Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/MfBTxa5Z1HGt4nS5PazlUEgX0eM.roa
File: MfBTxa5Z1HGt4nS5PazlUEgX0eM.roa (raw, json)
Hash identifier: VRe7q1a2jw33KIVDNtP3uxPlESCNTK32r+uW5+YbC6I=
Subject key identifier: 31:F0:53:C5:AE:59:D4:71:AD:E2:74:B9:3D:AC:E5:50:48:17:D1:E3
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 0187A3CDC2ADBAEF81066A1386709CCF7974
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/MfBTxa5Z1HGt4nS5PazlUEgX0eM.roa
Signing time: Fri 21 Apr 2023 12:33:03 +0000
ROA not before: Fri 21 Apr 2023 12:33:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15557
IP address blocks: 80.124.0.0/16 maxlen: 16
80.70.32.0/20 maxlen: 20
217.19.192.0/20 maxlen: 20
88.141.0.0/16 maxlen: 16
212.198.0.0/16 maxlen: 16
91.151.112.0/20 maxlen: 20
213.144.192.0/19 maxlen: 19
217.70.80.0/20 maxlen: 20
79.80.0.0/12 maxlen: 24
185.147.204.0/22 maxlen: 22
77.144.0.0/12 maxlen: 24
79.174.192.0/18 maxlen: 18
195.3.0.0/18 maxlen: 18
77.137.196.0/22 maxlen: 24
85.168.0.0/14 maxlen: 14
77.137.200.0/21 maxlen: 24
77.137.208.0/20 maxlen: 24
79.174.232.0/21 maxlen: 21
81.185.0.0/16 maxlen: 24
194.6.128.0/19 maxlen: 19
195.146.192.0/19 maxlen: 19
84.96.0.0/13 maxlen: 13
77.136.172.0/24 maxlen: 24
88.140.0.0/16 maxlen: 16
77.136.173.0/24 maxlen: 24
77.136.174.0/24 maxlen: 24
87.231.0.0/16 maxlen: 16
62.39.0.0/16 maxlen: 24
77.140.0.0/14 maxlen: 24
89.2.0.0/15 maxlen: 15
62.106.128.0/17 maxlen: 24
217.112.224.0/20 maxlen: 20
194.183.192.0/19 maxlen: 19
62.62.128.0/17 maxlen: 24
141.170.216.0/21 maxlen: 21
212.39.128.0/19 maxlen: 19
213.245.0.0/16 maxlen: 16
86.66.127.0/24 maxlen: 24
62.241.64.0/18 maxlen: 24
81.220.0.0/16 maxlen: 16
213.203.64.0/18 maxlen: 24
89.156.0.0/14 maxlen: 14
213.169.160.0/19 maxlen: 19
93.0.0.0/11 maxlen: 11
109.0.0.0/11 maxlen: 11
81.1.0.0/18 maxlen: 18
81.65.0.0/16 maxlen: 16
84.55.128.0/18 maxlen: 18
62.129.160.0/19 maxlen: 24
78.112.0.0/12 maxlen: 24
62.8.0.0/19 maxlen: 19
77.136.0.0/16 maxlen: 24
46.35.0.0/19 maxlen: 19
88.136.0.0/14 maxlen: 14
37.64.0.0/13 maxlen: 24
77.128.0.0/13 maxlen: 24
80.236.0.0/17 maxlen: 17
212.94.160.0/19 maxlen: 19
81.185.160.0/21 maxlen: 21
81.185.160.0/20 maxlen: 20
80.125.0.0/16 maxlen: 16
81.185.168.0/21 maxlen: 21
83.141.128.0/17 maxlen: 17
84.205.128.0/19 maxlen: 19
77.134.204.0/24 maxlen: 24
212.30.96.0/19 maxlen: 24
84.205.144.0/20 maxlen: 20
80.118.4.0/24 maxlen: 24
81.64.0.0/14 maxlen: 14
213.128.32.0/19 maxlen: 19
80.118.0.0/15 maxlen: 24
194.242.176.0/20 maxlen: 20
92.88.0.0/13 maxlen: 13
195.7.96.0/19 maxlen: 19
91.68.0.0/22 maxlen: 22
195.132.0.0/16 maxlen: 16
85.68.0.0/15 maxlen: 15
195.98.96.0/19 maxlen: 19
213.223.0.0/16 maxlen: 16
91.68.0.0/14 maxlen: 14
84.4.0.0/14 maxlen: 14
77.192.0.0/12 maxlen: 24
86.64.0.0/12 maxlen: 12
82.216.0.0/16 maxlen: 16
195.115.0.0/16 maxlen: 16
78.155.128.0/19 maxlen: 19
88.142.0.0/16 maxlen: 16
2a02:8400::/48 maxlen: 48
2a02:8400:14::/48 maxlen: 48
2a00:7180::/32 maxlen: 32
2a02:8440:5000::/36 maxlen: 36
2a02:8400:11::/48 maxlen: 48
2a02:8400::/25 maxlen: 25
2a02:8400:12::/48 maxlen: 48
2a02:8400:13::/48 maxlen: 48
2a00:6200::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 21 Apr 2023 12:45:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a3:cd:c2:ad:ba:ef:81:06:6a:13:86:70:9c:cf:79:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Apr 21 12:33:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31f053c5ae59d471ade274b93dace5504817d1e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b7:ab:6b:2a:87:eb:4d:c4:62:e3:1c:d9:60:
d2:45:9d:ed:38:f6:fa:0b:6f:50:72:dc:49:38:41:
00:02:37:45:6b:07:a9:c1:85:78:e0:01:aa:52:c4:
21:de:05:b8:8c:90:bf:1c:2d:ed:e6:f0:d7:ed:68:
9a:34:01:d4:59:34:52:c3:9c:f6:9e:f5:e6:57:c2:
4e:ba:81:b7:fe:c6:6f:43:f6:65:da:fe:49:71:44:
45:f8:16:2b:66:19:f6:f5:9a:b4:9a:53:83:7a:8e:
fc:51:6e:00:e5:b4:ae:39:7e:e6:8e:35:a4:66:92:
25:26:54:03:ce:be:59:82:0d:f5:49:27:47:65:f2:
bf:e7:a5:be:4c:e9:e0:24:07:db:4e:31:d9:10:8e:
eb:91:72:a1:de:3e:8b:f8:ea:bb:46:0c:8c:11:c7:
b1:77:5e:67:33:53:f0:bf:38:6d:9f:14:93:b6:b9:
ab:4c:71:92:bd:15:bb:43:b6:4c:18:5c:6d:b6:93:
41:e3:dd:2b:a6:62:4c:69:29:b7:e5:de:30:ad:19:
21:4f:8e:38:83:7d:fd:f4:47:f0:19:df:73:38:c7:
06:91:5a:61:9c:82:72:8b:f1:24:d0:8b:b4:93:e8:
d7:da:1e:04:a5:b4:47:f1:51:a4:03:e6:36:b0:83:
b9:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:F0:53:C5:AE:59:D4:71:AD:E2:74:B9:3D:AC:E5:50:48:17:D1:E3
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/MfBTxa5Z1HGt4nS5PazlUEgX0eM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.64.0.0/13
46.35.0.0/19
62.8.0.0/19
62.39.0.0/16
62.62.128.0/17
62.106.128.0/17
62.129.160.0/19
62.241.64.0/18
77.128.0.0-77.136.255.255
77.137.196.0-77.137.223.255
77.140.0.0-77.159.255.255
77.192.0.0/12
78.112.0.0/12
78.155.128.0/19
79.80.0.0/12
79.174.192.0/18
80.70.32.0/20
80.118.0.0/15
80.124.0.0/15
80.236.0.0/17
81.1.0.0/18
81.64.0.0/14
81.185.0.0/16
81.220.0.0/16
82.216.0.0/16
83.141.128.0/17
84.4.0.0/14
84.55.128.0/18
84.96.0.0/13
84.205.128.0/19
85.68.0.0/15
85.168.0.0/14
86.64.0.0/12
87.231.0.0/16
88.136.0.0-88.142.255.255
89.2.0.0/15
89.156.0.0/14
91.68.0.0/14
91.151.112.0/20
92.88.0.0/13
93.0.0.0/11
109.0.0.0/11
141.170.216.0/21
185.147.204.0/22
194.6.128.0/19
194.183.192.0/19
194.242.176.0/20
195.3.0.0/18
195.7.96.0/19
195.98.96.0/19
195.115.0.0/16
195.132.0.0/16
195.146.192.0/19
212.30.96.0/19
212.39.128.0/19
212.94.160.0/19
212.198.0.0/16
213.128.32.0/19
213.144.192.0/19
213.169.160.0/19
213.203.64.0/18
213.223.0.0/16
213.245.0.0/16
217.19.192.0/20
217.70.80.0/20
217.112.224.0/20
IPv6:
2a00:6200::/29
2a00:7180::/32
2a02:8400::/25
Signature Algorithm: sha256WithRSAEncryption
8b:95:e5:f8:0e:c2:c9:83:0e:c4:e1:06:c1:9f:0d:8d:c3:a6:
1b:fc:2d:b2:2f:03:0a:7f:dd:71:63:74:c9:3e:5f:fb:7c:7d:
32:43:3a:41:32:38:b5:8a:11:93:74:55:9a:9d:87:21:3c:f5:
86:d2:cb:31:41:b1:e8:e4:7c:63:33:eb:76:db:2e:79:7f:47:
2b:9b:10:49:20:bf:54:3c:d5:9b:48:8b:77:3e:cc:a9:cc:d3:
1f:45:d6:f1:2f:d4:a7:42:3c:dd:f0:d7:e6:eb:c4:c4:f1:76:
b7:ba:89:db:c0:f2:30:bc:c8:ed:f6:25:b7:d3:70:8f:e9:de:
4e:e5:cd:91:ed:62:d7:fd:08:fa:fa:24:fc:ad:75:e8:64:7e:
0b:9e:97:95:67:ca:33:0d:05:17:70:d3:33:5f:93:84:d3:70:
1e:98:82:a7:b0:c0:27:af:ff:e1:b3:ab:8e:65:6a:2d:b9:ca:
45:77:45:8c:95:47:d0:25:0a:79:74:91:2e:0d:a8:f0:de:83:
05:4f:89:3b:c8:68:c1:07:61:e4:e7:58:d9:f0:20:3e:95:be:
40:ed:52:74:cd:97:36:a5:a1:b4:36:bd:8d:05:42:af:57:d7:
3b:d3:ba:a9:9b:f3:3c:d2:a8:38:36:e9:db:29:60:fc:52:5c:
c8:06:d0:82
-----BEGIN CERTIFICATE-----
MIIGqDCCBZCgAwIBAgISAYejzcKtuu+BBmoThnCcz3l0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwZWY1ZmJiZmNhN2E5M2NmZWU5NjVlZWI2YmRlZTZmYjQz
YzQwM2UwHhcNMjMwNDIxMTIzMzAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMWYwNTNjNWFlNTlkNDcxYWRlMjc0YjkzZGFjZTU1MDQ4MTdkMWUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq7erayqH603EYuMc2WDSRZ3tOPb6
C29QctxJOEEAAjdFawepwYV44AGqUsQh3gW4jJC/HC3t5vDX7WiaNAHUWTRSw5z2
nvXmV8JOuoG3/sZvQ/Zl2v5JcURF+BYrZhn29Zq0mlODeo78UW4A5bSuOX7mjjWk
ZpIlJlQDzr5Zgg31SSdHZfK/56W+TOngJAfbTjHZEI7rkXKh3j6L+Oq7RgyMEcex
d15nM1PwvzhtnxSTtrmrTHGSvRW7Q7ZMGFxttpNB490rpmJMaSm35d4wrRkhT444
g3399EfwGd9zOMcGkVphnIJyi/Ek0Iu0k+jX2h4EpbRH8VGkA+Y2sIO5IQIDAQAB
o4IDtDCCA7AwHQYDVR0OBBYEFDHwU8WuWdRxreJ0uT2s5VBIF9HjMB8GA1UdIwQY
MBaAFKDvX7v8p6k8/ull7ra97m+0PEA+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb085ZnVfeW5xVHotNldYdXRyM3ViN1E4UUQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9mZTkxNWMtYmY3MC00NjAyLThhM2Mt
MDI5MmIwMjAxNTBhLzEvTWZCVHhhNVoxSEd0NG5TNVBhemxVRWdYMGVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi9mZTkxNWMtYmY3MC00NjAyLThhM2MtMDI5MmIwMjAxNTBh
LzEvb085ZnVfeW5xVHotNldYdXRyM3ViN1E4UUQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIByAYIKwYBBQUHAQcBAf8EggG3MIIBszCCAZIEAgABMIIB
igMDAyVAAwQFLiMAAwQFPggAAwMAPicDBAc+PoADBAc+aoADBAU+gaADBAY+8UAw
CgMDB02AAwMATYgwDAMEAk2JxAMEBU2JwDAKAwMCTYwDAwVNgAMDBE3AAwMETnAD
BAVOm4ADAwRPUAMEBk+uwAMEBFBGIAMDAVB2AwMBUHwDBAdQ7AADBAZRAQADAwJR
QAMDAFG5AwMAUdwDAwBS2AMEB1ONgAMDAlQEAwQGVDeAAwMDVGADBAVUzYADAwFV
RAMDAlWoAwMEVkADAwBX5zAKAwMDWIgDAwBYjgMDAVkCAwMCWZwDAwJbRAMEBFuX
cAMDA1xYAwMFXQADAwVtAAMEA42q2AMEArmTzAMEBcIGgAMEBcK3wAMEBMLysAME
BsMDAAMEBcMHYAMEBcNiYAMDAMNzAwMAw4QDBAXDksADBAXUHmADBAXUJ4ADBAXU
XqADAwDUxgMEBdWAIAMEBdWQwAMEBdWpoAMEBtXLQAMDANXfAwMA1fUDBATZE8AD
BATZRlADBATZcOAwGwQCAAIwFQMFAyoAYgADBQAqAHGAAwUHKgKEADANBgkqhkiG
9w0BAQsFAAOCAQEAi5Xl+A7CyYMOxOEGwZ8NjcOmG/wtsi8DCn/dcWN0yT5f+3x9
MkM6QTI4tYoRk3RVmp2HITz1htLLMUGx6OR8YzPrdtsueX9HK5sQSSC/VDzVm0iL
dz7MqczTH0XW8S/Up0I83fDX5uvExPF2t7qJ28DyMLzI7fYlt9Nwj+neTuXNke1i
1/0I+vok/K116GR+C56XlWfKMw0FF3DTM1+ThNNwHpiCp7DAJ6//4bOrjmVqLbnK
RXdFjJVH0CUKeXSRLg2o8N6DBU+JO8howQdh5OdY2fAgPpW+QO1SdM2XNqWhtDa9
jQVCr1fXO9O6qZvzPNKoODbp2ylg/FJcyAbQgg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:50 2024 by rpki-client on console-ams.rpki-client.org