Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/YktiI71G1Ll_xXKjEuWtvBU9wz8.roa
File: YktiI71G1Ll_xXKjEuWtvBU9wz8.roa (raw, json)
Hash identifier: BlAEwV7t93qmThZO0pgPYT+t9Nzsv+QYHQownmzOLIU=
Subject key identifier: 62:4B:62:23:BD:46:D4:B9:7F:C5:72:A3:12:E5:AD:BC:15:3D:C3:3F
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018F781580344C15F5E46649857C3E1B757D
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/YktiI71G1Ll_xXKjEuWtvBU9wz8.roa
Signing time: Tue 14 May 2024 17:10:25 +0000
ROA not before: Tue 14 May 2024 17:10:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48031
IP address blocks: 31.216.57.0/24 maxlen: 24
31.216.63.0/24 maxlen: 24
77.87.120.0/24 maxlen: 24
84.246.84.0/24 maxlen: 24
84.246.86.0/24 maxlen: 24
84.246.87.0/24 maxlen: 24
84.246.106.0/24 maxlen: 24
84.246.109.0/24 maxlen: 24
87.236.151.0/24 maxlen: 24
88.151.15.0/24 maxlen: 24
89.107.14.0/24 maxlen: 24
89.107.15.0/24 maxlen: 24
89.248.70.0/24 maxlen: 24
91.190.153.0/24 maxlen: 24
91.246.34.0/24 maxlen: 24
91.246.48.0/24 maxlen: 24
91.246.53.0/24 maxlen: 24
91.247.161.0/24 maxlen: 24
91.247.165.0/24 maxlen: 24
91.247.166.0/24 maxlen: 24
91.247.167.0/24 maxlen: 24
91.247.173.0/24 maxlen: 24
91.247.183.0/24 maxlen: 24
93.157.104.0/24 maxlen: 24
93.157.109.0/24 maxlen: 24
109.94.161.0/24 maxlen: 24
109.94.163.0/24 maxlen: 24
109.107.136.0/24 maxlen: 24
109.107.141.0/24 maxlen: 24
109.107.142.0/24 maxlen: 24
109.107.144.0/24 maxlen: 24
109.107.147.0/24 maxlen: 24
109.107.148.0/24 maxlen: 24
109.205.184.0/24 maxlen: 24
109.205.188.0/24 maxlen: 24
176.97.199.0/24 maxlen: 24
176.97.203.0/24 maxlen: 24
176.97.208.0/24 maxlen: 24
176.97.222.0/24 maxlen: 24
176.97.223.0/24 maxlen: 24
176.116.3.0/24 maxlen: 24
193.160.219.0/24 maxlen: 24
193.163.22.0/24 maxlen: 24
194.26.224.0/24 maxlen: 24
194.105.60.0/24 maxlen: 24
194.107.92.0/24 maxlen: 24
212.52.25.0/24 maxlen: 24
212.52.26.0/24 maxlen: 24
217.198.176.0/24 maxlen: 24
217.198.178.0/24 maxlen: 24
217.198.179.0/24 maxlen: 24
217.198.180.0/24 maxlen: 24
217.198.181.0/24 maxlen: 24
217.198.182.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 23 May 2024 10:30:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:78:15:80:34:4c:15:f5:e4:66:49:85:7c:3e:1b:75:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: May 14 17:10:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=624b6223bd46d4b97fc572a312e5adbc153dc33f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f0:f9:08:87:3c:3a:75:85:8a:d5:3d:71:d7:
28:6c:e1:6b:1d:e9:36:7d:f6:2c:ce:13:6c:ad:28:
1f:01:43:6b:65:18:37:de:93:8c:c6:3e:d8:eb:67:
7e:39:ad:55:38:0f:13:bb:5c:b3:65:15:13:9e:32:
08:0f:1d:60:3c:eb:b4:85:c9:03:03:79:58:17:74:
0f:04:e8:54:3b:40:9f:3c:2f:3e:0c:4e:b1:f8:5d:
0f:86:6e:da:6c:e0:7f:2e:e2:35:cc:7c:cb:c7:cd:
23:5b:17:c2:b1:0b:7c:98:a3:f3:c9:f6:01:45:1c:
0c:c7:d0:a5:6a:00:6e:58:a0:eb:84:6c:7d:ea:a6:
ec:76:08:3f:b9:fb:85:85:ba:ba:4d:1b:1c:82:0d:
61:64:0d:0c:5a:d5:fb:76:49:b4:22:54:fa:0a:30:
f1:62:97:bd:5a:9c:70:d6:26:99:23:e3:30:b7:50:
ce:26:e7:79:4f:6e:f9:fd:d9:76:a1:c7:de:5f:80:
01:92:34:1c:3e:96:b6:44:03:cc:bd:5a:32:37:b6:
1a:01:39:28:41:d1:4b:9d:7f:01:8c:77:e5:d9:a8:
b2:2b:5d:7d:31:37:aa:b0:f2:71:5d:78:06:14:3f:
bc:4c:96:db:4f:1a:c2:e7:4c:49:85:de:19:c6:5e:
d8:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:4B:62:23:BD:46:D4:B9:7F:C5:72:A3:12:E5:AD:BC:15:3D:C3:3F
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/YktiI71G1Ll_xXKjEuWtvBU9wz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.216.57.0/24
31.216.63.0/24
77.87.120.0/24
84.246.84.0/24
84.246.86.0/23
84.246.106.0/24
84.246.109.0/24
87.236.151.0/24
88.151.15.0/24
89.107.14.0/23
89.248.70.0/24
91.190.153.0/24
91.246.34.0/24
91.246.48.0/24
91.246.53.0/24
91.247.161.0/24
91.247.165.0-91.247.167.255
91.247.173.0/24
91.247.183.0/24
93.157.104.0/24
93.157.109.0/24
109.94.161.0/24
109.94.163.0/24
109.107.136.0/24
109.107.141.0-109.107.142.255
109.107.144.0/24
109.107.147.0-109.107.148.255
109.205.184.0/24
109.205.188.0/24
176.97.199.0/24
176.97.203.0/24
176.97.208.0/24
176.97.222.0/23
176.116.3.0/24
193.160.219.0/24
193.163.22.0/24
194.26.224.0/24
194.105.60.0/24
194.107.92.0/24
212.52.25.0-212.52.26.255
217.198.176.0/24
217.198.178.0-217.198.182.255
Signature Algorithm: sha256WithRSAEncryption
40:12:06:10:f4:8d:bf:ef:db:95:5b:aa:08:a7:e2:9e:e2:b6:
68:7d:6d:3a:3b:de:fc:08:3b:69:bb:55:56:98:82:da:2e:c2:
8b:8a:cc:d1:e0:f7:da:75:4a:24:a5:56:c0:a8:06:25:f7:66:
4d:1b:11:1a:b6:98:e4:66:f6:2a:cb:4a:77:a9:3e:e1:d5:b2:
1d:97:c4:d3:3c:1e:ed:c0:6d:4f:9a:3c:ea:e7:4e:b3:23:a8:
ad:e4:cd:b6:01:f7:27:25:1f:5d:43:94:3f:cc:dd:32:cb:d5:
9f:ba:54:b3:04:ba:79:eb:88:24:14:9f:15:d9:fa:66:64:44:
6b:95:9a:53:44:fa:9f:52:7d:25:ef:ab:19:05:e2:40:05:76:
0e:8e:c1:6b:c4:5a:25:08:36:c1:6c:64:06:de:b1:cc:f6:aa:
c0:f5:c0:db:a9:dd:ab:e5:53:67:c2:31:2f:69:d2:a5:ea:9f:
a4:45:1e:6e:f4:27:c1:f6:1b:a1:5a:a8:96:4f:13:9d:16:83:
4b:be:a1:ca:f1:31:cc:69:2a:3f:78:b9:1e:0e:5f:03:59:98:
7a:a7:29:c2:b5:a1:61:c5:21:1b:79:20:be:13:db:5e:33:c2:
50:dc:00:ea:a3:15:5b:8e:d4:4a:d9:9e:0e:cf:57:73:64:6b:
a0:dd:f5:56
-----BEGIN CERTIFICATE-----
MIIGJTCCBQ2gAwIBAgISAY94FYA0TBX15GZJhXw+G3V9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NmJiNDhlOTNlOGEwMDU4YzVjNzJhODFhODc5OTQ1NTMw
N2VlNTYwHhcNMjQwNTE0MTcxMDI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MjRiNjIyM2JkNDZkNGI5N2ZjNTcyYTMxMmU1YWRiYzE1M2RjMzNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm/D5CIc8OnWFitU9cdcobOFrHek2
ffYszhNsrSgfAUNrZRg33pOMxj7Y62d+Oa1VOA8Tu1yzZRUTnjIIDx1gPOu0hckD
A3lYF3QPBOhUO0CfPC8+DE6x+F0Phm7abOB/LuI1zHzLx80jWxfCsQt8mKPzyfYB
RRwMx9ClagBuWKDrhGx96qbsdgg/ufuFhbq6TRscgg1hZA0MWtX7dkm0IlT6CjDx
Ype9Wpxw1iaZI+Mwt1DOJud5T275/dl2ocfeX4ABkjQcPpa2RAPMvVoyN7YaATko
QdFLnX8BjHfl2aiyK119MTeqsPJxXXgGFD+8TJbbTxrC50xJhd4Zxl7YSwIDAQAB
o4IDMTCCAy0wHQYDVR0OBBYEFGJLYiO9RtS5f8VyoxLlrbwVPcM/MB8GA1UdIwQY
MBaAFNdrtI6T6KAFjFxyqBqHmUVTB+5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgt
OGJmYmRkNDVjYjYyLzEvWWt0aUk3MUcxTGxfeFhLakV1V3R2QlU5d3o4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgtOGJmYmRkNDVjYjYy
LzEvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBRQYIKwYBBQUHAQcBAf8EggE0MIIBMDCCASwEAgABMIIB
JAMEAB/YOQMEAB/YPwMEAE1XeAMEAFT2VAMEAVT2VgMEAFT2agMEAFT2bQMEAFfs
lwMEAFiXDwMEAVlrDgMEAFn4RgMEAFu+mQMEAFv2IgMEAFv2MAMEAFv2NQMEAFv3
oTAMAwQAW/elAwQDW/egAwQAW/etAwQAW/e3AwQAXZ1oAwQAXZ1tAwQAbV6hAwQA
bV6jAwQAbWuIMAwDBABta40DBABta44DBABta5AwDAMEAG1rkwMEAG1rlAMEAG3N
uAMEAG3NvAMEALBhxwMEALBhywMEALBh0AMEAbBh3gMEALB0AwMEAMGg2wMEAMGj
FgMEAMIa4AMEAMJpPAMEAMJrXDAMAwQA1DQZAwQA1DQaAwQA2cawMAwDBAHZxrID
BADZxrYwDQYJKoZIhvcNAQELBQADggEBAEASBhD0jb/v25Vbqgin4p7itmh9bTo7
3vwIO2m7VVaYgtouwouKzNHg99p1SiSlVsCoBiX3Zk0bERq2mORm9irLSnepPuHV
sh2XxNM8Hu3AbU+aPOrnTrMjqK3kzbYB9yclH11DlD/M3TLL1Z+6VLMEunnriCQU
nxXZ+mZkRGuVmlNE+p9SfSXvqxkF4kAFdg6OwWvEWiUINsFsZAbescz2qsD1wNup
3avlU2fCMS9p0qXqn6RFHm70J8H2G6FaqJZPE50Wg0u+ocrxMcxpKj94uR4OXwNZ
mHqnKcK1oWHFIRt5IL4T214zwlDcAOqjFVuO1ErZng7PV3Nka6Dd9VY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org