Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/L3G6qeLeykGjl7U9OHWS6p608fQ.roa
File: L3G6qeLeykGjl7U9OHWS6p608fQ.roa (raw, json)
Hash identifier: daCkTNCxvAJDNcxtlvMROCpJbLOG0XenxHRLu/u5ha0=
Subject key identifier: 2F:71:BA:A9:E2:DE:CA:41:A3:97:B5:3D:38:75:92:EA:9E:B4:F1:F4
Certificate issuer: /CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Certificate serial: 018BAB256B82C25B1474CD017C3ED8D764F5
Authority key identifier: 7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/L3G6qeLeykGjl7U9OHWS6p608fQ.roa
Signing time: Tue 07 Nov 2023 18:57:18 +0000
ROA not before: Tue 07 Nov 2023 18:57:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 48.208.0.0/13 maxlen: 13
172.208.0.0/13 maxlen: 13
192.100.112.0/21 maxlen: 21
192.100.120.0/21 maxlen: 21
192.100.132.0/23 maxlen: 23
82.87.0.0/16 maxlen: 16
192.100.128.0/22 maxlen: 22
135.114.0.0/16 maxlen: 16
172.160.0.0/11 maxlen: 11
51.107.0.0/16 maxlen: 16
135.6.0.0/16 maxlen: 16
134.33.0.0/16 maxlen: 16
192.100.104.0/21 maxlen: 21
149.175.0.0/16 maxlen: 16
135.229.0.0/16 maxlen: 16
51.12.0.0/15 maxlen: 15
51.140.0.0/14 maxlen: 14
147.214.0.0/16 maxlen: 16
193.221.113.0/24 maxlen: 24
51.53.0.0/16 maxlen: 16
148.53.0.0/16 maxlen: 16
57.160.0.0/12 maxlen: 12
51.120.0.0/16 maxlen: 16
132.220.0.0/16 maxlen: 16
48.220.0.0/15 maxlen: 15
135.18.0.0/16 maxlen: 16
212.173.0.0/17 maxlen: 17
135.240.0.0/16 maxlen: 16
134.112.0.0/16 maxlen: 16
172.200.0.0/13 maxlen: 13
160.207.0.0/16 maxlen: 16
212.207.0.0/16 maxlen: 16
173.200.0.0/16 maxlen: 16
209.199.0.0/16 maxlen: 16
143.226.0.0/16 maxlen: 16
109.246.0.0/16 maxlen: 16
212.132.0.0/19 maxlen: 19
51.132.0.0/16 maxlen: 16
135.4.0.0/16 maxlen: 16
157.31.0.0/16 maxlen: 16
213.199.128.0/18 maxlen: 24
167.186.0.0/16 maxlen: 16
1.186.0.0/16 maxlen: 16
128.85.0.0/16 maxlen: 16
135.85.0.0/16 maxlen: 16
48.192.0.0/12 maxlen: 12
128.24.0.0/16 maxlen: 16
51.51.0.0/16 maxlen: 16
57.152.0.0/14 maxlen: 14
151.206.0.0/16 maxlen: 16
138.105.0.0/16 maxlen: 16
94.245.64.0/18 maxlen: 24
157.252.0.0/16 maxlen: 16
51.124.0.0/16 maxlen: 16
124.252.0.0/16 maxlen: 16
156.23.0.0/16 maxlen: 16
51.144.0.0/15 maxlen: 15
40.171.0.0/16 maxlen: 16
135.171.0.0/16 maxlen: 16
149.198.0.0/16 maxlen: 16
194.238.128.0/17 maxlen: 17
85.212.0.0/16 maxlen: 16
152.138.0.0/16 maxlen: 16
51.138.0.0/16 maxlen: 16
134.138.0.0/16 maxlen: 16
51.10.0.0/15 maxlen: 15
74.144.0.0/12 maxlen: 12
194.110.197.0/24 maxlen: 24
51.104.0.0/15 maxlen: 15
72.16.128.0/17 maxlen: 17
130.131.0.0/16 maxlen: 16
135.232.0.0/14 maxlen: 14
135.185.0.0/16 maxlen: 16
207.103.0.0/16 maxlen: 16
167.231.0.0/16 maxlen: 16
51.103.0.0/16 maxlen: 16
135.130.0.0/16 maxlen: 16
135.224.0.0/15 maxlen: 15
57.150.0.0/15 maxlen: 15
132.164.0.0/16 maxlen: 16
217.177.96.0/19 maxlen: 19
57.156.0.0/14 maxlen: 14
172.128.0.0/11 maxlen: 11
157.176.0.0/16 maxlen: 16
217.176.0.0/16 maxlen: 16
128.203.0.0/16 maxlen: 16
135.230.0.0/16 maxlen: 16
193.149.64.0/19 maxlen: 24
151.129.0.0/16 maxlen: 16
135.116.0.0/16 maxlen: 16
51.116.0.0/16 maxlen: 16
165.15.0.0/16 maxlen: 16
40.170.0.0/16 maxlen: 16
51.136.0.0/15 maxlen: 15
131.163.0.0/16 maxlen: 16
135.236.0.0/15 maxlen: 15
135.7.0.0/16 maxlen: 16
129.135.0.0/16 maxlen: 16
137.162.0.0/16 maxlen: 16
167.162.0.0/16 maxlen: 16
159.128.0.0/16 maxlen: 16
72.54.0.0/16 maxlen: 16
213.54.0.0/16 maxlen: 16
157.81.0.0/16 maxlen: 16
143.209.0.0/16 maxlen: 16
194.41.16.0/20 maxlen: 20
194.41.18.0/24 maxlen: 24
194.41.22.0/24 maxlen: 24
194.41.23.0/24 maxlen: 24
194.41.20.0/24 maxlen: 24
194.41.21.0/24 maxlen: 24
194.41.19.0/24 maxlen: 24
132.196.0.0/16 maxlen: 16
157.95.0.0/16 maxlen: 16
84.223.0.0/16 maxlen: 16
122.149.0.0/16 maxlen: 16
147.243.0.0/16 maxlen: 24
48.216.0.0/14 maxlen: 14
40.169.0.0/16 maxlen: 16
2a01:111:4004::/48 maxlen: 48
2a01:111::/32 maxlen: 32
2a01:111:4000::/36 maxlen: 36
2a01:111:2000::/36 maxlen: 36
2a01:111:f000::/36 maxlen: 36
2a00:1c68::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 13 Nov 2023 18:53:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ab:25:6b:82:c2:5b:14:74:cd:01:7c:3e:d8:d7:64:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Validity
Not Before: Nov 7 18:57:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f71baa9e2deca41a397b53d387592ea9eb4f1f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:dc:81:ba:c9:39:c4:d3:bd:83:61:40:99:c0:
3b:01:8b:fa:4c:70:d8:aa:f9:e2:1b:63:5d:6c:76:
c8:cb:9d:2a:3c:4c:dd:74:66:79:1d:a1:0f:04:17:
16:a0:de:f5:92:40:7d:05:fe:20:66:9f:92:86:d6:
51:e4:53:44:3b:55:4c:85:fd:07:9b:25:33:2f:a3:
d2:a0:ea:2f:df:f2:9e:47:48:f0:30:fa:0f:94:ab:
f6:8f:dd:11:80:b1:90:fc:ea:4a:fe:fd:b1:67:c4:
f7:35:b4:1b:ae:ee:ac:cb:ce:b0:ed:06:86:16:3a:
3f:bb:41:dd:9e:b1:16:39:50:61:2b:2e:69:63:0d:
76:50:a6:2c:ae:e8:bc:d9:43:2c:71:ad:c0:70:32:
0b:0f:92:46:01:3b:85:69:bf:10:00:54:9a:83:4c:
f3:47:96:a2:7e:66:17:54:ee:84:72:82:a9:bb:ce:
e3:dd:2c:40:df:cb:8e:45:61:0c:8b:fa:26:ab:86:
b9:cd:9a:c2:c1:8a:98:33:f3:4e:3b:8a:58:96:f0:
1a:53:e6:ee:df:0d:ae:26:e1:41:f5:3e:04:9a:dc:
a2:8c:b1:e2:10:fc:37:9a:1a:57:d7:28:4a:31:b7:
76:76:d8:08:58:d0:83:3a:0d:50:da:20:59:d2:29:
b0:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:71:BA:A9:E2:DE:CA:41:A3:97:B5:3D:38:75:92:EA:9E:B4:F1:F4
X509v3 Authority Key Identifier:
keyid:7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/L3G6qeLeykGjl7U9OHWS6p608fQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/fOaNr18IlFbA4dAiRTk1Maxbj8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
1.186.0.0/16
40.169.0.0-40.171.255.255
48.192.0.0-48.221.255.255
51.10.0.0-51.13.255.255
51.51.0.0/16
51.53.0.0/16
51.103.0.0-51.105.255.255
51.107.0.0/16
51.116.0.0/16
51.120.0.0/16
51.124.0.0/16
51.132.0.0/16
51.136.0.0-51.138.255.255
51.140.0.0-51.145.255.255
57.150.0.0-57.175.255.255
72.16.128.0/17
72.54.0.0/16
74.144.0.0/12
82.87.0.0/16
84.223.0.0/16
85.212.0.0/16
94.245.64.0/18
109.246.0.0/16
122.149.0.0/16
124.252.0.0/16
128.24.0.0/16
128.85.0.0/16
128.203.0.0/16
129.135.0.0/16
130.131.0.0/16
131.163.0.0/16
132.164.0.0/16
132.196.0.0/16
132.220.0.0/16
134.33.0.0/16
134.112.0.0/16
134.138.0.0/16
135.4.0.0/16
135.6.0.0/15
135.18.0.0/16
135.85.0.0/16
135.114.0.0/16
135.116.0.0/16
135.130.0.0/16
135.171.0.0/16
135.185.0.0/16
135.224.0.0/15
135.229.0.0-135.230.255.255
135.232.0.0-135.237.255.255
135.240.0.0/16
137.162.0.0/16
138.105.0.0/16
143.209.0.0/16
143.226.0.0/16
147.214.0.0/16
147.243.0.0/16
148.53.0.0/16
149.175.0.0/16
149.198.0.0/16
151.129.0.0/16
151.206.0.0/16
152.138.0.0/16
156.23.0.0/16
157.31.0.0/16
157.81.0.0/16
157.95.0.0/16
157.176.0.0/16
157.252.0.0/16
159.128.0.0/16
160.207.0.0/16
165.15.0.0/16
167.162.0.0/16
167.186.0.0/16
167.231.0.0/16
172.128.0.0/10
172.200.0.0-172.215.255.255
173.200.0.0/16
192.100.104.0-192.100.133.255
193.149.64.0/19
193.221.113.0/24
194.41.16.0/20
194.110.197.0/24
194.238.128.0/17
207.103.0.0/16
209.199.0.0/16
212.132.0.0/19
212.173.0.0/17
212.207.0.0/16
213.54.0.0/16
213.199.128.0/18
217.176.0.0/16
217.177.96.0/19
IPv6:
2a00:1c68::/29
2a01:111::/32
Signature Algorithm: sha256WithRSAEncryption
c4:d4:e9:c2:8f:8b:b9:57:f4:d3:db:68:e7:d2:22:20:0b:15:
38:03:43:26:93:96:08:17:ad:6c:1c:03:f5:b2:ba:cf:a1:ca:
c4:94:60:b9:b5:60:00:04:cb:22:0a:24:26:ca:f7:41:4f:c7:
d8:89:4f:d5:b6:ad:06:06:d4:f4:33:d2:65:0e:c3:90:c3:71:
c6:7d:32:81:a3:a6:cd:4c:6d:f9:f9:90:dd:02:72:2c:d2:19:
1a:fd:12:e5:3a:81:08:24:bc:13:d9:5d:25:b5:1d:9a:14:1f:
df:07:50:3b:c8:0c:90:6d:09:6c:cc:a8:fa:f1:da:b5:74:39:
f6:d0:af:b5:f6:70:cc:31:ec:1e:9f:3c:4d:a7:2a:e5:40:76:
6a:a1:07:d7:dc:76:b4:a0:34:bc:9f:02:15:77:78:e0:6e:df:
9b:e0:f5:2e:6f:40:05:53:1e:91:bf:45:24:ae:b6:da:9a:d2:
f8:70:5a:c1:1d:f1:e4:d9:ea:80:9d:22:9a:ba:9d:9e:f8:23:
54:60:94:9d:bb:1f:77:40:7f:56:b9:02:b8:31:0e:1d:e1:b6:
b1:c4:cb:5a:c2:5c:59:56:12:73:4e:07:7a:01:4e:eb:a9:4e:
15:74:8f:e4:da:9f:30:6e:6a:f8:c1:50:0a:b6:1a:26:9b:40:
47:b0:f4:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:00 2024 by rpki-client on console-ams.rpki-client.org