Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/QT36uQSG5adv2UO7PwGkaLCDrsY.roa
File: QT36uQSG5adv2UO7PwGkaLCDrsY.roa (raw, json)
Hash identifier: c2SwlRlC8MGknzDNabSUSgsilasO5o5j48JsVP6ViX8=
Subject key identifier: 41:3D:FA:B9:04:86:E5:A7:6F:D9:43:BB:3F:01:A4:68:B0:83:AE:C6
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 018736605093E17C0B6734AD9B16FE269E32
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/QT36uQSG5adv2UO7PwGkaLCDrsY.roa
Signing time: Fri 31 Mar 2023 06:34:54 +0000
ROA not before: Fri 31 Mar 2023 06:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15557
IP address blocks: 80.124.0.0/16 maxlen: 16
80.70.32.0/20 maxlen: 20
217.19.192.0/20 maxlen: 20
88.141.0.0/16 maxlen: 16
212.198.0.0/16 maxlen: 16
91.151.112.0/20 maxlen: 20
213.144.192.0/19 maxlen: 19
217.70.80.0/20 maxlen: 20
79.80.0.0/12 maxlen: 12
185.147.204.0/22 maxlen: 22
77.144.0.0/12 maxlen: 12
79.174.192.0/18 maxlen: 18
195.3.0.0/18 maxlen: 18
77.137.196.0/22 maxlen: 22
85.168.0.0/14 maxlen: 14
77.137.200.0/21 maxlen: 21
77.137.208.0/20 maxlen: 20
79.174.232.0/21 maxlen: 21
81.185.0.0/16 maxlen: 24
194.6.128.0/19 maxlen: 19
195.146.192.0/19 maxlen: 19
84.96.0.0/13 maxlen: 13
77.136.172.0/24 maxlen: 24
88.140.0.0/16 maxlen: 16
77.136.173.0/24 maxlen: 24
77.136.174.0/24 maxlen: 24
87.231.0.0/16 maxlen: 16
62.39.0.0/16 maxlen: 16
77.140.0.0/14 maxlen: 14
89.2.0.0/15 maxlen: 15
62.106.128.0/17 maxlen: 17
217.112.224.0/20 maxlen: 20
194.183.192.0/19 maxlen: 19
62.62.128.0/17 maxlen: 24
141.170.216.0/21 maxlen: 21
212.39.128.0/19 maxlen: 19
213.245.0.0/16 maxlen: 16
86.66.127.0/24 maxlen: 24
62.241.64.0/18 maxlen: 18
81.220.0.0/16 maxlen: 16
213.203.64.0/18 maxlen: 24
89.156.0.0/14 maxlen: 14
213.169.160.0/19 maxlen: 19
109.0.0.0/11 maxlen: 11
93.0.0.0/11 maxlen: 11
81.1.0.0/18 maxlen: 18
81.65.0.0/16 maxlen: 16
84.55.128.0/18 maxlen: 18
62.129.160.0/19 maxlen: 19
78.112.0.0/12 maxlen: 12
62.8.0.0/19 maxlen: 19
77.136.0.0/16 maxlen: 16
46.35.0.0/19 maxlen: 19
88.136.0.0/14 maxlen: 14
37.64.0.0/13 maxlen: 13
77.128.0.0/13 maxlen: 13
80.236.0.0/17 maxlen: 17
212.94.160.0/19 maxlen: 19
81.185.160.0/20 maxlen: 20
81.185.160.0/21 maxlen: 21
80.125.0.0/16 maxlen: 16
81.185.168.0/21 maxlen: 21
83.141.128.0/17 maxlen: 17
84.205.128.0/19 maxlen: 19
77.134.204.0/24 maxlen: 24
212.30.96.0/19 maxlen: 24
84.205.144.0/20 maxlen: 20
80.118.4.0/24 maxlen: 24
81.64.0.0/14 maxlen: 14
213.128.32.0/19 maxlen: 19
80.118.0.0/15 maxlen: 15
194.242.176.0/20 maxlen: 20
92.88.0.0/13 maxlen: 13
195.7.96.0/19 maxlen: 19
91.68.0.0/22 maxlen: 22
195.132.0.0/16 maxlen: 16
85.68.0.0/15 maxlen: 15
195.98.96.0/19 maxlen: 19
213.223.0.0/16 maxlen: 16
91.68.0.0/14 maxlen: 14
84.4.0.0/14 maxlen: 14
77.192.0.0/12 maxlen: 12
86.64.0.0/12 maxlen: 12
82.216.0.0/16 maxlen: 16
195.115.0.0/16 maxlen: 16
78.155.128.0/19 maxlen: 19
88.142.0.0/16 maxlen: 16
2a02:8400::/48 maxlen: 48
2a02:8400:14::/48 maxlen: 48
2a00:7180::/32 maxlen: 32
2a02:8440:5000::/36 maxlen: 36
2a02:8400:11::/48 maxlen: 48
2a02:8400::/25 maxlen: 25
2a02:8400:12::/48 maxlen: 48
2a02:8400:13::/48 maxlen: 48
2a00:6200::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 20 Apr 2023 17:28:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:36:60:50:93:e1:7c:0b:67:34:ad:9b:16:fe:26:9e:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Mar 31 06:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=413dfab90486e5a76fd943bb3f01a468b083aec6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:01:27:0b:6a:a8:2d:83:8a:18:86:35:9c:7e:
3f:e4:62:ad:21:02:1f:4d:74:87:12:61:a5:07:63:
90:a5:75:09:b5:5c:4d:3f:d3:4f:fd:cb:81:52:63:
98:80:5b:72:ca:c4:85:70:62:85:75:57:b0:e2:1b:
d7:58:cb:4f:c2:0c:1a:64:ff:d0:14:d5:4b:36:4e:
ba:f4:c6:da:84:59:85:19:15:d4:84:21:f3:5e:dc:
af:14:e4:5f:8c:4c:e5:47:58:38:cd:4d:92:ee:97:
21:66:40:81:0f:cd:0a:5d:cc:09:2b:2c:f4:b3:a8:
19:6b:c9:2f:4d:be:c6:42:ac:e9:77:e9:f8:a1:8f:
ed:86:36:54:e9:be:f4:ae:4e:af:76:84:41:cb:df:
f3:02:bb:27:61:51:5d:6c:44:64:b5:90:99:e2:4b:
d1:8a:3a:61:f7:51:03:fb:9e:da:0f:5a:15:fe:5e:
08:71:29:4a:ff:e5:c4:b5:69:4c:c4:5a:4c:3b:4f:
90:21:ad:c5:c3:9b:24:d4:c4:a2:d5:f8:28:cb:b0:
f5:9a:11:52:58:57:57:4d:e4:fb:4b:26:37:10:7f:
3f:e5:32:df:9c:70:46:bd:45:35:2a:56:fa:5f:31:
d3:4f:2f:ac:af:9b:de:55:1a:bf:1b:a4:0a:cf:8d:
47:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:3D:FA:B9:04:86:E5:A7:6F:D9:43:BB:3F:01:A4:68:B0:83:AE:C6
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/QT36uQSG5adv2UO7PwGkaLCDrsY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.64.0.0/13
46.35.0.0/19
62.8.0.0/19
62.39.0.0/16
62.62.128.0/17
62.106.128.0/17
62.129.160.0/19
62.241.64.0/18
77.128.0.0-77.136.255.255
77.137.196.0-77.137.223.255
77.140.0.0-77.159.255.255
77.192.0.0/12
78.112.0.0/12
78.155.128.0/19
79.80.0.0/12
79.174.192.0/18
80.70.32.0/20
80.118.0.0/15
80.124.0.0/15
80.236.0.0/17
81.1.0.0/18
81.64.0.0/14
81.185.0.0/16
81.220.0.0/16
82.216.0.0/16
83.141.128.0/17
84.4.0.0/14
84.55.128.0/18
84.96.0.0/13
84.205.128.0/19
85.68.0.0/15
85.168.0.0/14
86.64.0.0/12
87.231.0.0/16
88.136.0.0-88.142.255.255
89.2.0.0/15
89.156.0.0/14
91.68.0.0/14
91.151.112.0/20
92.88.0.0/13
93.0.0.0/11
109.0.0.0/11
141.170.216.0/21
185.147.204.0/22
194.6.128.0/19
194.183.192.0/19
194.242.176.0/20
195.3.0.0/18
195.7.96.0/19
195.98.96.0/19
195.115.0.0/16
195.132.0.0/16
195.146.192.0/19
212.30.96.0/19
212.39.128.0/19
212.94.160.0/19
212.198.0.0/16
213.128.32.0/19
213.144.192.0/19
213.169.160.0/19
213.203.64.0/18
213.223.0.0/16
213.245.0.0/16
217.19.192.0/20
217.70.80.0/20
217.112.224.0/20
IPv6:
2a00:6200::/29
2a00:7180::/32
2a02:8400::/25
Signature Algorithm: sha256WithRSAEncryption
4a:27:dc:70:7f:51:e5:fa:b8:3b:64:5e:70:0d:d2:29:51:5f:
9a:a6:15:da:4d:f8:c5:e8:5b:a6:35:fd:15:f0:24:67:09:c7:
ed:f4:9e:03:2e:c2:ca:98:e7:0e:e7:16:b9:8d:10:df:4c:a5:
57:f9:d2:71:55:ce:41:96:cf:73:60:8d:5e:65:39:18:f4:37:
ce:be:9a:0b:e9:c9:ab:48:b8:b3:c9:27:b2:20:78:2b:cb:fc:
c7:0a:28:8a:f7:c8:95:84:55:36:7a:b6:2d:90:a1:65:98:5b:
0e:cf:96:3c:fc:66:87:57:d0:48:c4:b8:b2:79:08:e5:69:7a:
c7:c8:30:81:5b:9f:2b:24:81:bf:b3:9a:04:b1:c3:a7:e8:4a:
52:fb:2f:39:50:f8:f2:88:08:93:e6:0c:59:19:45:72:66:93:
0f:c3:b5:4e:cd:1b:86:ed:1d:63:f6:89:32:f3:6c:a7:43:7a:
17:06:d9:07:bb:ab:2c:5e:e1:f6:28:ba:b7:38:c5:bd:8c:ed:
72:1c:18:1d:1a:f6:09:45:85:a1:42:85:7e:10:f6:5c:cf:b1:
8e:c6:16:c0:b9:66:c5:e2:28:a0:ac:b6:d9:93:93:32:28:80:
2e:e7:b5:62:41:3c:b3:ee:16:f5:93:45:88:1b:04:a3:6d:a3:
aa:f9:3b:2d
-----BEGIN CERTIFICATE-----
MIIGqDCCBZCgAwIBAgISAYc2YFCT4XwLZzStmxb+Jp4yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwZWY1ZmJiZmNhN2E5M2NmZWU5NjVlZWI2YmRlZTZmYjQz
YzQwM2UwHhcNMjMwMzMxMDYzNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MTNkZmFiOTA0ODZlNWE3NmZkOTQzYmIzZjAxYTQ2OGIwODNhZWM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArQEnC2qoLYOKGIY1nH4/5GKtIQIf
TXSHEmGlB2OQpXUJtVxNP9NP/cuBUmOYgFtyysSFcGKFdVew4hvXWMtPwgwaZP/Q
FNVLNk669MbahFmFGRXUhCHzXtyvFORfjEzlR1g4zU2S7pchZkCBD80KXcwJKyz0
s6gZa8kvTb7GQqzpd+n4oY/thjZU6b70rk6vdoRBy9/zArsnYVFdbERktZCZ4kvR
ijph91ED+57aD1oV/l4IcSlK/+XEtWlMxFpMO0+QIa3Fw5sk1MSi1fgoy7D1mhFS
WFdXTeT7SyY3EH8/5TLfnHBGvUU1Klb6XzHTTy+sr5veVRq/G6QKz41HBwIDAQAB
o4IDtDCCA7AwHQYDVR0OBBYEFEE9+rkEhuWnb9lDuz8BpGiwg67GMB8GA1UdIwQY
MBaAFKDvX7v8p6k8/ull7ra97m+0PEA+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb085ZnVfeW5xVHotNldYdXRyM3ViN1E4UUQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9mZTkxNWMtYmY3MC00NjAyLThhM2Mt
MDI5MmIwMjAxNTBhLzEvUVQzNnVRU0c1YWR2MlVPN1B3R2thTENEcnNZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi9mZTkxNWMtYmY3MC00NjAyLThhM2MtMDI5MmIwMjAxNTBh
LzEvb085ZnVfeW5xVHotNldYdXRyM3ViN1E4UUQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIByAYIKwYBBQUHAQcBAf8EggG3MIIBszCCAZIEAgABMIIB
igMDAyVAAwQFLiMAAwQFPggAAwMAPicDBAc+PoADBAc+aoADBAU+gaADBAY+8UAw
CgMDB02AAwMATYgwDAMEAk2JxAMEBU2JwDAKAwMCTYwDAwVNgAMDBE3AAwMETnAD
BAVOm4ADAwRPUAMEBk+uwAMEBFBGIAMDAVB2AwMBUHwDBAdQ7AADBAZRAQADAwJR
QAMDAFG5AwMAUdwDAwBS2AMEB1ONgAMDAlQEAwQGVDeAAwMDVGADBAVUzYADAwFV
RAMDAlWoAwMEVkADAwBX5zAKAwMDWIgDAwBYjgMDAVkCAwMCWZwDAwJbRAMEBFuX
cAMDA1xYAwMFXQADAwVtAAMEA42q2AMEArmTzAMEBcIGgAMEBcK3wAMEBMLysAME
BsMDAAMEBcMHYAMEBcNiYAMDAMNzAwMAw4QDBAXDksADBAXUHmADBAXUJ4ADBAXU
XqADAwDUxgMEBdWAIAMEBdWQwAMEBdWpoAMEBtXLQAMDANXfAwMA1fUDBATZE8AD
BATZRlADBATZcOAwGwQCAAIwFQMFAyoAYgADBQAqAHGAAwUHKgKEADANBgkqhkiG
9w0BAQsFAAOCAQEASifccH9R5fq4O2RecA3SKVFfmqYV2k34xehbpjX9FfAkZwnH
7fSeAy7CypjnDucWuY0Q30ylV/nScVXOQZbPc2CNXmU5GPQ3zr6aC+nJq0i4s8kn
siB4K8v8xwooivfIlYRVNnq2LZChZZhbDs+WPPxmh1fQSMS4snkI5Wl6x8gwgVuf
KySBv7OaBLHDp+hKUvsvOVD48ogIk+YMWRlFcmaTD8O1Ts0bhu0dY/aJMvNsp0N6
FwbZB7urLF7h9ii6tzjFvYztchwYHRr2CUWFoUKFfhD2XM+xjsYWwLlmxeIooKy2
2ZOTMiiALue1YkE8s+4W9ZNFiBsEo22jqvk7LQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:55 2024 by rpki-client on console-fra.rpki-client.org