Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/d2c7prep4rFjvviLv_tfxB58uO0.roa
File: d2c7prep4rFjvviLv_tfxB58uO0.roa (raw, json)
Hash identifier: KsM+xJbCpBPAW5Xy7zhBjXXFL16LxNfwMdaOwka8o1k=
Subject key identifier: 77:67:3B:A6:B7:A9:E2:B1:63:BE:F8:8B:BF:FB:5F:C4:1E:7C:B8:ED
Certificate issuer: /CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Certificate serial: 0194A67D243633342C820EA7DEBCC2772C83
Authority key identifier: 84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/d2c7prep4rFjvviLv_tfxB58uO0.roa
Signing time: Mon 27 Jan 2025 06:40:06 +0000
ROA not before: Mon 27 Jan 2025 06:40:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29684
IP address blocks: 46.235.88.0/21 maxlen: 24
46.235.88.0/23 maxlen: 23
46.235.90.0/23 maxlen: 23
46.235.91.0/24 maxlen: 24
46.235.92.0/23 maxlen: 23
46.235.94.0/23 maxlen: 23
46.235.94.0/24 maxlen: 24
62.204.48.0/24 maxlen: 24
77.75.224.0/24 maxlen: 24
79.110.229.0/24 maxlen: 24
88.85.224.0/19 maxlen: 24
88.85.224.0/21 maxlen: 21
88.85.224.0/23 maxlen: 23
88.85.226.0/23 maxlen: 23
88.85.228.0/23 maxlen: 23
88.85.228.0/24 maxlen: 24
88.85.230.0/23 maxlen: 23
88.85.231.0/24 maxlen: 24
88.85.232.0/21 maxlen: 21
88.85.232.0/24 maxlen: 24
88.85.235.0/24 maxlen: 24
88.85.236.0/24 maxlen: 24
88.85.237.0/24 maxlen: 24
88.85.238.0/23 maxlen: 23
88.85.238.0/24 maxlen: 24
88.85.239.0/24 maxlen: 24
88.85.240.0/21 maxlen: 21
88.85.240.0/23 maxlen: 23
88.85.242.0/24 maxlen: 24
88.85.244.0/24 maxlen: 24
88.85.245.0/24 maxlen: 24
88.85.246.0/23 maxlen: 23
88.85.247.0/24 maxlen: 24
88.85.248.0/21 maxlen: 21
88.85.248.0/23 maxlen: 23
88.85.250.0/23 maxlen: 23
88.85.250.0/24 maxlen: 24
88.85.252.0/23 maxlen: 23
88.85.254.0/24 maxlen: 24
88.85.255.0/24 maxlen: 24
146.19.71.0/24 maxlen: 24
176.97.216.0/24 maxlen: 24
176.98.32.0/22 maxlen: 22
176.98.32.0/24 maxlen: 24
176.98.33.0/24 maxlen: 24
176.98.34.0/23 maxlen: 23
176.98.34.0/24 maxlen: 24
176.98.35.0/24 maxlen: 24
176.241.184.0/21 maxlen: 24
176.241.184.0/23 maxlen: 23
176.241.186.0/23 maxlen: 23
176.241.188.0/24 maxlen: 24
176.241.189.0/24 maxlen: 24
176.241.190.0/24 maxlen: 24
176.241.191.0/24 maxlen: 24
178.20.144.0/21 maxlen: 24
178.20.144.0/23 maxlen: 23
178.20.146.0/23 maxlen: 23
178.20.148.0/23 maxlen: 23
178.20.150.0/23 maxlen: 23
185.10.112.0/22 maxlen: 24
185.10.112.0/24 maxlen: 24
185.10.113.0/24 maxlen: 24
185.10.114.0/23 maxlen: 23
185.10.114.0/24 maxlen: 24
185.10.115.0/24 maxlen: 24
185.72.102.0/24 maxlen: 24
185.224.252.0/22 maxlen: 24
185.224.252.0/23 maxlen: 23
185.224.252.0/24 maxlen: 24
185.224.253.0/24 maxlen: 24
185.224.254.0/23 maxlen: 23
185.224.254.0/24 maxlen: 24
185.224.255.0/24 maxlen: 24
193.105.25.0/24 maxlen: 24
193.242.127.0/24 maxlen: 24
194.104.226.0/24 maxlen: 24
212.12.160.0/19 maxlen: 24
212.12.160.0/20 maxlen: 20
212.12.160.0/23 maxlen: 23
212.12.160.0/24 maxlen: 24
212.12.161.0/24 maxlen: 24
212.12.162.0/23 maxlen: 23
212.12.162.0/24 maxlen: 24
212.12.163.0/24 maxlen: 24
212.12.164.0/23 maxlen: 23
212.12.164.0/24 maxlen: 24
212.12.166.0/23 maxlen: 23
212.12.166.0/24 maxlen: 24
212.12.167.0/24 maxlen: 24
212.12.168.0/23 maxlen: 23
212.12.168.0/24 maxlen: 24
212.12.169.0/24 maxlen: 24
212.12.170.0/23 maxlen: 23
212.12.170.0/24 maxlen: 24
212.12.171.0/24 maxlen: 24
212.12.172.0/23 maxlen: 23
212.12.174.0/23 maxlen: 23
212.12.175.0/24 maxlen: 24
212.12.176.0/20 maxlen: 20
212.12.176.0/23 maxlen: 23
212.12.178.0/23 maxlen: 23
212.12.180.0/23 maxlen: 23
212.12.182.0/23 maxlen: 23
212.12.182.0/24 maxlen: 24
212.12.183.0/24 maxlen: 24
212.12.184.0/23 maxlen: 23
212.12.185.0/24 maxlen: 24
212.12.186.0/23 maxlen: 23
212.12.187.0/24 maxlen: 24
212.12.188.0/23 maxlen: 23
212.12.189.0/24 maxlen: 24
212.12.190.0/23 maxlen: 23
212.108.85.0/24 maxlen: 24
2a00:1560::/32 maxlen: 32
2a00:1560:4::/47 maxlen: 47
2a00:1560:5::/48 maxlen: 48
2a00:1560:c::/48 maxlen: 48
2a00:1560:10::/48 maxlen: 48
2a00:1560:16::/48 maxlen: 48
2a00:1560:17::/48 maxlen: 48
2a00:1560:18::/48 maxlen: 48
2a00:1560:60::/48 maxlen: 48
2a00:1560:1111::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 30 Jan 2025 05:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:a6:7d:24:36:33:34:2c:82:0e:a7:de:bc:c2:77:2c:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Validity
Not Before: Jan 27 06:40:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=77673ba6b7a9e2b163bef88bbffb5fc41e7cb8ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5d:b6:bb:f8:84:09:d9:a3:3e:3f:c7:1e:47:
75:6b:f9:7f:1b:39:fc:a6:e1:59:0e:16:d9:1b:11:
1a:7b:d6:bc:64:e8:ba:02:9b:6c:dd:7f:a8:d0:35:
5b:81:6d:31:d3:17:53:25:4e:dd:d1:39:c0:f9:5a:
13:4f:5b:a0:8e:c6:b6:62:8c:e8:31:6c:49:62:1e:
b3:db:dd:3d:c9:a3:35:10:5b:d3:be:75:e1:3b:dc:
11:2f:fa:93:2f:8b:86:0f:3e:eb:00:b9:4e:86:92:
9a:98:a2:ae:51:08:9f:86:f9:e8:58:b0:83:a2:35:
9e:c9:d4:1a:99:93:c3:f4:d9:6c:26:d4:b8:22:b9:
0f:16:14:14:bd:07:29:09:45:b1:11:a7:21:15:78:
a9:59:b2:9a:e2:2f:3c:11:96:f6:47:9c:35:b1:6d:
6d:14:3b:63:97:41:bc:79:67:33:bc:07:10:da:8c:
30:14:ea:88:ed:04:57:ad:f5:47:47:91:51:79:0f:
e2:d9:de:32:f7:64:30:72:28:91:1c:0e:f0:55:b9:
c8:dc:ef:21:3f:68:1b:10:cf:7e:be:f2:6e:1f:d0:
99:52:55:b5:16:69:59:40:7d:3e:d6:7d:a8:fb:26:
ed:34:13:06:0e:2b:a0:50:ce:a6:4f:a3:d1:a9:6c:
2e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:67:3B:A6:B7:A9:E2:B1:63:BE:F8:8B:BF:FB:5F:C4:1E:7C:B8:ED
X509v3 Authority Key Identifier:
keyid:84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/d2c7prep4rFjvviLv_tfxB58uO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.235.88.0/21
62.204.48.0/24
77.75.224.0/24
79.110.229.0/24
88.85.224.0/19
146.19.71.0/24
176.97.216.0/24
176.98.32.0/22
176.241.184.0/21
178.20.144.0/21
185.10.112.0/22
185.72.102.0/24
185.224.252.0/22
193.105.25.0/24
193.242.127.0/24
194.104.226.0/24
212.12.160.0/19
212.108.85.0/24
IPv6:
2a00:1560::/32
Signature Algorithm: sha256WithRSAEncryption
77:59:62:cb:48:12:64:84:56:35:d8:22:8b:39:e5:ac:27:23:
28:5d:91:2d:c7:9c:6f:15:01:3a:0c:5c:78:83:18:c3:4c:0c:
92:58:4b:45:3b:3a:18:c5:bd:40:d3:c0:6b:5d:4d:e4:bb:07:
08:af:10:2a:af:01:6a:d6:5a:0f:a8:94:1e:c2:c3:d6:16:23:
1c:cc:03:5b:00:ea:14:92:97:41:f0:4b:b1:f2:ca:60:5b:83:
1d:69:83:08:6e:03:26:82:44:11:81:26:b3:fa:a2:af:61:18:
14:e8:20:dc:ae:c8:4d:75:bd:da:29:55:8d:ab:9a:b3:15:85:
2c:4d:66:f5:19:1a:e9:3a:a3:08:b2:5e:d8:9d:76:fd:6e:87:
bd:05:a1:dd:33:0c:3a:91:41:62:43:67:83:84:b9:d4:f5:ae:
03:ca:d7:d1:df:c1:ce:bb:60:59:6b:f2:ec:0e:7f:90:e7:fe:
05:32:f1:66:7e:9e:01:a7:47:6b:80:f1:e7:8b:75:57:f5:20:
35:75:3d:73:d4:d7:7a:9d:91:1e:ed:8a:00:0d:1c:37:88:a6:
38:b4:fa:3e:03:c7:74:1a:ec:11:97:d1:21:74:29:78:0b:97:
6c:0b:f8:0c:18:66:70:bb:b2:b7:75:7f:29:0b:36:cb:e0:75:
f1:2e:48:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:38:00 2025 by rpki-client