Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/PurFZQgL1NMLfAkTstJuOjT_kwo.roa
File: PurFZQgL1NMLfAkTstJuOjT_kwo.roa (raw, json)
Hash identifier: uqrqfmmsOOeZH8Q2lCDKivu4R9ooMrg7P07AhmPdxP4=
Subject key identifier: 3E:EA:C5:65:08:0B:D4:D3:0B:7C:09:13:B2:D2:6E:3A:34:FF:93:0A
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 01882E9EBB234DE2516B254ED106A1C77B86
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/PurFZQgL1NMLfAkTstJuOjT_kwo.roa
Signing time: Thu 18 May 2023 11:28:54 +0000
ROA not before: Thu 18 May 2023 11:28:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8717
IP address blocks: 89.215.0.0/16 maxlen: 16
89.215.8.0/22 maxlen: 22
62.221.128.0/19 maxlen: 19
62.221.128.0/24 maxlen: 24
82.147.128.0/19 maxlen: 19
95.140.208.0/20 maxlen: 20
213.222.32.0/19 maxlen: 19
213.222.59.0/24 maxlen: 24
84.242.128.0/18 maxlen: 18
89.215.40.0/22 maxlen: 22
5.53.128.0/17 maxlen: 17
89.215.48.0/22 maxlen: 22
176.12.0.0/18 maxlen: 18
92.247.168.0/24 maxlen: 24
87.227.128.0/17 maxlen: 17
217.18.240.0/20 maxlen: 20
92.247.0.0/16 maxlen: 16
92.247.29.0/24 maxlen: 24
217.10.240.0/20 maxlen: 20
89.253.128.0/18 maxlen: 18
89.186.200.0/21 maxlen: 21
213.240.192.0/18 maxlen: 18
217.79.32.0/20 maxlen: 20
92.247.67.0/24 maxlen: 24
213.226.0.0/18 maxlen: 18
213.226.9.0/24 maxlen: 24
213.226.6.0/24 maxlen: 24
213.226.5.0/24 maxlen: 24
85.118.64.0/19 maxlen: 19
212.91.160.0/19 maxlen: 19
212.91.172.0/24 maxlen: 24
212.91.186.0/24 maxlen: 24
212.91.181.0/24 maxlen: 24
212.91.184.0/24 maxlen: 24
212.91.185.0/24 maxlen: 24
212.91.187.0/24 maxlen: 24
213.226.31.0/24 maxlen: 24
213.226.35.0/24 maxlen: 24
213.226.48.0/24 maxlen: 24
213.226.47.0/24 maxlen: 24
80.253.48.0/20 maxlen: 20
195.24.32.0/19 maxlen: 19
85.91.128.0/19 maxlen: 19
78.83.146.0/24 maxlen: 24
78.83.151.0/24 maxlen: 24
78.83.149.0/24 maxlen: 24
78.83.150.0/24 maxlen: 24
84.252.0.0/18 maxlen: 18
78.83.147.0/24 maxlen: 24
78.83.148.0/24 maxlen: 24
83.97.24.0/21 maxlen: 21
78.83.160.0/24 maxlen: 24
212.50.0.0/19 maxlen: 19
212.50.7.0/24 maxlen: 24
77.70.0.0/17 maxlen: 17
151.251.237.0/24 maxlen: 24
78.83.143.0/24 maxlen: 24
78.83.144.0/24 maxlen: 24
78.83.145.0/24 maxlen: 24
87.97.128.0/17 maxlen: 17
95.111.0.0/17 maxlen: 17
212.104.96.0/19 maxlen: 19
87.97.160.0/22 maxlen: 22
78.83.210.0/24 maxlen: 24
213.191.160.0/19 maxlen: 19
78.83.226.0/23 maxlen: 23
78.83.225.0/24 maxlen: 24
217.9.224.0/20 maxlen: 20
130.204.0.0/16 maxlen: 16
85.130.0.0/17 maxlen: 17
88.203.204.0/24 maxlen: 24
151.251.0.0/16 maxlen: 16
195.149.248.0/21 maxlen: 21
88.203.237.0/24 maxlen: 24
212.36.0.0/19 maxlen: 19
212.36.6.0/24 maxlen: 24
82.103.103.0/24 maxlen: 24
82.103.110.0/23 maxlen: 23
85.130.95.0/24 maxlen: 24
82.103.109.0/24 maxlen: 24
85.130.96.0/23 maxlen: 23
37.63.0.0/17 maxlen: 17
62.204.128.0/19 maxlen: 19
62.204.128.0/24 maxlen: 24
62.204.130.0/24 maxlen: 24
82.103.120.0/24 maxlen: 24
78.90.0.0/16 maxlen: 16
82.103.126.0/24 maxlen: 24
82.103.127.0/24 maxlen: 24
85.130.120.0/23 maxlen: 23
89.190.192.0/19 maxlen: 19
78.83.0.0/16 maxlen: 16
82.103.64.0/18 maxlen: 18
46.238.0.0/18 maxlen: 18
46.238.14.0/24 maxlen: 24
82.103.91.0/24 maxlen: 24
85.196.128.0/18 maxlen: 18
77.236.160.0/19 maxlen: 19
77.236.178.0/23 maxlen: 23
88.203.147.0/24 maxlen: 24
212.95.161.0/24 maxlen: 24
212.95.160.0/19 maxlen: 19
88.203.128.0/17 maxlen: 17
88.203.128.0/24 maxlen: 24
88.203.129.0/24 maxlen: 24
88.203.128.0/23 maxlen: 23
89.215.214.0/24 maxlen: 24
195.34.96.0/19 maxlen: 19
213.169.32.0/19 maxlen: 19
195.34.101.0/24 maxlen: 24
195.34.122.0/24 maxlen: 24
2a01:288::/32 maxlen: 32
2a00:4800::/29 maxlen: 29
2a01:288:400b::/48 maxlen: 48
2a01:288:400c::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 18 May 2023 12:49:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2e:9e:bb:23:4d:e2:51:6b:25:4e:d1:06:a1:c7:7b:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: May 18 11:28:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3eeac565080bd4d30b7c0913b2d26e3a34ff930a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ed:23:84:fb:b7:14:47:0d:78:d1:81:6f:ff:
28:b6:84:46:3a:96:ec:55:48:f9:eb:0e:d3:17:06:
b5:d0:c6:86:04:c5:2c:27:b1:05:d4:48:61:23:72:
8c:6f:dd:25:93:92:04:c2:fa:2b:d2:65:c1:13:d8:
4d:c3:18:45:12:7b:26:55:9e:ec:ac:54:5a:cc:72:
b2:7d:b3:3b:cb:bd:5a:d0:87:8a:62:53:20:3c:39:
f5:a6:3d:7b:90:a3:69:30:5c:a8:82:e1:7b:7e:cf:
c8:0f:f2:7c:44:f7:cb:cc:5b:51:c8:e0:64:9c:2b:
b8:eb:41:3c:71:f3:e8:fc:76:d5:9c:d3:5f:82:cb:
df:d1:dd:dc:d6:5a:0e:c6:e5:27:89:d8:7a:91:b7:
b0:05:d8:2a:3e:42:7a:f0:4a:5e:34:0e:34:c0:cd:
b7:2a:55:52:70:ee:27:f7:51:f4:d7:72:52:b6:cd:
bf:15:b9:a2:d1:2f:78:e4:1e:96:e6:37:88:00:f3:
36:e6:df:53:2c:84:ae:4b:8f:7b:60:83:6d:8f:b9:
85:b9:3c:33:1b:12:e3:33:e2:74:ee:04:13:be:a3:
6e:1d:3d:28:59:7b:6b:d0:63:66:0d:10:36:42:a5:
98:a9:16:8d:22:4d:c5:fd:13:88:2f:d3:3c:e9:cf:
e6:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:EA:C5:65:08:0B:D4:D3:0B:7C:09:13:B2:D2:6E:3A:34:FF:93:0A
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/PurFZQgL1NMLfAkTstJuOjT_kwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.53.128.0/17
37.63.0.0/17
46.238.0.0/18
62.204.128.0/19
62.221.128.0/19
77.70.0.0/17
77.236.160.0/19
78.83.0.0/16
78.90.0.0/16
80.253.48.0/20
82.103.64.0/18
82.147.128.0/19
83.97.24.0/21
84.242.128.0/18
84.252.0.0/18
85.91.128.0/19
85.118.64.0/19
85.130.0.0/17
85.196.128.0/18
87.97.128.0/17
87.227.128.0/17
88.203.128.0/17
89.186.200.0/21
89.190.192.0/19
89.215.0.0/16
89.253.128.0/18
92.247.0.0/16
95.111.0.0/17
95.140.208.0/20
130.204.0.0/16
151.251.0.0/16
176.12.0.0/18
195.24.32.0/19
195.34.96.0/19
195.149.248.0/21
212.36.0.0/19
212.50.0.0/19
212.91.160.0/19
212.95.160.0/19
212.104.96.0/19
213.169.32.0/19
213.191.160.0/19
213.222.32.0/19
213.226.0.0/18
213.240.192.0/18
217.9.224.0/20
217.10.240.0/20
217.18.240.0/20
217.79.32.0/20
IPv6:
2a00:4800::/29
2a01:288::/32
Signature Algorithm: sha256WithRSAEncryption
08:d8:d8:72:9f:a4:93:df:8a:d9:9a:0b:1f:49:95:53:aa:88:
61:96:09:93:20:0b:ec:b4:6f:67:2c:5f:bb:9a:98:a4:03:5c:
70:49:55:08:01:28:7c:da:94:37:f3:f2:2c:a4:9c:49:f6:dd:
41:b8:18:39:f9:0a:57:d1:eb:e2:75:dd:7a:10:93:f5:83:71:
df:3d:5b:2f:bf:33:a5:5b:27:09:75:e5:d4:d8:23:0a:f4:43:
8d:ed:e2:96:a4:70:31:d8:0e:ad:bd:74:88:dc:ee:7b:30:a2:
cb:38:ed:0f:fd:a1:5a:f0:f5:d4:e4:5b:74:62:de:8d:a4:2c:
23:fb:36:6f:ac:3a:55:5c:5f:77:1c:ee:b6:8a:06:be:43:93:
44:ba:50:52:38:bb:2b:f3:18:c2:0d:b7:49:0b:7b:6c:de:67:
05:c9:43:a4:15:5f:94:1a:31:c5:ca:c4:8b:05:cb:66:bd:10:
12:c9:29:dc:37:6d:e4:e1:be:11:63:cd:51:8b:82:d5:18:cf:
8d:e9:1e:9a:ba:6e:04:b8:56:99:25:a0:f0:d4:6f:0a:48:6a:
f8:d5:30:03:98:64:c4:00:2f:02:1e:7c:83:11:29:9c:5d:d5:
cf:e1:9f:fa:c0:40:e6:27:a7:d6:cd:12:63:51:85:2a:71:56:
a6:e1:74:7b
-----BEGIN CERTIFICATE-----
MIIGNzCCBR+gAwIBAgISAYgunrsjTeJRayVO0Qahx3uGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1NDhjZWRmMTcwMjllZDk4YTEwODExM2M2YzEwOWVjYWNj
ZDgyZWMwHhcNMjMwNTE4MTEyODU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZWVhYzU2NTA4MGJkNGQzMGI3YzA5MTNiMmQyNmUzYTM0ZmY5MzBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiO0jhPu3FEcNeNGBb/8otoRGOpbs
VUj56w7TFwa10MaGBMUsJ7EF1EhhI3KMb90lk5IEwvor0mXBE9hNwxhFEnsmVZ7s
rFRazHKyfbM7y71a0IeKYlMgPDn1pj17kKNpMFyoguF7fs/ID/J8RPfLzFtRyOBk
nCu460E8cfPo/HbVnNNfgsvf0d3c1loOxuUnidh6kbewBdgqPkJ68EpeNA40wM23
KlVScO4n91H013JSts2/Fbmi0S945B6W5jeIAPM25t9TLISuS497YINtj7mFuTwz
GxLjM+J07gQTvqNuHT0oWXtr0GNmDRA2QqWYqRaNIk3F/ROIL9M86c/mZQIDAQAB
o4IDQzCCAz8wHQYDVR0OBBYEFD7qxWUIC9TTC3wJE7LSbjo0/5MKMB8GA1UdIwQY
MBaAFAVIzt8XAp7ZihCBE8bBCeyszYLsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAt
N2ZiYmFlNmY5NDM3LzEvUHVyRlpRZ0wxTk1MZkFrVHN0SnVPalRfa3dvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAtN2ZiYmFlNmY5NDM3
LzEvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBVwYIKwYBBQUHAQcBAf8EggFGMIIBQjCCASgEAgABMIIB
IAMEBwU1gAMEByU/AAMEBi7uAAMEBT7MgAMEBT7dgAMEB01GAAMEBU3soAMDAE5T
AwMATloDBARQ/TADBAZSZ0ADBAVSk4ADBANTYRgDBAZU8oADBAZU/AADBAVVW4AD
BAVVdkADBAdVggADBAZVxIADBAdXYYADBAdX44ADBAdYy4ADBANZusgDBAVZvsAD
AwBZ1wMEBln9gAMDAFz3AwQHX28AAwQEX4zQAwMAgswDAwCX+wMEBrAMAAMEBcMY
IAMEBcMiYAMEA8OV+AMEBdQkAAMEBdQyAAMEBdRboAMEBdRfoAMEBdRoYAMEBdWp
IAMEBdW/oAMEBdXeIAMEBtXiAAMEBtXwwAMEBNkJ4AMEBNkK8AMEBNkS8AMEBNlP
IDAUBAIAAjAOAwUDKgBIAAMFACoBAogwDQYJKoZIhvcNAQELBQADggEBAAjY2HKf
pJPfitmaCx9JlVOqiGGWCZMgC+y0b2csX7uamKQDXHBJVQgBKHzalDfz8iyknEn2
3UG4GDn5ClfR6+J13XoQk/WDcd89Wy+/M6VbJwl15dTYIwr0Q43t4pakcDHYDq29
dIjc7nswoss47Q/9oVrw9dTkW3Ri3o2kLCP7Nm+sOlVcX3cc7raKBr5Dk0S6UFI4
uyvzGMINt0kLe2zeZwXJQ6QVX5QaMcXKxIsFy2a9EBLJKdw3beThvhFjzVGLgtUY
z43pHpq6bgS4VpkloPDUbwpIavjVMAOYZMQALwIefIMRKZxd1c/hn/rAQOYnp9bN
EmNRhSpxVqbhdHs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:06 2024 by rpki-client on console-fra.rpki-client.org