Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/MVlxtWYG1OINssbY5n1po62iVjk.roa
File: MVlxtWYG1OINssbY5n1po62iVjk.roa (raw, json)
Hash identifier: bR+6rwl/BNiiEZYENXnhj49Gxh9IolFfeTS/0jbi/fA=
Subject key identifier: 31:59:71:B5:66:06:D4:E2:0D:B2:C6:D8:E6:7D:69:A3:AD:A2:56:39
Certificate issuer: /CN=59dda75f8110743d250c3068a356ce6acf1c4fe2
Certificate serial: 0190BB18F90350228BB596745FEB4E8DB610
Authority key identifier: 59:DD:A7:5F:81:10:74:3D:25:0C:30:68:A3:56:CE:6A:CF:1C:4F:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd2nX4EQdD0lDDBoo1bOas8cT-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/MVlxtWYG1OINssbY5n1po62iVjk.roa
Signing time: Tue 16 Jul 2024 10:31:34 +0000
ROA not before: Tue 16 Jul 2024 10:31:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41897
IP address blocks: 45.158.16.0/22 maxlen: 22
46.40.0.0/18 maxlen: 18
46.40.1.0/24 maxlen: 24
46.40.6.0/24 maxlen: 24
46.40.8.0/22 maxlen: 22
46.40.12.0/23 maxlen: 23
46.40.15.0/24 maxlen: 24
46.40.16.0/21 maxlen: 21
46.40.26.0/24 maxlen: 24
46.40.27.0/24 maxlen: 24
46.40.29.0/24 maxlen: 24
46.40.30.0/23 maxlen: 23
46.40.30.0/24 maxlen: 24
46.40.31.0/24 maxlen: 24
46.40.32.0/24 maxlen: 24
46.40.33.0/24 maxlen: 24
46.40.34.0/24 maxlen: 24
46.40.35.0/24 maxlen: 24
46.40.37.0/24 maxlen: 24
46.40.40.0/21 maxlen: 21
46.40.48.0/21 maxlen: 21
46.40.56.0/22 maxlen: 22
46.40.60.0/23 maxlen: 23
46.40.62.0/24 maxlen: 24
46.40.63.0/24 maxlen: 24
46.251.8.0/22 maxlen: 22
80.245.96.0/22 maxlen: 22
81.24.240.0/21 maxlen: 21
81.24.247.0/24 maxlen: 24
85.222.176.0/20 maxlen: 20
85.222.176.0/21 maxlen: 21
85.222.176.0/24 maxlen: 24
85.222.177.0/24 maxlen: 24
85.222.178.0/24 maxlen: 24
85.222.179.0/24 maxlen: 24
85.222.180.0/22 maxlen: 22
89.147.80.0/20 maxlen: 20
89.147.80.0/22 maxlen: 22
89.147.80.0/24 maxlen: 24
89.147.81.0/24 maxlen: 24
89.147.82.0/24 maxlen: 24
89.147.83.0/24 maxlen: 24
89.147.84.0/22 maxlen: 22
89.147.88.0/24 maxlen: 24
89.147.89.0/24 maxlen: 24
89.147.92.0/24 maxlen: 24
89.147.93.0/24 maxlen: 24
89.147.94.0/24 maxlen: 24
91.102.224.0/21 maxlen: 21
91.102.229.0/24 maxlen: 24
91.147.240.0/21 maxlen: 21
91.147.244.0/22 maxlen: 22
94.248.184.0/21 maxlen: 21
94.248.232.0/21 maxlen: 21
94.248.232.0/22 maxlen: 22
94.248.232.0/24 maxlen: 24
94.248.233.0/24 maxlen: 24
94.248.234.0/24 maxlen: 24
94.248.235.0/24 maxlen: 24
94.248.236.0/24 maxlen: 24
94.248.237.0/24 maxlen: 24
94.248.238.0/24 maxlen: 24
94.248.239.0/24 maxlen: 24
95.85.128.0/18 maxlen: 18
95.85.128.0/22 maxlen: 22
95.85.135.0/24 maxlen: 24
95.85.136.0/22 maxlen: 22
95.85.144.0/21 maxlen: 21
95.85.152.0/23 maxlen: 23
95.85.152.0/24 maxlen: 24
95.85.153.0/24 maxlen: 24
95.85.154.0/23 maxlen: 23
95.85.154.0/24 maxlen: 24
95.85.155.0/24 maxlen: 24
95.85.156.0/22 maxlen: 22
95.85.172.0/24 maxlen: 24
95.85.173.0/24 maxlen: 24
95.85.176.0/22 maxlen: 22
95.85.184.0/23 maxlen: 23
95.85.186.0/23 maxlen: 23
178.20.200.0/24 maxlen: 24
178.20.201.0/24 maxlen: 24
178.20.202.0/23 maxlen: 23
185.6.188.0/22 maxlen: 22
185.6.188.0/24 maxlen: 24
185.6.189.0/24 maxlen: 24
185.6.190.0/24 maxlen: 24
185.6.191.0/24 maxlen: 24
185.10.204.0/22 maxlen: 22
185.10.204.0/24 maxlen: 24
185.37.168.0/22 maxlen: 22
185.37.169.0/24 maxlen: 24
185.37.170.0/24 maxlen: 24
185.141.196.0/22 maxlen: 22
185.141.196.0/23 maxlen: 23
185.141.198.0/24 maxlen: 24
185.141.199.0/24 maxlen: 24
185.156.152.0/22 maxlen: 22
185.169.248.0/22 maxlen: 22
185.169.248.0/24 maxlen: 24
185.169.249.0/24 maxlen: 24
185.169.250.0/23 maxlen: 23
185.231.128.0/22 maxlen: 22
195.192.244.0/22 maxlen: 22
217.17.96.0/20 maxlen: 24
217.17.96.0/24 maxlen: 24
217.17.97.0/24 maxlen: 24
217.17.98.0/24 maxlen: 24
217.17.100.0/24 maxlen: 24
217.17.107.0/24 maxlen: 24
217.17.108.0/24 maxlen: 24
217.17.110.0/24 maxlen: 24
217.17.111.0/24 maxlen: 24
2a00:ad00::/29 maxlen: 29
2a00:ad00:2010::/44 maxlen: 44
2a00:ad03::/32 maxlen: 32
2a00:ad07:3000::/36 maxlen: 36
2a04:f040::/29 maxlen: 29
2a0c:6300::/30 maxlen: 30
2a0f:7bc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 29 Aug 2024 13:48:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:bb:18:f9:03:50:22:8b:b5:96:74:5f:eb:4e:8d:b6:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dda75f8110743d250c3068a356ce6acf1c4fe2
Validity
Not Before: Jul 16 10:31:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=315971b56606d4e20db2c6d8e67d69a3ada25639
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:56:08:e9:e8:fe:42:90:b6:fc:17:30:bb:97:
35:9b:8e:67:2e:a0:82:29:d1:36:9a:40:38:6a:80:
ab:c3:fb:d0:fe:b9:e1:d9:c3:18:8e:8d:72:e5:be:
20:06:31:44:a2:b9:97:62:b9:f2:d1:c4:2d:f2:7b:
2f:99:68:82:96:f2:9c:b9:1e:a7:87:d6:b7:5f:66:
0c:0c:44:af:14:45:50:3d:87:19:f2:b6:b2:14:18:
70:86:92:4b:56:63:8d:2b:88:d8:a7:ad:e6:32:61:
29:36:9e:97:ac:91:60:5b:7b:4d:75:36:44:ad:68:
22:86:22:d4:da:d3:9f:63:d4:a3:5d:17:46:87:77:
aa:ec:d1:49:2f:c4:a9:0c:55:0b:c4:4f:6f:17:22:
b1:c0:ed:66:0a:fe:1c:fa:29:54:f4:ad:30:c5:c1:
eb:31:60:f7:68:ad:e7:6e:7e:56:cf:23:9f:83:89:
17:0c:a9:09:9f:b0:f1:ee:de:66:7d:df:f8:ce:de:
76:32:d0:a0:84:ca:69:02:8e:89:61:fa:71:40:d9:
3b:1d:55:57:98:b6:62:dc:25:18:57:55:90:97:3b:
8c:99:f4:a8:ae:78:3b:61:ad:8f:1a:69:6c:70:43:
92:c6:58:22:a3:3b:9a:75:f0:90:25:7a:74:67:29:
30:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:59:71:B5:66:06:D4:E2:0D:B2:C6:D8:E6:7D:69:A3:AD:A2:56:39
X509v3 Authority Key Identifier:
keyid:59:DD:A7:5F:81:10:74:3D:25:0C:30:68:A3:56:CE:6A:CF:1C:4F:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd2nX4EQdD0lDDBoo1bOas8cT-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/MVlxtWYG1OINssbY5n1po62iVjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/Wd2nX4EQdD0lDDBoo1bOas8cT-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.16.0/22
46.40.0.0/18
46.251.8.0/22
80.245.96.0/22
81.24.240.0/21
85.222.176.0/20
89.147.80.0/20
91.102.224.0/21
91.147.240.0/21
94.248.184.0/21
94.248.232.0/21
95.85.128.0/18
178.20.200.0/22
185.6.188.0/22
185.10.204.0/22
185.37.168.0/22
185.141.196.0/22
185.156.152.0/22
185.169.248.0/22
185.231.128.0/22
195.192.244.0/22
217.17.96.0/20
IPv6:
2a00:ad00::/29
2a04:f040::/29
2a0c:6300::/30
2a0f:7bc0::/29
Signature Algorithm: sha256WithRSAEncryption
87:43:97:87:12:86:77:29:bb:91:3e:b7:29:da:18:53:b2:fb:
79:a0:31:a3:f4:92:4e:c3:dc:0f:91:7f:ba:2e:7f:dc:0a:ae:
83:bc:fd:b6:f9:4a:60:c4:81:cc:15:b4:44:8e:1f:0b:22:c0:
54:70:bf:7b:f3:4b:eb:0c:3c:00:cc:9a:5c:64:8b:40:ae:07:
e0:8b:11:d9:55:dc:3b:d0:0b:9b:e0:e1:e3:28:d6:9c:fc:a5:
8a:7a:9d:9d:3e:a8:44:cd:c7:fa:4f:5f:e3:13:2b:99:70:21:
bd:bf:b9:c8:36:ab:c9:c6:54:e7:ee:d7:a7:65:68:39:c0:0b:
03:c7:07:5e:12:52:1b:62:cd:47:31:13:a9:80:54:d8:fd:82:
a2:cc:b4:78:ef:68:8c:9c:c9:5d:69:9e:bb:44:38:a2:f5:6c:
35:6a:0a:ea:f3:34:af:0c:0d:65:6a:c8:37:04:b3:ee:33:b9:
30:5b:60:ad:2a:0d:1d:b4:44:b5:4e:45:7f:c1:4c:f7:2d:ce:
e0:ee:13:58:cb:0f:c3:ae:fe:d7:fb:f5:cd:f4:fa:bf:5e:97:
6b:a0:d0:48:d3:19:05:37:1e:79:6b:00:9a:15:45:9b:ae:d8:
52:7e:5a:34:5e:92:b3:80:2e:c1:7d:c9:5b:6a:33:7e:78:ae:
a5:e4:dd:31
-----BEGIN CERTIFICATE-----
MIIFpDCCBIygAwIBAgISAZC7GPkDUCKLtZZ0X+tOjbYQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU5ZGRhNzVmODExMDc0M2QyNTBjMzA2OGEzNTZjZTZhY2Yx
YzRmZTIwHhcNMjQwNzE2MTAzMTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMTU5NzFiNTY2MDZkNGUyMGRiMmM2ZDhlNjdkNjlhM2FkYTI1NjM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2FYI6ej+QpC2/Bcwu5c1m45nLqCC
KdE2mkA4aoCrw/vQ/rnh2cMYjo1y5b4gBjFEormXYrny0cQt8nsvmWiClvKcuR6n
h9a3X2YMDESvFEVQPYcZ8rayFBhwhpJLVmONK4jYp63mMmEpNp6XrJFgW3tNdTZE
rWgihiLU2tOfY9SjXRdGh3eq7NFJL8SpDFULxE9vFyKxwO1mCv4c+ilU9K0wxcHr
MWD3aK3nbn5WzyOfg4kXDKkJn7Dx7t5mfd/4zt52MtCghMppAo6JYfpxQNk7HVVX
mLZi3CUYV1WQlzuMmfSorng7Ya2PGmlscEOSxlgiozuadfCQJXp0ZykwCwIDAQAB
o4ICsDCCAqwwHQYDVR0OBBYEFDFZcbVmBtTiDbLG2OZ9aaOtolY5MB8GA1UdIwQY
MBaAFFndp1+BEHQ9JQwwaKNWzmrPHE/iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV2Qyblg0RVFkRDBsRERCb28xYk9hczhjVC1JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9lYmYzZjctZTNhYi00ZjhjLTg2ZTgt
NzA4N2UzZmUyYTVkLzEvTVZseHRXWUcxT0lOc3NiWTVuMXBvNjJpVmprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi9lYmYzZjctZTNhYi00ZjhjLTg2ZTgtNzA4N2UzZmUyYTVk
LzEvV2Qyblg0RVFkRDBsRERCb28xYk9hczhjVC1JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHFBggrBgEFBQcBBwEB/wSBtTCBsjCBiwQCAAEwgYQDBAIt
nhADBAYuKAADBAIu+wgDBAJQ9WADBANRGPADBARV3rADBARZk1ADBANbZuADBANb
k/ADBANe+LgDBANe+OgDBAZfVYADBAKyFMgDBAK5BrwDBAK5CswDBAK5JagDBAK5
jcQDBAK5nJgDBAK5qfgDBAK554ADBALDwPQDBATZEWAwIgQCAAIwHAMFAyoArQAD
BQMqBPBAAwUCKgxjAAMFAyoPe8AwDQYJKoZIhvcNAQELBQADggEBAIdDl4cShncp
u5E+tynaGFOy+3mgMaP0kk7D3A+Rf7ouf9wKroO8/bb5SmDEgcwVtESOHwsiwFRw
v3vzS+sMPADMmlxki0CuB+CLEdlV3DvQC5vg4eMo1pz8pYp6nZ0+qETNx/pPX+MT
K5lwIb2/ucg2q8nGVOfu16dlaDnACwPHB14SUhtizUcxE6mAVNj9gqLMtHjvaIyc
yV1pnrtEOKL1bDVqCurzNK8MDWVqyDcEs+4zuTBbYK0qDR20RLVORX/BTPctzuDu
E1jLD8Ou/tf79c30+r9el2ug0EjTGQU3HnlrAJoVRZuu2FJ+WjRekrOALsF9yVtq
M354rqXk3TE=
-----END CERTIFICATE-----
Generated at Thu Aug 29 17:04:58 2024 by rpki-client on console-ams.rpki-client.org