Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/Ig35iU3ac6zcqwWt1Zq6WMUipCs.roa
File: Ig35iU3ac6zcqwWt1Zq6WMUipCs.roa (raw, json)
Hash identifier: qeHGAQhdr2WjRK0GIfmgPLg42j0NgnywSHSjlppZBAg=
Subject key identifier: 22:0D:F9:89:4D:DA:73:AC:DC:AB:05:AD:D5:9A:BA:58:C5:22:A4:2B
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01936D59A112E59CD1872C470B56AFA9AB20
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/Ig35iU3ac6zcqwWt1Zq6WMUipCs.roa
Signing time: Wed 27 Nov 2024 11:20:10 +0000
ROA not before: Wed 27 Nov 2024 11:20:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12586
IP address blocks: 5.83.128.0/19 maxlen: 32
5.83.128.0/20 maxlen: 32
5.83.138.0/24 maxlen: 24
5.83.151.0/24 maxlen: 32
5.83.154.0/24 maxlen: 24
5.83.156.0/24 maxlen: 24
5.83.157.0/24 maxlen: 24
5.175.128.0/24 maxlen: 32
5.175.129.0/24 maxlen: 32
5.175.130.0/24 maxlen: 32
5.175.131.0/24 maxlen: 32
5.175.133.0/24 maxlen: 32
5.175.218.0/24 maxlen: 32
5.175.219.0/24 maxlen: 32
5.175.220.0/24 maxlen: 32
5.175.225.0/24 maxlen: 32
5.175.226.0/24 maxlen: 32
5.175.227.0/24 maxlen: 32
5.175.228.0/24 maxlen: 32
5.175.229.0/24 maxlen: 32
5.175.230.0/24 maxlen: 32
5.175.231.0/24 maxlen: 32
5.175.232.0/24 maxlen: 32
5.175.235.0/24 maxlen: 32
5.175.240.0/24 maxlen: 32
5.175.241.0/24 maxlen: 32
5.175.242.0/24 maxlen: 32
5.175.243.0/24 maxlen: 32
5.175.244.0/24 maxlen: 32
5.175.251.0/24 maxlen: 32
5.175.252.0/24 maxlen: 32
5.175.253.0/24 maxlen: 32
5.175.254.0/24 maxlen: 32
5.175.255.0/24 maxlen: 32
5.230.0.0/15 maxlen: 32
5.230.6.0/24 maxlen: 32
5.230.11.0/24 maxlen: 32
5.230.102.0/24 maxlen: 32
5.230.224.0/24 maxlen: 32
5.231.24.0/24 maxlen: 24
5.231.233.0/24 maxlen: 32
77.90.0.0/18 maxlen: 32
77.90.15.0/24 maxlen: 24
77.90.29.0/24 maxlen: 24
83.243.80.0/21 maxlen: 32
85.93.0.0/19 maxlen: 32
85.93.20.0/24 maxlen: 32
85.118.160.0/21 maxlen: 32
87.239.128.0/21 maxlen: 32
89.106.64.0/19 maxlen: 32
89.144.0.0/18 maxlen: 32
94.103.160.0/20 maxlen: 32
94.249.128.0/17 maxlen: 32
95.215.32.0/22 maxlen: 32
178.18.144.0/20 maxlen: 32
178.18.151.0/24 maxlen: 32
185.13.156.0/22 maxlen: 32
185.47.140.0/24 maxlen: 32
185.47.141.0/24 maxlen: 32
185.121.71.0/24 maxlen: 32
193.28.251.0/24 maxlen: 32
195.110.14.0/23 maxlen: 32
217.69.160.0/20 maxlen: 32
2a00:12d8::/29 maxlen: 128
2a00:19d0::/29 maxlen: 128
2a00:cdc0::/32 maxlen: 128
2a01:bd40::/29 maxlen: 128
2a02:7a0::/29 maxlen: 128
2a02:2fc0::/29 maxlen: 128
Validation: Failed, certificate revoked on Thu 28 Nov 2024 09:59:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6d:59:a1:12:e5:9c:d1:87:2c:47:0b:56:af:a9:ab:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Nov 27 11:20:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=220df9894dda73acdcab05add59aba58c522a42b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6b:4e:c2:d9:91:75:26:5b:b9:a9:12:88:e5:
28:71:6f:1a:5e:c5:19:5b:8a:69:60:82:94:10:56:
1a:e5:b4:6e:e0:7c:76:c5:f0:41:ca:59:20:92:39:
87:bc:c8:29:23:a1:58:82:96:50:fc:11:23:84:0c:
c4:ab:b7:19:1b:42:93:a7:31:40:f1:f9:31:ca:7e:
23:36:be:1d:37:f6:8b:94:8e:09:09:cd:b3:a0:73:
37:61:f5:e0:b7:b2:5a:c4:20:49:97:87:f2:52:ad:
f9:8e:f0:27:e1:ed:a4:ef:18:e5:e0:57:61:5d:01:
bf:4d:57:ba:42:d9:8c:76:e1:aa:15:09:63:fd:c9:
c5:df:42:18:d3:ab:d7:de:41:d3:c9:3f:d8:83:97:
a2:2c:d7:37:27:73:cd:bc:55:a0:0f:3e:e4:8e:c2:
af:22:a3:28:68:c9:0c:f5:f4:34:c4:ef:ba:a1:3d:
f4:29:7d:45:e0:fe:26:32:cc:f1:12:40:a7:78:b8:
77:a6:a6:a5:ef:e9:9c:e8:33:7a:93:45:c7:12:c9:
4f:da:77:d2:cb:7e:c6:11:2b:24:dc:5c:ee:fd:53:
04:18:1e:94:20:35:c6:76:12:02:68:47:8c:0b:66:
92:8e:2a:c2:45:70:b0:60:62:03:5a:c3:db:c1:7a:
11:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:0D:F9:89:4D:DA:73:AC:DC:AB:05:AD:D5:9A:BA:58:C5:22:A4:2B
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/Ig35iU3ac6zcqwWt1Zq6WMUipCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.128.0/19
5.175.128.0/22
5.175.133.0/24
5.175.218.0-5.175.220.255
5.175.225.0-5.175.232.255
5.175.235.0/24
5.175.240.0-5.175.244.255
5.175.251.0-5.175.255.255
5.230.0.0/15
77.90.0.0/18
83.243.80.0/21
85.93.0.0/19
85.118.160.0/21
87.239.128.0/21
89.106.64.0/19
89.144.0.0/18
94.103.160.0/20
94.249.128.0/17
95.215.32.0/22
178.18.144.0/20
185.13.156.0/22
185.47.140.0/23
185.121.71.0/24
193.28.251.0/24
195.110.14.0/23
217.69.160.0/20
IPv6:
2a00:12d8::/29
2a00:19d0::/29
2a00:cdc0::/32
2a01:bd40::/29
2a02:7a0::/29
2a02:2fc0::/29
Signature Algorithm: sha256WithRSAEncryption
bb:a3:52:91:ec:2f:de:56:65:eb:29:64:65:d3:6f:dd:3a:05:
21:3c:3f:9e:56:de:25:dd:65:96:4e:f3:2c:c9:02:88:8a:9a:
b8:f0:5c:69:54:1d:b6:ff:73:ce:3d:84:f2:eb:00:2f:59:19:
a9:f4:5d:56:cb:3e:a7:99:af:ca:1f:10:6d:8f:d5:dc:2c:e6:
bb:8a:64:8d:91:d7:3e:47:f0:db:7f:9b:ef:45:61:0c:4e:30:
82:e5:be:9f:6b:55:9c:29:49:20:b3:e1:e5:96:d2:c0:ee:5a:
b5:ac:6d:36:44:98:95:8f:3a:2f:6a:14:f0:84:3f:e4:26:4f:
04:f2:31:2c:e9:d8:a1:fc:e5:77:55:53:20:20:a8:46:61:c8:
5e:72:6c:c5:0a:2d:ef:6d:18:84:0e:d0:8b:d5:37:59:e2:76:
a6:cf:be:cc:6d:35:ce:78:a1:9d:6b:83:e2:bc:35:f0:87:7e:
72:b7:7d:0c:4f:6e:34:72:85:98:6b:8f:f0:46:7b:05:41:f1:
9f:50:b5:bc:7b:65:77:1c:41:0e:26:76:2a:c1:62:76:c8:74:
c2:9d:41:c7:ac:4d:ed:79:d6:ac:ab:ac:ac:c9:61:97:78:07:
79:31:60:df:99:7d:ac:1e:8e:70:7f:5a:b5:f3:96:65:98:61:
19:bf:63:e9
-----BEGIN CERTIFICATE-----
MIIF6TCCBNGgAwIBAgISAZNtWaES5ZzRhyxHC1avqasgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjQxMTI3MTEyMDEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMjBkZjk4OTRkZGE3M2FjZGNhYjA1YWRkNTlhYmE1OGM1MjJhNDJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqGtOwtmRdSZbuakSiOUocW8aXsUZ
W4ppYIKUEFYa5bRu4Hx2xfBBylkgkjmHvMgpI6FYgpZQ/BEjhAzEq7cZG0KTpzFA
8fkxyn4jNr4dN/aLlI4JCc2zoHM3YfXgt7JaxCBJl4fyUq35jvAn4e2k7xjl4Fdh
XQG/TVe6QtmMduGqFQlj/cnF30IY06vX3kHTyT/Yg5eiLNc3J3PNvFWgDz7kjsKv
IqMoaMkM9fQ0xO+6oT30KX1F4P4mMszxEkCneLh3pqal7+mc6DN6k0XHEslP2nfS
y37GESsk3Fzu/VMEGB6UIDXGdhICaEeMC2aSjirCRXCwYGIDWsPbwXoROQIDAQAB
o4IC9TCCAvEwHQYDVR0OBBYEFCIN+YlN2nOs3KsFrdWauljFIqQrMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvSWczNWlVM2FjNnpjcXdXdDFacTZXTVVpcENzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBCQYIKwYBBQUHAQcBAf8EgfkwgfYwgcEEAgABMIG6AwQF
BVOAAwQCBa+AAwQABa+FMAwDBAEFr9oDBAAFr9wwDAMEAAWv4QMEAAWv6AMEAAWv
6zAMAwQEBa/wAwQABa/0MAsDBAAFr/sDAwQFoAMDAQXmAwQGTVoAAwQDU/NQAwQF
VV0AAwQDVXagAwQDV++AAwQFWWpAAwQGWZAAAwQEXmegAwQHXvmAAwQCX9cgAwQE
shKQAwQCuQ2cAwQBuS+MAwQAuXlHAwQAwRz7AwQBw24OAwQE2UWgMDAEAgACMCoD
BQMqABLYAwUDKgAZ0AMFACoAzcADBQMqAb1AAwUDKgIHoAMFAyoCL8AwDQYJKoZI
hvcNAQELBQADggEBALujUpHsL95WZespZGXTb906BSE8P55W3iXdZZZO8yzJAoiK
mrjwXGlUHbb/c849hPLrAC9ZGan0XVbLPqeZr8ofEG2P1dws5ruKZI2R1z5H8Nt/
m+9FYQxOMILlvp9rVZwpSSCz4eWW0sDuWrWsbTZEmJWPOi9qFPCEP+QmTwTyMSzp
2KH85XdVUyAgqEZhyF5ybMUKLe9tGIQO0IvVN1nidqbPvsxtNc54oZ1rg+K8NfCH
fnK3fQxPbjRyhZhrj/BGewVB8Z9Qtbx7ZXccQQ4mdirBYnbIdMKdQcesTe151qyr
rKzJYZd4B3kxYN+ZfawejnB/WrXzlmWYYRm/Y+k=
-----END CERTIFICATE-----
Generated at Sat Apr 12 02:32:09 2025 by rpki-client