Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/27V8sJJwgIzO1qcIVY_-DZZvf_M.roa
File: 27V8sJJwgIzO1qcIVY_-DZZvf_M.roa (raw, json)
Hash identifier: exmmu8c+uCsi0tyx4soqeQL+p+Bunr8jhKFYebbB13s=
Subject key identifier: DB:B5:7C:B0:92:70:80:8C:CE:D6:A7:08:55:8F:FE:0D:96:6F:7F:F3
Certificate issuer: /CN=80a9fff63a3477957ff75ccdc003dab68cf9d155
Certificate serial: 0194266B2485A6349516C6D4DF1BB5F1EA5C
Authority key identifier: 80:A9:FF:F6:3A:34:77:95:7F:F7:5C:CD:C0:03:DA:B6:8C:F9:D1:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKn_9jo0d5V_91zNwAPatoz50VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/27V8sJJwgIzO1qcIVY_-DZZvf_M.roa
Signing time: Thu 02 Jan 2025 09:49:03 +0000
ROA not before: Thu 02 Jan 2025 09:49:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16276
IP address blocks: 5.39.0.0/17 maxlen: 17
5.135.0.0/16 maxlen: 16
5.196.0.0/16 maxlen: 16
37.59.0.0/16 maxlen: 16
37.187.0.0/16 maxlen: 16
46.105.0.0/16 maxlen: 16
46.105.198.0/24 maxlen: 24
46.105.199.0/24 maxlen: 24
46.105.200.0/24 maxlen: 24
46.105.201.0/24 maxlen: 24
46.105.202.0/24 maxlen: 24
46.105.203.0/24 maxlen: 24
46.105.204.0/24 maxlen: 24
46.105.206.0/24 maxlen: 24
46.105.207.0/24 maxlen: 24
51.38.0.0/16 maxlen: 16
51.68.0.0/16 maxlen: 16
51.75.0.0/16 maxlen: 16
51.77.0.0/16 maxlen: 16
51.83.0.0/16 maxlen: 16
51.89.0.0/16 maxlen: 16
51.91.0.0/16 maxlen: 16
51.178.0.0/16 maxlen: 16
51.195.0.0/16 maxlen: 16
51.210.0.0/16 maxlen: 16
51.254.0.0/15 maxlen: 15
54.36.0.0/16 maxlen: 16
54.37.0.0/16 maxlen: 16
54.38.0.0/16 maxlen: 16
57.128.0.0/17 maxlen: 17
57.128.128.0/18 maxlen: 18
57.131.0.0/17 maxlen: 17
79.137.0.0/17 maxlen: 17
87.98.128.0/17 maxlen: 17
91.121.0.0/16 maxlen: 16
91.134.0.0/16 maxlen: 16
92.222.0.0/16 maxlen: 16
94.23.0.0/16 maxlen: 16
135.125.0.0/17 maxlen: 17
135.125.128.0/17 maxlen: 17
137.74.0.0/16 maxlen: 16
141.94.0.0/16 maxlen: 16
141.95.0.0/17 maxlen: 17
141.95.128.0/17 maxlen: 17
141.227.128.0/20 maxlen: 24
141.227.160.0/19 maxlen: 24
145.239.0.0/16 maxlen: 16
146.59.0.0/16 maxlen: 16
146.59.0.0/17 maxlen: 17
147.135.128.0/17 maxlen: 17
149.202.0.0/16 maxlen: 16
151.80.0.0/16 maxlen: 16
152.228.128.0/17 maxlen: 17
162.19.0.0/17 maxlen: 17
162.19.128.0/17 maxlen: 17
164.132.0.0/16 maxlen: 16
176.31.0.0/16 maxlen: 16
178.32.0.0/15 maxlen: 15
188.165.0.0/16 maxlen: 16
193.70.0.0/17 maxlen: 17
198.244.128.0/17 maxlen: 17
213.32.0.0/17 maxlen: 17
213.186.32.0/19 maxlen: 19
213.251.128.0/18 maxlen: 18
217.182.0.0/16 maxlen: 16
2001:41d0::/32 maxlen: 32
2001:41d0:ab00::/40 maxlen: 48
Validation: Failed, certificate revoked on Thu 20 Mar 2025 14:36:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:24:85:a6:34:95:16:c6:d4:df:1b:b5:f1:ea:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a9fff63a3477957ff75ccdc003dab68cf9d155
Validity
Not Before: Jan 2 09:49:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dbb57cb09270808cced6a708558ffe0d966f7ff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:11:d3:c5:f5:95:52:12:1b:9f:e4:ce:80:ba:
4b:b4:59:28:77:3f:5d:ca:27:7b:b1:09:42:78:ee:
a6:a8:f2:4b:84:31:51:3b:4b:94:c3:ad:6f:0d:ec:
d9:d4:7b:59:9d:05:5d:2c:a1:56:f9:39:4b:aa:1d:
cc:07:82:eb:b9:52:d4:b4:36:bf:0e:c9:f5:ea:3f:
2b:cf:43:93:a3:22:12:4c:57:d1:2a:4d:f3:79:8e:
55:01:b6:7a:37:bc:70:67:f0:ec:74:a9:d9:e7:5d:
89:65:30:e9:8d:c8:5b:d4:9b:e1:65:bf:76:06:87:
95:23:02:ff:2c:9c:dd:46:ab:7c:0d:39:e4:cd:c6:
ca:6d:ea:3d:d8:3e:8a:26:d3:e0:73:8e:29:01:cd:
09:2b:ff:80:d3:7b:04:4b:29:14:74:ae:57:2d:8a:
db:bd:8c:95:da:7d:d5:0d:71:dc:1d:21:1e:f7:66:
39:7d:91:83:2f:2f:e5:0d:b2:40:40:48:16:b7:82:
ec:37:0e:db:3a:ac:07:4b:72:a5:2a:1f:f8:2a:48:
66:6d:fa:0c:4f:92:1b:a1:8c:45:31:90:58:b3:93:
47:1f:6a:a3:18:fd:e4:40:99:a8:92:8b:3a:61:64:
40:90:8a:37:af:b9:f2:7c:16:e0:16:5d:16:25:b0:
d5:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B5:7C:B0:92:70:80:8C:CE:D6:A7:08:55:8F:FE:0D:96:6F:7F:F3
X509v3 Authority Key Identifier:
keyid:80:A9:FF:F6:3A:34:77:95:7F:F7:5C:CD:C0:03:DA:B6:8C:F9:D1:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKn_9jo0d5V_91zNwAPatoz50VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/27V8sJJwgIzO1qcIVY_-DZZvf_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/gKn_9jo0d5V_91zNwAPatoz50VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.0.0/17
5.135.0.0/16
5.196.0.0/16
37.59.0.0/16
37.187.0.0/16
46.105.0.0/16
51.38.0.0/16
51.68.0.0/16
51.75.0.0/16
51.77.0.0/16
51.83.0.0/16
51.89.0.0/16
51.91.0.0/16
51.178.0.0/16
51.195.0.0/16
51.210.0.0/16
51.254.0.0/15
54.36.0.0-54.38.255.255
57.128.0.0-57.128.191.255
57.131.0.0/17
79.137.0.0/17
87.98.128.0/17
91.121.0.0/16
91.134.0.0/16
92.222.0.0/16
94.23.0.0/16
135.125.0.0/16
137.74.0.0/16
141.94.0.0/15
141.227.128.0/20
141.227.160.0/19
145.239.0.0/16
146.59.0.0/16
147.135.128.0/17
149.202.0.0/16
151.80.0.0/16
152.228.128.0/17
162.19.0.0/16
164.132.0.0/16
176.31.0.0/16
178.32.0.0/15
188.165.0.0/16
193.70.0.0/17
198.244.128.0/17
213.32.0.0/17
213.186.32.0/19
213.251.128.0/18
217.182.0.0/16
IPv6:
2001:41d0::/32
Signature Algorithm: sha256WithRSAEncryption
19:c5:42:5e:ef:05:7a:18:5b:75:a7:ef:41:74:8b:24:4f:8e:
41:5d:97:60:e1:c6:fc:a5:bb:44:d2:f2:83:5a:b9:87:9e:c6:
50:06:54:07:62:b2:94:aa:95:37:43:dd:af:3c:fc:5c:16:1f:
01:8f:1a:42:d5:20:94:95:10:0a:4e:9d:f4:14:17:67:0d:c6:
ee:8b:d4:1b:ff:91:1f:34:0b:52:58:f0:b9:f8:4d:8b:c6:3e:
7a:10:70:29:59:6d:c9:9f:ba:fd:a3:81:40:1d:24:6a:af:d3:
5d:bf:fd:8a:0a:68:ab:52:05:56:97:c1:88:b4:91:ec:4b:4b:
05:ff:8b:14:e9:ff:80:ed:e7:2d:87:17:fc:3b:5d:ab:11:4a:
38:d4:42:9b:e9:41:7b:ff:6e:c4:5e:f5:4b:e6:1a:79:a6:40:
1c:ee:4c:41:13:92:c4:b1:a8:1e:45:38:e9:a0:4b:75:3e:34:
90:7b:74:6e:b9:58:41:ae:dd:c3:87:4e:f2:f2:fc:d3:d0:90:
bb:77:ce:95:1f:d1:85:88:23:c5:6f:70:51:c6:60:32:ae:f7:
50:b5:a9:4c:21:11:d3:b6:2a:d6:fa:be:61:79:57:34:15:1f:
a6:a1:28:38:12:7c:82:6f:19:41:70:15:4b:93:c7:4e:b5:b5:
9c:20:04:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 13:07:59 2025 by rpki-client