Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/Rt_jGwSWFYiK9UII0w21PoCb9PM.roa
File: Rt_jGwSWFYiK9UII0w21PoCb9PM.roa (raw, json)
Hash identifier: EI0VjcmWApmYLPBGo+uNlXM9ZIKetyIIcXz8Yg8ucBU=
Subject key identifier: 46:DF:E3:1B:04:96:15:88:8A:F5:42:08:D3:0D:B5:3E:80:9B:F4:F3
Certificate issuer: /CN=aebf394e2f1b251c88d988a87161084580786ef5
Certificate serial: 01929136F97607D8172E97CD91A7DA58DA8D
Authority key identifier: AE:BF:39:4E:2F:1B:25:1C:88:D9:88:A8:71:61:08:45:80:78:6E:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rr85Ti8bJRyI2YiocWEIRYB4bvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/Rt_jGwSWFYiK9UII0w21PoCb9PM.roa
Signing time: Tue 15 Oct 2024 17:25:51 +0000
ROA not before: Tue 15 Oct 2024 17:25:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16347
IP address blocks: 5.182.252.0/22 maxlen: 24
37.18.160.0/20 maxlen: 24
37.58.128.0/17 maxlen: 24
37.157.8.0/23 maxlen: 24
37.157.10.0/24 maxlen: 24
37.157.12.0/22 maxlen: 24
37.157.60.0/22 maxlen: 24
45.142.172.0/22 maxlen: 24
45.145.124.0/22 maxlen: 24
46.20.160.0/20 maxlen: 24
62.102.224.0/19 maxlen: 24
62.244.70.0/23 maxlen: 24
62.244.72.0/22 maxlen: 24
62.244.80.0/23 maxlen: 24
62.244.90.0/23 maxlen: 24
62.244.92.0/23 maxlen: 24
79.98.96.0/21 maxlen: 24
81.22.216.0/21 maxlen: 24
91.103.232.0/21 maxlen: 24
91.206.156.0/23 maxlen: 24
91.217.94.0/23 maxlen: 24
91.229.230.0/23 maxlen: 24
92.61.72.0/21 maxlen: 24
94.127.8.0/21 maxlen: 24
103.73.172.0/22 maxlen: 24
103.77.32.0/22 maxlen: 24
103.229.36.0/23 maxlen: 24
103.232.172.0/22 maxlen: 24
109.69.192.0/21 maxlen: 24
109.237.240.0/20 maxlen: 24
128.127.128.0/20 maxlen: 24
146.247.88.0/21 maxlen: 24
149.255.136.0/21 maxlen: 24
149.255.136.0/22 maxlen: 24
178.249.160.0/21 maxlen: 24
185.15.128.0/22 maxlen: 24
185.42.132.0/22 maxlen: 24
185.49.120.0/23 maxlen: 23
185.49.122.0/24 maxlen: 24
185.65.224.0/22 maxlen: 24
185.67.88.0/22 maxlen: 24
185.79.148.0/22 maxlen: 24
185.90.96.0/22 maxlen: 24
185.95.120.0/22 maxlen: 24
185.149.8.0/22 maxlen: 24
185.172.16.0/22 maxlen: 24
185.196.248.0/22 maxlen: 24
185.204.140.0/22 maxlen: 24
185.208.248.0/22 maxlen: 24
185.247.248.0/22 maxlen: 24
188.66.56.0/22 maxlen: 24
193.27.194.0/23 maxlen: 24
193.41.95.0/24 maxlen: 24
193.47.139.0/24 maxlen: 24
193.108.197.0/24 maxlen: 24
193.222.142.0/23 maxlen: 24
193.222.188.0/23 maxlen: 24
194.177.32.0/19 maxlen: 24
195.214.240.0/21 maxlen: 24
212.51.160.0/19 maxlen: 24
213.108.64.0/21 maxlen: 24
213.151.166.0/24 maxlen: 24
213.151.168.0/23 maxlen: 24
213.151.171.0/24 maxlen: 24
213.151.172.0/23 maxlen: 24
213.151.174.0/24 maxlen: 24
213.151.175.0/24 maxlen: 24
2a01:6d8::/32 maxlen: 32
2a01:728::/29 maxlen: 48
2a03:4c00::/29 maxlen: 48
2a03:bf40::/32 maxlen: 32
2a05:df00::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 16 Oct 2024 11:54:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:91:36:f9:76:07:d8:17:2e:97:cd:91:a7:da:58:da:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aebf394e2f1b251c88d988a87161084580786ef5
Validity
Not Before: Oct 15 17:25:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=46dfe31b049615888af54208d30db53e809bf4f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:01:7d:4e:cb:59:18:51:39:e8:41:81:e5:a0:
f5:c5:57:8e:48:c9:34:43:26:26:da:cf:e5:85:ce:
dc:b5:f6:d0:c3:48:6e:0a:ad:ae:e6:85:78:70:4d:
99:0e:30:55:a2:f7:8e:f7:b5:14:6e:75:6d:5a:f8:
61:1d:ec:03:15:2f:8e:66:bf:0e:44:26:95:be:15:
0f:d1:4f:15:6a:04:c5:e9:79:0b:a4:bc:9b:eb:11:
09:fd:83:d3:0b:8b:2e:6d:af:6d:3b:0c:d9:db:0e:
87:a9:65:05:b9:02:1b:05:fa:ad:c7:3e:37:ab:bc:
c2:34:4d:50:13:44:57:5f:78:d9:41:bb:f4:14:67:
2b:21:47:89:82:09:fb:18:83:e6:a3:26:db:99:0f:
30:68:dc:2f:4d:f4:25:05:eb:ba:8f:a1:1f:43:30:
8e:e3:d2:9a:4d:88:2d:09:6d:c6:7a:c6:cf:6c:27:
7c:30:e2:e8:70:7b:d8:2a:df:ae:44:0f:05:41:11:
eb:44:e1:8b:61:91:e1:97:34:17:f4:ee:16:50:8e:
1b:58:ae:cd:30:93:b3:54:8f:b2:26:1b:7f:34:0d:
ff:f1:c5:75:98:8d:17:09:a6:61:c0:93:53:e8:7d:
e5:eb:3e:8f:e8:bb:9b:45:dd:c7:20:09:1a:8a:3c:
3e:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:DF:E3:1B:04:96:15:88:8A:F5:42:08:D3:0D:B5:3E:80:9B:F4:F3
X509v3 Authority Key Identifier:
keyid:AE:BF:39:4E:2F:1B:25:1C:88:D9:88:A8:71:61:08:45:80:78:6E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rr85Ti8bJRyI2YiocWEIRYB4bvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/Rt_jGwSWFYiK9UII0w21PoCb9PM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/rr85Ti8bJRyI2YiocWEIRYB4bvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.252.0/22
37.18.160.0/20
37.58.128.0/17
37.157.8.0-37.157.10.255
37.157.12.0/22
37.157.60.0/22
45.142.172.0/22
45.145.124.0/22
46.20.160.0/20
62.102.224.0/19
62.244.70.0-62.244.75.255
62.244.80.0/23
62.244.90.0-62.244.93.255
79.98.96.0/21
81.22.216.0/21
91.103.232.0/21
91.206.156.0/23
91.217.94.0/23
91.229.230.0/23
92.61.72.0/21
94.127.8.0/21
103.73.172.0/22
103.77.32.0/22
103.229.36.0/23
103.232.172.0/22
109.69.192.0/21
109.237.240.0/20
128.127.128.0/20
146.247.88.0/21
149.255.136.0/21
178.249.160.0/21
185.15.128.0/22
185.42.132.0/22
185.49.120.0-185.49.122.255
185.65.224.0/22
185.67.88.0/22
185.79.148.0/22
185.90.96.0/22
185.95.120.0/22
185.149.8.0/22
185.172.16.0/22
185.196.248.0/22
185.204.140.0/22
185.208.248.0/22
185.247.248.0/22
188.66.56.0/22
193.27.194.0/23
193.41.95.0/24
193.47.139.0/24
193.108.197.0/24
193.222.142.0/23
193.222.188.0/23
194.177.32.0/19
195.214.240.0/21
212.51.160.0/19
213.108.64.0/21
213.151.166.0/24
213.151.168.0/23
213.151.171.0-213.151.175.255
IPv6:
2a01:6d8::/32
2a01:728::/29
2a03:4c00::/29
2a03:bf40::/32
2a05:df00::/29
Signature Algorithm: sha256WithRSAEncryption
67:46:4a:70:18:33:f8:f6:e5:00:e3:3a:85:46:72:fc:76:0c:
34:a4:10:51:b1:5b:35:b1:e5:a1:e1:ca:d2:6a:70:72:8f:28:
a4:63:15:a8:4c:f6:3a:57:88:4d:da:ac:09:f2:b5:f6:b3:5f:
79:f1:56:53:66:5c:3e:f1:56:4e:6d:79:27:a1:69:06:9c:de:
22:85:25:3d:87:0d:87:93:e7:52:84:b8:77:58:ec:5a:eb:a7:
ae:8c:c6:6e:be:18:d6:1c:95:9e:b2:f6:41:b6:ce:03:5d:22:
b4:36:91:f8:05:f3:cc:84:b7:45:b9:90:a8:ab:40:45:01:9e:
75:bc:c5:20:a6:0f:93:78:87:cc:6b:c3:00:60:46:20:aa:cb:
b8:a2:10:92:a1:a8:10:a2:a4:b8:98:d9:f2:72:61:0e:44:2c:
ba:e3:ff:4a:24:03:8b:99:46:f8:d0:8c:fa:83:ca:dd:ef:cb:
0b:70:75:7e:16:b0:3f:7a:c6:8b:43:f0:40:22:d7:c1:e3:b6:
08:4e:62:56:4d:c9:eb:c4:fc:63:57:18:69:50:30:0f:dc:df:
9a:0b:7b:af:df:dc:88:ff:3f:a0:13:a5:98:5d:fb:61:80:b2:
e7:7f:20:96:18:4c:50:85:74:07:80:8c:3e:09:a8:6f:cc:04:
ab:f4:b2:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:50:09 2025 by rpki-client