Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/Ld730RtHAtKxgrB_V_9ZdlnrawU.roa
File: Ld730RtHAtKxgrB_V_9ZdlnrawU.roa (raw, json)
Hash identifier: BDJxY4XnyhLq2jHL5Zu65LhVKKm/DcPcd68pQuHqg94=
Subject key identifier: 2D:DE:F7:D1:1B:47:02:D2:B1:82:B0:7F:57:FF:59:76:59:EB:6B:05
Certificate issuer: /CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Certificate serial: 018DD71A19FD0DBADA9218DCF9724695331D
Authority key identifier: 7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/Ld730RtHAtKxgrB_V_9ZdlnrawU.roa
Signing time: Fri 23 Feb 2024 17:53:48 +0000
ROA not before: Fri 23 Feb 2024 17:53:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8075
IP address blocks: 1.186.0.0/16 maxlen: 16
9.145.0.0/16 maxlen: 16
9.146.0.0/16 maxlen: 16
9.234.0.0/15 maxlen: 15
40.169.0.0/16 maxlen: 16
40.170.0.0/16 maxlen: 16
40.171.0.0/16 maxlen: 16
48.192.0.0/12 maxlen: 12
48.208.0.0/13 maxlen: 13
48.216.0.0/14 maxlen: 14
48.220.0.0/15 maxlen: 15
51.10.0.0/15 maxlen: 15
51.12.0.0/15 maxlen: 15
51.51.0.0/16 maxlen: 16
51.53.0.0/16 maxlen: 16
51.103.0.0/16 maxlen: 16
51.104.0.0/15 maxlen: 15
51.107.0.0/16 maxlen: 16
51.116.0.0/16 maxlen: 16
51.120.0.0/16 maxlen: 16
51.124.0.0/16 maxlen: 16
51.132.0.0/16 maxlen: 16
51.136.0.0/15 maxlen: 15
51.138.0.0/16 maxlen: 16
51.140.0.0/14 maxlen: 14
51.144.0.0/15 maxlen: 15
57.150.0.0/15 maxlen: 15
57.152.0.0/14 maxlen: 14
57.156.0.0/14 maxlen: 14
57.160.0.0/12 maxlen: 12
69.15.0.0/16 maxlen: 16
72.16.128.0/17 maxlen: 17
72.54.0.0/16 maxlen: 16
74.144.0.0/12 maxlen: 12
82.87.0.0/16 maxlen: 16
84.222.0.0/16 maxlen: 16
84.223.0.0/16 maxlen: 16
85.212.0.0/16 maxlen: 16
94.245.64.0/18 maxlen: 24
109.246.0.0/16 maxlen: 16
122.149.0.0/16 maxlen: 16
124.252.0.0/16 maxlen: 16
128.24.0.0/16 maxlen: 16
128.85.0.0/16 maxlen: 16
128.203.0.0/16 maxlen: 16
129.135.0.0/16 maxlen: 16
130.131.0.0/16 maxlen: 16
130.213.0.0/16 maxlen: 16
131.163.0.0/16 maxlen: 16
131.189.0.0/16 maxlen: 16
132.164.0.0/16 maxlen: 16
132.196.0.0/16 maxlen: 16
132.220.0.0/16 maxlen: 16
134.33.0.0/16 maxlen: 16
134.112.0.0/16 maxlen: 16
134.138.0.0/16 maxlen: 16
134.149.0.0/16 maxlen: 16
135.4.0.0/16 maxlen: 16
135.6.0.0/16 maxlen: 16
135.7.0.0/16 maxlen: 16
135.18.0.0/16 maxlen: 16
135.85.0.0/16 maxlen: 16
135.88.0.0/16 maxlen: 16
135.93.0.0/16 maxlen: 16
135.114.0.0/16 maxlen: 16
135.116.0.0/16 maxlen: 16
135.119.0.0/16 maxlen: 16
135.130.0.0/16 maxlen: 16
135.171.0.0/16 maxlen: 16
135.185.0.0/16 maxlen: 16
135.220.0.0/16 maxlen: 16
135.224.0.0/15 maxlen: 15
135.229.0.0/16 maxlen: 16
135.230.0.0/16 maxlen: 16
135.232.0.0/14 maxlen: 14
135.236.0.0/15 maxlen: 15
135.240.0.0/16 maxlen: 16
135.241.0.0/16 maxlen: 16
135.244.0.0/16 maxlen: 16
135.255.0.0/16 maxlen: 16
137.162.0.0/16 maxlen: 16
138.105.0.0/16 maxlen: 16
138.213.0.0/16 maxlen: 16
143.209.0.0/16 maxlen: 16
143.226.0.0/16 maxlen: 16
143.241.0.0/16 maxlen: 16
147.214.0.0/16 maxlen: 16
147.243.0.0/16 maxlen: 24
148.53.0.0/16 maxlen: 16
149.175.0.0/16 maxlen: 16
149.198.0.0/16 maxlen: 16
151.129.0.0/16 maxlen: 16
151.206.0.0/16 maxlen: 16
152.138.0.0/16 maxlen: 16
156.23.0.0/16 maxlen: 16
157.31.0.0/16 maxlen: 16
157.81.0.0/16 maxlen: 16
157.95.0.0/16 maxlen: 16
157.172.0.0/16 maxlen: 16
157.176.0.0/16 maxlen: 16
157.252.0.0/16 maxlen: 16
158.24.0.0/16 maxlen: 16
158.53.0.0/16 maxlen: 16
159.128.0.0/16 maxlen: 16
160.207.0.0/16 maxlen: 16
160.234.0.0/16 maxlen: 16
161.157.0.0/16 maxlen: 16
165.15.0.0/16 maxlen: 16
165.17.0.0/16 maxlen: 16
167.162.0.0/16 maxlen: 16
167.186.0.0/16 maxlen: 16
167.231.0.0/16 maxlen: 16
172.128.0.0/11 maxlen: 11
172.160.0.0/11 maxlen: 11
172.200.0.0/13 maxlen: 13
172.208.0.0/13 maxlen: 13
173.200.0.0/16 maxlen: 16
192.100.104.0/21 maxlen: 21
192.100.112.0/21 maxlen: 21
192.100.120.0/21 maxlen: 21
192.100.128.0/22 maxlen: 22
192.100.132.0/23 maxlen: 23
193.149.64.0/19 maxlen: 24
193.221.113.0/24 maxlen: 24
194.41.16.0/20 maxlen: 20
194.41.18.0/24 maxlen: 24
194.41.19.0/24 maxlen: 24
194.41.20.0/24 maxlen: 24
194.41.21.0/24 maxlen: 24
194.41.22.0/24 maxlen: 24
194.41.23.0/24 maxlen: 24
194.110.197.0/24 maxlen: 24
194.238.128.0/17 maxlen: 17
199.50.0.0/16 maxlen: 16
199.118.0.0/16 maxlen: 16
207.103.0.0/16 maxlen: 16
209.199.0.0/16 maxlen: 16
212.132.0.0/19 maxlen: 19
212.173.0.0/17 maxlen: 17
212.207.0.0/16 maxlen: 16
213.54.0.0/16 maxlen: 16
213.199.128.0/18 maxlen: 24
217.176.0.0/16 maxlen: 16
217.177.96.0/19 maxlen: 19
2a00:1c68::/29 maxlen: 29
2a01:111::/32 maxlen: 32
2a01:111:2000::/36 maxlen: 36
2a01:111:4000::/36 maxlen: 36
2a01:111:4004::/48 maxlen: 48
2a01:111:f000::/36 maxlen: 36
Validation: Failed, certificate revoked on Wed 13 Mar 2024 10:43:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d7:1a:19:fd:0d:ba:da:92:18:dc:f9:72:46:95:33:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Validity
Not Before: Feb 23 17:53:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2ddef7d11b4702d2b182b07f57ff597659eb6b05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:09:dc:28:c3:1d:cc:5e:42:b2:69:9a:e5:c1:
6a:51:54:25:c9:fc:b3:15:a8:85:79:23:6f:1c:5a:
0d:fc:ca:ec:19:ba:d6:c4:34:21:ee:f4:4b:7f:fc:
a5:60:fb:d0:bf:4b:90:4d:9e:28:ca:48:d5:a7:56:
9a:d1:27:51:63:8a:0c:4d:b6:4f:ac:92:46:7d:ce:
45:37:67:a5:71:1b:b8:a3:43:8a:0d:0c:b5:34:b4:
c4:6a:e4:3b:8e:d9:32:6b:3c:c5:c3:2e:21:fe:8c:
07:6c:40:88:c2:74:b0:86:46:3c:bb:2c:0b:c8:7e:
77:f7:4b:92:be:9b:71:8a:58:e9:23:23:31:e9:92:
01:98:25:71:89:98:c8:17:28:3b:2c:21:ed:1d:c8:
de:23:70:ef:00:33:0d:11:e3:63:5a:db:a2:28:91:
3d:7d:a9:9c:59:83:2c:a7:db:7d:d6:93:08:7f:c6:
a6:b0:26:5e:f7:da:d9:84:80:87:3d:6d:73:60:38:
71:e6:3f:dc:a8:3c:f9:cd:e8:fd:1f:dd:37:14:34:
7c:71:20:47:bc:de:b1:d7:5e:ad:6c:a8:88:00:52:
d2:f4:3c:d9:ed:88:bf:28:5b:13:e9:12:8e:48:8f:
ac:4d:0b:f9:52:f6:7a:f2:11:5d:75:0c:f5:00:cf:
8c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:DE:F7:D1:1B:47:02:D2:B1:82:B0:7F:57:FF:59:76:59:EB:6B:05
X509v3 Authority Key Identifier:
keyid:7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/Ld730RtHAtKxgrB_V_9ZdlnrawU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/fOaNr18IlFbA4dAiRTk1Maxbj8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
1.186.0.0/16
9.145.0.0-9.146.255.255
9.234.0.0/15
40.169.0.0-40.171.255.255
48.192.0.0-48.221.255.255
51.10.0.0-51.13.255.255
51.51.0.0/16
51.53.0.0/16
51.103.0.0-51.105.255.255
51.107.0.0/16
51.116.0.0/16
51.120.0.0/16
51.124.0.0/16
51.132.0.0/16
51.136.0.0-51.138.255.255
51.140.0.0-51.145.255.255
57.150.0.0-57.175.255.255
69.15.0.0/16
72.16.128.0/17
72.54.0.0/16
74.144.0.0/12
82.87.0.0/16
84.222.0.0/15
85.212.0.0/16
94.245.64.0/18
109.246.0.0/16
122.149.0.0/16
124.252.0.0/16
128.24.0.0/16
128.85.0.0/16
128.203.0.0/16
129.135.0.0/16
130.131.0.0/16
130.213.0.0/16
131.163.0.0/16
131.189.0.0/16
132.164.0.0/16
132.196.0.0/16
132.220.0.0/16
134.33.0.0/16
134.112.0.0/16
134.138.0.0/16
134.149.0.0/16
135.4.0.0/16
135.6.0.0/15
135.18.0.0/16
135.85.0.0/16
135.88.0.0/16
135.93.0.0/16
135.114.0.0/16
135.116.0.0/16
135.119.0.0/16
135.130.0.0/16
135.171.0.0/16
135.185.0.0/16
135.220.0.0/16
135.224.0.0/15
135.229.0.0-135.230.255.255
135.232.0.0-135.237.255.255
135.240.0.0/15
135.244.0.0/16
135.255.0.0/16
137.162.0.0/16
138.105.0.0/16
138.213.0.0/16
143.209.0.0/16
143.226.0.0/16
143.241.0.0/16
147.214.0.0/16
147.243.0.0/16
148.53.0.0/16
149.175.0.0/16
149.198.0.0/16
151.129.0.0/16
151.206.0.0/16
152.138.0.0/16
156.23.0.0/16
157.31.0.0/16
157.81.0.0/16
157.95.0.0/16
157.172.0.0/16
157.176.0.0/16
157.252.0.0/16
158.24.0.0/16
158.53.0.0/16
159.128.0.0/16
160.207.0.0/16
160.234.0.0/16
161.157.0.0/16
165.15.0.0/16
165.17.0.0/16
167.162.0.0/16
167.186.0.0/16
167.231.0.0/16
172.128.0.0/10
172.200.0.0-172.215.255.255
173.200.0.0/16
192.100.104.0-192.100.133.255
193.149.64.0/19
193.221.113.0/24
194.41.16.0/20
194.110.197.0/24
194.238.128.0/17
199.50.0.0/16
199.118.0.0/16
207.103.0.0/16
209.199.0.0/16
212.132.0.0/19
212.173.0.0/17
212.207.0.0/16
213.54.0.0/16
213.199.128.0/18
217.176.0.0/16
217.177.96.0/19
IPv6:
2a00:1c68::/29
2a01:111::/32
Signature Algorithm: sha256WithRSAEncryption
25:45:e8:ba:f1:c4:c5:58:1e:1d:af:29:15:7d:fc:8d:6b:09:
42:ca:94:d0:1a:66:cf:71:69:b7:f9:fb:f2:28:20:99:2e:b0:
7d:c8:bb:4d:8d:7c:92:d5:50:6c:a5:42:f8:54:a3:46:04:9b:
b6:3f:7b:e9:30:79:f9:56:33:77:78:04:26:b4:50:c8:b6:1d:
47:21:44:bd:40:f1:c1:4f:5c:a0:2d:07:74:01:ef:09:b6:bf:
d8:e8:7c:59:97:ce:11:8d:76:c0:e7:08:f8:e9:88:6e:68:ab:
22:1e:7a:b4:9c:75:02:16:cd:ff:c8:2a:1c:c5:8d:f0:a0:60:
c4:11:28:7f:df:51:63:4e:4e:76:ec:94:c8:c3:98:b3:77:70:
95:f0:bc:85:af:06:fd:18:db:d5:15:9d:b5:37:bb:b0:3e:8b:
e1:3c:c3:4b:09:6a:2c:00:16:a8:26:39:1a:a1:a9:6a:a9:74:
f3:b1:e8:95:72:6d:05:0a:74:59:29:5e:a0:7b:02:c6:ef:de:
77:c4:5d:87:2d:2d:f0:1a:20:b8:17:1f:5a:84:4b:15:df:3b:
52:c4:d6:b8:07:1f:91:15:a4:7e:2c:a5:a7:f9:b6:c7:5b:3a:
e5:b9:06:79:37:da:f9:26:bd:76:0b:a2:4f:dd:88:81:d6:53:
5d:1f:bb:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:32 2024 by rpki-client on console-fra.rpki-client.org