Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/mC-H1pUzKsEOBhiYIwVj9iF3ZUw.roa
File: mC-H1pUzKsEOBhiYIwVj9iF3ZUw.roa (raw, json)
Hash identifier: FwdiePq6TIC5s7J5Zn/CiynqyQQvGo5bovg9Lt6D9HQ=
Subject key identifier: 98:2F:87:D6:95:33:2A:C1:0E:06:18:98:23:05:63:F6:21:77:65:4C
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0194222039F03E3F2A4B06ED0DC119D3C076
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/mC-H1pUzKsEOBhiYIwVj9iF3ZUw.roa
Signing time: Wed 01 Jan 2025 13:48:44 +0000
ROA not before: Wed 01 Jan 2025 13:48:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201942
IP address blocks: 31.170.100.0/22 maxlen: 24
37.32.99.0/24 maxlen: 24
45.81.152.0/22 maxlen: 24
45.90.238.0/24 maxlen: 24
45.137.160.0/22 maxlen: 24
45.147.104.0/22 maxlen: 24
45.147.116.0/22 maxlen: 24
45.159.76.0/22 maxlen: 24
81.21.228.0/22 maxlen: 24
85.115.192.0/22 maxlen: 24
88.135.64.0/22 maxlen: 24
91.235.40.0/24 maxlen: 24
91.235.41.0/24 maxlen: 24
91.238.239.0/24 maxlen: 24
92.60.34.0/24 maxlen: 24
92.60.35.0/24 maxlen: 24
93.92.228.0/22 maxlen: 24
93.189.120.0/24 maxlen: 24
93.189.123.0/24 maxlen: 24
95.214.144.0/22 maxlen: 24
109.230.194.0/24 maxlen: 24
109.230.250.0/24 maxlen: 24
185.91.108.0/22 maxlen: 24
185.105.12.0/22 maxlen: 24
185.105.232.0/22 maxlen: 24
185.106.124.0/22 maxlen: 24
185.107.152.0/22 maxlen: 24
185.118.52.0/23 maxlen: 23
185.118.54.0/23 maxlen: 23
185.119.48.0/22 maxlen: 24
185.128.52.0/22 maxlen: 24
185.129.104.0/22 maxlen: 24
185.150.78.0/23 maxlen: 24
185.163.168.0/22 maxlen: 24
185.163.232.0/22 maxlen: 24
185.166.172.0/22 maxlen: 24
185.175.152.0/22 maxlen: 24
185.176.188.0/22 maxlen: 24
185.179.228.0/22 maxlen: 24
185.179.232.0/22 maxlen: 24
185.189.64.0/22 maxlen: 24
185.196.40.0/22 maxlen: 24
185.196.42.0/24 maxlen: 24
185.196.43.0/24 maxlen: 24
185.197.216.0/22 maxlen: 24
185.199.44.0/22 maxlen: 24
185.199.55.0/24 maxlen: 24
185.200.228.0/22 maxlen: 24
185.201.152.0/22 maxlen: 24
185.202.204.0/22 maxlen: 24
185.204.108.0/24 maxlen: 24
185.204.244.0/22 maxlen: 24
185.212.84.0/22 maxlen: 24
185.216.28.0/22 maxlen: 24
185.217.12.0/22 maxlen: 24
185.218.16.0/22 maxlen: 24
185.220.240.0/22 maxlen: 24
185.221.16.0/22 maxlen: 24
185.222.188.0/22 maxlen: 24
185.223.220.0/22 maxlen: 24
185.224.184.0/22 maxlen: 24
185.224.220.0/22 maxlen: 24
185.226.8.0/22 maxlen: 24
185.226.28.0/22 maxlen: 24
185.227.176.0/22 maxlen: 24
185.227.204.0/24 maxlen: 24
185.230.48.0/22 maxlen: 24
185.232.8.0/22 maxlen: 24
185.239.140.0/22 maxlen: 22
185.239.252.0/22 maxlen: 24
185.239.252.0/24 maxlen: 24
185.239.253.0/24 maxlen: 24
185.239.255.0/24 maxlen: 24
185.245.32.0/23 maxlen: 23
185.247.4.0/24 maxlen: 24
193.17.180.0/22 maxlen: 24
193.17.180.0/24 maxlen: 24
193.17.182.0/24 maxlen: 24
193.26.152.0/22 maxlen: 24
193.35.88.0/22 maxlen: 24
193.105.66.0/24 maxlen: 24
194.35.40.0/24 maxlen: 24
194.38.56.0/22 maxlen: 24
194.41.116.0/22 maxlen: 24
194.41.118.0/24 maxlen: 24
195.182.13.0/24 maxlen: 24
212.80.208.0/22 maxlen: 24
212.115.44.0/22 maxlen: 24
213.232.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Jan 2025 15:07:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:39:f0:3e:3f:2a:4b:06:ed:0d:c1:19:d3:c0:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 1 13:48:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=982f87d695332ac10e061898230563f62177654c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a8:08:ad:c2:72:e0:a9:51:8f:c8:d2:aa:ce:
5d:eb:61:57:cb:9d:92:43:45:25:3a:a5:a1:61:0a:
ce:b5:58:ee:c1:27:b4:c0:c2:6d:6b:24:d7:6e:bf:
dc:ab:49:69:e7:fd:3a:9b:48:0c:fe:1b:48:61:04:
77:92:1b:0d:e0:c5:08:b4:f7:98:77:26:37:8d:ff:
28:b4:04:86:5c:5c:63:f3:89:76:3c:e6:92:29:f0:
54:11:b3:30:6f:e2:8c:e7:54:a0:62:a7:30:bf:2f:
54:44:6d:34:9e:f5:42:6e:ac:be:a5:dd:82:11:c8:
0b:bd:54:d4:f1:6c:2c:42:8b:56:58:75:ec:8b:a9:
37:88:91:05:0f:5a:dc:a4:6c:eb:d1:4e:58:a0:4c:
db:8d:10:a4:60:2a:cc:e9:ab:79:59:e2:c7:d3:d6:
b1:e1:bb:c8:0d:34:5b:a3:ba:8d:8d:c7:26:45:98:
64:90:61:0c:69:1b:c8:bb:f2:14:35:79:5f:76:22:
1b:c4:5e:92:d6:be:82:82:db:82:19:b9:71:bb:62:
4f:4c:a4:83:25:03:36:ed:57:4d:57:58:5e:97:d6:
32:91:33:da:a6:cb:16:e6:a5:ad:b1:a5:14:c0:aa:
4f:01:29:f1:48:8c:1b:f5:d2:ee:cb:fa:45:3e:9a:
e5:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:2F:87:D6:95:33:2A:C1:0E:06:18:98:23:05:63:F6:21:77:65:4C
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/mC-H1pUzKsEOBhiYIwVj9iF3ZUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.100.0/22
37.32.99.0/24
45.81.152.0/22
45.90.238.0/24
45.137.160.0/22
45.147.104.0/22
45.147.116.0/22
45.159.76.0/22
81.21.228.0/22
85.115.192.0/22
88.135.64.0/22
91.235.40.0/23
91.238.239.0/24
92.60.34.0/23
93.92.228.0/22
93.189.120.0/24
93.189.123.0/24
95.214.144.0/22
109.230.194.0/24
109.230.250.0/24
185.91.108.0/22
185.105.12.0/22
185.105.232.0/22
185.106.124.0/22
185.107.152.0/22
185.118.52.0/22
185.119.48.0/22
185.128.52.0/22
185.129.104.0/22
185.150.78.0/23
185.163.168.0/22
185.163.232.0/22
185.166.172.0/22
185.175.152.0/22
185.176.188.0/22
185.179.228.0-185.179.235.255
185.189.64.0/22
185.196.40.0/22
185.197.216.0/22
185.199.44.0/22
185.199.55.0/24
185.200.228.0/22
185.201.152.0/22
185.202.204.0/22
185.204.108.0/24
185.204.244.0/22
185.212.84.0/22
185.216.28.0/22
185.217.12.0/22
185.218.16.0/22
185.220.240.0/22
185.221.16.0/22
185.222.188.0/22
185.223.220.0/22
185.224.184.0/22
185.224.220.0/22
185.226.8.0/22
185.226.28.0/22
185.227.176.0/22
185.227.204.0/24
185.230.48.0/22
185.232.8.0/22
185.239.140.0/22
185.239.252.0/22
185.245.32.0/23
185.247.4.0/24
193.17.180.0/22
193.26.152.0/22
193.35.88.0/22
193.105.66.0/24
194.35.40.0/24
194.38.56.0/22
194.41.116.0/22
195.182.13.0/24
212.80.208.0/22
212.115.44.0/22
213.232.232.0/24
Signature Algorithm: sha256WithRSAEncryption
50:d3:ad:f7:f8:11:fa:4c:6b:13:f4:b1:ec:1b:7e:69:c1:fb:
0d:ef:14:24:eb:f4:97:6f:c8:a4:00:b3:3b:18:71:26:e3:70:
9d:6b:35:44:6d:aa:83:cf:6a:3b:cc:49:79:a4:60:19:ff:e7:
89:eb:7d:22:7f:90:e6:a6:c4:3d:e7:47:19:55:ee:67:0a:a2:
f6:34:d7:6c:6a:9f:89:a4:df:33:83:e3:8d:e7:de:b6:9d:c0:
85:17:43:ba:33:1d:4c:f7:5f:32:0e:53:49:47:d3:db:22:79:
fb:7d:f4:e3:37:e2:4c:f6:c8:d9:8c:3c:70:11:b6:bf:9c:3a:
ac:0a:71:76:d4:fb:c7:69:93:79:e3:7e:d3:6c:63:a8:f1:94:
ea:dd:f7:91:e8:d9:29:01:ca:ef:34:ba:b6:4d:22:dd:85:e0:
23:f7:ba:89:9b:62:22:96:dd:5c:6c:32:ef:10:cd:c5:15:80:
77:f0:bf:a7:93:04:2f:7e:b0:4e:84:20:ae:f4:52:fd:27:b1:
bb:6b:1d:eb:ab:a8:a7:1c:ba:4c:db:d5:01:d4:c9:82:e0:9e:
b8:76:e1:ea:4a:14:c4:b4:ea:29:a5:57:2e:72:01:27:87:52:
14:43:50:5b:8c:8d:42:fa:0e:e0:60:b7:8c:31:a3:bb:a2:83:
e9:db:9c:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:31:28 2025 by rpki-client