Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/59a43f-881a-48ed-9c3e-82c085a92777/1/Zkv7-cyHcEP0fc5BW6d4sELXrnQ.roa
File: Zkv7-cyHcEP0fc5BW6d4sELXrnQ.roa (raw, json)
Hash identifier: B5bo5rXduB5blkUheWn1kYDNJvoiuvasGjrUvD2DhLw=
Subject key identifier: 66:4B:FB:F9:CC:87:70:43:F4:7D:CE:41:5B:A7:78:B0:42:D7:AE:74
Certificate issuer: /CN=1a6a1413cc8965ee92416b6059f90b18778c8b38
Certificate serial: 0192003F1BD8D9B54211599F4F1C21A6ADEC
Authority key identifier: 1A:6A:14:13:CC:89:65:EE:92:41:6B:60:59:F9:0B:18:77:8C:8B:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GmoUE8yJZe6SQWtgWfkLGHeMizg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/59a43f-881a-48ed-9c3e-82c085a92777/1/Zkv7-cyHcEP0fc5BW6d4sELXrnQ.roa
Signing time: Tue 17 Sep 2024 13:49:48 +0000
ROA not before: Tue 17 Sep 2024 13:49:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5385
IP address blocks: 80.75.224.0/20 maxlen: 20
194.183.128.0/19 maxlen: 19
194.183.128.0/24 maxlen: 24
194.183.129.0/24 maxlen: 24
194.183.130.0/24 maxlen: 24
194.183.131.0/24 maxlen: 24
194.183.132.0/24 maxlen: 24
194.183.133.0/24 maxlen: 24
194.183.134.0/24 maxlen: 24
194.183.135.0/24 maxlen: 24
194.183.136.0/24 maxlen: 24
194.183.137.0/24 maxlen: 24
194.183.138.0/24 maxlen: 24
194.183.139.0/24 maxlen: 24
194.183.140.0/24 maxlen: 24
194.183.141.0/24 maxlen: 24
194.183.142.0/24 maxlen: 24
194.183.143.0/24 maxlen: 24
194.183.144.0/24 maxlen: 24
194.183.145.0/24 maxlen: 24
194.183.146.0/24 maxlen: 24
194.183.147.0/24 maxlen: 24
194.183.148.0/24 maxlen: 24
194.183.149.0/24 maxlen: 24
194.183.150.0/24 maxlen: 24
194.183.151.0/24 maxlen: 24
194.183.152.0/24 maxlen: 24
194.183.153.0/24 maxlen: 24
194.183.154.0/24 maxlen: 24
194.183.155.0/24 maxlen: 24
194.183.156.0/24 maxlen: 24
194.183.157.0/24 maxlen: 24
194.183.158.0/24 maxlen: 24
194.183.159.0/24 maxlen: 24
194.208.0.0/17 maxlen: 17
194.208.0.0/23 maxlen: 23
194.208.1.0/24 maxlen: 24
194.208.7.0/24 maxlen: 24
194.208.10.0/24 maxlen: 24
194.208.11.0/24 maxlen: 24
194.208.12.0/24 maxlen: 24
194.208.13.0/24 maxlen: 24
194.208.15.0/24 maxlen: 24
194.208.17.0/24 maxlen: 24
194.208.18.0/24 maxlen: 24
194.208.23.0/24 maxlen: 24
194.208.25.0/24 maxlen: 24
194.208.40.0/24 maxlen: 24
194.208.41.0/24 maxlen: 24
194.208.42.0/24 maxlen: 24
194.208.43.0/24 maxlen: 24
194.208.45.0/24 maxlen: 24
194.208.46.0/24 maxlen: 24
194.208.49.0/24 maxlen: 24
194.208.51.0/24 maxlen: 24
194.208.52.0/24 maxlen: 24
194.208.55.0/24 maxlen: 24
194.208.56.0/24 maxlen: 24
194.208.57.0/24 maxlen: 24
194.208.59.0/24 maxlen: 24
194.208.60.0/24 maxlen: 24
194.208.61.0/24 maxlen: 24
194.208.62.0/24 maxlen: 24
194.208.63.0/24 maxlen: 24
194.208.64.0/24 maxlen: 24
194.208.68.0/24 maxlen: 24
194.208.72.0/24 maxlen: 24
194.208.74.0/24 maxlen: 24
194.208.76.0/24 maxlen: 24
194.208.77.0/24 maxlen: 24
194.208.78.0/24 maxlen: 24
194.208.79.0/24 maxlen: 24
194.208.80.0/24 maxlen: 24
194.208.81.0/24 maxlen: 24
194.208.82.0/24 maxlen: 24
194.208.83.0/24 maxlen: 24
194.208.89.0/24 maxlen: 24
194.208.92.0/24 maxlen: 24
194.208.93.0/24 maxlen: 24
194.208.94.0/24 maxlen: 24
194.208.96.0/23 maxlen: 23
194.208.102.0/24 maxlen: 24
194.208.104.0/24 maxlen: 24
194.208.105.0/24 maxlen: 24
194.208.107.0/24 maxlen: 24
194.208.108.0/24 maxlen: 24
194.208.116.0/22 maxlen: 22
194.208.116.0/24 maxlen: 24
194.208.117.0/24 maxlen: 24
194.208.119.0/24 maxlen: 24
194.208.120.0/24 maxlen: 24
194.208.121.0/24 maxlen: 24
194.208.123.0/24 maxlen: 24
194.208.127.0/24 maxlen: 24
194.208.160.0/20 maxlen: 20
194.208.184.0/21 maxlen: 21
194.208.185.0/24 maxlen: 24
194.208.186.0/24 maxlen: 24
194.208.187.0/24 maxlen: 24
194.208.192.0/18 maxlen: 18
194.208.207.0/24 maxlen: 24
194.208.243.0/24 maxlen: 24
194.208.245.0/24 maxlen: 24
194.208.247.0/24 maxlen: 24
194.208.251.0/24 maxlen: 24
2001:af8::/32 maxlen: 32
2001:af8:3::/48 maxlen: 48
2001:af8:6106::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 19 Sep 2024 11:37:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:00:3f:1b:d8:d9:b5:42:11:59:9f:4f:1c:21:a6:ad:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a6a1413cc8965ee92416b6059f90b18778c8b38
Validity
Not Before: Sep 17 13:49:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=664bfbf9cc877043f47dce415ba778b042d7ae74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:37:4b:3d:73:61:28:e0:3b:e4:ce:1e:5a:27:
1d:a8:77:03:d0:a7:66:b6:84:1a:88:6d:6a:60:b4:
c0:5d:96:7e:df:be:4b:1f:6e:0a:d9:10:be:3c:b3:
be:22:b6:a0:84:a3:af:59:24:ab:5c:f2:52:70:07:
33:f1:6f:e2:56:55:c1:b9:3f:fe:ae:76:2b:01:95:
db:b7:93:ae:31:e7:ad:12:39:93:31:bb:8a:f8:13:
c9:e1:80:c8:13:1a:31:12:bc:f7:ae:a5:18:07:59:
b2:d5:ee:03:b8:f0:d9:83:14:90:83:b9:6b:88:99:
67:5c:78:33:53:ae:6d:6c:f2:0d:df:99:98:22:65:
94:c5:74:a0:b7:eb:ef:61:8a:8a:db:7d:d9:86:51:
59:e8:d2:a0:86:61:5b:98:fb:1d:72:21:82:59:09:
d5:12:5e:89:b5:1a:a8:36:f9:fc:1c:ca:8b:2e:11:
36:cd:32:40:07:98:7b:12:00:39:80:8e:af:54:6f:
51:17:f5:f5:d6:05:9e:b4:8c:d1:b9:1a:c1:08:55:
f2:eb:33:ae:05:55:54:84:f3:06:cb:fb:cd:5d:1c:
dc:4c:4d:56:f9:59:8e:11:49:db:a8:8b:eb:d1:2b:
80:16:be:1f:94:6f:d2:38:96:b8:92:30:99:d7:d2:
2f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:4B:FB:F9:CC:87:70:43:F4:7D:CE:41:5B:A7:78:B0:42:D7:AE:74
X509v3 Authority Key Identifier:
keyid:1A:6A:14:13:CC:89:65:EE:92:41:6B:60:59:F9:0B:18:77:8C:8B:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GmoUE8yJZe6SQWtgWfkLGHeMizg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/59a43f-881a-48ed-9c3e-82c085a92777/1/Zkv7-cyHcEP0fc5BW6d4sELXrnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/59a43f-881a-48ed-9c3e-82c085a92777/1/GmoUE8yJZe6SQWtgWfkLGHeMizg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.75.224.0/20
194.183.128.0/19
194.208.0.0/17
194.208.160.0/20
194.208.184.0-194.208.255.255
IPv6:
2001:af8::/32
Signature Algorithm: sha256WithRSAEncryption
12:97:4e:a6:2d:f9:ea:0f:bf:1e:63:60:88:dd:96:63:a8:4c:
29:99:c7:29:9d:44:85:cb:c4:fd:b3:93:bb:03:b1:2a:46:f7:
da:91:7a:7a:b7:7d:d1:08:4a:23:cc:d0:54:6a:da:99:7d:13:
5d:e2:25:ac:17:f5:45:9d:8d:72:f5:38:69:8b:9a:6d:80:8b:
04:98:ff:25:18:f8:d6:b5:70:5e:8a:64:95:e7:c9:73:90:76:
41:43:c9:86:69:3b:65:fd:7b:2c:0c:0f:a2:93:2d:cc:06:cb:
e6:76:73:4d:80:51:fb:64:d8:9f:ae:39:85:bb:70:f2:d6:ef:
de:bf:73:9b:c4:3e:bb:3a:e3:56:0c:52:7d:e8:b8:73:d0:1b:
56:fe:0a:01:ad:a3:15:b0:4c:36:02:74:09:d6:e8:77:32:7f:
95:45:72:e5:f3:d9:b1:21:80:ea:7f:70:74:af:f9:d2:ad:26:
d0:d6:ac:b8:75:54:d9:24:1f:67:aa:89:47:ed:cb:ef:7e:fb:
fc:e4:9e:71:b5:b5:d0:a7:33:e3:50:fc:46:0d:38:51:8a:2b:
8f:21:68:3d:df:d2:21:22:9e:2d:e0:2a:5e:e1:4c:f3:2d:5d:
9d:7f:60:52:75:0a:c0:e0:8c:47:77:5c:64:9a:3a:70:70:e8:
81:39:a9:04
-----BEGIN CERTIFICATE-----
MIIFKzCCBBOgAwIBAgISAZIAPxvY2bVCEVmfTxwhpq3sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhNmExNDEzY2M4OTY1ZWU5MjQxNmI2MDU5ZjkwYjE4Nzc4
YzhiMzgwHhcNMjQwOTE3MTM0OTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NjRiZmJmOWNjODc3MDQzZjQ3ZGNlNDE1YmE3NzhiMDQyZDdhZTc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqDdLPXNhKOA75M4eWicdqHcD0Kdm
toQaiG1qYLTAXZZ+375LH24K2RC+PLO+IraghKOvWSSrXPJScAcz8W/iVlXBuT/+
rnYrAZXbt5OuMeetEjmTMbuK+BPJ4YDIExoxErz3rqUYB1my1e4DuPDZgxSQg7lr
iJlnXHgzU65tbPIN35mYImWUxXSgt+vvYYqK233ZhlFZ6NKghmFbmPsdciGCWQnV
El6JtRqoNvn8HMqLLhE2zTJAB5h7EgA5gI6vVG9RF/X11gWetIzRuRrBCFXy6zOu
BVVUhPMGy/vNXRzcTE1W+VmOEUnbqIvr0SuAFr4flG/SOJa4kjCZ19Iv9wIDAQAB
o4ICNzCCAjMwHQYDVR0OBBYEFGZL+/nMh3BD9H3OQVuneLBC1650MB8GA1UdIwQY
MBaAFBpqFBPMiWXukkFrYFn5Cxh3jIs4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR21vVUU4eUpaZTZTUVd0Z1dma0xHSGVNaXpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC81OWE0M2YtODgxYS00OGVkLTljM2Ut
ODJjMDg1YTkyNzc3LzEvWmt2Ny1jeUhjRVAwZmM1Qlc2ZDRzRUxYcm5RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC81OWE0M2YtODgxYS00OGVkLTljM2UtODJjMDg1YTkyNzc3
LzEvR21vVUU4eUpaZTZTUVd0Z1dma0xHSGVNaXpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME0GCCsGAQUFBwEHAQH/BD4wPDArBAIAATAlAwQEUEvgAwQF
wreAAwQHwtAAAwQEwtCgMAsDBAPC0LgDAwDC0DANBAIAAjAHAwUAIAEK+DANBgkq
hkiG9w0BAQsFAAOCAQEAEpdOpi356g+/HmNgiN2WY6hMKZnHKZ1EhcvE/bOTuwOx
Kkb32pF6erd90QhKI8zQVGramX0TXeIlrBf1RZ2NcvU4aYuabYCLBJj/JRj41rVw
XopklefJc5B2QUPJhmk7Zf17LAwPopMtzAbL5nZzTYBR+2TYn645hbtw8tbv3r9z
m8Q+uzrjVgxSfei4c9AbVv4KAa2jFbBMNgJ0CdbodzJ/lUVy5fPZsSGA6n9wdK/5
0q0m0NasuHVU2SQfZ6qJR+3L7377/OSecbW10Kcz41D8Rg04UYorjyFoPd/SISKe
LeAqXuFM8y1dnX9gUnUKwOCMR3dcZJo6cHDogTmpBA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:39 2025 by rpki-client