Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/xUG9nUeUKPlmNS7cNTAnEkC9RKk.roa
File: xUG9nUeUKPlmNS7cNTAnEkC9RKk.roa (raw, json)
Hash identifier: MMiU525OMy2SsQgrCfrBt7Lpm2H85Ql3JzxYBF7fEBE=
Subject key identifier: C5:41:BD:9D:47:94:28:F9:66:35:2E:DC:35:30:27:12:40:BD:44:A9
Certificate issuer: /CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Certificate serial: 018B5EE39A0A8837EB62E3D99A958BBB9FDC
Authority key identifier: 7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/xUG9nUeUKPlmNS7cNTAnEkC9RKk.roa
Signing time: Mon 23 Oct 2023 23:34:16 +0000
ROA not before: Mon 23 Oct 2023 23:34:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 172.208.0.0/13 maxlen: 13
48.208.0.0/13 maxlen: 13
192.100.112.0/21 maxlen: 21
192.100.120.0/21 maxlen: 21
192.100.132.0/23 maxlen: 23
82.87.0.0/16 maxlen: 16
192.100.128.0/22 maxlen: 22
135.114.0.0/16 maxlen: 16
172.160.0.0/11 maxlen: 11
51.107.0.0/16 maxlen: 16
135.6.0.0/16 maxlen: 16
134.33.0.0/16 maxlen: 16
192.100.104.0/21 maxlen: 21
135.229.0.0/16 maxlen: 16
51.12.0.0/15 maxlen: 15
51.140.0.0/14 maxlen: 14
147.214.0.0/16 maxlen: 16
193.221.113.0/24 maxlen: 24
51.53.0.0/16 maxlen: 16
57.160.0.0/12 maxlen: 12
51.120.0.0/16 maxlen: 16
132.220.0.0/16 maxlen: 16
48.220.0.0/15 maxlen: 15
135.18.0.0/16 maxlen: 16
212.173.0.0/17 maxlen: 17
134.112.0.0/16 maxlen: 16
135.240.0.0/16 maxlen: 16
172.200.0.0/13 maxlen: 13
212.207.0.0/16 maxlen: 16
160.207.0.0/16 maxlen: 16
173.200.0.0/16 maxlen: 16
209.199.0.0/16 maxlen: 16
143.226.0.0/16 maxlen: 16
109.246.0.0/16 maxlen: 16
212.132.0.0/19 maxlen: 19
135.4.0.0/16 maxlen: 16
51.132.0.0/16 maxlen: 16
157.31.0.0/16 maxlen: 16
167.186.0.0/16 maxlen: 16
213.199.128.0/18 maxlen: 24
135.85.0.0/16 maxlen: 16
128.85.0.0/16 maxlen: 16
48.192.0.0/12 maxlen: 12
128.24.0.0/16 maxlen: 16
51.51.0.0/16 maxlen: 16
57.152.0.0/14 maxlen: 14
151.206.0.0/16 maxlen: 16
138.105.0.0/16 maxlen: 16
94.245.64.0/18 maxlen: 24
124.252.0.0/16 maxlen: 16
51.124.0.0/16 maxlen: 16
157.252.0.0/16 maxlen: 16
156.23.0.0/16 maxlen: 16
51.144.0.0/15 maxlen: 15
135.171.0.0/16 maxlen: 16
40.171.0.0/16 maxlen: 16
149.198.0.0/16 maxlen: 16
194.238.128.0/17 maxlen: 17
85.212.0.0/16 maxlen: 16
134.138.0.0/16 maxlen: 16
51.138.0.0/16 maxlen: 16
152.138.0.0/16 maxlen: 16
51.10.0.0/15 maxlen: 15
74.144.0.0/12 maxlen: 12
194.110.197.0/24 maxlen: 24
51.104.0.0/15 maxlen: 15
72.16.128.0/17 maxlen: 17
130.131.0.0/16 maxlen: 16
135.232.0.0/14 maxlen: 14
135.185.0.0/16 maxlen: 16
51.103.0.0/16 maxlen: 16
167.231.0.0/16 maxlen: 16
207.103.0.0/16 maxlen: 16
135.130.0.0/16 maxlen: 16
135.224.0.0/15 maxlen: 15
57.150.0.0/15 maxlen: 15
132.164.0.0/16 maxlen: 16
217.177.96.0/19 maxlen: 19
57.156.0.0/14 maxlen: 14
172.128.0.0/11 maxlen: 11
217.176.0.0/16 maxlen: 16
157.176.0.0/16 maxlen: 16
128.203.0.0/16 maxlen: 16
135.230.0.0/16 maxlen: 16
193.149.64.0/19 maxlen: 24
151.129.0.0/16 maxlen: 16
51.116.0.0/16 maxlen: 16
135.116.0.0/16 maxlen: 16
165.15.0.0/16 maxlen: 16
40.170.0.0/16 maxlen: 16
51.136.0.0/15 maxlen: 15
135.236.0.0/15 maxlen: 15
135.7.0.0/16 maxlen: 16
167.162.0.0/16 maxlen: 16
137.162.0.0/16 maxlen: 16
159.128.0.0/16 maxlen: 16
213.54.0.0/16 maxlen: 16
72.54.0.0/16 maxlen: 16
143.209.0.0/16 maxlen: 16
157.81.0.0/16 maxlen: 16
194.41.16.0/20 maxlen: 20
194.41.18.0/24 maxlen: 24
194.41.22.0/24 maxlen: 24
194.41.23.0/24 maxlen: 24
194.41.20.0/24 maxlen: 24
194.41.21.0/24 maxlen: 24
194.41.19.0/24 maxlen: 24
132.196.0.0/16 maxlen: 16
157.95.0.0/16 maxlen: 16
122.149.0.0/16 maxlen: 16
147.243.0.0/16 maxlen: 24
48.216.0.0/14 maxlen: 14
40.169.0.0/16 maxlen: 16
2a01:111:4004::/48 maxlen: 48
2a01:111::/32 maxlen: 32
2a01:111:f000::/36 maxlen: 36
2a01:111:2000::/36 maxlen: 36
2a01:111:4000::/36 maxlen: 36
2a00:1c68::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 27 Oct 2023 17:33:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5e:e3:9a:0a:88:37:eb:62:e3:d9:9a:95:8b:bb:9f:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Validity
Not Before: Oct 23 23:34:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c541bd9d479428f966352edc3530271240bd44a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:84:92:e4:14:65:b3:b3:99:0f:a9:81:c8:cc:
51:34:f6:b4:18:86:3f:c7:7f:37:9c:62:f9:a0:3f:
1e:d0:d9:f2:80:09:37:68:38:f6:c4:0f:7c:41:66:
3e:68:ea:f3:15:66:f2:cf:2d:0f:41:c8:80:d8:c1:
db:8f:42:1f:df:a1:5e:e8:c3:17:e6:8b:66:4f:64:
03:3b:54:ff:45:61:d6:3f:15:f9:e3:5d:f7:c8:5f:
18:b2:b9:08:db:f2:c0:1a:da:20:57:18:f9:a3:c5:
57:05:8c:29:1f:0d:fd:09:f5:14:d4:93:4e:7e:f4:
03:73:78:1f:13:8d:82:f7:b7:c1:fc:f3:1b:1a:c3:
ac:b8:74:fe:17:21:1a:a5:f9:16:34:91:5a:a6:87:
38:9e:68:c7:72:a9:02:3d:fc:ce:76:9a:c9:9d:cb:
96:b6:a5:3a:2e:cd:73:a9:27:d8:c6:1b:f5:a7:b5:
50:c6:b2:2a:d0:e7:51:a1:b0:5d:af:1c:1e:b9:7c:
3d:1c:ce:ed:1a:dc:79:ab:75:0f:97:cf:8c:9e:7a:
28:a8:74:f6:24:b7:9c:b9:9b:c7:e7:84:fb:74:00:
dc:f5:57:ae:82:b4:f3:af:c3:e6:24:a8:3e:b6:12:
8a:22:cd:4e:31:42:f9:0d:6d:be:96:9c:66:9a:60:
9f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:41:BD:9D:47:94:28:F9:66:35:2E:DC:35:30:27:12:40:BD:44:A9
X509v3 Authority Key Identifier:
keyid:7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/xUG9nUeUKPlmNS7cNTAnEkC9RKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/fOaNr18IlFbA4dAiRTk1Maxbj8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
40.169.0.0-40.171.255.255
48.192.0.0-48.221.255.255
51.10.0.0-51.13.255.255
51.51.0.0/16
51.53.0.0/16
51.103.0.0-51.105.255.255
51.107.0.0/16
51.116.0.0/16
51.120.0.0/16
51.124.0.0/16
51.132.0.0/16
51.136.0.0-51.138.255.255
51.140.0.0-51.145.255.255
57.150.0.0-57.175.255.255
72.16.128.0/17
72.54.0.0/16
74.144.0.0/12
82.87.0.0/16
85.212.0.0/16
94.245.64.0/18
109.246.0.0/16
122.149.0.0/16
124.252.0.0/16
128.24.0.0/16
128.85.0.0/16
128.203.0.0/16
130.131.0.0/16
132.164.0.0/16
132.196.0.0/16
132.220.0.0/16
134.33.0.0/16
134.112.0.0/16
134.138.0.0/16
135.4.0.0/16
135.6.0.0/15
135.18.0.0/16
135.85.0.0/16
135.114.0.0/16
135.116.0.0/16
135.130.0.0/16
135.171.0.0/16
135.185.0.0/16
135.224.0.0/15
135.229.0.0-135.230.255.255
135.232.0.0-135.237.255.255
135.240.0.0/16
137.162.0.0/16
138.105.0.0/16
143.209.0.0/16
143.226.0.0/16
147.214.0.0/16
147.243.0.0/16
149.198.0.0/16
151.129.0.0/16
151.206.0.0/16
152.138.0.0/16
156.23.0.0/16
157.31.0.0/16
157.81.0.0/16
157.95.0.0/16
157.176.0.0/16
157.252.0.0/16
159.128.0.0/16
160.207.0.0/16
165.15.0.0/16
167.162.0.0/16
167.186.0.0/16
167.231.0.0/16
172.128.0.0/10
172.200.0.0-172.215.255.255
173.200.0.0/16
192.100.104.0-192.100.133.255
193.149.64.0/19
193.221.113.0/24
194.41.16.0/20
194.110.197.0/24
194.238.128.0/17
207.103.0.0/16
209.199.0.0/16
212.132.0.0/19
212.173.0.0/17
212.207.0.0/16
213.54.0.0/16
213.199.128.0/18
217.176.0.0/16
217.177.96.0/19
IPv6:
2a00:1c68::/29
2a01:111::/32
Signature Algorithm: sha256WithRSAEncryption
ab:07:2c:c2:b7:9c:77:15:35:f5:df:f6:2a:ff:2c:f5:a0:57:
c9:19:86:3c:03:4f:b5:cb:58:fc:ae:fc:89:a9:4b:2a:93:6d:
2d:f3:60:b3:37:b1:05:75:83:65:f2:6b:c3:54:ad:a8:92:9c:
23:69:10:04:1e:8e:bd:bb:58:db:d2:02:35:e5:36:b3:e2:4f:
3a:e9:df:43:67:b2:f2:ee:17:35:f9:4c:67:dd:8a:b7:a9:08:
24:fd:79:b2:ca:d8:03:f9:dc:f7:44:0b:1c:97:e7:73:ba:b7:
73:9f:5c:87:99:5f:90:7e:54:c9:05:10:c7:49:d1:9a:d4:bd:
ef:b3:38:fd:ce:83:f0:54:ab:d2:6f:59:63:f4:e7:b7:3f:42:
9c:19:f7:5e:5f:9b:90:45:04:1c:ec:79:03:ad:46:27:c6:9a:
9b:be:aa:65:67:9b:ab:5e:a2:46:9c:f1:0d:21:1a:3a:81:5e:
49:eb:1c:a1:c4:f2:2e:34:84:95:69:1e:e3:32:dd:23:bc:62:
37:17:11:15:a1:a6:61:f5:fe:a1:88:7b:d0:98:97:a5:6d:75:
c3:59:13:14:32:78:9a:95:ff:88:10:de:a2:79:cd:ba:30:dd:
63:f6:f5:c6:ec:b1:4c:55:58:1a:ac:70:21:f2:85:eb:42:04:
a9:c7:f5:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:00 2024 by rpki-client on console-ams.rpki-client.org