Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/4ZmUtJ84Fmt72NP0pxw685pscAY.roa
File: 4ZmUtJ84Fmt72NP0pxw685pscAY.roa (raw, json)
Hash identifier: mQ/qzQDQ1ANLvIpyzh7zb95aBXk3WU5ChG5ny6qkquY=
Subject key identifier: E1:99:94:B4:9F:38:16:6B:7B:D8:D3:F4:A7:1C:3A:F3:9A:6C:70:06
Certificate issuer: /CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Certificate serial: 018E80D6CF3E25583EC6606272925A2B0E82
Authority key identifier: 7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/4ZmUtJ84Fmt72NP0pxw685pscAY.roa
Signing time: Wed 27 Mar 2024 16:55:45 +0000
ROA not before: Wed 27 Mar 2024 16:55:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8075
IP address blocks: 1.186.0.0/16 maxlen: 16
9.141.0.0/16 maxlen: 16
9.145.0.0/16 maxlen: 16
9.146.0.0/16 maxlen: 16
9.160.0.0/16 maxlen: 16
9.163.0.0/16 maxlen: 16
9.169.0.0/16 maxlen: 16
9.205.0.0/16 maxlen: 16
9.223.0.0/16 maxlen: 16
9.234.0.0/15 maxlen: 15
40.169.0.0/16 maxlen: 16
40.170.0.0/16 maxlen: 16
40.171.0.0/16 maxlen: 16
48.192.0.0/12 maxlen: 12
48.208.0.0/13 maxlen: 13
48.216.0.0/14 maxlen: 14
48.220.0.0/15 maxlen: 15
51.10.0.0/15 maxlen: 15
51.12.0.0/15 maxlen: 15
51.51.0.0/16 maxlen: 16
51.53.0.0/16 maxlen: 16
51.103.0.0/16 maxlen: 16
51.104.0.0/15 maxlen: 15
51.107.0.0/16 maxlen: 16
51.116.0.0/16 maxlen: 16
51.120.0.0/16 maxlen: 16
51.124.0.0/16 maxlen: 16
51.132.0.0/16 maxlen: 16
51.136.0.0/15 maxlen: 15
51.138.0.0/16 maxlen: 16
51.140.0.0/14 maxlen: 14
51.144.0.0/15 maxlen: 15
57.150.0.0/15 maxlen: 15
57.152.0.0/14 maxlen: 14
57.156.0.0/14 maxlen: 14
57.160.0.0/12 maxlen: 12
62.10.0.0/15 maxlen: 15
69.15.0.0/16 maxlen: 16
72.16.128.0/17 maxlen: 17
72.54.0.0/16 maxlen: 16
74.144.0.0/12 maxlen: 12
82.87.0.0/16 maxlen: 16
84.222.0.0/16 maxlen: 16
84.223.0.0/16 maxlen: 16
85.212.0.0/16 maxlen: 16
94.245.64.0/18 maxlen: 24
109.246.0.0/16 maxlen: 16
122.149.0.0/16 maxlen: 16
124.252.0.0/16 maxlen: 16
128.24.0.0/16 maxlen: 16
128.85.0.0/16 maxlen: 16
128.203.0.0/16 maxlen: 16
128.251.0.0/16 maxlen: 16
129.135.0.0/16 maxlen: 16
130.131.0.0/16 maxlen: 16
130.213.0.0/16 maxlen: 16
131.163.0.0/16 maxlen: 16
131.189.0.0/16 maxlen: 16
132.164.0.0/16 maxlen: 16
132.196.0.0/16 maxlen: 16
132.220.0.0/16 maxlen: 16
134.33.0.0/16 maxlen: 16
134.112.0.0/16 maxlen: 16
134.138.0.0/16 maxlen: 16
134.149.0.0/16 maxlen: 16
135.4.0.0/16 maxlen: 16
135.6.0.0/16 maxlen: 16
135.7.0.0/16 maxlen: 16
135.13.0.0/16 maxlen: 16
135.18.0.0/16 maxlen: 16
135.85.0.0/16 maxlen: 16
135.88.0.0/16 maxlen: 16
135.93.0.0/16 maxlen: 16
135.114.0.0/16 maxlen: 16
135.116.0.0/16 maxlen: 16
135.118.0.0/16 maxlen: 16
135.119.0.0/16 maxlen: 16
135.130.0.0/16 maxlen: 16
135.171.0.0/16 maxlen: 16
135.185.0.0/16 maxlen: 16
135.220.0.0/16 maxlen: 16
135.222.0.0/16 maxlen: 16
135.224.0.0/15 maxlen: 15
135.229.0.0/16 maxlen: 16
135.230.0.0/16 maxlen: 16
135.232.0.0/14 maxlen: 14
135.236.0.0/15 maxlen: 15
135.240.0.0/16 maxlen: 16
135.241.0.0/16 maxlen: 16
135.244.0.0/16 maxlen: 16
135.255.0.0/16 maxlen: 16
137.162.0.0/16 maxlen: 16
138.105.0.0/16 maxlen: 16
138.213.0.0/16 maxlen: 16
139.188.0.0/16 maxlen: 16
143.209.0.0/16 maxlen: 16
143.226.0.0/16 maxlen: 16
143.241.0.0/16 maxlen: 16
147.214.0.0/16 maxlen: 16
147.243.0.0/16 maxlen: 24
148.53.0.0/16 maxlen: 16
149.175.0.0/16 maxlen: 16
149.198.0.0/16 maxlen: 16
149.204.0.0/16 maxlen: 16
151.129.0.0/16 maxlen: 16
151.206.0.0/16 maxlen: 16
152.138.0.0/16 maxlen: 16
156.23.0.0/16 maxlen: 16
157.31.0.0/16 maxlen: 16
157.81.0.0/16 maxlen: 16
157.95.0.0/16 maxlen: 16
157.172.0.0/16 maxlen: 16
157.176.0.0/16 maxlen: 16
157.252.0.0/16 maxlen: 16
158.24.0.0/16 maxlen: 16
158.53.0.0/16 maxlen: 16
159.128.0.0/16 maxlen: 16
160.207.0.0/16 maxlen: 16
160.234.0.0/16 maxlen: 16
161.157.0.0/16 maxlen: 16
161.220.0.0/16 maxlen: 16
165.15.0.0/16 maxlen: 16
165.17.0.0/16 maxlen: 16
167.162.0.0/16 maxlen: 16
167.186.0.0/16 maxlen: 16
167.231.0.0/16 maxlen: 16
172.128.0.0/11 maxlen: 11
172.160.0.0/11 maxlen: 11
172.200.0.0/13 maxlen: 13
172.208.0.0/13 maxlen: 13
173.200.0.0/16 maxlen: 16
192.100.104.0/21 maxlen: 21
192.100.112.0/21 maxlen: 21
192.100.120.0/21 maxlen: 21
192.100.128.0/22 maxlen: 22
192.100.132.0/23 maxlen: 23
193.149.64.0/19 maxlen: 24
193.221.113.0/24 maxlen: 24
194.41.16.0/20 maxlen: 20
194.41.18.0/24 maxlen: 24
194.41.19.0/24 maxlen: 24
194.41.20.0/24 maxlen: 24
194.41.21.0/24 maxlen: 24
194.41.22.0/24 maxlen: 24
194.41.23.0/24 maxlen: 24
194.110.197.0/24 maxlen: 24
194.238.128.0/17 maxlen: 17
199.50.0.0/16 maxlen: 16
199.118.0.0/16 maxlen: 16
207.103.0.0/16 maxlen: 16
209.199.0.0/16 maxlen: 16
212.132.0.0/19 maxlen: 19
212.173.0.0/17 maxlen: 17
212.207.0.0/16 maxlen: 16
213.54.0.0/16 maxlen: 16
213.199.128.0/18 maxlen: 24
217.176.0.0/16 maxlen: 16
217.177.96.0/19 maxlen: 19
2a00:1c68::/29 maxlen: 29
2a01:111::/32 maxlen: 32
2a01:111:2000::/36 maxlen: 36
2a01:111:4000::/36 maxlen: 36
2a01:111:4004::/48 maxlen: 48
2a01:111:f000::/36 maxlen: 36
Validation: Failed, certificate revoked on Mon 01 Apr 2024 17:23:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:80:d6:cf:3e:25:58:3e:c6:60:62:72:92:5a:2b:0e:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Validity
Not Before: Mar 27 16:55:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e19994b49f38166b7bd8d3f4a71c3af39a6c7006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2e:11:65:3c:fa:ec:52:cd:c5:05:5f:3d:90:
fc:b6:bf:98:4d:fb:ac:4a:6c:76:5a:9b:bf:9f:18:
af:cb:aa:60:53:26:e3:b9:a9:57:95:7c:e9:09:95:
69:83:56:78:c2:52:d4:b4:b0:49:eb:b6:97:e2:1b:
9a:2a:97:7a:ec:63:1a:9a:19:04:63:d4:a5:28:61:
97:5d:32:8b:8c:b0:a1:4a:d4:4d:ae:8e:19:5f:ba:
41:3f:88:3b:be:80:67:b3:c8:e6:d9:5b:5a:1b:c6:
8a:5d:38:e0:4d:c4:0c:ab:fe:bc:5d:94:28:dd:48:
1b:cd:95:ca:1d:82:f7:b6:43:0b:08:35:30:dd:6b:
e2:a0:36:e4:32:a0:bc:fc:f8:9f:bb:39:d9:18:9b:
80:a9:45:82:e5:30:9d:fb:62:ca:2e:ad:11:c7:68:
40:8b:9a:e8:54:89:02:a2:83:30:88:5c:bb:09:19:
46:f2:70:c3:23:74:6c:71:7a:89:86:27:03:bf:f9:
64:48:44:b3:86:75:bb:03:ca:41:06:53:f6:f6:cb:
4d:57:f0:d8:4a:d8:f8:ff:92:71:1a:4a:9a:10:8f:
ba:d1:f6:d1:51:df:ca:91:58:1c:bf:a6:ca:69:38:
94:a4:e4:28:3e:25:ed:4c:b2:b8:d1:c1:c8:0f:56:
96:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:99:94:B4:9F:38:16:6B:7B:D8:D3:F4:A7:1C:3A:F3:9A:6C:70:06
X509v3 Authority Key Identifier:
keyid:7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/4ZmUtJ84Fmt72NP0pxw685pscAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/fOaNr18IlFbA4dAiRTk1Maxbj8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
1.186.0.0/16
9.141.0.0/16
9.145.0.0-9.146.255.255
9.160.0.0/16
9.163.0.0/16
9.169.0.0/16
9.205.0.0/16
9.223.0.0/16
9.234.0.0/15
40.169.0.0-40.171.255.255
48.192.0.0-48.221.255.255
51.10.0.0-51.13.255.255
51.51.0.0/16
51.53.0.0/16
51.103.0.0-51.105.255.255
51.107.0.0/16
51.116.0.0/16
51.120.0.0/16
51.124.0.0/16
51.132.0.0/16
51.136.0.0-51.138.255.255
51.140.0.0-51.145.255.255
57.150.0.0-57.175.255.255
62.10.0.0/15
69.15.0.0/16
72.16.128.0/17
72.54.0.0/16
74.144.0.0/12
82.87.0.0/16
84.222.0.0/15
85.212.0.0/16
94.245.64.0/18
109.246.0.0/16
122.149.0.0/16
124.252.0.0/16
128.24.0.0/16
128.85.0.0/16
128.203.0.0/16
128.251.0.0/16
129.135.0.0/16
130.131.0.0/16
130.213.0.0/16
131.163.0.0/16
131.189.0.0/16
132.164.0.0/16
132.196.0.0/16
132.220.0.0/16
134.33.0.0/16
134.112.0.0/16
134.138.0.0/16
134.149.0.0/16
135.4.0.0/16
135.6.0.0/15
135.13.0.0/16
135.18.0.0/16
135.85.0.0/16
135.88.0.0/16
135.93.0.0/16
135.114.0.0/16
135.116.0.0/16
135.118.0.0/15
135.130.0.0/16
135.171.0.0/16
135.185.0.0/16
135.220.0.0/16
135.222.0.0/16
135.224.0.0/15
135.229.0.0-135.230.255.255
135.232.0.0-135.237.255.255
135.240.0.0/15
135.244.0.0/16
135.255.0.0/16
137.162.0.0/16
138.105.0.0/16
138.213.0.0/16
139.188.0.0/16
143.209.0.0/16
143.226.0.0/16
143.241.0.0/16
147.214.0.0/16
147.243.0.0/16
148.53.0.0/16
149.175.0.0/16
149.198.0.0/16
149.204.0.0/16
151.129.0.0/16
151.206.0.0/16
152.138.0.0/16
156.23.0.0/16
157.31.0.0/16
157.81.0.0/16
157.95.0.0/16
157.172.0.0/16
157.176.0.0/16
157.252.0.0/16
158.24.0.0/16
158.53.0.0/16
159.128.0.0/16
160.207.0.0/16
160.234.0.0/16
161.157.0.0/16
161.220.0.0/16
165.15.0.0/16
165.17.0.0/16
167.162.0.0/16
167.186.0.0/16
167.231.0.0/16
172.128.0.0/10
172.200.0.0-172.215.255.255
173.200.0.0/16
192.100.104.0-192.100.133.255
193.149.64.0/19
193.221.113.0/24
194.41.16.0/20
194.110.197.0/24
194.238.128.0/17
199.50.0.0/16
199.118.0.0/16
207.103.0.0/16
209.199.0.0/16
212.132.0.0/19
212.173.0.0/17
212.207.0.0/16
213.54.0.0/16
213.199.128.0/18
217.176.0.0/16
217.177.96.0/19
IPv6:
2a00:1c68::/29
2a01:111::/32
Signature Algorithm: sha256WithRSAEncryption
3f:3c:57:78:30:a4:c8:98:d6:7c:ee:ae:a9:3b:22:5d:2b:e9:
19:40:e1:12:27:16:0e:68:ba:f2:79:4f:8b:40:9d:59:c6:00:
5a:6a:ce:69:64:b5:75:a8:07:f4:53:36:6e:f1:3a:9e:ee:84:
39:da:e2:90:01:f1:b2:cf:59:63:d5:b5:17:8c:9d:65:ab:db:
3a:e2:3e:ff:b5:16:2d:94:c9:7a:d1:f9:db:8e:1e:1d:18:16:
bd:88:47:bc:32:54:0a:99:88:8b:58:0e:ac:e0:2c:55:ef:a9:
3b:39:ed:f0:ff:de:46:e0:cf:c4:8f:82:56:b7:6f:7c:56:06:
cc:bd:a1:10:4f:fd:b4:ef:27:ec:79:89:12:03:0f:0c:b7:63:
ca:bd:e7:0c:04:ed:7d:d3:bf:8c:44:04:0e:6d:d1:32:dd:a6:
86:46:7d:18:3f:ba:bd:9f:9e:c0:29:10:05:d9:dc:49:99:b9:
29:59:25:58:02:79:a0:e9:47:ea:f0:c7:2b:0d:7b:e7:bb:eb:
57:00:cb:98:53:92:13:22:ad:65:ed:17:b2:ad:44:44:c2:87:
e8:54:0e:b6:60:1e:c6:61:78:a1:1c:6e:ae:d3:d6:d6:1d:1c:
37:3a:93:73:c5:22:77:c8:76:9d:34:32:c1:08:1d:2f:d8:18:
4e:a4:e7:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:32 2024 by rpki-client on console-fra.rpki-client.org