Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/9a15xOF9cfBrLkca9-sLGdN4MxU.roa
File: 9a15xOF9cfBrLkca9-sLGdN4MxU.roa (raw, json)
Hash identifier: GqkqXlZQQMprVsPk5TrjLBiO+UtJQfzJibeL8qJchsc=
Subject key identifier: F5:AD:79:C4:E1:7D:71:F0:6B:2E:47:1A:F7:EB:0B:19:D3:78:33:15
Certificate issuer: /CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Certificate serial: 018E3E3688BEED20EF7AF460EAC09C79343E
Authority key identifier: 7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/9a15xOF9cfBrLkca9-sLGdN4MxU.roa
Signing time: Thu 14 Mar 2024 18:25:45 +0000
ROA not before: Thu 14 Mar 2024 18:25:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8075
IP address blocks: 1.186.0.0/16 maxlen: 16
9.145.0.0/16 maxlen: 16
9.146.0.0/16 maxlen: 16
9.234.0.0/15 maxlen: 15
40.169.0.0/16 maxlen: 16
40.170.0.0/16 maxlen: 16
40.171.0.0/16 maxlen: 16
48.192.0.0/12 maxlen: 12
48.208.0.0/13 maxlen: 13
48.216.0.0/14 maxlen: 14
48.220.0.0/15 maxlen: 15
51.10.0.0/15 maxlen: 15
51.12.0.0/15 maxlen: 15
51.51.0.0/16 maxlen: 16
51.53.0.0/16 maxlen: 16
51.103.0.0/16 maxlen: 16
51.104.0.0/15 maxlen: 15
51.107.0.0/16 maxlen: 16
51.116.0.0/16 maxlen: 16
51.120.0.0/16 maxlen: 16
51.124.0.0/16 maxlen: 16
51.132.0.0/16 maxlen: 16
51.136.0.0/15 maxlen: 15
51.138.0.0/16 maxlen: 16
51.140.0.0/14 maxlen: 14
51.144.0.0/15 maxlen: 15
57.150.0.0/15 maxlen: 15
57.152.0.0/14 maxlen: 14
57.156.0.0/14 maxlen: 14
57.160.0.0/12 maxlen: 12
62.10.0.0/15 maxlen: 15
69.15.0.0/16 maxlen: 16
72.16.128.0/17 maxlen: 17
72.54.0.0/16 maxlen: 16
74.144.0.0/12 maxlen: 12
82.87.0.0/16 maxlen: 16
84.222.0.0/16 maxlen: 16
84.223.0.0/16 maxlen: 16
85.212.0.0/16 maxlen: 16
94.245.64.0/18 maxlen: 24
109.246.0.0/16 maxlen: 16
122.149.0.0/16 maxlen: 16
124.252.0.0/16 maxlen: 16
128.24.0.0/16 maxlen: 16
128.85.0.0/16 maxlen: 16
128.203.0.0/16 maxlen: 16
128.251.0.0/16 maxlen: 16
129.135.0.0/16 maxlen: 16
130.131.0.0/16 maxlen: 16
130.213.0.0/16 maxlen: 16
131.163.0.0/16 maxlen: 16
131.189.0.0/16 maxlen: 16
132.164.0.0/16 maxlen: 16
132.196.0.0/16 maxlen: 16
132.220.0.0/16 maxlen: 16
134.33.0.0/16 maxlen: 16
134.112.0.0/16 maxlen: 16
134.138.0.0/16 maxlen: 16
134.149.0.0/16 maxlen: 16
135.4.0.0/16 maxlen: 16
135.6.0.0/16 maxlen: 16
135.7.0.0/16 maxlen: 16
135.13.0.0/16 maxlen: 16
135.18.0.0/16 maxlen: 16
135.85.0.0/16 maxlen: 16
135.88.0.0/16 maxlen: 16
135.93.0.0/16 maxlen: 16
135.114.0.0/16 maxlen: 16
135.116.0.0/16 maxlen: 16
135.118.0.0/16 maxlen: 16
135.119.0.0/16 maxlen: 16
135.130.0.0/16 maxlen: 16
135.171.0.0/16 maxlen: 16
135.185.0.0/16 maxlen: 16
135.220.0.0/16 maxlen: 16
135.222.0.0/16 maxlen: 16
135.224.0.0/15 maxlen: 15
135.229.0.0/16 maxlen: 16
135.230.0.0/16 maxlen: 16
135.232.0.0/14 maxlen: 14
135.236.0.0/15 maxlen: 15
135.240.0.0/16 maxlen: 16
135.241.0.0/16 maxlen: 16
135.244.0.0/16 maxlen: 16
135.255.0.0/16 maxlen: 16
137.162.0.0/16 maxlen: 16
138.105.0.0/16 maxlen: 16
138.213.0.0/16 maxlen: 16
139.188.0.0/16 maxlen: 16
143.209.0.0/16 maxlen: 16
143.226.0.0/16 maxlen: 16
143.241.0.0/16 maxlen: 16
147.214.0.0/16 maxlen: 16
147.243.0.0/16 maxlen: 24
148.53.0.0/16 maxlen: 16
149.175.0.0/16 maxlen: 16
149.198.0.0/16 maxlen: 16
149.204.0.0/16 maxlen: 16
151.129.0.0/16 maxlen: 16
151.206.0.0/16 maxlen: 16
152.138.0.0/16 maxlen: 16
156.23.0.0/16 maxlen: 16
157.31.0.0/16 maxlen: 16
157.81.0.0/16 maxlen: 16
157.95.0.0/16 maxlen: 16
157.172.0.0/16 maxlen: 16
157.176.0.0/16 maxlen: 16
157.252.0.0/16 maxlen: 16
158.24.0.0/16 maxlen: 16
158.53.0.0/16 maxlen: 16
159.128.0.0/16 maxlen: 16
160.207.0.0/16 maxlen: 16
160.234.0.0/16 maxlen: 16
161.157.0.0/16 maxlen: 16
161.220.0.0/16 maxlen: 16
165.15.0.0/16 maxlen: 16
165.17.0.0/16 maxlen: 16
167.162.0.0/16 maxlen: 16
167.186.0.0/16 maxlen: 16
167.231.0.0/16 maxlen: 16
172.128.0.0/11 maxlen: 11
172.160.0.0/11 maxlen: 11
172.200.0.0/13 maxlen: 13
172.208.0.0/13 maxlen: 13
173.200.0.0/16 maxlen: 16
192.100.104.0/21 maxlen: 21
192.100.112.0/21 maxlen: 21
192.100.120.0/21 maxlen: 21
192.100.128.0/22 maxlen: 22
192.100.132.0/23 maxlen: 23
193.149.64.0/19 maxlen: 24
193.221.113.0/24 maxlen: 24
194.41.16.0/20 maxlen: 20
194.41.18.0/24 maxlen: 24
194.41.19.0/24 maxlen: 24
194.41.20.0/24 maxlen: 24
194.41.21.0/24 maxlen: 24
194.41.22.0/24 maxlen: 24
194.41.23.0/24 maxlen: 24
194.110.197.0/24 maxlen: 24
194.238.128.0/17 maxlen: 17
199.50.0.0/16 maxlen: 16
199.118.0.0/16 maxlen: 16
207.103.0.0/16 maxlen: 16
209.199.0.0/16 maxlen: 16
212.132.0.0/19 maxlen: 19
212.173.0.0/17 maxlen: 17
212.207.0.0/16 maxlen: 16
213.54.0.0/16 maxlen: 16
213.199.128.0/18 maxlen: 24
217.176.0.0/16 maxlen: 16
217.177.96.0/19 maxlen: 19
2a00:1c68::/29 maxlen: 29
2a01:111::/32 maxlen: 32
2a01:111:2000::/36 maxlen: 36
2a01:111:4000::/36 maxlen: 36
2a01:111:4004::/48 maxlen: 48
2a01:111:f000::/36 maxlen: 36
Validation: Failed, certificate revoked on Wed 27 Mar 2024 16:55:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:3e:36:88:be:ed:20:ef:7a:f4:60:ea:c0:9c:79:34:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Validity
Not Before: Mar 14 18:25:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f5ad79c4e17d71f06b2e471af7eb0b19d3783315
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:13:cc:58:d1:e1:aa:0b:80:76:ae:e4:c3:e4:
96:79:a2:86:fc:dc:94:c8:4b:95:7d:fd:6a:ae:1f:
1f:e4:53:3f:dd:97:20:11:df:5e:42:e3:f4:82:dd:
a3:f1:ec:b5:c2:6b:30:19:04:08:0c:7b:55:92:9b:
23:64:01:a7:4d:54:1d:25:be:bb:03:39:b5:ef:17:
92:eb:9d:5f:fc:1c:27:0e:11:04:9c:a6:ff:6d:90:
96:aa:2c:6a:a4:89:f3:71:67:b3:c1:f0:de:6a:66:
ed:08:81:01:30:52:93:ca:8e:32:18:ac:2d:c9:69:
12:01:ca:49:e9:7d:9e:69:49:6d:60:f6:b9:f2:18:
cf:d5:f5:e2:b4:bc:17:a5:44:af:d0:60:5c:ac:f6:
c2:73:a7:10:10:e7:44:8e:12:11:fb:c0:4d:41:14:
7b:20:95:09:7f:0e:06:4c:3d:f8:14:c9:e0:33:81:
e0:ce:93:01:da:46:00:d5:35:52:bb:2f:b8:36:10:
4f:70:d7:12:b9:08:2f:e4:63:6c:f9:17:f2:16:c3:
4f:e6:7d:c4:ad:b8:7c:de:16:dd:1a:8d:b4:5b:bc:
ec:46:e1:8d:80:68:b2:7f:bb:d4:1e:50:78:64:e5:
9a:fe:c5:17:77:10:61:03:15:f2:c8:59:2e:7f:9e:
7e:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:AD:79:C4:E1:7D:71:F0:6B:2E:47:1A:F7:EB:0B:19:D3:78:33:15
X509v3 Authority Key Identifier:
keyid:7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/9a15xOF9cfBrLkca9-sLGdN4MxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/fOaNr18IlFbA4dAiRTk1Maxbj8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
1.186.0.0/16
9.145.0.0-9.146.255.255
9.234.0.0/15
40.169.0.0-40.171.255.255
48.192.0.0-48.221.255.255
51.10.0.0-51.13.255.255
51.51.0.0/16
51.53.0.0/16
51.103.0.0-51.105.255.255
51.107.0.0/16
51.116.0.0/16
51.120.0.0/16
51.124.0.0/16
51.132.0.0/16
51.136.0.0-51.138.255.255
51.140.0.0-51.145.255.255
57.150.0.0-57.175.255.255
62.10.0.0/15
69.15.0.0/16
72.16.128.0/17
72.54.0.0/16
74.144.0.0/12
82.87.0.0/16
84.222.0.0/15
85.212.0.0/16
94.245.64.0/18
109.246.0.0/16
122.149.0.0/16
124.252.0.0/16
128.24.0.0/16
128.85.0.0/16
128.203.0.0/16
128.251.0.0/16
129.135.0.0/16
130.131.0.0/16
130.213.0.0/16
131.163.0.0/16
131.189.0.0/16
132.164.0.0/16
132.196.0.0/16
132.220.0.0/16
134.33.0.0/16
134.112.0.0/16
134.138.0.0/16
134.149.0.0/16
135.4.0.0/16
135.6.0.0/15
135.13.0.0/16
135.18.0.0/16
135.85.0.0/16
135.88.0.0/16
135.93.0.0/16
135.114.0.0/16
135.116.0.0/16
135.118.0.0/15
135.130.0.0/16
135.171.0.0/16
135.185.0.0/16
135.220.0.0/16
135.222.0.0/16
135.224.0.0/15
135.229.0.0-135.230.255.255
135.232.0.0-135.237.255.255
135.240.0.0/15
135.244.0.0/16
135.255.0.0/16
137.162.0.0/16
138.105.0.0/16
138.213.0.0/16
139.188.0.0/16
143.209.0.0/16
143.226.0.0/16
143.241.0.0/16
147.214.0.0/16
147.243.0.0/16
148.53.0.0/16
149.175.0.0/16
149.198.0.0/16
149.204.0.0/16
151.129.0.0/16
151.206.0.0/16
152.138.0.0/16
156.23.0.0/16
157.31.0.0/16
157.81.0.0/16
157.95.0.0/16
157.172.0.0/16
157.176.0.0/16
157.252.0.0/16
158.24.0.0/16
158.53.0.0/16
159.128.0.0/16
160.207.0.0/16
160.234.0.0/16
161.157.0.0/16
161.220.0.0/16
165.15.0.0/16
165.17.0.0/16
167.162.0.0/16
167.186.0.0/16
167.231.0.0/16
172.128.0.0/10
172.200.0.0-172.215.255.255
173.200.0.0/16
192.100.104.0-192.100.133.255
193.149.64.0/19
193.221.113.0/24
194.41.16.0/20
194.110.197.0/24
194.238.128.0/17
199.50.0.0/16
199.118.0.0/16
207.103.0.0/16
209.199.0.0/16
212.132.0.0/19
212.173.0.0/17
212.207.0.0/16
213.54.0.0/16
213.199.128.0/18
217.176.0.0/16
217.177.96.0/19
IPv6:
2a00:1c68::/29
2a01:111::/32
Signature Algorithm: sha256WithRSAEncryption
6d:12:0f:f7:7b:45:17:4d:fd:39:de:fa:bc:86:92:88:c9:a6:
a7:3a:47:83:ae:8f:c9:6c:24:53:b8:d3:6b:73:93:31:a7:be:
19:0c:ad:19:ed:1e:fb:0e:83:9f:08:bd:ac:06:fd:ca:41:3f:
50:8f:14:d8:58:42:95:aa:80:2f:c6:59:9f:6c:51:70:c2:90:
e8:d9:f2:39:c2:53:8c:a5:d2:3d:0f:47:b7:09:5f:d1:33:10:
4d:53:09:3c:34:d2:a8:4d:52:e4:3a:8c:1f:f5:76:66:09:ee:
5f:80:fc:60:2c:d4:af:46:c1:47:ab:fc:58:39:82:fc:af:05:
e0:8a:4f:40:0c:85:46:ce:01:16:cb:28:0d:19:f1:14:00:d5:
51:2d:66:bf:4c:15:1e:58:86:d5:21:58:fb:2c:2e:30:a8:60:
b3:62:7d:c1:89:1c:c4:6d:28:f1:ee:1d:9c:5f:0a:16:3c:22:
b4:0b:20:0a:67:96:21:dc:c4:d8:56:ed:dd:89:e8:41:d1:13:
49:51:7b:b5:f9:d9:e7:d8:4b:d0:9a:99:02:2a:d2:3f:80:c4:
09:d1:8c:85:85:54:75:ec:df:2e:01:d0:c3:7e:8c:b2:db:c3:
f1:7a:15:4e:f1:23:2e:a5:34:44:11:54:68:01:c3:ef:79:57:
68:f9:be:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:00 2024 by rpki-client on console-ams.rpki-client.org