Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/UcD5nvsaR1T4edmRQZP8vvqcoFc.roa
File: UcD5nvsaR1T4edmRQZP8vvqcoFc.roa (raw, json)
Hash identifier: BO7W0qbohY1eMnktM+q409KKe7cQzEPEyyEhzexLRkg=
Subject key identifier: 51:C0:F9:9E:FB:1A:47:54:F8:79:D9:91:41:93:FC:BE:FA:9C:A0:57
Certificate issuer: /CN=2f814adc1d5209e098f078adbc856bad83b749c2
Certificate serial: 018B23C4B4E07CD2D64779DEBFCE03CD9029
Authority key identifier: 2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/UcD5nvsaR1T4edmRQZP8vvqcoFc.roa
Signing time: Thu 12 Oct 2023 12:02:55 +0000
ROA not before: Thu 12 Oct 2023 12:02:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16322
IP address blocks: 31.214.248.0/21 maxlen: 21
37.228.131.0/24 maxlen: 24
37.228.135.0/24 maxlen: 24
37.228.133.0/24 maxlen: 24
37.228.136.0/22 maxlen: 22
31.214.200.0/23 maxlen: 23
31.214.228.0/22 maxlen: 22
134.255.200.0/21 maxlen: 21
134.255.245.0/24 maxlen: 24
134.255.246.0/24 maxlen: 24
134.255.249.0/24 maxlen: 24
134.255.196.0/23 maxlen: 23
82.99.192.0/24 maxlen: 24
82.99.192.0/19 maxlen: 22
82.99.192.0/18 maxlen: 18
82.99.193.0/24 maxlen: 24
82.99.195.0/24 maxlen: 24
82.99.196.0/24 maxlen: 24
31.214.146.0/23 maxlen: 23
31.214.146.0/24 maxlen: 24
31.214.147.0/24 maxlen: 24
31.214.154.0/24 maxlen: 24
31.214.172.0/22 maxlen: 22
31.214.170.0/23 maxlen: 23
31.214.168.0/23 maxlen: 23
31.214.168.0/21 maxlen: 21
82.99.204.0/24 maxlen: 24
82.99.206.0/24 maxlen: 24
82.99.201.0/24 maxlen: 24
82.99.212.0/24 maxlen: 24
82.99.209.0/24 maxlen: 24
82.99.210.0/24 maxlen: 24
82.99.216.0/22 maxlen: 22
82.99.225.0/24 maxlen: 24
82.99.224.0/19 maxlen: 19
82.99.233.0/24 maxlen: 24
82.99.228.0/24 maxlen: 24
82.99.230.0/24 maxlen: 24
82.99.231.0/24 maxlen: 24
82.99.240.0/24 maxlen: 24
82.99.235.0/24 maxlen: 24
31.214.132.0/23 maxlen: 23
82.99.249.0/24 maxlen: 24
82.99.250.0/24 maxlen: 24
82.99.251.0/24 maxlen: 24
91.98.192.0/20 maxlen: 20
91.98.192.0/19 maxlen: 19
91.98.208.0/20 maxlen: 20
91.98.224.0/24 maxlen: 24
91.98.226.0/23 maxlen: 23
91.98.224.0/19 maxlen: 19
91.98.144.0/23 maxlen: 23
91.98.152.0/22 maxlen: 22
91.98.160.0/20 maxlen: 20
91.98.160.0/19 maxlen: 19
91.98.240.0/21 maxlen: 21
91.98.252.0/23 maxlen: 23
91.98.0.0/22 maxlen: 22
37.10.109.0/24 maxlen: 24
91.98.0.0/20 maxlen: 20
37.10.117.0/24 maxlen: 24
91.98.0.0/16 maxlen: 24
91.98.16.0/24 maxlen: 24
91.98.19.0/24 maxlen: 24
37.10.64.0/22 maxlen: 22
185.10.71.0/24 maxlen: 24
91.98.82.0/24 maxlen: 24
91.98.84.0/22 maxlen: 22
91.98.88.0/24 maxlen: 24
91.98.111.0/24 maxlen: 24
91.98.57.0/24 maxlen: 24
91.98.64.0/19 maxlen: 19
91.98.68.0/24 maxlen: 24
46.251.224.0/24 maxlen: 24
46.251.226.0/24 maxlen: 24
46.251.237.0/24 maxlen: 24
109.230.246.0/23 maxlen: 23
109.230.246.0/24 maxlen: 24
109.230.242.0/24 maxlen: 24
95.156.222.0/23 maxlen: 23
109.230.251.0/24 maxlen: 24
109.230.247.0/24 maxlen: 24
95.156.233.0/24 maxlen: 24
95.156.236.0/23 maxlen: 23
95.156.234.0/23 maxlen: 23
95.156.248.0/23 maxlen: 23
109.230.192.0/23 maxlen: 23
109.230.200.0/24 maxlen: 24
109.230.204.0/22 maxlen: 22
109.230.223.0/24 maxlen: 24
109.230.221.0/24 maxlen: 24
46.41.192.0/19 maxlen: 19
46.41.192.0/20 maxlen: 20
46.41.192.0/18 maxlen: 18
46.41.224.0/20 maxlen: 20
46.41.224.0/19 maxlen: 19
185.13.228.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 24 Oct 2023 09:11:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:23:c4:b4:e0:7c:d2:d6:47:79:de:bf:ce:03:cd:90:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f814adc1d5209e098f078adbc856bad83b749c2
Validity
Not Before: Oct 12 12:02:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51c0f99efb1a4754f879d9914193fcbefa9ca057
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d7:3d:2d:62:dc:5f:03:ac:e5:a5:ec:3a:ad:
5c:3e:cd:dc:ad:30:f0:99:8c:d2:e1:58:95:58:ad:
32:52:06:32:77:88:df:a6:28:de:9d:df:bf:2a:3c:
78:09:10:d5:2b:88:ba:f2:04:4d:c7:a3:aa:8e:ca:
c5:b0:58:95:00:4d:71:9f:61:b6:69:df:1a:e5:5f:
b6:e0:d0:de:6a:b2:c1:2a:14:36:87:45:d9:84:f5:
b7:56:90:13:f3:d5:62:6b:e3:57:0a:c8:04:11:6f:
0e:88:e8:98:26:fd:71:5f:8a:7b:e8:cf:50:7d:a8:
36:f9:68:7c:93:b9:30:49:5f:95:c7:e7:f6:96:8f:
ee:17:64:32:03:a3:98:8a:be:44:9c:9e:f4:5b:28:
18:5d:01:02:c1:31:35:1c:81:c7:a0:47:37:07:fe:
63:ef:c0:4e:ef:f0:82:8e:9b:e4:01:ff:5c:a8:55:
26:67:6b:1d:96:21:2e:96:55:54:38:ac:3b:1a:2b:
c5:94:b5:5f:dc:53:47:4f:de:8b:c1:fc:4f:58:cc:
df:01:88:fa:f7:0d:0d:3d:46:27:cf:46:7e:9e:5e:
bf:75:08:99:fb:05:8c:9e:96:69:6f:0c:a6:43:d8:
04:08:0f:ea:45:24:d0:1c:8c:c0:d6:36:57:5d:5b:
8b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:C0:F9:9E:FB:1A:47:54:F8:79:D9:91:41:93:FC:BE:FA:9C:A0:57
X509v3 Authority Key Identifier:
keyid:2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/UcD5nvsaR1T4edmRQZP8vvqcoFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/L4FK3B1SCeCY8HitvIVrrYO3ScI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.214.132.0/23
31.214.146.0/23
31.214.154.0/24
31.214.168.0/21
31.214.200.0/23
31.214.228.0/22
31.214.248.0/21
37.10.64.0/22
37.10.109.0/24
37.10.117.0/24
37.228.131.0/24
37.228.133.0/24
37.228.135.0-37.228.139.255
46.41.192.0/18
46.251.224.0/24
46.251.226.0/24
46.251.237.0/24
82.99.192.0/18
91.98.0.0/16
95.156.222.0/23
95.156.233.0-95.156.237.255
95.156.248.0/23
109.230.192.0/23
109.230.200.0/24
109.230.204.0/22
109.230.221.0/24
109.230.223.0/24
109.230.242.0/24
109.230.246.0/23
109.230.251.0/24
134.255.196.0/23
134.255.200.0/21
134.255.245.0-134.255.246.255
134.255.249.0/24
185.10.71.0/24
185.13.228.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:52:1b:ac:04:be:8b:9b:d6:e6:4e:c4:bf:25:91:21:24:4c:
80:02:66:77:95:d6:fd:83:6e:ef:e3:4e:9b:3f:31:49:2b:8b:
34:c2:ab:98:b1:b5:95:95:45:4d:76:fd:23:e0:bb:c1:ea:cf:
f3:5f:e7:c3:1e:62:95:15:41:b8:21:51:e5:18:e1:f6:93:09:
22:fc:b7:96:0c:cc:da:35:c5:b5:b0:c1:38:e4:07:dd:b4:58:
ee:dc:11:23:cb:1b:01:d4:98:94:4f:d2:b2:0c:3f:a3:56:4d:
0e:11:e6:cb:a0:a3:81:f5:33:b0:1d:c8:fc:10:ce:36:b4:89:
eb:ee:eb:cf:a9:b1:f5:27:91:12:43:e8:3e:7c:bb:c2:57:75:
32:a3:af:32:09:29:2f:02:0e:50:0e:9a:b5:26:bb:89:d8:bd:
1e:6b:26:48:92:9f:e1:d1:69:26:aa:32:d2:f9:20:11:70:52:
1c:69:be:56:60:81:38:47:24:fe:f6:37:31:d4:69:69:b2:2c:
53:eb:4c:2d:ff:3e:ff:48:03:f7:89:98:82:54:8b:73:a0:4b:
4a:45:35:84:83:3a:da:ca:44:1e:35:12:0b:12:0c:6a:bf:5c:
9b:7b:f9:1a:b3:2f:ee:1f:37:a1:7e:19:2a:2a:51:d0:46:29:
22:93:0a:6f
-----BEGIN CERTIFICATE-----
MIIF7DCCBNSgAwIBAgISAYsjxLTgfNLWR3nev84DzZApMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmODE0YWRjMWQ1MjA5ZTA5OGYwNzhhZGJjODU2YmFkODNi
NzQ5YzIwHhcNMjMxMDEyMTIwMjU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MWMwZjk5ZWZiMWE0NzU0Zjg3OWQ5OTE0MTkzZmNiZWZhOWNhMDU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAltc9LWLcXwOs5aXsOq1cPs3crTDw
mYzS4ViVWK0yUgYyd4jfpijend+/Kjx4CRDVK4i68gRNx6OqjsrFsFiVAE1xn2G2
ad8a5V+24NDearLBKhQ2h0XZhPW3VpAT89Via+NXCsgEEW8OiOiYJv1xX4p76M9Q
fag2+Wh8k7kwSV+Vx+f2lo/uF2QyA6OYir5EnJ70WygYXQECwTE1HIHHoEc3B/5j
78BO7/CCjpvkAf9cqFUmZ2sdliEullVUOKw7GivFlLVf3FNHT96LwfxPWMzfAYj6
9w0NPUYnz0Z+nl6/dQiZ+wWMnpZpbwymQ9gECA/qRSTQHIzA1jZXXVuLhwIDAQAB
o4IC+DCCAvQwHQYDVR0OBBYEFFHA+Z77GkdU+HnZkUGT/L76nKBXMB8GA1UdIwQY
MBaAFC+BStwdUgngmPB4rbyFa62Dt0nCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDRGSzNCMVNDZUNZOEhpdHZJVnJyWU8zU2NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi8xM2UxMmEtMmJhYy00NzUyLTk5N2Qt
ZGY4NmI2ZGQ5OTdjLzEvVWNENW52c2FSMVQ0ZWRtUlFaUDh2dnFjb0ZjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi8xM2UxMmEtMmJhYy00NzUyLTk5N2QtZGY4NmI2ZGQ5OTdj
LzEvTDRGSzNCMVNDZUNZOEhpdHZJVnJyWU8zU2NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBDAYIKwYBBQUHAQcBAf8EgfwwgfkwgfYEAgABMIHvAwQB
H9aEAwQBH9aSAwQAH9aaAwQDH9aoAwQBH9bIAwQCH9bkAwQDH9b4AwQCJQpAAwQA
JQptAwQAJQp1AwQAJeSDAwQAJeSFMAwDBAAl5IcDBAIl5IgDBAYuKcADBAAu++AD
BAAu++IDBAAu++0DBAZSY8ADAwBbYgMEAV+c3jAMAwQAX5zpAwQBX5zsAwQBX5z4
AwQBbebAAwQAbebIAwQCbebMAwQAbebdAwQAbebfAwQAbebyAwQBbeb2AwQAbeb7
AwQBhv/EAwQDhv/IMAwDBACG//UDBACG//YDBACG//kDBAC5CkcDBAK5DeQwDQYJ
KoZIhvcNAQELBQADggEBAD5SG6wEvoub1uZOxL8lkSEkTIACZneV1v2Dbu/jTps/
MUkrizTCq5ixtZWVRU12/SPgu8Hqz/Nf58MeYpUVQbghUeUY4faTCSL8t5YMzNo1
xbWwwTjkB920WO7cESPLGwHUmJRP0rIMP6NWTQ4R5sugo4H1M7AdyPwQzja0ievu
68+psfUnkRJD6D58u8JXdTKjrzIJKS8CDlAOmrUmu4nYvR5rJkiSn+HRaSaqMtL5
IBFwUhxpvlZggThHJP72NzHUaWmyLFPrTC3/Pv9IA/eJmIJUi3OgS0pFNYSDOtrK
RB41EgsSDGq/XJt7+RqzL+4fN6F+GSoqUdBGKSKTCm8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:06 2024 by rpki-client on console-ams.rpki-client.org