Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/hHFNxLA6P2xM1S8PIAnTSiosJC0.roa
File: hHFNxLA6P2xM1S8PIAnTSiosJC0.roa (raw, json)
Hash identifier: D/QnG4cb4Pnxpzz1ylp5yWsUSvINAV2CTki6A1tsoLU=
Subject key identifier: 84:71:4D:C4:B0:3A:3F:6C:4C:D5:2F:0F:20:09:D3:4A:2A:2C:24:2D
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 019131828D05740DC0B183FCA1A5E4834D19
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/hHFNxLA6P2xM1S8PIAnTSiosJC0.roa
Signing time: Thu 08 Aug 2024 10:22:04 +0000
ROA not before: Thu 08 Aug 2024 10:22:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12302
IP address blocks: 80.96.1.0/24 maxlen: 24
80.96.22.0/24 maxlen: 24
80.96.96.0/23 maxlen: 24
80.96.104.0/24 maxlen: 24
80.96.129.0/24 maxlen: 24
80.96.134.0/23 maxlen: 23
80.96.150.0/24 maxlen: 24
80.96.151.0/24 maxlen: 24
80.96.164.0/23 maxlen: 24
80.96.177.0/24 maxlen: 24
80.96.184.0/24 maxlen: 24
80.96.206.0/24 maxlen: 24
80.97.64.0/21 maxlen: 24
80.97.72.0/21 maxlen: 24
80.97.80.0/21 maxlen: 24
80.97.88.0/21 maxlen: 24
81.181.16.0/22 maxlen: 24
81.181.32.0/21 maxlen: 21
81.181.40.0/22 maxlen: 22
81.181.45.0/24 maxlen: 24
81.181.46.0/23 maxlen: 23
81.181.74.0/23 maxlen: 23
85.120.158.0/24 maxlen: 24
193.226.3.0/24 maxlen: 24
193.226.30.0/24 maxlen: 24
193.226.42.0/23 maxlen: 23
193.226.47.0/24 maxlen: 24
193.226.58.0/24 maxlen: 24
193.226.83.0/24 maxlen: 24
193.226.100.0/24 maxlen: 24
193.226.105.0/24 maxlen: 24
193.230.129.0/24 maxlen: 24
193.230.160.0/24 maxlen: 24
193.230.161.0/24 maxlen: 24
193.230.162.0/24 maxlen: 24
193.230.163.0/24 maxlen: 24
193.230.166.0/24 maxlen: 24
193.230.167.0/24 maxlen: 24
193.230.168.0/24 maxlen: 24
193.230.169.0/24 maxlen: 24
193.230.174.0/24 maxlen: 24
193.230.177.0/24 maxlen: 24
193.230.193.0/24 maxlen: 24
193.230.202.0/24 maxlen: 24
193.230.203.0/24 maxlen: 24
193.230.240.0/24 maxlen: 24
193.230.247.0/24 maxlen: 24
193.231.82.0/24 maxlen: 24
193.231.96.0/24 maxlen: 24
193.231.120.0/24 maxlen: 24
193.231.121.0/24 maxlen: 24
193.231.126.0/24 maxlen: 24
193.231.180.0/22 maxlen: 24
193.231.208.0/20 maxlen: 24
193.231.255.0/24 maxlen: 24
194.102.87.0/24 maxlen: 24
194.102.90.0/24 maxlen: 24
217.156.10.0/24 maxlen: 24
217.156.34.0/24 maxlen: 24
217.156.43.0/24 maxlen: 24
217.156.63.0/24 maxlen: 24
217.156.73.0/24 maxlen: 24
217.156.98.0/24 maxlen: 24
217.156.110.0/24 maxlen: 24
217.156.116.0/24 maxlen: 24
217.156.117.0/24 maxlen: 24
217.156.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Sep 2024 05:18:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:31:82:8d:05:74:0d:c0:b1:83:fc:a1:a5:e4:83:4d:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Aug 8 10:22:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=84714dc4b03a3f6c4cd52f0f2009d34a2a2c242d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6f:b5:bb:82:27:0f:f2:53:02:1a:63:c1:d8:
dd:02:88:58:08:45:ec:bc:67:8b:fc:ec:e6:d0:ed:
82:1f:dc:f9:84:b6:05:6f:2a:91:4d:2d:e0:42:82:
ee:2a:c7:9f:26:1f:f5:00:04:93:75:41:de:31:c3:
43:5e:d3:0d:b9:9d:65:59:fe:23:f1:d8:6a:12:b4:
ac:2d:78:2e:c6:4b:00:de:4c:6d:13:83:b3:d6:9e:
cf:dc:ca:82:7c:b2:78:9f:3e:65:1f:85:49:d2:ec:
99:ab:b0:46:eb:94:69:6c:eb:12:bf:17:a6:11:03:
96:b5:04:7a:68:00:d0:21:e9:de:6d:41:26:94:8c:
24:80:38:96:3d:8d:a7:6a:54:ea:80:c9:71:b7:18:
f0:98:39:b3:41:9c:0b:91:eb:9d:e9:3f:44:3c:c5:
7c:27:bb:d4:4c:e4:c0:b7:ec:54:40:4f:e7:80:c5:
ac:38:ea:b2:01:cd:20:6c:ef:de:7b:12:29:fe:e2:
4d:f8:d8:92:a8:c9:68:cd:bf:19:e2:52:e7:9e:72:
ee:0c:e1:75:cc:c1:b2:1a:46:2c:b5:0b:9c:be:90:
b9:2b:20:81:a2:e7:3c:7d:f6:16:26:37:5e:6e:74:
f2:53:36:df:46:ac:bc:cb:1a:1b:9c:25:49:9c:da:
17:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:71:4D:C4:B0:3A:3F:6C:4C:D5:2F:0F:20:09:D3:4A:2A:2C:24:2D
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/hHFNxLA6P2xM1S8PIAnTSiosJC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.1.0/24
80.96.22.0/24
80.96.96.0/23
80.96.104.0/24
80.96.129.0/24
80.96.134.0/23
80.96.150.0/23
80.96.164.0/23
80.96.177.0/24
80.96.184.0/24
80.96.206.0/24
80.97.64.0/19
81.181.16.0/22
81.181.32.0-81.181.43.255
81.181.45.0-81.181.47.255
81.181.74.0/23
85.120.158.0/24
193.226.3.0/24
193.226.30.0/24
193.226.42.0/23
193.226.47.0/24
193.226.58.0/24
193.226.83.0/24
193.226.100.0/24
193.226.105.0/24
193.230.129.0/24
193.230.160.0/22
193.230.166.0-193.230.169.255
193.230.174.0/24
193.230.177.0/24
193.230.193.0/24
193.230.202.0/23
193.230.240.0/24
193.230.247.0/24
193.231.82.0/24
193.231.96.0/24
193.231.120.0/23
193.231.126.0/24
193.231.180.0/22
193.231.208.0/20
193.231.255.0/24
194.102.87.0/24
194.102.90.0/24
217.156.10.0/24
217.156.34.0/24
217.156.43.0/24
217.156.63.0/24
217.156.73.0/24
217.156.98.0/24
217.156.110.0/24
217.156.116.0/23
217.156.120.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:79:64:a4:00:1a:fe:16:da:c1:f4:e0:c5:be:98:10:6f:71:
7a:c0:76:8d:1b:1e:ce:bd:bb:f7:a4:06:f4:90:56:a1:99:5f:
11:76:fd:c9:01:c6:60:3c:1f:78:d7:58:76:7f:af:da:25:0e:
d6:72:e2:51:30:37:d6:a2:88:57:4f:5e:07:79:97:b9:8f:e5:
82:4e:b3:82:ff:af:81:fa:e8:8e:d6:0b:d9:e6:3a:ee:fe:e3:
1b:73:f1:33:d5:4d:f1:3f:fc:ba:38:9d:cb:65:f5:3e:d5:6a:
7f:c0:b8:4c:d3:fd:1f:c4:41:58:ce:ed:ff:fb:e5:bc:7c:99:
08:62:90:d4:be:62:62:6b:09:7c:c8:a8:72:7e:a0:03:a4:47:
b8:a1:44:8b:0d:83:39:96:9e:17:4c:65:9d:82:16:9d:7a:4d:
93:15:0f:25:35:3e:54:e5:25:90:79:6d:dc:a1:71:93:b2:30:
40:1c:76:31:4d:8c:d2:8f:c6:e2:aa:86:47:dc:7c:32:34:ae:
84:15:db:02:49:a9:d1:29:b0:4e:43:0d:61:04:7d:e4:31:80:
b9:a4:d7:21:87:5d:9a:d9:79:53:57:42:3d:d7:02:0a:51:a1:
7c:b1:b7:0f:7f:0d:70:4f:c6:13:45:70:95:10:6c:9c:8f:71:
d4:27:0a:67
-----BEGIN CERTIFICATE-----
MIIGUTCCBTmgAwIBAgISAZExgo0FdA3AsYP8oaXkg00ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh
MTU3MjIwHhcNMjQwODA4MTAyMjA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NDcxNGRjNGIwM2EzZjZjNGNkNTJmMGYyMDA5ZDM0YTJhMmMyNDJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp2+1u4InD/JTAhpjwdjdAohYCEXs
vGeL/Ozm0O2CH9z5hLYFbyqRTS3gQoLuKsefJh/1AASTdUHeMcNDXtMNuZ1lWf4j
8dhqErSsLXguxksA3kxtE4Oz1p7P3MqCfLJ4nz5lH4VJ0uyZq7BG65RpbOsSvxem
EQOWtQR6aADQIenebUEmlIwkgDiWPY2nalTqgMlxtxjwmDmzQZwLkeud6T9EPMV8
J7vUTOTAt+xUQE/ngMWsOOqyAc0gbO/eexIp/uJN+NiSqMlozb8Z4lLnnnLuDOF1
zMGyGkYstQucvpC5KyCBouc8ffYWJjdebnTyUzbfRqy8yxobnCVJnNoXwwIDAQAB
o4IDXTCCA1kwHQYDVR0OBBYEFIRxTcSwOj9sTNUvDyAJ00oqLCQtMB8GA1UdIwQY
MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt
ZjUyYzQ3YzIyNWRiLzEvaEhGTnhMQTZQMnhNMVM4UElBblRTaW9zSkMwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi
LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBcQYIKwYBBQUHAQcBAf8EggFgMIIBXDCCAVgEAgABMIIB
UAMEAFBgAQMEAFBgFgMEAVBgYAMEAFBgaAMEAFBggQMEAVBghgMEAVBglgMEAVBg
pAMEAFBgsQMEAFBguAMEAFBgzgMEBVBhQAMEAlG1EDAMAwQFUbUgAwQCUbUoMAwD
BABRtS0DBARRtSADBAFRtUoDBABVeJ4DBADB4gMDBADB4h4DBAHB4ioDBADB4i8D
BADB4joDBADB4lMDBADB4mQDBADB4mkDBADB5oEDBALB5qAwDAMEAcHmpgMEAcHm
qAMEAMHmrgMEAMHmsQMEAMHmwQMEAcHmygMEAMHm8AMEAMHm9wMEAMHnUgMEAMHn
YAMEAcHneAMEAMHnfgMEAsHntAMEBMHn0AMEAMHn/wMEAMJmVwMEAMJmWgMEANmc
CgMEANmcIgMEANmcKwMEANmcPwMEANmcSQMEANmcYgMEANmcbgMEAdmcdAMEANmc
eDANBgkqhkiG9w0BAQsFAAOCAQEAjnlkpAAa/hbawfTgxb6YEG9xesB2jRsezr27
96QG9JBWoZlfEXb9yQHGYDwfeNdYdn+v2iUO1nLiUTA31qKIV09eB3mXuY/lgk6z
gv+vgfrojtYL2eY67v7jG3PxM9VN8T/8ujidy2X1PtVqf8C4TNP9H8RBWM7t//vl
vHyZCGKQ1L5iYmsJfMiocn6gA6RHuKFEiw2DOZaeF0xlnYIWnXpNkxUPJTU+VOUl
kHlt3KFxk7IwQBx2MU2M0o/G4qqGR9x8MjSuhBXbAkmp0SmwTkMNYQR95DGAuaTX
IYddmtl5U1dCPdcCClGhfLG3D38NcE/GE0VwlRBsnI9x1CcKZw==
-----END CERTIFICATE-----
Generated at Thu Sep 12 07:27:13 2024 by rpki-client on console-ams.rpki-client.org