Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/KOSTqgA5Bw1abADP2hRLbT7ddpE.roa
File: KOSTqgA5Bw1abADP2hRLbT7ddpE.roa (raw, json)
Hash identifier: yY280Vbl3jGNXpPtG3nzVcKMUOS5NM1QGXOv/9h2RJU=
Subject key identifier: 28:E4:93:AA:00:39:07:0D:5A:6C:00:CF:DA:14:4B:6D:3E:DD:76:91
Certificate issuer: /CN=72e81fb5cf0fb32c4575f8413acbd41aa84b82f4
Certificate serial: 018FFFBA90918EF0AB60C82426B569AC4FB4
Authority key identifier: 72:E8:1F:B5:CF:0F:B3:2C:45:75:F8:41:3A:CB:D4:1A:A8:4B:82:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cugftc8PsyxFdfhBOsvUGqhLgvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/KOSTqgA5Bw1abADP2hRLbT7ddpE.roa
Signing time: Mon 10 Jun 2024 01:19:27 +0000
ROA not before: Mon 10 Jun 2024 01:19:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15695
IP address blocks: 5.253.88.0/24 maxlen: 24
5.253.89.0/24 maxlen: 24
5.253.90.0/24 maxlen: 24
5.253.91.0/24 maxlen: 24
37.26.224.0/24 maxlen: 24
37.26.225.0/24 maxlen: 24
37.26.226.0/24 maxlen: 24
37.26.227.0/24 maxlen: 24
37.26.228.0/24 maxlen: 24
37.26.229.0/24 maxlen: 24
37.26.230.0/24 maxlen: 24
37.26.231.0/24 maxlen: 24
45.81.220.0/24 maxlen: 24
45.81.221.0/24 maxlen: 24
45.81.222.0/24 maxlen: 24
45.81.223.0/24 maxlen: 24
45.93.84.0/24 maxlen: 24
45.93.85.0/24 maxlen: 24
45.93.87.0/24 maxlen: 24
45.94.190.0/24 maxlen: 24
45.95.216.0/24 maxlen: 24
45.95.217.0/24 maxlen: 24
45.95.218.0/24 maxlen: 24
45.95.219.0/24 maxlen: 24
63.247.192.0/24 maxlen: 24
63.247.193.0/24 maxlen: 24
63.247.194.0/24 maxlen: 24
63.247.195.0/24 maxlen: 24
63.247.196.0/24 maxlen: 24
63.247.197.0/24 maxlen: 24
63.247.198.0/24 maxlen: 24
63.247.199.0/24 maxlen: 24
63.247.200.0/24 maxlen: 24
63.247.201.0/24 maxlen: 24
63.247.202.0/24 maxlen: 24
63.247.203.0/24 maxlen: 24
63.247.204.0/24 maxlen: 24
63.247.205.0/24 maxlen: 24
63.247.206.0/24 maxlen: 24
63.247.207.0/24 maxlen: 24
86.48.208.0/24 maxlen: 24
86.48.209.0/24 maxlen: 24
86.48.210.0/24 maxlen: 24
86.48.211.0/24 maxlen: 24
86.48.212.0/24 maxlen: 24
86.48.216.0/24 maxlen: 24
86.48.217.0/24 maxlen: 24
86.48.218.0/24 maxlen: 24
86.48.219.0/24 maxlen: 24
86.48.220.0/24 maxlen: 24
86.48.221.0/24 maxlen: 24
86.48.222.0/24 maxlen: 24
86.48.223.0/24 maxlen: 24
86.48.224.0/24 maxlen: 24
86.48.240.0/24 maxlen: 24
86.48.241.0/24 maxlen: 24
86.48.242.0/24 maxlen: 24
91.103.16.0/24 maxlen: 24
91.103.17.0/24 maxlen: 24
91.103.18.0/24 maxlen: 24
91.103.19.0/24 maxlen: 24
91.103.21.0/24 maxlen: 24
91.103.23.0/24 maxlen: 24
185.62.116.0/24 maxlen: 24
185.62.117.0/24 maxlen: 24
185.62.118.0/24 maxlen: 24
185.62.119.0/24 maxlen: 24
193.160.134.0/24 maxlen: 24
193.160.135.0/24 maxlen: 24
195.238.244.0/24 maxlen: 24
216.172.64.0/24 maxlen: 24
216.172.65.0/24 maxlen: 24
216.172.66.0/24 maxlen: 24
216.172.67.0/24 maxlen: 24
216.172.68.0/24 maxlen: 24
216.172.69.0/24 maxlen: 24
216.172.70.0/24 maxlen: 24
216.172.71.0/24 maxlen: 24
216.172.72.0/24 maxlen: 24
216.172.73.0/24 maxlen: 24
216.172.74.0/24 maxlen: 24
216.172.75.0/24 maxlen: 24
216.172.76.0/24 maxlen: 24
216.172.77.0/24 maxlen: 24
216.172.78.0/24 maxlen: 24
216.172.79.0/24 maxlen: 24
2a00:cb8:31::/48 maxlen: 48
2a00:cb8:33::/48 maxlen: 48
2a00:cb8:34::/48 maxlen: 48
2a00:cb8:39::/48 maxlen: 48
2a00:cb8:41::/48 maxlen: 48
2a00:cb8:44::/48 maxlen: 48
2a00:cb8:48::/48 maxlen: 48
2a00:cb8:49::/48 maxlen: 48
2a00:cb8:144::/48 maxlen: 48
2a00:cb8:353::/48 maxlen: 48
2a00:cb8:971::/48 maxlen: 48
2a0c:5900:3000::/36 maxlen: 36
2a0c:5900:3001::/48 maxlen: 48
2a0c:5900:3002::/48 maxlen: 48
2a0c:5900:3003::/48 maxlen: 48
2a0c:5900:3004::/48 maxlen: 48
2a0c:5900:3007::/48 maxlen: 48
2a0c:5900:3008::/48 maxlen: 48
2a0c:5900:3009::/48 maxlen: 48
2a0c:5900:3015::/48 maxlen: 48
2a0c:5900:3016::/48 maxlen: 48
2a0c:5900:3017::/48 maxlen: 48
2a0c:5900:3018::/48 maxlen: 48
2a0c:5900:3019::/48 maxlen: 48
2a0c:5900:4000::/36 maxlen: 36
2a0c:5900:4001::/48 maxlen: 48
2a0c:5900:5000::/36 maxlen: 36
2a0c:5900:5001::/48 maxlen: 48
2a0c:5900:5002::/48 maxlen: 48
2a0c:5900:8000::/36 maxlen: 36
2a0c:5900:8001::/48 maxlen: 48
2a0c:5900:8002::/48 maxlen: 48
2a0c:5900:8003::/48 maxlen: 48
2a0c:5900:9000::/36 maxlen: 36
2a0c:5900:9001::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Jun 2024 06:46:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ff:ba:90:91:8e:f0:ab:60:c8:24:26:b5:69:ac:4f:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e81fb5cf0fb32c4575f8413acbd41aa84b82f4
Validity
Not Before: Jun 10 01:19:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=28e493aa0039070d5a6c00cfda144b6d3edd7691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:94:98:66:da:4b:58:4a:89:e0:88:55:62:2c:
56:db:fd:9e:9e:6e:12:3c:ce:c3:83:bb:04:06:c9:
d6:d5:0f:0f:8d:f2:18:a6:bc:07:3e:de:92:4b:1f:
10:15:dd:5d:76:50:a1:b3:cb:b8:50:04:78:ff:13:
75:23:14:e7:3f:a7:45:3d:2c:fb:57:02:81:40:b4:
e8:0b:84:03:1c:e7:15:6c:89:76:90:c9:cb:13:16:
24:d1:bc:9f:b7:36:ea:47:27:94:0a:0f:ce:3a:c5:
79:f9:53:22:cf:10:52:d3:e1:a3:a9:51:47:a1:25:
a7:8a:39:b2:99:f5:9b:5b:99:13:23:70:aa:1c:b5:
ab:01:ee:92:10:20:8e:72:fc:bb:f8:6c:a5:5d:b3:
47:79:ce:c7:08:3a:72:f3:62:ea:d6:4f:29:f8:47:
bb:37:19:dd:9f:be:47:6f:df:a1:fa:4c:93:ac:57:
57:24:f5:af:7d:e6:55:91:37:0e:65:26:a8:1d:84:
4c:03:fe:93:7e:6c:ed:b5:3f:7f:b9:cf:05:eb:be:
57:01:1c:b8:07:e7:49:1d:a5:10:d0:ed:96:c1:7f:
db:ed:75:65:fe:40:d9:5b:f3:1a:f7:f1:1b:14:4f:
0f:33:c5:b9:0a:b2:60:fb:7e:c1:cd:23:65:25:fd:
cb:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:E4:93:AA:00:39:07:0D:5A:6C:00:CF:DA:14:4B:6D:3E:DD:76:91
X509v3 Authority Key Identifier:
keyid:72:E8:1F:B5:CF:0F:B3:2C:45:75:F8:41:3A:CB:D4:1A:A8:4B:82:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cugftc8PsyxFdfhBOsvUGqhLgvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/KOSTqgA5Bw1abADP2hRLbT7ddpE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/cugftc8PsyxFdfhBOsvUGqhLgvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.88.0/22
37.26.224.0/21
45.81.220.0/22
45.93.84.0/23
45.93.87.0/24
45.94.190.0/24
45.95.216.0/22
63.247.192.0/20
86.48.208.0-86.48.212.255
86.48.216.0-86.48.224.255
86.48.240.0-86.48.242.255
91.103.16.0/22
91.103.21.0/24
91.103.23.0/24
185.62.116.0/22
193.160.134.0/23
195.238.244.0/24
216.172.64.0/20
IPv6:
2a00:cb8:31::/48
2a00:cb8:33::-2a00:cb8:34:ffff:ffff:ffff:ffff:ffff
2a00:cb8:39::/48
2a00:cb8:41::/48
2a00:cb8:44::/48
2a00:cb8:48::/47
2a00:cb8:144::/48
2a00:cb8:353::/48
2a00:cb8:971::/48
2a0c:5900:3000::-2a0c:5900:5fff:ffff:ffff:ffff:ffff:ffff
2a0c:5900:8000::/35
Signature Algorithm: sha256WithRSAEncryption
9f:c2:4f:ed:55:b2:4a:44:aa:84:61:fc:1e:bd:41:d4:5b:a1:
fa:ba:a7:ce:c1:5f:18:8c:e4:75:ea:7c:d6:2d:92:91:f8:5f:
52:42:9f:98:dd:f4:0d:40:a8:f6:e0:71:2d:99:ba:16:df:d3:
13:ad:a7:08:c6:9a:2e:b7:09:e2:0d:b8:e2:72:ca:f7:91:94:
4d:45:2c:e7:f4:18:b2:cb:3d:1a:97:e1:c5:43:62:00:fc:ad:
99:ec:eb:b5:f1:b4:77:8e:82:04:1c:96:da:4b:a6:fc:39:ee:
64:e6:4b:e6:9d:d7:06:06:ea:7e:17:bc:7c:f4:0f:11:fc:4e:
ec:83:3f:09:1d:85:b4:fc:9f:1a:38:63:58:e8:93:15:30:0a:
c5:5c:57:d9:25:1e:59:b7:9f:0e:4e:10:c6:6b:d4:c0:c2:e1:
06:fd:03:d3:70:3b:b5:ad:da:af:82:58:67:71:a5:1f:30:ed:
e3:17:f8:21:a9:bb:24:bf:87:b8:98:21:09:7e:71:0a:4a:b1:
0e:38:10:d9:a9:15:2a:81:89:75:9b:2d:96:fe:90:61:a3:9e:
16:3d:03:40:63:2d:ff:e0:62:e7:ca:68:e5:b1:fa:96:20:a4:
8d:72:79:4a:d8:f7:ec:de:0d:6f:8d:72:cb:b5:b6:e5:d6:57:
58:15:8c:ae
-----BEGIN CERTIFICATE-----
MIIGATCCBOmgAwIBAgISAY//upCRjvCrYMgkJrVprE+0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyZTgxZmI1Y2YwZmIzMmM0NTc1Zjg0MTNhY2JkNDFhYTg0
YjgyZjQwHhcNMjQwNjEwMDExOTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOGU0OTNhYTAwMzkwNzBkNWE2YzAwY2ZkYTE0NGI2ZDNlZGQ3NjkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnpSYZtpLWEqJ4IhVYixW2/2enm4S
PM7Dg7sEBsnW1Q8PjfIYprwHPt6SSx8QFd1ddlChs8u4UAR4/xN1IxTnP6dFPSz7
VwKBQLToC4QDHOcVbIl2kMnLExYk0byftzbqRyeUCg/OOsV5+VMizxBS0+GjqVFH
oSWnijmymfWbW5kTI3CqHLWrAe6SECCOcvy7+GylXbNHec7HCDpy82Lq1k8p+Ee7
Nxndn75Hb9+h+kyTrFdXJPWvfeZVkTcOZSaoHYRMA/6TfmzttT9/uc8F675XARy4
B+dJHaUQ0O2WwX/b7XVl/kDZW/Ma9/EbFE8PM8W5CrJg+37BzSNlJf3LmQIDAQAB
o4IDDTCCAwkwHQYDVR0OBBYEFCjkk6oAOQcNWmwAz9oUS20+3XaRMB8GA1UdIwQY
MBaAFHLoH7XPD7MsRXX4QTrL1BqoS4L0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3VnZnRjOFBzeXhGZGZoQk9zdlVHcWhMZ3ZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9mMDY4YTctNWY4Yy00ZjMyLWFiOTQt
Y2RhNmUxOWZmYjg4LzEvS09TVHFnQTVCdzFhYkFEUDJoUkxiVDdkZHBFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS9mMDY4YTctNWY4Yy00ZjMyLWFiOTQtY2RhNmUxOWZmYjg4
LzEvY3VnZnRjOFBzeXhGZGZoQk9zdlVHcWhMZ3ZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBIQYIKwYBBQUHAQcBAf8EggEQMIIBDDCBiwQCAAEwgYQD
BAIF/VgDBAMlGuADBAItUdwDBAEtXVQDBAAtXVcDBAAtXr4DBAItX9gDBAQ/98Aw
DAMEBFYw0AMEAFYw1DAMAwQDVjDYAwQAVjDgMAwDBARWMPADBABWMPIDBAJbZxAD
BABbZxUDBABbZxcDBAK5PnQDBAHBoIYDBADD7vQDBATYrEAwfAQCAAIwdgMHACoA
DLgAMTASAwcAKgAMuAAzAwcAKgAMuAA0AwcAKgAMuAA5AwcAKgAMuABBAwcAKgAM
uABEAwcBKgAMuABIAwcAKgAMuAFEAwcAKgAMuANTAwcAKgAMuAlxMBADBgQqDFkA
MAMGBSoMWQBAAwYFKgxZAIAwDQYJKoZIhvcNAQELBQADggEBAJ/CT+1VskpEqoRh
/B69QdRbofq6p87BXxiM5HXqfNYtkpH4X1JCn5jd9A1AqPbgcS2Zuhbf0xOtpwjG
mi63CeINuOJyyveRlE1FLOf0GLLLPRqX4cVDYgD8rZns67XxtHeOggQcltpLpvw5
7mTmS+ad1wYG6n4XvHz0DxH8TuyDPwkdhbT8nxo4Y1jokxUwCsVcV9klHlm3nw5O
EMZr1MDC4Qb9A9NwO7Wt2q+CWGdxpR8w7eMX+CGpuyS/h7iYIQl+cQpKsQ44ENmp
FSqBiXWbLZb+kGGjnhY9A0BjLf/gYufKaOWx+pYgpI1yeUrY9+zeDW+Ncsu1tuXW
V1gVjK4=
-----END CERTIFICATE-----
Generated at Mon Jun 10 11:57:16 2024 by rpki-client on console-ams.rpki-client.org