Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/LaBzszsaKMmN3pYT6Z8_FzwMd1E.roa
File: LaBzszsaKMmN3pYT6Z8_FzwMd1E.roa (raw, json)
Hash identifier: txtme+9pL0hGGV/Q8peJQQe8WcSHFTeiWcJ0hrC0ZZE=
Subject key identifier: 2D:A0:73:B3:3B:1A:28:C9:8D:DE:96:13:E9:9F:3F:17:3C:0C:77:51
Certificate issuer: /CN=72e81fb5cf0fb32c4575f8413acbd41aa84b82f4
Certificate serial: 018F75984A5549653748F68DA7F43B235EAC
Authority key identifier: 72:E8:1F:B5:CF:0F:B3:2C:45:75:F8:41:3A:CB:D4:1A:A8:4B:82:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cugftc8PsyxFdfhBOsvUGqhLgvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/LaBzszsaKMmN3pYT6Z8_FzwMd1E.roa
Signing time: Tue 14 May 2024 05:34:25 +0000
ROA not before: Tue 14 May 2024 05:34:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15695
IP address blocks: 5.253.88.0/24 maxlen: 24
5.253.89.0/24 maxlen: 24
5.253.90.0/24 maxlen: 24
5.253.91.0/24 maxlen: 24
37.26.224.0/24 maxlen: 24
37.26.225.0/24 maxlen: 24
37.26.226.0/24 maxlen: 24
37.26.227.0/24 maxlen: 24
37.26.228.0/24 maxlen: 24
37.26.229.0/24 maxlen: 24
37.26.230.0/24 maxlen: 24
37.26.231.0/24 maxlen: 24
45.81.220.0/24 maxlen: 24
45.81.221.0/24 maxlen: 24
45.81.222.0/24 maxlen: 24
45.81.223.0/24 maxlen: 24
45.93.84.0/24 maxlen: 24
45.93.85.0/24 maxlen: 24
45.93.87.0/24 maxlen: 24
45.94.190.0/24 maxlen: 24
45.95.216.0/24 maxlen: 24
45.95.217.0/24 maxlen: 24
45.95.218.0/24 maxlen: 24
45.95.219.0/24 maxlen: 24
63.247.192.0/24 maxlen: 24
63.247.193.0/24 maxlen: 24
63.247.194.0/24 maxlen: 24
63.247.195.0/24 maxlen: 24
63.247.196.0/24 maxlen: 24
63.247.197.0/24 maxlen: 24
63.247.198.0/24 maxlen: 24
63.247.199.0/24 maxlen: 24
63.247.200.0/24 maxlen: 24
63.247.201.0/24 maxlen: 24
63.247.202.0/24 maxlen: 24
63.247.203.0/24 maxlen: 24
63.247.204.0/24 maxlen: 24
63.247.205.0/24 maxlen: 24
63.247.206.0/24 maxlen: 24
63.247.207.0/24 maxlen: 24
86.48.208.0/24 maxlen: 24
86.48.209.0/24 maxlen: 24
86.48.210.0/24 maxlen: 24
86.48.211.0/24 maxlen: 24
86.48.216.0/24 maxlen: 24
86.48.217.0/24 maxlen: 24
86.48.218.0/24 maxlen: 24
86.48.219.0/24 maxlen: 24
86.48.220.0/24 maxlen: 24
86.48.221.0/24 maxlen: 24
86.48.222.0/24 maxlen: 24
86.48.223.0/24 maxlen: 24
86.48.224.0/24 maxlen: 24
86.48.240.0/24 maxlen: 24
86.48.241.0/24 maxlen: 24
86.48.242.0/24 maxlen: 24
91.103.16.0/24 maxlen: 24
91.103.17.0/24 maxlen: 24
91.103.18.0/24 maxlen: 24
91.103.19.0/24 maxlen: 24
91.103.21.0/24 maxlen: 24
91.103.23.0/24 maxlen: 24
185.62.116.0/24 maxlen: 24
185.62.117.0/24 maxlen: 24
185.62.118.0/24 maxlen: 24
185.62.119.0/24 maxlen: 24
193.160.134.0/24 maxlen: 24
193.160.135.0/24 maxlen: 24
195.238.244.0/24 maxlen: 24
216.172.64.0/24 maxlen: 24
216.172.65.0/24 maxlen: 24
216.172.66.0/24 maxlen: 24
216.172.67.0/24 maxlen: 24
216.172.68.0/24 maxlen: 24
216.172.69.0/24 maxlen: 24
216.172.70.0/24 maxlen: 24
216.172.71.0/24 maxlen: 24
216.172.72.0/24 maxlen: 24
216.172.73.0/24 maxlen: 24
216.172.74.0/24 maxlen: 24
216.172.75.0/24 maxlen: 24
216.172.76.0/24 maxlen: 24
216.172.77.0/24 maxlen: 24
216.172.78.0/24 maxlen: 24
216.172.79.0/24 maxlen: 24
2a00:cb8:31::/48 maxlen: 48
2a00:cb8:33::/48 maxlen: 48
2a00:cb8:34::/48 maxlen: 48
2a00:cb8:39::/48 maxlen: 48
2a00:cb8:41::/48 maxlen: 48
2a00:cb8:44::/48 maxlen: 48
2a00:cb8:48::/48 maxlen: 48
2a00:cb8:49::/48 maxlen: 48
2a00:cb8:144::/48 maxlen: 48
2a00:cb8:353::/48 maxlen: 48
2a00:cb8:971::/48 maxlen: 48
2a0c:5900:3000::/36 maxlen: 36
2a0c:5900:3001::/48 maxlen: 48
2a0c:5900:8000::/36 maxlen: 36
2a0c:5900:8001::/48 maxlen: 48
2a0c:5900:8002::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 17 May 2024 06:41:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:75:98:4a:55:49:65:37:48:f6:8d:a7:f4:3b:23:5e:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e81fb5cf0fb32c4575f8413acbd41aa84b82f4
Validity
Not Before: May 14 05:34:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2da073b33b1a28c98dde9613e99f3f173c0c7751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d8:83:02:08:84:74:4d:d0:b4:5f:29:f5:38:
d4:db:6a:ce:99:21:61:9b:83:9d:02:cc:54:8a:0c:
9b:a1:82:d1:38:28:d3:40:0d:a6:da:f8:20:86:d2:
08:4f:b4:de:c8:aa:9b:bc:fa:5d:48:e7:2f:88:98:
b5:5b:92:22:b1:22:55:92:41:48:6e:b7:1b:2e:07:
c7:63:de:84:61:34:55:8b:06:8e:15:1a:60:07:cc:
2f:83:25:88:29:8d:6f:90:75:cc:ca:f7:2e:57:32:
e4:5f:bf:30:7b:8d:69:b3:ab:d8:48:56:2d:82:d3:
60:22:a7:71:47:2e:ac:5f:a7:ba:ee:2f:d3:bb:45:
66:f2:c3:3c:d7:9b:76:70:8e:3b:e7:8f:a0:6b:75:
33:22:48:76:10:bc:c8:75:02:d7:6d:d7:d6:11:78:
54:93:69:ff:a6:fe:e1:1e:e9:3a:86:88:63:44:6e:
70:9d:f7:b6:b4:61:c0:d8:dc:b5:e4:db:1a:4d:5d:
22:fe:62:f9:00:b5:9a:03:34:a7:6a:95:27:cc:a7:
45:22:00:5a:9f:e0:2f:0a:ce:1f:e2:fe:d3:8b:6d:
fa:76:4d:a7:5e:a0:a0:aa:c6:1a:7f:4b:92:ac:13:
bf:f8:da:00:c8:3e:68:88:e5:14:f6:ec:03:85:e9:
85:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:A0:73:B3:3B:1A:28:C9:8D:DE:96:13:E9:9F:3F:17:3C:0C:77:51
X509v3 Authority Key Identifier:
keyid:72:E8:1F:B5:CF:0F:B3:2C:45:75:F8:41:3A:CB:D4:1A:A8:4B:82:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cugftc8PsyxFdfhBOsvUGqhLgvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/LaBzszsaKMmN3pYT6Z8_FzwMd1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/cugftc8PsyxFdfhBOsvUGqhLgvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.88.0/22
37.26.224.0/21
45.81.220.0/22
45.93.84.0/23
45.93.87.0/24
45.94.190.0/24
45.95.216.0/22
63.247.192.0/20
86.48.208.0/22
86.48.216.0-86.48.224.255
86.48.240.0-86.48.242.255
91.103.16.0/22
91.103.21.0/24
91.103.23.0/24
185.62.116.0/22
193.160.134.0/23
195.238.244.0/24
216.172.64.0/20
IPv6:
2a00:cb8:31::/48
2a00:cb8:33::-2a00:cb8:34:ffff:ffff:ffff:ffff:ffff
2a00:cb8:39::/48
2a00:cb8:41::/48
2a00:cb8:44::/48
2a00:cb8:48::/47
2a00:cb8:144::/48
2a00:cb8:353::/48
2a00:cb8:971::/48
2a0c:5900:3000::/36
2a0c:5900:8000::/36
Signature Algorithm: sha256WithRSAEncryption
9d:b7:7b:32:4b:4e:c4:6f:2a:82:ec:8f:24:0f:33:70:d9:93:
43:a6:30:35:ef:f0:5a:05:f2:43:f2:b8:04:04:80:b0:c4:4c:
c1:cb:53:2a:cb:3f:10:4c:b2:95:7a:33:44:c4:1e:0c:44:ab:
d9:f9:09:27:52:53:69:a5:38:3b:74:05:33:f1:d7:9c:e3:ad:
fd:ab:a0:16:c8:67:b9:6a:a3:f5:ac:77:9e:c3:d3:3d:fa:78:
9f:97:bf:50:ea:2a:93:90:0a:60:6e:10:97:9f:1e:fc:82:52:
87:61:04:6c:0f:1c:e3:63:26:28:ba:85:68:4c:ed:ac:0d:73:
dd:e7:ea:33:51:7a:1e:7b:a0:09:f9:e4:3e:17:ea:b6:0a:f6:
ad:b1:3e:06:50:d6:d9:ad:c3:89:04:32:2b:4f:a3:72:31:53:
e8:7c:b6:00:25:87:bf:69:a2:41:39:fb:24:50:0a:b0:6a:b1:
97:53:4a:c7:e9:05:51:b7:d2:67:c4:b9:f2:83:50:b2:8c:88:
4e:10:fb:8e:ce:85:20:01:9b:73:da:1d:6e:3b:b1:17:5d:3f:
2d:9b:aa:8a:c6:b0:16:d2:18:c3:88:3c:69:ea:b2:c0:07:43:
83:a1:78:58:fe:04:03:6f:6c:36:78:db:17:49:29:e8:f8:7b:
81:52:49:d4
-----BEGIN CERTIFICATE-----
MIIF7DCCBNSgAwIBAgISAY91mEpVSWU3SPaNp/Q7I16sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyZTgxZmI1Y2YwZmIzMmM0NTc1Zjg0MTNhY2JkNDFhYTg0
YjgyZjQwHhcNMjQwNTE0MDUzNDI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZGEwNzNiMzNiMWEyOGM5OGRkZTk2MTNlOTlmM2YxNzNjMGM3NzUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3diDAgiEdE3QtF8p9TjU22rOmSFh
m4OdAsxUigyboYLROCjTQA2m2vgghtIIT7TeyKqbvPpdSOcviJi1W5IisSJVkkFI
brcbLgfHY96EYTRViwaOFRpgB8wvgyWIKY1vkHXMyvcuVzLkX78we41ps6vYSFYt
gtNgIqdxRy6sX6e67i/Tu0Vm8sM815t2cI4754+ga3UzIkh2ELzIdQLXbdfWEXhU
k2n/pv7hHuk6hohjRG5wnfe2tGHA2Ny15NsaTV0i/mL5ALWaAzSnapUnzKdFIgBa
n+AvCs4f4v7Ti236dk2nXqCgqsYaf0uSrBO/+NoAyD5oiOUU9uwDhemFRQIDAQAB
o4IC+DCCAvQwHQYDVR0OBBYEFC2gc7M7GijJjd6WE+mfPxc8DHdRMB8GA1UdIwQY
MBaAFHLoH7XPD7MsRXX4QTrL1BqoS4L0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3VnZnRjOFBzeXhGZGZoQk9zdlVHcWhMZ3ZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9mMDY4YTctNWY4Yy00ZjMyLWFiOTQt
Y2RhNmUxOWZmYjg4LzEvTGFCenN6c2FLTW1OM3BZVDZaOF9GendNZDFFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS9mMDY4YTctNWY4Yy00ZjMyLWFiOTQtY2RhNmUxOWZmYjg4
LzEvY3VnZnRjOFBzeXhGZGZoQk9zdlVHcWhMZ3ZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBDAYIKwYBBQUHAQcBAf8EgfwwgfkwgYIEAgABMHwDBAIF
/VgDBAMlGuADBAItUdwDBAEtXVQDBAAtXVcDBAAtXr4DBAItX9gDBAQ/98ADBAJW
MNAwDAMEA1Yw2AMEAFYw4DAMAwQEVjDwAwQAVjDyAwQCW2cQAwQAW2cVAwQAW2cX
AwQCuT50AwQBwaCGAwQAw+70AwQE2KxAMHIEAgACMGwDBwAqAAy4ADEwEgMHACoA
DLgAMwMHACoADLgANAMHACoADLgAOQMHACoADLgAQQMHACoADLgARAMHASoADLgA
SAMHACoADLgBRAMHACoADLgDUwMHACoADLgJcQMGBCoMWQAwAwYEKgxZAIAwDQYJ
KoZIhvcNAQELBQADggEBAJ23ezJLTsRvKoLsjyQPM3DZk0OmMDXv8FoF8kPyuAQE
gLDETMHLUyrLPxBMspV6M0TEHgxEq9n5CSdSU2mlODt0BTPx15zjrf2roBbIZ7lq
o/Wsd57D0z36eJ+Xv1DqKpOQCmBuEJefHvyCUodhBGwPHONjJii6hWhM7awNc93n
6jNReh57oAn55D4X6rYK9q2xPgZQ1tmtw4kEMitPo3IxU+h8tgAlh79pokE5+yRQ
CrBqsZdTSsfpBVG30mfEufKDULKMiE4Q+47OhSABm3PaHW47sRddPy2bqorGsBbS
GMOIPGnqssAHQ4OheFj+BANvbDZ42xdJKej4e4FSSdQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:14 2024 by rpki-client on console-fra.rpki-client.org