Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/G8ri35tKlU-y-gyZUVf1_oZgLJM.roa
File: G8ri35tKlU-y-gyZUVf1_oZgLJM.roa (raw, json)
Hash identifier: SrXd29EEtT2nK0PQ3T5Hi/d7xVfVbVocEfezAW2kycY=
Subject key identifier: 1B:CA:E2:DF:9B:4A:95:4F:B2:FA:0C:99:51:57:F5:FE:86:60:2C:93
Certificate issuer: /CN=72e81fb5cf0fb32c4575f8413acbd41aa84b82f4
Certificate serial: 0186BC4892CCDE35DBB81D66E289B34F4DE9
Authority key identifier: 72:E8:1F:B5:CF:0F:B3:2C:45:75:F8:41:3A:CB:D4:1A:A8:4B:82:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cugftc8PsyxFdfhBOsvUGqhLgvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/G8ri35tKlU-y-gyZUVf1_oZgLJM.roa
Signing time: Tue 07 Mar 2023 13:35:18 +0000
ROA not before: Tue 07 Mar 2023 13:35:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15695
IP address blocks: 195.238.244.0/24 maxlen: 24
37.26.224.0/24 maxlen: 24
37.26.226.0/24 maxlen: 24
37.26.225.0/24 maxlen: 24
37.26.231.0/24 maxlen: 24
37.26.230.0/24 maxlen: 24
37.26.229.0/24 maxlen: 24
37.26.228.0/24 maxlen: 24
37.26.227.0/24 maxlen: 24
63.247.206.0/24 maxlen: 24
63.247.205.0/24 maxlen: 24
63.247.204.0/24 maxlen: 24
63.247.203.0/24 maxlen: 24
63.247.202.0/24 maxlen: 24
63.247.201.0/24 maxlen: 24
63.247.200.0/24 maxlen: 24
63.247.207.0/24 maxlen: 24
91.103.17.0/24 maxlen: 24
91.103.16.0/24 maxlen: 24
91.103.19.0/24 maxlen: 24
91.103.18.0/24 maxlen: 24
91.103.23.0/24 maxlen: 24
91.103.21.0/24 maxlen: 24
185.62.118.0/24 maxlen: 24
185.62.117.0/24 maxlen: 24
185.62.116.0/24 maxlen: 24
63.247.192.0/24 maxlen: 24
185.62.119.0/24 maxlen: 24
63.247.199.0/24 maxlen: 24
63.247.198.0/24 maxlen: 24
63.247.197.0/24 maxlen: 24
63.247.196.0/24 maxlen: 24
63.247.195.0/24 maxlen: 24
63.247.194.0/24 maxlen: 24
63.247.193.0/24 maxlen: 24
45.93.85.0/24 maxlen: 24
45.93.84.0/24 maxlen: 24
45.93.87.0/24 maxlen: 24
193.160.135.0/24 maxlen: 24
193.160.134.0/24 maxlen: 24
45.81.223.0/24 maxlen: 24
45.81.222.0/24 maxlen: 24
45.81.221.0/24 maxlen: 24
45.81.220.0/24 maxlen: 24
45.95.219.0/24 maxlen: 24
45.95.218.0/24 maxlen: 24
45.95.217.0/24 maxlen: 24
45.95.216.0/24 maxlen: 24
45.94.190.0/24 maxlen: 24
216.172.64.0/24 maxlen: 24
216.172.67.0/24 maxlen: 24
216.172.66.0/24 maxlen: 24
216.172.65.0/24 maxlen: 24
216.172.71.0/24 maxlen: 24
216.172.70.0/24 maxlen: 24
216.172.69.0/24 maxlen: 24
216.172.68.0/24 maxlen: 24
216.172.74.0/24 maxlen: 24
216.172.73.0/24 maxlen: 24
216.172.72.0/24 maxlen: 24
216.172.78.0/24 maxlen: 24
216.172.77.0/24 maxlen: 24
216.172.76.0/24 maxlen: 24
216.172.75.0/24 maxlen: 24
216.172.79.0/24 maxlen: 24
2a00:cb8:971::/48 maxlen: 48
2a00:cb8:31::/48 maxlen: 48
2a00:cb8:34::/48 maxlen: 48
2a00:cb8:48::/48 maxlen: 48
2a00:cb8:41::/48 maxlen: 48
2a00:cb8:44::/48 maxlen: 48
2a00:cb8:144::/48 maxlen: 48
2a00:cb8:33::/48 maxlen: 48
2a00:cb8:39::/48 maxlen: 48
2a00:cb8:49::/48 maxlen: 48
2a00:cb8:353::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:bc:48:92:cc:de:35:db:b8:1d:66:e2:89:b3:4f:4d:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e81fb5cf0fb32c4575f8413acbd41aa84b82f4
Validity
Not Before: Mar 7 13:35:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1bcae2df9b4a954fb2fa0c995157f5fe86602c93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:13:24:8e:72:e6:50:41:a9:71:f9:f3:f5:63:
8a:fa:84:72:42:2d:7b:cb:67:fa:55:01:c1:8f:f8:
f3:5f:a1:c9:2d:ce:d1:2c:14:d3:a8:25:26:94:9d:
24:16:20:13:af:45:27:53:22:1d:f6:5e:a6:3d:4a:
3c:85:ed:1c:77:cd:db:e2:6f:d9:8f:ca:1f:14:2e:
dd:1c:d4:65:14:3f:76:c0:46:fb:65:7e:c8:6a:64:
9c:dc:b9:45:8c:10:60:b8:dd:df:81:ba:bc:6e:c2:
35:9d:06:30:db:ac:55:b1:fc:a9:50:d0:bc:d2:7f:
64:55:ef:76:c2:fa:60:6a:99:6e:61:18:a8:76:c0:
73:e8:c4:08:fc:08:1a:e0:cd:61:63:78:bb:50:a3:
67:2d:f7:c6:79:61:42:e0:cc:d4:27:98:4c:3f:3f:
00:b0:26:cc:10:f8:cb:f2:29:95:ea:0e:b1:22:29:
54:05:4d:ba:42:86:2a:98:c6:40:7b:ea:8c:af:c8:
0a:10:66:f0:85:f0:0e:16:25:b1:25:b6:54:69:0e:
74:4d:e6:41:2b:01:70:40:49:ea:06:c3:8d:e8:94:
c4:b5:64:25:b4:1d:81:7c:8f:0e:09:ee:b6:5f:31:
12:3c:66:7b:c2:3e:6a:9f:4a:c5:9d:33:0a:b3:ef:
f8:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:CA:E2:DF:9B:4A:95:4F:B2:FA:0C:99:51:57:F5:FE:86:60:2C:93
X509v3 Authority Key Identifier:
keyid:72:E8:1F:B5:CF:0F:B3:2C:45:75:F8:41:3A:CB:D4:1A:A8:4B:82:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cugftc8PsyxFdfhBOsvUGqhLgvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/G8ri35tKlU-y-gyZUVf1_oZgLJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/cugftc8PsyxFdfhBOsvUGqhLgvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.26.224.0/21
45.81.220.0/22
45.93.84.0/23
45.93.87.0/24
45.94.190.0/24
45.95.216.0/22
63.247.192.0/20
91.103.16.0/22
91.103.21.0/24
91.103.23.0/24
185.62.116.0/22
193.160.134.0/23
195.238.244.0/24
216.172.64.0/20
IPv6:
2a00:cb8:31::/48
2a00:cb8:33::-2a00:cb8:34:ffff:ffff:ffff:ffff:ffff
2a00:cb8:39::/48
2a00:cb8:41::/48
2a00:cb8:44::/48
2a00:cb8:48::/47
2a00:cb8:144::/48
2a00:cb8:353::/48
2a00:cb8:971::/48
Signature Algorithm: sha256WithRSAEncryption
08:b3:b2:a8:33:6a:a0:d9:83:a3:78:16:8c:f7:a8:8f:67:07:
49:76:ea:43:2c:65:7a:ca:08:2d:48:5c:b0:ad:d4:81:0d:17:
70:25:e1:a4:d7:dc:6b:d4:b6:ca:de:8d:48:ab:a0:d4:20:a2:
26:b7:2e:0e:a2:16:6a:1e:31:54:78:d1:f3:c4:1e:65:b2:b5:
59:06:84:46:6f:64:0f:99:e5:b5:a8:b5:de:fc:ad:9c:a4:93:
ef:36:12:bb:58:75:43:cc:73:c5:ed:a2:28:59:c7:0f:f5:91:
9f:8a:a7:8a:36:29:6a:01:ee:a7:04:61:4e:c8:cf:6e:45:13:
fd:ed:b7:7a:e9:dc:05:8d:d1:8a:44:c7:41:82:3a:8f:44:c0:
c5:45:be:c5:f6:97:dd:91:41:19:1c:8a:95:3d:28:07:75:9a:
4a:79:cf:30:b9:4c:95:ff:92:1e:83:32:a3:92:8a:78:63:52:
96:76:cd:af:fa:ac:6f:34:7b:67:f6:9c:4f:60:d5:77:b5:76:
e0:84:b6:b2:46:a3:79:60:a0:c3:86:e0:e4:1c:5e:2c:34:92:
43:e2:1b:54:35:81:9c:98:ff:20:db:47:c6:2d:03:f0:1c:9b:
18:9a:97:1a:e6:86:b5:fe:a9:74:f4:47:76:af:92:86:ab:6f:
d6:e9:35:26
-----BEGIN CERTIFICATE-----
MIIFsjCCBJqgAwIBAgISAYa8SJLM3jXbuB1m4omzT03pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyZTgxZmI1Y2YwZmIzMmM0NTc1Zjg0MTNhY2JkNDFhYTg0
YjgyZjQwHhcNMjMwMzA3MTMzNTE4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYmNhZTJkZjliNGE5NTRmYjJmYTBjOTk1MTU3ZjVmZTg2NjAyYzkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAghMkjnLmUEGpcfnz9WOK+oRyQi17
y2f6VQHBj/jzX6HJLc7RLBTTqCUmlJ0kFiATr0UnUyId9l6mPUo8he0cd83b4m/Z
j8ofFC7dHNRlFD92wEb7ZX7IamSc3LlFjBBguN3fgbq8bsI1nQYw26xVsfypUNC8
0n9kVe92wvpgapluYRiodsBz6MQI/Aga4M1hY3i7UKNnLffGeWFC4MzUJ5hMPz8A
sCbMEPjL8imV6g6xIilUBU26QoYqmMZAe+qMr8gKEGbwhfAOFiWxJbZUaQ50TeZB
KwFwQEnqBsON6JTEtWQltB2BfI8OCe62XzESPGZ7wj5qn0rFnTMKs+/4MwIDAQAB
o4ICvjCCArowHQYDVR0OBBYEFBvK4t+bSpVPsvoMmVFX9f6GYCyTMB8GA1UdIwQY
MBaAFHLoH7XPD7MsRXX4QTrL1BqoS4L0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3VnZnRjOFBzeXhGZGZoQk9zdlVHcWhMZ3ZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9mMDY4YTctNWY4Yy00ZjMyLWFiOTQt
Y2RhNmUxOWZmYjg4LzEvRzhyaTM1dEtsVS15LWd5WlVWZjFfb1pnTEpNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS9mMDY4YTctNWY4Yy00ZjMyLWFiOTQtY2RhNmUxOWZmYjg4
LzEvY3VnZnRjOFBzeXhGZGZoQk9zdlVHcWhMZ3ZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHTBggrBgEFBQcBBwEB/wSBwzCBwDBaBAIAATBUAwQDJRrg
AwQCLVHcAwQBLV1UAwQALV1XAwQALV6+AwQCLV/YAwQEP/fAAwQCW2cQAwQAW2cV
AwQAW2cXAwQCuT50AwQBwaCGAwQAw+70AwQE2KxAMGIEAgACMFwDBwAqAAy4ADEw
EgMHACoADLgAMwMHACoADLgANAMHACoADLgAOQMHACoADLgAQQMHACoADLgARAMH
ASoADLgASAMHACoADLgBRAMHACoADLgDUwMHACoADLgJcTANBgkqhkiG9w0BAQsF
AAOCAQEACLOyqDNqoNmDo3gWjPeoj2cHSXbqQyxlesoILUhcsK3UgQ0XcCXhpNfc
a9S2yt6NSKug1CCiJrcuDqIWah4xVHjR88QeZbK1WQaERm9kD5nltai13vytnKST
7zYSu1h1Q8xzxe2iKFnHD/WRn4qnijYpagHupwRhTsjPbkUT/e23euncBY3RikTH
QYI6j0TAxUW+xfaX3ZFBGRyKlT0oB3WaSnnPMLlMlf+SHoMyo5KKeGNSlnbNr/qs
bzR7Z/acT2DVd7V24IS2skajeWCgw4bg5BxeLDSSQ+IbVDWBnJj/INtHxi0D8Byb
GJqXGuaGtf6pdPRHdq+Shqtv1uk1Jg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:00 2023 by rpki-client on console-ams.rpki-client.org