Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/A8855XIfYhiGJNl6_mRzyrYNZvk.roa
File: A8855XIfYhiGJNl6_mRzyrYNZvk.roa (raw, json)
Hash identifier: UpTekaT1TYI/xVCLvVf02WnzBV/8n2KMT36GlPD1twE=
Subject key identifier: 03:CF:39:E5:72:1F:62:18:86:24:D9:7A:FE:64:73:CA:B6:0D:66:F9
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 019002092E16F1784233F8DAE875A64F5177
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/A8855XIfYhiGJNl6_mRzyrYNZvk.roa
Signing time: Mon 10 Jun 2024 12:04:34 +0000
ROA not before: Mon 10 Jun 2024 12:04:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 136787
IP address blocks: 82.140.135.0/24 maxlen: 24
82.140.136.0/24 maxlen: 24
82.140.137.0/24 maxlen: 24
82.140.142.0/24 maxlen: 24
82.140.144.0/24 maxlen: 24
82.140.145.0/24 maxlen: 24
82.140.147.0/24 maxlen: 24
82.140.149.0/24 maxlen: 24
82.140.151.0/24 maxlen: 24
82.140.154.0/24 maxlen: 24
82.140.155.0/24 maxlen: 24
82.140.157.0/24 maxlen: 24
82.140.181.0/24 maxlen: 24
84.46.165.0/24 maxlen: 24
84.46.166.0/24 maxlen: 24
84.46.174.0/24 maxlen: 24
86.38.2.0/24 maxlen: 24
86.38.44.0/24 maxlen: 24
86.38.46.0/24 maxlen: 24
86.38.91.0/24 maxlen: 24
86.38.157.0/24 maxlen: 24
86.38.206.0/24 maxlen: 24
86.38.207.0/24 maxlen: 24
86.38.224.0/24 maxlen: 24
86.38.231.0/24 maxlen: 24
89.116.0.0/24 maxlen: 24
89.116.18.0/24 maxlen: 24
89.116.40.0/24 maxlen: 24
89.116.55.0/24 maxlen: 24
89.116.57.0/24 maxlen: 24
89.116.79.0/24 maxlen: 24
89.116.94.0/24 maxlen: 24
89.116.95.0/24 maxlen: 24
89.116.98.0/24 maxlen: 24
89.116.142.0/24 maxlen: 24
89.116.145.0/24 maxlen: 24
89.116.194.0/24 maxlen: 24
89.116.195.0/24 maxlen: 24
89.116.196.0/24 maxlen: 24
89.116.197.0/24 maxlen: 24
89.116.199.0/24 maxlen: 24
89.116.201.0/24 maxlen: 24
89.116.204.0/24 maxlen: 24
89.116.205.0/24 maxlen: 24
89.116.206.0/24 maxlen: 24
89.116.207.0/24 maxlen: 24
89.116.216.0/24 maxlen: 24
89.116.217.0/24 maxlen: 24
89.116.219.0/24 maxlen: 24
89.116.222.0/24 maxlen: 24
89.116.251.0/24 maxlen: 24
89.116.254.0/24 maxlen: 24
89.117.4.0/24 maxlen: 24
89.117.34.0/24 maxlen: 24
89.117.131.0/24 maxlen: 24
89.117.189.0/24 maxlen: 24
89.117.191.0/24 maxlen: 24
89.117.230.0/24 maxlen: 24
89.117.231.0/24 maxlen: 24
89.117.244.0/24 maxlen: 24
217.9.251.0/24 maxlen: 24
217.9.252.0/24 maxlen: 24
217.9.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Jun 2024 15:17:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:02:09:2e:16:f1:78:42:33:f8:da:e8:75:a6:4f:51:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: Jun 10 12:04:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=03cf39e5721f62188624d97afe6473cab60d66f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:70:17:e2:31:0e:ea:5f:75:b3:99:8a:21:47:
a5:11:d4:49:29:3f:48:bf:c5:3e:81:7a:c4:c2:7b:
db:2a:bb:24:a8:b1:91:17:c0:cb:65:d6:ed:c3:6f:
39:95:d9:91:0c:dc:c3:26:6a:f7:66:ff:5a:c1:74:
12:8f:f6:7d:83:94:b3:2c:19:c2:ef:b6:81:72:90:
1e:1b:8a:76:37:90:c7:a8:df:59:b3:8c:06:7e:75:
92:fb:da:86:66:fb:96:61:d5:ec:f1:4b:70:20:9c:
37:a8:b6:e3:1b:da:08:9e:37:05:f4:9a:ff:2b:9d:
ba:8d:af:e5:a1:27:6c:bc:b0:ae:07:41:c4:86:e8:
15:6f:6d:9c:74:af:ed:c3:94:0f:e9:4a:62:62:32:
ff:c7:59:5d:25:0e:9e:76:a7:29:b9:16:91:13:e2:
19:66:10:9b:50:be:37:b0:da:50:2d:21:46:27:4c:
10:e9:bd:e6:fc:3b:ba:f3:27:fe:57:8f:db:a5:6a:
69:df:1c:a2:1e:d5:2e:1b:ee:40:b7:9f:bf:4d:b5:
b6:83:db:6d:9a:a0:c1:45:95:11:93:15:24:fb:3d:
2f:26:f6:71:40:9b:76:79:2f:4b:bf:f9:5a:71:c2:
e3:41:86:3c:bb:e9:7f:07:90:02:e5:b9:c7:77:96:
e7:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:CF:39:E5:72:1F:62:18:86:24:D9:7A:FE:64:73:CA:B6:0D:66:F9
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/A8855XIfYhiGJNl6_mRzyrYNZvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.135.0-82.140.137.255
82.140.142.0/24
82.140.144.0/23
82.140.147.0/24
82.140.149.0/24
82.140.151.0/24
82.140.154.0/23
82.140.157.0/24
82.140.181.0/24
84.46.165.0-84.46.166.255
84.46.174.0/24
86.38.2.0/24
86.38.44.0/24
86.38.46.0/24
86.38.91.0/24
86.38.157.0/24
86.38.206.0/23
86.38.224.0/24
86.38.231.0/24
89.116.0.0/24
89.116.18.0/24
89.116.40.0/24
89.116.55.0/24
89.116.57.0/24
89.116.79.0/24
89.116.94.0/23
89.116.98.0/24
89.116.142.0/24
89.116.145.0/24
89.116.194.0-89.116.197.255
89.116.199.0/24
89.116.201.0/24
89.116.204.0/22
89.116.216.0/23
89.116.219.0/24
89.116.222.0/24
89.116.251.0/24
89.116.254.0/24
89.117.4.0/24
89.117.34.0/24
89.117.131.0/24
89.117.189.0/24
89.117.191.0/24
89.117.230.0/23
89.117.244.0/24
217.9.251.0-217.9.253.255
Signature Algorithm: sha256WithRSAEncryption
03:eb:4d:0f:5b:9e:83:23:52:b9:f4:e1:f0:df:b0:77:3f:5e:
c2:44:62:68:8e:ac:d1:d5:25:d2:97:00:4b:35:f0:02:d4:8f:
b3:b8:f0:87:53:3c:7e:a7:65:aa:2d:78:65:f5:51:d1:9d:68:
1b:69:23:08:04:42:9a:62:ca:b7:2a:4e:90:20:9f:f9:52:8f:
4a:10:0c:65:b9:67:ec:e6:20:ca:5b:4d:00:63:71:98:e2:4a:
5c:98:3b:f7:6a:cc:a4:ce:21:32:0a:b0:dd:28:d4:9f:0f:5b:
6b:77:7e:a6:51:03:b0:a4:41:32:6a:9f:a1:b7:78:d9:99:65:
b3:83:12:66:5c:fb:1e:b8:f1:e7:5b:78:12:91:c3:84:0a:8a:
b6:ce:fc:c6:9f:8b:cf:00:43:05:74:a0:cb:1e:4d:8e:28:c0:
f8:23:45:45:bb:d7:77:cb:67:f7:36:ab:f9:5b:55:22:6f:83:
1d:63:0c:e2:a5:df:c0:17:a8:f0:36:2a:47:ba:32:4a:90:f9:
99:d8:06:e6:15:ff:04:dd:0e:31:89:d1:b8:a7:15:0e:39:b6:
c6:52:41:ee:96:11:ef:94:ff:92:39:db:08:1e:69:16:c8:d8:
b6:a9:a4:72:57:ef:7c:76:1d:b3:07:5d:40:73:6d:42:6b:08:
7d:82:2a:5c
-----BEGIN CERTIFICATE-----
MIIGNTCCBR2gAwIBAgISAZACCS4W8XhCM/ja6HWmT1F3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwZGQ4MWE4MzNkOWIwNDNjN2ZmZDYzNWE1OTg3ZjUzNjk3
MTE4MGQwHhcNMjQwNjEwMTIwNDM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwM2NmMzllNTcyMWY2MjE4ODYyNGQ5N2FmZTY0NzNjYWI2MGQ2NmY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAknAX4jEO6l91s5mKIUelEdRJKT9I
v8U+gXrEwnvbKrskqLGRF8DLZdbtw285ldmRDNzDJmr3Zv9awXQSj/Z9g5SzLBnC
77aBcpAeG4p2N5DHqN9Zs4wGfnWS+9qGZvuWYdXs8UtwIJw3qLbjG9oInjcF9Jr/
K526ja/loSdsvLCuB0HEhugVb22cdK/tw5QP6UpiYjL/x1ldJQ6edqcpuRaRE+IZ
ZhCbUL43sNpQLSFGJ0wQ6b3m/Du68yf+V4/bpWpp3xyiHtUuG+5At5+/TbW2g9tt
mqDBRZURkxUk+z0vJvZxQJt2eS9Lv/laccLjQYY8u+l/B5AC5bnHd5bn3QIDAQAB
o4IDQTCCAz0wHQYDVR0OBBYEFAPPOeVyH2IYhiTZev5kc8q2DWb5MB8GA1UdIwQY
MBaAFPDdgagz2bBDx//WNaWYf1NpcRgNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOE4yQnFEUFpzRVBIXzlZMXBaaF9VMmx4R0EwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS9hOGViZTQtZDBiMy00ZTdkLWFmMjUt
MDQ2ODA0MjQ4NmRjLzEvQTg4NTVYSWZZaGlHSk5sNl9tUnp5cllOWnZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS9hOGViZTQtZDBiMy00ZTdkLWFmMjUtMDQ2ODA0MjQ4NmRj
LzEvOE4yQnFEUFpzRVBIXzlZMXBaaF9VMmx4R0EwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBVQYIKwYBBQUHAQcBAf8EggFEMIIBQDCCATwEAgABMIIB
NDAMAwQAUoyHAwQBUoyIAwQAUoyOAwQBUoyQAwQAUoyTAwQAUoyVAwQAUoyXAwQB
UoyaAwQAUoydAwQAUoy1MAwDBABULqUDBABULqYDBABULq4DBABWJgIDBABWJiwD
BABWJi4DBABWJlsDBABWJp0DBAFWJs4DBABWJuADBABWJucDBABZdAADBABZdBID
BABZdCgDBABZdDcDBABZdDkDBABZdE8DBAFZdF4DBABZdGIDBABZdI4DBABZdJEw
DAMEAVl0wgMEAVl0xAMEAFl0xwMEAFl0yQMEAll0zAMEAVl02AMEAFl02wMEAFl0
3gMEAFl0+wMEAFl0/gMEAFl1BAMEAFl1IgMEAFl1gwMEAFl1vQMEAFl1vwMEAVl1
5gMEAFl19DAMAwQA2Qn7AwQB2Qn8MA0GCSqGSIb3DQEBCwUAA4IBAQAD600PW56D
I1K59OHw37B3P17CRGJojqzR1SXSlwBLNfAC1I+zuPCHUzx+p2WqLXhl9VHRnWgb
aSMIBEKaYsq3Kk6QIJ/5Uo9KEAxluWfs5iDKW00AY3GY4kpcmDv3asykziEyCrDd
KNSfD1trd36mUQOwpEEyap+ht3jZmWWzgxJmXPseuPHnW3gSkcOECoq2zvzGn4vP
AEMFdKDLHk2OKMD4I0VFu9d3y2f3Nqv5W1Uib4MdYwzipd/AF6jwNipHujJKkPmZ
2AbmFf8E3Q4xidG4pxUOObbGUkHulhHvlP+SOdsIHmkWyNi2qaRyV+98dh2zB11A
c21Cawh9gipc
-----END CERTIFICATE-----
Generated at Mon Jun 10 18:28:28 2024 by rpki-client on console-ams.rpki-client.org