Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/I5vPpOE7-cXJlOlRfBc_Jgl1-EQ.roa
File: I5vPpOE7-cXJlOlRfBc_Jgl1-EQ.roa (raw, json)
Hash identifier: R+SnA1ornEd8ekAz9iK/GFWLpjpZN1d1JrEfuC8Yg84=
Subject key identifier: 23:9B:CF:A4:E1:3B:F9:C5:C9:94:E9:51:7C:17:3F:26:09:75:F8:44
Certificate issuer: /CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Certificate serial: 0190C0ED491ADA113F715F0EE47D3016EEE2
Authority key identifier: F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/I5vPpOE7-cXJlOlRfBc_Jgl1-EQ.roa
Signing time: Wed 17 Jul 2024 13:41:34 +0000
ROA not before: Wed 17 Jul 2024 13:41:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208677
IP address blocks: 31.40.248.0/23 maxlen: 23
37.18.8.0/23 maxlen: 23
37.18.10.0/24 maxlen: 24
37.18.22.0/24 maxlen: 24
37.18.72.0/23 maxlen: 23
37.18.100.0/23 maxlen: 23
37.18.102.0/24 maxlen: 24
37.18.107.0/24 maxlen: 24
37.18.108.0/22 maxlen: 22
37.18.112.0/23 maxlen: 23
37.18.114.0/24 maxlen: 24
37.18.115.0/24 maxlen: 24
37.18.116.0/22 maxlen: 22
37.18.120.0/23 maxlen: 23
37.18.122.0/24 maxlen: 24
37.230.139.0/24 maxlen: 24
37.230.179.0/24 maxlen: 24
37.230.180.0/23 maxlen: 23
37.230.180.0/24 maxlen: 24
37.230.184.0/23 maxlen: 23
37.230.186.0/24 maxlen: 24
37.230.192.0/21 maxlen: 21
37.230.224.0/24 maxlen: 24
37.230.233.0/24 maxlen: 24
45.9.24.0/22 maxlen: 22
45.89.224.0/22 maxlen: 22
45.151.30.0/23 maxlen: 23
45.155.204.0/23 maxlen: 23
46.16.36.0/24 maxlen: 24
46.243.141.0/24 maxlen: 24
46.243.142.0/23 maxlen: 23
46.243.172.0/24 maxlen: 24
46.243.201.0/24 maxlen: 24
46.243.205.0/24 maxlen: 24
46.243.206.0/24 maxlen: 24
46.243.226.0/23 maxlen: 23
46.243.244.0/23 maxlen: 23
46.253.132.0/24 maxlen: 24
62.233.43.0/24 maxlen: 24
85.208.85.0/24 maxlen: 24
85.208.86.0/23 maxlen: 23
87.242.84.0/22 maxlen: 22
87.242.88.0/21 maxlen: 21
87.242.100.0/22 maxlen: 22
87.242.116.0/22 maxlen: 22
87.242.120.0/21 maxlen: 21
88.218.65.0/24 maxlen: 24
88.218.66.0/23 maxlen: 23
89.232.160.0/21 maxlen: 21
89.232.168.0/22 maxlen: 22
89.232.176.0/22 maxlen: 22
91.224.86.0/23 maxlen: 23
94.139.252.0/22 maxlen: 22
95.174.88.0/21 maxlen: 21
141.101.151.0/24 maxlen: 24
141.101.152.0/24 maxlen: 24
141.101.201.0/24 maxlen: 24
176.108.240.0/20 maxlen: 20
176.109.96.0/20 maxlen: 20
176.123.160.0/21 maxlen: 21
178.170.191.0/24 maxlen: 24
178.170.192.0/22 maxlen: 22
178.170.196.0/23 maxlen: 23
178.170.242.0/24 maxlen: 24
185.50.200.0/22 maxlen: 22
185.234.11.0/24 maxlen: 24
185.241.57.0/24 maxlen: 24
188.72.96.0/24 maxlen: 24
188.72.106.0/23 maxlen: 23
188.72.108.0/23 maxlen: 23
188.72.117.0/24 maxlen: 24
188.72.118.0/24 maxlen: 24
192.144.12.0/22 maxlen: 22
193.42.116.0/23 maxlen: 23
193.105.4.0/24 maxlen: 24
193.163.94.0/24 maxlen: 24
194.5.92.0/23 maxlen: 23
194.26.228.0/24 maxlen: 24
194.50.72.0/24 maxlen: 24
194.113.34.0/23 maxlen: 23
195.128.152.0/24 maxlen: 24
213.171.24.0/21 maxlen: 21
213.178.153.0/24 maxlen: 24
2a0c:2b80::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 12 Sep 2024 13:33:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c0:ed:49:1a:da:11:3f:71:5f:0e:e4:7d:30:16:ee:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f919e1f3fe69b4ebdff02a9a857e7c6c2b25301a
Validity
Not Before: Jul 17 13:41:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=239bcfa4e13bf9c5c994e9517c173f260975f844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:0a:39:78:91:e3:0f:de:d4:8f:d4:44:01:94:
6e:7f:78:a8:dc:d8:0d:43:26:7a:ea:fd:36:f1:20:
22:c9:06:c1:18:14:e5:a0:c2:12:cd:b0:23:30:00:
d4:24:3b:5f:a7:28:9e:2b:b0:7f:50:b7:78:ce:23:
8f:03:ef:b7:2c:2e:23:c9:79:a9:e9:e3:69:80:8f:
ac:d1:82:18:41:87:af:30:47:a8:21:a4:a2:5c:de:
00:d2:c4:65:83:d0:1a:51:3c:27:5e:a5:8a:6b:79:
4d:df:9c:0b:44:d7:7a:e3:18:5a:d6:bb:57:93:a3:
f0:34:35:00:01:c9:f0:c1:e7:4a:14:93:31:f9:cf:
27:c6:c0:70:a4:3d:c7:25:8e:d0:0e:c7:8d:61:e5:
d4:f3:be:0a:ba:74:b8:1f:82:12:eb:b9:63:bf:ef:
6a:b5:35:40:66:e8:23:1e:e6:98:99:63:ee:34:60:
87:fd:a0:b4:5b:de:29:33:36:42:a2:e7:ad:db:ef:
1e:0f:27:7b:85:21:76:6e:1c:c1:49:01:fc:a3:9e:
4f:db:68:f5:dd:88:5c:ab:c2:e1:65:7e:e1:34:af:
45:fc:3a:29:27:bf:44:0d:92:0d:a2:6e:38:0c:16:
5b:9a:4b:2b:75:72:ea:0e:02:52:b7:75:7e:40:0d:
aa:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:9B:CF:A4:E1:3B:F9:C5:C9:94:E9:51:7C:17:3F:26:09:75:F8:44
X509v3 Authority Key Identifier:
keyid:F9:19:E1:F3:FE:69:B4:EB:DF:F0:2A:9A:85:7E:7C:6C:2B:25:30:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Rnh8_5ptOvf8CqahX58bCslMBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/I5vPpOE7-cXJlOlRfBc_Jgl1-EQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1c9809-1f60-43c2-8103-dad0420b85d3/1/1-Rnh8_5ptOvf8CqahX58bCslMBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.248.0/23
37.18.8.0-37.18.10.255
37.18.22.0/24
37.18.72.0/23
37.18.100.0-37.18.102.255
37.18.107.0-37.18.122.255
37.230.139.0/24
37.230.179.0-37.230.181.255
37.230.184.0-37.230.186.255
37.230.192.0/21
37.230.224.0/24
37.230.233.0/24
45.9.24.0/22
45.89.224.0/22
45.151.30.0/23
45.155.204.0/23
46.16.36.0/24
46.243.141.0-46.243.143.255
46.243.172.0/24
46.243.201.0/24
46.243.205.0-46.243.206.255
46.243.226.0/23
46.243.244.0/23
46.253.132.0/24
62.233.43.0/24
85.208.85.0-85.208.87.255
87.242.84.0-87.242.95.255
87.242.100.0/22
87.242.116.0-87.242.127.255
88.218.65.0-88.218.67.255
89.232.160.0-89.232.171.255
89.232.176.0/22
91.224.86.0/23
94.139.252.0/22
95.174.88.0/21
141.101.151.0-141.101.152.255
141.101.201.0/24
176.108.240.0/20
176.109.96.0/20
176.123.160.0/21
178.170.191.0-178.170.197.255
178.170.242.0/24
185.50.200.0/22
185.234.11.0/24
185.241.57.0/24
188.72.96.0/24
188.72.106.0-188.72.109.255
188.72.117.0-188.72.118.255
192.144.12.0/22
193.42.116.0/23
193.105.4.0/24
193.163.94.0/24
194.5.92.0/23
194.26.228.0/24
194.50.72.0/24
194.113.34.0/23
195.128.152.0/24
213.171.24.0/21
213.178.153.0/24
IPv6:
2a0c:2b80::/29
Signature Algorithm: sha256WithRSAEncryption
87:ea:09:3e:47:d8:2d:4d:a9:05:8e:47:23:c4:4b:70:a9:f1:
21:92:b4:25:e9:ce:96:f8:9b:9e:d4:dd:3e:86:bb:fd:36:f2:
1a:c8:b3:a7:1a:73:72:e6:97:c9:d3:3c:44:4c:6f:0f:3a:d3:
3c:76:cf:7e:47:e1:ba:72:94:70:52:8f:f8:d1:45:d6:e1:db:
87:ef:84:dd:be:57:20:93:89:b1:7f:fd:f1:93:1c:a9:6f:66:
c0:28:b9:a5:24:19:27:da:08:4f:69:8f:37:8e:dc:c4:4c:15:
88:0a:81:d8:9a:18:e9:7f:9e:8b:34:2e:bb:b9:23:91:45:c9:
86:bd:23:ba:63:fe:13:d8:59:52:d2:11:31:f3:91:05:7a:7c:
59:80:f7:ba:ec:32:6a:02:c3:a4:f9:ca:5c:45:be:7e:32:89:
65:8c:7e:63:a5:ec:69:77:13:70:d6:3b:d2:2a:fe:fa:fc:83:
4a:5e:ce:de:bf:a9:93:b4:2f:38:f3:e1:5e:f4:d2:b8:4e:42:
bc:7c:b6:c8:6d:db:e2:a0:2d:dc:ca:c4:ab:9c:5f:57:be:16:
e4:92:56:d6:ea:b9:98:1a:5b:5b:fe:8a:f7:85:27:28:d0:16:
cd:9b:b6:ef:96:9c:0f:3a:04:aa:5d:17:46:28:c1:c1:bb:f9:
3d:65:5d:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:10 2025 by rpki-client