Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/185eb3-2ab2-45b5-aa33-015ea5019520/1/_SRjjwg4hONsa3vJPP2u0Nd6coo.roa
File: _SRjjwg4hONsa3vJPP2u0Nd6coo.roa (raw, json)
Hash identifier: xHNqvEw3zvlq5IRMyIjIA+gdwRaXW9iZJ1IFmSGmJ10=
Subject key identifier: FD:24:63:8F:08:38:84:E3:6C:6B:7B:C9:3C:FD:AE:D0:D7:7A:72:8A
Certificate issuer: /CN=a8e4918fc7fdfb73bba8cf58d4cb5fe449cf83f6
Certificate serial: 0191DBED02C98FC1618E7B293A20E1227094
Authority key identifier: A8:E4:91:8F:C7:FD:FB:73:BB:A8:CF:58:D4:CB:5F:E4:49:CF:83:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qOSRj8f9-3O7qM9Y1Mtf5EnPg_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/185eb3-2ab2-45b5-aa33-015ea5019520/1/_SRjjwg4hONsa3vJPP2u0Nd6coo.roa
Signing time: Tue 10 Sep 2024 12:33:48 +0000
ROA not before: Tue 10 Sep 2024 12:33:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20773
IP address blocks: 37.61.208.0/20 maxlen: 24
37.61.212.0/24 maxlen: 24
37.61.214.0/24 maxlen: 24
37.61.215.0/24 maxlen: 24
37.61.221.0/24 maxlen: 24
37.61.223.0/24 maxlen: 24
78.138.96.0/21 maxlen: 24
78.138.104.0/22 maxlen: 24
78.138.126.0/23 maxlen: 24
85.195.64.0/18 maxlen: 24
85.195.75.0/24 maxlen: 24
85.195.76.0/24 maxlen: 24
85.195.82.0/24 maxlen: 24
85.195.83.0/24 maxlen: 24
85.195.85.0/24 maxlen: 24
85.195.86.0/24 maxlen: 24
85.195.88.0/24 maxlen: 24
85.195.89.0/24 maxlen: 24
85.195.90.0/24 maxlen: 24
85.195.91.0/24 maxlen: 24
85.195.92.0/24 maxlen: 24
85.195.93.0/24 maxlen: 24
85.195.95.0/24 maxlen: 24
85.195.96.0/24 maxlen: 24
85.195.98.0/24 maxlen: 24
85.195.99.0/24 maxlen: 24
85.195.100.0/24 maxlen: 24
85.195.102.0/24 maxlen: 24
85.195.103.0/24 maxlen: 24
85.195.107.0/24 maxlen: 24
85.195.109.0/24 maxlen: 24
85.195.110.0/24 maxlen: 24
85.195.114.0/24 maxlen: 24
85.195.115.0/24 maxlen: 24
85.195.116.0/24 maxlen: 24
85.195.119.0/24 maxlen: 24
85.195.120.0/24 maxlen: 24
85.195.124.0/24 maxlen: 24
85.195.127.0/24 maxlen: 24
87.119.195.0/24 maxlen: 24
87.119.220.0/22 maxlen: 24
92.42.104.0/21 maxlen: 24
92.204.160.0/19 maxlen: 24
92.204.162.0/24 maxlen: 24
92.204.186.0/24 maxlen: 24
92.204.194.0/23 maxlen: 23
92.204.240.0/20 maxlen: 24
92.205.32.0/21 maxlen: 24
92.205.112.0/20 maxlen: 24
92.205.152.0/22 maxlen: 24
134.119.182.0/24 maxlen: 24
134.119.207.0/24 maxlen: 24
146.0.224.0/19 maxlen: 24
146.0.226.0/24 maxlen: 24
146.0.227.0/24 maxlen: 24
146.0.228.0/24 maxlen: 24
146.0.230.0/24 maxlen: 24
146.0.232.0/24 maxlen: 24
146.0.234.0/24 maxlen: 24
146.0.235.0/24 maxlen: 24
146.0.236.0/24 maxlen: 24
146.0.237.0/24 maxlen: 24
146.0.245.0/24 maxlen: 24
146.0.247.0/24 maxlen: 24
146.0.249.0/24 maxlen: 24
146.0.250.0/24 maxlen: 24
146.0.251.0/24 maxlen: 24
146.0.255.0/24 maxlen: 24
151.106.14.0/24 maxlen: 24
151.106.31.0/24 maxlen: 24
151.106.57.0/24 maxlen: 24
185.19.216.0/22 maxlen: 24
185.19.216.0/24 maxlen: 24
185.19.217.0/24 maxlen: 24
185.19.218.0/24 maxlen: 24
185.19.219.0/24 maxlen: 24
185.136.156.0/22 maxlen: 24
185.136.158.0/24 maxlen: 24
185.136.160.0/21 maxlen: 24
185.136.160.0/22 maxlen: 24
185.136.160.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Sep 2024 11:33:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:db:ed:02:c9:8f:c1:61:8e:7b:29:3a:20:e1:22:70:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8e4918fc7fdfb73bba8cf58d4cb5fe449cf83f6
Validity
Not Before: Sep 10 12:33:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd24638f083884e36c6b7bc93cfdaed0d77a728a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:0d:d4:e3:b4:d2:13:bd:73:db:91:47:e4:25:
2f:6a:f2:51:3c:39:43:ac:42:c1:1c:29:e5:ab:16:
80:02:2d:ce:18:a0:b6:45:14:e8:28:56:21:73:c9:
6f:aa:2c:f5:70:8b:7e:be:66:32:ad:0c:26:8b:12:
9d:88:d5:91:4a:f2:c8:58:55:b6:3b:eb:13:e4:3b:
f4:1c:71:67:ed:eb:d0:f9:6c:07:20:e7:ac:08:7e:
2c:5a:18:eb:9e:c6:91:e1:a4:3d:68:10:db:ba:c2:
16:f0:47:9b:cd:2c:7f:9c:b4:75:f4:3b:14:67:17:
a1:62:68:44:e9:55:2b:79:76:17:c4:4c:f0:cc:40:
15:52:45:8d:ca:16:85:05:b7:29:fc:6d:c0:dc:a5:
7e:91:89:60:c6:83:68:da:d4:01:8a:0f:5e:03:e1:
c2:f1:b5:1a:1f:42:86:93:df:de:7c:70:27:8e:eb:
38:a5:f2:46:94:67:59:68:db:e6:fd:f7:e3:11:cb:
76:ab:9b:d3:4f:bb:fb:9c:5e:99:7c:d3:5d:c9:74:
a3:8f:d9:ff:16:56:6d:f2:d9:ad:8c:00:cb:8b:69:
57:1d:78:86:14:98:89:ad:cd:b0:64:50:4d:69:4d:
7b:46:90:e6:15:e7:8f:3f:6a:b1:40:ae:c2:c2:62:
6f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:24:63:8F:08:38:84:E3:6C:6B:7B:C9:3C:FD:AE:D0:D7:7A:72:8A
X509v3 Authority Key Identifier:
keyid:A8:E4:91:8F:C7:FD:FB:73:BB:A8:CF:58:D4:CB:5F:E4:49:CF:83:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qOSRj8f9-3O7qM9Y1Mtf5EnPg_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/185eb3-2ab2-45b5-aa33-015ea5019520/1/_SRjjwg4hONsa3vJPP2u0Nd6coo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/185eb3-2ab2-45b5-aa33-015ea5019520/1/qOSRj8f9-3O7qM9Y1Mtf5EnPg_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.61.208.0/20
78.138.96.0-78.138.107.255
78.138.126.0/23
85.195.64.0/18
87.119.195.0/24
87.119.220.0/22
92.42.104.0/21
92.204.160.0/19
92.204.194.0/23
92.204.240.0/20
92.205.32.0/21
92.205.112.0/20
92.205.152.0/22
134.119.182.0/24
134.119.207.0/24
146.0.224.0/19
151.106.14.0/24
151.106.31.0/24
151.106.57.0/24
185.19.216.0/22
185.136.156.0-185.136.167.255
Signature Algorithm: sha256WithRSAEncryption
16:46:08:ec:7c:00:10:4b:59:de:40:08:63:82:64:41:4c:93:
2e:df:87:be:20:92:74:ff:ea:d4:2a:c6:d1:c6:82:17:7d:7f:
cc:0a:3c:1d:a3:3a:ca:c4:fe:1e:54:ab:3b:c8:47:b5:a9:9f:
bc:25:c8:c3:2c:6f:79:e8:5e:79:ce:76:3f:b0:10:32:c5:53:
9a:31:75:e0:11:aa:3a:0d:e1:c5:10:5e:ea:85:90:09:8c:4a:
46:b9:ee:7d:9c:be:ba:7a:ab:23:20:eb:09:36:7a:03:4f:7a:
b8:02:da:73:b3:0d:3f:8c:7a:90:ba:79:56:29:c6:c4:cc:96:
11:55:e6:ba:03:dc:a5:a1:aa:8d:2f:d5:67:a6:54:92:3e:0d:
4d:b9:06:03:26:94:d6:5c:64:07:99:ac:2f:68:ed:f2:04:49:
49:36:45:ce:c5:05:02:c3:13:b6:46:ab:d0:22:6d:16:1c:0a:
c2:d9:6c:7f:9a:bc:f0:f2:0c:81:49:3b:87:be:a7:6e:eb:4e:
01:fd:95:59:9f:c3:a1:94:71:ee:56:87:d0:68:3b:fd:70:c9:
3c:30:61:42:2c:e0:a5:99:f1:81:ca:3d:06:ed:10:5d:a6:12:
0b:0d:a6:26:0f:57:78:03:38:7f:a8:f1:e5:51:77:4c:0e:77:
83:c6:f1:29
-----BEGIN CERTIFICATE-----
MIIFijCCBHKgAwIBAgISAZHb7QLJj8FhjnspOiDhInCUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE4ZTQ5MThmYzdmZGZiNzNiYmE4Y2Y1OGQ0Y2I1ZmU0NDlj
ZjgzZjYwHhcNMjQwOTEwMTIzMzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZDI0NjM4ZjA4Mzg4NGUzNmM2YjdiYzkzY2ZkYWVkMGQ3N2E3MjhhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmQ3U47TSE71z25FH5CUvavJRPDlD
rELBHCnlqxaAAi3OGKC2RRToKFYhc8lvqiz1cIt+vmYyrQwmixKdiNWRSvLIWFW2
O+sT5Dv0HHFn7evQ+WwHIOesCH4sWhjrnsaR4aQ9aBDbusIW8EebzSx/nLR19DsU
ZxehYmhE6VUreXYXxEzwzEAVUkWNyhaFBbcp/G3A3KV+kYlgxoNo2tQBig9eA+HC
8bUaH0KGk9/efHAnjus4pfJGlGdZaNvm/ffjEct2q5vTT7v7nF6ZfNNdyXSjj9n/
FlZt8tmtjADLi2lXHXiGFJiJrc2wZFBNaU17RpDmFeePP2qxQK7CwmJvkwIDAQAB
o4ICljCCApIwHQYDVR0OBBYEFP0kY48IOITjbGt7yTz9rtDXenKKMB8GA1UdIwQY
MBaAFKjkkY/H/ftzu6jPWNTLX+RJz4P2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcU9TUmo4ZjktM083cU05WTFNdGY1RW5QZ19ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny8xODVlYjMtMmFiMi00NWI1LWFhMzMt
MDE1ZWE1MDE5NTIwLzEvX1NSamp3ZzRoT05zYTN2SlBQMnUwTmQ2Y29vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny8xODVlYjMtMmFiMi00NWI1LWFhMzMtMDE1ZWE1MDE5NTIw
LzEvcU9TUmo4ZjktM083cU05WTFNdGY1RW5QZ19ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGrBggrBgEFBQcBBwEB/wSBmzCBmDCBlQQCAAEwgY4DBAQl
PdAwDAMEBU6KYAMEAk6KaAMEAU6KfgMEBlXDQAMEAFd3wwMEAld33AMEA1wqaAME
BVzMoAMEAVzMwgMEBFzM8AMEA1zNIAMEBFzNcAMEAlzNmAMEAIZ3tgMEAIZ3zwME
BZIA4AMEAJdqDgMEAJdqHwMEAJdqOQMEArkT2DAMAwQCuYicAwQDuYigMA0GCSqG
SIb3DQEBCwUAA4IBAQAWRgjsfAAQS1neQAhjgmRBTJMu34e+IJJ0/+rUKsbRxoIX
fX/MCjwdozrKxP4eVKs7yEe1qZ+8JcjDLG956F55znY/sBAyxVOaMXXgEao6DeHF
EF7qhZAJjEpGue59nL66eqsjIOsJNnoDT3q4Atpzsw0/jHqQunlWKcbEzJYRVea6
A9yloaqNL9VnplSSPg1NuQYDJpTWXGQHmawvaO3yBElJNkXOxQUCwxO2RqvQIm0W
HArC2Wx/mrzw8gyBSTuHvqdu604B/ZVZn8OhlHHuVofQaDv9cMk8MGFCLOClmfGB
yj0G7RBdphILDaYmD1d4Azh/qPHlUXdMDneDxvEp
-----END CERTIFICATE-----
Generated at Fri Sep 13 14:17:53 2024 by rpki-client on console-fra.rpki-client.org