Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/cUVS-yfy_wkTD77Ok2i2kbh9-9M.roa
File: cUVS-yfy_wkTD77Ok2i2kbh9-9M.roa (raw, json)
Hash identifier: iuZdza0+2Dns0N4h/J+9e6LhGGekbz73aPGEBTsJ79A=
Subject key identifier: 71:45:52:FB:27:F2:FF:09:13:0F:BE:CE:93:68:B6:91:B8:7D:FB:D3
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 01902A0B2FA085350DDA556E119297F08520
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/cUVS-yfy_wkTD77Ok2i2kbh9-9M.roa
Signing time: Tue 18 Jun 2024 06:31:34 +0000
ROA not before: Tue 18 Jun 2024 06:31:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3352
IP address blocks: 2.136.0.0/16 maxlen: 16
2.137.0.0/16 maxlen: 16
2.138.0.0/16 maxlen: 16
2.139.0.0/16 maxlen: 16
79.144.0.0/16 maxlen: 16
79.145.0.0/16 maxlen: 16
79.146.0.0/16 maxlen: 16
79.147.0.0/16 maxlen: 16
79.148.0.0/16 maxlen: 16
80.24.0.0/16 maxlen: 16
80.25.0.0/16 maxlen: 16
80.30.0.0/16 maxlen: 16
80.31.0.0/16 maxlen: 16
80.32.0.0/16 maxlen: 16
80.33.0.0/16 maxlen: 16
80.34.0.0/16 maxlen: 16
80.35.0.0/16 maxlen: 16
80.36.0.0/16 maxlen: 16
80.37.0.0/16 maxlen: 16
80.38.0.0/16 maxlen: 16
80.39.0.0/16 maxlen: 16
80.59.0.0/16 maxlen: 16
81.32.0.0/16 maxlen: 16
81.33.0.0/16 maxlen: 16
81.34.0.0/16 maxlen: 16
81.35.0.0/16 maxlen: 16
81.36.0.0/16 maxlen: 16
81.37.0.0/16 maxlen: 16
81.38.0.0/16 maxlen: 16
81.39.0.0/16 maxlen: 16
81.40.0.0/16 maxlen: 16
81.41.0.0/16 maxlen: 16
81.42.0.0/16 maxlen: 16
81.43.0.0/16 maxlen: 16
81.44.0.0/16 maxlen: 16
83.32.0.0/16 maxlen: 16
83.33.0.0/16 maxlen: 16
83.34.0.0/16 maxlen: 16
83.35.0.0/16 maxlen: 16
83.36.0.0/16 maxlen: 16
83.37.0.0/16 maxlen: 16
83.38.0.0/16 maxlen: 16
83.39.0.0/16 maxlen: 16
83.47.0.0/16 maxlen: 16
83.52.0.0/16 maxlen: 16
83.53.0.0/16 maxlen: 16
83.54.0.0/16 maxlen: 16
83.55.0.0/16 maxlen: 16
83.56.0.0/16 maxlen: 16
83.57.0.0/16 maxlen: 16
83.58.0.0/16 maxlen: 16
83.59.0.0/16 maxlen: 16
83.60.0.0/16 maxlen: 16
83.61.0.0/16 maxlen: 16
83.63.0.0/16 maxlen: 16
88.0.0.0/16 maxlen: 16
88.1.0.0/16 maxlen: 16
88.2.0.0/16 maxlen: 16
88.3.0.0/16 maxlen: 16
88.8.0.0/16 maxlen: 16
88.9.0.0/16 maxlen: 16
88.10.0.0/16 maxlen: 16
88.11.0.0/16 maxlen: 16
88.12.0.0/16 maxlen: 16
88.13.0.0/16 maxlen: 16
88.14.0.0/16 maxlen: 16
88.15.0.0/16 maxlen: 16
88.16.0.0/16 maxlen: 16
88.24.0.0/16 maxlen: 16
88.25.0.0/16 maxlen: 16
88.27.0.0/16 maxlen: 16
88.30.0.0/16 maxlen: 16
192.101.1.0/24 maxlen: 24
194.69.225.0/24 maxlen: 24
194.179.34.0/24 maxlen: 24
194.179.112.0/24 maxlen: 24
194.224.157.0/24 maxlen: 24
195.53.0.0/16 maxlen: 16
195.53.69.0/24 maxlen: 24
195.53.193.0/24 maxlen: 24
195.53.218.0/23 maxlen: 23
195.55.78.0/24 maxlen: 24
195.55.79.0/24 maxlen: 24
195.55.110.0/24 maxlen: 24
195.57.5.0/24 maxlen: 24
195.57.27.0/24 maxlen: 24
195.76.0.0/16 maxlen: 16
195.76.141.0/24 maxlen: 24
195.76.164.0/24 maxlen: 24
195.77.57.0/24 maxlen: 24
195.235.0.0/16 maxlen: 16
195.235.95.0/24 maxlen: 24
195.235.188.0/24 maxlen: 24
195.235.225.0/24 maxlen: 24
195.235.241.0/24 maxlen: 24
195.235.242.0/24 maxlen: 24
212.170.0.0/16 maxlen: 16
212.170.156.0/24 maxlen: 24
212.170.159.0/24 maxlen: 24
213.96.0.0/16 maxlen: 16
213.99.44.0/24 maxlen: 24
213.99.59.0/24 maxlen: 24
217.124.182.0/24 maxlen: 24
217.126.0.0/16 maxlen: 16
217.127.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Tue 18 Jun 2024 09:05:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:2a:0b:2f:a0:85:35:0d:da:55:6e:11:92:97:f0:85:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Jun 18 06:31:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=714552fb27f2ff09130fbece9368b691b87dfbd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:96:66:a4:f3:fd:ba:96:fc:e4:fc:ca:82:20:
94:c6:f2:48:4a:10:f9:1b:01:b0:ad:58:1d:ca:d8:
78:c2:3b:20:c7:ba:b5:49:11:32:df:4b:13:3d:cf:
c8:e2:7d:8f:35:04:e6:af:31:58:b7:24:40:39:61:
84:fd:5a:25:eb:87:30:5a:dc:54:f6:2b:eb:cc:1b:
19:44:71:fb:f5:d7:8f:70:1d:85:7d:48:b9:a7:ae:
9d:76:4e:fa:15:e3:02:76:d3:0e:17:3f:a7:0a:8e:
89:c7:3a:f0:ce:4a:85:04:df:c7:e4:37:d1:32:5d:
a1:bc:9e:b3:87:69:e5:c1:4e:51:b6:85:79:50:04:
74:03:b9:74:1b:f7:bc:20:5c:31:36:9a:25:2c:91:
7c:d2:83:9c:26:e8:9e:54:e5:6c:f0:53:5b:60:46:
95:74:f4:1d:eb:d7:28:69:f7:7f:45:b9:a8:7a:65:
e5:39:82:59:c6:d0:f6:72:b0:1c:1b:02:25:5a:a0:
91:ae:40:6c:c4:db:c8:db:82:59:ca:6a:a3:e0:5b:
22:33:fc:08:7b:bf:8f:f0:41:de:d3:d8:6d:b9:eb:
f5:e9:71:d9:2b:e3:9f:6b:e6:46:eb:c1:25:15:77:
ad:22:7d:6e:ce:e9:32:c3:56:b3:2c:0d:26:bf:3f:
93:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:45:52:FB:27:F2:FF:09:13:0F:BE:CE:93:68:B6:91:B8:7D:FB:D3
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/cUVS-yfy_wkTD77Ok2i2kbh9-9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.136.0.0/14
79.144.0.0-79.148.255.255
80.24.0.0/15
80.30.0.0-80.39.255.255
80.59.0.0/16
81.32.0.0-81.44.255.255
83.32.0.0/13
83.47.0.0/16
83.52.0.0-83.61.255.255
83.63.0.0/16
88.0.0.0/14
88.8.0.0-88.16.255.255
88.24.0.0/15
88.27.0.0/16
88.30.0.0/16
192.101.1.0/24
194.69.225.0/24
194.179.34.0/24
194.179.112.0/24
194.224.157.0/24
195.53.0.0/16
195.55.78.0/23
195.55.110.0/24
195.57.5.0/24
195.57.27.0/24
195.76.0.0/16
195.77.57.0/24
195.235.0.0/16
212.170.0.0/16
213.96.0.0/16
213.99.44.0/24
213.99.59.0/24
217.124.182.0/24
217.126.0.0/15
Signature Algorithm: sha256WithRSAEncryption
21:4a:59:d7:6c:2d:00:c9:28:86:37:ef:b9:cc:68:95:5d:d0:
81:31:0c:d1:00:ad:37:a7:6f:a8:ab:62:09:59:8a:1d:9c:97:
c7:c7:1e:f8:93:4d:de:68:7f:08:29:83:78:43:a9:25:8f:80:
d7:68:79:51:14:c1:5f:70:05:ac:27:58:92:5b:f7:a6:12:c2:
c5:3b:79:89:46:95:60:11:b2:92:a1:69:ef:a4:c2:5d:a8:ef:
db:05:97:76:e4:3f:07:60:ce:44:94:fb:1e:c7:7e:d8:85:44:
72:f2:83:72:5e:ce:0b:0c:45:f1:99:c7:27:af:ec:4d:d1:3b:
6c:16:b5:ef:89:30:31:d7:5c:4b:19:08:fc:f7:2b:e3:3c:a4:
ec:eb:d3:6d:34:ce:5e:e2:b5:74:dd:19:05:f1:94:bd:ec:22:
1c:fa:ae:88:9b:71:11:d8:f5:9d:23:3d:61:da:29:9c:af:b7:
b1:db:43:41:0e:03:60:51:89:f3:57:ca:2a:6d:d2:0f:39:87:
ab:72:80:3b:85:42:59:e0:d8:3b:bc:d9:a9:1b:3a:80:f5:ef:
19:5b:68:88:db:27:db:a1:22:21:2c:d7:3e:a2:9c:16:8c:4d:
2e:8b:f7:eb:87:96:6c:6f:60:35:43:6b:83:48:0e:1c:5a:69:
ac:5d:17:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:36:37 2025 by rpki-client