Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/ed51ec-78e6-4ff0-ba58-076c88b8802f/1/2pQrCjmEhA3g-2eKTBMiQM8sn-U.roa
File: 2pQrCjmEhA3g-2eKTBMiQM8sn-U.roa (raw, json)
Hash identifier: UcGksKoG6+Jeg+pG7RkEd5g5KI3fiKiPCChR2Q41TZs=
Subject key identifier: DA:94:2B:0A:39:84:84:0D:E0:FB:67:8A:4C:13:22:40:CF:2C:9F:E5
Certificate issuer: /CN=65df379faaf210a7036dac05de6b5772dbe4dd6c
Certificate serial: 0194258F58C9AC79298BFD3D51F5F86A0D08
Authority key identifier: 65:DF:37:9F:AA:F2:10:A7:03:6D:AC:05:DE:6B:57:72:DB:E4:DD:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zd83n6ryEKcDbawF3mtXctvk3Ww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/ed51ec-78e6-4ff0-ba58-076c88b8802f/1/2pQrCjmEhA3g-2eKTBMiQM8sn-U.roa
Signing time: Thu 02 Jan 2025 05:48:58 +0000
ROA not before: Thu 02 Jan 2025 05:48:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201838
IP address blocks: 45.12.172.0/22 maxlen: 24
45.81.72.0/22 maxlen: 22
45.86.8.0/22 maxlen: 24
45.89.84.0/22 maxlen: 22
45.89.156.0/22 maxlen: 22
45.90.172.0/22 maxlen: 22
45.91.112.0/22 maxlen: 22
45.93.172.0/22 maxlen: 22
45.94.60.0/22 maxlen: 22
45.94.176.0/22 maxlen: 22
45.95.248.0/22 maxlen: 22
45.117.136.0/22 maxlen: 22
45.128.32.0/22 maxlen: 22
45.128.136.0/22 maxlen: 22
45.132.136.0/21 maxlen: 24
45.133.88.0/22 maxlen: 24
45.141.236.0/22 maxlen: 22
45.144.56.0/22 maxlen: 24
45.144.160.0/22 maxlen: 24
45.146.8.0/22 maxlen: 22
45.146.60.0/22 maxlen: 24
45.148.12.0/22 maxlen: 22
45.148.56.0/22 maxlen: 22
45.148.252.0/22 maxlen: 24
45.149.72.0/22 maxlen: 24
45.149.220.0/22 maxlen: 22
45.150.144.0/22 maxlen: 22
45.152.4.0/22 maxlen: 24
45.153.220.0/22 maxlen: 24
45.159.88.0/22 maxlen: 22
45.159.152.0/22 maxlen: 24
45.248.144.0/22 maxlen: 24
46.102.170.0/23 maxlen: 23
46.102.170.0/24 maxlen: 24
46.102.171.0/24 maxlen: 24
62.133.48.0/22 maxlen: 22
62.197.132.0/22 maxlen: 24
77.75.60.0/22 maxlen: 24
79.171.153.0/24 maxlen: 24
79.171.154.0/23 maxlen: 23
79.171.156.0/22 maxlen: 22
80.76.56.0/22 maxlen: 22
89.36.112.0/20 maxlen: 20
89.43.208.0/21 maxlen: 24
89.45.176.0/20 maxlen: 20
93.113.26.0/23 maxlen: 23
94.176.208.0/23 maxlen: 23
94.177.138.0/23 maxlen: 23
94.247.86.0/23 maxlen: 23
95.214.184.0/22 maxlen: 22
95.214.228.0/22 maxlen: 22
103.7.204.0/22 maxlen: 22
103.205.24.0/22 maxlen: 24
130.255.16.0/22 maxlen: 24
130.255.28.0/22 maxlen: 24
147.12.128.0/17 maxlen: 24
171.22.104.0/22 maxlen: 22
178.239.192.0/22 maxlen: 24
178.239.200.0/22 maxlen: 24
178.255.88.0/21 maxlen: 24
185.59.124.0/22 maxlen: 22
185.71.36.0/22 maxlen: 22
185.103.72.0/22 maxlen: 24
185.111.172.0/22 maxlen: 22
185.115.144.0/22 maxlen: 24
185.121.228.0/22 maxlen: 24
185.229.104.0/22 maxlen: 24
185.230.248.0/22 maxlen: 24
185.236.60.0/22 maxlen: 24
185.237.60.0/22 maxlen: 22
185.238.220.0/22 maxlen: 22
185.240.196.0/22 maxlen: 22
185.241.164.0/22 maxlen: 22
185.245.236.0/22 maxlen: 24
188.212.122.0/23 maxlen: 23
188.215.16.0/23 maxlen: 23
188.215.74.0/23 maxlen: 23
188.241.106.0/23 maxlen: 23
192.166.208.0/22 maxlen: 22
192.166.212.0/22 maxlen: 24
193.42.52.0/22 maxlen: 24
193.164.20.0/22 maxlen: 22
194.4.156.0/22 maxlen: 24
212.132.192.0/18 maxlen: 18
213.32.248.0/22 maxlen: 24
2a02:6b60::/28 maxlen: 28
2a02:6b60::/29 maxlen: 29
2a03:3820::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 15 Jan 2025 10:17:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:58:c9:ac:79:29:8b:fd:3d:51:f5:f8:6a:0d:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65df379faaf210a7036dac05de6b5772dbe4dd6c
Validity
Not Before: Jan 2 05:48:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=da942b0a3984840de0fb678a4c132240cf2c9fe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:6a:04:ff:4f:51:cd:75:78:6b:1f:68:78:a6:
87:cb:10:3b:b4:1e:52:82:6b:b4:e2:c7:dc:8f:3f:
2a:95:c4:b3:3b:09:87:fc:b2:63:c7:b7:8f:52:c7:
03:3c:7d:2d:43:d8:f1:6f:16:9d:4d:56:74:71:a2:
37:89:4b:11:fb:d3:f8:02:3e:0c:b8:30:fb:17:f6:
06:79:f0:7a:ef:29:38:a3:89:2e:cc:1f:fa:37:be:
1e:9a:9c:4c:2b:9d:2a:3a:09:28:bf:ff:e4:ca:3d:
f2:42:75:85:e3:b5:c0:c6:8b:21:3d:9c:87:3e:b2:
97:b2:07:ab:9a:a5:3e:9e:61:f5:87:65:3b:12:7e:
1c:19:92:67:c8:c4:23:dd:e9:54:89:90:fe:9a:a5:
da:d1:de:3c:22:cb:53:9b:7c:f1:bc:27:35:b6:e2:
49:46:dc:7c:9d:0d:71:42:6c:1e:b3:2b:9b:12:ba:
18:b1:79:9c:7b:81:8b:ed:24:f3:f4:9a:5c:c7:08:
c9:30:1e:2d:49:04:52:fc:68:3f:ba:29:93:47:c8:
24:9b:91:5b:0e:34:b5:6f:f1:28:13:61:72:69:d2:
f6:17:18:9c:37:9c:ac:af:7b:5a:b8:6f:5e:2d:fe:
6f:88:f8:af:c3:a8:aa:43:7e:93:0b:26:2d:a6:6f:
c8:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:94:2B:0A:39:84:84:0D:E0:FB:67:8A:4C:13:22:40:CF:2C:9F:E5
X509v3 Authority Key Identifier:
keyid:65:DF:37:9F:AA:F2:10:A7:03:6D:AC:05:DE:6B:57:72:DB:E4:DD:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zd83n6ryEKcDbawF3mtXctvk3Ww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/ed51ec-78e6-4ff0-ba58-076c88b8802f/1/2pQrCjmEhA3g-2eKTBMiQM8sn-U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/ed51ec-78e6-4ff0-ba58-076c88b8802f/1/Zd83n6ryEKcDbawF3mtXctvk3Ww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.172.0/22
45.81.72.0/22
45.86.8.0/22
45.89.84.0/22
45.89.156.0/22
45.90.172.0/22
45.91.112.0/22
45.93.172.0/22
45.94.60.0/22
45.94.176.0/22
45.95.248.0/22
45.117.136.0/22
45.128.32.0/22
45.128.136.0/22
45.132.136.0/21
45.133.88.0/22
45.141.236.0/22
45.144.56.0/22
45.144.160.0/22
45.146.8.0/22
45.146.60.0/22
45.148.12.0/22
45.148.56.0/22
45.148.252.0/22
45.149.72.0/22
45.149.220.0/22
45.150.144.0/22
45.152.4.0/22
45.153.220.0/22
45.159.88.0/22
45.159.152.0/22
45.248.144.0/22
46.102.170.0/23
62.133.48.0/22
62.197.132.0/22
77.75.60.0/22
79.171.153.0-79.171.159.255
80.76.56.0/22
89.36.112.0/20
89.43.208.0/21
89.45.176.0/20
93.113.26.0/23
94.176.208.0/23
94.177.138.0/23
94.247.86.0/23
95.214.184.0/22
95.214.228.0/22
103.7.204.0/22
103.205.24.0/22
130.255.16.0/22
130.255.28.0/22
147.12.128.0/17
171.22.104.0/22
178.239.192.0/22
178.239.200.0/22
178.255.88.0/21
185.59.124.0/22
185.71.36.0/22
185.103.72.0/22
185.111.172.0/22
185.115.144.0/22
185.121.228.0/22
185.229.104.0/22
185.230.248.0/22
185.236.60.0/22
185.237.60.0/22
185.238.220.0/22
185.240.196.0/22
185.241.164.0/22
185.245.236.0/22
188.212.122.0/23
188.215.16.0/23
188.215.74.0/23
188.241.106.0/23
192.166.208.0/21
193.42.52.0/22
193.164.20.0/22
194.4.156.0/22
212.132.192.0/18
213.32.248.0/22
IPv6:
2a02:6b60::/28
2a03:3820::/32
Signature Algorithm: sha256WithRSAEncryption
50:a9:08:20:a7:78:9e:2c:99:e2:3a:c7:24:3a:93:31:d0:b0:
55:3d:12:a2:c5:aa:05:51:dc:ac:60:fa:41:2e:55:9d:dd:d6:
90:5d:b6:20:2e:e3:91:5c:14:7a:23:a5:6b:2c:f7:d9:cb:f8:
54:70:93:3a:cc:d0:a5:2c:51:23:f5:73:fd:cb:34:a2:20:5e:
fa:12:d2:96:3e:a5:f9:66:ec:8a:a3:82:80:90:3e:26:d7:cb:
f5:b2:5b:71:cd:24:b1:93:cf:cc:02:ee:0f:7a:31:e7:cf:81:
8b:32:ae:bb:50:71:93:96:82:68:3c:a9:0d:7b:eb:90:4a:6e:
cd:c2:e2:03:6f:c2:c2:d3:cb:9a:56:b9:85:c5:0c:e1:72:51:
d8:d6:1b:aa:7b:c3:05:a3:5d:ca:2a:30:98:9b:bd:68:b3:2e:
e3:6c:dd:f3:e7:08:51:07:02:00:a5:79:e1:46:b9:13:c7:21:
44:76:74:9f:34:00:87:38:4e:79:8d:15:49:f5:8b:c3:b4:19:
d0:f1:14:a9:9b:18:71:22:86:ba:4b:66:81:b5:ae:ea:1e:c7:
b4:b6:48:75:88:11:65:f3:21:d4:8d:4e:81:a4:3d:a5:50:17:
43:ef:c6:42:a5:e9:2a:30:39:66:8b:a4:bd:0e:3a:44:7f:8e:
37:0d:a5:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 01:55:17 2025 by rpki-client