Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/XgT44PFj9rWodjmJLACy5OIiw5o.roa
File: XgT44PFj9rWodjmJLACy5OIiw5o.roa (raw, json)
Hash identifier: JxhN9FEgxkchxZF09wBWypfTy+DVjV49wi+HoDAHTv8=
Subject key identifier: 5E:04:F8:E0:F1:63:F6:B5:A8:76:39:89:2C:00:B2:E4:E2:22:C3:9A
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 01912C1D03B7653197C3383533A31FC6D999
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/XgT44PFj9rWodjmJLACy5OIiw5o.roa
Signing time: Wed 07 Aug 2024 09:13:04 +0000
ROA not before: Wed 07 Aug 2024 09:13:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3352
IP address blocks: 2.136.0.0/16 maxlen: 16
2.137.0.0/16 maxlen: 16
2.138.0.0/16 maxlen: 16
2.139.0.0/16 maxlen: 16
79.144.0.0/16 maxlen: 16
79.145.0.0/16 maxlen: 16
79.146.0.0/16 maxlen: 16
79.147.0.0/16 maxlen: 16
79.148.0.0/16 maxlen: 16
80.24.0.0/16 maxlen: 16
80.25.0.0/16 maxlen: 16
80.30.0.0/16 maxlen: 16
80.31.0.0/16 maxlen: 16
80.32.0.0/16 maxlen: 16
80.33.0.0/16 maxlen: 16
80.34.0.0/16 maxlen: 16
80.35.0.0/16 maxlen: 16
80.36.0.0/16 maxlen: 16
80.37.0.0/16 maxlen: 16
80.38.0.0/16 maxlen: 16
80.39.0.0/16 maxlen: 16
80.59.0.0/16 maxlen: 16
81.32.0.0/16 maxlen: 16
81.33.0.0/16 maxlen: 16
81.34.0.0/16 maxlen: 16
81.35.0.0/16 maxlen: 16
81.36.0.0/16 maxlen: 16
81.37.0.0/16 maxlen: 16
81.38.0.0/16 maxlen: 16
81.39.0.0/16 maxlen: 16
81.40.0.0/16 maxlen: 16
81.41.0.0/16 maxlen: 16
81.42.0.0/16 maxlen: 16
81.43.0.0/16 maxlen: 16
81.44.0.0/16 maxlen: 16
83.32.0.0/16 maxlen: 16
83.33.0.0/16 maxlen: 16
83.34.0.0/16 maxlen: 16
83.35.0.0/16 maxlen: 16
83.36.0.0/16 maxlen: 16
83.37.0.0/16 maxlen: 16
83.38.0.0/16 maxlen: 16
83.39.0.0/16 maxlen: 16
83.47.0.0/16 maxlen: 16
83.52.0.0/16 maxlen: 16
83.53.0.0/16 maxlen: 16
83.54.0.0/16 maxlen: 16
83.55.0.0/16 maxlen: 16
83.56.0.0/16 maxlen: 16
83.57.0.0/16 maxlen: 16
83.58.0.0/16 maxlen: 16
83.59.0.0/16 maxlen: 16
83.60.0.0/16 maxlen: 16
83.61.0.0/16 maxlen: 16
83.63.0.0/16 maxlen: 16
88.0.0.0/16 maxlen: 16
88.1.0.0/16 maxlen: 16
88.2.0.0/16 maxlen: 16
88.3.0.0/16 maxlen: 16
88.8.0.0/16 maxlen: 16
88.9.0.0/16 maxlen: 16
88.10.0.0/16 maxlen: 16
88.11.0.0/16 maxlen: 16
88.12.0.0/16 maxlen: 16
88.13.0.0/16 maxlen: 16
88.14.0.0/16 maxlen: 16
88.15.0.0/16 maxlen: 16
88.16.0.0/16 maxlen: 16
88.24.0.0/16 maxlen: 16
88.25.0.0/16 maxlen: 16
88.27.0.0/16 maxlen: 16
88.30.0.0/16 maxlen: 16
192.101.1.0/24 maxlen: 24
194.69.225.0/24 maxlen: 24
194.179.34.0/24 maxlen: 24
194.179.112.0/24 maxlen: 24
194.224.157.0/24 maxlen: 24
195.53.0.0/16 maxlen: 16
195.53.69.0/24 maxlen: 24
195.53.193.0/24 maxlen: 24
195.53.218.0/23 maxlen: 23
195.55.78.0/24 maxlen: 24
195.55.79.0/24 maxlen: 24
195.55.110.0/24 maxlen: 24
195.57.5.0/24 maxlen: 24
195.57.27.0/24 maxlen: 24
195.76.0.0/16 maxlen: 16
195.76.141.0/24 maxlen: 24
195.76.164.0/24 maxlen: 24
195.77.57.0/24 maxlen: 24
195.77.132.0/22 maxlen: 22
195.77.132.0/23 maxlen: 23
195.77.132.0/24 maxlen: 24
195.235.0.0/16 maxlen: 16
195.235.95.0/24 maxlen: 24
195.235.188.0/24 maxlen: 24
195.235.225.0/24 maxlen: 24
195.235.241.0/24 maxlen: 24
195.235.242.0/24 maxlen: 24
212.170.0.0/16 maxlen: 16
212.170.156.0/24 maxlen: 24
212.170.159.0/24 maxlen: 24
213.96.0.0/16 maxlen: 16
213.97.0.0/16 maxlen: 16
213.98.0.0/16 maxlen: 16
213.99.0.0/16 maxlen: 24
213.99.44.0/24 maxlen: 24
213.99.59.0/24 maxlen: 24
217.124.182.0/24 maxlen: 24
217.126.0.0/16 maxlen: 16
217.127.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Wed 07 Aug 2024 10:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:2c:1d:03:b7:65:31:97:c3:38:35:33:a3:1f:c6:d9:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Aug 7 09:13:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5e04f8e0f163f6b5a87639892c00b2e4e222c39a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7b:31:69:a1:41:97:8b:9b:69:c6:c3:05:46:
46:e4:81:8f:e1:c8:c8:45:36:82:7f:5a:e1:40:d1:
64:32:b7:b2:a6:44:6a:15:47:1a:03:5f:80:4b:20:
94:bf:43:07:6d:9f:95:40:bf:c6:31:34:f4:46:60:
f4:8d:68:0d:bc:e7:6c:81:5b:28:2f:cf:48:74:c9:
e5:1f:ed:3d:3e:21:5c:e4:5b:c8:fa:2a:dc:fb:8b:
3c:a0:1f:48:bc:ca:28:df:e1:1f:10:f5:79:08:6e:
df:6b:0c:6a:2e:36:22:51:19:be:b1:8d:a3:02:f5:
e4:a7:f4:28:9d:6d:81:df:f3:0f:89:f8:1a:88:90:
63:8f:90:7a:d3:99:26:2a:23:ec:17:eb:02:ac:07:
ba:41:d4:ff:d3:53:ba:b7:a1:66:29:4b:b1:93:ea:
ad:f7:22:57:03:10:94:81:c5:00:b5:73:ad:e0:4e:
04:ab:04:1c:7d:91:cb:fe:2a:a5:ec:c5:69:68:88:
a5:49:ee:0e:4f:c1:e3:20:eb:42:c6:ff:79:85:ea:
33:f1:68:e6:22:46:4b:27:72:45:d7:80:0e:74:74:
8d:c1:d6:0a:45:e4:26:b4:fa:88:d1:0a:93:e1:40:
b8:5f:44:24:9f:d2:16:13:67:4f:7b:3c:e0:70:00:
e2:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:04:F8:E0:F1:63:F6:B5:A8:76:39:89:2C:00:B2:E4:E2:22:C3:9A
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/XgT44PFj9rWodjmJLACy5OIiw5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.136.0.0/14
79.144.0.0-79.148.255.255
80.24.0.0/15
80.30.0.0-80.39.255.255
80.59.0.0/16
81.32.0.0-81.44.255.255
83.32.0.0/13
83.47.0.0/16
83.52.0.0-83.61.255.255
83.63.0.0/16
88.0.0.0/14
88.8.0.0-88.16.255.255
88.24.0.0/15
88.27.0.0/16
88.30.0.0/16
192.101.1.0/24
194.69.225.0/24
194.179.34.0/24
194.179.112.0/24
194.224.157.0/24
195.53.0.0/16
195.55.78.0/23
195.55.110.0/24
195.57.5.0/24
195.57.27.0/24
195.76.0.0/16
195.77.57.0/24
195.77.132.0/22
195.235.0.0/16
212.170.0.0/16
213.96.0.0/14
217.124.182.0/24
217.126.0.0/15
Signature Algorithm: sha256WithRSAEncryption
81:1e:4b:6d:4e:a3:1e:c8:bb:03:51:c8:8d:53:2f:27:de:f2:
74:84:17:83:e5:09:00:cc:8b:b5:8c:7a:cc:54:6b:ef:82:8a:
b3:9c:1a:5d:36:29:f7:eb:68:86:10:1e:fc:f4:38:87:3d:e0:
03:b2:86:45:c5:67:ac:0d:fb:41:de:e6:59:fc:c3:30:d6:ee:
b0:fb:ba:4b:4c:95:16:65:4e:f6:10:b2:b5:bc:ad:38:63:82:
84:6d:70:95:bc:a7:6c:d3:2f:66:ae:35:68:ee:0a:94:94:e0:
34:a0:83:af:e6:5d:66:59:e1:6f:d0:bf:e1:84:f9:b9:c8:ee:
7b:48:86:7a:1e:f6:95:17:49:99:1d:4a:d4:f2:92:ba:1d:6d:
2e:be:85:a2:8e:f8:7d:8b:7e:14:0a:06:10:98:b2:d6:cf:03:
97:2b:0c:2a:49:cb:a7:db:6c:55:3a:9c:7c:52:4e:c9:7e:84:
30:4a:1a:24:39:b7:4f:bd:24:b0:0f:e4:7f:8d:e0:43:15:d0:
e5:01:b1:7f:c7:04:9c:ae:1c:97:d8:73:7d:5e:ba:dc:82:ed:
bd:f1:c1:3f:ef:a7:fc:83:4c:9d:0c:39:c7:67:43:f2:23:09:
ab:41:5b:95:a9:16:f2:3a:1e:af:35:aa:27:36:6d:ca:2d:a7:
1b:74:24:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:46:23 2025 by rpki-client