Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/QrZVpnAamIlPRxhu7QMrTGb-eyE.roa
File: QrZVpnAamIlPRxhu7QMrTGb-eyE.roa (raw, json)
Hash identifier: j8HXhb450gSnjGy6vyOXS2uSEzOggp39byx60ncOgIE=
Subject key identifier: 42:B6:55:A6:70:1A:98:89:4F:47:18:6E:ED:03:2B:4C:66:FE:7B:21
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 018B60F3AAFCEBDDF83FCB47968CE59221ED
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/QrZVpnAamIlPRxhu7QMrTGb-eyE.roa
Signing time: Tue 24 Oct 2023 09:11:03 +0000
ROA not before: Tue 24 Oct 2023 09:11:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12741
IP address blocks: 77.252.0.0/14 maxlen: 14
159.205.0.0/16 maxlen: 16
193.19.104.0/23 maxlen: 23
89.171.0.0/16 maxlen: 16
62.87.128.0/17 maxlen: 17
178.16.116.0/24 maxlen: 24
178.16.121.0/24 maxlen: 24
178.16.125.0/24 maxlen: 24
62.181.160.0/19 maxlen: 19
213.134.128.0/19 maxlen: 19
87.204.0.0/15 maxlen: 15
62.244.128.0/19 maxlen: 19
82.143.128.0/18 maxlen: 18
62.89.64.0/18 maxlen: 18
77.65.188.0/24 maxlen: 24
77.65.193.0/24 maxlen: 24
77.65.209.0/24 maxlen: 24
185.244.96.0/22 maxlen: 22
213.241.0.0/17 maxlen: 17
178.36.0.0/15 maxlen: 15
213.238.64.0/18 maxlen: 18
93.180.160.0/19 maxlen: 19
213.241.89.0/24 maxlen: 24
83.238.0.0/16 maxlen: 16
62.233.128.0/17 maxlen: 17
213.17.244.0/24 maxlen: 24
81.210.0.0/17 maxlen: 17
5.226.135.0/24 maxlen: 24
213.186.64.0/19 maxlen: 19
77.65.134.0/24 maxlen: 24
212.106.0.0/19 maxlen: 19
77.65.155.0/24 maxlen: 24
77.65.171.0/24 maxlen: 24
85.31.252.0/24 maxlen: 24
213.146.32.0/19 maxlen: 19
78.8.0.0/14 maxlen: 14
185.58.162.0/23 maxlen: 23
185.58.160.0/23 maxlen: 23
185.58.160.0/22 maxlen: 22
62.111.128.0/17 maxlen: 17
85.128.0.0/17 maxlen: 17
37.128.0.0/17 maxlen: 17
62.148.64.0/19 maxlen: 19
84.40.128.0/17 maxlen: 17
81.168.128.0/17 maxlen: 17
81.219.0.0/16 maxlen: 16
193.91.16.0/20 maxlen: 20
195.114.160.0/19 maxlen: 19
85.202.54.0/24 maxlen: 24
85.202.59.0/24 maxlen: 24
213.195.128.0/18 maxlen: 18
217.30.128.0/19 maxlen: 19
213.17.128.0/17 maxlen: 17
5.226.92.0/24 maxlen: 24
213.216.64.0/18 maxlen: 18
193.192.173.0/24 maxlen: 24
93.159.0.0/18 maxlen: 18
87.239.216.0/21 maxlen: 22
193.192.181.0/24 maxlen: 24
193.192.190.0/24 maxlen: 24
193.192.188.0/24 maxlen: 24
62.111.250.0/24 maxlen: 24
5.226.64.0/18 maxlen: 18
87.105.0.0/16 maxlen: 16
2001:41b0::/32 maxlen: 48
2001:16b0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 14 Nov 2023 12:19:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:60:f3:aa:fc:eb:dd:f8:3f:cb:47:96:8c:e5:92:21:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Oct 24 09:11:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42b655a6701a98894f47186eed032b4c66fe7b21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:cc:f8:fa:5e:de:4c:6e:5e:6b:18:78:5d:4a:
f9:d2:a5:b7:bf:88:2b:51:c3:69:b1:35:9f:0d:16:
d5:22:14:85:6f:87:cc:4e:34:76:95:10:cb:11:b6:
66:aa:79:8f:3d:23:53:8a:04:b7:07:c2:33:ab:00:
75:73:ee:19:2a:f8:32:1e:b7:61:20:e3:8e:34:bb:
89:39:b0:5f:9b:c9:42:ef:f2:d8:2c:c0:53:36:05:
d7:f1:8c:41:25:e5:c1:b8:22:fb:72:06:ca:40:b7:
9c:d8:28:3c:56:8e:01:5b:77:48:b3:87:c5:d8:e6:
b0:89:4e:36:e7:62:56:01:3c:84:57:69:3a:d9:53:
4f:61:48:9b:22:dd:a9:d5:fc:ac:f9:e9:88:b1:e6:
fa:d8:99:a7:f8:1d:f1:38:ad:2c:a3:16:7c:e1:3a:
74:16:17:89:a9:15:11:18:16:62:a2:61:7d:51:b5:
30:48:9c:c6:6b:e7:1b:52:9c:34:39:2f:dd:15:cd:
3a:55:6e:cb:2e:c9:3d:a9:bc:dd:41:79:c0:12:9c:
bf:79:ea:e0:06:f2:b8:87:4e:95:98:48:7e:fc:eb:
8d:fb:5e:a7:50:9f:88:f9:99:92:a5:83:48:50:ac:
c3:dc:46:b6:aa:54:76:24:02:dc:f3:5e:88:a3:0a:
8a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:B6:55:A6:70:1A:98:89:4F:47:18:6E:ED:03:2B:4C:66:FE:7B:21
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/QrZVpnAamIlPRxhu7QMrTGb-eyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.64.0/18
5.226.135.0/24
37.128.0.0/17
62.87.128.0/17
62.89.64.0/18
62.111.128.0/17
62.148.64.0/19
62.181.160.0/19
62.233.128.0/17
62.244.128.0/19
77.65.134.0/24
77.65.155.0/24
77.65.171.0/24
77.65.188.0/24
77.65.193.0/24
77.65.209.0/24
77.252.0.0/14
78.8.0.0/14
81.168.128.0/17
81.210.0.0/17
81.219.0.0/16
82.143.128.0/18
83.238.0.0/16
84.40.128.0/17
85.31.252.0/24
85.128.0.0/17
85.202.54.0/24
85.202.59.0/24
87.105.0.0/16
87.204.0.0/15
87.239.216.0/21
89.171.0.0/16
93.159.0.0/18
93.180.160.0/19
159.205.0.0/16
178.16.116.0/24
178.16.121.0/24
178.16.125.0/24
178.36.0.0/15
185.58.160.0/22
185.244.96.0/22
193.19.104.0/23
193.91.16.0/20
193.192.173.0/24
193.192.181.0/24
193.192.188.0/24
193.192.190.0/24
195.114.160.0/19
212.106.0.0/19
213.17.128.0/17
213.134.128.0/19
213.146.32.0/19
213.186.64.0/19
213.195.128.0/18
213.216.64.0/18
213.238.64.0/18
213.241.0.0/17
217.30.128.0/19
IPv6:
2001:16b0::/32
2001:41b0::/32
Signature Algorithm: sha256WithRSAEncryption
6d:ea:86:f3:51:67:1c:ba:5d:d0:f6:5b:24:40:d4:62:c5:88:
dc:59:21:c2:c7:a7:63:e5:62:cb:f6:8f:9f:23:56:dc:fe:dd:
22:7d:f4:f0:09:e9:35:16:2a:61:3f:4d:61:f0:c8:f2:2d:4f:
b9:b4:c8:42:d8:af:f1:b0:3c:cd:22:37:32:23:3e:ee:11:b5:
83:df:09:49:44:38:5d:37:cc:3d:0c:c5:5a:2d:05:d1:db:35:
55:72:59:ea:dd:c0:21:40:78:94:80:99:75:2c:3a:a8:8a:ff:
61:f3:59:43:12:b2:21:d6:01:63:a8:16:ca:9f:f4:b4:43:87:
d3:96:95:a1:32:11:0b:7f:65:a4:c6:4f:09:01:58:08:30:fb:
dd:66:61:72:a7:2d:db:8f:e1:fc:01:7a:80:89:cc:de:5c:ca:
19:46:ad:53:db:13:a9:2d:53:1c:58:75:ee:c2:e2:ff:71:c3:
c9:ff:ee:e8:2b:2a:7f:e3:65:a0:d5:0c:0c:e9:4f:4c:4c:30:
d0:38:34:84:e4:92:58:e8:be:37:11:b8:31:ad:c7:f2:e8:aa:
3f:c6:eb:73:43:2a:87:a3:08:59:b6:a9:5c:98:71:6d:06:03:
2c:c6:85:f4:82:dc:fe:3c:82:fe:38:76:45:e6:d0:33:ed:54:
28:78:01:2d
-----BEGIN CERTIFICATE-----
MIIGajCCBVKgAwIBAgISAYtg86r86934P8tHlozlkiHtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5OTU0NDk5OTc3Mjc4YTc1NTcwYjM0MDNmNGQzYWEwMGIx
YjM2ZTgwHhcNMjMxMDI0MDkxMTAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MmI2NTVhNjcwMWE5ODg5NGY0NzE4NmVlZDAzMmI0YzY2ZmU3YjIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjsz4+l7eTG5eaxh4XUr50qW3v4gr
UcNpsTWfDRbVIhSFb4fMTjR2lRDLEbZmqnmPPSNTigS3B8IzqwB1c+4ZKvgyHrdh
IOOONLuJObBfm8lC7/LYLMBTNgXX8YxBJeXBuCL7cgbKQLec2Cg8Vo4BW3dIs4fF
2OawiU4252JWATyEV2k62VNPYUibIt2p1fys+emIseb62Jmn+B3xOK0soxZ84Tp0
FheJqRURGBZiomF9UbUwSJzGa+cbUpw0OS/dFc06VW7LLsk9qbzdQXnAEpy/eerg
BvK4h06VmEh+/OuN+16nUJ+I+ZmSpYNIUKzD3Ea2qlR2JALc816IowqKqwIDAQAB
o4IDdjCCA3IwHQYDVR0OBBYEFEK2VaZwGpiJT0cYbu0DK0xm/nshMB8GA1UdIwQY
MBaAFLmVRJmXcninVXCzQD9NOqALGzboMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAt
MDI0YjE2NTVjMjQ3LzEvUXJaVnBuQWFtSWxQUnhodTdRTXJUR2ItZXlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAtMDI0YjE2NTVjMjQ3
LzEvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBigYIKwYBBQUHAQcBAf8EggF5MIIBdTCCAVsEAgABMIIB
UwMEBgXiQAMEAAXihwMEByWAAAMEBz5XgAMEBj5ZQAMEBz5vgAMEBT6UQAMEBT61
oAMEBz7pgAMEBT70gAMEAE1BhgMEAE1BmwMEAE1BqwMEAE1BvAMEAE1BwQMEAE1B
0QMDAk38AwMCTggDBAdRqIADBAdR0gADAwBR2wMEBlKPgAMDAFPuAwQHVCiAAwQA
VR/8AwQHVYAAAwQAVco2AwQAVco7AwMAV2kDAwFXzAMEA1fv2AMDAFmrAwQGXZ8A
AwQFXbSgAwMAn80DBACyEHQDBACyEHkDBACyEH0DAwGyJAMEArk6oAMEArn0YAME
AcETaAMEBMFbEAMEAMHArQMEAMHAtQMEAMHAvAMEAMHAvgMEBcNyoAMEBdRqAAME
B9URgAMEBdWGgAMEBdWSIAMEBdW6QAMEBtXDgAMEBtXYQAMEBtXuQAMEB9XxAAME
BdkegDAUBAIAAjAOAwUAIAEWsAMFACABQbAwDQYJKoZIhvcNAQELBQADggEBAG3q
hvNRZxy6XdD2WyRA1GLFiNxZIcLHp2PlYsv2j58jVtz+3SJ99PAJ6TUWKmE/TWHw
yPItT7m0yELYr/GwPM0iNzIjPu4RtYPfCUlEOF03zD0MxVotBdHbNVVyWerdwCFA
eJSAmXUsOqiK/2HzWUMSsiHWAWOoFsqf9LRDh9OWlaEyEQt/ZaTGTwkBWAgw+91m
YXKnLduP4fwBeoCJzN5cyhlGrVPbE6ktUxxYde7C4v9xw8n/7ugrKn/jZaDVDAzp
T0xMMNA4NITkkljovjcRuDGtx/Loqj/G63NDKoejCFm2qVyYcW0GAyzGhfSC3P48
gv44dkXm0DPtVCh4AS0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org