Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/ucb_Y0uJq75lpfXwViwH2CeYlIY.roa
File: ucb_Y0uJq75lpfXwViwH2CeYlIY.roa (raw, json)
Hash identifier: 34wKMlVKaUGBydicSsm44a+kxzCZnYCF51HzZ0aMvRg=
Subject key identifier: B9:C6:FF:63:4B:89:AB:BE:65:A5:F5:F0:56:2C:07:D8:27:98:94:86
Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Certificate serial: 01960A034A0BAA0FFA664F8A3A205FD53669
Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/ucb_Y0uJq75lpfXwViwH2CeYlIY.roa
Signing time: Sun 06 Apr 2025 07:31:49 +0000
ROA not before: Sun 06 Apr 2025 07:31:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 1680
IP address blocks: 37.26.144.0/21 maxlen: 21
37.26.145.0/24 maxlen: 24
37.26.146.0/24 maxlen: 24
37.26.147.0/24 maxlen: 24
37.26.148.0/24 maxlen: 24
37.26.149.0/24 maxlen: 24
37.26.150.0/24 maxlen: 24
37.26.151.0/24 maxlen: 24
46.116.0.0/16 maxlen: 18
46.117.0.0/16 maxlen: 16
46.210.0.0/16 maxlen: 24
62.0.0.0/16 maxlen: 24
62.0.87.0/24 maxlen: 24
62.0.88.0/22 maxlen: 24
62.0.92.0/23 maxlen: 24
62.0.94.0/24 maxlen: 24
62.0.114.0/23 maxlen: 24
62.0.116.0/22 maxlen: 24
62.0.120.0/21 maxlen: 24
62.0.128.0/23 maxlen: 24
62.90.0.0/16 maxlen: 24
62.90.135.0/24 maxlen: 24
62.90.143.0/24 maxlen: 24
80.250.144.0/20 maxlen: 24
82.166.0.0/16 maxlen: 24
82.166.100.0/22 maxlen: 24
82.166.112.0/21 maxlen: 24
82.166.201.128/25 maxlen: 25
85.64.0.0/16 maxlen: 16
85.65.0.0/16 maxlen: 16
85.250.0.0/16 maxlen: 16
89.138.0.0/16 maxlen: 16
89.139.0.0/16 maxlen: 16
93.172.0.0/16 maxlen: 16
93.173.0.0/16 maxlen: 16
95.35.0.0/16 maxlen: 24
109.186.0.0/16 maxlen: 16
109.253.0.0/16 maxlen: 24
141.226.132.0/24 maxlen: 24
141.226.134.0/24 maxlen: 24
147.161.8.0/21 maxlen: 24
147.234.17.0/24 maxlen: 24
147.234.22.0/24 maxlen: 24
147.234.27.0/24 maxlen: 24
147.234.27.0/25 maxlen: 25
147.234.27.128/25 maxlen: 25
147.234.28.0/24 maxlen: 24
147.234.43.0/24 maxlen: 24
147.234.83.0/24 maxlen: 24
147.234.84.0/24 maxlen: 24
147.234.86.0/24 maxlen: 24
176.12.128.0/17 maxlen: 24
176.13.0.0/16 maxlen: 24
192.118.28.0/22 maxlen: 22
192.118.28.0/23 maxlen: 23
192.118.30.0/23 maxlen: 23
194.90.0.0/16 maxlen: 24
194.90.1.0/24 maxlen: 24
194.90.229.0/24 maxlen: 24
199.203.0.0/16 maxlen: 16
199.203.1.0/24 maxlen: 24
199.203.21.0/24 maxlen: 24
199.203.76.0/24 maxlen: 24
199.203.191.0/24 maxlen: 24
207.232.0.0/18 maxlen: 18
207.232.50.0/24 maxlen: 24
212.29.192.0/18 maxlen: 18
212.29.244.0/24 maxlen: 24
212.143.0.0/16 maxlen: 24
212.143.194.0/24 maxlen: 24
212.150.0.0/16 maxlen: 24
212.235.0.0/17 maxlen: 24
217.132.0.0/16 maxlen: 16
2001:4df0::/29 maxlen: 32
2001:4df0::/32 maxlen: 32
2001:4df1::/32 maxlen: 32
2001:4df2::/32 maxlen: 32
2001:4df3::/32 maxlen: 32
2001:4df4::/32 maxlen: 32
2001:4df5::/32 maxlen: 32
2001:4df6::/32 maxlen: 32
2001:4df7::/32 maxlen: 32
2a02:148::/29 maxlen: 32
2a02:148::/32 maxlen: 32
2a02:149::/32 maxlen: 32
2a02:14a::/32 maxlen: 32
2a02:14b::/32 maxlen: 32
2a02:14c::/32 maxlen: 32
2a02:14d::/32 maxlen: 32
2a02:14e::/32 maxlen: 32
2a02:14f::/32 maxlen: 32
2a03:c5c0::/32 maxlen: 48
Validation: Failed, certificate revoked on Sat 12 Apr 2025 11:11:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0a:03:4a:0b:aa:0f:fa:66:4f:8a:3a:20:5f:d5:36:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Validity
Not Before: Apr 6 07:31:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b9c6ff634b89abbe65a5f5f0562c07d827989486
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:46:12:fe:0f:58:48:e4:27:92:18:f7:7b:1c:
67:06:2b:74:a4:84:d0:49:e8:c8:e5:9d:a1:0e:80:
d5:82:b1:3e:44:4a:ff:c5:81:2e:8e:b1:de:d9:42:
04:3a:f3:6f:60:df:f5:69:15:84:10:ef:dd:db:5f:
e7:01:cc:0c:5d:93:d6:53:af:90:de:42:8e:f6:19:
a4:da:00:2f:1b:97:9a:f3:1e:1e:97:43:23:5b:95:
ff:17:63:6b:59:c9:f6:07:2e:1c:e8:c5:16:22:65:
c4:ad:a0:e6:04:28:b4:e1:9c:e4:b2:6c:38:39:a2:
0f:81:dc:0b:fa:62:f6:7f:a7:d4:96:ec:39:06:63:
09:08:0a:36:9d:88:5b:27:71:34:c9:2a:d8:d5:68:
04:78:10:db:0c:fb:74:d0:09:d9:8c:32:5f:f2:8f:
86:5a:3d:58:59:75:d7:1c:2d:ac:1d:6e:4e:03:b8:
32:45:53:2e:73:22:fa:8d:b0:9e:11:dd:6e:60:c1:
8e:8e:37:13:e8:df:b1:5e:dd:91:e3:35:8a:68:b2:
27:df:43:f6:97:76:20:a5:46:6b:fb:62:00:ce:9f:
85:24:e6:a8:61:2a:d0:03:5d:99:7d:ed:44:f5:ea:
20:2e:3f:8f:f6:a7:2b:66:ab:c8:7a:fb:01:55:28:
7d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:C6:FF:63:4B:89:AB:BE:65:A5:F5:F0:56:2C:07:D8:27:98:94:86
X509v3 Authority Key Identifier:
keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/ucb_Y0uJq75lpfXwViwH2CeYlIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.26.144.0/21
46.116.0.0/15
46.210.0.0/16
62.0.0.0/16
62.90.0.0/16
80.250.144.0/20
82.166.0.0/16
85.64.0.0/15
85.250.0.0/16
89.138.0.0/15
93.172.0.0/15
95.35.0.0/16
109.186.0.0/16
109.253.0.0/16
141.226.132.0/24
141.226.134.0/24
147.161.8.0/21
147.234.17.0/24
147.234.22.0/24
147.234.27.0-147.234.28.255
147.234.43.0/24
147.234.83.0-147.234.84.255
147.234.86.0/24
176.12.128.0-176.13.255.255
192.118.28.0/22
194.90.0.0/16
199.203.0.0/16
207.232.0.0/18
212.29.192.0/18
212.143.0.0/16
212.150.0.0/16
212.235.0.0/17
217.132.0.0/16
IPv6:
2001:4df0::/29
2a02:148::/29
2a03:c5c0::/32
Signature Algorithm: sha256WithRSAEncryption
cf:a1:36:df:dc:d4:98:88:c8:06:9c:69:07:30:52:b8:c4:94:
32:54:41:35:81:91:3d:25:75:85:c8:e8:36:ef:30:24:09:66:
7f:c5:2c:30:ea:94:60:a3:8f:71:fb:cc:51:1d:1a:d1:9a:35:
fb:ac:30:cc:d2:7b:71:2b:ed:69:22:40:c5:01:78:9c:3e:96:
26:9e:b7:9e:36:a3:5f:7c:e8:b7:d8:d8:14:30:00:de:eb:3a:
83:5c:49:c9:b2:25:f4:b1:e7:e3:76:6c:f7:f5:d9:3d:08:d1:
00:96:7d:2c:67:2e:e2:b2:04:75:69:ba:bb:87:48:ca:2b:88:
21:09:4e:58:cc:24:b9:36:e9:78:7c:2a:64:fb:14:d8:5d:d7:
fe:9f:66:42:cf:c5:fc:45:98:8c:8c:18:f8:0b:7a:e1:ce:86:
c0:bb:5a:21:d0:73:75:b4:cb:43:b4:69:e2:4f:0b:d2:5c:2c:
07:27:eb:53:52:a8:f0:a1:9f:83:5c:67:52:0c:e2:8c:cb:55:
0b:37:81:37:2e:63:49:4c:55:6f:21:05:40:5c:d2:54:d1:4f:
9c:6c:7e:e7:52:0e:d9:e6:3a:44:75:c8:89:4d:7b:f3:81:66:
f8:ac:ac:2d:68:5b:97:60:0e:f1:c3:b3:d8:61:bb:02:40:6c:
b3:bb:bc:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 13:29:30 2025 by rpki-client