:4a:e1:bc:6d:ca:57:68:
f4:f3:10:01:13:ef:98:d9:81:d5:8e:a0:1c:03:10:
9a:fa:94:41:28:4a:4f:ba:bd:63:4d:4f:af:47:d9:
bf:41:86:81:ea:c8:e4:a5:65:36:fe:df:8a:24:f3:
c2:22:16:20:53:e0:98:2d:ff:a7:3d:0a:57:4f:d8:
65:88:5b:93:4d:0a:b5:a1:7b:62:15:2b:f5:ae:dc:
8c:0f:20:e9:62:8b:da:8c:40:64:fa:91:88:85:8c:
a4:ad:33:19:d7:c5:19:81:dc:02:97:50:ba:32:b6:
05:5d:ad:84:32:d4:34:ba:79:58:da:cc:20:e2:f4:
48:35:20:d0:c9:a4:f1:bf:8f:2a:a9:40:ce:8f:2d:
71:31:e8:e1:df:b6:60:08:4b:9a:e9:04:64:f6:ee:
72:2a:b4:cc:42:c4:08:88:eb:e7:ec:ec:48:29:f8:
d1:86:cb:99:ea:f0:56:c2:bb:98:17:cd:26:bc:b8:
e7:5f:58:b7:8d:bb:fd:fb:50:40:45:f7:a8:d1:48:
3a:e6:ff:56:7b:9a:a5:c0:f9:e0:56:64:2d:e2:6b:
e7:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:19:B0:4B:EC:D0:AB:7B:83:A2:B5:2E:98:AC:AA:FF:09:F1:AB:61
X509v3 Authority Key Identifier:
keyid:84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/3BmwS-zQq3uDorUumKyq_wnxq2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.235.88.0/21
62.204.48.0/24
77.75.224.0/24
79.110.229.0/24
88.85.224.0/19
146.19.71.0/24
176.97.216.0/24
176.98.32.0/22
176.241.184.0/21
178.20.144.0/21
185.10.112.0/22
185.224.252.0/22
193.105.25.0/24
193.242.127.0/24
194.104.226.0/24
212.12.160.0/19
IPv6:
2a00:1560::/32
Signature Algorithm: sha256WithRSAEncryption
0d:f6:fd:aa:f3:e3:6d:5c:c5:b1:1b:f4:9c:03:b8:a0:b7:09:
a4:85:9f:0a:4b:66:71:75:2e:14:83:03:9b:f3:e6:3f:b0:47:
5e:ab:4b:6a:74:2a:d7:84:e9:22:5b:d6:dd:ca:a5:3d:27:01:
6c:46:35:ba:7b:d6:6f:9d:6c:df:76:7d:d2:91:41:2e:38:e3:
7c:d0:cc:d9:ca:19:fc:e2:34:63:cd:33:85:eb:4c:ce:11:9b:
1e:d0:ed:50:b4:e6:0d:db:17:ca:a4:32:5b:42:07:23:a0:4a:
e1:1f:77:1e:7a:9d:92:f3:ce:87:77:88:4e:1f:0a:e2:92:91:
c6:08:74:22:de:d8:57:b9:c0:84:60:7e:cf:66:9e:b3:aa:14:
16:13:c7:37:6b:90:39:53:d1:1b:8d:78:00:3c:5c:3c:c6:be:
2d:cc:3a:d0:5b:be:b0:b7:cc:d6:24:69:0b:bc:a6:ce:71:44:
03:b2:f2:e6:04:15:b7:6a:6e:0a:0c:db:8f:29:19:cb:66:a9:
a6:cf:82:ea:64:17:d6:b4:29:f2:c0:3c:95:6f:58:b6:38:de:
ae:a3:fb:4e:96:54:ac:80:d0:f3:45:da:d3:01:42:c9:c9:51:
8d:17:5b:53:7f:09:56:5a:a4:d0:ff:45:bc:b3:0e:08:32:42:
79:59:78:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 20:25:49 2025 by rpki-client