Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/aMNRXDC4RYAZYvA9dqsjnOYjVCM.roa
File: aMNRXDC4RYAZYvA9dqsjnOYjVCM.roa (raw, json)
Hash identifier: p8C20Q9My44TYthV9vutj0E1SgZNel9zAiZX6BO3c4M=
Subject key identifier: 68:C3:51:5C:30:B8:45:80:19:62:F0:3D:76:AB:23:9C:E6:23:54:23
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 0191742C620F1D9DB2F6644527400285DD00
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/aMNRXDC4RYAZYvA9dqsjnOYjVCM.roa
Signing time: Wed 21 Aug 2024 09:02:31 +0000
ROA not before: Wed 21 Aug 2024 09:02:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3352
IP address blocks: 2.136.0.0/16 maxlen: 16
2.137.0.0/16 maxlen: 16
2.138.0.0/16 maxlen: 16
2.139.0.0/16 maxlen: 16
2.140.0.0/16 maxlen: 24
2.141.0.0/16 maxlen: 24
2.142.0.0/16 maxlen: 24
2.143.0.0/16 maxlen: 24
5.205.0.0/16 maxlen: 24
37.10.128.0/17 maxlen: 24
37.12.0.0/16 maxlen: 24
37.13.0.0/16 maxlen: 24
37.158.0.0/16 maxlen: 24
79.144.0.0/16 maxlen: 16
79.145.0.0/16 maxlen: 16
79.146.0.0/16 maxlen: 16
79.147.0.0/16 maxlen: 16
79.148.0.0/16 maxlen: 16
79.149.0.0/16 maxlen: 24
80.24.0.0/16 maxlen: 16
80.25.0.0/16 maxlen: 16
80.26.0.0/16 maxlen: 16
80.27.0.0/16 maxlen: 24
80.29.0.0/16 maxlen: 24
80.30.0.0/16 maxlen: 16
80.31.0.0/16 maxlen: 16
80.32.0.0/16 maxlen: 16
80.33.0.0/16 maxlen: 16
80.34.0.0/16 maxlen: 16
80.35.0.0/16 maxlen: 16
80.36.0.0/16 maxlen: 16
80.37.0.0/16 maxlen: 16
80.38.0.0/16 maxlen: 16
80.39.0.0/16 maxlen: 16
80.59.0.0/16 maxlen: 16
81.32.0.0/16 maxlen: 16
81.33.0.0/16 maxlen: 16
81.34.0.0/16 maxlen: 16
81.35.0.0/16 maxlen: 16
81.36.0.0/16 maxlen: 16
81.37.0.0/16 maxlen: 16
81.38.0.0/16 maxlen: 16
81.39.0.0/16 maxlen: 16
81.40.0.0/16 maxlen: 16
81.41.0.0/16 maxlen: 16
81.42.0.0/16 maxlen: 16
81.43.0.0/16 maxlen: 16
81.44.0.0/16 maxlen: 16
81.47.0.0/16 maxlen: 24
83.32.0.0/16 maxlen: 16
83.33.0.0/16 maxlen: 16
83.34.0.0/16 maxlen: 16
83.35.0.0/16 maxlen: 16
83.36.0.0/16 maxlen: 16
83.37.0.0/16 maxlen: 16
83.38.0.0/16 maxlen: 16
83.39.0.0/16 maxlen: 16
83.47.0.0/16 maxlen: 16
83.48.0.0/16 maxlen: 24
83.52.0.0/16 maxlen: 16
83.53.0.0/16 maxlen: 16
83.54.0.0/16 maxlen: 16
83.55.0.0/16 maxlen: 16
83.56.0.0/16 maxlen: 16
83.57.0.0/16 maxlen: 16
83.58.0.0/16 maxlen: 16
83.59.0.0/16 maxlen: 16
83.60.0.0/16 maxlen: 16
83.61.0.0/16 maxlen: 16
83.62.0.0/16 maxlen: 21
83.63.0.0/16 maxlen: 16
88.0.0.0/16 maxlen: 16
88.1.0.0/16 maxlen: 16
88.2.0.0/16 maxlen: 16
88.3.0.0/16 maxlen: 16
88.8.0.0/16 maxlen: 16
88.9.0.0/16 maxlen: 16
88.10.0.0/16 maxlen: 16
88.11.0.0/16 maxlen: 16
88.12.0.0/16 maxlen: 16
88.13.0.0/16 maxlen: 16
88.14.0.0/16 maxlen: 16
88.15.0.0/16 maxlen: 16
88.16.0.0/16 maxlen: 16
88.24.0.0/16 maxlen: 16
88.25.0.0/16 maxlen: 16
88.26.0.0/16 maxlen: 16
88.27.0.0/16 maxlen: 16
88.28.0.0/16 maxlen: 24
88.29.0.0/16 maxlen: 24
88.30.0.0/16 maxlen: 16
88.31.0.0/16 maxlen: 24
95.121.0.0/16 maxlen: 16
95.122.0.0/16 maxlen: 16
95.123.0.0/16 maxlen: 16
95.124.0.0/16 maxlen: 24
95.125.0.0/16 maxlen: 24
95.126.0.0/16 maxlen: 24
95.127.0.0/16 maxlen: 24
176.80.0.0/16 maxlen: 24
176.81.0.0/16 maxlen: 16
176.82.0.0/16 maxlen: 24
176.83.0.0/16 maxlen: 24
176.85.0.0/16 maxlen: 16
176.86.0.0/16 maxlen: 16
176.87.0.0/16 maxlen: 24
192.101.1.0/24 maxlen: 24
193.153.0.0/16 maxlen: 16
194.69.225.0/24 maxlen: 24
194.179.34.0/24 maxlen: 24
194.179.112.0/24 maxlen: 24
194.224.157.0/24 maxlen: 24
195.53.0.0/16 maxlen: 16
195.53.69.0/24 maxlen: 24
195.53.193.0/24 maxlen: 24
195.53.218.0/23 maxlen: 23
195.55.78.0/24 maxlen: 24
195.55.79.0/24 maxlen: 24
195.55.110.0/24 maxlen: 24
195.57.5.0/24 maxlen: 24
195.57.27.0/24 maxlen: 24
195.76.0.0/16 maxlen: 16
195.76.141.0/24 maxlen: 24
195.76.164.0/24 maxlen: 24
195.77.57.0/24 maxlen: 24
195.77.132.0/22 maxlen: 22
195.77.132.0/23 maxlen: 23
195.77.132.0/24 maxlen: 24
195.235.0.0/16 maxlen: 16
195.235.95.0/24 maxlen: 24
195.235.188.0/24 maxlen: 24
195.235.225.0/24 maxlen: 24
195.235.241.0/24 maxlen: 24
195.235.242.0/24 maxlen: 24
212.170.0.0/16 maxlen: 16
212.170.156.0/24 maxlen: 24
212.170.159.0/24 maxlen: 24
213.96.0.0/16 maxlen: 16
213.97.0.0/16 maxlen: 16
213.98.0.0/16 maxlen: 16
213.99.0.0/16 maxlen: 24
213.99.44.0/24 maxlen: 24
213.99.59.0/24 maxlen: 24
217.11.96.0/19 maxlen: 19
217.124.0.0/16 maxlen: 16
217.124.182.0/24 maxlen: 24
217.125.0.0/16 maxlen: 16
217.125.159.0/24 maxlen: 24
217.126.0.0/16 maxlen: 16
217.127.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 09 Sep 2024 12:58:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:74:2c:62:0f:1d:9d:b2:f6:64:45:27:40:02:85:dd:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Aug 21 09:02:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=68c3515c30b845801962f03d76ab239ce6235423
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:50:37:47:99:4c:9a:c7:68:0c:9f:fd:68:9b:
bc:bc:3b:30:a5:a8:a6:11:55:c0:ef:26:8d:8c:4c:
31:bd:5d:70:6f:54:ea:09:66:26:84:e9:3f:5f:64:
f0:53:29:59:80:8a:c5:a0:71:88:0f:eb:95:12:f8:
1b:1d:59:6d:c8:b5:95:f6:fc:4c:02:cc:bf:07:0a:
ce:bd:4e:64:44:72:f9:a9:6a:60:fe:fe:51:57:e4:
13:8a:bd:13:67:7b:7b:35:ad:50:35:9e:ef:ba:ca:
67:a1:28:67:b3:1e:03:db:28:eb:e8:b5:ed:ef:fe:
05:57:6d:f0:a0:b3:98:58:1c:47:d9:2d:22:5b:94:
79:35:2e:09:89:57:7d:94:60:b3:78:c8:64:a9:d9:
d9:08:4a:7a:72:be:9a:35:3a:5f:35:bd:2e:27:75:
af:18:60:cc:26:35:ba:46:c8:2b:ea:00:19:ae:b6:
a6:02:33:b4:dd:c0:ad:ef:8a:48:7c:8e:56:f3:18:
2e:61:93:40:23:5d:3f:bb:67:c2:de:3f:a8:88:10:
54:94:cd:e7:cc:77:08:4d:7a:8c:21:b8:c2:0b:ee:
31:cb:8f:d4:e5:bb:35:b9:c7:6f:d8:c5:90:62:bd:
d2:48:bf:48:6d:9a:94:c2:0b:8d:f7:d8:a3:24:ce:
3a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:C3:51:5C:30:B8:45:80:19:62:F0:3D:76:AB:23:9C:E6:23:54:23
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/aMNRXDC4RYAZYvA9dqsjnOYjVCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.136.0.0/13
5.205.0.0/16
37.10.128.0/17
37.12.0.0/15
37.158.0.0/16
79.144.0.0-79.149.255.255
80.24.0.0/14
80.29.0.0-80.39.255.255
80.59.0.0/16
81.32.0.0-81.44.255.255
81.47.0.0/16
83.32.0.0/13
83.47.0.0-83.48.255.255
83.52.0.0-83.63.255.255
88.0.0.0/14
88.8.0.0-88.16.255.255
88.24.0.0/13
95.121.0.0-95.127.255.255
176.80.0.0/14
176.85.0.0-176.87.255.255
192.101.1.0/24
193.153.0.0/16
194.69.225.0/24
194.179.34.0/24
194.179.112.0/24
194.224.157.0/24
195.53.0.0/16
195.55.78.0/23
195.55.110.0/24
195.57.5.0/24
195.57.27.0/24
195.76.0.0/16
195.77.57.0/24
195.77.132.0/22
195.235.0.0/16
212.170.0.0/16
213.96.0.0/14
217.11.96.0/19
217.124.0.0/14
Signature Algorithm: sha256WithRSAEncryption
4a:9f:74:f5:5a:10:8f:ab:57:25:bb:45:73:6d:d9:26:41:5f:
23:fb:f9:95:dd:d0:2c:63:c1:d9:66:b2:f0:51:08:83:f6:87:
cd:0d:57:95:89:53:cc:d2:45:12:2a:d3:50:c4:bd:38:8f:d4:
6d:34:8d:89:65:ec:bf:5d:41:5d:7e:ed:d0:33:ad:db:47:f0:
35:da:4b:77:d4:49:90:4b:e9:88:60:1f:98:df:b1:bc:c8:a6:
9a:f5:03:52:78:bc:17:9e:ce:cc:02:8e:03:bf:fb:44:91:32:
2a:86:b2:c6:a5:2c:33:b4:b2:77:7c:c0:4a:bc:a2:01:c4:94:
c2:1e:5d:67:29:57:8c:67:54:18:e2:2e:33:f3:5e:70:db:e8:
19:32:2b:ab:20:1b:a5:8c:1f:79:b4:19:e9:60:cd:cf:02:54:
6f:2a:c4:29:08:f0:ac:03:f3:fa:2c:f9:b1:5a:53:bb:71:a2:
d8:e3:bf:03:0c:24:4b:73:0f:35:19:ea:2d:df:70:d1:8e:f5:
0b:42:c8:63:d7:8a:d3:2c:6e:63:e7:11:b2:42:43:8a:ed:b2:
eb:b8:aa:cb:60:1d:83:b7:b2:c1:5f:7d:e2:bc:15:01:a6:e7:
32:b6:83:1a:db:95:97:56:d2:c8:62:ef:52:34:cb:a6:8d:b4:
c6:89:dc:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:12 2025 by rpki-client