Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/4OjdCTSTgkGVPoJ3ANtCuGVGRys.roa
File: 4OjdCTSTgkGVPoJ3ANtCuGVGRys.roa (raw, json)
Hash identifier: lCQGBpp3gBUEefMRFohS9mgrVACx8LuuHu35Kn0ayzo=
Subject key identifier: E0:E8:DD:09:34:93:82:41:95:3E:82:77:00:DB:42:B8:65:46:47:2B
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 0188B4E282961A0B538772F886860BBFCD3D
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/4OjdCTSTgkGVPoJ3ANtCuGVGRys.roa
Signing time: Tue 13 Jun 2023 13:12:03 +0000
ROA not before: Tue 13 Jun 2023 13:12:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12741
IP address blocks: 77.252.0.0/14 maxlen: 14
159.205.0.0/16 maxlen: 16
193.19.104.0/23 maxlen: 23
89.171.0.0/16 maxlen: 16
62.87.128.0/17 maxlen: 17
178.16.116.0/24 maxlen: 24
178.16.121.0/24 maxlen: 24
178.16.125.0/24 maxlen: 24
62.181.160.0/19 maxlen: 19
213.134.128.0/19 maxlen: 19
87.204.0.0/15 maxlen: 15
62.244.128.0/19 maxlen: 19
82.143.128.0/18 maxlen: 18
62.89.64.0/18 maxlen: 18
77.65.188.0/24 maxlen: 24
77.65.193.0/24 maxlen: 24
77.65.209.0/24 maxlen: 24
213.241.0.0/17 maxlen: 17
178.36.0.0/15 maxlen: 15
213.238.64.0/18 maxlen: 18
93.180.160.0/19 maxlen: 19
213.241.89.0/24 maxlen: 24
83.238.0.0/16 maxlen: 16
62.233.128.0/17 maxlen: 17
213.17.244.0/24 maxlen: 24
81.210.0.0/17 maxlen: 17
5.226.135.0/24 maxlen: 24
213.186.64.0/19 maxlen: 19
77.65.134.0/24 maxlen: 24
212.106.0.0/19 maxlen: 19
77.65.155.0/24 maxlen: 24
77.65.171.0/24 maxlen: 24
85.31.252.0/24 maxlen: 24
213.146.32.0/19 maxlen: 19
78.8.0.0/14 maxlen: 14
185.58.162.0/23 maxlen: 23
185.58.160.0/23 maxlen: 23
185.58.160.0/22 maxlen: 22
62.111.128.0/17 maxlen: 17
85.128.0.0/17 maxlen: 17
37.128.0.0/17 maxlen: 17
62.148.64.0/19 maxlen: 19
84.40.128.0/17 maxlen: 17
81.168.128.0/17 maxlen: 17
81.219.0.0/16 maxlen: 16
193.91.16.0/20 maxlen: 20
195.114.160.0/19 maxlen: 19
85.202.54.0/24 maxlen: 24
85.202.59.0/24 maxlen: 24
213.195.128.0/18 maxlen: 18
217.30.128.0/19 maxlen: 19
213.17.128.0/17 maxlen: 17
5.226.92.0/24 maxlen: 24
213.216.64.0/18 maxlen: 18
193.192.173.0/24 maxlen: 24
93.159.0.0/18 maxlen: 18
87.239.216.0/21 maxlen: 22
193.192.181.0/24 maxlen: 24
193.192.190.0/24 maxlen: 24
193.192.188.0/24 maxlen: 24
62.111.250.0/24 maxlen: 24
5.226.64.0/18 maxlen: 18
87.105.0.0/16 maxlen: 16
2001:41b0::/32 maxlen: 48
2001:41b0:22b:100::/56 maxlen: 56
2001:16b0::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 28 Jul 2023 12:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b4:e2:82:96:1a:0b:53:87:72:f8:86:86:0b:bf:cd:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jun 13 13:12:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e0e8dd0934938241953e827700db42b86546472b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:5d:ff:96:3b:68:48:1e:05:5b:15:ae:6e:de:
e4:60:17:99:6e:d6:1f:c1:b6:92:37:cd:ae:e5:83:
43:d9:f0:54:27:4f:ab:7a:c2:6a:c3:74:43:11:fb:
f9:cc:71:66:1f:a7:f6:88:5d:cf:12:36:ba:a9:c5:
c6:d7:29:25:28:6b:b0:be:6c:26:45:c9:9a:4f:e8:
0f:66:2e:fe:74:c0:21:50:5a:71:29:0b:44:31:40:
a6:82:38:09:d9:a9:c4:03:77:ab:28:d5:ec:13:ad:
af:91:c5:1e:e2:93:77:26:c3:23:af:d1:c9:07:e1:
b4:71:b8:0e:ed:62:92:00:ec:ac:28:c7:1f:f8:b8:
43:93:a6:95:4f:d8:82:f5:71:3b:c1:05:27:93:6b:
ca:90:f7:14:86:77:78:e9:9a:c4:27:27:d2:f3:cb:
94:78:29:4a:bc:78:5a:f5:89:2b:90:0e:73:06:ff:
7f:e4:09:ac:20:e4:9a:e7:3f:25:e4:ff:f4:08:7b:
14:ff:99:72:f1:c2:e3:ff:60:16:72:ee:69:37:dc:
cf:f7:88:f6:2a:b1:94:73:bf:dd:13:22:6a:ac:8c:
ac:8c:b8:d3:77:21:c0:a0:1e:c8:35:da:fc:4b:86:
27:52:7b:67:ea:ef:39:2f:33:4d:c0:e9:cf:e6:62:
3e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:E8:DD:09:34:93:82:41:95:3E:82:77:00:DB:42:B8:65:46:47:2B
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/4OjdCTSTgkGVPoJ3ANtCuGVGRys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.64.0/18
5.226.135.0/24
37.128.0.0/17
62.87.128.0/17
62.89.64.0/18
62.111.128.0/17
62.148.64.0/19
62.181.160.0/19
62.233.128.0/17
62.244.128.0/19
77.65.134.0/24
77.65.155.0/24
77.65.171.0/24
77.65.188.0/24
77.65.193.0/24
77.65.209.0/24
77.252.0.0/14
78.8.0.0/14
81.168.128.0/17
81.210.0.0/17
81.219.0.0/16
82.143.128.0/18
83.238.0.0/16
84.40.128.0/17
85.31.252.0/24
85.128.0.0/17
85.202.54.0/24
85.202.59.0/24
87.105.0.0/16
87.204.0.0/15
87.239.216.0/21
89.171.0.0/16
93.159.0.0/18
93.180.160.0/19
159.205.0.0/16
178.16.116.0/24
178.16.121.0/24
178.16.125.0/24
178.36.0.0/15
185.58.160.0/22
193.19.104.0/23
193.91.16.0/20
193.192.173.0/24
193.192.181.0/24
193.192.188.0/24
193.192.190.0/24
195.114.160.0/19
212.106.0.0/19
213.17.128.0/17
213.134.128.0/19
213.146.32.0/19
213.186.64.0/19
213.195.128.0/18
213.216.64.0/18
213.238.64.0/18
213.241.0.0/17
217.30.128.0/19
IPv6:
2001:16b0::/32
2001:41b0::/32
Signature Algorithm: sha256WithRSAEncryption
7e:ce:84:d5:05:85:78:06:8f:76:8a:74:b6:24:f7:8c:9c:f7:
18:73:8c:b1:7c:9a:34:8d:41:93:5e:b1:cd:80:2d:10:53:b0:
df:f5:41:b9:42:0d:39:6d:63:41:11:80:4f:30:43:40:ce:33:
d3:33:aa:5d:1f:71:ea:14:2f:4f:5c:6f:2c:24:03:59:dd:97:
71:10:c5:0e:1f:78:99:70:08:f2:69:2b:19:8c:42:16:68:db:
20:20:af:96:8b:ba:95:0d:94:7a:05:61:f9:8d:f1:ad:cb:0e:
51:38:d0:62:ae:c7:df:8c:4e:ef:1b:68:97:ec:15:b0:8f:00:
1f:f0:45:8c:4a:ce:a6:ab:5a:48:b5:92:a4:d8:90:cd:e1:37:
db:c5:ae:86:41:eb:7a:30:5f:e4:dc:db:6d:e5:e5:3f:ca:96:
85:6d:81:69:bd:ac:73:7d:74:25:97:5a:bd:1b:ee:be:65:ce:
ea:39:0f:ac:8b:21:4c:2e:2a:db:25:7e:4a:e2:05:8f:ed:7e:
72:af:bf:6c:e6:34:c2:67:de:79:24:08:62:13:03:a5:92:99:
ab:dd:01:81:98:27:38:f8:cf:e7:c9:34:49:d0:61:b8:e2:5b:
dc:db:ae:c6:f4:ce:2b:d1:8c:98:b6:fd:5c:63:14:df:34:81:
41:cf:3a:5c
-----BEGIN CERTIFICATE-----
MIIGZDCCBUygAwIBAgISAYi04oKWGgtTh3L4hoYLv809MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5OTU0NDk5OTc3Mjc4YTc1NTcwYjM0MDNmNGQzYWEwMGIx
YjM2ZTgwHhcNMjMwNjEzMTMxMjAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMGU4ZGQwOTM0OTM4MjQxOTUzZTgyNzcwMGRiNDJiODY1NDY0NzJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhV3/ljtoSB4FWxWubt7kYBeZbtYf
wbaSN82u5YND2fBUJ0+resJqw3RDEfv5zHFmH6f2iF3PEja6qcXG1yklKGuwvmwm
RcmaT+gPZi7+dMAhUFpxKQtEMUCmgjgJ2anEA3erKNXsE62vkcUe4pN3JsMjr9HJ
B+G0cbgO7WKSAOysKMcf+LhDk6aVT9iC9XE7wQUnk2vKkPcUhnd46ZrEJyfS88uU
eClKvHha9YkrkA5zBv9/5AmsIOSa5z8l5P/0CHsU/5ly8cLj/2AWcu5pN9zP94j2
KrGUc7/dEyJqrIysjLjTdyHAoB7INdr8S4YnUntn6u85LzNNwOnP5mI+BQIDAQAB
o4IDcDCCA2wwHQYDVR0OBBYEFODo3Qk0k4JBlT6CdwDbQrhlRkcrMB8GA1UdIwQY
MBaAFLmVRJmXcninVXCzQD9NOqALGzboMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAt
MDI0YjE2NTVjMjQ3LzEvNE9qZENUU1Rna0dWUG9KM0FOdEN1R1ZHUnlzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAtMDI0YjE2NTVjMjQ3
LzEvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBhAYIKwYBBQUHAQcBAf8EggFzMIIBbzCCAVUEAgABMIIB
TQMEBgXiQAMEAAXihwMEByWAAAMEBz5XgAMEBj5ZQAMEBz5vgAMEBT6UQAMEBT61
oAMEBz7pgAMEBT70gAMEAE1BhgMEAE1BmwMEAE1BqwMEAE1BvAMEAE1BwQMEAE1B
0QMDAk38AwMCTggDBAdRqIADBAdR0gADAwBR2wMEBlKPgAMDAFPuAwQHVCiAAwQA
VR/8AwQHVYAAAwQAVco2AwQAVco7AwMAV2kDAwFXzAMEA1fv2AMDAFmrAwQGXZ8A
AwQFXbSgAwMAn80DBACyEHQDBACyEHkDBACyEH0DAwGyJAMEArk6oAMEAcETaAME
BMFbEAMEAMHArQMEAMHAtQMEAMHAvAMEAMHAvgMEBcNyoAMEBdRqAAMEB9URgAME
BdWGgAMEBdWSIAMEBdW6QAMEBtXDgAMEBtXYQAMEBtXuQAMEB9XxAAMEBdkegDAU
BAIAAjAOAwUAIAEWsAMFACABQbAwDQYJKoZIhvcNAQELBQADggEBAH7OhNUFhXgG
j3aKdLYk94yc9xhzjLF8mjSNQZNesc2ALRBTsN/1QblCDTltY0ERgE8wQ0DOM9Mz
ql0fceoUL09cbywkA1ndl3EQxQ4feJlwCPJpKxmMQhZo2yAgr5aLupUNlHoFYfmN
8a3LDlE40GKux9+MTu8baJfsFbCPAB/wRYxKzqarWki1kqTYkM3hN9vFroZB63ow
X+Tc223l5T/KloVtgWm9rHN9dCWXWr0b7r5lzuo5D6yLIUwuKtslfkriBY/tfnKv
v2zmNMJn3nkkCGITA6WSmavdAYGYJzj4z+fJNEnQYbjiW9zbrsb0zivRjJi2/Vxj
FN80gUHPOlw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org