Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/ekZKiOsxFtZauGBmHozoYcJF-A0.roa
File: ekZKiOsxFtZauGBmHozoYcJF-A0.roa (raw, json)
Hash identifier: z5+4/GF7+jQDQyQnhqe+ZEfDPFD5TlFhssh8D5pKm+4=
Subject key identifier: 7A:46:4A:88:EB:31:16:D6:5A:B8:60:66:1E:8C:E8:61:C2:45:F8:0D
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 0192DCACFC717CA06780CAF65D2BF6A06A7A
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/ekZKiOsxFtZauGBmHozoYcJF-A0.roa
Signing time: Wed 30 Oct 2024 09:06:17 +0000
ROA not before: Wed 30 Oct 2024 09:06:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8641
IP address blocks: 77.73.24.0/21 maxlen: 21
77.94.160.0/19 maxlen: 19
77.94.175.0/24 maxlen: 24
81.26.144.0/21 maxlen: 21
81.26.144.0/24 maxlen: 24
81.26.152.0/22 maxlen: 22
81.26.154.0/24 maxlen: 24
81.26.155.0/24 maxlen: 24
84.47.128.0/23 maxlen: 23
84.47.131.0/24 maxlen: 24
84.47.134.0/23 maxlen: 23
84.47.135.0/24 maxlen: 24
84.47.136.0/24 maxlen: 24
84.47.140.0/22 maxlen: 22
84.47.143.0/24 maxlen: 24
84.47.144.0/23 maxlen: 23
84.47.147.0/24 maxlen: 24
84.47.150.0/23 maxlen: 32
84.47.152.0/23 maxlen: 23
84.47.156.0/22 maxlen: 22
84.47.160.0/24 maxlen: 24
84.47.161.0/24 maxlen: 24
84.47.162.0/24 maxlen: 24
84.47.163.0/24 maxlen: 24
84.47.164.0/23 maxlen: 23
84.47.168.0/22 maxlen: 22
84.47.172.0/24 maxlen: 24
84.47.174.0/23 maxlen: 23
84.47.176.0/23 maxlen: 23
84.47.176.0/24 maxlen: 24
84.47.177.0/24 maxlen: 24
84.47.178.0/24 maxlen: 24
84.47.181.0/24 maxlen: 24
84.47.182.0/23 maxlen: 23
84.47.186.0/23 maxlen: 23
84.47.190.0/23 maxlen: 23
85.91.96.0/21 maxlen: 21
85.91.112.0/22 maxlen: 22
85.91.118.0/23 maxlen: 23
85.91.120.0/23 maxlen: 23
85.91.122.0/24 maxlen: 24
185.106.107.0/24 maxlen: 24
213.135.64.0/23 maxlen: 23
213.135.67.0/24 maxlen: 24
213.135.69.0/24 maxlen: 24
213.135.70.0/24 maxlen: 24
213.135.72.0/23 maxlen: 23
213.135.77.0/24 maxlen: 24
213.135.79.0/24 maxlen: 24
213.135.80.0/24 maxlen: 24
213.135.82.0/23 maxlen: 23
213.135.84.0/22 maxlen: 22
213.135.88.0/22 maxlen: 22
213.208.160.0/21 maxlen: 21
213.208.168.0/23 maxlen: 23
213.208.170.0/24 maxlen: 24
213.208.172.0/23 maxlen: 23
213.208.174.0/23 maxlen: 23
213.208.176.0/21 maxlen: 21
213.208.184.0/24 maxlen: 24
213.208.186.0/23 maxlen: 23
213.208.188.0/22 maxlen: 22
2a02:bc8::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 01 Nov 2024 13:55:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:dc:ac:fc:71:7c:a0:67:80:ca:f6:5d:2b:f6:a0:6a:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Oct 30 09:06:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7a464a88eb3116d65ab860661e8ce861c245f80d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:19:75:0a:4c:81:eb:fa:05:7b:78:ed:f0:56:
23:4b:e9:18:89:7c:c2:70:a9:50:a7:8f:af:f2:77:
a2:9c:0a:e9:38:30:43:f9:b8:cd:16:2d:70:1b:3e:
11:b9:69:65:35:55:ca:96:40:e6:da:d9:7c:f5:20:
5d:1e:f2:6d:ba:34:9d:0a:81:6b:61:8e:2f:b4:cb:
b0:13:81:40:96:0a:74:ea:99:71:bd:2e:f2:9a:38:
c5:3c:2f:c0:aa:2f:e7:c1:c3:47:44:d6:af:ee:32:
4a:ae:7f:db:92:1f:01:83:97:26:84:5e:81:ff:9c:
dd:a5:d9:53:e4:74:ea:e8:82:d5:5b:0c:3d:0e:3e:
cd:c4:12:18:56:50:94:d8:f6:19:d7:a6:e5:1a:38:
42:97:cd:e4:4b:11:a6:46:f4:c6:a8:6f:da:5e:3a:
5f:bd:e8:96:2a:62:56:15:89:52:5d:67:08:fa:c1:
7a:98:f7:22:32:b0:a3:5a:32:aa:35:b4:8f:e2:e4:
04:55:59:aa:0c:25:29:91:5d:71:2a:61:8b:eb:7f:
a3:e4:d2:43:7b:2e:d2:e4:bc:72:11:e1:f4:ab:65:
b3:f2:6e:b7:45:ca:64:e7:eb:43:77:a5:a5:b8:9f:
1b:33:60:0b:a3:af:12:61:a9:e9:de:bc:50:08:3c:
ab:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:46:4A:88:EB:31:16:D6:5A:B8:60:66:1E:8C:E8:61:C2:45:F8:0D
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/ekZKiOsxFtZauGBmHozoYcJF-A0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.24.0/21
77.94.160.0/19
81.26.144.0-81.26.155.255
84.47.128.0/23
84.47.131.0/24
84.47.134.0-84.47.136.255
84.47.140.0-84.47.145.255
84.47.147.0/24
84.47.150.0-84.47.153.255
84.47.156.0-84.47.165.255
84.47.168.0-84.47.172.255
84.47.174.0-84.47.178.255
84.47.181.0-84.47.183.255
84.47.186.0/23
84.47.190.0/23
85.91.96.0/21
85.91.112.0/22
85.91.118.0-85.91.122.255
185.106.107.0/24
213.135.64.0/23
213.135.67.0/24
213.135.69.0-213.135.70.255
213.135.72.0/23
213.135.77.0/24
213.135.79.0-213.135.80.255
213.135.82.0-213.135.91.255
213.208.160.0-213.208.170.255
213.208.172.0-213.208.184.255
213.208.186.0-213.208.191.255
IPv6:
2a02:bc8::/29
Signature Algorithm: sha256WithRSAEncryption
55:ff:53:b9:f5:5c:88:d8:4e:ff:4c:74:e4:19:ac:08:8a:b6:
6e:da:09:3f:db:05:c2:27:86:66:9e:37:f7:82:53:71:13:c2:
67:22:45:51:aa:d0:3b:f4:4b:bf:b6:23:66:0f:b1:a4:be:31:
62:7d:e2:78:d1:53:e4:c9:71:8b:95:45:2e:90:9b:97:f7:e4:
4d:a3:80:a8:2f:10:68:13:bf:bb:f9:92:6e:ef:2d:4c:f7:d2:
67:72:e1:6b:c6:f4:4e:e0:b9:24:aa:66:eb:c1:2c:be:a1:be:
ef:c1:b1:6f:de:80:70:0c:31:bc:23:5a:19:0b:f6:d4:51:aa:
a1:da:ec:32:8b:47:a7:4f:b6:0f:0a:83:a1:7d:3f:63:8d:6c:
81:ca:6f:89:d4:65:88:82:de:d7:d4:5e:b0:40:97:ff:7f:04:
ac:24:eb:4f:c8:4e:19:ac:cd:35:c1:b3:7a:4b:a5:2d:f8:d1:
1f:c9:f8:7a:20:23:6c:a4:11:ab:9a:f7:96:66:1c:8f:ff:10:
d4:0a:74:dc:62:87:f6:32:2b:80:a4:da:7b:9c:68:a1:41:0c:
a7:68:b7:77:21:7d:50:ed:d7:ec:d6:ed:e2:bb:d2:8d:12:fe:
2d:34:c1:4c:07:af:4c:7b:32:3c:b7:22:c6:eb:15:e8:7b:10:
c7:19:26:56
-----BEGIN CERTIFICATE-----
MIIGNjCCBR6gAwIBAgISAZLcrPxxfKBngMr2XSv2oGp6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhmMzgxODU1NGE1MTgwOGVlZmI4MjllYzc0NjVhMzIyMmYy
NzAxMjMwHhcNMjQxMDMwMDkwNjE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YTQ2NGE4OGViMzExNmQ2NWFiODYwNjYxZThjZTg2MWMyNDVmODBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzBl1CkyB6/oFe3jt8FYjS+kYiXzC
cKlQp4+v8neinArpODBD+bjNFi1wGz4RuWllNVXKlkDm2tl89SBdHvJtujSdCoFr
YY4vtMuwE4FAlgp06plxvS7ymjjFPC/Aqi/nwcNHRNav7jJKrn/bkh8Bg5cmhF6B
/5zdpdlT5HTq6ILVWww9Dj7NxBIYVlCU2PYZ16blGjhCl83kSxGmRvTGqG/aXjpf
veiWKmJWFYlSXWcI+sF6mPciMrCjWjKqNbSP4uQEVVmqDCUpkV1xKmGL63+j5NJD
ey7S5LxyEeH0q2Wz8m63Rcpk5+tDd6WluJ8bM2ALo68SYanp3rxQCDyrRwIDAQAB
o4IDQjCCAz4wHQYDVR0OBBYEFHpGSojrMRbWWrhgZh6M6GHCRfgNMB8GA1UdIwQY
MBaAFI84GFVKUYCO77gp7HRloyIvJwEjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvanpnWVZVcFJnSTd2dUNuc2RHV2pJaThuQVNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni8wOWRiYTQtMWM5My00OWQ2LTg4ODgt
YmZiNGJhMzBlNDVhLzEvZWtaS2lPc3hGdFphdUdCbUhvem9ZY0pGLUEwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni8wOWRiYTQtMWM5My00OWQ2LTg4ODgtYmZiNGJhMzBlNDVh
LzEvanpnWVZVcFJnSTd2dUNuc2RHV2pJaThuQVNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBVgYIKwYBBQUHAQcBAf8EggFFMIIBQTCCAS4EAgABMIIB
JgMEA01JGAMEBU1eoDAMAwQEURqQAwQCURqYAwQBVC+AAwQAVC+DMAwDBAFUL4YD
BABUL4gwDAMEAlQvjAMEAVQvkAMEAFQvkzAMAwQBVC+WAwQBVC+YMAwDBAJUL5wD
BAFUL6QwDAMEA1QvqAMEAFQvrDAMAwQBVC+uAwQAVC+yMAwDBABUL7UDBANUL7AD
BAFUL7oDBAFUL74DBANVW2ADBAJVW3AwDAMEAVVbdgMEAFVbegMEALlqawMEAdWH
QAMEANWHQzAMAwQA1YdFAwQA1YdGAwQB1YdIAwQA1YdNMAwDBADVh08DBADVh1Aw
DAMEAdWHUgMEAtWHWDAMAwQF1dCgAwQA1dCqMAwDBALV0KwDBADV0LgwDAMEAdXQ
ugMEBtXQgDANBAIAAjAHAwUDKgILyDANBgkqhkiG9w0BAQsFAAOCAQEAVf9TufVc
iNhO/0x05BmsCIq2btoJP9sFwieGZp4394JTcRPCZyJFUarQO/RLv7YjZg+xpL4x
Yn3ieNFT5Mlxi5VFLpCbl/fkTaOAqC8QaBO/u/mSbu8tTPfSZ3Lha8b0TuC5JKpm
68EsvqG+78Gxb96AcAwxvCNaGQv21FGqodrsMotHp0+2DwqDoX0/Y41sgcpvidRl
iILe19ResECX/38ErCTrT8hOGazNNcGzekulLfjRH8n4eiAjbKQRq5r3lmYcj/8Q
1Ap03GKH9jIrgKTae5xooUEMp2i3dyF9UO3X7Nbt4rvSjRL+LTTBTAevTHsyPLci
xusV6HsQxxkmVg==
-----END CERTIFICATE-----
Generated at Fri Nov 1 16:06:58 2024 by rpki-client on console-ams.rpki-client.org