Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/igH4P4Kq2V2gQHDfMaWlPSqVSrw.roa
File: igH4P4Kq2V2gQHDfMaWlPSqVSrw.roa (raw, json)
Hash identifier: OKNatHIrSaHhXexUVl8JgQ1D0CK6c/LlyHJp7qaVRJc=
Subject key identifier: 8A:01:F8:3F:82:AA:D9:5D:A0:40:70:DF:31:A5:A5:3D:2A:95:4A:BC
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 018DACFA9DA4CF70C0A15FF092443A9C8A3C
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/igH4P4Kq2V2gQHDfMaWlPSqVSrw.roa
Signing time: Thu 15 Feb 2024 13:35:21 +0000
ROA not before: Thu 15 Feb 2024 13:35:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34665
IP address blocks: 5.8.8.0/22 maxlen: 22
5.8.8.0/23 maxlen: 23
5.8.8.0/24 maxlen: 24
5.8.9.0/24 maxlen: 24
5.8.10.0/23 maxlen: 23
5.8.10.0/24 maxlen: 24
5.8.11.0/24 maxlen: 24
5.8.12.0/22 maxlen: 22
5.8.48.0/22 maxlen: 22
5.8.48.0/23 maxlen: 23
5.8.48.0/24 maxlen: 24
5.8.49.0/24 maxlen: 24
5.8.50.0/23 maxlen: 23
5.8.50.0/24 maxlen: 24
5.8.51.0/24 maxlen: 24
5.8.52.0/22 maxlen: 22
5.8.52.0/23 maxlen: 23
5.8.52.0/24 maxlen: 24
5.8.53.0/24 maxlen: 24
5.8.54.0/23 maxlen: 23
5.8.54.0/24 maxlen: 24
5.8.55.0/24 maxlen: 24
5.8.60.0/23 maxlen: 23
5.8.65.0/24 maxlen: 24
5.101.0.0/22 maxlen: 22
5.101.0.0/23 maxlen: 23
5.101.0.0/24 maxlen: 24
5.101.1.0/24 maxlen: 24
5.101.2.0/23 maxlen: 23
5.101.2.0/24 maxlen: 24
5.101.3.0/24 maxlen: 24
5.101.4.0/22 maxlen: 22
5.101.4.0/23 maxlen: 23
5.101.4.0/24 maxlen: 24
5.101.5.0/24 maxlen: 24
5.101.6.0/23 maxlen: 23
5.101.6.0/24 maxlen: 24
5.101.7.0/24 maxlen: 24
5.101.32.0/22 maxlen: 24
5.101.64.0/22 maxlen: 22
5.101.64.0/23 maxlen: 23
5.101.64.0/24 maxlen: 24
5.101.65.0/24 maxlen: 24
5.101.66.0/23 maxlen: 23
5.101.66.0/24 maxlen: 24
5.101.67.0/24 maxlen: 24
5.101.80.0/21 maxlen: 21
5.101.90.0/23 maxlen: 23
5.188.44.0/22 maxlen: 22
5.188.44.0/23 maxlen: 23
5.188.44.0/24 maxlen: 24
5.188.45.0/24 maxlen: 24
5.188.46.0/23 maxlen: 23
5.188.46.0/24 maxlen: 24
5.188.47.0/24 maxlen: 24
5.188.49.0/24 maxlen: 24
5.188.62.0/24 maxlen: 24
5.188.166.0/24 maxlen: 24
5.188.207.0/24 maxlen: 24
5.188.208.0/23 maxlen: 23
5.188.210.0/24 maxlen: 24
5.188.211.0/24 maxlen: 24
5.188.223.0/24 maxlen: 24
5.188.233.0/24 maxlen: 24
5.188.234.0/23 maxlen: 23
31.44.184.0/24 maxlen: 24
31.44.188.0/22 maxlen: 32
31.184.192.0/22 maxlen: 22
31.184.192.0/23 maxlen: 23
31.184.192.0/24 maxlen: 24
31.184.193.0/24 maxlen: 24
31.184.194.0/23 maxlen: 23
31.184.194.0/24 maxlen: 24
31.184.195.0/24 maxlen: 24
31.184.196.0/22 maxlen: 22
31.184.196.0/23 maxlen: 23
31.184.196.0/24 maxlen: 24
31.184.197.0/24 maxlen: 24
31.184.198.0/23 maxlen: 23
31.184.198.0/24 maxlen: 24
31.184.199.0/24 maxlen: 24
31.184.228.0/23 maxlen: 23
31.184.231.0/24 maxlen: 24
31.184.238.0/23 maxlen: 23
31.184.243.0/24 maxlen: 24
37.9.48.0/24 maxlen: 24
37.139.53.0/24 maxlen: 24
37.139.54.0/23 maxlen: 23
37.139.56.0/22 maxlen: 22
37.139.56.0/23 maxlen: 23
37.139.56.0/24 maxlen: 24
37.139.57.0/24 maxlen: 24
37.139.58.0/23 maxlen: 23
37.139.58.0/24 maxlen: 24
37.139.59.0/24 maxlen: 24
46.161.2.0/23 maxlen: 23
46.161.8.0/24 maxlen: 24
46.161.10.0/24 maxlen: 24
46.161.14.0/23 maxlen: 23
46.161.24.0/23 maxlen: 23
46.161.32.0/22 maxlen: 22
46.161.40.0/24 maxlen: 24
46.161.44.0/22 maxlen: 22
46.161.48.0/22 maxlen: 22
46.161.48.0/23 maxlen: 23
46.161.48.0/24 maxlen: 24
46.161.49.0/24 maxlen: 24
46.161.50.0/23 maxlen: 23
46.161.50.0/24 maxlen: 24
46.161.51.0/24 maxlen: 24
91.243.48.0/22 maxlen: 22
91.243.48.0/23 maxlen: 23
91.243.48.0/24 maxlen: 24
91.243.49.0/24 maxlen: 24
91.243.50.0/23 maxlen: 23
91.243.50.0/24 maxlen: 24
91.243.51.0/24 maxlen: 24
91.243.60.0/24 maxlen: 24
91.243.61.0/24 maxlen: 24
91.243.90.0/24 maxlen: 24
91.243.91.0/24 maxlen: 24
91.243.93.0/24 maxlen: 24
95.215.0.0/22 maxlen: 24
95.215.0.0/23 maxlen: 23
95.215.0.0/24 maxlen: 24
95.215.1.0/24 maxlen: 24
95.215.2.0/23 maxlen: 23
95.215.2.0/24 maxlen: 24
95.215.3.0/24 maxlen: 24
146.185.223.0/24 maxlen: 24
146.185.224.0/21 maxlen: 21
188.143.232.0/22 maxlen: 22
188.143.232.0/23 maxlen: 23
188.143.232.0/24 maxlen: 24
188.143.233.0/24 maxlen: 24
188.143.235.0/24 maxlen: 24
195.2.240.0/23 maxlen: 24
2a00:1d78:100:1c0::/58 maxlen: 58
Validation: Failed, certificate revoked on Wed 13 Mar 2024 11:13:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ac:fa:9d:a4:cf:70:c0:a1:5f:f0:92:44:3a:9c:8a:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Feb 15 13:35:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8a01f83f82aad95da04070df31a5a53d2a954abc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:73:24:5c:47:0a:f5:e2:f5:e0:36:4e:62:81:
4e:e8:33:e5:0d:fd:8f:ec:4c:b2:ca:cd:82:b1:d3:
4c:a8:67:71:2c:a2:f8:15:0b:00:20:aa:93:c3:ab:
dc:8c:21:ea:d4:72:87:25:a1:80:d9:73:79:b6:1b:
f5:6c:60:9e:45:1d:fd:d2:0e:c5:0b:80:d4:33:52:
56:78:72:45:3e:0e:d1:02:1f:ab:23:f3:05:af:1d:
10:21:92:f2:9e:9e:05:27:e5:6d:f0:a7:e3:de:b8:
1d:a9:eb:38:4d:a4:c6:c7:1b:a5:61:14:f3:b8:ef:
e6:29:e9:48:7e:2c:9c:1e:42:92:35:a7:62:dd:d4:
c7:49:c7:e4:29:c2:e4:37:cf:4e:53:7d:49:07:2e:
b4:af:64:f3:14:c8:5b:49:ec:bb:38:0c:70:59:f9:
f9:eb:df:64:c6:87:a0:0f:e4:7b:6c:a6:36:a1:ae:
25:68:8c:07:9f:1a:17:17:01:fb:11:6e:36:37:84:
ff:de:22:6a:b8:23:b8:fa:ae:a5:13:1a:31:9e:eb:
f7:00:05:42:1a:82:b4:94:69:88:bf:a3:e6:7e:ce:
54:38:51:38:18:00:42:ad:23:0b:a1:25:00:e7:58:
f6:83:2a:dc:a4:32:f2:27:c7:d3:2a:3c:2b:91:b4:
19:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:01:F8:3F:82:AA:D9:5D:A0:40:70:DF:31:A5:A5:3D:2A:95:4A:BC
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/igH4P4Kq2V2gQHDfMaWlPSqVSrw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.8.0/21
5.8.48.0/21
5.8.60.0/23
5.8.65.0/24
5.101.0.0/21
5.101.32.0/22
5.101.64.0/22
5.101.80.0/21
5.101.90.0/23
5.188.44.0/22
5.188.49.0/24
5.188.62.0/24
5.188.166.0/24
5.188.207.0-5.188.211.255
5.188.223.0/24
5.188.233.0-5.188.235.255
31.44.184.0/24
31.44.188.0/22
31.184.192.0/21
31.184.228.0/23
31.184.231.0/24
31.184.238.0/23
31.184.243.0/24
37.9.48.0/24
37.139.53.0-37.139.59.255
46.161.2.0/23
46.161.8.0/24
46.161.10.0/24
46.161.14.0/23
46.161.24.0/23
46.161.32.0/22
46.161.40.0/24
46.161.44.0-46.161.51.255
91.243.48.0/22
91.243.60.0/23
91.243.90.0/23
91.243.93.0/24
95.215.0.0/22
146.185.223.0-146.185.231.255
188.143.232.0/22
195.2.240.0/23
IPv6:
2a00:1d78:100:1c0::/58
Signature Algorithm: sha256WithRSAEncryption
a0:1b:31:0f:22:3a:fe:2f:37:f9:4d:db:86:af:0e:4f:28:67:
9a:38:86:e1:57:3f:3c:5e:8c:44:db:29:6c:e0:35:8c:49:7f:
61:0f:90:da:59:de:76:2f:10:41:84:75:c3:0a:9f:c1:85:d3:
0b:d1:4e:d3:30:f2:24:f9:9d:64:06:7f:a4:39:a3:6e:74:48:
ac:a6:e2:1c:20:bd:31:ff:3a:9d:07:36:11:e6:9e:73:e9:31:
c5:79:70:ce:07:78:b4:6e:92:18:ff:3f:a2:c1:de:d8:40:f4:
50:a0:5e:94:05:09:7f:ff:c8:41:47:87:da:a9:db:23:1d:b5:
e1:f7:97:26:0c:60:b6:08:b0:5e:76:d6:5b:de:dd:5e:bc:a0:
2d:cc:da:1f:c7:66:cd:af:64:7d:9c:65:75:d6:a7:b1:9e:e6:
9b:47:5e:cf:33:d2:3a:44:78:13:43:84:49:d0:02:1e:c1:e5:
b7:17:78:44:d4:21:a6:f7:72:e7:69:8f:f5:9d:75:bf:45:6e:
09:b2:cd:94:4a:80:e7:0a:93:a7:4a:33:b2:d8:37:17:b6:38:
dd:e5:01:ee:7a:f5:63:8e:16:ae:0b:3d:d5:56:f4:b8:41:58:
81:9d:d3:bf:e8:26:4e:17:9e:6f:be:86:1b:78:7b:2c:b9:df:
2a:75:f5:f6
-----BEGIN CERTIFICATE-----
MIIGMjCCBRqgAwIBAgISAY2s+p2kz3DAoV/wkkQ6nIo8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVhYWE4YTBhNWZkZmQ2OThlMTA0YmUzNmEyYWVlYzgxM2Fl
Y2EwNzEwHhcNMjQwMjE1MTMzNTIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YTAxZjgzZjgyYWFkOTVkYTA0MDcwZGYzMWE1YTUzZDJhOTU0YWJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnXMkXEcK9eL14DZOYoFO6DPlDf2P
7Eyyys2CsdNMqGdxLKL4FQsAIKqTw6vcjCHq1HKHJaGA2XN5thv1bGCeRR390g7F
C4DUM1JWeHJFPg7RAh+rI/MFrx0QIZLynp4FJ+Vt8Kfj3rgdqes4TaTGxxulYRTz
uO/mKelIfiycHkKSNadi3dTHScfkKcLkN89OU31JBy60r2TzFMhbSey7OAxwWfn5
699kxoegD+R7bKY2oa4laIwHnxoXFwH7EW42N4T/3iJquCO4+q6lExoxnuv3AAVC
GoK0lGmIv6Pmfs5UOFE4GABCrSMLoSUA51j2gyrcpDLyJ8fTKjwrkbQZqQIDAQAB
o4IDPjCCAzowHQYDVR0OBBYEFIoB+D+CqtldoEBw3zGlpT0qlUq8MB8GA1UdIwQY
MBaAFOqqigpf39aY4QS+NqKu7IE67KBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQt
ODlkMDkyNDBjNDNiLzEvaWdINFA0S3EyVjJnUUhEZk1hV2xQU3FWU3J3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQtODlkMDkyNDBjNDNi
LzEvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBUgYIKwYBBQUHAQcBAf8EggFBMIIBPTCCASYEAgABMIIB
HgMEAwUICAMEAwUIMAMEAQUIPAMEAAUIQQMEAwVlAAMEAgVlIAMEAgVlQAMEAwVl
UAMEAQVlWgMEAgW8LAMEAAW8MQMEAAW8PgMEAAW8pjAMAwQABbzPAwQCBbzQAwQA
BbzfMAwDBAAFvOkDBAIFvOgDBAAfLLgDBAIfLLwDBAMfuMADBAEfuOQDBAAfuOcD
BAEfuO4DBAAfuPMDBAAlCTAwDAMEACWLNQMEAiWLOAMEAS6hAgMEAC6hCAMEAC6h
CgMEAS6hDgMEAS6hGAMEAi6hIAMEAC6hKDAMAwQCLqEsAwQCLqEwAwQCW/MwAwQB
W/M8AwQBW/NaAwQAW/NdAwQCX9cAMAwDBACSud8DBAOSueADBAK8j+gDBAHDAvAw
EQQCAAIwCwMJBioAHXgBAAHAMA0GCSqGSIb3DQEBCwUAA4IBAQCgGzEPIjr+Lzf5
TduGrw5PKGeaOIbhVz88XoxE2yls4DWMSX9hD5DaWd52LxBBhHXDCp/BhdML0U7T
MPIk+Z1kBn+kOaNudEispuIcIL0x/zqdBzYR5p5z6THFeXDOB3i0bpIY/z+iwd7Y
QPRQoF6UBQl//8hBR4faqdsjHbXh95cmDGC2CLBedtZb3t1evKAtzNofx2bNr2R9
nGV11qexnuabR17PM9I6RHgTQ4RJ0AIeweW3F3hE1CGm93LnaY/1nXW/RW4Jss2U
SoDnCpOnSjOy2DcXtjjd5QHuevVjjhauCz3VVvS4QViBndO/6CZOF55vvoYbeHss
ud8qdfX2
-----END CERTIFICATE-----
Generated at Wed Mar 13 16:50:35 2024 by rpki-client on console-fra.rpki-client.org