Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Mw94RJpOOmUvZj28Nbym1KMbwjU.roa
File: Mw94RJpOOmUvZj28Nbym1KMbwjU.roa (raw, json)
Hash identifier: NgTGeMqUbr5ORqOIVsGwfF3FhmcD0RqIwtiIg8v5lus=
Subject key identifier: 33:0F:78:44:9A:4E:3A:65:2F:66:3D:BC:35:BC:A6:D4:A3:1B:C2:35
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 0185EDEF55FDCD326D4D7B8C82CC14855030
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Mw94RJpOOmUvZj28Nbym1KMbwjU.roa
Signing time: Thu 26 Jan 2023 11:56:03 +0000
ROA not before: Thu 26 Jan 2023 11:56:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8708
IP address blocks: 217.156.14.0/24 maxlen: 24
193.231.226.0/24 maxlen: 24
193.231.233.0/24 maxlen: 24
193.231.236.0/24 maxlen: 24
193.231.238.0/24 maxlen: 24
217.156.41.0/24 maxlen: 24
81.181.112.0/24 maxlen: 24
193.231.252.0/24 maxlen: 24
80.96.219.0/24 maxlen: 24
193.231.184.0/24 maxlen: 24
194.102.134.0/24 maxlen: 24
193.230.158.0/24 maxlen: 24
80.97.149.0/24 maxlen: 24
80.97.147.0/24 maxlen: 24
80.97.148.0/24 maxlen: 24
81.180.27.0/24 maxlen: 24
81.181.128.0/24 maxlen: 24
194.102.98.0/24 maxlen: 24
217.156.92.0/24 maxlen: 24
81.181.167.0/24 maxlen: 24
80.96.69.0/24 maxlen: 24
80.96.67.0/24 maxlen: 24
80.96.72.0/24 maxlen: 24
80.96.73.0/24 maxlen: 24
80.96.82.0/24 maxlen: 24
80.96.79.0/24 maxlen: 24
80.96.12.0/24 maxlen: 24
81.181.246.0/24 maxlen: 24
193.230.217.0/24 maxlen: 24
193.230.229.0/24 maxlen: 24
194.102.229.0/24 maxlen: 24
80.96.43.0/24 maxlen: 24
80.96.51.0/24 maxlen: 24
80.96.47.0/24 maxlen: 24
193.231.108.0/24 maxlen: 24
193.226.116.0/24 maxlen: 24
193.226.125.0/24 maxlen: 24
193.226.127.0/24 maxlen: 24
85.120.20.0/24 maxlen: 24
85.120.23.0/24 maxlen: 24
193.231.75.0/24 maxlen: 24
194.153.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 Feb 2023 18:19:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ed:ef:55:fd:cd:32:6d:4d:7b:8c:82:cc:14:85:50:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 26 11:56:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=330f78449a4e3a652f663dbc35bca6d4a31bc235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:03:b3:11:27:f4:67:0a:cb:c2:82:47:46:ac:
ae:e7:57:7b:38:46:1c:65:cb:1a:62:2c:a9:29:d4:
20:27:f0:5c:66:c0:8a:3e:a6:a8:2d:d8:6d:64:73:
4f:d4:ff:7a:d7:d7:db:76:a3:5c:f5:67:3a:b0:66:
d1:8b:65:dc:3f:d3:a3:7c:08:9d:77:df:6f:2e:34:
91:a8:a3:28:82:5c:84:9c:02:92:e9:19:36:38:b6:
d6:71:91:0f:c6:c1:33:d6:f6:a3:09:31:77:19:ec:
1b:53:d5:71:b7:48:d5:d3:94:90:e0:ff:ca:f8:99:
28:c8:9d:b7:db:89:d3:67:d8:0e:9a:eb:71:c6:b2:
79:c9:64:aa:1f:a7:bd:6d:02:04:ab:6e:3a:44:db:
b9:76:ec:89:cb:f3:52:b5:db:f9:03:df:73:bb:35:
ce:e2:b3:f0:83:e4:1c:a6:bf:62:d0:60:7b:0f:06:
5e:18:0b:2a:c0:90:df:bd:13:13:93:7d:7b:eb:10:
e7:1f:53:09:a6:e3:bd:11:44:4e:8e:f5:78:b6:46:
b2:e3:4c:25:7c:cc:26:69:af:2c:4b:8f:f2:f0:2c:
06:73:59:12:a1:c4:43:82:35:4e:1f:43:d2:54:b3:
ce:13:a4:6c:a8:53:eb:dd:cb:85:8e:0d:44:35:89:
12:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:0F:78:44:9A:4E:3A:65:2F:66:3D:BC:35:BC:A6:D4:A3:1B:C2:35
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Mw94RJpOOmUvZj28Nbym1KMbwjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.12.0/24
80.96.43.0/24
80.96.47.0/24
80.96.51.0/24
80.96.67.0/24
80.96.69.0/24
80.96.72.0/23
80.96.79.0/24
80.96.82.0/24
80.96.219.0/24
80.97.147.0-80.97.149.255
81.180.27.0/24
81.181.112.0/24
81.181.128.0/24
81.181.167.0/24
81.181.246.0/24
85.120.20.0/24
85.120.23.0/24
193.226.116.0/24
193.226.125.0/24
193.226.127.0/24
193.230.158.0/24
193.230.217.0/24
193.230.229.0/24
193.231.75.0/24
193.231.108.0/24
193.231.184.0/24
193.231.226.0/24
193.231.233.0/24
193.231.236.0/24
193.231.238.0/24
193.231.252.0/24
194.102.98.0/24
194.102.134.0/24
194.102.229.0/24
194.153.224.0/24
217.156.14.0/24
217.156.41.0/24
217.156.92.0/24
Signature Algorithm: sha256WithRSAEncryption
66:cd:b1:67:84:c6:3c:96:68:94:cc:48:af:fb:d2:cf:f8:70:
a1:55:e3:6d:34:74:1f:61:06:e4:78:14:3b:af:8d:8b:53:21:
ae:1d:c3:01:4f:02:28:d5:63:3e:1d:bb:69:31:32:ed:d2:de:
c8:7a:0b:35:50:83:2a:65:a9:a3:0f:ef:a7:c6:4e:c4:d8:25:
38:bc:74:ae:a3:ff:c6:82:7e:8c:e9:d2:00:6c:28:a4:f7:88:
59:73:92:fb:66:63:d3:9b:70:98:2b:fe:23:f6:e3:50:1e:e5:
1c:15:e7:87:6f:2b:ac:a5:64:ec:64:09:71:3d:77:d2:d0:19:
e1:8b:ef:e2:ed:16:00:ab:21:4b:da:63:9e:72:b5:dd:d7:e3:
71:99:11:d7:cf:20:48:7e:fa:63:61:94:e1:84:2b:41:8d:a1:
53:c1:ef:ff:ed:33:59:d3:f6:3d:4b:63:5c:03:cb:73:7d:66:
f8:cf:2e:e4:52:5b:d0:59:a8:6b:c1:3e:d3:1e:58:34:59:4a:
be:54:3a:e6:1e:6d:bb:7e:67:da:2a:08:3b:cc:67:d2:55:75:
fc:7b:86:27:e1:5d:2b:bf:36:d3:e7:e9:7c:45:81:de:2d:26:
9f:9f:60:79:59:cb:fe:28:0e:3e:ad:8e:07:cd:5e:b5:b1:af:
f4:f8:98:82
-----BEGIN CERTIFICATE-----
MIIF7zCCBNegAwIBAgISAYXt71X9zTJtTXuMgswUhVAwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh
MTU3MjIwHhcNMjMwMTI2MTE1NjAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMzBmNzg0NDlhNGUzYTY1MmY2NjNkYmMzNWJjYTZkNGEzMWJjMjM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhgOzESf0ZwrLwoJHRqyu51d7OEYc
ZcsaYiypKdQgJ/BcZsCKPqaoLdhtZHNP1P9619fbdqNc9Wc6sGbRi2XcP9OjfAid
d99vLjSRqKMoglyEnAKS6Rk2OLbWcZEPxsEz1vajCTF3GewbU9Vxt0jV05SQ4P/K
+JkoyJ2324nTZ9gOmutxxrJ5yWSqH6e9bQIEq246RNu5duyJy/NStdv5A99zuzXO
4rPwg+Qcpr9i0GB7DwZeGAsqwJDfvRMTk3176xDnH1MJpuO9EUROjvV4tkay40wl
fMwmaa8sS4/y8CwGc1kSocRDgjVOH0PSVLPOE6RsqFPr3cuFjg1ENYkSdQIDAQAB
o4IC+zCCAvcwHQYDVR0OBBYEFDMPeESaTjplL2Y9vDW8ptSjG8I1MB8GA1UdIwQY
MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt
ZjUyYzQ3YzIyNWRiLzEvTXc5NFJKcE9PbVV2WmoyOE5ieW0xS01id2pVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi
LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBDwYIKwYBBQUHAQcBAf8Egf8wgfwwgfkEAgABMIHyAwQA
UGAMAwQAUGArAwQAUGAvAwQAUGAzAwQAUGBDAwQAUGBFAwQBUGBIAwQAUGBPAwQA
UGBSAwQAUGDbMAwDBABQYZMDBAFQYZQDBABRtBsDBABRtXADBABRtYADBABRtacD
BABRtfYDBABVeBQDBABVeBcDBADB4nQDBADB4n0DBADB4n8DBADB5p4DBADB5tkD
BADB5uUDBADB50sDBADB52wDBADB57gDBADB5+IDBADB5+kDBADB5+wDBADB5+4D
BADB5/wDBADCZmIDBADCZoYDBADCZuUDBADCmeADBADZnA4DBADZnCkDBADZnFww
DQYJKoZIhvcNAQELBQADggEBAGbNsWeExjyWaJTMSK/70s/4cKFV4200dB9hBuR4
FDuvjYtTIa4dwwFPAijVYz4du2kxMu3S3sh6CzVQgyplqaMP76fGTsTYJTi8dK6j
/8aCfozp0gBsKKT3iFlzkvtmY9ObcJgr/iP241Ae5RwV54dvK6ylZOxkCXE9d9LQ
GeGL7+LtFgCrIUvaY55ytd3X43GZEdfPIEh++mNhlOGEK0GNoVPB7//tM1nT9j1L
Y1wDy3N9ZvjPLuRSW9BZqGvBPtMeWDRZSr5UOuYebbt+Z9oqCDvMZ9JVdfx7hifh
XSu/NtPn6XxFgd4tJp+fYHlZy/4oDj6tjgfNXrWxr/T4mII=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:04 2024 by rpki-client on console-ams.rpki-client.org