Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/x_-GdIEL7eUILekkOQsBaXCPIks.roa
File: x_-GdIEL7eUILekkOQsBaXCPIks.roa (raw, json)
Hash identifier: BbaCBPCrw3FAmI30K1xyxQpG9mllyXGHMepRDeCCrCI=
Subject key identifier: C7:FF:86:74:81:0B:ED:E5:08:2D:E9:24:39:0B:01:69:70:8F:22:4B
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 0192940ED1823EF04F8FDC845CF9217A4055
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/x_-GdIEL7eUILekkOQsBaXCPIks.roa
Signing time: Wed 16 Oct 2024 06:40:51 +0000
ROA not before: Wed 16 Oct 2024 06:40:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3352
IP address blocks: 2.136.0.0/16 maxlen: 16
2.137.0.0/16 maxlen: 16
2.138.0.0/16 maxlen: 16
2.139.0.0/16 maxlen: 16
2.140.0.0/16 maxlen: 24
2.141.0.0/16 maxlen: 24
2.142.0.0/16 maxlen: 24
2.143.0.0/16 maxlen: 24
5.205.0.0/16 maxlen: 24
37.10.128.0/17 maxlen: 24
37.12.0.0/16 maxlen: 24
37.13.0.0/16 maxlen: 24
37.158.0.0/16 maxlen: 24
79.144.0.0/16 maxlen: 16
79.145.0.0/16 maxlen: 16
79.146.0.0/16 maxlen: 16
79.147.0.0/16 maxlen: 16
79.148.0.0/16 maxlen: 16
79.149.0.0/16 maxlen: 24
79.150.0.0/16 maxlen: 24
79.151.0.0/16 maxlen: 24
79.152.0.0/16 maxlen: 24
79.153.0.0/16 maxlen: 24
79.154.0.0/16 maxlen: 24
79.155.0.0/16 maxlen: 24
79.156.0.0/16 maxlen: 24
79.157.0.0/16 maxlen: 24
79.158.0.0/16 maxlen: 24
79.159.0.0/16 maxlen: 24
80.24.0.0/16 maxlen: 16
80.25.0.0/16 maxlen: 16
80.26.0.0/16 maxlen: 16
80.27.0.0/16 maxlen: 24
80.28.0.0/16 maxlen: 16
80.29.0.0/16 maxlen: 24
80.30.0.0/16 maxlen: 16
80.31.0.0/16 maxlen: 16
80.32.0.0/16 maxlen: 16
80.33.0.0/16 maxlen: 16
80.34.0.0/16 maxlen: 16
80.35.0.0/16 maxlen: 16
80.36.0.0/16 maxlen: 16
80.37.0.0/16 maxlen: 16
80.38.0.0/16 maxlen: 16
80.39.0.0/16 maxlen: 16
80.58.0.0/16 maxlen: 16
80.59.0.0/16 maxlen: 16
81.32.0.0/16 maxlen: 16
81.33.0.0/16 maxlen: 16
81.34.0.0/16 maxlen: 16
81.35.0.0/16 maxlen: 16
81.36.0.0/16 maxlen: 16
81.37.0.0/16 maxlen: 16
81.38.0.0/16 maxlen: 16
81.39.0.0/16 maxlen: 16
81.40.0.0/16 maxlen: 16
81.41.0.0/16 maxlen: 16
81.42.0.0/16 maxlen: 16
81.43.0.0/16 maxlen: 16
81.44.0.0/16 maxlen: 16
81.45.0.0/16 maxlen: 16
81.46.0.0/16 maxlen: 16
81.47.0.0/16 maxlen: 24
83.32.0.0/16 maxlen: 16
83.33.0.0/16 maxlen: 16
83.34.0.0/16 maxlen: 16
83.35.0.0/16 maxlen: 16
83.36.0.0/16 maxlen: 16
83.37.0.0/16 maxlen: 16
83.38.0.0/16 maxlen: 16
83.39.0.0/16 maxlen: 16
83.47.0.0/16 maxlen: 16
83.48.0.0/16 maxlen: 24
83.52.0.0/16 maxlen: 16
83.53.0.0/16 maxlen: 16
83.54.0.0/16 maxlen: 16
83.55.0.0/16 maxlen: 16
83.56.0.0/16 maxlen: 16
83.57.0.0/16 maxlen: 16
83.58.0.0/16 maxlen: 16
83.59.0.0/16 maxlen: 16
83.60.0.0/16 maxlen: 16
83.61.0.0/16 maxlen: 16
83.62.0.0/16 maxlen: 21
83.63.0.0/16 maxlen: 16
88.0.0.0/16 maxlen: 16
88.1.0.0/16 maxlen: 16
88.2.0.0/16 maxlen: 16
88.3.0.0/16 maxlen: 16
88.8.0.0/16 maxlen: 16
88.9.0.0/16 maxlen: 16
88.10.0.0/16 maxlen: 16
88.11.0.0/16 maxlen: 16
88.12.0.0/16 maxlen: 16
88.13.0.0/16 maxlen: 16
88.14.0.0/16 maxlen: 16
88.15.0.0/16 maxlen: 16
88.16.0.0/16 maxlen: 16
88.24.0.0/16 maxlen: 16
88.25.0.0/16 maxlen: 16
88.26.0.0/16 maxlen: 16
88.27.0.0/16 maxlen: 16
88.28.0.0/16 maxlen: 24
88.29.0.0/16 maxlen: 24
88.30.0.0/16 maxlen: 16
88.31.0.0/16 maxlen: 24
95.120.0.0/16 maxlen: 24
95.121.0.0/16 maxlen: 16
95.122.0.0/16 maxlen: 16
95.123.0.0/16 maxlen: 16
95.124.0.0/16 maxlen: 24
95.125.0.0/16 maxlen: 24
95.126.0.0/16 maxlen: 24
95.127.0.0/16 maxlen: 24
176.80.0.0/16 maxlen: 24
176.81.0.0/16 maxlen: 16
176.82.0.0/16 maxlen: 24
176.83.0.0/16 maxlen: 24
176.84.0.0/16 maxlen: 24
176.85.0.0/16 maxlen: 16
176.86.0.0/16 maxlen: 16
176.87.0.0/16 maxlen: 24
192.101.1.0/24 maxlen: 24
193.152.0.0/16 maxlen: 24
193.153.0.0/16 maxlen: 16
194.69.225.0/24 maxlen: 24
194.179.0.0/17 maxlen: 17
194.179.0.0/18 maxlen: 18
194.179.34.0/24 maxlen: 24
194.179.64.0/18 maxlen: 18
194.179.112.0/24 maxlen: 24
194.224.0.0/16 maxlen: 16
194.224.157.0/24 maxlen: 24
195.53.0.0/16 maxlen: 16
195.53.193.0/24 maxlen: 24
195.53.218.0/23 maxlen: 23
195.55.0.0/16 maxlen: 16
195.55.78.0/24 maxlen: 24
195.55.79.0/24 maxlen: 24
195.55.110.0/24 maxlen: 24
195.57.0.0/16 maxlen: 16
195.57.5.0/24 maxlen: 24
195.57.27.0/24 maxlen: 24
195.76.0.0/16 maxlen: 16
195.76.141.0/24 maxlen: 24
195.76.164.0/24 maxlen: 24
195.77.0.0/16 maxlen: 16
195.77.57.0/24 maxlen: 24
195.77.132.0/22 maxlen: 22
195.77.132.0/23 maxlen: 23
195.77.132.0/24 maxlen: 24
195.235.0.0/16 maxlen: 16
195.235.95.0/24 maxlen: 24
195.235.188.0/24 maxlen: 24
195.235.225.0/24 maxlen: 24
195.235.241.0/24 maxlen: 24
195.235.242.0/24 maxlen: 24
212.170.0.0/16 maxlen: 16
212.170.156.0/24 maxlen: 24
212.170.159.0/24 maxlen: 24
213.0.0.0/16 maxlen: 16
213.0.128.0/17 maxlen: 17
213.0.186.0/24 maxlen: 24
213.4.0.0/16 maxlen: 16
213.96.0.0/16 maxlen: 16
213.97.0.0/16 maxlen: 16
213.98.0.0/16 maxlen: 16
213.99.0.0/16 maxlen: 24
213.99.44.0/24 maxlen: 24
213.99.59.0/24 maxlen: 24
217.11.96.0/19 maxlen: 19
217.124.0.0/16 maxlen: 16
217.124.182.0/24 maxlen: 24
217.125.0.0/16 maxlen: 16
217.125.159.0/24 maxlen: 24
217.126.0.0/16 maxlen: 16
217.127.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Wed 16 Oct 2024 08:20:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:94:0e:d1:82:3e:f0:4f:8f:dc:84:5c:f9:21:7a:40:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Oct 16 06:40:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c7ff8674810bede5082de924390b0169708f224b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c3:ea:f6:28:8b:4e:ce:fa:c4:25:9b:c0:38:
e1:67:0b:f7:a9:c5:97:7c:b1:6d:dd:62:3e:2f:5d:
96:52:92:9c:94:58:56:e5:7f:31:b9:1f:8e:54:c6:
97:6a:b4:00:37:a3:a9:af:5b:ec:93:07:04:78:b1:
76:66:ab:f4:ca:e1:8a:c1:5b:9a:a3:b6:d4:8d:4a:
e7:17:de:ed:13:b7:de:6a:5f:30:55:5f:22:d8:b0:
e7:e5:39:4f:c3:6d:e8:39:7f:00:1d:63:53:5e:a5:
1c:b7:3d:16:78:32:fd:7c:46:fc:dd:8e:4a:23:fe:
5b:37:fa:bd:f4:b0:30:01:5b:f4:54:94:38:47:98:
12:ff:a8:90:cd:20:44:9b:67:11:c5:36:16:05:43:
75:48:bd:dd:02:28:3f:64:9a:71:a4:63:57:1d:5c:
23:ad:5a:6f:ea:ff:72:ee:f6:b4:51:53:8f:78:14:
ba:ff:e2:a3:d2:49:39:0c:54:6e:c1:30:88:09:1f:
43:81:30:56:be:46:2d:6b:06:7c:d0:e4:e8:8b:a9:
5e:35:0d:0b:06:97:63:68:31:65:0f:f8:1b:20:22:
67:ff:01:51:1e:bd:88:7e:80:92:57:17:ba:41:36:
08:88:81:de:cf:1d:bc:7f:60:4f:be:05:62:c8:15:
4f:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:FF:86:74:81:0B:ED:E5:08:2D:E9:24:39:0B:01:69:70:8F:22:4B
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/x_-GdIEL7eUILekkOQsBaXCPIks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.136.0.0/13
5.205.0.0/16
37.10.128.0/17
37.12.0.0/15
37.158.0.0/16
79.144.0.0/12
80.24.0.0-80.39.255.255
80.58.0.0/15
81.32.0.0/12
83.32.0.0/13
83.47.0.0-83.48.255.255
83.52.0.0-83.63.255.255
88.0.0.0/14
88.8.0.0-88.16.255.255
88.24.0.0/13
95.120.0.0/13
176.80.0.0/13
192.101.1.0/24
193.152.0.0/15
194.69.225.0/24
194.179.0.0/17
194.224.0.0/16
195.53.0.0/16
195.55.0.0/16
195.57.0.0/16
195.76.0.0/15
195.235.0.0/16
212.170.0.0/16
213.0.0.0/16
213.4.0.0/16
213.96.0.0/14
217.11.96.0/19
217.124.0.0/14
Signature Algorithm: sha256WithRSAEncryption
23:1f:90:7d:c1:83:47:94:fd:f7:7a:c4:a1:24:ab:a9:20:47:
b6:59:9b:c8:be:76:27:73:a1:e7:d8:66:fb:9e:6a:3b:af:01:
71:74:7b:bf:7a:a0:bd:6c:a7:a5:d4:29:1f:5c:18:cb:82:7b:
e1:15:55:c3:85:60:82:da:c4:83:16:7f:5f:b4:f5:ba:81:ed:
85:d6:67:fa:f1:44:46:b5:ab:cd:87:a9:f5:ab:5d:98:a3:89:
a5:88:e9:79:e6:70:ca:73:90:3d:41:25:c5:fd:c5:87:0e:f6:
62:21:6c:8c:15:07:76:10:35:c2:63:6b:d1:c2:80:af:f8:03:
e6:0f:cc:0d:17:4a:f0:ae:bb:a2:fd:3e:62:c6:75:a8:ac:4a:
bf:4e:6e:19:89:db:c2:40:01:76:70:98:92:d9:ea:fa:ec:32:
42:da:05:d1:2a:e7:50:15:16:0a:af:7d:1d:d4:f5:82:99:7a:
8d:26:74:c4:75:30:d7:e9:7c:a9:85:b4:34:02:87:63:ab:4b:
b2:26:e9:e1:54:2f:d4:35:f2:dd:e1:55:fa:2c:d3:8d:ac:ea:
4f:74:92:f0:e7:89:e2:3e:9e:42:76:f7:fe:5b:19:56:95:22:
ca:4a:59:08:a0:7a:10:1d:68:f8:19:d7:55:65:37:ea:0e:cb:
73:32:ef:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 16 09:53:48 2024 by rpki-client on console-fra.rpki-client.org