Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/Mta0yJYnzhnNulhc-IzrnxhaXLc.roa
File: Mta0yJYnzhnNulhc-IzrnxhaXLc.roa (raw, json)
Hash identifier: m3zawIqMrUL9szIJW+m2XcydKjFja49tjdjzU/i0jiI=
Subject key identifier: 32:D6:B4:C8:96:27:CE:19:CD:BA:58:5C:F8:8C:EB:9F:18:5A:5C:B7
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 018CC86FBF96B9E63EC3DA1435B80BF9A2EC
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/Mta0yJYnzhnNulhc-IzrnxhaXLc.roa
Signing time: Tue 02 Jan 2024 04:30:15 +0000
ROA not before: Tue 02 Jan 2024 04:30:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50835
IP address blocks: 91.193.30.0/23 maxlen: 23
81.161.48.0/22 maxlen: 22
91.246.192.0/22 maxlen: 24
176.113.180.0/22 maxlen: 22
91.246.203.0/24 maxlen: 24
176.110.112.0/23 maxlen: 23
81.161.8.0/22 maxlen: 22
37.97.121.0/24 maxlen: 24
37.97.120.0/24 maxlen: 24
91.232.56.0/23 maxlen: 23
193.36.220.0/22 maxlen: 22
194.33.66.0/23 maxlen: 23
91.232.19.0/24 maxlen: 24
64.43.120.0/22 maxlen: 24
91.233.200.0/24 maxlen: 24
176.115.236.0/22 maxlen: 24
109.207.130.0/24 maxlen: 24
109.207.132.0/24 maxlen: 24
176.96.94.0/24 maxlen: 24
91.200.134.0/23 maxlen: 23
176.121.108.0/23 maxlen: 24
176.121.110.0/23 maxlen: 24
91.238.39.0/24 maxlen: 24
176.116.228.0/24 maxlen: 24
176.116.236.0/24 maxlen: 24
91.239.226.0/24 maxlen: 24
91.224.212.0/24 maxlen: 24
91.232.226.0/24 maxlen: 24
46.173.248.0/22 maxlen: 24
91.236.76.0/24 maxlen: 24
46.173.254.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 16 Apr 2024 08:31:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:bf:96:b9:e6:3e:c3:da:14:35:b8:0b:f9:a2:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Jan 2 04:30:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=32d6b4c89627ce19cdba585cf88ceb9f185a5cb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:0b:89:7a:95:b1:1f:ed:63:28:19:0c:29:11:
7f:71:99:3d:a6:5f:4b:30:72:fa:ef:6e:2c:e0:90:
7c:87:9d:07:24:b2:23:d5:21:73:64:05:7c:ac:90:
85:39:11:78:94:7c:7d:9b:33:52:1a:4f:f3:db:00:
46:56:10:4c:80:f8:99:11:da:96:83:99:37:1a:46:
87:4d:1e:27:e8:3b:a4:e8:cd:3a:96:fc:00:02:85:
a7:e9:73:f4:d1:7d:9e:63:dc:57:ec:11:41:7f:0b:
96:ad:a9:3a:9b:0a:c4:c3:fa:72:49:ab:bc:fc:58:
e8:c1:af:3c:27:bb:07:fb:e2:f1:1b:de:be:e2:b6:
90:10:e1:d7:e3:0a:19:b3:a9:81:b5:5b:2b:75:d9:
15:ee:3c:0d:ab:d7:e8:d6:3b:30:87:57:1f:ce:db:
cd:64:6c:e3:78:9e:98:eb:7a:29:59:57:51:7f:55:
b3:c9:bf:8d:95:a2:25:5c:fd:04:d2:88:4c:a5:f4:
af:53:8a:0b:37:3d:73:80:ff:f9:50:06:50:21:a5:
28:1a:9d:f7:05:04:89:c4:96:d5:de:9e:82:30:a3:
86:88:1e:66:14:b4:b4:03:b2:bf:91:07:d0:22:53:
9f:16:35:04:ec:ab:52:32:04:56:72:5e:c4:2a:ba:
dd:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:D6:B4:C8:96:27:CE:19:CD:BA:58:5C:F8:8C:EB:9F:18:5A:5C:B7
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/Mta0yJYnzhnNulhc-IzrnxhaXLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.97.120.0/23
46.173.248.0/22
46.173.254.0/23
64.43.120.0/22
81.161.8.0/22
81.161.48.0/22
91.193.30.0/23
91.200.134.0/23
91.224.212.0/24
91.232.19.0/24
91.232.56.0/23
91.232.226.0/24
91.233.200.0/24
91.236.76.0/24
91.238.39.0/24
91.239.226.0/24
91.246.192.0/22
91.246.203.0/24
109.207.130.0/24
109.207.132.0/24
176.96.94.0/24
176.110.112.0/23
176.113.180.0/22
176.115.236.0/22
176.116.228.0/24
176.116.236.0/24
176.121.108.0/22
193.36.220.0/22
194.33.66.0/23
Signature Algorithm: sha256WithRSAEncryption
47:f0:a4:69:c4:5e:c1:3d:83:1d:7a:15:16:41:94:2d:34:a0:
64:9c:f5:d0:69:c4:6f:52:bb:42:8f:52:f4:ff:c0:f4:ac:31:
45:74:6f:b4:c2:5a:b0:8b:8c:3e:d3:a1:fa:95:72:a6:3c:ca:
01:aa:f6:d7:cf:af:3f:f8:0b:48:bd:36:c8:d9:1b:2a:d8:91:
89:73:c3:d8:62:0f:91:38:4c:1d:ab:8c:13:11:36:53:f9:4f:
e4:89:35:3f:9c:f2:b0:64:ac:df:ce:24:9d:b5:4b:e1:eb:33:
04:86:e4:72:10:73:f7:12:f7:5a:7b:0a:10:fe:61:a7:73:33:
82:16:bd:9a:b5:a3:67:e5:6e:8e:30:de:e2:5a:da:8f:28:f1:
8b:74:e4:f3:20:d7:4f:a4:fa:0f:28:b2:ed:e0:9d:63:4d:78:
4d:26:ec:7b:ff:15:e4:65:2d:7a:08:bc:48:18:3a:42:f3:8c:
bf:42:64:63:1f:2b:f8:30:2d:03:2a:2b:e1:5d:e8:04:9d:99:
c2:b7:bf:fc:a7:af:eb:0c:50:7d:f2:ab:50:c2:a3:d0:ea:db:
6a:b6:93:65:e2:48:06:67:bc:ab:07:2e:b7:15:ed:10:d2:05:
db:9d:67:69:43:ac:9d:7c:a1:c2:7f:9b:10:38:91:08:4e:a8:
c7:03:dd:dd
-----BEGIN CERTIFICATE-----
MIIFqjCCBJKgAwIBAgISAYzIb7+WueY+w9oUNbgL+aLsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0OWNiYmQ1YzJjZjQxOTVjYzZlYzdmMjFmNjA3NTgxYTAy
MjRkYWEwHhcNMjQwMTAyMDQzMDE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMmQ2YjRjODk2MjdjZTE5Y2RiYTU4NWNmODhjZWI5ZjE4NWE1Y2I3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnQuJepWxH+1jKBkMKRF/cZk9pl9L
MHL6724s4JB8h50HJLIj1SFzZAV8rJCFORF4lHx9mzNSGk/z2wBGVhBMgPiZEdqW
g5k3GkaHTR4n6Duk6M06lvwAAoWn6XP00X2eY9xX7BFBfwuWrak6mwrEw/pySau8
/Fjowa88J7sH++LxG96+4raQEOHX4woZs6mBtVsrddkV7jwNq9fo1jswh1cfztvN
ZGzjeJ6Y63opWVdRf1Wzyb+NlaIlXP0E0ohMpfSvU4oLNz1zgP/5UAZQIaUoGp33
BQSJxJbV3p6CMKOGiB5mFLS0A7K/kQfQIlOfFjUE7KtSMgRWcl7EKrrd5QIDAQAB
o4ICtjCCArIwHQYDVR0OBBYEFDLWtMiWJ84ZzbpYXPiM658YWly3MB8GA1UdIwQY
MBaAFDScu9XCz0GVzG7H8h9gdYGgIk2qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUt
ZGMwNmRkODA1OTYwLzEvTXRhMHlKWW56aG5OdWxoYy1JenJueGhhWExjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUtZGMwNmRkODA1OTYw
LzEvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHLBggrBgEFBQcBBwEB/wSBuzCBuDCBtQQCAAEwga4DBAEl
YXgDBAIurfgDBAEurf4DBAJAK3gDBAJRoQgDBAJRoTADBAFbwR4DBAFbyIYDBABb
4NQDBABb6BMDBAFb6DgDBABb6OIDBABb6cgDBABb7EwDBABb7icDBABb7+IDBAJb
9sADBABb9ssDBABtz4IDBABtz4QDBACwYF4DBAGwbnADBAKwcbQDBAKwc+wDBACw
dOQDBACwdOwDBAKweWwDBALBJNwDBAHCIUIwDQYJKoZIhvcNAQELBQADggEBAEfw
pGnEXsE9gx16FRZBlC00oGSc9dBpxG9Su0KPUvT/wPSsMUV0b7TCWrCLjD7TofqV
cqY8ygGq9tfPrz/4C0i9NsjZGyrYkYlzw9hiD5E4TB2rjBMRNlP5T+SJNT+c8rBk
rN/OJJ21S+HrMwSG5HIQc/cS91p7ChD+YadzM4IWvZq1o2flbo4w3uJa2o8o8Yt0
5PMg10+k+g8osu3gnWNNeE0m7Hv/FeRlLXoIvEgYOkLzjL9CZGMfK/gwLQMqK+Fd
6ASdmcK3v/ynr+sMUH3yq1DCo9Dq22q2k2XiSAZnvKsHLrcV7RDSBdudZ2lDrJ18
ocJ/mxA4kQhOqMcD3d0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:48 2024 by rpki-client on console-ams.rpki-client.org