Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/k5WaIjP5y9VVl_gMmbejCPELUak.roa
File: k5WaIjP5y9VVl_gMmbejCPELUak.roa (raw, json)
Hash identifier: nNMNoZzyRh8zwQX9HmntsmjUNdxhacFlHidntSw91Gk=
Subject key identifier: 93:95:9A:22:33:F9:CB:D5:55:97:F8:0C:99:B7:A3:08:F1:0B:51:A9
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 01915A4ECDE42A8BB443A1684381939CFE4C
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/k5WaIjP5y9VVl_gMmbejCPELUak.roa
Signing time: Fri 16 Aug 2024 08:29:59 +0000
ROA not before: Fri 16 Aug 2024 08:29:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3352
IP address blocks: 2.136.0.0/16 maxlen: 16
2.137.0.0/16 maxlen: 16
2.138.0.0/16 maxlen: 16
2.139.0.0/16 maxlen: 16
79.144.0.0/16 maxlen: 16
79.145.0.0/16 maxlen: 16
79.146.0.0/16 maxlen: 16
79.147.0.0/16 maxlen: 16
79.148.0.0/16 maxlen: 16
80.24.0.0/16 maxlen: 16
80.25.0.0/16 maxlen: 16
80.30.0.0/16 maxlen: 16
80.31.0.0/16 maxlen: 16
80.32.0.0/16 maxlen: 16
80.33.0.0/16 maxlen: 16
80.34.0.0/16 maxlen: 16
80.35.0.0/16 maxlen: 16
80.36.0.0/16 maxlen: 16
80.37.0.0/16 maxlen: 16
80.38.0.0/16 maxlen: 16
80.39.0.0/16 maxlen: 16
80.59.0.0/16 maxlen: 16
81.32.0.0/16 maxlen: 16
81.33.0.0/16 maxlen: 16
81.34.0.0/16 maxlen: 16
81.35.0.0/16 maxlen: 16
81.36.0.0/16 maxlen: 16
81.37.0.0/16 maxlen: 16
81.38.0.0/16 maxlen: 16
81.39.0.0/16 maxlen: 16
81.40.0.0/16 maxlen: 16
81.41.0.0/16 maxlen: 16
81.42.0.0/16 maxlen: 16
81.43.0.0/16 maxlen: 16
81.44.0.0/16 maxlen: 16
83.32.0.0/16 maxlen: 16
83.33.0.0/16 maxlen: 16
83.34.0.0/16 maxlen: 16
83.35.0.0/16 maxlen: 16
83.36.0.0/16 maxlen: 16
83.37.0.0/16 maxlen: 16
83.38.0.0/16 maxlen: 16
83.39.0.0/16 maxlen: 16
83.47.0.0/16 maxlen: 16
83.52.0.0/16 maxlen: 16
83.53.0.0/16 maxlen: 16
83.54.0.0/16 maxlen: 16
83.55.0.0/16 maxlen: 16
83.56.0.0/16 maxlen: 16
83.57.0.0/16 maxlen: 16
83.58.0.0/16 maxlen: 16
83.59.0.0/16 maxlen: 16
83.60.0.0/16 maxlen: 16
83.61.0.0/16 maxlen: 16
83.63.0.0/16 maxlen: 16
88.0.0.0/16 maxlen: 16
88.1.0.0/16 maxlen: 16
88.2.0.0/16 maxlen: 16
88.3.0.0/16 maxlen: 16
88.8.0.0/16 maxlen: 16
88.9.0.0/16 maxlen: 16
88.10.0.0/16 maxlen: 16
88.11.0.0/16 maxlen: 16
88.12.0.0/16 maxlen: 16
88.13.0.0/16 maxlen: 16
88.14.0.0/16 maxlen: 16
88.15.0.0/16 maxlen: 16
88.16.0.0/16 maxlen: 16
88.24.0.0/16 maxlen: 16
88.25.0.0/16 maxlen: 16
88.27.0.0/16 maxlen: 16
88.30.0.0/16 maxlen: 16
95.121.0.0/16 maxlen: 16
95.122.0.0/16 maxlen: 16
95.123.0.0/16 maxlen: 16
176.80.0.0/16 maxlen: 24
176.81.0.0/16 maxlen: 16
176.82.0.0/16 maxlen: 24
176.83.0.0/16 maxlen: 24
176.85.0.0/16 maxlen: 16
176.86.0.0/16 maxlen: 16
176.87.0.0/16 maxlen: 24
192.101.1.0/24 maxlen: 24
193.153.0.0/16 maxlen: 16
194.69.225.0/24 maxlen: 24
194.179.34.0/24 maxlen: 24
194.179.112.0/24 maxlen: 24
194.224.157.0/24 maxlen: 24
195.53.0.0/16 maxlen: 16
195.53.69.0/24 maxlen: 24
195.53.193.0/24 maxlen: 24
195.53.218.0/23 maxlen: 23
195.55.78.0/24 maxlen: 24
195.55.79.0/24 maxlen: 24
195.55.110.0/24 maxlen: 24
195.57.5.0/24 maxlen: 24
195.57.27.0/24 maxlen: 24
195.76.0.0/16 maxlen: 16
195.76.141.0/24 maxlen: 24
195.76.164.0/24 maxlen: 24
195.77.57.0/24 maxlen: 24
195.77.132.0/22 maxlen: 22
195.77.132.0/23 maxlen: 23
195.77.132.0/24 maxlen: 24
195.235.0.0/16 maxlen: 16
195.235.95.0/24 maxlen: 24
195.235.188.0/24 maxlen: 24
195.235.225.0/24 maxlen: 24
195.235.241.0/24 maxlen: 24
195.235.242.0/24 maxlen: 24
212.170.0.0/16 maxlen: 16
212.170.156.0/24 maxlen: 24
212.170.159.0/24 maxlen: 24
213.96.0.0/16 maxlen: 16
213.97.0.0/16 maxlen: 16
213.98.0.0/16 maxlen: 16
213.99.0.0/16 maxlen: 24
213.99.44.0/24 maxlen: 24
213.99.59.0/24 maxlen: 24
217.11.96.0/19 maxlen: 19
217.124.182.0/24 maxlen: 24
217.126.0.0/16 maxlen: 16
217.127.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 19 Aug 2024 06:18:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5a:4e:cd:e4:2a:8b:b4:43:a1:68:43:81:93:9c:fe:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Aug 16 08:29:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=93959a2233f9cbd55597f80c99b7a308f10b51a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a3:a0:d4:7c:fc:4d:e8:32:91:ba:64:de:28:
b1:e2:65:f6:45:f2:27:ac:db:37:69:4e:8f:f8:51:
27:1f:ab:df:5e:df:81:cb:d7:88:dc:dd:80:d3:1b:
37:cf:12:6a:0f:03:61:d2:8a:43:36:f6:e9:37:69:
d3:13:f7:a3:ee:9c:0f:1e:90:fe:ca:3e:ce:a8:01:
8a:43:37:b7:7f:c6:36:93:93:68:fb:05:60:f1:09:
63:36:c4:23:e6:9d:d6:d8:04:43:74:7c:ff:34:76:
a4:95:ac:0f:a6:a8:95:34:7f:3b:6d:6c:19:59:83:
f4:d8:00:fc:17:c6:12:21:8b:cc:c3:fa:e2:2f:57:
95:9d:c0:3f:f7:c5:6f:d0:d6:14:84:26:3c:d3:1e:
86:55:7f:82:c5:a9:5a:c7:02:7b:d9:2c:94:28:7a:
fd:aa:15:78:16:59:e0:db:a6:df:df:6f:0e:3c:f6:
43:40:1b:0f:d9:02:8f:1c:2d:d6:0c:ca:aa:a5:84:
4b:f2:2d:13:2a:54:45:22:1f:d7:ce:a7:de:32:1c:
8a:0a:b2:80:2d:ae:b7:d6:7b:76:bc:b6:d3:bd:c7:
06:ef:66:09:f2:30:fb:3c:49:44:f2:ee:2d:0a:4c:
02:db:49:ec:6f:30:c5:4b:6f:03:c4:b6:9e:ee:6f:
dc:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:95:9A:22:33:F9:CB:D5:55:97:F8:0C:99:B7:A3:08:F1:0B:51:A9
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/k5WaIjP5y9VVl_gMmbejCPELUak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.136.0.0/14
79.144.0.0-79.148.255.255
80.24.0.0/15
80.30.0.0-80.39.255.255
80.59.0.0/16
81.32.0.0-81.44.255.255
83.32.0.0/13
83.47.0.0/16
83.52.0.0-83.61.255.255
83.63.0.0/16
88.0.0.0/14
88.8.0.0-88.16.255.255
88.24.0.0/15
88.27.0.0/16
88.30.0.0/16
95.121.0.0-95.123.255.255
176.80.0.0/14
176.85.0.0-176.87.255.255
192.101.1.0/24
193.153.0.0/16
194.69.225.0/24
194.179.34.0/24
194.179.112.0/24
194.224.157.0/24
195.53.0.0/16
195.55.78.0/23
195.55.110.0/24
195.57.5.0/24
195.57.27.0/24
195.76.0.0/16
195.77.57.0/24
195.77.132.0/22
195.235.0.0/16
212.170.0.0/16
213.96.0.0/14
217.11.96.0/19
217.124.182.0/24
217.126.0.0/15
Signature Algorithm: sha256WithRSAEncryption
1d:09:39:67:ae:94:71:d2:9b:62:87:e3:e8:d4:d6:43:bf:0e:
68:14:47:c9:76:64:dc:9c:48:4d:c7:02:c9:4a:93:c2:99:14:
88:5a:6d:43:f3:37:35:2f:33:da:e1:17:8d:5c:fb:8c:6a:24:
48:89:09:ae:4a:cb:dd:66:08:f2:9b:88:8b:40:ce:59:d1:f5:
c3:e0:f2:8a:a3:cd:fc:07:66:6e:31:b9:8b:0f:44:1a:2b:e3:
7d:6b:60:90:bd:63:ed:75:f9:3b:71:c4:53:2c:95:61:0d:72:
7d:85:1b:0e:d1:97:4d:b4:89:20:68:ad:04:cf:55:b3:af:bd:
09:38:7e:3b:ba:ef:6b:39:05:27:4e:62:87:93:72:89:24:46:
f7:25:2f:03:4e:d7:71:e9:c6:1b:9d:f8:09:a5:ba:e3:1a:f6:
12:01:57:88:04:4d:47:a0:51:e2:60:0c:b7:78:88:61:d2:84:
10:6a:63:74:12:44:fd:27:85:f3:d3:40:5a:dc:cc:17:89:21:
cc:20:ca:ff:ef:12:32:97:09:ee:eb:46:71:bc:22:0a:4c:8e:
7c:24:5e:f5:7f:d7:4a:48:79:74:ee:6e:88:52:d8:cb:a7:e3:
c8:e4:47:68:d5:c6:33:e7:0e:14:dd:9e:3e:f8:52:43:06:90:
e7:da:ea:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:51:56 2025 by rpki-client