Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/TxK5YzNYU3nO25OpInykDD3zPeI.roa
File: TxK5YzNYU3nO25OpInykDD3zPeI.roa (raw, json)
Hash identifier: +FggKf2gPNhORCWpHCrjFQUi3B+jkjZc9EugaVyhCq4=
Subject key identifier: 4F:12:B9:63:33:58:53:79:CE:DB:93:A9:22:7C:A4:0C:3D:F3:3D:E2
Certificate issuer: /CN=505127723ea0cfd0724713b291734caa353e20ea
Certificate serial: 018BCA30CAC32DDF838B59FC3BA241BFA536
Authority key identifier: 50:51:27:72:3E:A0:CF:D0:72:47:13:B2:91:73:4C:AA:35:3E:20:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFEncj6gz9ByRxOykXNMqjU-IOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/TxK5YzNYU3nO25OpInykDD3zPeI.roa
Signing time: Mon 13 Nov 2023 19:37:57 +0000
ROA not before: Mon 13 Nov 2023 19:37:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46261
IP address blocks: 185.225.12.0/23 maxlen: 23
185.214.242.0/23 maxlen: 23
185.225.14.0/23 maxlen: 23
185.147.156.0/22 maxlen: 24
195.245.74.0/23 maxlen: 23
185.147.158.0/24 maxlen: 24
79.110.176.0/21 maxlen: 24
79.110.181.0/24 maxlen: 24
160.238.96.0/22 maxlen: 24
185.238.115.0/24 maxlen: 24
121.46.124.0/22 maxlen: 24
185.214.240.0/24 maxlen: 24
185.214.240.0/23 maxlen: 23
103.205.84.0/22 maxlen: 24
185.157.232.0/22 maxlen: 24
185.235.120.0/22 maxlen: 22
185.235.123.0/24 maxlen: 24
185.235.122.0/24 maxlen: 24
85.8.148.0/22 maxlen: 24
185.227.254.0/23 maxlen: 23
185.227.254.0/24 maxlen: 24
185.214.140.0/22 maxlen: 22
185.214.142.0/23 maxlen: 23
193.187.180.0/22 maxlen: 22
185.228.44.0/22 maxlen: 22
103.207.160.0/22 maxlen: 24
103.207.163.0/24 maxlen: 24
185.227.252.0/24 maxlen: 24
185.227.252.0/23 maxlen: 23
103.203.40.0/22 maxlen: 24
193.31.112.0/22 maxlen: 22
193.31.114.0/24 maxlen: 24
185.176.88.0/22 maxlen: 24
185.176.90.0/24 maxlen: 24
185.213.16.0/23 maxlen: 23
185.213.18.0/23 maxlen: 23
59.152.124.0/22 maxlen: 24
91.132.84.0/24 maxlen: 24
91.132.85.0/24 maxlen: 24
91.132.86.0/24 maxlen: 24
91.132.87.0/24 maxlen: 24
195.216.148.0/22 maxlen: 22
185.190.58.0/24 maxlen: 24
185.190.56.0/22 maxlen: 24
193.176.116.0/22 maxlen: 22
217.18.56.0/22 maxlen: 22
61.14.224.0/22 maxlen: 24
193.163.35.0/24 maxlen: 24
185.158.136.0/22 maxlen: 24
194.50.192.0/22 maxlen: 22
185.145.44.0/22 maxlen: 24
185.202.44.0/24 maxlen: 24
185.202.44.0/23 maxlen: 24
185.202.46.0/23 maxlen: 23
185.219.20.0/22 maxlen: 22
185.219.23.0/24 maxlen: 24
185.242.185.0/24 maxlen: 24
185.118.135.0/24 maxlen: 24
185.209.128.0/23 maxlen: 23
185.209.128.0/24 maxlen: 24
185.209.130.0/23 maxlen: 23
185.196.24.0/23 maxlen: 24
185.196.26.0/24 maxlen: 24
185.196.26.0/23 maxlen: 24
85.202.172.0/22 maxlen: 24
85.202.173.0/24 maxlen: 24
185.206.22.0/23 maxlen: 23
185.118.132.0/22 maxlen: 24
185.105.10.0/24 maxlen: 24
185.206.20.0/23 maxlen: 23
185.206.20.0/24 maxlen: 24
2a07:a900::/29 maxlen: 128
2a07:4580::/29 maxlen: 29
2a07:4580:b0d::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 13 Nov 2023 19:40:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ca:30:ca:c3:2d:df:83:8b:59:fc:3b:a2:41:bf:a5:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505127723ea0cfd0724713b291734caa353e20ea
Validity
Not Before: Nov 13 19:37:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f12b96333585379cedb93a9227ca40c3df33de2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:b8:30:b3:19:22:85:c1:bd:3e:dd:b5:8d:9d:
4e:dc:45:07:7c:89:91:ec:3a:10:ba:54:39:08:22:
e2:07:8f:7e:4d:52:40:1a:ec:34:ed:e1:8a:79:cf:
ee:6f:ee:d9:df:d1:13:89:98:74:98:8c:0f:f8:d6:
22:e2:20:43:f8:c9:f6:9a:fc:d4:6f:b3:c7:5a:68:
c0:5a:b4:42:f9:36:dc:50:07:6c:e6:da:a0:64:6b:
5a:96:ee:2c:00:8f:02:54:bf:08:41:fc:8f:b7:42:
e0:36:e2:2c:d6:81:33:2e:c5:b7:3c:be:e9:a9:e2:
15:28:a1:45:11:c5:f6:d2:02:ff:e1:fd:5a:2a:a8:
9b:52:e1:29:77:1c:e9:2b:9a:88:41:a5:c9:18:4f:
62:c7:f1:61:28:41:b3:e5:87:a8:d4:4e:76:5d:f5:
fe:d5:8a:4f:8d:a9:f1:74:b9:59:79:6b:ab:fe:b2:
ce:92:ba:2b:91:5e:79:a6:87:0d:9d:02:02:41:10:
5c:55:7b:3e:db:ed:24:9b:6a:c2:6d:b5:64:93:95:
5c:29:c6:e2:9b:ff:a6:8a:f2:ba:fb:8e:5d:4e:93:
df:7c:53:77:19:99:3f:7d:15:bd:79:5e:0d:f9:46:
74:0c:8c:57:6c:1f:58:d8:91:0c:c4:9a:b3:7e:83:
74:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:12:B9:63:33:58:53:79:CE:DB:93:A9:22:7C:A4:0C:3D:F3:3D:E2
X509v3 Authority Key Identifier:
keyid:50:51:27:72:3E:A0:CF:D0:72:47:13:B2:91:73:4C:AA:35:3E:20:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFEncj6gz9ByRxOykXNMqjU-IOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/TxK5YzNYU3nO25OpInykDD3zPeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/UFEncj6gz9ByRxOykXNMqjU-IOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
59.152.124.0/22
61.14.224.0/22
79.110.176.0/21
85.8.148.0/22
85.202.172.0/22
91.132.84.0/22
103.203.40.0/22
103.205.84.0/22
103.207.160.0/22
121.46.124.0/22
160.238.96.0/22
185.105.10.0/24
185.118.132.0/22
185.145.44.0/22
185.147.156.0/22
185.157.232.0/22
185.158.136.0/22
185.176.88.0/22
185.190.56.0/22
185.196.24.0/22
185.202.44.0/22
185.206.20.0/22
185.209.128.0/22
185.213.16.0/22
185.214.140.0/22
185.214.240.0/22
185.219.20.0/22
185.225.12.0/22
185.227.252.0/22
185.228.44.0/22
185.235.120.0/22
185.238.115.0/24
185.242.185.0/24
193.31.112.0/22
193.163.35.0/24
193.176.116.0/22
193.187.180.0/22
194.50.192.0/22
195.216.148.0/22
195.245.74.0/23
217.18.56.0/22
IPv6:
2a07:4580::/29
2a07:a900::/29
Signature Algorithm: sha256WithRSAEncryption
1b:da:34:15:3a:e9:8a:a4:00:ea:0a:cc:cd:51:25:70:0a:a3:
23:c8:0e:c8:31:f0:99:6f:af:e2:f6:87:1f:16:c6:f4:62:d1:
54:3c:a5:f0:70:89:47:b4:2c:12:31:93:2f:9c:7c:4a:21:10:
3b:d1:a8:d1:5e:47:78:88:99:7b:ff:42:bf:58:4c:d4:60:76:
ee:98:00:36:a2:ee:15:ec:cd:bd:88:29:34:41:46:97:25:46:
aa:e0:23:04:13:6e:df:13:1c:1f:c9:f5:13:f6:2e:64:e5:3d:
6a:44:24:81:e2:2d:04:a1:e9:91:df:9f:59:7f:03:cf:4b:08:
cb:f5:59:6c:eb:eb:ad:7a:e7:70:2c:03:13:82:d0:9f:23:26:
95:78:b4:2b:a7:1d:e2:fa:27:38:be:2a:8f:68:b0:14:e8:6e:
ab:c0:d1:3b:39:22:66:0c:42:5a:4b:5b:81:51:70:9f:45:28:
ac:52:cb:8a:df:35:d4:4b:af:38:bd:f7:a7:4e:36:bd:78:fa:
80:65:c2:d6:a7:d7:c7:c9:ca:2a:44:8c:c0:9c:c0:ec:01:7e:
6f:c3:ce:97:c6:99:76:af:bc:e5:df:30:99:e6:b0:07:14:30:
b5:8a:f1:08:3f:7b:59:c0:d0:01:81:cc:bd:68:90:98:d5:08:
10:c9:90:27
-----BEGIN CERTIFICATE-----
MIIGCzCCBPOgAwIBAgISAYvKMMrDLd+Di1n8O6JBv6U2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwNTEyNzcyM2VhMGNmZDA3MjQ3MTNiMjkxNzM0Y2FhMzUz
ZTIwZWEwHhcNMjMxMTEzMTkzNzU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZjEyYjk2MzMzNTg1Mzc5Y2VkYjkzYTkyMjdjYTQwYzNkZjMzZGUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjbgwsxkihcG9Pt21jZ1O3EUHfImR
7DoQulQ5CCLiB49+TVJAGuw07eGKec/ub+7Z39ETiZh0mIwP+NYi4iBD+Mn2mvzU
b7PHWmjAWrRC+TbcUAds5tqgZGtalu4sAI8CVL8IQfyPt0LgNuIs1oEzLsW3PL7p
qeIVKKFFEcX20gL/4f1aKqibUuEpdxzpK5qIQaXJGE9ix/FhKEGz5Yeo1E52XfX+
1YpPjanxdLlZeWur/rLOkrorkV55pocNnQICQRBcVXs+2+0km2rCbbVkk5VcKcbi
m/+mivK6+45dTpPffFN3GZk/fRW9eV4N+UZ0DIxXbB9Y2JEMxJqzfoN06wIDAQAB
o4IDFzCCAxMwHQYDVR0OBBYEFE8SuWMzWFN5ztuTqSJ8pAw98z3iMB8GA1UdIwQY
MBaAFFBRJ3I+oM/QckcTspFzTKo1PiDqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUZFbmNqNmd6OUJ5UnhPeWtYTk1xalUtSU9vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC9hOTA0MjMtMGI0Yi00OTlmLWJlNjYt
NTU2MDhiNjk0NDU2LzEvVHhLNVl6TllVM25PMjVPcElueWtERDN6UGVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC9hOTA0MjMtMGI0Yi00OTlmLWJlNjYtNTU2MDhiNjk0NDU2
LzEvVUZFbmNqNmd6OUJ5UnhPeWtYTk1xalUtSU9vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBKwYIKwYBBQUHAQcBAf8EggEaMIIBFjCB/QQCAAEwgfYD
BAI7mHwDBAI9DuADBANPbrADBAJVCJQDBAJVyqwDBAJbhFQDBAJnyygDBAJnzVQD
BAJnz6ADBAJ5LnwDBAKg7mADBAC5aQoDBAK5doQDBAK5kSwDBAK5k5wDBAK5negD
BAK5nogDBAK5sFgDBAK5vjgDBAK5xBgDBAK5yiwDBAK5zhQDBAK50YADBAK51RAD
BAK51owDBAK51vADBAK52xQDBAK54QwDBAK54/wDBAK55CwDBAK563gDBAC57nMD
BAC58rkDBALBH3ADBADBoyMDBALBsHQDBALBu7QDBALCMsADBALD2JQDBAHD9UoD
BALZEjgwFAQCAAIwDgMFAyoHRYADBQMqB6kAMA0GCSqGSIb3DQEBCwUAA4IBAQAb
2jQVOumKpADqCszNUSVwCqMjyA7IMfCZb6/i9ocfFsb0YtFUPKXwcIlHtCwSMZMv
nHxKIRA70ajRXkd4iJl7/0K/WEzUYHbumAA2ou4V7M29iCk0QUaXJUaq4CMEE27f
ExwfyfUT9i5k5T1qRCSB4i0EoemR359ZfwPPSwjL9Vls6+uteudwLAMTgtCfIyaV
eLQrpx3i+ic4viqPaLAU6G6rwNE7OSJmDEJaS1uBUXCfRSisUsuK3zXUS684vfen
Tja9ePqAZcLWp9fHycoqRIzAnMDsAX5vw86Xxpl2r7zl3zCZ5rAHFDC1ivEIP3tZ
wNABgcy9aJCY1QgQyZAn
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:41 2024 by rpki-client on console-fra.rpki-client.org