Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/0F3ZIok1Ru6DUV1VhXK4UGDvzpY.roa
File: 0F3ZIok1Ru6DUV1VhXK4UGDvzpY.roa (raw, json)
Hash identifier: oYbm5f9cOGmvKZE8Su/FSXvdLhIYZk6EGYVci1nCMnM=
Subject key identifier: D0:5D:D9:22:89:35:46:EE:83:51:5D:55:85:72:B8:50:60:EF:CE:96
Certificate issuer: /CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Certificate serial: 0190ACD7AECB75E9A608DFC560FF2BBAA0BB
Authority key identifier: 49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/0F3ZIok1Ru6DUV1VhXK4UGDvzpY.roa
Signing time: Sat 13 Jul 2024 16:05:34 +0000
ROA not before: Sat 13 Jul 2024 16:05:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51684
IP address blocks: 5.181.196.0/24 maxlen: 24
5.181.197.0/24 maxlen: 24
5.181.198.0/24 maxlen: 24
82.199.208.0/23 maxlen: 23
82.199.208.0/24 maxlen: 24
82.199.209.0/24 maxlen: 24
82.199.210.0/24 maxlen: 24
82.199.211.0/24 maxlen: 24
82.199.212.0/23 maxlen: 23
82.199.212.0/24 maxlen: 24
82.199.213.0/24 maxlen: 24
82.199.214.0/23 maxlen: 23
82.199.214.0/24 maxlen: 24
82.199.215.0/24 maxlen: 24
82.199.216.0/23 maxlen: 23
82.199.216.0/24 maxlen: 24
82.199.217.0/24 maxlen: 24
82.199.218.0/23 maxlen: 23
82.199.218.0/24 maxlen: 24
82.199.219.0/24 maxlen: 24
82.199.220.0/23 maxlen: 23
82.199.220.0/24 maxlen: 24
82.199.221.0/24 maxlen: 24
82.199.222.0/23 maxlen: 23
82.199.222.0/24 maxlen: 24
82.199.223.0/24 maxlen: 24
89.46.200.0/23 maxlen: 23
89.46.200.0/24 maxlen: 24
89.46.201.0/24 maxlen: 24
89.46.202.0/23 maxlen: 23
89.46.202.0/24 maxlen: 24
89.46.203.0/24 maxlen: 24
89.46.204.0/23 maxlen: 23
89.46.204.0/24 maxlen: 24
89.46.205.0/24 maxlen: 24
89.46.206.0/23 maxlen: 23
89.46.206.0/24 maxlen: 24
89.46.207.0/24 maxlen: 24
91.213.191.0/24 maxlen: 24
91.217.185.0/24 maxlen: 24
185.16.26.0/23 maxlen: 23
185.16.26.0/24 maxlen: 24
185.95.204.0/23 maxlen: 23
185.95.204.0/24 maxlen: 24
185.95.205.0/24 maxlen: 24
185.95.206.0/23 maxlen: 23
185.95.206.0/24 maxlen: 24
185.95.207.0/24 maxlen: 24
185.247.36.0/23 maxlen: 23
185.247.36.0/24 maxlen: 24
185.247.37.0/24 maxlen: 24
185.247.38.0/23 maxlen: 23
185.247.38.0/24 maxlen: 24
185.247.39.0/24 maxlen: 24
185.254.200.0/23 maxlen: 23
185.254.200.0/24 maxlen: 24
185.254.201.0/24 maxlen: 24
185.254.203.0/24 maxlen: 24
212.95.128.0/24 maxlen: 24
212.95.129.0/24 maxlen: 24
212.95.130.0/24 maxlen: 24
212.95.131.0/24 maxlen: 24
212.95.132.0/24 maxlen: 24
212.95.133.0/24 maxlen: 24
212.95.134.0/24 maxlen: 24
212.95.135.0/24 maxlen: 24
212.95.136.0/24 maxlen: 24
212.95.137.0/24 maxlen: 24
212.95.138.0/24 maxlen: 24
212.95.139.0/24 maxlen: 24
212.95.140.0/24 maxlen: 24
212.95.141.0/24 maxlen: 24
212.95.142.0/24 maxlen: 24
212.95.143.0/24 maxlen: 24
212.95.144.0/24 maxlen: 24
212.95.145.0/24 maxlen: 24
212.95.146.0/24 maxlen: 24
212.95.147.0/24 maxlen: 24
223.25.120.0/24 maxlen: 24
223.25.121.0/24 maxlen: 24
223.25.122.0/24 maxlen: 24
223.25.123.0/24 maxlen: 24
223.25.124.0/24 maxlen: 24
223.25.125.0/24 maxlen: 24
223.25.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Aug 2024 13:48:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ac:d7:ae:cb:75:e9:a6:08:df:c5:60:ff:2b:ba:a0:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Validity
Not Before: Jul 13 16:05:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d05dd922893546ee83515d558572b85060efce96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c8:06:0a:f3:69:69:eb:99:42:a6:64:33:5b:
61:e2:9d:03:2b:5a:33:cb:5d:a5:e0:1c:a2:c4:cb:
25:17:b6:e7:08:5e:8c:2a:55:9b:c7:d1:b4:61:45:
f3:4d:2d:49:c5:8d:35:0d:32:f8:98:94:86:e7:aa:
21:d4:ec:30:bb:f1:0a:12:7e:84:ec:28:78:2f:c5:
3a:21:f6:64:98:be:ae:57:54:3f:34:bc:aa:a6:c0:
b8:d6:75:26:34:6e:97:7f:56:50:50:7e:be:46:14:
70:42:60:6d:96:3b:21:d9:dc:d0:22:4d:ab:ca:1e:
a8:32:77:a7:ba:d9:12:3a:34:81:c6:e6:46:ee:f8:
39:0c:d0:e3:eb:9e:1d:bc:2e:10:74:b9:cb:19:d4:
03:dc:3e:d8:2e:c3:fd:f9:6c:d9:67:51:69:1d:37:
27:78:55:42:25:83:02:83:fb:f9:97:70:85:0c:4b:
6e:ba:4e:75:b8:68:2f:a9:61:82:44:d1:ae:b9:f6:
a3:61:7a:da:a0:4a:cd:ad:bb:56:4d:84:40:94:ab:
81:50:ec:61:0d:a3:80:ad:00:80:ca:d0:cd:ae:35:
a0:0e:99:eb:98:a5:b0:ad:43:3e:93:1f:b8:2f:13:
2d:fd:ec:d1:89:be:8b:90:0e:5d:2d:66:30:47:e0:
d0:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:5D:D9:22:89:35:46:EE:83:51:5D:55:85:72:B8:50:60:EF:CE:96
X509v3 Authority Key Identifier:
keyid:49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/0F3ZIok1Ru6DUV1VhXK4UGDvzpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/Sd2PGmKl1_gCEt4PPv51svozj_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.196.0-5.181.198.255
82.199.208.0/20
89.46.200.0/21
91.213.191.0/24
91.217.185.0/24
185.16.26.0/23
185.95.204.0/22
185.247.36.0/22
185.254.200.0/23
185.254.203.0/24
212.95.128.0-212.95.147.255
223.25.120.0-223.25.126.255
Signature Algorithm: sha256WithRSAEncryption
34:05:5f:2e:90:16:28:a9:5e:b1:9a:27:4c:44:69:9d:42:eb:
7f:47:a2:7a:b8:33:3c:70:cc:ce:7b:82:a3:e2:4d:25:5d:2f:
a4:ad:8b:6e:47:4f:a0:e1:7e:e4:3e:0b:15:5e:50:8a:01:66:
02:f5:65:4d:e3:8a:10:12:8e:39:f8:1c:3b:79:22:13:34:3c:
e9:54:f3:8c:f7:5b:dc:8e:cc:6d:b6:fe:f0:c1:8d:76:05:c7:
14:23:aa:1a:c9:02:63:0b:b7:8c:bb:24:02:0d:c5:d2:0c:0b:
0f:01:19:19:fb:e5:01:86:25:2f:33:1f:87:e0:8c:ca:55:3c:
ca:e7:d3:32:88:81:12:8f:10:ec:89:9c:d3:f0:59:f0:3b:51:
2f:6d:c3:7a:74:2c:63:1b:82:95:e3:0e:ca:03:b5:04:35:bc:
9b:e6:b4:fb:bc:b4:35:a9:8b:19:1d:da:00:e6:71:e9:68:43:
a6:07:8a:f1:e8:66:9c:8d:4d:0a:f7:49:94:7b:2e:22:d2:20:
05:14:d2:7b:65:85:12:81:64:ca:8b:04:8b:c8:23:be:96:72:
ac:af:ba:02:38:2c:69:43:30:3c:07:fe:cb:82:f1:b8:9e:cd:
c5:85:f8:84:6b:cb:ce:ba:8b:51:7a:3f:32:fe:78:bb:47:26:
f0:ef:c8:3f
-----BEGIN CERTIFICATE-----
MIIFVzCCBD+gAwIBAgISAZCs167LdemmCN/FYP8ruqC7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZGQ4ZjFhNjJhNWQ3ZjgwMjEyZGUwZjNlZmU3NWIyZmEz
MzhmZmUwHhcNMjQwNzEzMTYwNTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMDVkZDkyMjg5MzU0NmVlODM1MTVkNTU4NTcyYjg1MDYwZWZjZTk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvMgGCvNpaeuZQqZkM1th4p0DK1oz
y12l4ByixMslF7bnCF6MKlWbx9G0YUXzTS1JxY01DTL4mJSG56oh1Owwu/EKEn6E
7Ch4L8U6IfZkmL6uV1Q/NLyqpsC41nUmNG6Xf1ZQUH6+RhRwQmBtljsh2dzQIk2r
yh6oMnenutkSOjSBxuZG7vg5DNDj654dvC4QdLnLGdQD3D7YLsP9+WzZZ1FpHTcn
eFVCJYMCg/v5l3CFDEtuuk51uGgvqWGCRNGuufajYXraoErNrbtWTYRAlKuBUOxh
DaOArQCAytDNrjWgDpnrmKWwrUM+kx+4LxMt/ezRib6LkA5dLWYwR+DQfQIDAQAB
o4ICYzCCAl8wHQYDVR0OBBYEFNBd2SKJNUbug1FdVYVyuFBg786WMB8GA1UdIwQY
MBaAFEndjxpipdf4AhLeDz7+dbL6M4/+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2QyUEdtS2wxX2dDRXQ0UFB2NTFzdm96al80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi8wMWIxZWYtMjMzYi00ZDZmLThkY2Yt
Y2VlYzQ5MTI0YzBmLzEvMEYzWklvazFSdTZEVVYxVmhYSzRVR0R2enBZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi8wMWIxZWYtMjMzYi00ZDZmLThkY2YtY2VlYzQ5MTI0YzBm
LzEvU2QyUEdtS2wxX2dDRXQ0UFB2NTFzdm96al80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHkGCCsGAQUFBwEHAQH/BGowaDBmBAIAATBgMAwDBAIFtcQD
BAAFtcYDBARSx9ADBANZLsgDBABb1b8DBABb2bkDBAG5EBoDBAK5X8wDBAK59yQD
BAG5/sgDBAC5/sswDAMEB9RfgAMEAtRfkDAMAwQD3xl4AwQA3xl+MA0GCSqGSIb3
DQEBCwUAA4IBAQA0BV8ukBYoqV6xmidMRGmdQut/R6J6uDM8cMzOe4Kj4k0lXS+k
rYtuR0+g4X7kPgsVXlCKAWYC9WVN44oQEo45+Bw7eSITNDzpVPOM91vcjsxttv7w
wY12BccUI6oayQJjC7eMuyQCDcXSDAsPARkZ++UBhiUvMx+H4IzKVTzK59MyiIES
jxDsiZzT8FnwO1EvbcN6dCxjG4KV4w7KA7UENbyb5rT7vLQ1qYsZHdoA5nHpaEOm
B4rx6GacjU0K90mUey4i0iAFFNJ7ZYUSgWTKiwSLyCO+lnKsr7oCOCxpQzA8B/7L
gvG4ns3FhfiEa8vOuotRej8y/ni7Rybw78g/
-----END CERTIFICATE-----
Generated at Wed Aug 7 17:36:11 2024 by rpki-client on console-ams.rpki-client.org