Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MtkN_g2-5m-QBUXzrfJWnnwax8o.roa
File: MtkN_g2-5m-QBUXzrfJWnnwax8o.roa (raw, json)
Hash identifier: 3rXXaXE6aPcDoxC9+iUlzlMDg3h/InsTmhAlZU7SJxI=
Subject key identifier: 32:D9:0D:FE:0D:BE:E6:6F:90:05:45:F3:AD:F2:56:9E:7C:1A:C7:CA
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01856F14E15ECD4FFE2F63828D71FECF0DF3
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MtkN_g2-5m-QBUXzrfJWnnwax8o.roa
Signing time: Sun 01 Jan 2023 20:45:17 +0000
ROA not before: Sun 01 Jan 2023 20:45:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3233
IP address blocks: 85.120.170.0/24 maxlen: 24
81.181.74.0/24 maxlen: 24
85.120.178.0/24 maxlen: 24
81.181.86.0/24 maxlen: 24
85.120.192.0/21 maxlen: 21
81.181.100.0/24 maxlen: 24
85.120.155.0/24 maxlen: 24
81.181.192.0/24 maxlen: 24
81.181.199.0/24 maxlen: 24
85.121.38.0/24 maxlen: 24
85.121.40.0/21 maxlen: 21
81.181.213.0/24 maxlen: 24
81.181.212.0/24 maxlen: 24
85.121.60.0/22 maxlen: 22
81.181.152.0/24 maxlen: 24
81.181.148.0/24 maxlen: 24
81.181.156.0/24 maxlen: 24
81.181.155.0/24 maxlen: 24
85.121.6.0/23 maxlen: 23
81.180.143.0/24 maxlen: 24
81.180.96.0/22 maxlen: 22
194.153.238.0/24 maxlen: 24
194.153.234.0/24 maxlen: 24
194.153.242.0/23 maxlen: 23
194.153.245.0/24 maxlen: 24
85.120.66.0/23 maxlen: 23
81.180.239.0/24 maxlen: 24
194.153.247.0/24 maxlen: 24
81.180.234.0/24 maxlen: 24
81.181.0.0/24 maxlen: 24
85.120.42.0/24 maxlen: 24
80.97.176.0/23 maxlen: 23
193.226.81.0/24 maxlen: 24
193.226.84.0/24 maxlen: 24
193.226.80.0/24 maxlen: 24
193.226.99.0/24 maxlen: 24
193.226.101.0/24 maxlen: 24
193.226.112.0/24 maxlen: 24
193.226.111.0/24 maxlen: 24
193.226.120.0/24 maxlen: 24
193.226.123.0/24 maxlen: 24
193.226.27.0/24 maxlen: 24
193.226.35.0/24 maxlen: 24
193.226.65.0/24 maxlen: 24
194.105.6.0/24 maxlen: 24
193.231.204.0/24 maxlen: 24
193.231.240.0/24 maxlen: 24
193.231.244.0/24 maxlen: 24
80.97.54.0/24 maxlen: 24
193.231.247.0/24 maxlen: 24
193.231.249.0/24 maxlen: 24
80.96.216.0/24 maxlen: 24
80.96.220.0/24 maxlen: 24
80.96.228.0/24 maxlen: 24
193.231.163.0/24 maxlen: 24
193.231.168.0/24 maxlen: 24
80.96.238.0/24 maxlen: 24
193.231.192.0/24 maxlen: 24
80.96.255.0/24 maxlen: 24
80.97.144.0/24 maxlen: 24
80.97.171.0/24 maxlen: 24
193.231.254.0/24 maxlen: 24
193.230.244.0/24 maxlen: 24
194.102.247.0/24 maxlen: 24
80.96.75.0/24 maxlen: 24
80.96.76.0/24 maxlen: 24
80.96.17.0/24 maxlen: 24
193.230.212.0/24 maxlen: 24
193.230.208.0/24 maxlen: 24
193.230.211.0/24 maxlen: 24
193.230.219.0/24 maxlen: 24
193.230.225.0/24 maxlen: 24
80.96.170.0/24 maxlen: 24
193.231.111.0/24 maxlen: 24
193.231.112.0/24 maxlen: 24
80.96.181.0/24 maxlen: 24
193.231.114.0/24 maxlen: 24
193.231.116.0/23 maxlen: 23
80.96.190.0/24 maxlen: 24
193.231.119.0/24 maxlen: 24
80.96.207.0/24 maxlen: 24
80.96.209.0/24 maxlen: 24
80.96.109.0/24 maxlen: 24
80.96.108.0/24 maxlen: 24
80.96.136.0/24 maxlen: 24
193.231.81.0/24 maxlen: 24
217.156.0.0/24 maxlen: 24
217.156.2.0/24 maxlen: 24
85.122.83.0/24 maxlen: 24
217.156.6.0/24 maxlen: 24
217.156.11.0/24 maxlen: 24
217.156.7.0/24 maxlen: 24
217.156.15.0/24 maxlen: 24
217.156.13.0/24 maxlen: 24
217.156.19.0/24 maxlen: 24
85.122.106.0/24 maxlen: 24
85.122.114.0/24 maxlen: 24
217.156.35.0/24 maxlen: 24
217.156.37.0/24 maxlen: 24
194.102.65.0/24 maxlen: 24
217.156.50.0/24 maxlen: 24
217.156.49.0/24 maxlen: 24
217.156.51.0/24 maxlen: 24
193.230.0.0/17 maxlen: 17
217.156.106.0/24 maxlen: 24
193.230.134.0/23 maxlen: 23
217.156.108.0/24 maxlen: 24
194.102.135.0/24 maxlen: 24
193.230.143.0/24 maxlen: 24
193.230.141.0/24 maxlen: 24
194.102.143.0/24 maxlen: 24
217.156.119.0/24 maxlen: 24
194.102.154.0/24 maxlen: 24
194.102.157.0/24 maxlen: 24
193.230.164.0/23 maxlen: 23
194.102.163.0/24 maxlen: 24
194.102.176.0/24 maxlen: 24
194.102.177.0/24 maxlen: 24
193.230.185.0/24 maxlen: 24
193.230.184.0/24 maxlen: 24
194.102.183.0/24 maxlen: 24
217.156.57.0/24 maxlen: 24
217.156.62.0/24 maxlen: 24
217.156.59.0/24 maxlen: 24
217.156.66.0/24 maxlen: 24
217.156.71.0/24 maxlen: 24
217.156.67.0/24 maxlen: 24
217.156.77.0/24 maxlen: 24
194.102.106.0/24 maxlen: 24
217.156.93.0/24 maxlen: 24
85.122.181.0/24 maxlen: 24
85.122.182.0/23 maxlen: 23
217.156.101.0/24 maxlen: 24
85.121.156.0/22 maxlen: 22
192.162.16.0/24 maxlen: 24
81.181.244.0/24 maxlen: 24
85.121.88.0/21 maxlen: 21
85.121.252.0/22 maxlen: 22
85.121.198.0/24 maxlen: 24
85.121.220.0/22 maxlen: 22
2a03:5e80::/29 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:e1:5e:cd:4f:fe:2f:63:82:8d:71:fe:cf:0d:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 20:45:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32d90dfe0dbee66f900545f3adf2569e7c1ac7ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:e4:a9:41:b0:5a:c4:d4:4b:86:0f:59:d8:95:
44:f1:29:49:26:b0:30:2d:e3:4d:fc:60:aa:ad:1b:
5c:2a:01:ec:25:72:6e:f6:e9:85:e4:51:88:de:12:
7d:8b:67:97:e4:05:4d:e2:35:af:1c:d2:b4:f1:f3:
b2:e6:1f:b3:09:40:4e:ff:18:ff:29:79:b7:c7:4c:
42:9e:b8:36:2c:0f:64:06:10:26:c8:e0:3b:f6:30:
3f:ee:34:ae:17:ad:b0:97:ac:5e:3a:ab:61:d1:85:
45:77:e3:da:a8:70:d6:36:ae:7d:ad:ed:dd:bf:32:
65:c5:80:87:6b:34:f0:fb:77:02:be:bb:59:45:15:
30:b7:d4:bb:bc:08:c9:e6:67:3b:3e:57:8b:50:a8:
74:39:2f:20:0c:e4:9b:c8:7b:60:2d:fc:07:3a:31:
cf:03:c4:b7:dc:d2:0f:bf:d6:ac:ff:27:82:64:4e:
7e:fe:1a:ef:5e:b8:63:cf:d9:00:ec:b5:04:0b:76:
ac:46:e5:4a:02:fc:20:ef:b6:01:b4:20:1d:fc:3f:
dc:3d:00:d3:0c:4b:4e:82:f8:25:66:ed:ec:1b:bf:
d9:71:97:16:ed:9b:9f:42:18:2c:a8:7f:76:e8:5b:
fb:bd:b8:ca:7f:ef:d6:05:d5:28:45:de:f7:bc:ba:
db:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:D9:0D:FE:0D:BE:E6:6F:90:05:45:F3:AD:F2:56:9E:7C:1A:C7:CA
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MtkN_g2-5m-QBUXzrfJWnnwax8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.17.0/24
80.96.75.0-80.96.76.255
80.96.108.0/23
80.96.136.0/24
80.96.170.0/24
80.96.181.0/24
80.96.190.0/24
80.96.207.0/24
80.96.209.0/24
80.96.216.0/24
80.96.220.0/24
80.96.228.0/24
80.96.238.0/24
80.96.255.0/24
80.97.54.0/24
80.97.144.0/24
80.97.171.0/24
80.97.176.0/23
81.180.96.0/22
81.180.143.0/24
81.180.234.0/24
81.180.239.0/24
81.181.0.0/24
81.181.74.0/24
81.181.86.0/24
81.181.100.0/24
81.181.148.0/24
81.181.152.0/24
81.181.155.0-81.181.156.255
81.181.192.0/24
81.181.199.0/24
81.181.212.0/23
81.181.244.0/24
85.120.42.0/24
85.120.66.0/23
85.120.155.0/24
85.120.170.0/24
85.120.178.0/24
85.120.192.0/21
85.121.6.0/23
85.121.38.0/24
85.121.40.0/21
85.121.60.0/22
85.121.88.0/21
85.121.156.0/22
85.121.198.0/24
85.121.220.0/22
85.121.252.0/22
85.122.83.0/24
85.122.106.0/24
85.122.114.0/24
85.122.181.0-85.122.183.255
192.162.16.0/24
193.226.27.0/24
193.226.35.0/24
193.226.65.0/24
193.226.80.0/23
193.226.84.0/24
193.226.99.0/24
193.226.101.0/24
193.226.111.0-193.226.112.255
193.226.120.0/24
193.226.123.0/24
193.230.0.0/17
193.230.134.0/23
193.230.141.0/24
193.230.143.0/24
193.230.164.0/23
193.230.184.0/23
193.230.208.0/24
193.230.211.0-193.230.212.255
193.230.219.0/24
193.230.225.0/24
193.230.244.0/24
193.231.81.0/24
193.231.111.0-193.231.112.255
193.231.114.0/24
193.231.116.0/23
193.231.119.0/24
193.231.163.0/24
193.231.168.0/24
193.231.192.0/24
193.231.204.0/24
193.231.240.0/24
193.231.244.0/24
193.231.247.0/24
193.231.249.0/24
193.231.254.0/24
194.102.65.0/24
194.102.106.0/24
194.102.135.0/24
194.102.143.0/24
194.102.154.0/24
194.102.157.0/24
194.102.163.0/24
194.102.176.0/23
194.102.183.0/24
194.102.247.0/24
194.105.6.0/24
194.153.234.0/24
194.153.238.0/24
194.153.242.0/23
194.153.245.0/24
194.153.247.0/24
217.156.0.0/24
217.156.2.0/24
217.156.6.0/23
217.156.11.0/24
217.156.13.0/24
217.156.15.0/24
217.156.19.0/24
217.156.35.0/24
217.156.37.0/24
217.156.49.0-217.156.51.255
217.156.57.0/24
217.156.59.0/24
217.156.62.0/24
217.156.66.0/23
217.156.71.0/24
217.156.77.0/24
217.156.93.0/24
217.156.101.0/24
217.156.106.0/24
217.156.108.0/24
217.156.119.0/24
IPv6:
2a03:5e80::/29
Signature Algorithm: sha256WithRSAEncryption
85:19:87:63:22:9c:bf:31:c9:eb:d2:2b:5d:b8:ae:56:55:71:
ef:7b:04:24:74:b1:dc:ea:ba:84:62:11:f5:1e:c1:58:48:25:
11:42:ed:81:55:49:3a:ce:a5:41:81:ed:28:a0:05:62:5f:6c:
15:13:48:6e:b7:dd:ce:36:4e:8d:83:c8:e6:96:7a:d5:20:4c:
44:75:a2:ee:97:26:a5:aa:8a:0d:c0:fd:76:99:fd:bc:7e:c5:
de:e3:a3:bd:34:01:63:c2:e2:56:8e:09:88:18:e3:c8:c1:7f:
78:9f:42:32:11:87:28:a6:9b:10:44:d6:90:86:e4:f8:1a:1f:
3d:a3:c8:bf:1f:c4:11:da:4f:12:f5:8e:aa:a7:80:87:fb:c0:
04:70:10:4f:c6:6c:e5:3f:3c:a9:30:8d:a0:26:45:8e:21:7a:
c8:70:af:a7:6b:63:2d:df:bc:b9:0f:12:99:97:60:53:78:f8:
7b:99:21:7a:c2:f1:2c:c2:0c:ef:01:dd:c8:df:7b:e9:da:3c:
a8:a3:ad:ec:c5:46:6f:e3:97:53:26:c9:06:98:43:82:b3:93:
a5:e6:b5:dc:c6:d1:65:11:a3:d6:1f:58:ec:1b:5a:23:73:3b:
d9:7d:fd:e5:cb:75:9c:c7:31:b5:f7:44:9b:ca:a2:85:c1:9a:
65:cf:db:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:28 2023 by rpki-client on console-fra.rpki-client.org