Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/QgKNV9zio7_KJKqkxNylTPo9ito.roa
File: QgKNV9zio7_KJKqkxNylTPo9ito.roa (raw, json)
Hash identifier: C7Gy0Q0jr3eJ97+uiWRJMvv+ZlpliYQOaljtVeZHGJ0=
Subject key identifier: 42:02:8D:57:DC:E2:A3:BF:CA:24:AA:A4:C4:DC:A5:4C:FA:3D:8A:DA
Certificate issuer: /CN=07a6a589ee848a8052238191b98035e775122725
Certificate serial: 0194A7F4812C083089B5E48EFDAA1222F3F0
Authority key identifier: 07:A6:A5:89:EE:84:8A:80:52:23:81:91:B9:80:35:E7:75:12:27:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6alie6EioBSI4GRuYA153USJyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/QgKNV9zio7_KJKqkxNylTPo9ito.roa
Signing time: Mon 27 Jan 2025 13:30:06 +0000
ROA not before: Mon 27 Jan 2025 13:30:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210218
IP address blocks: 2.58.93.0/24 maxlen: 24
2.58.94.0/24 maxlen: 24
2.58.136.0/23 maxlen: 23
2.58.138.0/23 maxlen: 23
2.59.248.0/22 maxlen: 22
31.13.194.0/24 maxlen: 24
31.13.249.0/24 maxlen: 24
31.13.250.0/23 maxlen: 23
31.13.252.0/22 maxlen: 22
45.8.74.0/23 maxlen: 23
45.12.248.0/22 maxlen: 22
45.139.100.0/22 maxlen: 22
45.143.100.0/22 maxlen: 22
45.149.232.0/24 maxlen: 24
45.149.233.0/24 maxlen: 24
77.75.56.0/23 maxlen: 23
77.75.58.0/23 maxlen: 23
78.40.160.0/22 maxlen: 22
78.40.164.0/22 maxlen: 22
80.249.124.0/22 maxlen: 22
87.120.46.0/23 maxlen: 23
87.120.63.0/24 maxlen: 24
87.120.64.0/24 maxlen: 24
87.120.65.0/24 maxlen: 24
87.120.66.0/24 maxlen: 24
87.120.85.0/24 maxlen: 24
87.120.86.0/24 maxlen: 24
87.120.96.0/23 maxlen: 23
87.120.111.0/24 maxlen: 24
87.120.177.0/24 maxlen: 24
87.120.218.0/24 maxlen: 24
87.120.224.0/24 maxlen: 24
87.120.226.0/24 maxlen: 24
87.120.232.0/22 maxlen: 22
87.121.19.0/24 maxlen: 24
87.121.36.0/23 maxlen: 23
87.121.59.0/24 maxlen: 24
87.121.66.0/23 maxlen: 23
87.121.68.0/24 maxlen: 24
87.121.116.0/24 maxlen: 24
87.121.148.0/23 maxlen: 23
91.92.3.0/24 maxlen: 24
91.92.24.0/24 maxlen: 24
91.92.25.0/24 maxlen: 24
91.197.196.0/22 maxlen: 22
91.243.184.0/22 maxlen: 22
92.249.51.0/24 maxlen: 24
93.123.68.0/22 maxlen: 22
93.123.86.0/23 maxlen: 23
93.123.108.0/24 maxlen: 24
94.33.0.0/24 maxlen: 24
94.33.1.0/24 maxlen: 24
94.154.174.0/23 maxlen: 23
94.156.16.0/22 maxlen: 22
94.156.32.0/24 maxlen: 24
94.156.48.0/21 maxlen: 21
94.156.95.0/24 maxlen: 24
94.156.108.0/22 maxlen: 22
94.156.168.0/23 maxlen: 23
94.156.182.0/23 maxlen: 23
94.156.184.0/24 maxlen: 24
94.156.187.0/24 maxlen: 24
94.156.192.0/23 maxlen: 23
94.156.234.0/23 maxlen: 23
94.156.240.0/22 maxlen: 22
94.156.246.0/23 maxlen: 23
94.240.56.0/22 maxlen: 22
95.214.124.0/23 maxlen: 23
95.214.126.0/23 maxlen: 23
109.206.238.0/24 maxlen: 24
141.98.0.0/24 maxlen: 24
164.40.184.0/24 maxlen: 24
164.40.186.0/23 maxlen: 23
171.22.29.0/24 maxlen: 24
176.125.252.0/24 maxlen: 24
176.125.253.0/24 maxlen: 24
178.175.184.0/21 maxlen: 21
178.175.184.0/22 maxlen: 22
185.171.148.0/22 maxlen: 22
185.221.66.0/24 maxlen: 24
185.225.72.0/24 maxlen: 24
185.225.73.0/24 maxlen: 24
185.252.178.0/24 maxlen: 24
193.19.200.0/22 maxlen: 22
193.36.232.0/22 maxlen: 22
193.37.43.0/24 maxlen: 24
193.37.46.0/24 maxlen: 24
193.46.172.0/22 maxlen: 22
193.56.16.0/22 maxlen: 22
193.56.248.0/22 maxlen: 22
193.58.184.0/22 maxlen: 22
193.207.0.0/24 maxlen: 24
193.207.1.0/24 maxlen: 24
193.207.2.0/24 maxlen: 24
193.207.9.0/24 maxlen: 24
193.207.10.0/24 maxlen: 24
193.207.11.0/24 maxlen: 24
193.207.12.0/24 maxlen: 24
193.207.13.0/24 maxlen: 24
193.207.16.0/21 maxlen: 21
194.48.249.0/24 maxlen: 24
194.76.204.0/22 maxlen: 22
194.147.8.0/22 maxlen: 22
194.180.50.0/24 maxlen: 24
195.178.120.0/24 maxlen: 24
195.225.120.0/22 maxlen: 22
212.22.128.0/19 maxlen: 19
212.24.0.0/19 maxlen: 19
212.73.135.0/24 maxlen: 24
2a09:e6c0::/29 maxlen: 29
2a09:e6c0::/48 maxlen: 48
2a09:e6c7:f800::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 14 Feb 2025 10:17:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:a7:f4:81:2c:08:30:89:b5:e4:8e:fd:aa:12:22:f3:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a6a589ee848a8052238191b98035e775122725
Validity
Not Before: Jan 27 13:30:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=42028d57dce2a3bfca24aaa4c4dca54cfa3d8ada
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ec:6f:99:81:cd:0c:86:7f:f7:25:b2:06:e0:
47:0e:5b:e8:4d:38:7c:47:11:b8:e0:55:4c:84:45:
01:47:ab:f0:38:02:9b:6a:5e:02:5e:42:d4:3e:60:
42:01:29:b7:f6:30:d6:3a:14:46:cd:81:d1:cf:76:
e3:37:60:ab:c4:9b:63:50:19:1e:82:d1:fe:e4:11:
52:18:e0:6c:03:4d:3f:14:5b:07:5f:e0:ab:25:d5:
6d:33:0c:9f:4d:02:df:13:de:e4:49:f0:81:85:78:
2d:c0:7f:69:b6:25:dd:11:1a:e8:5f:f4:98:06:55:
75:71:c8:52:2b:ee:02:9a:bb:1b:e5:fd:ea:62:5a:
d1:d8:72:5d:41:9f:12:cc:d7:ab:ba:58:04:21:15:
cd:46:85:a0:01:f4:94:50:64:36:08:d5:d6:da:96:
5a:56:b9:2f:a4:f1:dc:12:c5:bb:74:2f:23:2d:4b:
8c:37:98:cb:bf:cc:2d:f7:84:47:54:6f:6b:4e:43:
65:de:9b:6e:e9:e8:c1:d3:db:2e:3c:d8:2e:7f:b2:
25:b2:b8:c8:00:2a:93:e0:f8:93:16:60:ae:8b:8e:
16:49:53:5b:d2:34:6c:6f:e6:10:0a:aa:c8:f0:e4:
a9:c8:e2:ff:5e:cb:00:00:bd:8a:18:88:33:35:c7:
fd:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:02:8D:57:DC:E2:A3:BF:CA:24:AA:A4:C4:DC:A5:4C:FA:3D:8A:DA
X509v3 Authority Key Identifier:
keyid:07:A6:A5:89:EE:84:8A:80:52:23:81:91:B9:80:35:E7:75:12:27:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6alie6EioBSI4GRuYA153USJyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/QgKNV9zio7_KJKqkxNylTPo9ito.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/B6alie6EioBSI4GRuYA153USJyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.93.0-2.58.94.255
2.58.136.0/22
2.59.248.0/22
31.13.194.0/24
31.13.249.0-31.13.255.255
45.8.74.0/23
45.12.248.0/22
45.139.100.0/22
45.143.100.0/22
45.149.232.0/23
77.75.56.0/22
78.40.160.0/21
80.249.124.0/22
87.120.46.0/23
87.120.63.0-87.120.66.255
87.120.85.0-87.120.86.255
87.120.96.0/23
87.120.111.0/24
87.120.177.0/24
87.120.218.0/24
87.120.224.0/24
87.120.226.0/24
87.120.232.0/22
87.121.19.0/24
87.121.36.0/23
87.121.59.0/24
87.121.66.0-87.121.68.255
87.121.116.0/24
87.121.148.0/23
91.92.3.0/24
91.92.24.0/23
91.197.196.0/22
91.243.184.0/22
92.249.51.0/24
93.123.68.0/22
93.123.86.0/23
93.123.108.0/24
94.33.0.0/23
94.154.174.0/23
94.156.16.0/22
94.156.32.0/24
94.156.48.0/21
94.156.95.0/24
94.156.108.0/22
94.156.168.0/23
94.156.182.0-94.156.184.255
94.156.187.0/24
94.156.192.0/23
94.156.234.0/23
94.156.240.0/22
94.156.246.0/23
94.240.56.0/22
95.214.124.0/22
109.206.238.0/24
141.98.0.0/24
164.40.184.0/24
164.40.186.0/23
171.22.29.0/24
176.125.252.0/23
178.175.184.0/21
185.171.148.0/22
185.221.66.0/24
185.225.72.0/23
185.252.178.0/24
193.19.200.0/22
193.36.232.0/22
193.37.43.0/24
193.37.46.0/24
193.46.172.0/22
193.56.16.0/22
193.56.248.0/22
193.58.184.0/22
193.207.0.0-193.207.2.255
193.207.9.0-193.207.13.255
193.207.16.0/21
194.48.249.0/24
194.76.204.0/22
194.147.8.0/22
194.180.50.0/24
195.178.120.0/24
195.225.120.0/22
212.22.128.0/19
212.24.0.0/19
212.73.135.0/24
IPv6:
2a09:e6c0::/29
Signature Algorithm: sha256WithRSAEncryption
23:27:8a:0e:78:c4:df:74:54:ad:40:01:73:f1:67:99:c4:2d:
a9:7e:29:f9:1d:80:1a:77:e2:b3:d4:8d:05:08:61:97:e8:c3:
9e:bb:39:a6:ce:03:b3:67:d8:a8:9b:c6:a1:52:4f:cb:37:5c:
6a:01:32:ea:09:c7:d3:14:65:02:97:79:f2:77:c5:2e:d9:68:
3c:1a:68:3e:29:94:57:29:21:8e:c5:6b:51:16:1f:0e:17:98:
13:3f:35:19:d8:f6:61:45:b4:e3:ba:aa:53:76:22:ac:27:cd:
35:54:f0:56:7e:4b:54:aa:d9:4f:a7:70:30:ae:8a:da:87:98:
bc:ab:a8:33:54:11:d9:e4:e3:18:07:8e:e6:6a:08:5c:ee:0d:
26:27:19:9d:8f:38:32:92:20:08:b7:4a:e5:89:1f:36:74:be:
7e:93:e0:ff:17:fe:d1:46:0d:f2:e7:a3:62:20:3d:bf:a5:0f:
29:96:b3:af:d4:1e:12:3e:9f:87:d4:ab:b0:4c:ed:a3:db:b1:
5f:0d:fb:7b:1c:f1:57:dd:cd:96:95:e4:13:b8:a6:55:7e:8d:
ba:47:ad:91:24:fb:f3:9d:2c:44:91:7d:40:63:5a:7b:0e:87:
d3:d2:f6:bd:16:47:8e:b6:8e:93:a9:a1:3a:1a:d2:09:17:6c:
66:3e:fb:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:03:37 2025 by rpki-client