Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/m5lqO50t2xkDqh_1a2qZguZKh2E.roa
File: m5lqO50t2xkDqh_1a2qZguZKh2E.roa (raw, json)
Hash identifier: ybIWoWRU/ctzoA5uVulI4Z+W+XWBhjnJ6vOnKrSrFjs=
Subject key identifier: 9B:99:6A:3B:9D:2D:DB:19:03:AA:1F:F5:6B:6A:99:82:E6:4A:87:61
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 0186274C7DBFA5478648BEFFB3271821BFA6
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/m5lqO50t2xkDqh_1a2qZguZKh2E.roa
Signing time: Mon 06 Feb 2023 15:16:09 +0000
ROA not before: Mon 06 Feb 2023 15:16:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15557
IP address blocks: 80.124.0.0/16 maxlen: 16
80.70.32.0/20 maxlen: 20
217.19.192.0/20 maxlen: 20
88.141.0.0/16 maxlen: 16
212.198.0.0/16 maxlen: 16
91.151.112.0/20 maxlen: 20
213.144.192.0/19 maxlen: 19
217.70.80.0/20 maxlen: 20
79.80.0.0/12 maxlen: 12
185.147.204.0/22 maxlen: 22
77.144.0.0/12 maxlen: 12
79.174.192.0/18 maxlen: 18
195.3.0.0/18 maxlen: 18
77.137.196.0/22 maxlen: 22
85.168.0.0/14 maxlen: 14
77.137.200.0/21 maxlen: 21
77.137.208.0/20 maxlen: 20
79.174.232.0/21 maxlen: 21
194.6.128.0/19 maxlen: 19
195.146.192.0/19 maxlen: 19
84.96.0.0/13 maxlen: 13
77.136.172.0/24 maxlen: 24
88.140.0.0/16 maxlen: 16
77.136.173.0/24 maxlen: 24
77.136.174.0/24 maxlen: 24
87.231.0.0/16 maxlen: 16
62.39.0.0/16 maxlen: 16
77.140.0.0/14 maxlen: 14
89.2.0.0/15 maxlen: 15
62.106.128.0/17 maxlen: 17
217.112.224.0/20 maxlen: 20
194.183.192.0/19 maxlen: 19
141.170.216.0/21 maxlen: 21
212.39.128.0/19 maxlen: 19
213.245.0.0/16 maxlen: 16
86.66.127.0/24 maxlen: 24
62.241.64.0/18 maxlen: 18
81.220.0.0/16 maxlen: 16
89.156.0.0/14 maxlen: 14
213.169.160.0/19 maxlen: 19
109.0.0.0/11 maxlen: 11
93.0.0.0/11 maxlen: 11
81.1.0.0/18 maxlen: 18
81.65.0.0/16 maxlen: 16
84.55.128.0/18 maxlen: 18
62.129.160.0/19 maxlen: 19
78.112.0.0/12 maxlen: 12
62.8.0.0/19 maxlen: 19
77.136.0.0/16 maxlen: 16
46.35.0.0/19 maxlen: 19
88.136.0.0/14 maxlen: 14
37.64.0.0/13 maxlen: 13
77.128.0.0/13 maxlen: 13
80.236.0.0/17 maxlen: 17
212.94.160.0/19 maxlen: 19
81.185.160.0/20 maxlen: 20
81.185.160.0/21 maxlen: 21
80.125.0.0/16 maxlen: 16
81.185.168.0/21 maxlen: 21
83.141.128.0/17 maxlen: 17
84.205.128.0/19 maxlen: 19
77.134.204.0/24 maxlen: 24
84.205.144.0/20 maxlen: 20
80.118.4.0/24 maxlen: 24
81.64.0.0/14 maxlen: 14
213.128.32.0/19 maxlen: 19
80.118.0.0/15 maxlen: 15
194.242.176.0/20 maxlen: 20
92.88.0.0/13 maxlen: 13
195.7.96.0/19 maxlen: 19
91.68.0.0/22 maxlen: 22
195.132.0.0/16 maxlen: 16
85.68.0.0/15 maxlen: 15
195.98.96.0/19 maxlen: 19
213.223.0.0/16 maxlen: 16
91.68.0.0/14 maxlen: 14
84.4.0.0/14 maxlen: 14
77.192.0.0/12 maxlen: 12
86.64.0.0/12 maxlen: 12
82.216.0.0/16 maxlen: 16
195.115.0.0/16 maxlen: 16
78.155.128.0/19 maxlen: 19
88.142.0.0/16 maxlen: 16
2a02:8400::/48 maxlen: 48
2a02:8400:14::/48 maxlen: 48
2a00:7180::/32 maxlen: 32
2a02:8440:5000::/36 maxlen: 36
2a02:8400:11::/48 maxlen: 48
2a02:8400::/25 maxlen: 25
2a02:8400:12::/48 maxlen: 48
2a02:8400:13::/48 maxlen: 48
2a00:6200::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 09 Feb 2023 09:43:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:27:4c:7d:bf:a5:47:86:48:be:ff:b3:27:18:21:bf:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Feb 6 15:16:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b996a3b9d2ddb1903aa1ff56b6a9982e64a8761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9d:ca:14:17:fa:3f:68:0b:2a:41:94:71:5d:
d5:9e:5e:6e:e4:28:09:b1:d5:51:ab:74:91:f8:2a:
00:01:8b:13:64:4b:45:4d:f0:62:07:1a:19:4a:7b:
d8:0a:83:f0:47:6c:04:ba:86:8d:87:3d:90:b6:2c:
a8:50:eb:4e:68:8f:2b:d7:3a:c0:32:8a:06:12:b7:
4b:96:9a:f0:54:f2:44:ed:fa:f6:4a:d2:64:41:e6:
95:83:1a:c7:46:e8:c3:ec:8b:89:bc:86:c0:c5:79:
8e:9a:2f:10:7f:fe:00:aa:46:44:15:bf:26:37:b8:
46:84:08:8d:a3:c3:8a:db:cc:24:3c:20:29:1f:3f:
48:4d:23:f6:66:7c:aa:a5:dd:76:09:13:84:d3:ae:
fc:20:0f:1c:b7:e4:08:96:eb:71:15:0a:15:d2:f8:
ac:81:64:88:a5:e4:fa:e5:b8:fd:20:2e:d5:f1:28:
50:79:b5:66:4e:42:27:d4:48:a7:45:98:b4:b2:b3:
a8:8c:ae:97:b8:06:25:63:28:49:b0:aa:db:db:a8:
96:80:82:c4:c8:b8:d3:18:32:17:3e:da:56:7d:9c:
46:5b:de:5d:5b:70:42:ed:55:bb:64:91:e6:3d:b8:
e2:11:d3:22:fa:a0:36:c5:9f:6d:b3:97:88:14:01:
84:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:99:6A:3B:9D:2D:DB:19:03:AA:1F:F5:6B:6A:99:82:E6:4A:87:61
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/m5lqO50t2xkDqh_1a2qZguZKh2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.64.0.0/13
46.35.0.0/19
62.8.0.0/19
62.39.0.0/16
62.106.128.0/17
62.129.160.0/19
62.241.64.0/18
77.128.0.0-77.136.255.255
77.137.196.0-77.137.223.255
77.140.0.0-77.159.255.255
77.192.0.0/12
78.112.0.0/12
78.155.128.0/19
79.80.0.0/12
79.174.192.0/18
80.70.32.0/20
80.118.0.0/15
80.124.0.0/15
80.236.0.0/17
81.1.0.0/18
81.64.0.0/14
81.185.160.0/20
81.220.0.0/16
82.216.0.0/16
83.141.128.0/17
84.4.0.0/14
84.55.128.0/18
84.96.0.0/13
84.205.128.0/19
85.68.0.0/15
85.168.0.0/14
86.64.0.0/12
87.231.0.0/16
88.136.0.0-88.142.255.255
89.2.0.0/15
89.156.0.0/14
91.68.0.0/14
91.151.112.0/20
92.88.0.0/13
93.0.0.0/11
109.0.0.0/11
141.170.216.0/21
185.147.204.0/22
194.6.128.0/19
194.183.192.0/19
194.242.176.0/20
195.3.0.0/18
195.7.96.0/19
195.98.96.0/19
195.115.0.0/16
195.132.0.0/16
195.146.192.0/19
212.39.128.0/19
212.94.160.0/19
212.198.0.0/16
213.128.32.0/19
213.144.192.0/19
213.169.160.0/19
213.223.0.0/16
213.245.0.0/16
217.19.192.0/20
217.70.80.0/20
217.112.224.0/20
IPv6:
2a00:6200::/29
2a00:7180::/32
2a02:8400::/25
Signature Algorithm: sha256WithRSAEncryption
24:bb:29:82:49:85:9d:86:05:3a:6a:f6:7a:80:57:06:76:00:
96:db:00:10:53:58:a1:16:6b:e1:31:fb:7e:96:d7:e6:40:d3:
8c:7c:d3:c9:e0:8d:75:9b:4c:30:82:75:17:55:e6:be:9b:3a:
49:4b:7e:8d:06:6d:3d:8b:85:40:16:ca:90:c4:cb:01:a1:d3:
f0:05:8b:0c:fe:59:75:c4:1b:dc:17:30:1b:d4:f9:f1:73:6d:
00:b6:41:ff:65:90:25:09:76:ca:ce:1f:ac:5c:24:58:3f:3f:
bd:00:4c:18:e7:7c:c1:66:ca:74:6e:49:4e:53:76:75:e8:20:
08:f4:45:05:57:c6:68:99:38:56:8d:d5:97:1f:c0:77:95:e9:
61:75:e2:03:d9:e1:cf:ac:42:a9:7f:84:ed:60:04:0c:77:ea:
9b:04:f6:5f:72:38:f2:1a:bc:9a:b4:71:4e:0d:96:15:db:b7:
e1:6b:b2:78:77:fb:38:98:85:dc:06:cf:8f:ab:70:36:af:c6:
55:75:e9:0e:2a:fc:c2:e0:98:fa:1f:81:4e:a6:f5:1e:28:ac:
a0:35:f7:c0:50:40:0f:ec:a5:71:cd:38:fc:f6:15:fb:0d:b1:
03:e1:b6:cb:94:79:69:15:95:6d:08:01:29:d3:27:79:43:22:
03:30:77:5e
-----BEGIN CERTIFICATE-----
MIIGlzCCBX+gAwIBAgISAYYnTH2/pUeGSL7/sycYIb+mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwZWY1ZmJiZmNhN2E5M2NmZWU5NjVlZWI2YmRlZTZmYjQz
YzQwM2UwHhcNMjMwMjA2MTUxNjA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5Yjk5NmEzYjlkMmRkYjE5MDNhYTFmZjU2YjZhOTk4MmU2NGE4NzYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqp3KFBf6P2gLKkGUcV3Vnl5u5CgJ
sdVRq3SR+CoAAYsTZEtFTfBiBxoZSnvYCoPwR2wEuoaNhz2QtiyoUOtOaI8r1zrA
MooGErdLlprwVPJE7fr2StJkQeaVgxrHRujD7IuJvIbAxXmOmi8Qf/4AqkZEFb8m
N7hGhAiNo8OK28wkPCApHz9ITSP2Znyqpd12CROE0678IA8ct+QIlutxFQoV0vis
gWSIpeT65bj9IC7V8ShQebVmTkIn1EinRZi0srOojK6XuAYlYyhJsKrb26iWgILE
yLjTGDIXPtpWfZxGW95dW3BC7VW7ZJHmPbjiEdMi+qA2xZ9ts5eIFAGEtwIDAQAB
o4IDozCCA58wHQYDVR0OBBYEFJuZajudLdsZA6of9WtqmYLmSodhMB8GA1UdIwQY
MBaAFKDvX7v8p6k8/ull7ra97m+0PEA+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb085ZnVfeW5xVHotNldYdXRyM3ViN1E4UUQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9mZTkxNWMtYmY3MC00NjAyLThhM2Mt
MDI5MmIwMjAxNTBhLzEvbTVscU81MHQyeGtEcWhfMWEycVpndVpLaDJFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi9mZTkxNWMtYmY3MC00NjAyLThhM2MtMDI5MmIwMjAxNTBh
LzEvb085ZnVfeW5xVHotNldYdXRyM3ViN1E4UUQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBtwYIKwYBBQUHAQcBAf8EggGmMIIBojCCAYEEAgABMIIB
eQMDAyVAAwQFLiMAAwQFPggAAwMAPicDBAc+aoADBAU+gaADBAY+8UAwCgMDB02A
AwMATYgwDAMEAk2JxAMEBU2JwDAKAwMCTYwDAwVNgAMDBE3AAwMETnADBAVOm4AD
AwRPUAMEBk+uwAMEBFBGIAMDAVB2AwMBUHwDBAdQ7AADBAZRAQADAwJRQAMEBFG5
oAMDAFHcAwMAUtgDBAdTjYADAwJUBAMEBlQ3gAMDA1RgAwQFVM2AAwMBVUQDAwJV
qAMDBFZAAwMAV+cwCgMDA1iIAwMAWI4DAwFZAgMDAlmcAwMCW0QDBARbl3ADAwNc
WAMDBV0AAwMFbQADBAONqtgDBAK5k8wDBAXCBoADBAXCt8ADBATC8rADBAbDAwAD
BAXDB2ADBAXDYmADAwDDcwMDAMOEAwQFw5LAAwQF1CeAAwQF1F6gAwMA1MYDBAXV
gCADBAXVkMADBAXVqaADAwDV3wMDANX1AwQE2RPAAwQE2UZQAwQE2XDgMBsEAgAC
MBUDBQMqAGIAAwUAKgBxgAMFByoChAAwDQYJKoZIhvcNAQELBQADggEBACS7KYJJ
hZ2GBTpq9nqAVwZ2AJbbABBTWKEWa+Ex+36W1+ZA04x808ngjXWbTDCCdRdV5r6b
OklLfo0GbT2LhUAWypDEywGh0/AFiwz+WXXEG9wXMBvU+fFzbQC2Qf9lkCUJdsrO
H6xcJFg/P70ATBjnfMFmynRuSU5TdnXoIAj0RQVXxmiZOFaN1ZcfwHeV6WF14gPZ
4c+sQql/hO1gBAx36psE9l9yOPIavJq0cU4NlhXbt+Frsnh3+ziYhdwGz4+rcDav
xlV16Q4q/MLgmPofgU6m9R4orKA198BQQA/spXHNOPz2FfsNsQPhtsuUeWkVlW0I
ASnTJ3lDIgMwd14=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:55 2024 by rpki-client on console-fra.rpki-client.org