Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/nBdhlaWrE4J9AP4BnaGyWtsLxc8.roa
File: nBdhlaWrE4J9AP4BnaGyWtsLxc8.roa (raw, json)
Hash identifier: kvtdq6eSgtlh9Y5dkCJQgShOzeK3PRRAVf7hlV836GQ=
Subject key identifier: 9C:17:61:95:A5:AB:13:82:7D:00:FE:01:9D:A1:B2:5A:DB:0B:C5:CF
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 018FF1C542C8DCA3ED29DB701E6938F6BBAE
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/nBdhlaWrE4J9AP4BnaGyWtsLxc8.roa
Signing time: Fri 07 Jun 2024 08:16:27 +0000
ROA not before: Fri 07 Jun 2024 08:16:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3352
IP address blocks: 2.136.0.0/16 maxlen: 16
2.137.0.0/16 maxlen: 16
2.138.0.0/16 maxlen: 16
2.139.0.0/16 maxlen: 16
79.144.0.0/16 maxlen: 16
79.145.0.0/16 maxlen: 16
79.146.0.0/16 maxlen: 16
79.147.0.0/16 maxlen: 16
79.148.0.0/16 maxlen: 16
80.24.0.0/16 maxlen: 16
80.25.0.0/16 maxlen: 16
80.30.0.0/16 maxlen: 16
80.31.0.0/16 maxlen: 16
80.32.0.0/16 maxlen: 16
80.33.0.0/16 maxlen: 16
80.34.0.0/16 maxlen: 16
80.35.0.0/16 maxlen: 16
80.36.0.0/16 maxlen: 16
80.37.0.0/16 maxlen: 16
80.38.0.0/16 maxlen: 16
80.39.0.0/16 maxlen: 16
80.59.0.0/16 maxlen: 16
81.32.0.0/16 maxlen: 16
81.33.0.0/16 maxlen: 16
81.34.0.0/16 maxlen: 16
81.35.0.0/16 maxlen: 16
81.36.0.0/16 maxlen: 16
81.37.0.0/16 maxlen: 16
81.38.0.0/16 maxlen: 16
81.39.0.0/16 maxlen: 16
81.40.0.0/16 maxlen: 16
81.41.0.0/16 maxlen: 16
81.42.0.0/16 maxlen: 16
81.43.0.0/16 maxlen: 16
81.44.0.0/16 maxlen: 16
83.32.0.0/16 maxlen: 16
83.33.0.0/16 maxlen: 16
83.34.0.0/16 maxlen: 16
83.35.0.0/16 maxlen: 16
83.36.0.0/16 maxlen: 16
83.37.0.0/16 maxlen: 16
83.38.0.0/16 maxlen: 16
83.39.0.0/16 maxlen: 16
83.47.0.0/16 maxlen: 16
83.52.0.0/16 maxlen: 16
83.53.0.0/16 maxlen: 16
83.54.0.0/16 maxlen: 16
83.55.0.0/16 maxlen: 16
83.56.0.0/16 maxlen: 16
83.57.0.0/16 maxlen: 16
83.58.0.0/16 maxlen: 16
83.59.0.0/16 maxlen: 16
83.60.0.0/16 maxlen: 16
83.61.0.0/16 maxlen: 16
83.63.0.0/16 maxlen: 16
88.0.0.0/16 maxlen: 16
88.1.0.0/16 maxlen: 16
88.2.0.0/16 maxlen: 16
88.3.0.0/16 maxlen: 16
88.8.0.0/16 maxlen: 16
88.9.0.0/16 maxlen: 16
88.10.0.0/16 maxlen: 16
88.11.0.0/16 maxlen: 16
88.12.0.0/16 maxlen: 16
88.13.0.0/16 maxlen: 16
88.14.0.0/16 maxlen: 16
88.15.0.0/16 maxlen: 16
88.16.0.0/16 maxlen: 16
88.24.0.0/16 maxlen: 16
88.25.0.0/16 maxlen: 16
88.27.0.0/16 maxlen: 16
88.30.0.0/16 maxlen: 16
192.101.1.0/24 maxlen: 24
194.69.225.0/24 maxlen: 24
194.179.34.0/24 maxlen: 24
194.179.112.0/24 maxlen: 24
194.224.157.0/24 maxlen: 24
195.53.0.0/16 maxlen: 16
195.53.69.0/24 maxlen: 24
195.53.193.0/24 maxlen: 24
195.53.218.0/23 maxlen: 23
195.55.78.0/24 maxlen: 24
195.55.79.0/24 maxlen: 24
195.55.110.0/24 maxlen: 24
195.57.5.0/24 maxlen: 24
195.57.27.0/24 maxlen: 24
195.76.0.0/16 maxlen: 16
195.76.141.0/24 maxlen: 24
195.76.164.0/24 maxlen: 24
195.77.57.0/24 maxlen: 24
195.235.0.0/16 maxlen: 16
195.235.95.0/24 maxlen: 24
195.235.188.0/24 maxlen: 24
195.235.225.0/24 maxlen: 24
195.235.241.0/24 maxlen: 24
195.235.242.0/24 maxlen: 24
212.170.156.0/24 maxlen: 24
212.170.159.0/24 maxlen: 24
213.96.0.0/16 maxlen: 16
213.99.44.0/24 maxlen: 24
213.99.59.0/24 maxlen: 24
217.124.182.0/24 maxlen: 24
217.126.0.0/16 maxlen: 16
217.127.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Tue 18 Jun 2024 06:31:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f1:c5:42:c8:dc:a3:ed:29:db:70:1e:69:38:f6:bb:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Jun 7 08:16:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9c176195a5ab13827d00fe019da1b25adb0bc5cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:50:0d:42:cc:92:cb:7a:6e:66:9f:bb:77:09:
22:67:37:83:e2:81:18:be:2a:e8:40:9d:b1:19:a8:
85:7c:49:48:a5:71:15:74:cf:1e:68:4b:92:f5:a9:
ed:ef:d0:49:ed:dc:a8:c0:a6:9a:44:8e:2e:51:de:
9b:fd:df:f8:15:43:d3:e7:52:d2:de:53:8a:a2:e9:
84:ef:b1:45:75:a3:e0:b1:60:cd:d3:10:96:0c:96:
44:3f:aa:83:b9:d0:e2:ea:30:62:83:36:fd:eb:f0:
11:82:ba:9f:ce:7e:67:1b:4c:a1:c0:58:2f:40:0e:
2d:f7:76:a1:2f:b2:c0:5e:da:7c:70:e7:d4:7c:f8:
d0:98:a3:3c:54:c3:0e:f4:47:7f:e3:ba:04:a1:68:
04:01:7d:a1:6b:6a:98:25:8c:59:1b:bf:43:ed:24:
b4:19:fb:66:26:5d:98:58:b8:c6:62:a5:b0:a3:a8:
d4:c0:bc:12:dc:f1:bd:b7:85:bb:30:40:35:14:94:
9b:8b:f0:3e:34:f5:0c:3f:a9:ac:ca:e2:3a:0f:8c:
0f:36:75:d7:0b:b0:dd:e1:cf:e3:fe:89:4e:f2:74:
da:77:a3:c0:be:fd:41:46:c0:12:9c:b7:15:02:0c:
55:31:c2:f2:3c:14:f2:79:07:85:ae:99:94:f0:d3:
fd:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:17:61:95:A5:AB:13:82:7D:00:FE:01:9D:A1:B2:5A:DB:0B:C5:CF
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/nBdhlaWrE4J9AP4BnaGyWtsLxc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.136.0.0/14
79.144.0.0-79.148.255.255
80.24.0.0/15
80.30.0.0-80.39.255.255
80.59.0.0/16
81.32.0.0-81.44.255.255
83.32.0.0/13
83.47.0.0/16
83.52.0.0-83.61.255.255
83.63.0.0/16
88.0.0.0/14
88.8.0.0-88.16.255.255
88.24.0.0/15
88.27.0.0/16
88.30.0.0/16
192.101.1.0/24
194.69.225.0/24
194.179.34.0/24
194.179.112.0/24
194.224.157.0/24
195.53.0.0/16
195.55.78.0/23
195.55.110.0/24
195.57.5.0/24
195.57.27.0/24
195.76.0.0/16
195.77.57.0/24
195.235.0.0/16
212.170.156.0/24
212.170.159.0/24
213.96.0.0/16
213.99.44.0/24
213.99.59.0/24
217.124.182.0/24
217.126.0.0/15
Signature Algorithm: sha256WithRSAEncryption
8a:6f:94:42:3e:2a:35:ed:f9:7b:0c:46:29:51:7d:9e:d6:75:
dd:bd:26:a5:1a:6b:3c:09:ef:ad:2a:1c:b0:bd:5d:57:6a:8a:
3d:a5:3e:e3:58:91:4c:14:d8:c4:7d:11:20:33:83:d9:4a:3c:
1a:40:1f:aa:c8:31:6a:86:71:f1:7e:4e:a2:b8:4e:bf:42:98:
27:15:fd:07:37:72:81:e3:44:69:80:e9:c7:16:84:9e:de:2c:
32:64:2e:74:74:94:b2:b7:c0:11:c6:27:a0:ce:ed:14:53:7a:
a9:25:be:3f:6a:51:3f:20:af:2f:8a:04:de:d8:75:b8:79:db:
0d:30:e2:56:e3:5f:8b:49:ee:52:ef:1e:69:83:5d:60:18:3a:
f2:78:11:fc:2f:a5:0c:71:f0:bc:3a:9e:2e:23:ff:04:28:76:
58:fe:71:cb:ec:1f:ca:7a:2f:82:9f:c9:25:7a:38:c7:73:67:
7b:7f:93:de:57:ca:f7:f9:17:26:bb:57:b9:c6:b0:e4:57:b1:
19:17:1e:2d:2c:d2:e7:a3:8f:ba:67:ee:8d:93:b1:58:62:2d:
eb:04:1a:85:d4:20:c5:9f:a2:4c:a5:4c:1e:d3:16:b0:18:c1:
4d:22:38:25:da:09:c8:08:8d:71:dd:c4:e2:95:eb:8d:4f:b6:
9f:a9:49:b4
-----BEGIN CERTIFICATE-----
MIIF3TCCBMWgAwIBAgISAY/xxULI3KPtKdtwHmk49ruuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwN2Y1ZmUyNzQwYTJiNmRlNGMzNzA5ZDI5NjQxMTViM2M5
NjdkYTEwHhcNMjQwNjA3MDgxNjI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YzE3NjE5NWE1YWIxMzgyN2QwMGZlMDE5ZGExYjI1YWRiMGJjNWNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAglANQsySy3puZp+7dwkiZzeD4oEY
viroQJ2xGaiFfElIpXEVdM8eaEuS9ant79BJ7dyowKaaRI4uUd6b/d/4FUPT51LS
3lOKoumE77FFdaPgsWDN0xCWDJZEP6qDudDi6jBigzb96/ARgrqfzn5nG0yhwFgv
QA4t93ahL7LAXtp8cOfUfPjQmKM8VMMO9Ed/47oEoWgEAX2ha2qYJYxZG79D7SS0
GftmJl2YWLjGYqWwo6jUwLwS3PG9t4W7MEA1FJSbi/A+NPUMP6msyuI6D4wPNnXX
C7Dd4c/j/olO8nTad6PAvv1BRsASnLcVAgxVMcLyPBTyeQeFrpmU8NP9UwIDAQAB
o4IC6TCCAuUwHQYDVR0OBBYEFJwXYZWlqxOCfQD+AZ2hslrbC8XPMB8GA1UdIwQY
MBaAFDB/X+J0Citt5MNwnSlkEVs8ln2hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQt
NGJhMmY4ZjFmODNiLzEvbkJkaGxhV3JFNEo5QVA0Qm5hR3lXdHNMeGM4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQtNGJhMmY4ZjFmODNi
LzEvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIH+BggrBgEFBQcBBwEB/wSB7jCB6zCB6AQCAAEwgeEDAwIC
iDAKAwMET5ADAwBPlAMDAVAYMAoDAwFQHgMDA1AgAwMAUDswCgMDBVEgAwMAUSwD
AwNTIAMDAFMvMAoDAwJTNAMDAVM8AwMAUz8DAwJYADAKAwMDWAgDAwBYEAMDAVgY
AwMAWBsDAwBYHgMEAMBlAQMEAMJF4QMEAMKzIgMEAMKzcAMEAMLgnQMDAMM1AwQB
wzdOAwQAwzduAwQAwzkFAwQAwzkbAwMAw0wDBADDTTkDAwDD6wMEANSqnAMEANSq
nwMDANVgAwQA1WMsAwQA1WM7AwQA2Xy2AwMB2X4wDQYJKoZIhvcNAQELBQADggEB
AIpvlEI+KjXt+XsMRilRfZ7Wdd29JqUaazwJ760qHLC9XVdqij2lPuNYkUwU2MR9
ESAzg9lKPBpAH6rIMWqGcfF+TqK4Tr9CmCcV/Qc3coHjRGmA6ccWhJ7eLDJkLnR0
lLK3wBHGJ6DO7RRTeqklvj9qUT8gry+KBN7Ydbh52w0w4lbjX4tJ7lLvHmmDXWAY
OvJ4EfwvpQxx8Lw6ni4j/wQodlj+ccvsH8p6L4KfySV6OMdzZ3t/k95Xyvf5Fya7
V7nGsORXsRkXHi0s0uejj7pn7o2TsVhiLesEGoXUIMWfokylTB7TFrAYwU0iOCXa
CcgIjXHdxOKV641Ptp+pSbQ=
-----END CERTIFICATE-----
Generated at Tue Jun 18 08:50:53 2024 by rpki-client on console-fra.rpki-client.org