Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/znKi87Flcgf54ZSnkq99n-H_bxI.roa
File: znKi87Flcgf54ZSnkq99n-H_bxI.roa (raw, json)
Hash identifier: bs1mOUs79vXKs++WYX6MDcuACSrno1Eq6RMtThDCoi0=
Subject key identifier: CE:72:A2:F3:B1:65:72:07:F9:E1:94:A7:92:AF:7D:9F:E1:FF:6F:12
Certificate issuer: /CN=3a92f5d936752baf2d0df713299499cecfa9f48d
Certificate serial: 01856F4B461E11AAA5961823055932C5BC00
Authority key identifier: 3A:92:F5:D9:36:75:2B:AF:2D:0D:F7:13:29:94:99:CE:CF:A9:F4:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpL12TZ1K68tDfcTKZSZzs-p9I0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/znKi87Flcgf54ZSnkq99n-H_bxI.roa
Signing time: Sun 01 Jan 2023 21:44:42 +0000
ROA not before: Sun 01 Jan 2023 21:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35444
IP address blocks: 80.90.83.0/24 maxlen: 24
80.90.80.0/20 maxlen: 20
80.90.87.0/24 maxlen: 24
80.90.89.0/24 maxlen: 24
80.90.90.0/24 maxlen: 24
45.93.220.0/22 maxlen: 22
93.93.168.0/23 maxlen: 23
93.93.168.0/22 maxlen: 22
93.93.170.0/23 maxlen: 23
81.26.200.0/24 maxlen: 24
81.26.200.0/21 maxlen: 21
81.26.201.0/24 maxlen: 24
81.26.202.0/24 maxlen: 24
81.26.203.0/24 maxlen: 24
81.26.204.0/24 maxlen: 24
81.26.205.0/24 maxlen: 24
81.26.206.0/23 maxlen: 24
185.239.9.0/24 maxlen: 24
185.239.10.0/24 maxlen: 24
185.239.10.0/23 maxlen: 23
185.239.11.0/24 maxlen: 24
185.239.8.0/23 maxlen: 23
185.239.8.0/24 maxlen: 24
185.239.8.0/22 maxlen: 22
185.158.0.0/24 maxlen: 24
185.158.0.0/23 maxlen: 23
185.158.0.0/22 maxlen: 22
185.158.1.0/24 maxlen: 24
185.158.2.0/23 maxlen: 23
185.158.2.0/24 maxlen: 24
185.158.3.0/24 maxlen: 24
185.187.0.0/24 maxlen: 24
185.187.0.0/22 maxlen: 23
185.187.1.0/24 maxlen: 24
185.187.2.0/24 maxlen: 24
185.187.3.0/24 maxlen: 24
185.132.92.0/23 maxlen: 23
185.132.92.0/24 maxlen: 24
185.132.93.0/24 maxlen: 24
185.132.94.0/24 maxlen: 24
185.132.95.0/24 maxlen: 24
185.175.252.0/22 maxlen: 22
185.212.189.0/24 maxlen: 24
185.212.190.0/24 maxlen: 24
185.212.190.0/23 maxlen: 23
185.212.191.0/24 maxlen: 24
185.212.188.0/22 maxlen: 22
185.212.188.0/23 maxlen: 23
185.212.188.0/24 maxlen: 24
2a03:2de0::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 10 Mar 2023 08:30:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:46:1e:11:aa:a5:96:18:23:05:59:32:c5:bc:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a92f5d936752baf2d0df713299499cecfa9f48d
Validity
Not Before: Jan 1 21:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce72a2f3b1657207f9e194a792af7d9fe1ff6f12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:81:34:a0:8c:54:7e:ae:cb:b9:a6:03:97:48:
45:e6:05:a6:37:80:89:d5:d3:b6:42:a5:75:36:d1:
aa:bd:8c:53:6b:9c:ce:6a:6f:90:c9:67:07:cd:39:
2e:43:8c:b0:61:3e:cb:43:39:ee:a4:3e:26:62:37:
da:9d:f3:02:25:8d:21:81:b0:1e:a9:c3:b5:c0:cf:
79:b2:e1:ae:b3:c0:d2:7d:af:47:04:ec:a0:f5:4a:
2e:50:d8:d7:e0:d1:4d:26:a6:a7:34:eb:49:21:60:
bd:ff:cd:92:90:cb:e2:af:f0:86:41:80:58:2c:a3:
f4:c5:90:3f:4d:b6:71:87:80:74:22:29:00:c1:e1:
34:b8:da:e9:6f:c9:68:6c:c0:da:5f:1e:92:9a:7a:
5d:6d:50:fa:f3:58:0c:cd:4c:28:7a:e7:e3:81:9b:
d2:45:46:f2:5f:70:cd:7a:75:4b:0a:1e:43:19:19:
d2:07:e2:01:cd:8c:ad:bf:d6:c3:87:8e:e0:8e:bf:
01:f3:f8:07:b1:4b:75:68:68:aa:b4:ff:18:75:d7:
99:d3:11:ab:67:f4:e7:d9:73:11:a8:fd:c4:71:93:
7a:f9:ac:e6:fe:f9:b4:f0:c0:97:52:1f:12:df:7f:
78:0d:bb:d0:23:66:8a:2f:38:14:f8:3c:31:ba:ca:
67:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:72:A2:F3:B1:65:72:07:F9:E1:94:A7:92:AF:7D:9F:E1:FF:6F:12
X509v3 Authority Key Identifier:
keyid:3A:92:F5:D9:36:75:2B:AF:2D:0D:F7:13:29:94:99:CE:CF:A9:F4:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpL12TZ1K68tDfcTKZSZzs-p9I0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/znKi87Flcgf54ZSnkq99n-H_bxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/OpL12TZ1K68tDfcTKZSZzs-p9I0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.220.0/22
80.90.80.0/20
81.26.200.0/21
93.93.168.0/22
185.132.92.0/22
185.158.0.0/22
185.175.252.0/22
185.187.0.0/22
185.212.188.0/22
185.239.8.0/22
IPv6:
2a03:2de0::/32
Signature Algorithm: sha256WithRSAEncryption
79:f6:14:96:26:5f:ee:2e:57:fe:b0:d6:28:9b:79:e1:a9:fe:
8b:e3:13:51:1e:c0:e4:4f:3a:e2:09:f6:63:17:3e:5f:ce:fc:
96:76:f3:c0:33:54:70:ca:54:ea:d6:c3:0c:16:53:fb:5f:07:
e7:77:f8:01:11:24:68:37:93:8f:ae:b7:c4:2c:06:7c:aa:ac:
1d:7a:83:b2:05:00:9d:76:46:44:5a:be:18:f4:20:c9:4c:19:
1e:00:13:dc:03:26:af:25:b2:c5:b5:7e:01:d2:1b:e6:26:88:
0e:8a:c5:35:c1:61:bb:03:33:ef:8e:0e:68:2c:4e:b5:69:2b:
31:ca:d1:4c:50:e9:36:b7:f0:d7:97:d6:d0:52:9f:e9:c0:c4:
60:71:c6:a9:38:aa:62:3d:9b:08:c6:9b:24:f6:d4:fd:51:01:
f2:48:ec:8b:02:16:40:2d:53:9a:19:27:25:e4:90:d7:cb:00:
33:57:b1:a2:52:82:a6:13:33:bc:b5:3f:89:0e:d5:8f:9f:94:
8b:6c:7d:4e:6a:20:32:a6:4a:29:20:d5:4c:c4:f8:8e:c7:bd:
b5:f4:fa:ba:04:02:ab:05:e8:10:88:b4:2b:5e:2f:07:a1:89:
86:36:9e:83:8e:82:23:b8:93:1d:f0:1a:9b:fd:c4:48:65:83:
99:22:4a:5e
-----BEGIN CERTIFICATE-----
MIIFQjCCBCqgAwIBAgISAYVvS0YeEaqllhgjBVkyxbwAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhOTJmNWQ5MzY3NTJiYWYyZDBkZjcxMzI5OTQ5OWNlY2Zh
OWY0OGQwHhcNMjMwMTAxMjE0NDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZTcyYTJmM2IxNjU3MjA3ZjllMTk0YTc5MmFmN2Q5ZmUxZmY2ZjEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsIE0oIxUfq7LuaYDl0hF5gWmN4CJ
1dO2QqV1NtGqvYxTa5zOam+QyWcHzTkuQ4ywYT7LQznupD4mYjfanfMCJY0hgbAe
qcO1wM95suGus8DSfa9HBOyg9UouUNjX4NFNJqanNOtJIWC9/82SkMvir/CGQYBY
LKP0xZA/TbZxh4B0IikAweE0uNrpb8lobMDaXx6SmnpdbVD681gMzUwoeufjgZvS
RUbyX3DNenVLCh5DGRnSB+IBzYytv9bDh47gjr8B8/gHsUt1aGiqtP8YddeZ0xGr
Z/Tn2XMRqP3EcZN6+azm/vm08MCXUh8S3394DbvQI2aKLzgU+DwxuspnewIDAQAB
o4ICTjCCAkowHQYDVR0OBBYEFM5yovOxZXIH+eGUp5KvfZ/h/28SMB8GA1UdIwQY
MBaAFDqS9dk2dSuvLQ33EymUmc7PqfSNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3BMMTJUWjFLNjh0RGZjVEtaU1p6cy1wOUkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS83Y2QxNTctYzU4Zi00Y2I5LTgyNTIt
MTY5NmIyNDZjZDUwLzEvem5LaTg3RmxjZ2Y1NFpTbmtxOTluLUhfYnhJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS83Y2QxNTctYzU4Zi00Y2I5LTgyNTItMTY5NmIyNDZjZDUw
LzEvT3BMMTJUWjFLNjh0RGZjVEtaU1p6cy1wOUkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGQGCCsGAQUFBwEHAQH/BFUwUzBCBAIAATA8AwQCLV3cAwQE
UFpQAwQDURrIAwQCXV2oAwQCuYRcAwQCuZ4AAwQCua/8AwQCubsAAwQCudS8AwQC
ue8IMA0EAgACMAcDBQAqAy3gMA0GCSqGSIb3DQEBCwUAA4IBAQB59hSWJl/uLlf+
sNYom3nhqf6L4xNRHsDkTzriCfZjFz5fzvyWdvPAM1RwylTq1sMMFlP7Xwfnd/gB
ESRoN5OPrrfELAZ8qqwdeoOyBQCddkZEWr4Y9CDJTBkeABPcAyavJbLFtX4B0hvm
JogOisU1wWG7AzPvjg5oLE61aSsxytFMUOk2t/DXl9bQUp/pwMRgccapOKpiPZsI
xpsk9tT9UQHySOyLAhZALVOaGScl5JDXywAzV7GiUoKmEzO8tT+JDtWPn5SLbH1O
aiAypkopINVMxPiOx7219Pq6BAKrBegQiLQrXi8HoYmGNp6DjoIjuJMd8Bqb/cRI
ZYOZIkpe
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:15 2024 by rpki-client on console-ams.rpki-client.org