Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/1-SoNGSD3R6535X_N8U20MHqolBU.roa
File: 1-SoNGSD3R6535X_N8U20MHqolBU.roa (raw, json)
Hash identifier: SsYyF2GBqb0F/WUpXh2epuVubBLSkeysoY6zODSrYc4=
Subject key identifier: F9:2A:0D:19:20:F7:47:AE:77:E5:7F:CD:F1:4D:B4:30:7A:A8:94:15
Certificate issuer: /CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Certificate serial: 0188C1574E477096979626E6079788309235
Authority key identifier: 7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/1-SoNGSD3R6535X_N8U20MHqolBU.roa
Signing time: Thu 15 Jun 2023 23:15:04 +0000
ROA not before: Thu 15 Jun 2023 23:15:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 94.245.64.0/18 maxlen: 24
172.208.0.0/13 maxlen: 13
51.124.0.0/16 maxlen: 16
192.100.112.0/21 maxlen: 21
192.100.120.0/21 maxlen: 21
192.100.132.0/23 maxlen: 23
82.87.0.0/16 maxlen: 16
192.100.128.0/22 maxlen: 22
172.160.0.0/11 maxlen: 11
51.144.0.0/15 maxlen: 15
40.171.0.0/16 maxlen: 16
51.107.0.0/16 maxlen: 16
135.6.0.0/16 maxlen: 16
149.198.0.0/16 maxlen: 16
194.238.128.0/17 maxlen: 17
192.100.104.0/21 maxlen: 21
85.212.0.0/16 maxlen: 16
51.138.0.0/16 maxlen: 16
152.138.0.0/16 maxlen: 16
51.10.0.0/15 maxlen: 15
135.229.0.0/16 maxlen: 16
194.110.197.0/24 maxlen: 24
51.104.0.0/15 maxlen: 15
135.232.0.0/14 maxlen: 14
51.12.0.0/15 maxlen: 15
51.103.0.0/16 maxlen: 16
51.140.0.0/14 maxlen: 14
135.130.0.0/16 maxlen: 16
135.224.0.0/15 maxlen: 15
57.150.0.0/15 maxlen: 15
132.164.0.0/16 maxlen: 16
193.221.113.0/24 maxlen: 24
51.53.0.0/16 maxlen: 16
57.160.0.0/12 maxlen: 12
51.120.0.0/16 maxlen: 16
217.177.96.0/19 maxlen: 19
57.156.0.0/14 maxlen: 14
212.173.0.0/17 maxlen: 17
172.128.0.0/11 maxlen: 11
217.176.0.0/16 maxlen: 16
135.230.0.0/16 maxlen: 16
193.149.64.0/19 maxlen: 24
151.129.0.0/16 maxlen: 16
172.200.0.0/13 maxlen: 13
51.116.0.0/16 maxlen: 16
135.116.0.0/16 maxlen: 16
212.207.0.0/16 maxlen: 16
40.170.0.0/16 maxlen: 16
51.136.0.0/15 maxlen: 15
135.236.0.0/15 maxlen: 15
209.199.0.0/16 maxlen: 16
167.162.0.0/16 maxlen: 16
143.226.0.0/16 maxlen: 16
159.128.0.0/16 maxlen: 16
213.54.0.0/16 maxlen: 16
109.246.0.0/16 maxlen: 16
194.41.16.0/20 maxlen: 20
212.132.0.0/19 maxlen: 19
194.41.18.0/24 maxlen: 24
135.4.0.0/16 maxlen: 16
51.132.0.0/16 maxlen: 16
194.41.22.0/24 maxlen: 24
194.41.23.0/24 maxlen: 24
194.41.20.0/24 maxlen: 24
194.41.21.0/24 maxlen: 24
194.41.19.0/24 maxlen: 24
157.31.0.0/16 maxlen: 16
157.95.0.0/16 maxlen: 16
167.186.0.0/16 maxlen: 16
213.199.128.0/18 maxlen: 24
128.85.0.0/16 maxlen: 16
51.51.0.0/16 maxlen: 16
147.243.0.0/16 maxlen: 24
57.152.0.0/14 maxlen: 14
151.206.0.0/16 maxlen: 16
40.169.0.0/16 maxlen: 16
138.105.0.0/16 maxlen: 16
2a00:1c68::/29 maxlen: 29
2a01:111:4004::/48 maxlen: 48
2a01:111::/32 maxlen: 32
2a01:111:f000::/36 maxlen: 36
2a01:111:2000::/36 maxlen: 36
2a01:111:4000::/36 maxlen: 36
Validation: Failed, certificate revoked on Thu 15 Jun 2023 23:23:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c1:57:4e:47:70:96:97:96:26:e6:07:97:88:30:92:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Validity
Not Before: Jun 15 23:15:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f92a0d1920f747ae77e57fcdf14db4307aa89415
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:bb:29:d1:7d:e3:0e:75:9f:d8:8a:7d:56:93:
48:f9:21:12:78:f5:f7:4f:e7:29:c7:eb:51:17:f0:
4e:82:4a:03:ed:0b:af:07:92:4b:bb:77:11:44:c5:
8c:ec:f1:a0:4b:80:5e:3d:c2:5c:ce:13:e7:86:9e:
68:b5:20:87:75:6d:6a:2f:3f:09:82:91:c2:f1:d1:
0a:cd:d9:4d:91:f4:f1:46:6b:d8:8b:31:31:cb:e4:
0f:9c:fe:a2:fe:6f:d0:26:14:23:ec:ad:14:3e:d9:
18:d3:1b:f6:3a:41:e8:c4:cb:7c:d2:24:05:77:e0:
cf:41:e0:73:9c:fa:85:73:08:75:f5:81:15:52:34:
a5:7f:13:20:1c:dc:89:cc:57:3a:9c:8a:57:13:dd:
15:49:21:1f:f6:4b:ae:ab:1e:05:15:dc:03:4c:ac:
62:f3:82:f7:0d:2f:1c:d2:b4:93:ae:e7:0c:e8:82:
93:00:d4:97:99:1f:07:63:9a:e4:a2:07:2e:8b:d9:
fc:61:e0:ca:a9:ab:f6:44:29:d8:7d:d2:c7:e8:4b:
ac:30:a1:e6:19:1a:f2:6f:09:f8:2b:52:81:b3:15:
23:d8:74:40:3c:1b:42:c9:a8:db:58:7b:6c:e2:7c:
20:c1:23:86:4c:34:b1:8b:fe:3b:98:f1:2b:84:76:
09:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:2A:0D:19:20:F7:47:AE:77:E5:7F:CD:F1:4D:B4:30:7A:A8:94:15
X509v3 Authority Key Identifier:
keyid:7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/1-SoNGSD3R6535X_N8U20MHqolBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/fOaNr18IlFbA4dAiRTk1Maxbj8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
40.169.0.0-40.171.255.255
51.10.0.0-51.13.255.255
51.51.0.0/16
51.53.0.0/16
51.103.0.0-51.105.255.255
51.107.0.0/16
51.116.0.0/16
51.120.0.0/16
51.124.0.0/16
51.132.0.0/16
51.136.0.0-51.138.255.255
51.140.0.0-51.145.255.255
57.150.0.0-57.175.255.255
82.87.0.0/16
85.212.0.0/16
94.245.64.0/18
109.246.0.0/16
128.85.0.0/16
132.164.0.0/16
135.4.0.0/16
135.6.0.0/16
135.116.0.0/16
135.130.0.0/16
135.224.0.0/15
135.229.0.0-135.230.255.255
135.232.0.0-135.237.255.255
138.105.0.0/16
143.226.0.0/16
147.243.0.0/16
149.198.0.0/16
151.129.0.0/16
151.206.0.0/16
152.138.0.0/16
157.31.0.0/16
157.95.0.0/16
159.128.0.0/16
167.162.0.0/16
167.186.0.0/16
172.128.0.0/10
172.200.0.0-172.215.255.255
192.100.104.0-192.100.133.255
193.149.64.0/19
193.221.113.0/24
194.41.16.0/20
194.110.197.0/24
194.238.128.0/17
209.199.0.0/16
212.132.0.0/19
212.173.0.0/17
212.207.0.0/16
213.54.0.0/16
213.199.128.0/18
217.176.0.0/16
217.177.96.0/19
IPv6:
2a00:1c68::/29
2a01:111::/32
Signature Algorithm: sha256WithRSAEncryption
b2:cb:2f:a2:c2:96:50:00:c0:6f:b4:5c:48:99:2f:7c:a4:2d:
b7:d7:4c:70:83:9c:d6:71:19:0d:27:c8:f8:cd:ac:af:b3:6e:
51:30:c9:1d:d2:c6:9f:97:ae:0f:6f:ef:e8:d4:20:cc:cb:6f:
da:af:73:0d:ae:dd:43:fe:17:73:78:9e:1c:a5:c5:58:60:f4:
dd:35:d9:5c:1a:e4:8f:d1:4c:0f:09:e1:95:d3:42:06:39:af:
90:11:9f:b0:d1:76:84:c4:c0:e7:f4:5e:f3:2b:01:91:3a:03:
f4:23:70:65:88:e6:31:55:83:f2:1a:16:65:61:e8:67:ed:f8:
15:c6:38:43:c8:7c:a8:6c:9b:dd:12:84:10:33:1e:2c:0a:b4:
f7:df:17:9e:0f:bd:22:c8:0a:cb:07:50:a6:33:d1:07:e4:ff:
db:e6:bc:72:93:38:93:0b:23:ae:88:82:c7:57:a6:42:8a:97:
b0:85:0d:1e:06:31:6d:7f:f1:dc:45:d7:25:22:62:cd:4f:0b:
61:93:28:5a:c2:a9:03:3c:84:2b:81:58:68:c2:53:86:c2:3b:
9f:b2:5a:f1:30:3b:a3:c1:03:60:ba:1b:54:56:b6:c0:c8:75:
a4:a7:d4:82:e2:75:db:cc:a9:f6:40:d3:31:e0:df:34:e0:2a:
8e:d3:ba:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:00 2024 by rpki-client on console-ams.rpki-client.org