Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/Kh8BG33FNP3nh9P3c7dvrIYKJ60.roa
File: Kh8BG33FNP3nh9P3c7dvrIYKJ60.roa (raw, json)
Hash identifier: E24sRTyQShIethOSyu9hMN+XHoUZDJZxQlD8QlUZ+MM=
Subject key identifier: 2A:1F:01:1B:7D:C5:34:FD:E7:87:D3:F7:73:B7:6F:AC:86:0A:27:AD
Certificate issuer: /CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Certificate serial: 0194F33F027332B81F3DA7F980CC403AB9E3
Authority key identifier: FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/Kh8BG33FNP3nh9P3c7dvrIYKJ60.roa
Signing time: Tue 11 Feb 2025 04:23:00 +0000
ROA not before: Tue 11 Feb 2025 04:23:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25369
IP address blocks: 5.226.136.0/21 maxlen: 21
31.14.102.0/24 maxlen: 24
31.14.254.0/24 maxlen: 24
37.10.113.0/24 maxlen: 24
37.10.114.0/24 maxlen: 24
46.102.155.0/24 maxlen: 24
46.247.142.0/23 maxlen: 24
46.247.143.0/24 maxlen: 24
64.239.236.0/22 maxlen: 22
77.81.124.0/22 maxlen: 22
77.81.191.0/24 maxlen: 24
79.139.84.0/22 maxlen: 22
80.240.108.0/23 maxlen: 23
81.19.208.0/20 maxlen: 20
81.19.208.0/23 maxlen: 23
81.19.211.0/24 maxlen: 24
81.19.215.0/24 maxlen: 24
81.19.216.0/24 maxlen: 24
82.97.192.0/23 maxlen: 23
84.247.0.0/24 maxlen: 24
84.247.40.0/23 maxlen: 24
84.247.42.0/23 maxlen: 24
85.204.70.0/24 maxlen: 24
86.104.20.0/22 maxlen: 22
86.104.20.0/23 maxlen: 24
86.104.22.0/23 maxlen: 24
86.104.248.0/22 maxlen: 22
86.104.248.0/24 maxlen: 24
86.104.249.0/24 maxlen: 24
86.106.89.0/24 maxlen: 24
86.106.112.0/24 maxlen: 24
86.106.135.0/24 maxlen: 24
86.106.157.0/24 maxlen: 24
86.106.158.0/24 maxlen: 24
86.107.241.0/24 maxlen: 24
89.21.64.0/22 maxlen: 22
89.21.64.0/24 maxlen: 24
89.21.66.0/24 maxlen: 24
89.21.67.0/24 maxlen: 24
89.32.127.0/24 maxlen: 24
89.34.96.0/22 maxlen: 22
89.34.96.0/24 maxlen: 24
89.34.97.0/24 maxlen: 24
89.35.25.0/24 maxlen: 24
89.35.28.0/22 maxlen: 22
89.37.64.0/22 maxlen: 22
89.37.172.0/22 maxlen: 22
89.37.173.0/24 maxlen: 24
89.38.68.0/23 maxlen: 23
89.38.69.0/24 maxlen: 24
89.40.212.0/24 maxlen: 24
89.46.222.0/23 maxlen: 23
89.46.223.0/24 maxlen: 24
89.46.248.0/22 maxlen: 22
93.113.175.0/24 maxlen: 24
93.114.83.0/24 maxlen: 24
93.114.129.0/24 maxlen: 24
93.118.40.0/22 maxlen: 22
109.69.104.0/21 maxlen: 21
109.69.110.0/24 maxlen: 24
109.70.144.0/21 maxlen: 21
109.70.145.0/24 maxlen: 24
109.70.148.0/24 maxlen: 24
109.70.149.0/24 maxlen: 24
109.230.203.0/24 maxlen: 24
109.230.209.0/24 maxlen: 24
109.230.215.0/24 maxlen: 24
109.230.218.0/24 maxlen: 24
109.230.220.0/24 maxlen: 24
128.127.148.0/22 maxlen: 22
134.255.243.0/24 maxlen: 24
176.223.172.0/22 maxlen: 22
176.223.172.0/23 maxlen: 24
176.223.174.0/23 maxlen: 24
178.239.160.0/20 maxlen: 20
178.239.165.0/24 maxlen: 24
178.239.167.0/24 maxlen: 24
178.239.170.0/24 maxlen: 24
178.239.173.0/24 maxlen: 24
185.3.236.0/22 maxlen: 22
185.16.204.0/22 maxlen: 22
185.38.148.0/22 maxlen: 22
185.44.76.0/22 maxlen: 22
185.61.156.0/22 maxlen: 22
185.61.156.0/24 maxlen: 24
185.61.157.0/24 maxlen: 24
185.114.224.0/24 maxlen: 24
185.121.136.0/22 maxlen: 22
185.125.204.0/22 maxlen: 22
185.134.20.0/22 maxlen: 22
185.137.36.0/22 maxlen: 24
185.158.240.0/22 maxlen: 24
185.158.241.0/24 maxlen: 24
185.158.242.0/24 maxlen: 24
185.200.204.0/22 maxlen: 22
185.216.144.0/22 maxlen: 22
185.223.232.0/22 maxlen: 22
185.223.235.0/24 maxlen: 24
185.242.80.0/22 maxlen: 22
188.212.154.0/24 maxlen: 24
188.240.56.0/21 maxlen: 21
188.240.56.0/24 maxlen: 24
188.240.57.0/24 maxlen: 24
188.240.58.0/24 maxlen: 24
188.240.60.0/24 maxlen: 24
188.240.71.0/24 maxlen: 24
188.241.120.0/24 maxlen: 24
188.241.144.0/24 maxlen: 24
188.241.156.0/23 maxlen: 23
188.241.157.0/24 maxlen: 24
188.241.246.0/24 maxlen: 24
193.32.208.0/22 maxlen: 22
193.32.208.0/24 maxlen: 24
193.124.20.0/23 maxlen: 24
193.176.28.0/22 maxlen: 22
193.176.31.0/24 maxlen: 24
194.50.234.0/23 maxlen: 23
194.88.96.0/21 maxlen: 24
194.88.98.0/23 maxlen: 24
195.20.108.0/23 maxlen: 23
195.20.108.0/24 maxlen: 24
195.140.212.0/22 maxlen: 24
195.206.165.0/24 maxlen: 24
195.206.166.0/23 maxlen: 23
195.206.169.0/24 maxlen: 24
195.206.170.0/23 maxlen: 23
195.206.180.0/22 maxlen: 22
195.234.124.0/23 maxlen: 24
195.234.124.0/24 maxlen: 24
195.234.127.0/24 maxlen: 24
212.237.224.0/22 maxlen: 22
213.166.84.0/22 maxlen: 24
217.146.80.0/20 maxlen: 20
217.146.87.0/24 maxlen: 24
217.146.92.0/24 maxlen: 24
2a00:1a30::/32 maxlen: 32
2a01:4020::/32 maxlen: 32
2a01:4020:2::/48 maxlen: 48
2a01:4020:3::/48 maxlen: 48
2a01:4020:30::/48 maxlen: 48
2a01:4020:32::/48 maxlen: 48
2a01:4020:33::/48 maxlen: 48
2a01:4020:34::/48 maxlen: 48
2a01:4020:35::/48 maxlen: 48
2a01:4020:100::/40 maxlen: 40
2a01:4020:200::/40 maxlen: 40
2a01:4020:300::/40 maxlen: 48
2a0b:b840::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 16 Feb 2025 04:25:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:f3:3f:02:73:32:b8:1f:3d:a7:f9:80:cc:40:3a:b9:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Validity
Not Before: Feb 11 04:23:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2a1f011b7dc534fde787d3f773b76fac860a27ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:0f:c0:ed:aa:95:83:0c:ad:98:a8:43:e3:fd:
a6:ab:08:f8:62:a9:cd:cb:ee:a5:45:36:28:7d:5d:
ee:9d:6d:25:8e:9f:d9:f1:e1:94:20:70:8c:17:a9:
02:b2:94:d2:ec:d7:15:e8:05:48:12:d6:79:6c:9a:
e2:fb:31:e3:61:a6:ad:e4:61:d9:45:2e:a5:fa:d6:
69:21:68:92:99:83:15:3e:66:20:dd:67:d5:ac:da:
f7:07:d0:a8:cc:3a:1d:36:6f:ce:1f:14:6c:df:ae:
3d:d5:6c:66:1b:48:f4:2e:61:af:04:0b:30:c0:bc:
72:b3:bb:67:e5:f5:86:fa:f9:9d:ff:95:6a:76:43:
e2:93:07:87:4f:60:0c:fa:20:be:68:bc:63:a6:79:
e3:56:21:36:75:3b:1c:eb:31:f8:7d:a6:2a:f8:7d:
9b:31:9a:93:c0:46:44:53:09:81:c5:99:78:c1:f9:
a4:3b:a6:01:88:18:5f:78:03:97:16:bb:9e:ce:4f:
20:99:fe:e0:c4:63:30:bf:34:da:6b:51:2d:ea:f9:
63:8f:be:4b:4c:b9:51:2d:d1:a5:75:de:ac:49:48:
5e:7d:6d:f9:44:96:77:4e:c9:71:4a:c8:5b:52:5c:
f7:85:2c:78:89:60:f0:cc:6d:36:f2:5c:5e:08:13:
b9:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:1F:01:1B:7D:C5:34:FD:E7:87:D3:F7:73:B7:6F:AC:86:0A:27:AD
X509v3 Authority Key Identifier:
keyid:FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/Kh8BG33FNP3nh9P3c7dvrIYKJ60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.136.0/21
31.14.102.0/24
31.14.254.0/24
37.10.113.0-37.10.114.255
46.102.155.0/24
46.247.142.0/23
64.239.236.0/22
77.81.124.0/22
77.81.191.0/24
79.139.84.0/22
80.240.108.0/23
81.19.208.0/20
82.97.192.0/23
84.247.0.0/24
84.247.40.0/22
85.204.70.0/24
86.104.20.0/22
86.104.248.0/22
86.106.89.0/24
86.106.112.0/24
86.106.135.0/24
86.106.157.0-86.106.158.255
86.107.241.0/24
89.21.64.0/22
89.32.127.0/24
89.34.96.0/22
89.35.25.0/24
89.35.28.0/22
89.37.64.0/22
89.37.172.0/22
89.38.68.0/23
89.40.212.0/24
89.46.222.0/23
89.46.248.0/22
93.113.175.0/24
93.114.83.0/24
93.114.129.0/24
93.118.40.0/22
109.69.104.0/21
109.70.144.0/21
109.230.203.0/24
109.230.209.0/24
109.230.215.0/24
109.230.218.0/24
109.230.220.0/24
128.127.148.0/22
134.255.243.0/24
176.223.172.0/22
178.239.160.0/20
185.3.236.0/22
185.16.204.0/22
185.38.148.0/22
185.44.76.0/22
185.61.156.0/22
185.114.224.0/24
185.121.136.0/22
185.125.204.0/22
185.134.20.0/22
185.137.36.0/22
185.158.240.0/22
185.200.204.0/22
185.216.144.0/22
185.223.232.0/22
185.242.80.0/22
188.212.154.0/24
188.240.56.0/21
188.240.71.0/24
188.241.120.0/24
188.241.144.0/24
188.241.156.0/23
188.241.246.0/24
193.32.208.0/22
193.124.20.0/23
193.176.28.0/22
194.50.234.0/23
194.88.96.0/21
195.20.108.0/23
195.140.212.0/22
195.206.165.0-195.206.167.255
195.206.169.0-195.206.171.255
195.206.180.0/22
195.234.124.0/23
195.234.127.0/24
212.237.224.0/22
213.166.84.0/22
217.146.80.0/20
IPv6:
2a00:1a30::/32
2a01:4020::/32
2a0b:b840::/29
Signature Algorithm: sha256WithRSAEncryption
99:91:ad:96:49:6c:4d:12:80:6a:9c:5c:a6:79:cd:fa:6d:22:
8d:a4:23:18:e0:55:be:40:4a:2c:98:29:6f:0b:2a:f7:1a:a3:
a2:b0:6b:da:3e:cb:85:f5:db:b3:1c:40:1d:b9:bf:e7:6c:34:
ae:4a:19:30:24:7b:73:c6:a3:b0:b2:45:70:52:20:3a:00:76:
2c:51:d9:04:bd:af:70:2e:87:45:d5:98:ea:24:01:de:fb:d5:
8c:0d:ee:ec:30:5a:16:32:7c:97:c9:b0:13:5e:58:f0:7a:e0:
6f:ec:69:dc:24:5b:26:46:22:d8:6b:a0:2b:ca:18:b6:0a:d0:
c6:02:2c:ed:64:54:72:bf:35:c3:fb:5a:22:b8:f4:0d:a4:37:
43:9b:db:e6:f1:15:20:e2:12:76:90:07:28:0c:ea:5c:54:e9:
d4:c1:25:5a:2e:65:10:4b:5e:a3:85:ee:4d:8f:37:ac:69:36:
68:70:96:eb:23:a2:70:19:a1:10:89:3d:ab:24:94:69:c9:84:
c7:7f:4b:d4:1d:73:27:5a:56:97:b7:94:a2:a2:17:90:a4:02:
7b:6c:81:84:62:e7:2f:1c:92:00:80:4f:df:c2:86:51:58:97:
c3:e6:3d:20:cd:b2:47:e3:fd:71:46:45:d4:68:64:0e:47:2c:
9c:20:10:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 09:10:21 2025 by rpki-client