Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/Z9hDbdwHQ_ZOgKrZUsYLDp7qJ6s.roa
File: Z9hDbdwHQ_ZOgKrZUsYLDp7qJ6s.roa (raw, json)
Hash identifier: ZPAERf5tjV8T7u+DhsuBYfoDVjZKDjoYsjZ2AoEaDc4=
Subject key identifier: 67:D8:43:6D:DC:07:43:F6:4E:80:AA:D9:52:C6:0B:0E:9E:EA:27:AB
Certificate issuer: /CN=0526b03c717184c3680817e55e2455f85d73a413
Certificate serial: 01938846A084D6FC5CFFBE4867684F9AEBC6
Authority key identifier: 05:26:B0:3C:71:71:84:C3:68:08:17:E5:5E:24:55:F8:5D:73:A4:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSawPHFxhMNoCBflXiRV-F1zpBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/Z9hDbdwHQ_ZOgKrZUsYLDp7qJ6s.roa
Signing time: Mon 02 Dec 2024 16:49:10 +0000
ROA not before: Mon 02 Dec 2024 16:49:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49453
IP address blocks: 37.123.208.0/24 maxlen: 24
37.123.210.0/24 maxlen: 24
45.133.250.0/24 maxlen: 24
109.202.97.0/24 maxlen: 24
109.202.98.0/24 maxlen: 24
109.202.99.0/24 maxlen: 24
109.202.100.0/24 maxlen: 24
109.202.101.0/24 maxlen: 24
109.202.102.0/24 maxlen: 24
109.202.103.0/24 maxlen: 24
109.202.104.0/24 maxlen: 24
109.202.106.0/24 maxlen: 24
109.202.107.0/24 maxlen: 24
109.202.108.0/24 maxlen: 24
109.202.109.0/24 maxlen: 24
109.202.110.0/24 maxlen: 24
109.202.111.0/24 maxlen: 24
109.232.224.0/24 maxlen: 24
109.232.225.0/24 maxlen: 24
109.232.226.0/24 maxlen: 24
109.232.227.0/24 maxlen: 24
109.232.228.0/24 maxlen: 24
109.232.229.0/24 maxlen: 24
109.232.230.0/24 maxlen: 24
109.232.231.0/24 maxlen: 24
134.19.176.0/24 maxlen: 24
134.19.177.0/24 maxlen: 24
134.19.178.0/24 maxlen: 24
134.19.179.0/24 maxlen: 24
134.19.180.0/24 maxlen: 24
134.19.181.0/24 maxlen: 24
134.19.182.0/24 maxlen: 24
134.19.183.0/24 maxlen: 24
134.19.184.0/24 maxlen: 24
134.19.185.0/24 maxlen: 24
134.19.186.0/24 maxlen: 24
134.19.187.0/24 maxlen: 24
134.19.188.0/24 maxlen: 24
134.19.189.0/24 maxlen: 24
134.19.190.0/23 maxlen: 23
185.23.212.0/22 maxlen: 22
185.23.214.0/24 maxlen: 24
188.95.49.0/24 maxlen: 24
188.95.50.0/24 maxlen: 24
188.95.51.0/24 maxlen: 24
188.95.52.0/24 maxlen: 24
188.95.53.0/24 maxlen: 24
213.152.160.0/24 maxlen: 24
213.152.161.0/24 maxlen: 24
213.152.162.0/24 maxlen: 24
213.152.163.0/24 maxlen: 24
213.152.164.0/24 maxlen: 24
213.152.165.0/24 maxlen: 24
213.152.166.0/24 maxlen: 24
213.152.167.0/24 maxlen: 24
213.152.168.0/24 maxlen: 24
213.152.169.0/24 maxlen: 24
213.152.170.0/24 maxlen: 24
213.152.171.0/24 maxlen: 24
213.152.172.0/24 maxlen: 24
213.152.173.0/24 maxlen: 24
213.152.174.0/24 maxlen: 24
213.152.176.0/24 maxlen: 24
213.152.177.0/24 maxlen: 24
213.152.180.0/24 maxlen: 24
213.152.181.0/24 maxlen: 24
213.152.182.0/24 maxlen: 24
213.152.183.0/24 maxlen: 24
213.152.184.0/24 maxlen: 24
213.152.185.0/24 maxlen: 24
213.152.186.0/24 maxlen: 24
213.152.187.0/24 maxlen: 24
213.152.188.0/22 maxlen: 22
213.152.188.0/24 maxlen: 24
213.152.189.0/24 maxlen: 24
2a00:1678:127::/48 maxlen: 48
2a00:1678:a2b::/48 maxlen: 48
2a00:1678:1337::/48 maxlen: 48
2a00:1678:2470::/48 maxlen: 48
2a00:1678:3cc0::/48 maxlen: 48
2a00:1678:5524::/48 maxlen: 48
2a00:1678:5afe::/48 maxlen: 48
2a00:1678:b00b::/48 maxlen: 48
2a00:1678:baba::/48 maxlen: 48
2a00:1678:da7a::/48 maxlen: 48
2a00:1678:dea1::/48 maxlen: 48
2a00:1678:efa5::/48 maxlen: 48
2a00:1678:f113::/48 maxlen: 48
2a00:1678:fa11::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 04 Dec 2024 21:21:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:88:46:a0:84:d6:fc:5c:ff:be:48:67:68:4f:9a:eb:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0526b03c717184c3680817e55e2455f85d73a413
Validity
Not Before: Dec 2 16:49:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=67d8436ddc0743f64e80aad952c60b0e9eea27ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:98:04:e9:82:9b:ff:c5:90:3b:5d:d8:48:d5:
19:f2:15:d4:90:74:9a:ac:15:ea:19:75:90:25:83:
58:5b:9f:23:a2:63:0d:42:9a:3a:d8:5a:63:ef:8d:
13:bf:40:cf:c8:66:3f:6e:fc:f2:e0:4b:77:49:fd:
84:4b:49:b6:4a:d7:97:38:9e:7a:a6:27:f1:23:b0:
ab:a8:26:3f:fb:91:b8:1e:fb:92:9e:94:0e:5c:ce:
38:ee:d6:bd:ad:6e:19:c8:c2:1f:b3:f7:ca:5a:ae:
ae:70:e3:04:fa:4e:e5:94:84:d6:52:72:b5:d0:dc:
6e:c1:f6:b3:b4:7f:3d:e3:ee:a3:f4:23:62:ca:f8:
e1:7f:8c:ea:c0:5d:17:7c:a9:c0:fb:7a:67:72:bb:
bf:36:bf:89:0a:7c:60:de:73:55:9f:2d:83:ac:ff:
09:7c:ee:f7:09:9c:07:fe:2f:c7:06:f2:cd:84:f0:
39:0d:c5:e3:95:6c:27:bb:ba:c3:33:5f:c1:58:f0:
90:0d:3d:08:fc:4a:2c:ce:0a:8e:95:c1:66:a5:94:
6e:c9:1a:b6:3e:9a:cb:ef:42:1c:d1:90:88:ee:8c:
7a:5e:70:a4:60:4c:4e:9b:ff:b5:12:f0:49:b2:c8:
aa:2b:15:19:6d:1d:9c:a2:e2:08:ff:da:ae:bb:b9:
27:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:D8:43:6D:DC:07:43:F6:4E:80:AA:D9:52:C6:0B:0E:9E:EA:27:AB
X509v3 Authority Key Identifier:
keyid:05:26:B0:3C:71:71:84:C3:68:08:17:E5:5E:24:55:F8:5D:73:A4:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSawPHFxhMNoCBflXiRV-F1zpBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/Z9hDbdwHQ_ZOgKrZUsYLDp7qJ6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/BSawPHFxhMNoCBflXiRV-F1zpBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.123.208.0/24
37.123.210.0/24
45.133.250.0/24
109.202.97.0-109.202.104.255
109.202.106.0-109.202.111.255
109.232.224.0/21
134.19.176.0/20
185.23.212.0/22
188.95.49.0-188.95.53.255
213.152.160.0-213.152.174.255
213.152.176.0/23
213.152.180.0-213.152.191.255
IPv6:
2a00:1678:127::/48
2a00:1678:a2b::/48
2a00:1678:1337::/48
2a00:1678:2470::/48
2a00:1678:3cc0::/48
2a00:1678:5524::/48
2a00:1678:5afe::/48
2a00:1678:b00b::/48
2a00:1678:baba::/48
2a00:1678:da7a::/48
2a00:1678:dea1::/48
2a00:1678:efa5::/48
2a00:1678:f113::/48
2a00:1678:fa11::/48
Signature Algorithm: sha256WithRSAEncryption
48:92:d5:86:e7:51:09:25:ce:32:9c:7f:4a:ae:0c:19:36:c1:
bb:ea:9f:30:ca:96:41:c9:63:55:15:d9:d1:16:03:27:6c:c8:
bc:2c:45:ac:42:a0:42:96:23:d7:db:f0:3c:03:55:2e:b5:b0:
79:0a:8e:88:af:4c:75:18:5e:e0:a0:9f:95:6b:70:56:01:0c:
2a:a8:3d:fc:6c:56:56:7a:05:32:a6:20:76:71:96:dc:18:c9:
35:b6:7b:11:25:89:80:15:ff:92:69:8e:a5:a7:76:c2:c3:19:
2e:80:0f:00:21:e4:8d:c5:7f:5c:8a:81:87:0a:56:33:5f:94:
f0:3c:90:a2:ca:3e:06:54:9f:55:e8:69:71:f4:0f:c3:a0:fb:
8a:e9:b2:11:8c:d9:79:16:c8:07:d9:6d:50:96:c2:83:d6:5a:
81:b6:b4:fe:d0:f7:05:51:40:6b:f3:8a:08:fc:70:4c:69:2c:
c9:f4:ff:7c:52:d6:27:93:52:17:04:c2:1d:c7:7c:52:94:72:
36:e8:2f:ee:5d:7b:7d:52:64:50:18:d9:33:aa:f8:a6:52:76:
b7:03:9c:88:79:60:5e:93:09:f9:81:e3:1f:82:47:ad:d1:11:
c9:1b:11:59:bb:28:99:1b:b3:69:6f:78:20:8d:fb:04:e9:57:
66:8e:ef:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:29:56 2025 by rpki-client