Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/MnSznLBtr4byYfK-YPQ7cnfgCDA.roa
File: MnSznLBtr4byYfK-YPQ7cnfgCDA.roa (raw, json)
Hash identifier: Jl4VyQYxyS6aBcN15KhVsvMNwjVVjIdEMLXq/bX7ac4=
Subject key identifier: 32:74:B3:9C:B0:6D:AF:86:F2:61:F2:BE:60:F4:3B:72:77:E0:08:30
Certificate issuer: /CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Certificate serial: 018ADBADFC019CF1B89D8C81A42C00DE7E5F
Authority key identifier: 49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/MnSznLBtr4byYfK-YPQ7cnfgCDA.roa
Signing time: Thu 28 Sep 2023 12:05:27 +0000
ROA not before: Thu 28 Sep 2023 12:05:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51684
IP address blocks: 185.16.26.0/24 maxlen: 24
185.16.26.0/23 maxlen: 23
5.181.198.0/24 maxlen: 24
5.181.196.0/24 maxlen: 24
5.181.197.0/24 maxlen: 24
89.46.204.0/23 maxlen: 23
89.46.206.0/24 maxlen: 24
89.46.206.0/23 maxlen: 23
89.46.203.0/24 maxlen: 24
89.46.202.0/23 maxlen: 23
89.46.202.0/24 maxlen: 24
89.46.204.0/24 maxlen: 24
89.46.205.0/24 maxlen: 24
89.46.200.0/24 maxlen: 24
89.46.200.0/23 maxlen: 23
89.46.201.0/24 maxlen: 24
89.46.207.0/24 maxlen: 24
223.25.123.0/24 maxlen: 24
223.25.124.0/24 maxlen: 24
223.25.125.0/24 maxlen: 24
223.25.120.0/24 maxlen: 24
223.25.121.0/24 maxlen: 24
223.25.122.0/24 maxlen: 24
223.25.126.0/24 maxlen: 24
91.217.185.0/24 maxlen: 24
185.254.203.0/24 maxlen: 24
185.254.200.0/24 maxlen: 24
185.254.200.0/23 maxlen: 23
185.254.201.0/24 maxlen: 24
82.199.208.0/23 maxlen: 23
82.199.208.0/24 maxlen: 24
82.199.209.0/24 maxlen: 24
82.199.210.0/24 maxlen: 24
82.199.211.0/24 maxlen: 24
82.199.212.0/23 maxlen: 23
82.199.212.0/24 maxlen: 24
82.199.213.0/24 maxlen: 24
82.199.214.0/23 maxlen: 23
82.199.218.0/23 maxlen: 23
82.199.218.0/24 maxlen: 24
82.199.219.0/24 maxlen: 24
82.199.214.0/24 maxlen: 24
82.199.215.0/24 maxlen: 24
82.199.216.0/24 maxlen: 24
82.199.216.0/23 maxlen: 23
82.199.217.0/24 maxlen: 24
82.199.221.0/24 maxlen: 24
82.199.222.0/24 maxlen: 24
82.199.222.0/23 maxlen: 23
82.199.223.0/24 maxlen: 24
82.199.220.0/24 maxlen: 24
82.199.220.0/23 maxlen: 23
185.247.37.0/24 maxlen: 24
185.247.38.0/24 maxlen: 24
185.247.36.0/24 maxlen: 24
185.247.36.0/23 maxlen: 23
185.95.204.0/23 maxlen: 23
185.95.204.0/24 maxlen: 24
185.95.205.0/24 maxlen: 24
185.95.206.0/24 maxlen: 24
185.95.206.0/23 maxlen: 23
185.95.207.0/24 maxlen: 24
91.213.191.0/24 maxlen: 24
185.247.38.0/23 maxlen: 23
185.247.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Oct 2023 11:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:db:ad:fc:01:9c:f1:b8:9d:8c:81:a4:2c:00:de:7e:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Validity
Not Before: Sep 28 12:05:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3274b39cb06daf86f261f2be60f43b7277e00830
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:de:56:38:4b:fa:56:c1:e5:00:72:c3:7c:b3:
ea:38:1d:47:be:02:f1:f2:7b:a7:10:ce:2f:dd:8c:
50:e6:6f:6b:0e:76:60:82:76:bb:7a:29:64:aa:95:
86:c5:56:64:14:1f:23:1b:79:b3:ca:0f:78:ec:3f:
7d:ca:1c:0a:b1:aa:c0:c3:44:b0:14:55:58:ad:08:
12:08:d3:3f:63:a9:fa:06:a2:6b:3b:77:a8:f9:02:
2a:2b:94:4d:19:fe:06:4c:e5:73:d3:32:7c:bd:08:
2e:c9:01:52:5b:64:0a:5f:63:70:5a:f2:b7:da:3c:
ba:6a:6c:ed:bf:a5:22:db:1f:4a:cf:48:e8:74:8d:
9f:4c:3c:c8:c1:9e:7c:37:04:d9:5f:f7:39:83:16:
e2:77:da:b0:33:79:b9:32:43:47:af:4a:84:67:c4:
43:de:dd:d7:51:f1:f1:7d:be:c9:87:f9:77:32:d1:
af:4b:fc:ec:b6:9b:8f:00:aa:eb:2c:bf:f9:88:b2:
56:69:45:75:1f:de:53:38:f7:5b:b8:9f:58:c6:ad:
47:18:01:25:40:43:00:6f:0f:fa:af:f4:b0:2a:02:
ac:53:01:29:4a:6d:46:07:4d:84:06:ae:5e:f1:7c:
31:73:87:9f:12:8f:6e:04:c3:30:e5:44:50:52:2d:
5e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:74:B3:9C:B0:6D:AF:86:F2:61:F2:BE:60:F4:3B:72:77:E0:08:30
X509v3 Authority Key Identifier:
keyid:49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/MnSznLBtr4byYfK-YPQ7cnfgCDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/Sd2PGmKl1_gCEt4PPv51svozj_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.196.0-5.181.198.255
82.199.208.0/20
89.46.200.0/21
91.213.191.0/24
91.217.185.0/24
185.16.26.0/23
185.95.204.0/22
185.247.36.0/22
185.254.200.0/23
185.254.203.0/24
223.25.120.0-223.25.126.255
Signature Algorithm: sha256WithRSAEncryption
99:5c:2c:fb:85:9a:5a:7d:5f:d2:da:02:79:d9:ab:9d:74:94:
a3:97:8f:a0:67:5d:14:16:56:10:dc:f4:f4:d8:e8:aa:db:9a:
6d:e8:91:c4:aa:1d:aa:f9:27:82:6b:52:e5:15:06:a3:1d:c5:
1b:f8:e9:e1:80:0d:34:7f:4c:ef:00:59:65:13:2a:6b:60:a9:
06:4a:66:5b:08:ce:ff:2f:b7:d0:d4:3b:74:d2:25:3d:37:a3:
25:22:50:6f:46:d6:96:cf:09:cb:01:33:42:16:fb:dc:21:df:
88:a6:49:1a:ff:54:4b:73:a3:c5:ef:64:dc:fb:fb:af:c8:fc:
95:3f:84:ad:85:c6:23:ad:fb:0c:3a:be:01:20:49:e4:44:48:
20:0a:4f:b6:5d:a3:1b:bc:c0:0e:70:d2:89:9d:af:b7:87:3f:
bb:58:27:3d:f1:63:0b:78:c4:75:b9:ae:2c:73:e4:f5:96:5b:
bc:39:46:2f:80:9a:af:6e:ea:f9:21:d5:d4:88:42:c4:d7:76:
30:95:34:86:14:24:2a:ee:3d:31:da:d4:ce:53:a9:fe:14:fb:
7b:af:ed:14:43:f4:4a:cb:6e:19:94:e1:d8:f7:d6:09:93:88:
49:27:1c:e5:b5:48:38:02:c0:1d:a1:21:10:37:c8:70:a4:ca:
35:29:84:71
-----BEGIN CERTIFICATE-----
MIIFSTCCBDGgAwIBAgISAYrbrfwBnPG4nYyBpCwA3n5fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZGQ4ZjFhNjJhNWQ3ZjgwMjEyZGUwZjNlZmU3NWIyZmEz
MzhmZmUwHhcNMjMwOTI4MTIwNTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMjc0YjM5Y2IwNmRhZjg2ZjI2MWYyYmU2MGY0M2I3Mjc3ZTAwODMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnd5WOEv6VsHlAHLDfLPqOB1HvgLx
8nunEM4v3YxQ5m9rDnZggna7eilkqpWGxVZkFB8jG3mzyg947D99yhwKsarAw0Sw
FFVYrQgSCNM/Y6n6BqJrO3eo+QIqK5RNGf4GTOVz0zJ8vQguyQFSW2QKX2NwWvK3
2jy6amztv6Ui2x9Kz0jodI2fTDzIwZ58NwTZX/c5gxbid9qwM3m5MkNHr0qEZ8RD
3t3XUfHxfb7Jh/l3MtGvS/zstpuPAKrrLL/5iLJWaUV1H95TOPdbuJ9Yxq1HGAEl
QEMAbw/6r/SwKgKsUwEpSm1GB02EBq5e8Xwxc4efEo9uBMMw5URQUi1e1wIDAQAB
o4ICVTCCAlEwHQYDVR0OBBYEFDJ0s5ywba+G8mHyvmD0O3J34AgwMB8GA1UdIwQY
MBaAFEndjxpipdf4AhLeDz7+dbL6M4/+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2QyUEdtS2wxX2dDRXQ0UFB2NTFzdm96al80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi8wMWIxZWYtMjMzYi00ZDZmLThkY2Yt
Y2VlYzQ5MTI0YzBmLzEvTW5Tem5MQnRyNGJ5WWZLLVlQUTdjbmZnQ0RBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi8wMWIxZWYtMjMzYi00ZDZmLThkY2YtY2VlYzQ5MTI0YzBm
LzEvU2QyUEdtS2wxX2dDRXQ0UFB2NTFzdm96al80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGsGCCsGAQUFBwEHAQH/BFwwWjBYBAIAATBSMAwDBAIFtcQD
BAAFtcYDBARSx9ADBANZLsgDBABb1b8DBABb2bkDBAG5EBoDBAK5X8wDBAK59yQD
BAG5/sgDBAC5/sswDAMEA98ZeAMEAN8ZfjANBgkqhkiG9w0BAQsFAAOCAQEAmVws
+4WaWn1f0toCedmrnXSUo5ePoGddFBZWENz09NjoqtuabeiRxKodqvkngmtS5RUG
ox3FG/jp4YANNH9M7wBZZRMqa2CpBkpmWwjO/y+30NQ7dNIlPTejJSJQb0bWls8J
ywEzQhb73CHfiKZJGv9US3Ojxe9k3Pv7r8j8lT+ErYXGI637DDq+ASBJ5ERIIApP
tl2jG7zADnDSiZ2vt4c/u1gnPfFjC3jEdbmuLHPk9ZZbvDlGL4Car27q+SHV1IhC
xNd2MJU0hhQkKu49MdrUzlOp/hT7e6/tFEP0SstuGZTh2PfWCZOISScc5bVIOALA
HaEhEDfIcKTKNSmEcQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:16 2024 by rpki-client on console-ams.rpki-client.org