Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/HVI7EcLzv7CID2etciYrlCpO-rM.roa
File: HVI7EcLzv7CID2etciYrlCpO-rM.roa (raw, json)
Hash identifier: Ay4p27/1P94WxOGVH1XGtBlUiLfgugCihKN/CmNdHrs=
Subject key identifier: 1D:52:3B:11:C2:F3:BF:B0:88:0F:67:AD:72:26:2B:94:2A:4E:FA:B3
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 0192C28C2443D798E40FCF2EEA522062E91F
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/HVI7EcLzv7CID2etciYrlCpO-rM.roa
Signing time: Fri 25 Oct 2024 07:20:17 +0000
ROA not before: Fri 25 Oct 2024 07:20:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212046
IP address blocks: 82.140.133.0/24 maxlen: 24
82.140.152.0/24 maxlen: 24
82.140.171.0/24 maxlen: 24
82.140.176.0/24 maxlen: 24
82.140.179.0/24 maxlen: 24
82.140.184.0/24 maxlen: 24
82.140.185.0/24 maxlen: 24
84.46.136.0/24 maxlen: 24
84.46.146.0/24 maxlen: 24
84.46.147.0/24 maxlen: 24
84.46.148.0/24 maxlen: 24
84.46.149.0/24 maxlen: 24
84.46.160.0/24 maxlen: 24
84.46.161.0/24 maxlen: 24
84.46.162.0/24 maxlen: 24
84.46.163.0/24 maxlen: 24
84.46.168.0/24 maxlen: 24
84.46.169.0/24 maxlen: 24
84.46.204.0/24 maxlen: 24
84.46.205.0/24 maxlen: 24
84.46.207.0/24 maxlen: 24
86.38.6.0/24 maxlen: 24
86.38.18.0/24 maxlen: 24
86.38.28.0/24 maxlen: 24
86.38.29.0/24 maxlen: 24
86.38.30.0/24 maxlen: 24
86.38.31.0/24 maxlen: 24
86.38.33.0/24 maxlen: 24
86.38.36.0/24 maxlen: 24
86.38.38.0/24 maxlen: 24
86.38.39.0/24 maxlen: 24
86.38.100.0/24 maxlen: 24
86.38.102.0/24 maxlen: 24
86.38.122.0/24 maxlen: 24
86.38.124.0/24 maxlen: 24
86.38.125.0/24 maxlen: 24
86.38.126.0/24 maxlen: 24
86.38.152.0/24 maxlen: 24
86.38.153.0/24 maxlen: 24
86.38.154.0/24 maxlen: 24
86.38.161.0/24 maxlen: 24
86.38.165.0/24 maxlen: 24
86.38.166.0/24 maxlen: 24
86.38.167.0/24 maxlen: 24
86.38.168.0/24 maxlen: 24
86.38.169.0/24 maxlen: 24
86.38.171.0/24 maxlen: 24
86.38.173.0/24 maxlen: 24
86.38.174.0/24 maxlen: 24
86.38.176.0/24 maxlen: 24
86.38.188.0/24 maxlen: 24
86.38.201.0/24 maxlen: 24
86.38.215.0/24 maxlen: 24
86.38.234.0/24 maxlen: 24
86.38.236.0/24 maxlen: 24
89.116.14.0/24 maxlen: 24
89.116.71.0/24 maxlen: 24
89.116.77.0/24 maxlen: 24
89.116.78.0/24 maxlen: 24
89.116.90.0/24 maxlen: 24
89.116.93.0/24 maxlen: 24
89.116.97.0/24 maxlen: 24
89.116.124.0/24 maxlen: 24
89.116.129.0/24 maxlen: 24
89.116.143.0/24 maxlen: 24
89.116.151.0/24 maxlen: 24
89.116.155.0/24 maxlen: 24
89.116.160.0/24 maxlen: 24
89.116.162.0/24 maxlen: 24
89.116.174.0/24 maxlen: 24
89.116.176.0/24 maxlen: 24
89.116.178.0/24 maxlen: 24
89.116.232.0/24 maxlen: 24
89.116.235.0/24 maxlen: 24
89.116.238.0/24 maxlen: 24
89.116.240.0/24 maxlen: 24
89.116.245.0/24 maxlen: 24
89.116.249.0/24 maxlen: 24
89.117.10.0/24 maxlen: 24
89.117.14.0/24 maxlen: 24
89.117.69.0/24 maxlen: 24
89.117.125.0/24 maxlen: 24
89.117.127.0/24 maxlen: 24
89.117.128.0/24 maxlen: 24
89.117.137.0/24 maxlen: 24
89.117.138.0/24 maxlen: 24
89.117.140.0/24 maxlen: 24
89.117.165.0/24 maxlen: 24
89.117.185.0/24 maxlen: 24
89.117.211.0/24 maxlen: 24
89.117.219.0/24 maxlen: 24
89.117.223.0/24 maxlen: 24
89.117.247.0/24 maxlen: 24
89.117.249.0/24 maxlen: 24
217.9.240.0/24 maxlen: 24
217.9.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 28 Oct 2024 08:34:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:c2:8c:24:43:d7:98:e4:0f:cf:2e:ea:52:20:62:e9:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: Oct 25 07:20:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1d523b11c2f3bfb0880f67ad72262b942a4efab3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:96:34:9f:ef:92:a5:a9:14:14:32:cf:18:f1:
4a:2b:61:cb:36:6c:aa:f6:ae:ad:4d:a2:46:0a:88:
42:6a:a5:aa:74:7d:98:3b:03:e5:14:78:7f:6f:64:
c6:f4:e6:db:65:99:7d:bd:6c:1d:02:e2:24:1b:3c:
db:bf:02:79:9c:a3:93:2e:b8:4a:b4:f5:3c:12:66:
96:21:c2:57:65:b3:49:7c:1d:7a:f9:05:ba:d0:50:
cc:ba:66:e0:e6:a2:8d:f8:67:8f:0f:aa:25:76:d8:
b5:4e:2f:58:c9:fe:2b:bc:74:c8:a4:04:94:be:77:
f4:bc:83:c5:47:81:77:0a:19:4c:82:1a:b4:be:dc:
77:b3:dc:44:62:dc:81:c7:39:4c:46:96:8a:db:41:
55:2d:4f:76:36:57:2e:0e:54:16:b4:21:8f:6e:7d:
5f:c8:d9:e4:0f:bb:94:d5:a2:1e:61:d3:b8:b0:af:
6f:91:9c:3b:0f:42:40:87:55:3d:fa:74:30:d1:8a:
59:76:d2:7f:5d:b7:17:54:0a:30:d0:5a:1b:e5:1e:
ec:bf:4d:60:b2:c1:9c:f1:a3:f1:b0:7e:69:1b:c5:
3a:70:7f:31:37:f1:8c:33:47:19:67:b1:e1:97:0c:
75:82:4d:e4:ce:d4:05:8d:ec:65:3c:32:d9:9e:f7:
5f:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:52:3B:11:C2:F3:BF:B0:88:0F:67:AD:72:26:2B:94:2A:4E:FA:B3
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/HVI7EcLzv7CID2etciYrlCpO-rM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.133.0/24
82.140.152.0/24
82.140.171.0/24
82.140.176.0/24
82.140.179.0/24
82.140.184.0/23
84.46.136.0/24
84.46.146.0-84.46.149.255
84.46.160.0/22
84.46.168.0/23
84.46.204.0/23
84.46.207.0/24
86.38.6.0/24
86.38.18.0/24
86.38.28.0/22
86.38.33.0/24
86.38.36.0/24
86.38.38.0/23
86.38.100.0/24
86.38.102.0/24
86.38.122.0/24
86.38.124.0-86.38.126.255
86.38.152.0-86.38.154.255
86.38.161.0/24
86.38.165.0-86.38.169.255
86.38.171.0/24
86.38.173.0-86.38.174.255
86.38.176.0/24
86.38.188.0/24
86.38.201.0/24
86.38.215.0/24
86.38.234.0/24
86.38.236.0/24
89.116.14.0/24
89.116.71.0/24
89.116.77.0-89.116.78.255
89.116.90.0/24
89.116.93.0/24
89.116.97.0/24
89.116.124.0/24
89.116.129.0/24
89.116.143.0/24
89.116.151.0/24
89.116.155.0/24
89.116.160.0/24
89.116.162.0/24
89.116.174.0/24
89.116.176.0/24
89.116.178.0/24
89.116.232.0/24
89.116.235.0/24
89.116.238.0/24
89.116.240.0/24
89.116.245.0/24
89.116.249.0/24
89.117.10.0/24
89.117.14.0/24
89.117.69.0/24
89.117.125.0/24
89.117.127.0-89.117.128.255
89.117.137.0-89.117.138.255
89.117.140.0/24
89.117.165.0/24
89.117.185.0/24
89.117.211.0/24
89.117.219.0/24
89.117.223.0/24
89.117.247.0/24
89.117.249.0/24
217.9.240.0/24
217.9.243.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:ef:98:66:8f:9c:49:ce:ac:6d:d2:16:f2:df:0a:9b:a3:16:
1b:a8:29:4e:52:7a:a1:e5:3a:85:1e:96:53:fd:0a:19:b0:3a:
11:4c:44:be:bf:57:e3:85:64:35:87:c1:2a:0d:12:b5:74:b9:
7f:01:c2:ce:02:e8:d5:ae:1a:f7:3b:71:49:18:dd:a1:5d:c4:
32:17:85:6a:a8:2a:d1:83:53:81:12:0e:71:fa:74:70:32:1e:
2a:c8:f1:dd:f7:19:fd:c1:e5:41:2d:a3:d4:57:42:cd:dc:57:
cf:56:ae:9c:65:a6:c5:dd:5b:29:ab:fe:7b:c7:38:ca:93:23:
39:61:bc:e9:37:12:dd:8a:28:b9:41:40:35:c2:58:4f:34:6a:
13:de:f0:90:c7:77:9b:48:c2:39:0f:03:bb:b1:c4:bb:d8:d4:
7c:be:8e:aa:b4:31:f5:cb:92:61:3d:f0:c2:a5:20:a4:3b:5d:
b7:4e:28:0c:aa:35:d2:43:b4:5f:94:ef:9d:88:31:4e:6c:af:
59:49:66:fc:96:1d:54:61:d0:f7:22:e2:a7:05:22:26:c8:79:
1e:27:0f:19:87:11:f5:7d:ff:73:db:b7:01:9a:cb:2c:1f:da:
15:e5:7d:a5:ab:85:40:2b:50:62:f8:8d:50:ed:e1:46:1d:0f:
6d:84:d0:46
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun May 11 09:03:39 2025 by rpki-client