Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/daOwKa4rMNJ5_QV1AqUN1TTbk1Q.roa
File: daOwKa4rMNJ5_QV1AqUN1TTbk1Q.roa (raw, json)
Hash identifier: wYCdC7CWVC5ovAmMm4cOJlIO6XPYGxVR09QAfHgpvq4=
Subject key identifier: 75:A3:B0:29:AE:2B:30:D2:79:FD:05:75:02:A5:0D:D5:34:DB:93:54
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 018D4527C9000A7A0082C86D137EFCF94ABE
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/daOwKa4rMNJ5_QV1AqUN1TTbk1Q.roa
Signing time: Fri 26 Jan 2024 09:44:11 +0000
ROA not before: Fri 26 Jan 2024 09:44:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8641
IP address blocks: 77.94.160.0/19 maxlen: 19
77.94.175.0/24 maxlen: 24
81.26.144.0/21 maxlen: 21
81.26.144.0/24 maxlen: 24
81.26.152.0/22 maxlen: 22
81.26.155.0/24 maxlen: 24
84.47.128.0/23 maxlen: 23
84.47.131.0/24 maxlen: 24
84.47.134.0/23 maxlen: 23
84.47.135.0/24 maxlen: 24
84.47.136.0/24 maxlen: 24
84.47.140.0/22 maxlen: 22
84.47.144.0/23 maxlen: 23
84.47.147.0/24 maxlen: 24
84.47.150.0/23 maxlen: 23
84.47.152.0/23 maxlen: 23
84.47.156.0/22 maxlen: 22
84.47.160.0/24 maxlen: 24
84.47.161.0/24 maxlen: 24
84.47.162.0/24 maxlen: 24
84.47.163.0/24 maxlen: 24
84.47.164.0/23 maxlen: 23
84.47.168.0/22 maxlen: 22
84.47.172.0/24 maxlen: 24
84.47.174.0/23 maxlen: 23
84.47.176.0/23 maxlen: 23
84.47.176.0/24 maxlen: 24
84.47.177.0/24 maxlen: 24
84.47.178.0/24 maxlen: 24
84.47.181.0/24 maxlen: 24
84.47.182.0/23 maxlen: 23
84.47.186.0/23 maxlen: 23
84.47.190.0/23 maxlen: 23
85.91.96.0/21 maxlen: 21
85.91.112.0/22 maxlen: 22
85.91.118.0/23 maxlen: 23
85.91.120.0/23 maxlen: 23
85.91.122.0/24 maxlen: 24
185.106.107.0/24 maxlen: 24
213.135.64.0/23 maxlen: 23
213.135.67.0/24 maxlen: 24
213.135.69.0/24 maxlen: 24
213.135.70.0/24 maxlen: 24
213.135.72.0/23 maxlen: 23
213.135.77.0/24 maxlen: 24
213.135.79.0/24 maxlen: 24
213.135.80.0/24 maxlen: 24
213.135.82.0/23 maxlen: 23
213.135.84.0/22 maxlen: 22
213.135.88.0/22 maxlen: 22
213.208.160.0/21 maxlen: 21
213.208.168.0/23 maxlen: 23
213.208.170.0/24 maxlen: 24
213.208.172.0/23 maxlen: 23
213.208.174.0/23 maxlen: 23
213.208.176.0/21 maxlen: 21
213.208.184.0/24 maxlen: 24
213.208.186.0/23 maxlen: 23
213.208.188.0/22 maxlen: 22
2a02:bc8::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 23 Mar 2024 07:43:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:45:27:c9:00:0a:7a:00:82:c8:6d:13:7e:fc:f9:4a:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Jan 26 09:44:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=75a3b029ae2b30d279fd057502a50dd534db9354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:58:db:4b:94:67:22:d3:ca:37:4f:f6:30:81:
14:b0:25:3d:ff:30:d8:b6:c9:e5:fd:b4:55:92:2d:
cf:37:58:db:ff:7c:54:e3:01:9b:0e:18:16:d5:d6:
6f:f1:7a:04:24:0c:fa:c8:64:fd:fa:18:7b:97:f4:
44:5b:be:eb:e2:cd:42:e4:e9:16:67:d6:96:95:f0:
eb:1d:8d:bf:f1:48:03:72:e5:65:a6:2e:66:65:a6:
29:7f:c7:be:49:ce:8f:68:b4:b5:b5:55:6f:e8:c2:
88:2a:e0:1f:fd:1f:c6:ca:17:27:05:f6:f6:92:d5:
7d:d6:a9:f7:32:0e:ac:33:f9:08:57:cc:04:af:db:
a7:d6:d6:a8:3d:12:82:52:74:f1:f4:b8:44:76:21:
d3:28:58:57:a8:70:80:b6:84:dd:a4:fe:b3:b8:c8:
83:40:3e:32:29:45:0c:ed:ad:fa:21:36:79:e1:1f:
6a:13:05:50:cc:a8:b5:4e:8a:e8:a6:7a:fb:6c:ae:
b1:6d:86:b7:b8:65:1e:55:f4:c4:69:a5:76:f9:3c:
3c:66:2d:75:81:b1:8f:12:1c:8f:88:4e:e1:5a:00:
49:5d:9b:d9:3b:38:97:69:42:0b:b6:79:92:8b:b1:
3a:25:e0:6f:1e:54:56:17:46:79:bc:ba:ff:46:ce:
be:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:A3:B0:29:AE:2B:30:D2:79:FD:05:75:02:A5:0D:D5:34:DB:93:54
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/daOwKa4rMNJ5_QV1AqUN1TTbk1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.94.160.0/19
81.26.144.0-81.26.155.255
84.47.128.0/23
84.47.131.0/24
84.47.134.0-84.47.136.255
84.47.140.0-84.47.145.255
84.47.147.0/24
84.47.150.0-84.47.153.255
84.47.156.0-84.47.165.255
84.47.168.0-84.47.172.255
84.47.174.0-84.47.178.255
84.47.181.0-84.47.183.255
84.47.186.0/23
84.47.190.0/23
85.91.96.0/21
85.91.112.0/22
85.91.118.0-85.91.122.255
185.106.107.0/24
213.135.64.0/23
213.135.67.0/24
213.135.69.0-213.135.70.255
213.135.72.0/23
213.135.77.0/24
213.135.79.0-213.135.80.255
213.135.82.0-213.135.91.255
213.208.160.0-213.208.170.255
213.208.172.0-213.208.184.255
213.208.186.0-213.208.191.255
IPv6:
2a02:bc8::/29
Signature Algorithm: sha256WithRSAEncryption
91:c6:b9:4d:e1:18:6f:49:f1:36:b6:39:d1:ea:42:3d:cf:de:
1a:2a:17:83:b6:95:13:04:0e:b5:c9:9d:65:be:19:66:31:01:
b4:4c:99:84:09:88:0b:9b:68:d2:a4:79:43:14:42:9d:bb:c2:
b4:78:cd:c2:44:20:92:83:d8:8e:25:a5:17:fe:b6:a2:66:54:
d6:38:a4:82:1a:01:fc:e8:c8:7f:5c:ea:87:cd:98:a9:91:25:
ae:41:61:28:2b:2b:24:e0:59:06:1d:54:64:ca:f2:75:eb:85:
92:be:95:87:d1:a5:26:1c:a5:cd:57:e0:61:f4:22:ba:6d:69:
2b:fe:29:b7:d7:8a:09:95:02:d1:94:a1:05:fe:7e:d4:8c:45:
d1:28:4a:b2:be:f7:79:83:bc:a3:a6:38:90:61:18:6b:bb:dc:
fc:fe:bd:a5:91:c9:09:f9:b6:ad:46:f2:f1:44:e6:a7:2b:74:
96:88:ca:44:75:0c:a8:82:0f:5e:77:21:5f:f3:c2:08:1e:4c:
1b:36:39:58:2e:06:e0:6d:ea:5f:33:8e:b2:99:a3:87:fb:d1:
60:7e:bd:da:1a:01:77:76:83:19:f6:ab:82:91:38:30:4b:79:
e5:6c:50:db:72:63:3a:a1:03:ee:bf:70:1d:a6:d9:64:92:31:
a5:38:02:d1
-----BEGIN CERTIFICATE-----
MIIGMDCCBRigAwIBAgISAY1FJ8kACnoAgshtE378+Uq+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhmMzgxODU1NGE1MTgwOGVlZmI4MjllYzc0NjVhMzIyMmYy
NzAxMjMwHhcNMjQwMTI2MDk0NDExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NWEzYjAyOWFlMmIzMGQyNzlmZDA1NzUwMmE1MGRkNTM0ZGI5MzU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgVjbS5RnItPKN0/2MIEUsCU9/zDY
tsnl/bRVki3PN1jb/3xU4wGbDhgW1dZv8XoEJAz6yGT9+hh7l/REW77r4s1C5OkW
Z9aWlfDrHY2/8UgDcuVlpi5mZaYpf8e+Sc6PaLS1tVVv6MKIKuAf/R/GyhcnBfb2
ktV91qn3Mg6sM/kIV8wEr9un1taoPRKCUnTx9LhEdiHTKFhXqHCAtoTdpP6zuMiD
QD4yKUUM7a36ITZ54R9qEwVQzKi1Toropnr7bK6xbYa3uGUeVfTEaaV2+Tw8Zi11
gbGPEhyPiE7hWgBJXZvZOziXaUILtnmSi7E6JeBvHlRWF0Z5vLr/Rs6+6QIDAQAB
o4IDPDCCAzgwHQYDVR0OBBYEFHWjsCmuKzDSef0FdQKlDdU025NUMB8GA1UdIwQY
MBaAFI84GFVKUYCO77gp7HRloyIvJwEjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvanpnWVZVcFJnSTd2dUNuc2RHV2pJaThuQVNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni8wOWRiYTQtMWM5My00OWQ2LTg4ODgt
YmZiNGJhMzBlNDVhLzEvZGFPd0thNHJNTko1X1FWMUFxVU4xVFRiazFRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni8wOWRiYTQtMWM5My00OWQ2LTg4ODgtYmZiNGJhMzBlNDVh
LzEvanpnWVZVcFJnSTd2dUNuc2RHV2pJaThuQVNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBUAYIKwYBBQUHAQcBAf8EggE/MIIBOzCCASgEAgABMIIB
IAMEBU1eoDAMAwQEURqQAwQCURqYAwQBVC+AAwQAVC+DMAwDBAFUL4YDBABUL4gw
DAMEAlQvjAMEAVQvkAMEAFQvkzAMAwQBVC+WAwQBVC+YMAwDBAJUL5wDBAFUL6Qw
DAMEA1QvqAMEAFQvrDAMAwQBVC+uAwQAVC+yMAwDBABUL7UDBANUL7ADBAFUL7oD
BAFUL74DBANVW2ADBAJVW3AwDAMEAVVbdgMEAFVbegMEALlqawMEAdWHQAMEANWH
QzAMAwQA1YdFAwQA1YdGAwQB1YdIAwQA1YdNMAwDBADVh08DBADVh1AwDAMEAdWH
UgMEAtWHWDAMAwQF1dCgAwQA1dCqMAwDBALV0KwDBADV0LgwDAMEAdXQugMEBtXQ
gDANBAIAAjAHAwUDKgILyDANBgkqhkiG9w0BAQsFAAOCAQEAkca5TeEYb0nxNrY5
0epCPc/eGioXg7aVEwQOtcmdZb4ZZjEBtEyZhAmIC5to0qR5QxRCnbvCtHjNwkQg
koPYjiWlF/62omZU1jikghoB/OjIf1zqh82YqZElrkFhKCsrJOBZBh1UZMrydeuF
kr6Vh9GlJhylzVfgYfQium1pK/4pt9eKCZUC0ZShBf5+1IxF0ShKsr73eYO8o6Y4
kGEYa7vc/P69pZHJCfm2rUby8UTmpyt0lojKRHUMqIIPXnchX/PCCB5MGzY5WC4G
4G3qXzOOspmjh/vRYH692hoBd3aDGfargpE4MEt55WxQ23JjOqED7r9wHabZZJIx
pTgC0Q==
-----END CERTIFICATE-----
Generated at Sat Mar 23 09:19:03 2024 by rpki-client on console-ams.rpki-client.org