Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/UozaUGFvnb3FwAu8KkYoq5s2c5M.roa
File: UozaUGFvnb3FwAu8KkYoq5s2c5M.roa (raw, json)
Hash identifier: io0a69sDVi5MyFZS2/l2KacIYHu4426KWK+GgKKXZnY=
Subject key identifier: 52:8C:DA:50:61:6F:9D:BD:C5:C0:0B:BC:2A:46:28:AB:9B:36:73:93
Certificate issuer: /CN=f43bf90808ae7eca063f746a8f1d88865734c8a3
Certificate serial: 018D4234794DFD9E9C0E3A7F7F353344AE14
Authority key identifier: F4:3B:F9:08:08:AE:7E:CA:06:3F:74:6A:8F:1D:88:86:57:34:C8:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/UozaUGFvnb3FwAu8KkYoq5s2c5M.roa
Signing time: Thu 25 Jan 2024 19:59:11 +0000
ROA not before: Thu 25 Jan 2024 19:59:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202448
IP address blocks: 2.56.212.0/24 maxlen: 24
2.56.213.0/24 maxlen: 24
2.56.214.0/24 maxlen: 24
2.56.215.0/24 maxlen: 24
31.14.238.0/24 maxlen: 24
31.222.229.0/24 maxlen: 24
45.137.148.0/24 maxlen: 32
45.137.149.0/24 maxlen: 24
45.137.150.0/24 maxlen: 24
45.137.151.0/24 maxlen: 24
45.153.184.0/24 maxlen: 24
45.153.185.0/24 maxlen: 24
45.153.186.0/24 maxlen: 24
45.153.187.0/24 maxlen: 24
62.3.32.0/24 maxlen: 24
86.105.252.0/24 maxlen: 24
86.106.181.0/24 maxlen: 24
86.107.197.0/24 maxlen: 24
89.38.128.0/24 maxlen: 24
89.38.129.0/24 maxlen: 24
89.38.130.0/24 maxlen: 24
89.38.131.0/24 maxlen: 24
89.38.135.0/24 maxlen: 32
89.43.33.0/24 maxlen: 24
91.227.40.0/24 maxlen: 24
91.227.41.0/24 maxlen: 24
91.250.248.0/24 maxlen: 32
91.250.249.0/24 maxlen: 32
93.114.128.0/24 maxlen: 24
93.114.133.0/24 maxlen: 24
93.115.16.0/24 maxlen: 24
93.115.17.0/24 maxlen: 24
93.115.18.0/24 maxlen: 24
93.115.19.0/24 maxlen: 24
93.115.20.0/24 maxlen: 24
93.115.21.0/24 maxlen: 24
93.115.22.0/24 maxlen: 24
93.115.23.0/24 maxlen: 24
94.176.182.0/24 maxlen: 24
95.169.192.0/24 maxlen: 24
95.169.201.0/24 maxlen: 24
178.157.82.0/24 maxlen: 24
178.157.90.0/24 maxlen: 24
178.157.91.0/24 maxlen: 24
185.96.163.0/24 maxlen: 24
185.170.212.0/24 maxlen: 24
185.170.213.0/24 maxlen: 24
185.170.214.0/24 maxlen: 24
185.170.215.0/24 maxlen: 24
185.234.52.0/24 maxlen: 32
185.243.214.0/24 maxlen: 32
185.243.215.0/24 maxlen: 24
188.212.124.0/24 maxlen: 24
188.212.125.0/24 maxlen: 24
193.201.15.0/24 maxlen: 24
194.26.213.0/24 maxlen: 24
194.32.76.0/24 maxlen: 24
194.32.77.0/24 maxlen: 24
194.32.78.0/24 maxlen: 24
194.32.79.0/24 maxlen: 24
194.63.145.0/24 maxlen: 24
194.99.20.0/24 maxlen: 24
194.99.21.0/24 maxlen: 24
194.99.22.0/24 maxlen: 24
194.99.23.0/24 maxlen: 24
2a05:8280::/32 maxlen: 32
2a09:cd40::/32 maxlen: 32
2a09:cd41::/32 maxlen: 32
2a09:cd42::/32 maxlen: 32
2a09:cd43::/32 maxlen: 32
2a09:cd45::/32 maxlen: 32
2a09:cd46::/32 maxlen: 32
2a0c:b9c0::/32 maxlen: 32
2a0c:b9c1::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 30 Jan 2024 14:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:42:34:79:4d:fd:9e:9c:0e:3a:7f:7f:35:33:44:ae:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f43bf90808ae7eca063f746a8f1d88865734c8a3
Validity
Not Before: Jan 25 19:59:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=528cda50616f9dbdc5c00bbc2a4628ab9b367393
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:33:b7:24:81:10:1b:67:7d:aa:88:f2:97:b5:
f1:53:74:f9:75:31:b5:d2:f3:51:50:07:1e:b7:8c:
73:7b:85:06:2c:5d:14:b7:07:78:9d:b7:7a:b3:7b:
62:98:be:14:ed:6b:90:07:82:e1:0d:12:95:7e:45:
5f:b9:00:58:70:76:11:6c:1f:97:7a:5b:0a:41:76:
88:ba:dd:da:c9:f0:cb:0b:71:26:7c:e9:59:0e:74:
10:40:cc:58:e7:18:ee:bd:9a:38:78:ea:ef:2f:10:
f1:56:50:29:1e:0c:0e:27:f3:a9:05:e4:df:14:a5:
57:fc:c8:78:3f:cf:38:25:d6:bb:b6:2b:fe:c4:a9:
a1:65:9e:80:56:95:ad:22:e9:b3:59:f5:69:80:88:
35:d3:04:9d:bf:db:91:89:a1:7a:41:c8:84:6a:de:
ec:7f:20:18:c5:a0:43:54:e4:ab:23:a6:d4:db:e4:
c7:b5:ec:7b:67:56:90:fb:11:ee:30:1f:c1:e8:82:
ea:c3:0b:bd:4a:df:6a:7f:52:be:9c:12:16:8f:d7:
51:79:d6:83:5a:85:4b:7e:03:62:64:ce:18:24:7b:
35:79:8c:fb:7b:96:af:dc:52:ad:56:5f:fb:4f:ea:
08:ef:90:af:49:ce:de:ad:c4:8e:ea:be:34:3a:b6:
49:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:8C:DA:50:61:6F:9D:BD:C5:C0:0B:BC:2A:46:28:AB:9B:36:73:93
X509v3 Authority Key Identifier:
keyid:F4:3B:F9:08:08:AE:7E:CA:06:3F:74:6A:8F:1D:88:86:57:34:C8:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/UozaUGFvnb3FwAu8KkYoq5s2c5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a8d943-f082-4b18-b840-389195c4f07b/1/9Dv5CAiufsoGP3Rqjx2Ihlc0yKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.212.0/22
31.14.238.0/24
31.222.229.0/24
45.137.148.0/22
45.153.184.0/22
62.3.32.0/24
86.105.252.0/24
86.106.181.0/24
86.107.197.0/24
89.38.128.0/22
89.38.135.0/24
89.43.33.0/24
91.227.40.0/23
91.250.248.0/23
93.114.128.0/24
93.114.133.0/24
93.115.16.0/21
94.176.182.0/24
95.169.192.0/24
95.169.201.0/24
178.157.82.0/24
178.157.90.0/23
185.96.163.0/24
185.170.212.0/22
185.234.52.0/24
185.243.214.0/23
188.212.124.0/23
193.201.15.0/24
194.26.213.0/24
194.32.76.0/22
194.63.145.0/24
194.99.20.0/22
IPv6:
2a05:8280::/32
2a09:cd40::/30
2a09:cd45::-2a09:cd46:ffff:ffff:ffff:ffff:ffff:ffff
2a0c:b9c0::/31
Signature Algorithm: sha256WithRSAEncryption
87:c3:4e:34:fd:8d:45:b5:d9:b4:e7:05:04:c4:98:01:21:8d:
1f:d1:6a:fa:f5:db:b9:44:c0:c8:2b:16:75:4b:fc:70:ba:9e:
58:26:2e:90:ba:87:e4:63:c3:01:a8:e0:6d:3a:53:b0:69:85:
93:2f:65:82:fb:82:12:fa:05:71:12:a1:94:99:3f:7d:87:3b:
f3:0a:1c:7f:b8:4e:b7:b4:e0:b0:37:e3:b9:62:3a:bb:6a:7e:
de:fc:05:e9:2a:c2:a4:c2:66:72:74:37:35:a4:19:ad:8e:32:
1d:d8:80:b0:ac:93:67:50:17:59:3f:53:cc:49:20:a8:08:c5:
0c:56:9c:e7:2c:75:1d:dc:6f:40:51:1e:bf:9d:51:60:98:f7:
fe:6e:a6:de:a5:b6:d6:fd:47:86:82:ac:48:e4:7d:a5:ee:10:
cb:c8:82:8d:7c:34:bc:a4:3e:0a:e0:92:15:8e:db:27:5c:8f:
86:e3:eb:3a:86:f1:42:62:44:18:52:01:54:12:36:26:6b:7b:
a3:44:b1:dc:f4:5c:4c:4b:a4:3a:0e:56:2a:82:30:96:e2:6c:
81:5b:38:72:50:4d:ef:94:21:0a:d6:db:2c:6e:4f:43:59:a6:
19:c1:9b:87:6f:e2:45:78:9a:06:c8:2e:c2:18:ac:71:70:48:
50:6e:25:29
-----BEGIN CERTIFICATE-----
MIIF6jCCBNKgAwIBAgISAY1CNHlN/Z6cDjp/fzUzRK4UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0M2JmOTA4MDhhZTdlY2EwNjNmNzQ2YThmMWQ4ODg2NTcz
NGM4YTMwHhcNMjQwMTI1MTk1OTExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MjhjZGE1MDYxNmY5ZGJkYzVjMDBiYmMyYTQ2MjhhYjliMzY3MzkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6zO3JIEQG2d9qojyl7XxU3T5dTG1
0vNRUAcet4xze4UGLF0Utwd4nbd6s3timL4U7WuQB4LhDRKVfkVfuQBYcHYRbB+X
elsKQXaIut3ayfDLC3EmfOlZDnQQQMxY5xjuvZo4eOrvLxDxVlApHgwOJ/OpBeTf
FKVX/Mh4P884Jda7tiv+xKmhZZ6AVpWtIumzWfVpgIg10wSdv9uRiaF6QciEat7s
fyAYxaBDVOSrI6bU2+THtex7Z1aQ+xHuMB/B6ILqwwu9St9qf1K+nBIWj9dRedaD
WoVLfgNiZM4YJHs1eYz7e5av3FKtVl/7T+oI75CvSc7ercSO6r40OrZJHQIDAQAB
o4IC9jCCAvIwHQYDVR0OBBYEFFKM2lBhb529xcALvCpGKKubNnOTMB8GA1UdIwQY
MBaAFPQ7+QgIrn7KBj90ao8diIZXNMijMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOUR2NUNBaXVmc29HUDNScWp4MklobGMweUtNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi9hOGQ5NDMtZjA4Mi00YjE4LWI4NDAt
Mzg5MTk1YzRmMDdiLzEvVW96YVVHRnZuYjNGd0F1OEtrWW9xNXMyYzVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi9hOGQ5NDMtZjA4Mi00YjE4LWI4NDAtMzg5MTk1YzRmMDdi
LzEvOUR2NUNBaXVmc29HUDNScWp4MklobGMweUtNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBCgYIKwYBBQUHAQcBAf8EgfowgfcwgccEAgABMIHAAwQC
AjjUAwQAHw7uAwQAH97lAwQCLYmUAwQCLZm4AwQAPgMgAwQAVmn8AwQAVmq1AwQA
VmvFAwQCWSaAAwQAWSaHAwQAWSshAwQBW+MoAwQBW/r4AwQAXXKAAwQAXXKFAwQD
XXMQAwQAXrC2AwQAX6nAAwQAX6nJAwQAsp1SAwQBsp1aAwQAuWCjAwQCuarUAwQA
ueo0AwQBufPWAwQBvNR8AwQAwckPAwQAwhrVAwQCwiBMAwQAwj+RAwQCwmMUMCsE
AgACMCUDBQAqBYKAAwUCKgnNQDAOAwUAKgnNRQMFACoJzUYDBQEqDLnAMA0GCSqG
SIb3DQEBCwUAA4IBAQCHw040/Y1Ftdm05wUExJgBIY0f0Wr69du5RMDIKxZ1S/xw
up5YJi6QuofkY8MBqOBtOlOwaYWTL2WC+4IS+gVxEqGUmT99hzvzChx/uE63tOCw
N+O5Yjq7an7e/AXpKsKkwmZydDc1pBmtjjId2ICwrJNnUBdZP1PMSSCoCMUMVpzn
LHUd3G9AUR6/nVFgmPf+bqbepbbW/UeGgqxI5H2l7hDLyIKNfDS8pD4K4JIVjtsn
XI+G4+s6hvFCYkQYUgFUEjYma3ujRLHc9FxMS6Q6DlYqgjCW4myBWzhyUE3vlCEK
1tssbk9DWaYZwZuHb+JFeJoGyC7CGKxxcEhQbiUp
-----END CERTIFICATE-----
Generated at Tue Jan 30 19:34:54 2024 by rpki-client on console-fra.rpki-client.org