Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/AfAOGgNT0uCX2-OLR-nyksvp-jU.roa
File: AfAOGgNT0uCX2-OLR-nyksvp-jU.roa (raw, json)
Hash identifier: GNJf/1a/31A3vDcVeYJrzvk/hLy0k3VXkjynm4dd0v4=
Subject key identifier: 01:F0:0E:1A:03:53:D2:E0:97:DB:E3:8B:47:E9:F2:92:CB:E9:FA:35
Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd
Certificate serial: 018F4C739E85908826116C617F8EA4BEDFAA
Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/AfAOGgNT0uCX2-OLR-nyksvp-jU.roa
Signing time: Mon 06 May 2024 05:49:56 +0000
ROA not before: Mon 06 May 2024 05:49:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15704
IP address blocks: 66.81.160.0/21 maxlen: 21
66.81.168.0/21 maxlen: 21
66.81.176.0/21 maxlen: 21
66.81.184.0/21 maxlen: 21
67.218.248.0/21 maxlen: 21
78.30.0.0/21 maxlen: 21
78.30.8.0/21 maxlen: 21
78.30.16.0/21 maxlen: 21
78.30.24.0/21 maxlen: 21
78.30.32.0/20 maxlen: 20
78.30.48.0/20 maxlen: 20
81.0.0.0/20 maxlen: 20
81.0.16.0/20 maxlen: 20
82.213.192.0/20 maxlen: 20
82.213.208.0/20 maxlen: 20
82.213.224.0/19 maxlen: 19
83.138.40.0/21 maxlen: 21
84.39.176.0/21 maxlen: 21
85.31.132.0/22 maxlen: 22
89.35.62.0/23 maxlen: 23
89.39.52.0/24 maxlen: 24
91.106.16.0/21 maxlen: 21
91.194.62.0/23 maxlen: 23
91.242.152.0/21 maxlen: 21
93.115.37.0/24 maxlen: 24
93.115.128.0/22 maxlen: 22
93.115.132.0/22 maxlen: 22
93.115.152.0/24 maxlen: 24
93.115.202.0/24 maxlen: 24
93.115.242.0/24 maxlen: 24
93.176.128.0/18 maxlen: 18
93.176.128.0/21 maxlen: 21
93.176.136.0/21 maxlen: 21
93.176.144.0/21 maxlen: 21
93.176.152.0/21 maxlen: 21
93.176.160.0/20 maxlen: 20
93.176.176.0/20 maxlen: 20
93.177.120.0/22 maxlen: 23
94.73.32.0/19 maxlen: 19
119.12.224.0/22 maxlen: 22
119.12.224.0/23 maxlen: 23
119.12.226.0/23 maxlen: 23
119.12.228.0/22 maxlen: 22
119.12.228.0/23 maxlen: 23
119.12.230.0/23 maxlen: 23
119.12.232.0/23 maxlen: 23
119.12.234.0/23 maxlen: 23
119.12.236.0/22 maxlen: 22
119.12.236.0/23 maxlen: 23
119.12.238.0/23 maxlen: 23
119.12.240.0/23 maxlen: 23
119.12.242.0/23 maxlen: 23
119.12.244.0/22 maxlen: 22
119.12.244.0/23 maxlen: 23
119.12.246.0/23 maxlen: 23
119.12.248.0/22 maxlen: 22
119.12.248.0/23 maxlen: 23
119.12.250.0/23 maxlen: 23
137.59.58.0/24 maxlen: 24
170.253.0.0/20 maxlen: 20
170.253.16.0/20 maxlen: 20
170.253.32.0/20 maxlen: 20
170.253.48.0/20 maxlen: 20
178.218.194.0/24 maxlen: 24
181.41.128.0/21 maxlen: 21
185.79.20.0/22 maxlen: 22
185.145.64.0/22 maxlen: 22
185.146.56.0/22 maxlen: 22
185.153.164.0/23 maxlen: 23
185.153.166.0/23 maxlen: 23
185.176.4.0/22 maxlen: 22
185.197.240.0/22 maxlen: 22
185.197.240.0/23 maxlen: 23
185.197.242.0/23 maxlen: 23
185.227.212.0/23 maxlen: 23
185.227.214.0/23 maxlen: 23
185.228.152.0/23 maxlen: 23
185.228.154.0/23 maxlen: 23
185.252.12.0/22 maxlen: 22
188.65.88.0/21 maxlen: 21
188.208.219.0/24 maxlen: 24
188.212.23.0/24 maxlen: 24
193.53.160.0/22 maxlen: 22
195.160.224.0/22 maxlen: 22
207.188.128.0/21 maxlen: 21
207.188.130.0/24 maxlen: 24
207.188.136.0/21 maxlen: 21
207.188.144.0/21 maxlen: 21
207.188.152.0/21 maxlen: 21
207.188.160.0/21 maxlen: 21
207.188.168.0/21 maxlen: 21
207.188.176.0/21 maxlen: 21
207.188.184.0/21 maxlen: 21
212.14.96.0/19 maxlen: 23
212.230.136.0/24 maxlen: 24
212.230.156.0/24 maxlen: 24
213.94.0.0/18 maxlen: 23
213.177.192.0/19 maxlen: 21
217.113.240.0/20 maxlen: 22
2a00:d100::/37 maxlen: 37
2a00:d100:800::/37 maxlen: 37
2a00:d100:1000::/37 maxlen: 37
2a00:d100:1800::/37 maxlen: 37
2a00:d100:2000::/37 maxlen: 37
2a00:d100:2800::/37 maxlen: 37
2a00:d100:3000::/37 maxlen: 37
2a00:d100:3800::/37 maxlen: 37
2a00:d100:4000::/37 maxlen: 37
2a00:d100:4800::/37 maxlen: 37
2a00:d100:5000::/37 maxlen: 37
2a00:d100:5800::/37 maxlen: 37
2a00:d100:6000::/37 maxlen: 37
2a00:d100:6800::/37 maxlen: 37
2a00:d100:7000::/37 maxlen: 37
2a00:d100:7800::/37 maxlen: 37
2a00:d100:8000::/37 maxlen: 37
2a00:d100:8800::/37 maxlen: 37
2a00:d101::/37 maxlen: 37
2a00:d101:800::/37 maxlen: 37
2a00:d101:1000::/37 maxlen: 37
2a00:d101:1800::/37 maxlen: 37
2a00:d101:2000::/37 maxlen: 37
2a00:d101:2800::/37 maxlen: 37
2a00:d101:3000::/37 maxlen: 37
2a00:d101:4000::/37 maxlen: 37
2a00:d101:4800::/37 maxlen: 37
2a00:d102::/37 maxlen: 37
2a00:d102:800::/37 maxlen: 37
2a00:d102:1000::/37 maxlen: 37
2a00:d102:1800::/37 maxlen: 37
2a00:d102:2000::/37 maxlen: 37
2a00:d102:2800::/37 maxlen: 37
2a00:d102:3000::/37 maxlen: 37
2a00:d102:3800::/37 maxlen: 37
2a00:d103::/37 maxlen: 37
2a00:d103:800::/37 maxlen: 37
2a00:d103:1000::/37 maxlen: 37
2a00:d103:1800::/37 maxlen: 37
2a00:d103:2000::/37 maxlen: 37
2a00:d103:2800::/37 maxlen: 37
2a01:8480::/32 maxlen: 32
2a01:8480:2004::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 13 May 2024 08:02:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4c:73:9e:85:90:88:26:11:6c:61:7f:8e:a4:be:df:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd
Validity
Not Before: May 6 05:49:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=01f00e1a0353d2e097dbe38b47e9f292cbe9fa35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:61:3c:22:1c:0f:bc:e2:f5:63:74:f9:26:91:
09:db:c0:98:79:35:e6:6b:0b:5a:02:a9:72:f2:63:
28:d9:ba:1d:ea:d5:b0:84:b2:40:45:3f:6c:19:ce:
2d:4a:8d:22:53:56:c5:f8:72:5c:76:f1:d9:89:4d:
9b:cc:9a:40:7d:1b:4c:cf:d0:22:8a:ee:dd:30:e1:
2c:e5:b6:7d:41:94:6d:3a:85:e9:b5:8a:19:08:2f:
79:a6:c4:a7:9c:95:32:d2:43:97:2a:d7:2b:72:27:
f1:c0:b8:f6:ba:80:da:b5:ed:59:3b:a3:e1:a5:71:
bc:cd:b8:6b:2b:e6:fb:9d:d7:f2:b3:92:8e:84:a0:
e3:cc:51:de:e9:4b:62:91:b7:ab:8e:8e:41:e6:62:
1d:0f:06:7d:42:b2:dc:82:19:70:4d:d5:6e:27:8d:
30:79:25:9d:c1:8e:c9:e7:73:15:bc:66:cb:d2:4e:
81:c8:21:ce:db:9b:fd:8f:a0:dc:ce:1a:e4:76:82:
a9:8b:85:00:26:e2:be:0e:8c:cb:b6:25:dc:61:6e:
c9:44:78:47:cd:59:2c:18:85:df:fe:51:d0:f5:3a:
9a:e5:b6:93:a2:d2:43:2a:41:99:7a:2b:71:e1:41:
e2:98:bd:89:4b:6f:ba:72:5d:7c:bc:fc:07:36:d0:
8d:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:F0:0E:1A:03:53:D2:E0:97:DB:E3:8B:47:E9:F2:92:CB:E9:FA:35
X509v3 Authority Key Identifier:
keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/AfAOGgNT0uCX2-OLR-nyksvp-jU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.81.160.0/19
67.218.248.0/21
78.30.0.0/18
81.0.0.0/19
82.213.192.0/18
83.138.40.0/21
84.39.176.0/21
85.31.132.0/22
89.35.62.0/23
89.39.52.0/24
91.106.16.0/21
91.194.62.0/23
91.242.152.0/21
93.115.37.0/24
93.115.128.0/21
93.115.152.0/24
93.115.202.0/24
93.115.242.0/24
93.176.128.0/18
93.177.120.0/22
94.73.32.0/19
119.12.224.0-119.12.251.255
137.59.58.0/24
170.253.0.0/18
178.218.194.0/24
181.41.128.0/21
185.79.20.0/22
185.145.64.0/22
185.146.56.0/22
185.153.164.0/22
185.176.4.0/22
185.197.240.0/22
185.227.212.0/22
185.228.152.0/22
185.252.12.0/22
188.65.88.0/21
188.208.219.0/24
188.212.23.0/24
193.53.160.0/22
195.160.224.0/22
207.188.128.0/18
212.14.96.0/19
212.230.136.0/24
212.230.156.0/24
213.94.0.0/18
213.177.192.0/19
217.113.240.0/20
IPv6:
2a00:d100::-2a00:d100:8fff:ffff:ffff:ffff:ffff:ffff
2a00:d101::-2a00:d101:37ff:ffff:ffff:ffff:ffff:ffff
2a00:d101:4000::/36
2a00:d102::/34
2a00:d103::-2a00:d103:2fff:ffff:ffff:ffff:ffff:ffff
2a01:8480::/32
Signature Algorithm: sha256WithRSAEncryption
09:69:6e:09:e6:0a:4e:b4:2d:d2:f8:0e:d1:90:72:ed:90:8a:
6d:12:bd:80:46:d9:0d:be:b8:9b:2c:5f:30:a5:4b:f5:ed:ee:
12:d7:6c:10:d3:b0:39:9f:30:19:c6:6e:f4:b6:40:e8:d7:c4:
bd:4f:e2:5b:e9:65:c1:5f:82:81:d5:70:04:c4:bf:2e:36:97:
b1:b0:1c:a7:34:0d:10:93:05:c8:8b:71:c4:70:c1:3e:77:a0:
9e:b6:24:06:67:3e:76:12:6d:99:18:8a:f4:d0:f9:0a:7d:19:
a3:5d:06:87:2b:3d:0b:fc:b3:1b:4b:f7:07:4c:38:36:79:72:
70:df:78:8a:9f:3b:59:7a:38:02:41:f5:8d:c8:24:88:c4:85:
fd:87:b6:78:c3:3c:74:67:2f:18:af:58:26:e8:91:09:fc:75:
a8:ab:ba:7b:52:6a:d5:f7:33:ca:b7:a2:09:db:b8:49:c6:cd:
67:94:c2:84:bb:ce:26:e0:78:4b:7d:c0:77:48:ad:75:93:ed:
f4:8b:02:95:ed:cc:07:dc:01:90:6d:4c:44:65:43:76:df:7e:
04:94:8b:2c:7b:f2:ea:1a:58:e3:02:9b:74:18:5e:81:12:a2:
e8:98:03:24:3b:1d:8f:fd:fa:14:5d:46:61:5b:8f:f2:da:2e:
99:9e:c9:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:11 2024 by rpki-client on console-fra.rpki-client.org