Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/EbQiiHKON7vl-jres-ST1m4v9PM.roa
File: EbQiiHKON7vl-jres-ST1m4v9PM.roa (raw, json)
Hash identifier: xAs2yW2n7NUAJSLz56IlrEIKDfZ6oIApt3O9TnSrHps=
Subject key identifier: 11:B4:22:88:72:8E:37:BB:E5:FA:3A:DE:B3:E4:93:D6:6E:2F:F4:F3
Certificate issuer: /CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Certificate serial: 018C12527048D323A322446DE9371552D19C
Authority key identifier: 7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/EbQiiHKON7vl-jres-ST1m4v9PM.roa
Signing time: Mon 27 Nov 2023 19:47:21 +0000
ROA not before: Mon 27 Nov 2023 19:47:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 172.208.0.0/13 maxlen: 13
48.208.0.0/13 maxlen: 13
192.100.112.0/21 maxlen: 21
192.100.120.0/21 maxlen: 21
192.100.132.0/23 maxlen: 23
82.87.0.0/16 maxlen: 16
192.100.128.0/22 maxlen: 22
135.114.0.0/16 maxlen: 16
172.160.0.0/11 maxlen: 11
51.107.0.0/16 maxlen: 16
135.6.0.0/16 maxlen: 16
134.33.0.0/16 maxlen: 16
192.100.104.0/21 maxlen: 21
149.175.0.0/16 maxlen: 16
135.229.0.0/16 maxlen: 16
51.12.0.0/15 maxlen: 15
51.140.0.0/14 maxlen: 14
147.214.0.0/16 maxlen: 16
193.221.113.0/24 maxlen: 24
148.53.0.0/16 maxlen: 16
51.53.0.0/16 maxlen: 16
57.160.0.0/12 maxlen: 12
51.120.0.0/16 maxlen: 16
132.220.0.0/16 maxlen: 16
48.220.0.0/15 maxlen: 15
135.18.0.0/16 maxlen: 16
212.173.0.0/17 maxlen: 17
134.112.0.0/16 maxlen: 16
135.240.0.0/16 maxlen: 16
172.200.0.0/13 maxlen: 13
212.207.0.0/16 maxlen: 16
160.207.0.0/16 maxlen: 16
160.234.0.0/16 maxlen: 16
173.200.0.0/16 maxlen: 16
157.172.0.0/16 maxlen: 16
209.199.0.0/16 maxlen: 16
143.226.0.0/16 maxlen: 16
109.246.0.0/16 maxlen: 16
165.17.0.0/16 maxlen: 16
212.132.0.0/19 maxlen: 19
135.4.0.0/16 maxlen: 16
51.132.0.0/16 maxlen: 16
157.31.0.0/16 maxlen: 16
1.186.0.0/16 maxlen: 16
167.186.0.0/16 maxlen: 16
213.199.128.0/18 maxlen: 24
135.85.0.0/16 maxlen: 16
128.85.0.0/16 maxlen: 16
138.213.0.0/16 maxlen: 16
48.192.0.0/12 maxlen: 12
128.24.0.0/16 maxlen: 16
158.24.0.0/16 maxlen: 16
51.51.0.0/16 maxlen: 16
57.152.0.0/14 maxlen: 14
151.206.0.0/16 maxlen: 16
138.105.0.0/16 maxlen: 16
94.245.64.0/18 maxlen: 24
124.252.0.0/16 maxlen: 16
51.124.0.0/16 maxlen: 16
157.252.0.0/16 maxlen: 16
156.23.0.0/16 maxlen: 16
199.50.0.0/16 maxlen: 16
51.144.0.0/15 maxlen: 15
135.171.0.0/16 maxlen: 16
40.171.0.0/16 maxlen: 16
149.198.0.0/16 maxlen: 16
194.238.128.0/17 maxlen: 17
85.212.0.0/16 maxlen: 16
134.138.0.0/16 maxlen: 16
51.138.0.0/16 maxlen: 16
152.138.0.0/16 maxlen: 16
51.10.0.0/15 maxlen: 15
74.144.0.0/12 maxlen: 12
194.110.197.0/24 maxlen: 24
51.104.0.0/15 maxlen: 15
72.16.128.0/17 maxlen: 17
130.131.0.0/16 maxlen: 16
135.232.0.0/14 maxlen: 14
135.185.0.0/16 maxlen: 16
51.103.0.0/16 maxlen: 16
167.231.0.0/16 maxlen: 16
207.103.0.0/16 maxlen: 16
135.130.0.0/16 maxlen: 16
161.157.0.0/16 maxlen: 16
135.224.0.0/15 maxlen: 15
57.150.0.0/15 maxlen: 15
132.164.0.0/16 maxlen: 16
217.177.96.0/19 maxlen: 19
57.156.0.0/14 maxlen: 14
172.128.0.0/11 maxlen: 11
217.176.0.0/16 maxlen: 16
157.176.0.0/16 maxlen: 16
128.203.0.0/16 maxlen: 16
135.230.0.0/16 maxlen: 16
193.149.64.0/19 maxlen: 24
151.129.0.0/16 maxlen: 16
51.116.0.0/16 maxlen: 16
135.116.0.0/16 maxlen: 16
165.15.0.0/16 maxlen: 16
69.15.0.0/16 maxlen: 16
40.170.0.0/16 maxlen: 16
51.136.0.0/15 maxlen: 15
131.163.0.0/16 maxlen: 16
135.236.0.0/15 maxlen: 15
129.135.0.0/16 maxlen: 16
135.7.0.0/16 maxlen: 16
167.162.0.0/16 maxlen: 16
137.162.0.0/16 maxlen: 16
131.189.0.0/16 maxlen: 16
159.128.0.0/16 maxlen: 16
213.54.0.0/16 maxlen: 16
72.54.0.0/16 maxlen: 16
143.209.0.0/16 maxlen: 16
157.81.0.0/16 maxlen: 16
194.41.16.0/20 maxlen: 20
194.41.18.0/24 maxlen: 24
194.41.22.0/24 maxlen: 24
194.41.23.0/24 maxlen: 24
194.41.20.0/24 maxlen: 24
194.41.21.0/24 maxlen: 24
194.41.19.0/24 maxlen: 24
132.196.0.0/16 maxlen: 16
84.223.0.0/16 maxlen: 16
157.95.0.0/16 maxlen: 16
122.149.0.0/16 maxlen: 16
147.243.0.0/16 maxlen: 24
48.216.0.0/14 maxlen: 14
40.169.0.0/16 maxlen: 16
2a01:111:4004::/48 maxlen: 48
2a01:111::/32 maxlen: 32
2a01:111:f000::/36 maxlen: 36
2a01:111:2000::/36 maxlen: 36
2a01:111:4000::/36 maxlen: 36
2a00:1c68::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 29 Nov 2023 21:11:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:12:52:70:48:d3:23:a3:22:44:6d:e9:37:15:52:d1:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Validity
Not Before: Nov 27 19:47:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=11b42288728e37bbe5fa3adeb3e493d66e2ff4f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fd:89:cf:76:b4:45:6e:d0:cb:f0:4a:d0:58:
8a:57:e0:37:4e:6d:3c:dc:3b:17:8d:43:d5:89:a2:
49:86:6f:8c:5a:69:1a:1d:ae:08:d6:dc:75:c9:ae:
9c:cc:e6:47:cb:94:ba:8b:72:e0:e9:3a:ed:9b:95:
ef:17:12:14:a3:dd:05:f1:be:78:e6:92:50:8e:0a:
84:e4:7d:6b:30:2e:9f:80:11:24:b0:28:54:3e:e3:
c2:16:9b:85:eb:06:3f:88:9a:31:ac:6b:76:d5:d8:
71:7e:e0:02:bc:c4:aa:10:43:d8:88:85:7e:28:a3:
14:06:ca:e5:bd:e7:91:92:2a:57:70:92:0e:03:2f:
e8:9f:ad:5a:84:5d:cb:db:c8:10:46:62:0f:33:b7:
9b:a6:97:f1:e2:25:5a:6b:e2:e6:06:00:b0:f9:3b:
d6:64:39:28:b5:a0:04:40:0a:58:f7:20:5b:9c:87:
e1:9b:b6:db:73:94:dd:bd:dd:77:54:e5:8b:e0:cd:
d5:d6:fe:e2:28:ef:d1:88:3b:7d:eb:53:f1:67:fc:
48:ac:d3:05:a6:40:a3:5c:60:02:c1:88:a9:18:31:
34:3b:d9:c2:ef:90:b0:4b:40:0f:80:58:77:d2:79:
7f:fc:25:14:a3:33:73:27:cf:38:fc:06:bb:fb:8e:
6a:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:B4:22:88:72:8E:37:BB:E5:FA:3A:DE:B3:E4:93:D6:6E:2F:F4:F3
X509v3 Authority Key Identifier:
keyid:7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/EbQiiHKON7vl-jres-ST1m4v9PM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/fOaNr18IlFbA4dAiRTk1Maxbj8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
1.186.0.0/16
40.169.0.0-40.171.255.255
48.192.0.0-48.221.255.255
51.10.0.0-51.13.255.255
51.51.0.0/16
51.53.0.0/16
51.103.0.0-51.105.255.255
51.107.0.0/16
51.116.0.0/16
51.120.0.0/16
51.124.0.0/16
51.132.0.0/16
51.136.0.0-51.138.255.255
51.140.0.0-51.145.255.255
57.150.0.0-57.175.255.255
69.15.0.0/16
72.16.128.0/17
72.54.0.0/16
74.144.0.0/12
82.87.0.0/16
84.223.0.0/16
85.212.0.0/16
94.245.64.0/18
109.246.0.0/16
122.149.0.0/16
124.252.0.0/16
128.24.0.0/16
128.85.0.0/16
128.203.0.0/16
129.135.0.0/16
130.131.0.0/16
131.163.0.0/16
131.189.0.0/16
132.164.0.0/16
132.196.0.0/16
132.220.0.0/16
134.33.0.0/16
134.112.0.0/16
134.138.0.0/16
135.4.0.0/16
135.6.0.0/15
135.18.0.0/16
135.85.0.0/16
135.114.0.0/16
135.116.0.0/16
135.130.0.0/16
135.171.0.0/16
135.185.0.0/16
135.224.0.0/15
135.229.0.0-135.230.255.255
135.232.0.0-135.237.255.255
135.240.0.0/16
137.162.0.0/16
138.105.0.0/16
138.213.0.0/16
143.209.0.0/16
143.226.0.0/16
147.214.0.0/16
147.243.0.0/16
148.53.0.0/16
149.175.0.0/16
149.198.0.0/16
151.129.0.0/16
151.206.0.0/16
152.138.0.0/16
156.23.0.0/16
157.31.0.0/16
157.81.0.0/16
157.95.0.0/16
157.172.0.0/16
157.176.0.0/16
157.252.0.0/16
158.24.0.0/16
159.128.0.0/16
160.207.0.0/16
160.234.0.0/16
161.157.0.0/16
165.15.0.0/16
165.17.0.0/16
167.162.0.0/16
167.186.0.0/16
167.231.0.0/16
172.128.0.0/10
172.200.0.0-172.215.255.255
173.200.0.0/16
192.100.104.0-192.100.133.255
193.149.64.0/19
193.221.113.0/24
194.41.16.0/20
194.110.197.0/24
194.238.128.0/17
199.50.0.0/16
207.103.0.0/16
209.199.0.0/16
212.132.0.0/19
212.173.0.0/17
212.207.0.0/16
213.54.0.0/16
213.199.128.0/18
217.176.0.0/16
217.177.96.0/19
IPv6:
2a00:1c68::/29
2a01:111::/32
Signature Algorithm: sha256WithRSAEncryption
91:31:40:72:6a:51:91:a0:d0:17:36:93:c7:71:5a:7b:4b:cd:
6d:5b:b2:65:b1:b6:52:a3:f5:d1:1c:20:5d:fe:c9:a2:ed:07:
d8:02:a3:ac:6c:88:e3:30:85:2f:e0:28:a0:23:0c:3d:0f:96:
8c:a7:bb:29:95:15:57:a4:32:7c:8d:46:32:f3:84:46:c7:4a:
7c:5f:8c:62:87:f6:a4:62:00:76:57:d3:45:7b:bc:0c:bf:61:
d5:43:9d:05:84:8d:5d:13:fd:c4:ec:b9:1d:ac:9c:06:51:db:
08:7f:2d:f1:4d:c4:b8:23:95:fb:80:cd:bb:aa:85:7d:5c:1c:
63:e5:bc:3b:1f:d8:bc:25:24:ba:9a:f8:91:34:08:77:d9:f4:
e3:73:0f:f6:86:0e:6c:8e:07:fa:4d:7e:c1:ea:de:3f:37:32:
1c:a9:58:8b:40:d9:4a:d5:61:ad:07:c0:72:4b:b1:40:1f:cd:
df:e5:0d:17:b9:02:18:6e:88:d5:f8:2f:1a:6f:64:98:c3:40:
55:e2:b9:06:90:19:df:e2:00:90:3f:ab:fe:f3:e7:2f:db:78:
62:0e:f5:96:c1:92:d2:8c:82:fc:f8:8e:bd:74:72:86:b8:41:
8d:7c:53:3a:76:9e:f2:e3:60:22:6f:bd:5b:ab:75:aa:c1:ec:
d4:1e:11:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:00 2024 by rpki-client on console-ams.rpki-client.org