Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/TDzWssAaF9I_H0OaDoDxBUwehpo.roa
File: TDzWssAaF9I_H0OaDoDxBUwehpo.roa (raw, json)
Hash identifier: nsUkaFZF/I7QFj4TopED3a/gUL5F9//Nb08OuZ9D0pU=
Subject key identifier: 4C:3C:D6:B2:C0:1A:17:D2:3F:1F:43:9A:0E:80:F1:05:4C:1E:86:9A
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 0192418E781A57CE47911C0ED32A984853AA
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/TDzWssAaF9I_H0OaDoDxBUwehpo.roa
Signing time: Mon 30 Sep 2024 06:11:48 +0000
ROA not before: Mon 30 Sep 2024 06:11:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3352
IP address blocks: 2.136.0.0/16 maxlen: 16
2.137.0.0/16 maxlen: 16
2.138.0.0/16 maxlen: 16
2.139.0.0/16 maxlen: 16
2.140.0.0/16 maxlen: 24
2.141.0.0/16 maxlen: 24
2.142.0.0/16 maxlen: 24
2.143.0.0/16 maxlen: 24
5.205.0.0/16 maxlen: 24
37.10.128.0/17 maxlen: 24
37.12.0.0/16 maxlen: 24
37.13.0.0/16 maxlen: 24
37.158.0.0/16 maxlen: 24
79.144.0.0/16 maxlen: 16
79.145.0.0/16 maxlen: 16
79.146.0.0/16 maxlen: 16
79.147.0.0/16 maxlen: 16
79.148.0.0/16 maxlen: 16
79.149.0.0/16 maxlen: 24
80.24.0.0/16 maxlen: 16
80.25.0.0/16 maxlen: 16
80.26.0.0/16 maxlen: 16
80.27.0.0/16 maxlen: 24
80.28.0.0/16 maxlen: 16
80.29.0.0/16 maxlen: 24
80.30.0.0/16 maxlen: 16
80.31.0.0/16 maxlen: 16
80.32.0.0/16 maxlen: 16
80.33.0.0/16 maxlen: 16
80.34.0.0/16 maxlen: 16
80.35.0.0/16 maxlen: 16
80.36.0.0/16 maxlen: 16
80.37.0.0/16 maxlen: 16
80.38.0.0/16 maxlen: 16
80.39.0.0/16 maxlen: 16
80.58.0.0/16 maxlen: 16
80.59.0.0/16 maxlen: 16
81.32.0.0/16 maxlen: 16
81.33.0.0/16 maxlen: 16
81.34.0.0/16 maxlen: 16
81.35.0.0/16 maxlen: 16
81.36.0.0/16 maxlen: 16
81.37.0.0/16 maxlen: 16
81.38.0.0/16 maxlen: 16
81.39.0.0/16 maxlen: 16
81.40.0.0/16 maxlen: 16
81.41.0.0/16 maxlen: 16
81.42.0.0/16 maxlen: 16
81.43.0.0/16 maxlen: 16
81.44.0.0/16 maxlen: 16
81.45.0.0/16 maxlen: 16
81.46.0.0/16 maxlen: 16
81.47.0.0/16 maxlen: 24
83.32.0.0/16 maxlen: 16
83.33.0.0/16 maxlen: 16
83.34.0.0/16 maxlen: 16
83.35.0.0/16 maxlen: 16
83.36.0.0/16 maxlen: 16
83.37.0.0/16 maxlen: 16
83.38.0.0/16 maxlen: 16
83.39.0.0/16 maxlen: 16
83.47.0.0/16 maxlen: 16
83.48.0.0/16 maxlen: 24
83.52.0.0/16 maxlen: 16
83.53.0.0/16 maxlen: 16
83.54.0.0/16 maxlen: 16
83.55.0.0/16 maxlen: 16
83.56.0.0/16 maxlen: 16
83.57.0.0/16 maxlen: 16
83.58.0.0/16 maxlen: 16
83.59.0.0/16 maxlen: 16
83.60.0.0/16 maxlen: 16
83.61.0.0/16 maxlen: 16
83.62.0.0/16 maxlen: 21
83.63.0.0/16 maxlen: 16
88.0.0.0/16 maxlen: 16
88.1.0.0/16 maxlen: 16
88.2.0.0/16 maxlen: 16
88.3.0.0/16 maxlen: 16
88.8.0.0/16 maxlen: 16
88.9.0.0/16 maxlen: 16
88.10.0.0/16 maxlen: 16
88.11.0.0/16 maxlen: 16
88.12.0.0/16 maxlen: 16
88.13.0.0/16 maxlen: 16
88.14.0.0/16 maxlen: 16
88.15.0.0/16 maxlen: 16
88.16.0.0/16 maxlen: 16
88.24.0.0/16 maxlen: 16
88.25.0.0/16 maxlen: 16
88.26.0.0/16 maxlen: 16
88.27.0.0/16 maxlen: 16
88.28.0.0/16 maxlen: 24
88.29.0.0/16 maxlen: 24
88.30.0.0/16 maxlen: 16
88.31.0.0/16 maxlen: 24
95.121.0.0/16 maxlen: 16
95.122.0.0/16 maxlen: 16
95.123.0.0/16 maxlen: 16
95.124.0.0/16 maxlen: 24
95.125.0.0/16 maxlen: 24
95.126.0.0/16 maxlen: 24
95.127.0.0/16 maxlen: 24
176.80.0.0/16 maxlen: 24
176.81.0.0/16 maxlen: 16
176.82.0.0/16 maxlen: 24
176.83.0.0/16 maxlen: 24
176.85.0.0/16 maxlen: 16
176.86.0.0/16 maxlen: 16
176.87.0.0/16 maxlen: 24
192.101.1.0/24 maxlen: 24
193.152.0.0/16 maxlen: 24
193.153.0.0/16 maxlen: 16
194.69.225.0/24 maxlen: 24
194.179.0.0/17 maxlen: 17
194.179.0.0/18 maxlen: 18
194.179.34.0/24 maxlen: 24
194.179.64.0/18 maxlen: 18
194.179.112.0/24 maxlen: 24
194.224.0.0/16 maxlen: 16
194.224.157.0/24 maxlen: 24
195.53.0.0/16 maxlen: 16
195.53.193.0/24 maxlen: 24
195.53.218.0/23 maxlen: 23
195.55.0.0/16 maxlen: 16
195.55.78.0/24 maxlen: 24
195.55.79.0/24 maxlen: 24
195.55.110.0/24 maxlen: 24
195.57.0.0/16 maxlen: 16
195.57.5.0/24 maxlen: 24
195.57.27.0/24 maxlen: 24
195.76.0.0/16 maxlen: 16
195.76.141.0/24 maxlen: 24
195.76.164.0/24 maxlen: 24
195.77.0.0/16 maxlen: 16
195.77.57.0/24 maxlen: 24
195.77.132.0/22 maxlen: 22
195.77.132.0/23 maxlen: 23
195.77.132.0/24 maxlen: 24
195.235.0.0/16 maxlen: 16
195.235.95.0/24 maxlen: 24
195.235.188.0/24 maxlen: 24
195.235.225.0/24 maxlen: 24
195.235.241.0/24 maxlen: 24
195.235.242.0/24 maxlen: 24
212.170.0.0/16 maxlen: 16
212.170.156.0/24 maxlen: 24
212.170.159.0/24 maxlen: 24
213.0.0.0/16 maxlen: 16
213.0.128.0/17 maxlen: 17
213.0.186.0/24 maxlen: 24
213.4.0.0/16 maxlen: 16
213.96.0.0/16 maxlen: 16
213.97.0.0/16 maxlen: 16
213.98.0.0/16 maxlen: 16
213.99.0.0/16 maxlen: 24
213.99.44.0/24 maxlen: 24
213.99.59.0/24 maxlen: 24
217.11.96.0/19 maxlen: 19
217.124.0.0/16 maxlen: 16
217.124.182.0/24 maxlen: 24
217.125.0.0/16 maxlen: 16
217.125.159.0/24 maxlen: 24
217.126.0.0/16 maxlen: 16
217.127.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Wed 16 Oct 2024 05:40:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:41:8e:78:1a:57:ce:47:91:1c:0e:d3:2a:98:48:53:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Sep 30 06:11:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4c3cd6b2c01a17d23f1f439a0e80f1054c1e869a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4e:f4:28:16:83:2b:2f:44:bd:60:ca:87:28:
33:1b:f1:02:6e:bc:95:21:20:31:f4:0e:ea:8d:cb:
0f:3f:f4:a8:b5:fc:5e:80:14:ae:d3:04:3d:6d:17:
cf:37:53:aa:45:f5:d5:08:ab:17:2c:e5:e4:55:42:
07:d3:e1:fd:10:52:fa:11:ea:64:e0:a1:61:9e:f9:
1b:ee:cb:3c:e1:c0:39:b4:c3:70:64:f4:6c:88:a2:
6a:47:e7:dc:1b:b9:03:40:d6:1d:9e:65:1c:59:8a:
1f:66:50:77:4b:11:87:7a:80:94:ce:97:6e:b7:6a:
fc:e1:cf:5d:2b:6c:f4:1a:22:96:d0:01:6e:b9:cb:
31:2f:f0:ca:8b:1e:17:08:e8:53:9a:31:f7:f5:2e:
ea:fe:45:08:c3:fe:56:75:52:38:e8:b2:ea:5b:78:
16:51:b7:25:f4:79:b8:68:d5:9a:3b:19:db:1e:a2:
3a:1f:35:9d:11:18:a7:51:1e:93:4a:c6:fb:0e:9b:
99:6c:f5:5c:11:34:90:4f:2f:56:2e:e2:cd:b9:b2:
38:80:8a:a6:c1:9c:56:80:1c:5e:ff:0b:b1:61:11:
83:03:27:f4:74:e7:92:5d:48:87:62:a2:52:39:8a:
8b:1c:ee:c7:9d:16:3e:b8:07:82:71:bf:4e:7b:9e:
0e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:3C:D6:B2:C0:1A:17:D2:3F:1F:43:9A:0E:80:F1:05:4C:1E:86:9A
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/TDzWssAaF9I_H0OaDoDxBUwehpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.136.0.0/13
5.205.0.0/16
37.10.128.0/17
37.12.0.0/15
37.158.0.0/16
79.144.0.0-79.149.255.255
80.24.0.0-80.39.255.255
80.58.0.0/15
81.32.0.0/12
83.32.0.0/13
83.47.0.0-83.48.255.255
83.52.0.0-83.63.255.255
88.0.0.0/14
88.8.0.0-88.16.255.255
88.24.0.0/13
95.121.0.0-95.127.255.255
176.80.0.0/14
176.85.0.0-176.87.255.255
192.101.1.0/24
193.152.0.0/15
194.69.225.0/24
194.179.0.0/17
194.224.0.0/16
195.53.0.0/16
195.55.0.0/16
195.57.0.0/16
195.76.0.0/15
195.235.0.0/16
212.170.0.0/16
213.0.0.0/16
213.4.0.0/16
213.96.0.0/14
217.11.96.0/19
217.124.0.0/14
Signature Algorithm: sha256WithRSAEncryption
5e:2c:e6:fb:a4:76:25:32:73:10:a9:ca:40:b7:79:d7:11:a9:
3b:32:8d:87:cd:26:bf:39:20:94:3c:0e:80:25:4a:8f:ee:2a:
30:a4:e9:cb:40:09:9e:2a:87:f4:d4:da:35:33:c5:ff:5c:56:
17:b9:c0:c8:d1:07:c2:5f:b9:a5:ab:9d:92:39:ee:e9:d4:b4:
14:a6:cc:2b:2f:53:65:e8:60:05:77:15:28:22:a4:8b:fa:ee:
8c:0a:07:d7:9e:e2:b9:f2:94:6d:6b:2b:a2:4f:ed:ab:f7:74:
82:53:f7:90:f8:95:a2:de:80:78:2b:d9:6f:c2:0d:c3:26:dd:
16:0b:c3:d4:d0:62:60:57:9c:96:dd:ea:25:2b:f8:6e:69:a0:
c0:6c:64:9f:50:65:dc:9e:4e:ff:6f:06:14:d0:fa:9c:00:f0:
b3:82:d2:34:5a:f9:58:e7:a7:86:37:6c:99:cc:9f:cc:88:78:
4a:dd:36:00:27:b3:32:e2:90:ad:d9:7f:63:a2:a9:77:cb:77:
cc:6c:ce:3c:09:4c:9a:90:ef:f3:0e:c4:8a:41:fe:ac:a9:27:
58:dd:ce:0e:f1:92:1b:3e:6e:6b:78:72:d7:22:81:86:80:d0:
6e:9d:01:1e:50:ec:3b:bd:00:7b:05:b5:e5:ca:0d:b5:37:cb:
e6:48:eb:26
-----BEGIN CERTIFICATE-----
MIIF3DCCBMSgAwIBAgISAZJBjngaV85HkRwO0yqYSFOqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwN2Y1ZmUyNzQwYTJiNmRlNGMzNzA5ZDI5NjQxMTViM2M5
NjdkYTEwHhcNMjQwOTMwMDYxMTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YzNjZDZiMmMwMWExN2QyM2YxZjQzOWEwZTgwZjEwNTRjMWU4NjlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnk70KBaDKy9EvWDKhygzG/ECbryV
ISAx9A7qjcsPP/SotfxegBSu0wQ9bRfPN1OqRfXVCKsXLOXkVUIH0+H9EFL6Eepk
4KFhnvkb7ss84cA5tMNwZPRsiKJqR+fcG7kDQNYdnmUcWYofZlB3SxGHeoCUzpdu
t2r84c9dK2z0GiKW0AFuucsxL/DKix4XCOhTmjH39S7q/kUIw/5WdVI46LLqW3gW
Ubcl9Hm4aNWaOxnbHqI6HzWdERinUR6TSsb7DpuZbPVcETSQTy9WLuLNubI4gIqm
wZxWgBxe/wuxYRGDAyf0dOeSXUiHYqJSOYqLHO7HnRY+uAeCcb9Oe54OUQIDAQAB
o4IC6DCCAuQwHQYDVR0OBBYEFEw81rLAGhfSPx9Dmg6A8QVMHoaaMB8GA1UdIwQY
MBaAFDB/X+J0Citt5MNwnSlkEVs8ln2hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQt
NGJhMmY4ZjFmODNiLzEvVER6V3NzQWFGOUlfSDBPYURvRHhCVXdlaHBvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQtNGJhMmY4ZjFmODNi
LzEvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIH9BggrBgEFBQcBBwEB/wSB7TCB6jCB5wQCAAEwgeADAwMC
iAMDAAXNAwQHJQqAAwMBJQwDAwAlnjAKAwMET5ADAwFPlDAKAwMDUBgDAwNQIAMD
AVA6AwMEUSADAwNTIDAKAwMAUy8DAwBTMDAKAwMCUzQDAwZTAAMDAlgAMAoDAwNY
CAMDAFgQAwMDWBgwCgMDAF95AwMHXwADAwKwUDAKAwMAsFUDAwOwUAMEAMBlAQMD
AcGYAwQAwkXhAwQHwrMAAwMAwuADAwDDNQMDAMM3AwMAwzkDAwHDTAMDAMPrAwMA
1KoDAwDVAAMDANUEAwMC1WADBAXZC2ADAwLZfDANBgkqhkiG9w0BAQsFAAOCAQEA
Xizm+6R2JTJzEKnKQLd51xGpOzKNh80mvzkglDwOgCVKj+4qMKTpy0AJniqH9NTa
NTPF/1xWF7nAyNEHwl+5paudkjnu6dS0FKbMKy9TZehgBXcVKCKki/rujAoH157i
ufKUbWsrok/tq/d0glP3kPiVot6AeCvZb8INwybdFgvD1NBiYFeclt3qJSv4bmmg
wGxkn1Bl3J5O/28GFND6nADws4LSNFr5WOenhjdsmcyfzIh4St02ACezMuKQrdl/
Y6Kpd8t3zGzOPAlMmpDv8w7EikH+rKknWN3ODvGSGz5ua3hy1yKBhoDQbp0BHlDs
O70AewW15coNtTfL5kjrJg==
-----END CERTIFICATE-----
Generated at Wed Oct 16 08:33:52 2024 by rpki-client on console-ams.rpki-client.org