Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/8_dLoRPH2t4JiJe0RUPLVXeghjk.roa
File: 8_dLoRPH2t4JiJe0RUPLVXeghjk.roa (raw, json)
Hash identifier: x7sGMClz1cib86stZVB0LMCya4sB3Uh2afumJv5gP8E=
Subject key identifier: F3:F7:4B:A1:13:C7:DA:DE:09:88:97:B4:45:43:CB:55:77:A0:86:39
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 01916EC2242A0D21EE6EF4FE463642588B6A
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/8_dLoRPH2t4JiJe0RUPLVXeghjk.roa
Signing time: Tue 20 Aug 2024 07:48:22 +0000
ROA not before: Tue 20 Aug 2024 07:48:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3352
IP address blocks: 2.136.0.0/16 maxlen: 16
2.137.0.0/16 maxlen: 16
2.138.0.0/16 maxlen: 16
2.139.0.0/16 maxlen: 16
2.140.0.0/16 maxlen: 24
2.141.0.0/16 maxlen: 24
2.142.0.0/16 maxlen: 24
2.143.0.0/16 maxlen: 24
37.10.128.0/17 maxlen: 24
37.12.0.0/16 maxlen: 24
37.13.0.0/16 maxlen: 24
37.158.0.0/16 maxlen: 24
79.144.0.0/16 maxlen: 16
79.145.0.0/16 maxlen: 16
79.146.0.0/16 maxlen: 16
79.147.0.0/16 maxlen: 16
79.148.0.0/16 maxlen: 16
80.24.0.0/16 maxlen: 16
80.25.0.0/16 maxlen: 16
80.26.0.0/16 maxlen: 16
80.27.0.0/16 maxlen: 24
80.30.0.0/16 maxlen: 16
80.31.0.0/16 maxlen: 16
80.32.0.0/16 maxlen: 16
80.33.0.0/16 maxlen: 16
80.34.0.0/16 maxlen: 16
80.35.0.0/16 maxlen: 16
80.36.0.0/16 maxlen: 16
80.37.0.0/16 maxlen: 16
80.38.0.0/16 maxlen: 16
80.39.0.0/16 maxlen: 16
80.59.0.0/16 maxlen: 16
81.32.0.0/16 maxlen: 16
81.33.0.0/16 maxlen: 16
81.34.0.0/16 maxlen: 16
81.35.0.0/16 maxlen: 16
81.36.0.0/16 maxlen: 16
81.37.0.0/16 maxlen: 16
81.38.0.0/16 maxlen: 16
81.39.0.0/16 maxlen: 16
81.40.0.0/16 maxlen: 16
81.41.0.0/16 maxlen: 16
81.42.0.0/16 maxlen: 16
81.43.0.0/16 maxlen: 16
81.44.0.0/16 maxlen: 16
83.32.0.0/16 maxlen: 16
83.33.0.0/16 maxlen: 16
83.34.0.0/16 maxlen: 16
83.35.0.0/16 maxlen: 16
83.36.0.0/16 maxlen: 16
83.37.0.0/16 maxlen: 16
83.38.0.0/16 maxlen: 16
83.39.0.0/16 maxlen: 16
83.47.0.0/16 maxlen: 16
83.52.0.0/16 maxlen: 16
83.53.0.0/16 maxlen: 16
83.54.0.0/16 maxlen: 16
83.55.0.0/16 maxlen: 16
83.56.0.0/16 maxlen: 16
83.57.0.0/16 maxlen: 16
83.58.0.0/16 maxlen: 16
83.59.0.0/16 maxlen: 16
83.60.0.0/16 maxlen: 16
83.61.0.0/16 maxlen: 16
83.62.0.0/16 maxlen: 21
83.63.0.0/16 maxlen: 16
88.0.0.0/16 maxlen: 16
88.1.0.0/16 maxlen: 16
88.2.0.0/16 maxlen: 16
88.3.0.0/16 maxlen: 16
88.8.0.0/16 maxlen: 16
88.9.0.0/16 maxlen: 16
88.10.0.0/16 maxlen: 16
88.11.0.0/16 maxlen: 16
88.12.0.0/16 maxlen: 16
88.13.0.0/16 maxlen: 16
88.14.0.0/16 maxlen: 16
88.15.0.0/16 maxlen: 16
88.16.0.0/16 maxlen: 16
88.24.0.0/16 maxlen: 16
88.25.0.0/16 maxlen: 16
88.26.0.0/16 maxlen: 16
88.27.0.0/16 maxlen: 16
88.28.0.0/16 maxlen: 24
88.29.0.0/16 maxlen: 24
88.30.0.0/16 maxlen: 16
88.31.0.0/16 maxlen: 24
95.121.0.0/16 maxlen: 16
95.122.0.0/16 maxlen: 16
95.123.0.0/16 maxlen: 16
95.124.0.0/16 maxlen: 24
95.125.0.0/16 maxlen: 24
95.126.0.0/16 maxlen: 24
95.127.0.0/16 maxlen: 24
176.80.0.0/16 maxlen: 24
176.81.0.0/16 maxlen: 16
176.82.0.0/16 maxlen: 24
176.83.0.0/16 maxlen: 24
176.85.0.0/16 maxlen: 16
176.86.0.0/16 maxlen: 16
176.87.0.0/16 maxlen: 24
192.101.1.0/24 maxlen: 24
193.153.0.0/16 maxlen: 16
194.69.225.0/24 maxlen: 24
194.179.34.0/24 maxlen: 24
194.179.112.0/24 maxlen: 24
194.224.157.0/24 maxlen: 24
195.53.0.0/16 maxlen: 16
195.53.69.0/24 maxlen: 24
195.53.193.0/24 maxlen: 24
195.53.218.0/23 maxlen: 23
195.55.78.0/24 maxlen: 24
195.55.79.0/24 maxlen: 24
195.55.110.0/24 maxlen: 24
195.57.5.0/24 maxlen: 24
195.57.27.0/24 maxlen: 24
195.76.0.0/16 maxlen: 16
195.76.141.0/24 maxlen: 24
195.76.164.0/24 maxlen: 24
195.77.57.0/24 maxlen: 24
195.77.132.0/22 maxlen: 22
195.77.132.0/23 maxlen: 23
195.77.132.0/24 maxlen: 24
195.235.0.0/16 maxlen: 16
195.235.95.0/24 maxlen: 24
195.235.188.0/24 maxlen: 24
195.235.225.0/24 maxlen: 24
195.235.241.0/24 maxlen: 24
195.235.242.0/24 maxlen: 24
212.170.0.0/16 maxlen: 16
212.170.156.0/24 maxlen: 24
212.170.159.0/24 maxlen: 24
213.96.0.0/16 maxlen: 16
213.97.0.0/16 maxlen: 16
213.98.0.0/16 maxlen: 16
213.99.0.0/16 maxlen: 24
213.99.44.0/24 maxlen: 24
213.99.59.0/24 maxlen: 24
217.11.96.0/19 maxlen: 19
217.124.182.0/24 maxlen: 24
217.126.0.0/16 maxlen: 16
217.127.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Tue 20 Aug 2024 09:53:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6e:c2:24:2a:0d:21:ee:6e:f4:fe:46:36:42:58:8b:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Aug 20 07:48:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f3f74ba113c7dade098897b44543cb5577a08639
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:15:2b:78:15:61:b6:ac:3b:4d:4a:23:e5:24:
e9:42:7c:9e:1a:77:6b:8a:3d:3f:3f:fc:9e:a2:e6:
eb:4f:bf:f5:1c:3a:ef:5a:fe:c8:58:49:6c:79:27:
70:46:f4:d1:a0:dc:a8:df:56:af:a0:6e:0c:24:c2:
e4:e9:7f:2d:9c:e7:3d:7a:6c:59:3e:c0:cc:d1:46:
5c:3f:88:b3:34:38:cf:f7:be:a9:87:45:ec:b5:2c:
cd:01:b1:be:cc:45:3d:4c:e9:da:95:58:93:ec:37:
d6:52:06:0b:05:89:4b:05:59:9c:4a:ba:86:b5:40:
a5:d5:c7:20:f9:be:5c:1e:7e:ac:8e:8a:55:58:42:
f4:c3:a4:a6:ce:90:39:a2:11:85:86:ec:8a:46:be:
5b:37:61:62:2e:b6:19:0e:11:c0:d8:61:f3:56:73:
4e:60:d8:4d:ec:32:f0:19:b4:62:1b:6f:8c:18:d6:
62:86:c5:8c:f0:b9:bb:ba:0a:f0:9c:ea:e9:cf:a7:
0f:7d:4f:b1:74:6a:73:18:0a:88:fa:9f:dc:9f:7e:
d5:bf:9c:83:c9:48:38:c3:8d:49:3d:f5:b8:89:71:
b5:ef:73:61:85:fd:fe:5d:4b:a1:dc:b2:6a:d6:a7:
22:a8:11:08:53:e9:b3:a3:40:a9:fc:b7:8b:55:b3:
ae:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:F7:4B:A1:13:C7:DA:DE:09:88:97:B4:45:43:CB:55:77:A0:86:39
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/8_dLoRPH2t4JiJe0RUPLVXeghjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.136.0.0/13
37.10.128.0/17
37.12.0.0/15
37.158.0.0/16
79.144.0.0-79.148.255.255
80.24.0.0/14
80.30.0.0-80.39.255.255
80.59.0.0/16
81.32.0.0-81.44.255.255
83.32.0.0/13
83.47.0.0/16
83.52.0.0-83.63.255.255
88.0.0.0/14
88.8.0.0-88.16.255.255
88.24.0.0/13
95.121.0.0-95.127.255.255
176.80.0.0/14
176.85.0.0-176.87.255.255
192.101.1.0/24
193.153.0.0/16
194.69.225.0/24
194.179.34.0/24
194.179.112.0/24
194.224.157.0/24
195.53.0.0/16
195.55.78.0/23
195.55.110.0/24
195.57.5.0/24
195.57.27.0/24
195.76.0.0/16
195.77.57.0/24
195.77.132.0/22
195.235.0.0/16
212.170.0.0/16
213.96.0.0/14
217.11.96.0/19
217.124.182.0/24
217.126.0.0/15
Signature Algorithm: sha256WithRSAEncryption
9a:9e:8d:ad:db:b5:de:25:b5:68:7e:74:10:a4:03:74:ba:61:
eb:14:39:28:b7:1e:1c:0a:53:96:07:96:b9:bb:08:86:cd:33:
17:d0:a8:2e:eb:5b:e1:bf:84:0a:5e:29:63:4d:ec:60:f7:05:
59:1b:50:92:e2:aa:8d:01:1a:27:aa:8c:44:d5:c9:92:06:1f:
6b:51:6d:4a:4f:86:b2:7e:59:78:26:25:05:c9:09:15:d7:42:
3a:32:63:7d:d0:80:34:96:45:d4:1e:8c:45:e0:d1:26:a2:4d:
57:1c:c6:0a:44:51:e1:17:d9:88:ed:bb:5d:dc:47:ac:f2:0c:
a9:b3:e4:0f:ed:cb:2d:ca:ca:1e:1a:76:d8:2e:ad:16:17:43:
81:4d:59:ff:3f:e3:ca:92:c9:26:d4:0e:ed:80:96:35:a1:d4:
b1:e0:dc:d1:f1:3b:fa:10:0f:e1:e5:8d:5a:e6:0a:a0:a8:da:
fa:35:87:bb:77:a6:75:2d:3f:09:fd:61:f2:b1:39:3f:ef:39:
09:0c:e2:7c:4d:71:06:55:2a:95:93:33:d9:da:c1:e5:c3:2b:
53:e8:b6:8f:a8:38:b8:6d:8e:34:d2:f2:5d:91:84:5c:99:9c:
78:06:e4:6f:83:9f:7d:cf:49:2b:7d:7f:86:f4:e5:8d:13:74:
f2:9e:34:1a
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgISAZFuwiQqDSHubvT+RjZCWItqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwN2Y1ZmUyNzQwYTJiNmRlNGMzNzA5ZDI5NjQxMTViM2M5
NjdkYTEwHhcNMjQwODIwMDc0ODIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmM2Y3NGJhMTEzYzdkYWRlMDk4ODk3YjQ0NTQzY2I1NTc3YTA4NjM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4hUreBVhtqw7TUoj5STpQnyeGndr
ij0/P/yeoubrT7/1HDrvWv7IWElseSdwRvTRoNyo31avoG4MJMLk6X8tnOc9emxZ
PsDM0UZcP4izNDjP976ph0XstSzNAbG+zEU9TOnalViT7DfWUgYLBYlLBVmcSrqG
tUCl1ccg+b5cHn6sjopVWEL0w6SmzpA5ohGFhuyKRr5bN2FiLrYZDhHA2GHzVnNO
YNhN7DLwGbRiG2+MGNZihsWM8Lm7ugrwnOrpz6cPfU+xdGpzGAqI+p/cn37Vv5yD
yUg4w41JPfW4iXG173Nhhf3+XUuh3LJq1qciqBEIU+mzo0Cp/LeLVbOuYwIDAQAB
o4IDCTCCAwUwHQYDVR0OBBYEFPP3S6ETx9reCYiXtEVDy1V3oIY5MB8GA1UdIwQY
MBaAFDB/X+J0Citt5MNwnSlkEVs8ln2hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQt
NGJhMmY4ZjFmODNiLzEvOF9kTG9SUEgydDRKaUplMFJVUExWWGVnaGprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQtNGJhMmY4ZjFmODNi
LzEvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBHQYIKwYBBQUHAQcBAf8EggEMMIIBCDCCAQQEAgABMIH9
AwMDAogDBAclCoADAwElDAMDACWeMAoDAwRPkAMDAE+UAwMCUBgwCgMDAVAeAwMD
UCADAwBQOzAKAwMFUSADAwBRLAMDA1MgAwMAUy8wCgMDAlM0AwMGUwADAwJYADAK
AwMDWAgDAwBYEAMDA1gYMAoDAwBfeQMDB18AAwMCsFAwCgMDALBVAwMDsFADBADA
ZQEDAwDBmQMEAMJF4QMEAMKzIgMEAMKzcAMEAMLgnQMDAMM1AwQBwzdOAwQAwzdu
AwQAwzkFAwQAwzkbAwMAw0wDBADDTTkDBALDTYQDAwDD6wMDANSqAwMC1WADBAXZ
C2ADBADZfLYDAwHZfjANBgkqhkiG9w0BAQsFAAOCAQEAmp6Nrdu13iW1aH50EKQD
dLph6xQ5KLceHApTlgeWubsIhs0zF9CoLutb4b+ECl4pY03sYPcFWRtQkuKqjQEa
J6qMRNXJkgYfa1FtSk+Gsn5ZeCYlBckJFddCOjJjfdCANJZF1B6MReDRJqJNVxzG
CkRR4RfZiO27XdxHrPIMqbPkD+3LLcrKHhp22C6tFhdDgU1Z/z/jypLJJtQO7YCW
NaHUseDc0fE7+hAP4eWNWuYKoKja+jWHu3emdS0/Cf1h8rE5P+85CQzifE1xBlUq
lZMz2drB5cMrU+i2j6g4uG2ONNLyXZGEXJmceAbkb4Offc9JK31/hvTljRN08p40
Gg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:43 2025 by rpki-client