Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/N4BbmlY-gNRmBS3mB-9Mrw0CKKo.roa
File: N4BbmlY-gNRmBS3mB-9Mrw0CKKo.roa (raw, json)
Hash identifier: YUQ7XXMgNsCDjSMA8nc7oNVpa2st86LnY9oiGsrjy50=
Subject key identifier: 37:80:5B:9A:56:3E:80:D4:66:05:2D:E6:07:EF:4C:AF:0D:02:28:AA
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 01902A9AEC85D2122467EB925AC1996413AD
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/N4BbmlY-gNRmBS3mB-9Mrw0CKKo.roa
Signing time: Tue 18 Jun 2024 09:08:34 +0000
ROA not before: Tue 18 Jun 2024 09:08:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3352
IP address blocks: 2.136.0.0/16 maxlen: 16
2.137.0.0/16 maxlen: 16
2.138.0.0/16 maxlen: 16
2.139.0.0/16 maxlen: 16
79.144.0.0/16 maxlen: 16
79.145.0.0/16 maxlen: 16
79.146.0.0/16 maxlen: 16
79.147.0.0/16 maxlen: 16
79.148.0.0/16 maxlen: 16
80.24.0.0/16 maxlen: 16
80.25.0.0/16 maxlen: 16
80.30.0.0/16 maxlen: 16
80.31.0.0/16 maxlen: 16
80.32.0.0/16 maxlen: 16
80.33.0.0/16 maxlen: 16
80.34.0.0/16 maxlen: 16
80.35.0.0/16 maxlen: 16
80.36.0.0/16 maxlen: 16
80.37.0.0/16 maxlen: 16
80.38.0.0/16 maxlen: 16
80.39.0.0/16 maxlen: 16
80.59.0.0/16 maxlen: 16
81.32.0.0/16 maxlen: 16
81.33.0.0/16 maxlen: 16
81.34.0.0/16 maxlen: 16
81.35.0.0/16 maxlen: 16
81.36.0.0/16 maxlen: 16
81.37.0.0/16 maxlen: 16
81.38.0.0/16 maxlen: 16
81.39.0.0/16 maxlen: 16
81.40.0.0/16 maxlen: 16
81.41.0.0/16 maxlen: 16
81.42.0.0/16 maxlen: 16
81.43.0.0/16 maxlen: 16
81.44.0.0/16 maxlen: 16
83.32.0.0/16 maxlen: 16
83.33.0.0/16 maxlen: 16
83.34.0.0/16 maxlen: 16
83.35.0.0/16 maxlen: 16
83.36.0.0/16 maxlen: 16
83.37.0.0/16 maxlen: 16
83.38.0.0/16 maxlen: 16
83.39.0.0/16 maxlen: 16
83.47.0.0/16 maxlen: 16
83.52.0.0/16 maxlen: 16
83.53.0.0/16 maxlen: 16
83.54.0.0/16 maxlen: 16
83.55.0.0/16 maxlen: 16
83.56.0.0/16 maxlen: 16
83.57.0.0/16 maxlen: 16
83.58.0.0/16 maxlen: 16
83.59.0.0/16 maxlen: 16
83.60.0.0/16 maxlen: 16
83.61.0.0/16 maxlen: 16
83.63.0.0/16 maxlen: 16
88.0.0.0/16 maxlen: 16
88.1.0.0/16 maxlen: 16
88.2.0.0/16 maxlen: 16
88.3.0.0/16 maxlen: 16
88.8.0.0/16 maxlen: 16
88.9.0.0/16 maxlen: 16
88.10.0.0/16 maxlen: 16
88.11.0.0/16 maxlen: 16
88.12.0.0/16 maxlen: 16
88.13.0.0/16 maxlen: 16
88.14.0.0/16 maxlen: 16
88.15.0.0/16 maxlen: 16
88.16.0.0/16 maxlen: 16
88.24.0.0/16 maxlen: 16
88.25.0.0/16 maxlen: 16
88.27.0.0/16 maxlen: 16
88.30.0.0/16 maxlen: 16
192.101.1.0/24 maxlen: 24
194.69.225.0/24 maxlen: 24
194.179.34.0/24 maxlen: 24
194.179.112.0/24 maxlen: 24
194.224.157.0/24 maxlen: 24
195.53.0.0/16 maxlen: 16
195.53.69.0/24 maxlen: 24
195.53.193.0/24 maxlen: 24
195.53.218.0/23 maxlen: 23
195.55.78.0/24 maxlen: 24
195.55.79.0/24 maxlen: 24
195.55.110.0/24 maxlen: 24
195.57.5.0/24 maxlen: 24
195.57.27.0/24 maxlen: 24
195.76.0.0/16 maxlen: 16
195.76.141.0/24 maxlen: 24
195.76.164.0/24 maxlen: 24
195.77.57.0/24 maxlen: 24
195.77.132.0/22 maxlen: 22
195.77.132.0/23 maxlen: 23
195.77.132.0/24 maxlen: 24
195.235.0.0/16 maxlen: 16
195.235.95.0/24 maxlen: 24
195.235.188.0/24 maxlen: 24
195.235.225.0/24 maxlen: 24
195.235.241.0/24 maxlen: 24
195.235.242.0/24 maxlen: 24
212.170.0.0/16 maxlen: 16
212.170.156.0/24 maxlen: 24
212.170.159.0/24 maxlen: 24
213.96.0.0/16 maxlen: 16
213.99.44.0/24 maxlen: 24
213.99.59.0/24 maxlen: 24
217.124.182.0/24 maxlen: 24
217.126.0.0/16 maxlen: 16
217.127.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Wed 07 Aug 2024 07:40:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:2a:9a:ec:85:d2:12:24:67:eb:92:5a:c1:99:64:13:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Jun 18 09:08:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=37805b9a563e80d466052de607ef4caf0d0228aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:12:31:0d:a5:f5:f1:a8:dd:13:1d:3b:17:a8:
4c:9c:f6:91:f8:55:30:01:51:44:6f:55:8f:39:b5:
8b:40:f3:0a:cb:10:72:85:e5:39:4e:ac:22:ef:66:
09:46:5c:9a:c1:47:e5:19:61:71:d5:04:bb:f0:6a:
e4:26:35:fb:82:84:28:12:f1:ae:80:7e:e4:0d:7d:
66:19:94:93:be:e7:c3:44:03:72:cf:00:49:af:fb:
cc:23:be:69:93:c8:54:7b:87:52:8c:58:12:e4:2d:
8c:85:0b:e1:6d:0f:95:d8:09:54:c7:a3:82:ef:7f:
28:24:59:8a:86:c8:dc:5c:cb:5c:df:98:a5:27:95:
3b:bb:e1:2a:8f:8a:0a:6e:b8:05:0c:e3:8b:a7:b6:
0f:22:e6:2a:9f:6d:32:bb:d1:58:47:2a:16:bc:c9:
73:31:02:49:1b:b5:e4:12:76:98:a2:39:0f:77:89:
f4:b6:56:b4:74:6c:5f:73:e0:b4:c8:9d:f5:5a:ca:
e2:d2:3e:53:3b:ba:be:45:98:c4:44:2f:18:6e:db:
25:01:f6:c4:94:d8:75:3b:87:9f:72:ae:4b:88:f0:
65:55:18:a8:e2:b2:f3:94:8c:99:36:ac:87:d3:ff:
2c:8c:0c:2d:6c:ef:3e:11:ea:61:e1:18:60:19:69:
89:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:80:5B:9A:56:3E:80:D4:66:05:2D:E6:07:EF:4C:AF:0D:02:28:AA
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/N4BbmlY-gNRmBS3mB-9Mrw0CKKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.136.0.0/14
79.144.0.0-79.148.255.255
80.24.0.0/15
80.30.0.0-80.39.255.255
80.59.0.0/16
81.32.0.0-81.44.255.255
83.32.0.0/13
83.47.0.0/16
83.52.0.0-83.61.255.255
83.63.0.0/16
88.0.0.0/14
88.8.0.0-88.16.255.255
88.24.0.0/15
88.27.0.0/16
88.30.0.0/16
192.101.1.0/24
194.69.225.0/24
194.179.34.0/24
194.179.112.0/24
194.224.157.0/24
195.53.0.0/16
195.55.78.0/23
195.55.110.0/24
195.57.5.0/24
195.57.27.0/24
195.76.0.0/16
195.77.57.0/24
195.77.132.0/22
195.235.0.0/16
212.170.0.0/16
213.96.0.0/16
213.99.44.0/24
213.99.59.0/24
217.124.182.0/24
217.126.0.0/15
Signature Algorithm: sha256WithRSAEncryption
17:6b:b2:5a:43:68:94:a0:53:2c:d4:10:8f:e1:22:9a:84:3b:
c5:78:5b:f8:01:e6:b6:10:74:65:94:0d:c8:66:ea:91:80:05:
5b:90:62:08:70:12:21:58:3e:42:cf:4b:7d:85:e0:84:bc:6d:
0f:06:86:9a:bb:6b:f5:c0:6b:f5:af:14:ce:b3:71:e2:2b:08:
4e:51:3d:62:2a:9d:ce:da:65:67:b7:e4:fb:22:e6:a3:8f:b5:
43:0a:d6:49:7c:07:79:2f:ce:62:29:f6:6c:b4:6f:67:d2:03:
02:44:ca:b0:49:f3:81:b2:57:73:1e:b8:87:e5:98:8c:8c:86:
ed:be:99:50:83:55:f5:da:31:8a:7a:3a:ef:48:ff:96:93:25:
d2:8d:6f:e6:e3:06:7b:1b:b7:7e:83:fd:78:7b:ea:93:f8:d8:
97:02:0e:21:c5:e3:41:30:b0:84:f4:da:6e:ff:f2:a9:04:b8:
7e:5d:88:c5:be:10:75:e8:10:9d:1d:ba:53:72:f5:d8:72:29:
0a:2e:5f:63:04:0a:4f:ca:20:8e:c9:1b:ca:3e:4b:4a:a4:97:
a2:a4:0f:4c:dd:98:23:5a:3c:36:5c:0d:79:79:08:60:5a:66:
2d:51:54:29:11:17:a0:c1:5b:f5:b8:2f:d4:62:ff:16:74:31:
7b:9f:73:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 17:38:53 2025 by rpki-client