Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/asRf29Urt0nrr8mc6Iz9qyUyYLo.roa
File: asRf29Urt0nrr8mc6Iz9qyUyYLo.roa (raw, json)
Hash identifier: IF1vPM/PEpdl+fsIsmkgM/NQchcbmg+5BpCLm7y6jR4=
Subject key identifier: 6A:C4:5F:DB:D5:2B:B7:49:EB:AF:C9:9C:E8:8C:FD:AB:25:32:60:BA
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 01912CABD721A878A38E1B49177999F12CCA
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/asRf29Urt0nrr8mc6Iz9qyUyYLo.roa
Signing time: Wed 07 Aug 2024 11:49:04 +0000
ROA not before: Wed 07 Aug 2024 11:49:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3352
IP address blocks: 2.136.0.0/16 maxlen: 16
2.137.0.0/16 maxlen: 16
2.138.0.0/16 maxlen: 16
2.139.0.0/16 maxlen: 16
79.144.0.0/16 maxlen: 16
79.145.0.0/16 maxlen: 16
79.146.0.0/16 maxlen: 16
79.147.0.0/16 maxlen: 16
79.148.0.0/16 maxlen: 16
80.24.0.0/16 maxlen: 16
80.25.0.0/16 maxlen: 16
80.30.0.0/16 maxlen: 16
80.31.0.0/16 maxlen: 16
80.32.0.0/16 maxlen: 16
80.33.0.0/16 maxlen: 16
80.34.0.0/16 maxlen: 16
80.35.0.0/16 maxlen: 16
80.36.0.0/16 maxlen: 16
80.37.0.0/16 maxlen: 16
80.38.0.0/16 maxlen: 16
80.39.0.0/16 maxlen: 16
80.59.0.0/16 maxlen: 16
81.32.0.0/16 maxlen: 16
81.33.0.0/16 maxlen: 16
81.34.0.0/16 maxlen: 16
81.35.0.0/16 maxlen: 16
81.36.0.0/16 maxlen: 16
81.37.0.0/16 maxlen: 16
81.38.0.0/16 maxlen: 16
81.39.0.0/16 maxlen: 16
81.40.0.0/16 maxlen: 16
81.41.0.0/16 maxlen: 16
81.42.0.0/16 maxlen: 16
81.43.0.0/16 maxlen: 16
81.44.0.0/16 maxlen: 16
83.32.0.0/16 maxlen: 16
83.33.0.0/16 maxlen: 16
83.34.0.0/16 maxlen: 16
83.35.0.0/16 maxlen: 16
83.36.0.0/16 maxlen: 16
83.37.0.0/16 maxlen: 16
83.38.0.0/16 maxlen: 16
83.39.0.0/16 maxlen: 16
83.47.0.0/16 maxlen: 16
83.52.0.0/16 maxlen: 16
83.53.0.0/16 maxlen: 16
83.54.0.0/16 maxlen: 16
83.55.0.0/16 maxlen: 16
83.56.0.0/16 maxlen: 16
83.57.0.0/16 maxlen: 16
83.58.0.0/16 maxlen: 16
83.59.0.0/16 maxlen: 16
83.60.0.0/16 maxlen: 16
83.61.0.0/16 maxlen: 16
83.63.0.0/16 maxlen: 16
88.0.0.0/16 maxlen: 16
88.1.0.0/16 maxlen: 16
88.2.0.0/16 maxlen: 16
88.3.0.0/16 maxlen: 16
88.8.0.0/16 maxlen: 16
88.9.0.0/16 maxlen: 16
88.10.0.0/16 maxlen: 16
88.11.0.0/16 maxlen: 16
88.12.0.0/16 maxlen: 16
88.13.0.0/16 maxlen: 16
88.14.0.0/16 maxlen: 16
88.15.0.0/16 maxlen: 16
88.16.0.0/16 maxlen: 16
88.24.0.0/16 maxlen: 16
88.25.0.0/16 maxlen: 16
88.27.0.0/16 maxlen: 16
88.30.0.0/16 maxlen: 16
176.81.0.0/16 maxlen: 16
176.85.0.0/16 maxlen: 16
192.101.1.0/24 maxlen: 24
194.69.225.0/24 maxlen: 24
194.179.34.0/24 maxlen: 24
194.179.112.0/24 maxlen: 24
194.224.157.0/24 maxlen: 24
195.53.0.0/16 maxlen: 16
195.53.69.0/24 maxlen: 24
195.53.193.0/24 maxlen: 24
195.53.218.0/23 maxlen: 23
195.55.78.0/24 maxlen: 24
195.55.79.0/24 maxlen: 24
195.55.110.0/24 maxlen: 24
195.57.5.0/24 maxlen: 24
195.57.27.0/24 maxlen: 24
195.76.0.0/16 maxlen: 16
195.76.141.0/24 maxlen: 24
195.76.164.0/24 maxlen: 24
195.77.57.0/24 maxlen: 24
195.77.132.0/22 maxlen: 22
195.77.132.0/23 maxlen: 23
195.77.132.0/24 maxlen: 24
195.235.0.0/16 maxlen: 16
195.235.95.0/24 maxlen: 24
195.235.188.0/24 maxlen: 24
195.235.225.0/24 maxlen: 24
195.235.241.0/24 maxlen: 24
195.235.242.0/24 maxlen: 24
212.170.0.0/16 maxlen: 16
212.170.156.0/24 maxlen: 24
212.170.159.0/24 maxlen: 24
213.96.0.0/16 maxlen: 16
213.97.0.0/16 maxlen: 16
213.98.0.0/16 maxlen: 16
213.99.0.0/16 maxlen: 24
213.99.44.0/24 maxlen: 24
213.99.59.0/24 maxlen: 24
217.11.96.0/19 maxlen: 19
217.124.182.0/24 maxlen: 24
217.126.0.0/16 maxlen: 16
217.127.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Thu 08 Aug 2024 07:13:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:2c:ab:d7:21:a8:78:a3:8e:1b:49:17:79:99:f1:2c:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Aug 7 11:49:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6ac45fdbd52bb749ebafc99ce88cfdab253260ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d8:bb:ea:8f:cc:2e:bf:4e:ce:48:44:ed:26:
9a:57:6f:66:44:25:e8:de:e0:9b:a4:c8:eb:c3:05:
fb:ce:e0:24:de:2d:ed:f8:1a:0f:78:f1:0a:c2:1a:
77:af:57:5e:77:b1:2e:56:ec:5e:e0:23:67:fd:61:
34:d8:bc:9f:36:e8:fc:5b:fa:af:cb:f6:0c:a6:b1:
6d:c6:f6:bc:18:65:a5:f5:48:92:9f:9e:4e:e5:56:
0a:36:88:e0:59:df:4a:dd:31:7c:6e:08:e1:d6:33:
96:52:b9:fe:36:7d:23:a8:24:b7:eb:c2:99:87:c0:
a0:cd:8f:8d:53:ea:66:62:c4:ad:09:fe:40:03:bc:
e1:73:8d:6c:34:03:b2:b1:59:84:e9:79:5b:37:c3:
ee:2f:d0:3c:f8:31:a6:e4:07:46:6e:41:86:4d:96:
0f:16:da:d1:b3:21:72:50:f4:c1:e0:02:a9:5f:65:
8d:f9:de:7a:53:5c:d1:84:85:0d:ed:af:fc:03:8a:
37:34:d1:68:a5:48:43:cb:5c:16:fd:b4:93:f2:e1:
5e:e6:5f:cf:1b:af:aa:53:81:17:f7:8f:08:37:53:
7f:e7:69:43:d7:6e:75:bc:a3:6b:11:86:45:6e:8d:
8d:39:64:17:d8:a1:16:53:3d:71:f5:11:81:4a:0a:
77:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:C4:5F:DB:D5:2B:B7:49:EB:AF:C9:9C:E8:8C:FD:AB:25:32:60:BA
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/asRf29Urt0nrr8mc6Iz9qyUyYLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.136.0.0/14
79.144.0.0-79.148.255.255
80.24.0.0/15
80.30.0.0-80.39.255.255
80.59.0.0/16
81.32.0.0-81.44.255.255
83.32.0.0/13
83.47.0.0/16
83.52.0.0-83.61.255.255
83.63.0.0/16
88.0.0.0/14
88.8.0.0-88.16.255.255
88.24.0.0/15
88.27.0.0/16
88.30.0.0/16
176.81.0.0/16
176.85.0.0/16
192.101.1.0/24
194.69.225.0/24
194.179.34.0/24
194.179.112.0/24
194.224.157.0/24
195.53.0.0/16
195.55.78.0/23
195.55.110.0/24
195.57.5.0/24
195.57.27.0/24
195.76.0.0/16
195.77.57.0/24
195.77.132.0/22
195.235.0.0/16
212.170.0.0/16
213.96.0.0/14
217.11.96.0/19
217.124.182.0/24
217.126.0.0/15
Signature Algorithm: sha256WithRSAEncryption
1c:d4:22:1e:36:08:fc:d2:48:a7:23:fa:06:e2:64:de:e4:3a:
2a:52:67:7a:ff:af:44:22:48:4f:ff:c2:e8:22:c8:9e:6e:53:
e1:21:fa:bf:ef:a7:d1:d8:d5:98:80:a4:65:d9:49:de:c0:d6:
d0:e3:af:97:f7:b2:7d:61:1f:17:75:c5:e1:69:ba:c5:e4:1e:
65:b7:35:83:8c:1f:37:ac:fc:d0:06:e5:e4:ca:93:24:ca:4f:
44:a7:df:8d:c6:3d:94:d0:dc:de:48:8d:23:03:ae:f3:21:c9:
2d:c9:5b:15:7f:1f:09:b8:e5:19:02:cf:7f:b2:98:41:f5:c4:
a0:f5:53:b2:82:dd:b9:b8:9d:99:76:d7:94:f7:e1:f0:cc:cc:
0b:50:02:55:30:35:e5:cf:70:2a:fc:a6:1e:d0:ae:48:db:53:
c6:32:77:29:fd:4a:48:16:1b:76:ac:6c:c0:72:3f:c9:d5:d4:
93:75:ad:04:6e:db:7e:0a:b2:db:21:f7:ea:9f:0e:0e:ce:c6:
1e:89:a3:20:7e:c2:37:da:fa:84:d5:30:50:f8:d6:bf:9f:28:
41:ec:7f:a2:65:80:91:b8:af:94:e1:d2:4f:52:d3:14:fe:14:
68:bb:3a:54:cd:76:5b:ff:1c:0e:55:11:be:18:90:9c:08:36:
9a:ee:e7:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:53 2025 by rpki-client