Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/WgfsPhHoW49w9RvEKFCRwOdErqE.roa
File: WgfsPhHoW49w9RvEKFCRwOdErqE.roa (raw, json)
Hash identifier: gq7AAVqzW94hwKn8Vt5NIKyuzptr2b2KMo7zlohglew=
Subject key identifier: 5A:07:EC:3E:11:E8:5B:8F:70:F5:1B:C4:28:50:91:C0:E7:44:AE:A1
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 019173E96A6CA20B17C2E57EF34D69CD0D60
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/WgfsPhHoW49w9RvEKFCRwOdErqE.roa
Signing time: Wed 21 Aug 2024 07:49:22 +0000
ROA not before: Wed 21 Aug 2024 07:49:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3352
IP address blocks: 2.136.0.0/16 maxlen: 16
2.137.0.0/16 maxlen: 16
2.138.0.0/16 maxlen: 16
2.139.0.0/16 maxlen: 16
2.140.0.0/16 maxlen: 24
2.141.0.0/16 maxlen: 24
2.142.0.0/16 maxlen: 24
2.143.0.0/16 maxlen: 24
5.205.0.0/16 maxlen: 24
37.10.128.0/17 maxlen: 24
37.12.0.0/16 maxlen: 24
37.13.0.0/16 maxlen: 24
37.158.0.0/16 maxlen: 24
79.144.0.0/16 maxlen: 16
79.145.0.0/16 maxlen: 16
79.146.0.0/16 maxlen: 16
79.147.0.0/16 maxlen: 16
79.148.0.0/16 maxlen: 16
79.149.0.0/16 maxlen: 24
80.24.0.0/16 maxlen: 16
80.25.0.0/16 maxlen: 16
80.26.0.0/16 maxlen: 16
80.27.0.0/16 maxlen: 24
80.29.0.0/16 maxlen: 24
80.30.0.0/16 maxlen: 16
80.31.0.0/16 maxlen: 16
80.32.0.0/16 maxlen: 16
80.33.0.0/16 maxlen: 16
80.34.0.0/16 maxlen: 16
80.35.0.0/16 maxlen: 16
80.36.0.0/16 maxlen: 16
80.37.0.0/16 maxlen: 16
80.38.0.0/16 maxlen: 16
80.39.0.0/16 maxlen: 16
80.59.0.0/16 maxlen: 16
81.32.0.0/16 maxlen: 16
81.33.0.0/16 maxlen: 16
81.34.0.0/16 maxlen: 16
81.35.0.0/16 maxlen: 16
81.36.0.0/16 maxlen: 16
81.37.0.0/16 maxlen: 16
81.38.0.0/16 maxlen: 16
81.39.0.0/16 maxlen: 16
81.40.0.0/16 maxlen: 16
81.41.0.0/16 maxlen: 16
81.42.0.0/16 maxlen: 16
81.43.0.0/16 maxlen: 16
81.44.0.0/16 maxlen: 16
83.32.0.0/16 maxlen: 16
83.33.0.0/16 maxlen: 16
83.34.0.0/16 maxlen: 16
83.35.0.0/16 maxlen: 16
83.36.0.0/16 maxlen: 16
83.37.0.0/16 maxlen: 16
83.38.0.0/16 maxlen: 16
83.39.0.0/16 maxlen: 16
83.47.0.0/16 maxlen: 16
83.48.0.0/16 maxlen: 24
83.52.0.0/16 maxlen: 16
83.53.0.0/16 maxlen: 16
83.54.0.0/16 maxlen: 16
83.55.0.0/16 maxlen: 16
83.56.0.0/16 maxlen: 16
83.57.0.0/16 maxlen: 16
83.58.0.0/16 maxlen: 16
83.59.0.0/16 maxlen: 16
83.60.0.0/16 maxlen: 16
83.61.0.0/16 maxlen: 16
83.62.0.0/16 maxlen: 21
83.63.0.0/16 maxlen: 16
88.0.0.0/16 maxlen: 16
88.1.0.0/16 maxlen: 16
88.2.0.0/16 maxlen: 16
88.3.0.0/16 maxlen: 16
88.8.0.0/16 maxlen: 16
88.9.0.0/16 maxlen: 16
88.10.0.0/16 maxlen: 16
88.11.0.0/16 maxlen: 16
88.12.0.0/16 maxlen: 16
88.13.0.0/16 maxlen: 16
88.14.0.0/16 maxlen: 16
88.15.0.0/16 maxlen: 16
88.16.0.0/16 maxlen: 16
88.24.0.0/16 maxlen: 16
88.25.0.0/16 maxlen: 16
88.26.0.0/16 maxlen: 16
88.27.0.0/16 maxlen: 16
88.28.0.0/16 maxlen: 24
88.29.0.0/16 maxlen: 24
88.30.0.0/16 maxlen: 16
88.31.0.0/16 maxlen: 24
95.121.0.0/16 maxlen: 16
95.122.0.0/16 maxlen: 16
95.123.0.0/16 maxlen: 16
95.124.0.0/16 maxlen: 24
95.125.0.0/16 maxlen: 24
95.126.0.0/16 maxlen: 24
95.127.0.0/16 maxlen: 24
176.80.0.0/16 maxlen: 24
176.81.0.0/16 maxlen: 16
176.82.0.0/16 maxlen: 24
176.83.0.0/16 maxlen: 24
176.85.0.0/16 maxlen: 16
176.86.0.0/16 maxlen: 16
176.87.0.0/16 maxlen: 24
192.101.1.0/24 maxlen: 24
193.153.0.0/16 maxlen: 16
194.69.225.0/24 maxlen: 24
194.179.34.0/24 maxlen: 24
194.179.112.0/24 maxlen: 24
194.224.157.0/24 maxlen: 24
195.53.0.0/16 maxlen: 16
195.53.69.0/24 maxlen: 24
195.53.193.0/24 maxlen: 24
195.53.218.0/23 maxlen: 23
195.55.78.0/24 maxlen: 24
195.55.79.0/24 maxlen: 24
195.55.110.0/24 maxlen: 24
195.57.5.0/24 maxlen: 24
195.57.27.0/24 maxlen: 24
195.76.0.0/16 maxlen: 16
195.76.141.0/24 maxlen: 24
195.76.164.0/24 maxlen: 24
195.77.57.0/24 maxlen: 24
195.77.132.0/22 maxlen: 22
195.77.132.0/23 maxlen: 23
195.77.132.0/24 maxlen: 24
195.235.0.0/16 maxlen: 16
195.235.95.0/24 maxlen: 24
195.235.188.0/24 maxlen: 24
195.235.225.0/24 maxlen: 24
195.235.241.0/24 maxlen: 24
195.235.242.0/24 maxlen: 24
212.170.0.0/16 maxlen: 16
212.170.156.0/24 maxlen: 24
212.170.159.0/24 maxlen: 24
213.96.0.0/16 maxlen: 16
213.97.0.0/16 maxlen: 16
213.98.0.0/16 maxlen: 16
213.99.0.0/16 maxlen: 24
213.99.44.0/24 maxlen: 24
213.99.59.0/24 maxlen: 24
217.11.96.0/19 maxlen: 19
217.124.0.0/16 maxlen: 16
217.124.182.0/24 maxlen: 24
217.125.0.0/16 maxlen: 16
217.125.159.0/24 maxlen: 24
217.126.0.0/16 maxlen: 16
217.127.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Wed 21 Aug 2024 08:28:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:73:e9:6a:6c:a2:0b:17:c2:e5:7e:f3:4d:69:cd:0d:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Aug 21 07:49:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a07ec3e11e85b8f70f51bc4285091c0e744aea1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:70:ce:a4:cb:f7:1a:66:8a:42:72:ca:44:33:
62:4d:47:87:90:31:eb:65:7f:34:76:19:70:ad:38:
07:81:49:de:e3:91:fe:e3:b2:56:9e:0a:96:0d:5c:
90:a1:3d:d1:07:38:d5:7b:29:3a:d5:63:a5:2c:a6:
6c:94:68:f2:a8:b4:33:64:3a:e4:ad:f8:10:42:7e:
9f:fb:93:7a:d3:62:ca:f7:16:63:7b:16:47:f9:e3:
6c:2d:3a:c4:61:af:b9:cd:e2:44:4a:b8:c7:54:69:
ba:c8:ba:9e:97:a8:4e:8b:5d:df:cd:fe:37:71:43:
f8:ad:f6:1c:6f:6f:25:17:bf:90:e4:58:73:a3:fa:
9e:7b:9a:b3:1a:e4:b9:84:ab:5a:f4:91:d1:a9:93:
43:ad:f0:ab:1b:34:74:4b:9d:b9:0f:97:90:40:47:
88:84:ef:28:fa:bc:6d:2e:9e:c9:ba:ad:61:c8:de:
e6:82:5c:92:c4:98:6c:91:19:42:7d:9e:8d:97:ab:
f3:45:bd:8a:15:36:bf:f2:aa:2a:66:51:fb:fc:40:
db:21:80:31:5b:a6:8c:ab:da:24:1b:6d:14:68:2a:
bf:e1:d0:b1:d8:22:93:8f:4a:ee:21:71:f5:c0:35:
d9:15:66:af:c9:d7:71:fd:42:4f:46:7e:f8:10:8d:
00:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:07:EC:3E:11:E8:5B:8F:70:F5:1B:C4:28:50:91:C0:E7:44:AE:A1
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/WgfsPhHoW49w9RvEKFCRwOdErqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.136.0.0/13
5.205.0.0/16
37.10.128.0/17
37.12.0.0/15
37.158.0.0/16
79.144.0.0-79.149.255.255
80.24.0.0/14
80.29.0.0-80.39.255.255
80.59.0.0/16
81.32.0.0-81.44.255.255
83.32.0.0/13
83.47.0.0-83.48.255.255
83.52.0.0-83.63.255.255
88.0.0.0/14
88.8.0.0-88.16.255.255
88.24.0.0/13
95.121.0.0-95.127.255.255
176.80.0.0/14
176.85.0.0-176.87.255.255
192.101.1.0/24
193.153.0.0/16
194.69.225.0/24
194.179.34.0/24
194.179.112.0/24
194.224.157.0/24
195.53.0.0/16
195.55.78.0/23
195.55.110.0/24
195.57.5.0/24
195.57.27.0/24
195.76.0.0/16
195.77.57.0/24
195.77.132.0/22
195.235.0.0/16
212.170.0.0/16
213.96.0.0/14
217.11.96.0/19
217.124.0.0/14
Signature Algorithm: sha256WithRSAEncryption
88:60:35:e1:a9:4e:4b:b4:8e:75:3f:94:7e:66:f7:31:13:3a:
5e:be:cc:11:15:39:ec:83:32:b3:69:45:37:4a:29:85:83:a3:
91:b2:20:1f:27:72:3c:6f:a0:5f:5e:64:af:c5:bb:6e:82:39:
d8:54:97:a0:f6:62:50:22:1a:d8:80:95:29:da:1e:40:0a:62:
34:1c:33:a2:ca:88:94:a6:63:89:7e:68:6a:8e:c7:15:14:22:
17:44:f8:03:a4:21:9d:61:a7:e8:eb:93:95:28:8f:50:6e:a4:
1a:a6:b7:ee:36:ed:3e:f0:a5:a5:db:26:41:e3:8a:ca:a1:42:
ea:0b:ce:ea:ad:ea:70:50:3f:ef:7e:73:bf:0d:3f:a5:f6:4e:
9c:bf:c1:0f:6a:e3:31:f0:04:83:cc:28:53:b9:79:39:a0:2e:
95:7e:3d:b4:d0:d8:94:b5:a1:c4:7a:d0:a4:3a:37:a8:f8:aa:
e0:a9:60:ea:d3:91:98:06:ab:de:a7:86:68:d3:0a:76:1b:3a:
7e:6f:65:60:75:31:93:f5:1e:28:44:b1:ed:95:3d:75:f4:7e:
14:99:55:80:75:99:1f:25:e7:91:36:92:36:f6:04:df:c1:26:
34:96:a0:c3:c0:e3:fb:ca:a6:7d:71:8c:fc:54:2f:0a:16:83:
56:d2:7d:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 08:53:53 2025 by rpki-client