Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/R7g0cYoQi1XeYogK0OOUXK-_7WY.roa
File: R7g0cYoQi1XeYogK0OOUXK-_7WY.roa (raw, json)
Hash identifier: sGULJ8lGSQABNfKH8+jabqncPspHfNz96ZRepjN+Tmo=
Subject key identifier: 47:B8:34:71:8A:10:8B:55:DE:62:88:0A:D0:E3:94:5C:AF:BF:ED:66
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 01856D0ACC9496EB17D13DDC976C7CFCEB97
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/R7g0cYoQi1XeYogK0OOUXK-_7WY.roa
Signing time: Sun 01 Jan 2023 11:15:02 +0000
ROA not before: Sun 01 Jan 2023 11:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15557
IP address blocks: 80.124.0.0/16 maxlen: 16
80.70.32.0/20 maxlen: 20
217.19.192.0/20 maxlen: 20
88.141.0.0/16 maxlen: 16
212.198.0.0/16 maxlen: 16
91.151.112.0/20 maxlen: 20
213.144.192.0/19 maxlen: 19
217.70.80.0/20 maxlen: 20
79.80.0.0/12 maxlen: 12
185.147.204.0/22 maxlen: 22
77.144.0.0/12 maxlen: 12
79.174.192.0/18 maxlen: 18
195.3.0.0/18 maxlen: 18
77.137.196.0/22 maxlen: 22
85.168.0.0/14 maxlen: 14
77.137.200.0/21 maxlen: 21
77.137.208.0/20 maxlen: 20
79.174.232.0/21 maxlen: 21
194.6.128.0/19 maxlen: 19
195.146.192.0/19 maxlen: 19
84.96.0.0/13 maxlen: 13
77.136.172.0/24 maxlen: 24
88.140.0.0/16 maxlen: 16
77.136.173.0/24 maxlen: 24
77.136.174.0/24 maxlen: 24
87.231.0.0/16 maxlen: 16
62.39.0.0/16 maxlen: 16
77.140.0.0/14 maxlen: 14
89.2.0.0/15 maxlen: 15
62.106.128.0/17 maxlen: 17
217.112.224.0/20 maxlen: 20
194.183.192.0/19 maxlen: 19
141.170.216.0/21 maxlen: 21
212.39.128.0/19 maxlen: 19
213.245.0.0/16 maxlen: 16
62.241.64.0/18 maxlen: 18
81.220.0.0/16 maxlen: 16
89.156.0.0/14 maxlen: 14
213.169.160.0/19 maxlen: 19
93.0.0.0/11 maxlen: 11
109.0.0.0/11 maxlen: 11
81.1.0.0/18 maxlen: 18
81.65.0.0/16 maxlen: 16
84.55.128.0/18 maxlen: 18
62.129.160.0/19 maxlen: 19
78.112.0.0/12 maxlen: 12
62.8.0.0/19 maxlen: 19
77.136.0.0/16 maxlen: 16
46.35.0.0/19 maxlen: 19
88.136.0.0/14 maxlen: 14
37.64.0.0/13 maxlen: 13
77.128.0.0/13 maxlen: 13
80.236.0.0/17 maxlen: 17
212.94.160.0/19 maxlen: 19
81.185.160.0/20 maxlen: 20
80.125.0.0/16 maxlen: 16
83.141.128.0/17 maxlen: 17
84.205.128.0/19 maxlen: 19
77.134.204.0/24 maxlen: 24
84.205.144.0/20 maxlen: 20
80.118.4.0/24 maxlen: 24
81.64.0.0/14 maxlen: 14
213.128.32.0/19 maxlen: 19
80.118.0.0/15 maxlen: 15
194.242.176.0/20 maxlen: 20
92.88.0.0/13 maxlen: 13
195.7.96.0/19 maxlen: 19
91.68.0.0/22 maxlen: 22
195.132.0.0/16 maxlen: 16
85.68.0.0/15 maxlen: 15
195.98.96.0/19 maxlen: 19
213.223.0.0/16 maxlen: 16
91.68.0.0/14 maxlen: 14
84.4.0.0/14 maxlen: 14
77.192.0.0/12 maxlen: 12
86.64.0.0/12 maxlen: 12
82.216.0.0/16 maxlen: 16
195.115.0.0/16 maxlen: 16
78.155.128.0/19 maxlen: 19
88.142.0.0/16 maxlen: 16
2a00:7180::/32 maxlen: 32
2a02:8400::/25 maxlen: 25
2a00:6200::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 19 Jan 2023 10:55:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:cc:94:96:eb:17:d1:3d:dc:97:6c:7c:fc:eb:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jan 1 11:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=47b834718a108b55de62880ad0e3945cafbfed66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f2:a5:b2:9d:76:b8:85:02:bc:10:90:9b:0a:
5e:d4:ef:b9:ff:9d:56:07:7c:31:e3:fc:4d:85:04:
7e:b4:14:16:a1:e4:d4:74:a3:d2:55:1a:98:78:8f:
b6:c6:65:51:ad:2f:53:22:35:b1:fc:d4:49:df:9e:
ed:64:f7:50:d6:e5:e4:41:3c:3e:81:b6:40:91:b0:
5e:06:ff:1c:47:ab:80:32:e4:31:7e:b9:03:b3:3c:
c3:6c:30:77:ac:f8:53:e3:a3:25:07:96:86:56:26:
67:e6:a3:d9:65:18:76:c5:1c:4e:5a:a0:16:3f:40:
c4:9f:6f:15:33:64:bf:aa:df:00:bb:96:60:ee:b1:
91:56:d1:a3:bb:ac:2a:59:c3:7f:24:33:35:9c:58:
54:8e:de:c3:88:fe:3e:68:24:da:ed:4c:3d:9a:97:
f5:48:bd:e2:3e:ed:fb:ea:84:a4:d9:3f:a3:c7:6b:
4e:48:9a:61:60:3c:51:f8:bd:19:eb:90:2c:5e:f6:
4c:83:17:51:9a:db:ef:14:49:3c:c3:61:28:86:8a:
0e:4a:04:7d:e2:89:02:d1:7e:92:af:5c:0b:64:5d:
20:b5:ac:7b:b1:89:d5:b9:2b:e4:49:9d:1a:a5:86:
fb:42:0c:ec:59:93:4b:17:7c:05:5b:81:56:8a:6e:
a9:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:B8:34:71:8A:10:8B:55:DE:62:88:0A:D0:E3:94:5C:AF:BF:ED:66
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/R7g0cYoQi1XeYogK0OOUXK-_7WY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.64.0.0/13
46.35.0.0/19
62.8.0.0/19
62.39.0.0/16
62.106.128.0/17
62.129.160.0/19
62.241.64.0/18
77.128.0.0-77.136.255.255
77.137.196.0-77.137.223.255
77.140.0.0-77.159.255.255
77.192.0.0/12
78.112.0.0/12
78.155.128.0/19
79.80.0.0/12
79.174.192.0/18
80.70.32.0/20
80.118.0.0/15
80.124.0.0/15
80.236.0.0/17
81.1.0.0/18
81.64.0.0/14
81.185.160.0/20
81.220.0.0/16
82.216.0.0/16
83.141.128.0/17
84.4.0.0/14
84.55.128.0/18
84.96.0.0/13
84.205.128.0/19
85.68.0.0/15
85.168.0.0/14
86.64.0.0/12
87.231.0.0/16
88.136.0.0-88.142.255.255
89.2.0.0/15
89.156.0.0/14
91.68.0.0/14
91.151.112.0/20
92.88.0.0/13
93.0.0.0/11
109.0.0.0/11
141.170.216.0/21
185.147.204.0/22
194.6.128.0/19
194.183.192.0/19
194.242.176.0/20
195.3.0.0/18
195.7.96.0/19
195.98.96.0/19
195.115.0.0/16
195.132.0.0/16
195.146.192.0/19
212.39.128.0/19
212.94.160.0/19
212.198.0.0/16
213.128.32.0/19
213.144.192.0/19
213.169.160.0/19
213.223.0.0/16
213.245.0.0/16
217.19.192.0/20
217.70.80.0/20
217.112.224.0/20
IPv6:
2a00:6200::/29
2a00:7180::/32
2a02:8400::/25
Signature Algorithm: sha256WithRSAEncryption
66:02:4f:42:8a:9a:78:ab:a8:67:9c:d5:95:17:9f:a1:87:5d:
5a:af:e5:e4:d5:da:5c:f1:11:ea:43:22:9b:e5:1e:83:00:ce:
7a:80:19:25:af:cc:7d:8a:f1:ee:24:c1:b7:fd:42:c3:2f:0e:
f5:b1:9e:f2:7a:fe:b2:d2:05:3f:cc:86:44:96:be:07:1e:4a:
3e:f4:d0:0a:54:cb:64:15:30:39:f6:8c:5d:01:41:70:26:28:
e2:d2:bc:c7:03:04:ff:f7:2a:89:7e:98:cf:7a:b1:96:5a:84:
f7:73:58:02:a5:60:f5:a9:60:0b:0e:09:7a:5a:c7:37:73:9e:
d7:03:78:4a:05:31:4b:4e:a2:01:94:99:5c:f0:06:22:d4:6a:
f9:fc:bc:9a:34:a4:14:d3:0b:84:1d:c3:cd:fe:f5:9e:8b:34:
9f:4a:d4:b1:0b:7b:c2:9f:2d:d1:05:f1:1d:1b:5b:ab:ea:59:
26:3c:33:94:78:8e:79:c2:11:04:86:cc:e9:df:10:f7:f8:d7:
68:bf:83:0a:15:ee:7e:d6:1f:2e:1b:de:63:29:0b:f5:36:36:
14:8d:f9:e7:ba:a0:1d:1a:0f:d9:0e:5e:69:41:d7:61:c6:33:
0a:ab:9d:45:bb:58:eb:28:d1:09:23:ad:a6:40:7c:b7:8c:ec:
f1:8c:75:33
-----BEGIN CERTIFICATE-----
MIIGlzCCBX+gAwIBAgISAYVtCsyUlusX0T3cl2x8/OuXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwZWY1ZmJiZmNhN2E5M2NmZWU5NjVlZWI2YmRlZTZmYjQz
YzQwM2UwHhcNMjMwMTAxMTExNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0N2I4MzQ3MThhMTA4YjU1ZGU2Mjg4MGFkMGUzOTQ1Y2FmYmZlZDY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArvKlsp12uIUCvBCQmwpe1O+5/51W
B3wx4/xNhQR+tBQWoeTUdKPSVRqYeI+2xmVRrS9TIjWx/NRJ357tZPdQ1uXkQTw+
gbZAkbBeBv8cR6uAMuQxfrkDszzDbDB3rPhT46MlB5aGViZn5qPZZRh2xRxOWqAW
P0DEn28VM2S/qt8Au5Zg7rGRVtGju6wqWcN/JDM1nFhUjt7DiP4+aCTa7Uw9mpf1
SL3iPu376oSk2T+jx2tOSJphYDxR+L0Z65AsXvZMgxdRmtvvFEk8w2EohooOSgR9
4okC0X6Sr1wLZF0gtax7sYnVuSvkSZ0apYb7QgzsWZNLF3wFW4FWim6pdwIDAQAB
o4IDozCCA58wHQYDVR0OBBYEFEe4NHGKEItV3mKICtDjlFyvv+1mMB8GA1UdIwQY
MBaAFKDvX7v8p6k8/ull7ra97m+0PEA+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb085ZnVfeW5xVHotNldYdXRyM3ViN1E4UUQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9mZTkxNWMtYmY3MC00NjAyLThhM2Mt
MDI5MmIwMjAxNTBhLzEvUjdnMGNZb1FpMVhlWW9nSzBPT1VYSy1fN1dZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi9mZTkxNWMtYmY3MC00NjAyLThhM2MtMDI5MmIwMjAxNTBh
LzEvb085ZnVfeW5xVHotNldYdXRyM3ViN1E4UUQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBtwYIKwYBBQUHAQcBAf8EggGmMIIBojCCAYEEAgABMIIB
eQMDAyVAAwQFLiMAAwQFPggAAwMAPicDBAc+aoADBAU+gaADBAY+8UAwCgMDB02A
AwMATYgwDAMEAk2JxAMEBU2JwDAKAwMCTYwDAwVNgAMDBE3AAwMETnADBAVOm4AD
AwRPUAMEBk+uwAMEBFBGIAMDAVB2AwMBUHwDBAdQ7AADBAZRAQADAwJRQAMEBFG5
oAMDAFHcAwMAUtgDBAdTjYADAwJUBAMEBlQ3gAMDA1RgAwQFVM2AAwMBVUQDAwJV
qAMDBFZAAwMAV+cwCgMDA1iIAwMAWI4DAwFZAgMDAlmcAwMCW0QDBARbl3ADAwNc
WAMDBV0AAwMFbQADBAONqtgDBAK5k8wDBAXCBoADBAXCt8ADBATC8rADBAbDAwAD
BAXDB2ADBAXDYmADAwDDcwMDAMOEAwQFw5LAAwQF1CeAAwQF1F6gAwMA1MYDBAXV
gCADBAXVkMADBAXVqaADAwDV3wMDANX1AwQE2RPAAwQE2UZQAwQE2XDgMBsEAgAC
MBUDBQMqAGIAAwUAKgBxgAMFByoChAAwDQYJKoZIhvcNAQELBQADggEBAGYCT0KK
mnirqGec1ZUXn6GHXVqv5eTV2lzxEepDIpvlHoMAznqAGSWvzH2K8e4kwbf9QsMv
DvWxnvJ6/rLSBT/MhkSWvgceSj700ApUy2QVMDn2jF0BQXAmKOLSvMcDBP/3Kol+
mM96sZZahPdzWAKlYPWpYAsOCXpaxzdzntcDeEoFMUtOogGUmVzwBiLUavn8vJo0
pBTTC4Qdw83+9Z6LNJ9K1LELe8KfLdEF8R0bW6vqWSY8M5R4jnnCEQSGzOnfEPf4
12i/gwoV7n7WHy4b3mMpC/U2NhSN+ee6oB0aD9kOXmlB12HGMwqrnUW7WOso0Qkj
raZAfLeM7PGMdTM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:55 2024 by rpki-client on console-fra.rpki-client.org