Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/AP-09ETJefsH8Ta9QqPWYUU5PmU.roa
File: AP-09ETJefsH8Ta9QqPWYUU5PmU.roa (raw, json)
Hash identifier: aZO43Pn5PHTgAZzx/QahgkHeQnWRzCcr0di09ZAyuyk=
Subject key identifier: 00:FF:B4:F4:44:C9:79:FB:07:F1:36:BD:42:A3:D6:61:45:39:3E:65
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 018F61FEC17D513239D0BDD8DC0162FE8441
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/AP-09ETJefsH8Ta9QqPWYUU5PmU.roa
Signing time: Fri 10 May 2024 10:13:56 +0000
ROA not before: Fri 10 May 2024 10:13:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13194
IP address blocks: 82.140.129.0/24 maxlen: 24
84.15.0.0/16 maxlen: 24
84.15.223.0/24 maxlen: 24
84.46.139.0/24 maxlen: 24
84.46.204.0/24 maxlen: 24
84.46.207.0/24 maxlen: 24
86.38.1.0/24 maxlen: 24
86.38.34.0/24 maxlen: 24
86.38.41.0/24 maxlen: 24
86.38.52.0/24 maxlen: 24
86.38.62.0/24 maxlen: 24
86.38.64.0/18 maxlen: 24
86.38.72.0/24 maxlen: 24
86.38.73.0/24 maxlen: 24
86.38.74.0/24 maxlen: 24
86.38.75.0/24 maxlen: 24
86.38.81.0/24 maxlen: 24
86.38.84.0/24 maxlen: 24
86.38.97.0/24 maxlen: 24
86.38.152.0/24 maxlen: 24
86.38.153.0/24 maxlen: 24
86.38.215.0/24 maxlen: 24
86.38.228.0/24 maxlen: 24
86.38.230.0/24 maxlen: 24
86.38.237.0/24 maxlen: 24
86.38.245.0/24 maxlen: 24
89.116.124.0/24 maxlen: 24
89.116.129.0/24 maxlen: 24
89.116.143.0/24 maxlen: 24
89.116.151.0/24 maxlen: 24
89.116.155.0/24 maxlen: 24
89.116.160.0/24 maxlen: 24
89.116.162.0/24 maxlen: 24
89.116.174.0/24 maxlen: 24
89.116.176.0/24 maxlen: 24
89.116.178.0/24 maxlen: 24
89.116.232.0/24 maxlen: 24
89.116.235.0/24 maxlen: 24
89.116.238.0/24 maxlen: 24
89.116.240.0/24 maxlen: 24
89.116.245.0/24 maxlen: 24
89.116.249.0/24 maxlen: 24
89.117.10.0/24 maxlen: 24
89.117.14.0/24 maxlen: 24
89.117.69.0/24 maxlen: 24
89.117.92.0/24 maxlen: 24
89.117.93.0/24 maxlen: 24
89.117.125.0/24 maxlen: 24
89.117.127.0/24 maxlen: 24
89.117.138.0/24 maxlen: 24
89.117.141.0/24 maxlen: 24
89.117.156.0/24 maxlen: 24
89.117.165.0/24 maxlen: 24
89.117.220.0/24 maxlen: 24
89.117.221.0/24 maxlen: 24
89.117.223.0/24 maxlen: 24
89.117.225.0/24 maxlen: 24
89.117.243.0/24 maxlen: 24
89.117.247.0/24 maxlen: 24
89.117.248.0/23 maxlen: 24
89.117.255.0/24 maxlen: 24
185.189.154.0/24 maxlen: 24
213.226.128.0/18 maxlen: 24
213.226.161.0/24 maxlen: 24
213.252.192.0/20 maxlen: 20
213.252.194.0/24 maxlen: 24
213.252.220.0/24 maxlen: 24
213.252.223.0/24 maxlen: 24
213.252.224.0/22 maxlen: 22
213.252.234.0/23 maxlen: 23
213.252.236.0/23 maxlen: 23
213.252.252.0/24 maxlen: 24
213.252.254.0/24 maxlen: 24
217.9.248.0/23 maxlen: 23
2a00:f500::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 11 Jun 2024 10:40:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:61:fe:c1:7d:51:32:39:d0:bd:d8:dc:01:62:fe:84:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: May 10 10:13:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=00ffb4f444c979fb07f136bd42a3d66145393e65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e6:62:ca:95:1b:43:f1:ac:96:80:65:47:ed:
57:85:d2:02:8c:89:0c:6a:be:42:af:2a:e1:26:29:
b4:ef:6e:6b:11:c4:cf:b1:74:49:b6:4b:4b:fe:ce:
78:00:ea:92:9e:83:29:ef:72:de:6d:d4:e4:85:51:
d1:dd:65:c5:61:0a:3f:7d:12:d0:bd:1f:a7:bc:c8:
99:dc:65:fe:3d:16:d1:12:ad:53:cd:48:47:b8:1f:
b1:3f:9d:d0:ae:09:9a:54:74:8a:3a:a4:3a:7f:89:
a6:66:df:a1:93:cd:a7:bf:36:a2:8c:39:1c:4e:7b:
7c:8e:ff:f3:cc:5d:15:19:f7:40:cd:82:21:ba:7e:
92:70:5f:67:ee:f2:51:a8:0f:4a:28:e8:c8:cc:68:
4f:bc:c4:94:84:1c:b9:a5:71:7a:10:8d:fa:10:05:
96:f9:f1:86:47:f7:f6:af:ca:f6:24:fb:cd:d3:d4:
11:86:82:c4:f0:69:6c:34:70:b3:02:95:33:aa:f8:
5c:06:7a:b1:5f:5a:a6:04:74:8d:12:07:03:38:cc:
9e:2b:d4:6e:c9:e0:2f:f5:64:dc:c6:d7:28:6b:84:
35:13:e4:0a:89:cb:79:1a:35:c2:be:c3:7b:89:8c:
b1:6f:d8:ef:93:9b:bc:90:5b:78:09:46:24:41:69:
b2:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:FF:B4:F4:44:C9:79:FB:07:F1:36:BD:42:A3:D6:61:45:39:3E:65
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/AP-09ETJefsH8Ta9QqPWYUU5PmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.129.0/24
84.15.0.0/16
84.46.139.0/24
84.46.204.0/24
84.46.207.0/24
86.38.1.0/24
86.38.34.0/24
86.38.41.0/24
86.38.52.0/24
86.38.62.0/24
86.38.64.0/18
86.38.152.0/23
86.38.215.0/24
86.38.228.0/24
86.38.230.0/24
86.38.237.0/24
86.38.245.0/24
89.116.124.0/24
89.116.129.0/24
89.116.143.0/24
89.116.151.0/24
89.116.155.0/24
89.116.160.0/24
89.116.162.0/24
89.116.174.0/24
89.116.176.0/24
89.116.178.0/24
89.116.232.0/24
89.116.235.0/24
89.116.238.0/24
89.116.240.0/24
89.116.245.0/24
89.116.249.0/24
89.117.10.0/24
89.117.14.0/24
89.117.69.0/24
89.117.92.0/23
89.117.125.0/24
89.117.127.0/24
89.117.138.0/24
89.117.141.0/24
89.117.156.0/24
89.117.165.0/24
89.117.220.0/23
89.117.223.0/24
89.117.225.0/24
89.117.243.0/24
89.117.247.0-89.117.249.255
89.117.255.0/24
185.189.154.0/24
213.226.128.0/18
213.252.192.0/20
213.252.220.0/24
213.252.223.0-213.252.227.255
213.252.234.0-213.252.237.255
213.252.252.0/24
213.252.254.0/24
217.9.248.0/23
IPv6:
2a00:f500::/29
Signature Algorithm: sha256WithRSAEncryption
53:98:c3:87:fd:f6:22:d8:a0:e5:1c:d9:1d:10:6a:c5:ce:45:
fb:80:5e:4c:9f:00:38:e8:84:43:01:e8:dc:8d:e8:43:4a:15:
57:1a:5d:07:d1:19:fe:37:38:4a:6a:35:99:a1:79:44:d3:be:
30:d7:82:09:8e:38:73:77:27:35:4a:8e:64:38:95:7d:b5:b6:
1c:6f:84:34:cb:6d:88:f6:aa:9f:84:4a:0a:a5:af:64:db:f2:
62:5e:88:d5:e1:61:1b:fc:63:ff:77:70:2b:8b:17:fc:c3:21:
21:02:ea:b2:85:a4:e0:cb:15:e8:98:7b:e4:48:40:47:89:44:
9a:48:cb:c9:c1:a6:79:be:c9:a1:c1:04:55:20:eb:d5:70:d8:
ee:04:07:b7:fa:f4:b1:bc:03:86:7c:24:8f:54:6a:44:6b:e0:
ac:35:dc:93:47:3e:93:eb:2e:56:ca:82:db:cb:d5:db:4a:73:
99:57:46:bd:21:61:fb:9a:18:21:b6:44:a8:a3:19:75:2f:5d:
76:1f:c6:8b:0f:54:d5:87:3c:ea:62:f3:8b:6f:a6:3e:f5:fc:
ac:f6:49:8f:44:11:b1:e7:80:81:22:f1:1e:ec:72:f0:e9:ad:
a6:ce:8c:f5:01:9b:82:fa:19:95:cd:d9:d7:89:b4:0e:67:9d:
d2:cb:0d:80
-----BEGIN CERTIFICATE-----
MIIGgzCCBWugAwIBAgISAY9h/sF9UTI50L3Y3AFi/oRBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwZGQ4MWE4MzNkOWIwNDNjN2ZmZDYzNWE1OTg3ZjUzNjk3
MTE4MGQwHhcNMjQwNTEwMTAxMzU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMGZmYjRmNDQ0Yzk3OWZiMDdmMTM2YmQ0MmEzZDY2MTQ1MzkzZTY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAleZiypUbQ/GsloBlR+1XhdICjIkM
ar5CryrhJim0725rEcTPsXRJtktL/s54AOqSnoMp73LebdTkhVHR3WXFYQo/fRLQ
vR+nvMiZ3GX+PRbREq1TzUhHuB+xP53QrgmaVHSKOqQ6f4mmZt+hk82nvzaijDkc
Tnt8jv/zzF0VGfdAzYIhun6ScF9n7vJRqA9KKOjIzGhPvMSUhBy5pXF6EI36EAWW
+fGGR/f2r8r2JPvN09QRhoLE8GlsNHCzApUzqvhcBnqxX1qmBHSNEgcDOMyeK9Ru
yeAv9WTcxtcoa4Q1E+QKict5GjXCvsN7iYyxb9jvk5u8kFt4CUYkQWmyjQIDAQAB
o4IDjzCCA4swHQYDVR0OBBYEFAD/tPREyXn7B/E2vUKj1mFFOT5lMB8GA1UdIwQY
MBaAFPDdgagz2bBDx//WNaWYf1NpcRgNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOE4yQnFEUFpzRVBIXzlZMXBaaF9VMmx4R0EwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS9hOGViZTQtZDBiMy00ZTdkLWFmMjUt
MDQ2ODA0MjQ4NmRjLzEvQVAtMDlFVEplZnNIOFRhOVFxUFdZVVU1UG1VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS9hOGViZTQtZDBiMy00ZTdkLWFmMjUtMDQ2ODA0MjQ4NmRj
LzEvOE4yQnFEUFpzRVBIXzlZMXBaaF9VMmx4R0EwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBowYIKwYBBQUHAQcBAf8EggGSMIIBjjCCAXsEAgABMIIB
cwMEAFKMgQMDAFQPAwQAVC6LAwQAVC7MAwQAVC7PAwQAViYBAwQAViYiAwQAViYp
AwQAViY0AwQAViY+AwQGViZAAwQBViaYAwQAVibXAwQAVibkAwQAVibmAwQAVibt
AwQAVib1AwQAWXR8AwQAWXSBAwQAWXSPAwQAWXSXAwQAWXSbAwQAWXSgAwQAWXSi
AwQAWXSuAwQAWXSwAwQAWXSyAwQAWXToAwQAWXTrAwQAWXTuAwQAWXTwAwQAWXT1
AwQAWXT5AwQAWXUKAwQAWXUOAwQAWXVFAwQBWXVcAwQAWXV9AwQAWXV/AwQAWXWK
AwQAWXWNAwQAWXWcAwQAWXWlAwQBWXXcAwQAWXXfAwQAWXXhAwQAWXXzMAwDBABZ
dfcDBAFZdfgDBABZdf8DBAC5vZoDBAbV4oADBATV/MADBADV/NwwDAMEANX83wME
AtX84DAMAwQB1fzqAwQB1fzsAwQA1fz8AwQA1fz+AwQB2Qn4MA0EAgACMAcDBQMq
APUAMA0GCSqGSIb3DQEBCwUAA4IBAQBTmMOH/fYi2KDlHNkdEGrFzkX7gF5MnwA4
6IRDAejcjehDShVXGl0H0Rn+NzhKajWZoXlE074w14IJjjhzdyc1So5kOJV9tbYc
b4Q0y22I9qqfhEoKpa9k2/JiXojV4WEb/GP/d3Arixf8wyEhAuqyhaTgyxXomHvk
SEBHiUSaSMvJwaZ5vsmhwQRVIOvVcNjuBAe3+vSxvAOGfCSPVGpEa+CsNdyTRz6T
6y5WyoLby9XbSnOZV0a9IWH7mhghtkSooxl1L112H8aLD1TVhzzqYvOLb6Y+9fys
9kmPRBGx54CBIvEe7HLw6a2mzoz1AZuC+hmVzdnXibQOZ53Syw2A
-----END CERTIFICATE-----
Generated at Tue Jun 11 13:12:49 2024 by rpki-client on console-fra.rpki-client.org