Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/IFKapcFIj3mRTknz8Qo1iC0EPAM.roa
File: IFKapcFIj3mRTknz8Qo1iC0EPAM.roa (raw, json)
Hash identifier: J/lSKFeCEMdpQfnwcFDlPmHm9oCPgwPgs0P4RDv5Ilw=
Subject key identifier: 20:52:9A:A5:C1:48:8F:79:91:4E:49:F3:F1:0A:35:88:2D:04:3C:03
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 01866EE662C358E0068AC3450E60BC5CE6D1
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/IFKapcFIj3mRTknz8Qo1iC0EPAM.roa
Signing time: Mon 20 Feb 2023 12:57:17 +0000
ROA not before: Mon 20 Feb 2023 12:57:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12301
IP address blocks: 79.120.168.0/23 maxlen: 24
79.120.176.0/20 maxlen: 24
79.120.192.0/19 maxlen: 24
79.120.198.0/24 maxlen: 24
79.120.200.0/24 maxlen: 24
79.120.128.0/19 maxlen: 24
79.120.224.0/20 maxlen: 24
79.120.240.0/21 maxlen: 24
79.120.250.0/23 maxlen: 24
212.24.160.0/19 maxlen: 19
193.226.196.0/22 maxlen: 24
193.226.194.0/23 maxlen: 24
193.226.200.0/21 maxlen: 24
89.186.98.0/23 maxlen: 24
89.186.100.0/23 maxlen: 24
193.226.208.0/22 maxlen: 24
213.253.192.0/18 maxlen: 24
89.186.104.0/23 maxlen: 24
193.226.216.0/21 maxlen: 24
89.186.116.0/23 maxlen: 24
193.226.224.0/23 maxlen: 24
193.226.228.0/22 maxlen: 24
193.226.236.0/23 maxlen: 24
193.226.234.0/23 maxlen: 24
193.226.242.0/23 maxlen: 24
193.226.252.0/22 maxlen: 24
193.226.250.0/23 maxlen: 24
94.125.248.0/21 maxlen: 24
82.131.160.0/20 maxlen: 24
62.77.192.0/22 maxlen: 24
193.91.64.0/19 maxlen: 24
82.131.176.0/22 maxlen: 24
62.77.200.0/21 maxlen: 24
62.77.208.0/20 maxlen: 24
82.131.180.0/23 maxlen: 24
82.131.192.0/22 maxlen: 24
62.77.224.0/20 maxlen: 24
82.131.199.0/24 maxlen: 24
82.131.208.0/21 maxlen: 24
62.77.244.0/22 maxlen: 24
62.77.242.0/23 maxlen: 24
91.83.148.0/22 maxlen: 24
91.83.146.0/23 maxlen: 24
91.83.152.0/23 maxlen: 24
91.83.156.0/22 maxlen: 24
91.83.160.0/20 maxlen: 24
213.16.64.0/18 maxlen: 24
91.83.176.0/22 maxlen: 24
87.97.64.0/20 maxlen: 24
91.83.92.0/23 maxlen: 24
91.83.96.0/22 maxlen: 24
91.83.100.0/23 maxlen: 24
91.83.104.0/22 maxlen: 24
91.83.108.0/23 maxlen: 24
91.83.122.0/23 maxlen: 24
91.83.124.0/22 maxlen: 24
91.83.128.0/21 maxlen: 24
82.144.160.0/22 maxlen: 24
91.83.254.0/23 maxlen: 24
82.144.168.0/22 maxlen: 24
82.144.178.0/23 maxlen: 24
82.144.180.0/22 maxlen: 24
82.144.184.0/22 maxlen: 24
82.144.190.0/23 maxlen: 24
185.50.28.0/22 maxlen: 24
91.83.208.0/20 maxlen: 24
91.83.224.0/20 maxlen: 20
91.83.220.0/22 maxlen: 22
91.83.240.0/21 maxlen: 24
91.83.248.0/22 maxlen: 24
91.82.192.0/20 maxlen: 24
91.82.208.0/23 maxlen: 24
91.82.216.0/21 maxlen: 24
91.82.224.0/22 maxlen: 24
91.82.236.0/22 maxlen: 24
91.82.152.0/21 maxlen: 24
91.82.148.0/22 maxlen: 24
91.82.174.0/23 maxlen: 24
213.197.64.0/21 maxlen: 24
91.82.184.0/22 maxlen: 24
91.83.40.0/21 maxlen: 24
91.83.48.0/22 maxlen: 24
91.83.56.0/21 maxlen: 24
91.83.64.0/20 maxlen: 24
194.143.224.0/19 maxlen: 24
91.83.80.0/21 maxlen: 24
91.83.88.0/22 maxlen: 24
91.82.244.0/22 maxlen: 24
195.184.0.0/19 maxlen: 24
91.82.252.0/22 maxlen: 24
91.82.248.0/23 maxlen: 24
91.82.8.0/21 maxlen: 24
91.82.16.0/21 maxlen: 24
212.108.192.0/18 maxlen: 24
91.82.84.0/22 maxlen: 24
91.82.80.0/23 maxlen: 24
91.82.88.0/21 maxlen: 24
91.82.96.0/19 maxlen: 24
194.169.253.0/24 maxlen: 24
91.82.128.0/23 maxlen: 24
213.163.0.0/18 maxlen: 24
91.82.40.0/21 maxlen: 24
91.82.48.0/21 maxlen: 24
91.82.58.0/23 maxlen: 24
91.82.62.0/23 maxlen: 24
91.82.72.0/21 maxlen: 24
81.0.64.0/20 maxlen: 24
81.0.80.0/23 maxlen: 24
81.0.88.0/23 maxlen: 24
81.0.96.0/23 maxlen: 24
81.94.176.0/20 maxlen: 24
81.0.104.0/22 maxlen: 24
81.0.100.0/22 maxlen: 24
82.141.128.0/18 maxlen: 24
193.68.32.0/19 maxlen: 24
81.0.110.0/23 maxlen: 24
81.0.112.0/21 maxlen: 24
81.0.124.0/23 maxlen: 24
81.0.120.0/23 maxlen: 24
2001:1aa0::/29 maxlen: 32
Validation: Failed, certificate revoked on Tue 21 Feb 2023 09:16:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:6e:e6:62:c3:58:e0:06:8a:c3:45:0e:60:bc:5c:e6:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Feb 20 12:57:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20529aa5c1488f79914e49f3f10a35882d043c03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:15:e1:8a:63:91:ee:80:d0:c2:07:5a:0e:83:
b1:b8:36:21:94:44:8c:72:09:08:56:eb:61:13:6b:
e5:97:69:5a:5e:38:85:3d:4c:c0:53:22:11:93:88:
a3:38:2c:f1:83:73:ff:f0:ac:84:fe:92:58:75:1a:
e3:3c:ed:f1:d9:46:c8:b0:7b:b1:03:ed:44:f5:0c:
4a:3d:92:f9:06:cd:ec:61:6d:96:44:ca:eb:4c:42:
4a:a6:05:16:67:fb:e3:ef:9e:29:17:73:50:a5:be:
93:52:c3:55:ce:09:d6:32:51:a8:f8:31:15:42:b1:
14:a6:31:35:b4:53:cb:4d:db:52:01:7e:4f:93:a9:
f8:c6:8f:fe:cc:8e:5b:d9:06:ec:b3:4f:94:b5:8b:
3f:d3:e5:06:dc:3b:bc:59:a4:49:3b:07:ee:59:f1:
12:68:3d:59:fe:17:70:1e:41:f7:ab:67:d0:76:dd:
e0:a8:99:c2:3c:86:cf:8c:4a:e7:77:59:6a:b2:27:
f7:14:e6:dc:51:64:4c:64:eb:41:88:76:62:9e:b1:
17:98:2b:66:4f:3c:b6:27:a2:15:02:30:d7:cf:01:
22:b5:fb:f7:19:2d:99:3d:93:62:a5:f3:5e:e8:e1:
e0:d8:5e:08:32:2a:04:4b:ad:83:13:78:0c:95:e8:
4a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:52:9A:A5:C1:48:8F:79:91:4E:49:F3:F1:0A:35:88:2D:04:3C:03
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/IFKapcFIj3mRTknz8Qo1iC0EPAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.77.192.0/22
62.77.200.0-62.77.239.255
62.77.242.0-62.77.247.255
79.120.128.0/19
79.120.168.0/23
79.120.176.0-79.120.247.255
79.120.250.0/23
81.0.64.0-81.0.81.255
81.0.88.0/23
81.0.96.0/23
81.0.100.0-81.0.107.255
81.0.110.0-81.0.121.255
81.0.124.0/23
81.94.176.0/20
82.131.160.0-82.131.181.255
82.131.192.0/22
82.131.199.0/24
82.131.208.0/21
82.141.128.0/18
82.144.160.0/22
82.144.168.0/22
82.144.178.0-82.144.187.255
82.144.190.0/23
87.97.64.0/20
89.186.98.0-89.186.101.255
89.186.104.0/23
89.186.116.0/23
91.82.8.0-91.82.23.255
91.82.40.0-91.82.55.255
91.82.58.0/23
91.82.62.0/23
91.82.72.0-91.82.81.255
91.82.84.0-91.82.129.255
91.82.148.0-91.82.159.255
91.82.174.0/23
91.82.184.0/22
91.82.192.0-91.82.209.255
91.82.216.0-91.82.227.255
91.82.236.0/22
91.82.244.0-91.82.249.255
91.82.252.0/22
91.83.40.0-91.83.51.255
91.83.56.0-91.83.93.255
91.83.96.0-91.83.101.255
91.83.104.0-91.83.109.255
91.83.122.0-91.83.135.255
91.83.146.0-91.83.153.255
91.83.156.0-91.83.179.255
91.83.208.0-91.83.251.255
91.83.254.0/23
94.125.248.0/21
185.50.28.0/22
193.68.32.0/19
193.91.64.0/19
193.226.194.0-193.226.211.255
193.226.216.0-193.226.225.255
193.226.228.0/22
193.226.234.0-193.226.237.255
193.226.242.0/23
193.226.250.0-193.226.255.255
194.143.224.0/19
194.169.253.0/24
195.184.0.0/19
212.24.160.0/19
212.108.192.0/18
213.16.64.0/18
213.163.0.0/18
213.197.64.0/21
213.253.192.0/18
IPv6:
2001:1aa0::/29
Signature Algorithm: sha256WithRSAEncryption
38:60:44:d2:05:a7:05:67:fc:b1:c8:4e:cb:43:16:5f:f0:81:
32:87:a9:6e:ee:f4:d6:6d:44:af:96:ea:30:eb:58:f9:a7:43:
a5:63:99:93:e1:54:d4:6c:9c:98:8b:01:4e:bd:b5:92:af:f5:
7b:dd:35:76:b8:72:d9:d6:f9:d8:e5:81:c1:5c:fc:5b:99:e8:
93:76:c1:30:f0:7b:a3:3f:17:f8:dc:90:06:94:07:18:9e:86:
47:4b:2d:09:17:43:06:09:7f:8f:bb:5d:db:17:b9:38:da:e0:
11:3e:c8:10:f7:e0:dd:cb:97:8d:6e:a6:11:31:d6:6f:68:06:
e3:16:23:8a:96:02:7f:3f:aa:b6:dd:55:e9:a1:67:99:64:98:
c9:76:2e:ad:67:80:5b:af:dd:7b:df:53:4d:e8:17:7f:0f:e0:
f3:03:97:82:9e:1f:68:b0:9d:9d:d7:5f:a9:be:81:85:66:f6:
91:8b:8f:d8:d9:94:9b:07:ae:bf:22:9b:db:e4:a1:6e:ba:da:
95:17:c5:14:50:ba:97:67:03:36:90:8e:16:7e:fe:25:8c:27:
8d:28:bf:8d:f0:6b:d7:9e:3c:4b:e3:db:4d:72:ef:ea:d4:aa:
1e:95:c8:81:87:bc:20:2d:f7:68:12:0c:2e:be:37:33:29:c6:
2e:91:72:e4
-----BEGIN CERTIFICATE-----
MIIHlTCCBn2gAwIBAgISAYZu5mLDWOAGisNFDmC8XObRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmYjA5N2EzNmMyMzI1ZDEwMzFmZjQwOTFiYTAwYTg2NDU5
ZDQyODgwHhcNMjMwMjIwMTI1NzE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMDUyOWFhNWMxNDg4Zjc5OTE0ZTQ5ZjNmMTBhMzU4ODJkMDQzYzAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2xXhimOR7oDQwgdaDoOxuDYhlESM
cgkIVuthE2vll2laXjiFPUzAUyIRk4ijOCzxg3P/8KyE/pJYdRrjPO3x2UbIsHux
A+1E9QxKPZL5Bs3sYW2WRMrrTEJKpgUWZ/vj754pF3NQpb6TUsNVzgnWMlGo+DEV
QrEUpjE1tFPLTdtSAX5Pk6n4xo/+zI5b2Qbss0+UtYs/0+UG3Du8WaRJOwfuWfES
aD1Z/hdwHkH3q2fQdt3gqJnCPIbPjErnd1lqsif3FObcUWRMZOtBiHZinrEXmCtm
Tzy2J6IVAjDXzwEitfv3GS2ZPZNipfNe6OHg2F4IMioES62DE3gMlehKfwIDAQAB
o4IEoTCCBJ0wHQYDVR0OBBYEFCBSmqXBSI95kU5J8/EKNYgtBDwDMB8GA1UdIwQY
MBaAFL+wl6NsIyXRAx/0CRugCoZFnUKIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjdDWG8yd2pKZEVESF9RSkc2QUtoa1dkUW9nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9mMmM1ZTgtOGQzNy00ODM4LWEzM2It
ZWNjNDliZGMyYWQ4LzEvSUZLYXBjRklqM21SVGtuejhRbzFpQzBFUEFNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9mMmM1ZTgtOGQzNy00ODM4LWEzM2ItZWNjNDliZGMyYWQ4
LzEvdjdDWG8yd2pKZEVESF9RSkc2QUtoa1dkUW9nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIICtQYIKwYBBQUHAQcBAf8EggKkMIICoDCCAo0EAgABMIIC
hQMEAj5NwDAMAwQDPk3IAwQEPk3gMAwDBAE+TfIDBAM+TfADBAVPeIADBAFPeKgw
DAMEBE94sAMEA0948AMEAU94+jAMAwQGUQBAAwQBUQBQAwQBUQBYAwQBUQBgMAwD
BAJRAGQDBAJRAGgwDAMEAVEAbgMEAVEAeAMEAVEAfAMEBFFesDAMAwQFUoOgAwQB
UoO0AwQCUoPAAwQAUoPHAwQDUoPQAwQGUo2AAwQCUpCgAwQCUpCoMAwDBAFSkLID
BAJSkLgDBAFSkL4DBARXYUAwDAMEAVm6YgMEAVm6ZAMEAVm6aAMEAVm6dDAMAwQD
W1IIAwQDW1IQMAwDBANbUigDBANbUjADBAFbUjoDBAFbUj4wDAMEA1tSSAMEAVtS
UDAMAwQCW1JUAwQBW1KAMAwDBAJbUpQDBAVbUoADBAFbUq4DBAJbUrgwDAMEBltS
wAMEAVtS0DAMAwQDW1LYAwQCW1LgAwQCW1LsMAwDBAJbUvQDBAFbUvgDBAJbUvww
DAMEA1tTKAMEAltTMDAMAwQDW1M4AwQBW1NcMAwDBAVbU2ADBAFbU2QwDAMEA1tT
aAMEAVtTbDAMAwQBW1N6AwQDW1OAMAwDBAFbU5IDBAFbU5gwDAMEAltTnAMEAltT
sDAMAwQEW1PQAwQCW1P4AwQBW1P+AwQDXn34AwQCuTIcAwQFwUQgAwQFwVtAMAwD
BAHB4sIDBALB4tAwDAMEA8Hi2AMEAcHi4AMEAsHi5DAMAwQBweLqAwQBweLsAwQB
weLyMAsDBAHB4voDAwDB4gMEBcKP4AMEAMKp/QMEBcO4AAMEBdQYoAMEBtRswAME
BtUQQAMEBtWjAAMEA9XFQAMEBtX9wDANBAIAAjAHAwUDIAEaoDANBgkqhkiG9w0B
AQsFAAOCAQEAOGBE0gWnBWf8schOy0MWX/CBMoepbu701m1Er5bqMOtY+adDpWOZ
k+FU1GycmIsBTr21kq/1e901drhy2db52OWBwVz8W5nok3bBMPB7oz8X+NyQBpQH
GJ6GR0stCRdDBgl/j7td2xe5ONrgET7IEPfg3cuXjW6mETHWb2gG4xYjipYCfz+q
tt1V6aFnmWSYyXYurWeAW6/de99TTegXfw/g8wOXgp4faLCdnddfqb6BhWb2kYuP
2NmUmweuvyKb2+ShbrralRfFFFC6l2cDNpCOFn7+JYwnjSi/jfBr1548S+PbTXLv
6tSqHpXIgYe8IC33aBIMLr43MynGLpFy5A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:16 2024 by rpki-client on console-ams.rpki-client.org