Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/q_vHYifA5tDhGunKjVKn4CUGZSs.roa
File: q_vHYifA5tDhGunKjVKn4CUGZSs.roa (raw, json)
Hash identifier: QSElNyYGW/KfccpgG+vhm1RVqxqusyaBBMwXj9BJ53U=
Subject key identifier: AB:FB:C7:62:27:C0:E6:D0:E1:1A:E9:CA:8D:52:A7:E0:25:06:65:2B
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 0188B8BAB362DA6119215FF022E94762C0E3
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/q_vHYifA5tDhGunKjVKn4CUGZSs.roa
Signing time: Wed 14 Jun 2023 07:07:03 +0000
ROA not before: Wed 14 Jun 2023 07:07:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44709
IP address blocks: 91.228.126.0/23 maxlen: 23
194.36.91.0/24 maxlen: 24
194.36.90.0/24 maxlen: 24
194.36.89.0/24 maxlen: 24
195.238.120.0/24 maxlen: 24
5.100.250.0/23 maxlen: 23
5.100.251.0/24 maxlen: 24
5.100.250.0/24 maxlen: 24
5.100.252.0/23 maxlen: 23
5.100.253.0/24 maxlen: 24
5.100.252.0/24 maxlen: 24
5.100.249.0/24 maxlen: 24
5.100.248.0/23 maxlen: 23
5.100.248.0/24 maxlen: 24
212.80.204.0/24 maxlen: 24
212.80.206.0/24 maxlen: 24
212.80.205.0/24 maxlen: 24
5.100.254.0/24 maxlen: 24
5.100.254.0/23 maxlen: 23
5.100.255.0/24 maxlen: 24
212.80.207.0/24 maxlen: 24
188.191.147.0/24 maxlen: 24
31.133.103.0/24 maxlen: 24
31.133.102.0/24 maxlen: 24
31.133.100.0/24 maxlen: 24
195.28.181.0/24 maxlen: 24
195.28.180.0/24 maxlen: 24
109.207.76.0/24 maxlen: 24
185.241.4.0/24 maxlen: 24
109.207.79.0/24 maxlen: 24
185.241.7.0/24 maxlen: 24
185.241.6.0/24 maxlen: 24
185.241.5.0/24 maxlen: 24
185.220.207.0/24 maxlen: 24
45.83.40.0/24 maxlen: 24
45.83.43.0/24 maxlen: 24
45.83.42.0/24 maxlen: 24
185.56.72.0/22 maxlen: 22
45.93.95.0/24 maxlen: 24
45.93.92.0/24 maxlen: 24
45.93.94.0/24 maxlen: 24
45.93.93.0/24 maxlen: 24
81.28.7.0/24 maxlen: 24
91.223.106.0/24 maxlen: 24
63.250.63.0/24 maxlen: 24
63.250.61.0/24 maxlen: 24
63.250.62.0/24 maxlen: 24
185.28.152.0/24 maxlen: 24
185.28.154.0/24 maxlen: 24
185.28.153.0/24 maxlen: 24
185.28.155.0/24 maxlen: 24
83.229.71.0/24 maxlen: 24
83.229.70.0/24 maxlen: 24
83.229.74.0/24 maxlen: 24
83.229.73.0/24 maxlen: 24
83.229.72.0/24 maxlen: 24
103.13.209.0/24 maxlen: 24
185.253.75.0/24 maxlen: 24
185.253.73.0/24 maxlen: 24
185.253.72.0/24 maxlen: 24
185.162.125.0/24 maxlen: 24
185.162.124.0/24 maxlen: 24
185.162.126.0/24 maxlen: 24
185.47.175.0/24 maxlen: 24
91.202.171.0/24 maxlen: 24
91.202.168.0/24 maxlen: 24
91.202.170.0/24 maxlen: 24
91.202.169.0/24 maxlen: 24
91.226.76.0/24 maxlen: 24
91.226.72.0/24 maxlen: 24
2a06:c5c0:900::/48 maxlen: 48
2a06:c5c0:700::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 03 Sep 2023 07:29:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b8:ba:b3:62:da:61:19:21:5f:f0:22:e9:47:62:c0:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Jun 14 07:07:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=abfbc76227c0e6d0e11ae9ca8d52a7e02506652b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e7:ee:30:1b:a1:c1:90:98:d6:d0:60:38:1c:
7a:70:03:bc:0b:4b:1c:f5:3d:ab:e3:ba:bd:8d:bc:
66:11:db:8d:e7:42:81:26:2f:f4:11:df:25:b1:69:
e7:2b:de:b7:98:41:5c:ae:fb:54:79:bd:c3:cc:64:
dd:a0:cc:43:b2:32:01:98:98:a0:53:9c:d3:65:fa:
67:38:7f:2a:16:4d:46:e2:a7:da:72:5f:47:e7:4d:
a8:67:2e:64:a5:79:df:83:3a:dc:a5:cf:9a:03:4b:
96:d2:40:84:a9:b1:e0:ae:ee:ee:16:cf:1b:40:0f:
82:b6:a7:1c:5e:b1:81:cd:3d:6e:71:5b:ee:6b:89:
a6:a2:f6:35:c8:bd:21:d2:23:61:08:73:c2:3b:c1:
c2:94:b4:ff:25:3f:78:64:98:b8:2a:cc:1b:65:00:
66:29:ee:61:af:59:38:1a:c2:b4:4c:ff:83:01:f0:
16:9c:45:ac:df:bf:40:eb:56:9e:4f:8f:a1:71:f1:
b0:5c:11:e6:5c:32:7b:a6:66:77:1c:e6:b1:f7:78:
60:16:7e:aa:65:e9:17:00:3d:1b:79:81:00:78:4e:
52:23:55:78:82:75:ab:2c:a0:8b:38:84:1b:d4:21:
7a:11:aa:bb:a1:6d:5c:4d:cc:cc:b5:a6:45:e0:1e:
65:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:FB:C7:62:27:C0:E6:D0:E1:1A:E9:CA:8D:52:A7:E0:25:06:65:2B
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/q_vHYifA5tDhGunKjVKn4CUGZSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.248.0/21
31.133.100.0/24
31.133.102.0/23
45.83.40.0/24
45.83.42.0/23
45.93.92.0/22
63.250.61.0-63.250.63.255
81.28.7.0/24
83.229.70.0-83.229.74.255
91.202.168.0/22
91.223.106.0/24
91.226.72.0/24
91.226.76.0/24
91.228.126.0/23
103.13.209.0/24
109.207.76.0/24
109.207.79.0/24
185.28.152.0/22
185.47.175.0/24
185.56.72.0/22
185.162.124.0-185.162.126.255
185.220.207.0/24
185.241.4.0/22
185.253.72.0/23
185.253.75.0/24
188.191.147.0/24
194.36.89.0-194.36.91.255
195.28.180.0/23
195.238.120.0/24
212.80.204.0/22
IPv6:
2a06:c5c0:700::/48
2a06:c5c0:900::/48
Signature Algorithm: sha256WithRSAEncryption
7b:af:a7:b7:99:a6:2a:06:7e:bc:79:42:7f:4a:30:0c:6a:a6:
d2:bb:26:11:27:bf:51:83:d8:d4:a6:c4:d1:a8:85:d0:7d:5b:
af:71:a9:11:43:50:19:17:62:6d:da:de:f4:96:27:4e:62:95:
dc:33:79:c9:95:50:08:5e:06:13:03:0d:72:43:ce:a8:f7:49:
d5:d3:a1:23:ae:ce:a9:7e:56:eb:38:e3:03:16:fc:51:1a:70:
72:d6:41:2d:31:c3:e5:6f:ef:42:0a:d2:36:fa:f6:e6:f0:14:
e6:2e:bc:96:8e:9a:6b:a0:04:f3:69:50:97:e0:db:68:ba:62:
ac:20:b4:cc:b5:18:3b:48:5b:70:e6:2a:45:a4:ce:93:97:96:
9c:b3:ee:b6:ee:d1:45:09:65:c9:d7:1b:a7:04:78:96:e8:08:
39:72:81:4f:f5:78:61:c4:3d:75:9d:c5:21:12:33:e8:dc:e8:
ce:81:92:35:1e:5b:2f:f6:b1:71:7f:28:89:e3:18:94:2a:4f:
50:68:5e:ad:6f:57:09:ea:86:13:79:8d:a3:da:17:c9:5f:0a:
0f:20:0b:08:ce:10:0a:aa:b1:14:19:63:dc:5d:e3:7a:56:c4:
53:9e:c0:bc:28:28:d6:d9:f9:72:ac:f5:87:bf:34:c9:9e:df:
17:99:ef:df
-----BEGIN CERTIFICATE-----
MIIF6zCCBNOgAwIBAgISAYi4urNi2mEZIV/wIulHYsDjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1YmQ3OTIzYWZkYmFlODdkMDdiMjMwOGRkMzg5ZDljZjA4
MmVkNmQwHhcNMjMwNjE0MDcwNzAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYmZiYzc2MjI3YzBlNmQwZTExYWU5Y2E4ZDUyYTdlMDI1MDY2NTJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkefuMBuhwZCY1tBgOBx6cAO8C0sc
9T2r47q9jbxmEduN50KBJi/0Ed8lsWnnK963mEFcrvtUeb3DzGTdoMxDsjIBmJig
U5zTZfpnOH8qFk1G4qfacl9H502oZy5kpXnfgzrcpc+aA0uW0kCEqbHgru7uFs8b
QA+CtqccXrGBzT1ucVvua4mmovY1yL0h0iNhCHPCO8HClLT/JT94ZJi4KswbZQBm
Ke5hr1k4GsK0TP+DAfAWnEWs379A61aeT4+hcfGwXBHmXDJ7pmZ3HOax93hgFn6q
ZekXAD0beYEAeE5SI1V4gnWrLKCLOIQb1CF6Eaq7oW1cTczMtaZF4B5lRwIDAQAB
o4IC9zCCAvMwHQYDVR0OBBYEFKv7x2InwObQ4Rrpyo1Sp+AlBmUrMB8GA1UdIwQY
MBaAFOW9eSOv266H0HsjCN04nZzwgu1tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWIxNUk2X2Jyb2ZRZXlNSTNUaWRuUENDN1cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS8yNjkyMjktMjBlYi00ZjFjLWExM2Ut
MjZkMWU1NDU3OGYxLzEvcV92SFlpZkE1dERoR3VuS2pWS240Q1VHWlNzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS8yNjkyMjktMjBlYi00ZjFjLWExM2UtMjZkMWU1NDU3OGYx
LzEvNWIxNUk2X2Jyb2ZRZXlNSTNUaWRuUENDN1cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBCwYIKwYBBQUHAQcBAf8EgfswgfgwgdsEAgABMIHUAwQD
BWT4AwQAH4VkAwQBH4VmAwQALVMoAwQBLVMqAwQCLV1cMAwDBAA/+j0DBAY/+gAD
BABRHAcwDAMEAVPlRgMEAFPlSgMEAlvKqAMEAFvfagMEAFviSAMEAFviTAMEAVvk
fgMEAGcN0QMEAG3PTAMEAG3PTwMEArkcmAMEALkvrwMEArk4SDAMAwQCuaJ8AwQA
uaJ+AwQAudzPAwQCufEEAwQBuf1IAwQAuf1LAwQAvL+TMAwDBADCJFkDBALCJFgD
BAHDHLQDBADD7ngDBALUUMwwGAQCAAIwEgMHACoGxcAHAAMHACoGxcAJADANBgkq
hkiG9w0BAQsFAAOCAQEAe6+nt5mmKgZ+vHlCf0owDGqm0rsmESe/UYPY1KbE0aiF
0H1br3GpEUNQGRdibdre9JYnTmKV3DN5yZVQCF4GEwMNckPOqPdJ1dOhI67OqX5W
6zjjAxb8URpwctZBLTHD5W/vQgrSNvr25vAU5i68lo6aa6AE82lQl+DbaLpirCC0
zLUYO0hbcOYqRaTOk5eWnLPutu7RRQllydcbpwR4lugIOXKBT/V4YcQ9dZ3FIRIz
6NzozoGSNR5bL/axcX8oieMYlCpPUGherW9XCeqGE3mNo9oXyV8KDyALCM4QCqqx
FBlj3F3jelbEU57AvCgo1tn5cqz1h780yZ7fF5nv3w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:32 2024 by rpki-client on console-fra.rpki-client.org