Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/5MdcSUTFgV72F9aYrhK89Vd24Nk.roa
File: 5MdcSUTFgV72F9aYrhK89Vd24Nk.roa (raw, json)
Hash identifier: pvDg3pSVPeIQJa5YkqDw0RoP4kokKoh/BBHrGQYljRw=
Subject key identifier: E4:C7:5C:49:44:C5:81:5E:F6:17:D6:98:AE:12:BC:F5:57:76:E0:D9
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 01856C53CBC73AA4077743C9863B5FB59C57
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/5MdcSUTFgV72F9aYrhK89Vd24Nk.roa
Signing time: Sun 01 Jan 2023 07:55:09 +0000
ROA not before: Sun 01 Jan 2023 07:55:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 185.87.120.0/24 maxlen: 24
185.141.33.0/24 maxlen: 24
185.141.35.0/24 maxlen: 24
185.141.34.0/24 maxlen: 24
193.35.152.0/24 maxlen: 24
193.35.154.0/24 maxlen: 24
193.35.155.0/24 maxlen: 24
193.35.153.0/24 maxlen: 24
185.86.4.0/24 maxlen: 24
185.86.6.0/24 maxlen: 24
185.86.7.0/24 maxlen: 24
185.86.14.0/24 maxlen: 24
185.86.15.0/24 maxlen: 24
185.86.12.0/24 maxlen: 24
185.86.152.0/24 maxlen: 24
185.86.155.0/24 maxlen: 24
185.184.24.0/24 maxlen: 24
185.184.25.0/24 maxlen: 24
185.184.26.0/24 maxlen: 24
185.184.27.0/24 maxlen: 24
91.194.55.0/24 maxlen: 24
193.160.140.0/24 maxlen: 24
193.160.141.0/24 maxlen: 24
193.160.142.0/24 maxlen: 24
193.160.143.0/24 maxlen: 24
185.254.236.0/24 maxlen: 24
185.254.238.0/24 maxlen: 24
185.254.239.0/24 maxlen: 24
185.254.237.0/24 maxlen: 24
193.223.104.0/24 maxlen: 24
193.223.105.0/24 maxlen: 24
185.88.172.0/24 maxlen: 24
185.88.175.0/24 maxlen: 24
193.223.107.0/24 maxlen: 24
193.223.106.0/24 maxlen: 24
185.88.173.0/24 maxlen: 24
185.88.174.0/24 maxlen: 24
185.243.182.0/24 maxlen: 24
185.243.183.0/24 maxlen: 24
185.243.180.0/24 maxlen: 24
185.243.181.0/24 maxlen: 24
185.254.30.0/24 maxlen: 24
185.254.28.0/24 maxlen: 24
185.254.29.0/24 maxlen: 24
185.254.31.0/24 maxlen: 24
185.85.188.0/24 maxlen: 24
185.250.210.0/24 maxlen: 24
194.62.54.0/24 maxlen: 24
194.62.55.0/24 maxlen: 24
194.62.52.0/24 maxlen: 24
194.62.53.0/24 maxlen: 24
93.190.12.0/24 maxlen: 24
93.190.13.0/24 maxlen: 24
160.20.109.0/24 maxlen: 24
160.20.108.0/24 maxlen: 24
109.236.48.0/24 maxlen: 24
109.236.49.0/24 maxlen: 24
109.236.51.0/24 maxlen: 24
109.236.50.0/24 maxlen: 24
185.185.232.0/24 maxlen: 24
185.185.233.0/24 maxlen: 24
185.185.234.0/24 maxlen: 24
185.249.200.0/24 maxlen: 24
185.249.201.0/24 maxlen: 24
185.249.202.0/24 maxlen: 24
185.249.203.0/24 maxlen: 24
185.98.63.0/24 maxlen: 24
185.98.61.0/24 maxlen: 24
185.98.62.0/24 maxlen: 24
2a0b:2780::/29 maxlen: 29
2a05:bf00::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 29 Mar 2023 12:59:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:cb:c7:3a:a4:07:77:43:c9:86:3b:5f:b5:9c:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Jan 1 07:55:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4c75c4944c5815ef617d698ae12bcf55776e0d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:05:5f:65:4c:96:70:53:87:20:9a:2d:c6:6c:
45:66:81:2f:9d:22:0c:37:f0:ba:a9:5e:96:3e:13:
92:eb:f2:7c:61:d0:75:db:f4:ca:ca:0c:ac:66:7a:
a9:f7:79:ef:21:cb:d0:eb:92:0e:6e:4e:3e:b5:6a:
67:b4:9a:e6:5b:e5:6e:93:b3:f9:88:b2:5b:12:d8:
ca:5f:b3:41:de:bf:64:04:c4:56:2e:19:85:29:db:
a5:c7:e7:96:43:2c:e5:8a:c4:08:22:7e:71:bb:d6:
79:80:d1:7c:ad:ba:ca:ca:08:5e:e7:ef:29:99:fc:
8e:66:33:65:25:a5:01:88:08:e4:b2:9b:a2:6d:2d:
db:ad:6d:75:e4:2f:b5:43:83:f8:01:59:e3:45:8e:
7a:00:7c:10:10:fe:65:d6:4f:b9:3a:e4:fd:05:02:
0e:46:a9:37:fb:87:6f:ba:5d:ad:f2:4c:10:97:63:
36:d1:22:95:14:34:c9:f4:10:13:71:2f:e2:34:d1:
54:34:c3:14:59:3e:f5:18:08:4d:97:11:66:cf:93:
98:16:0c:ad:2d:4d:55:2a:07:2b:09:31:56:61:79:
cd:54:bb:08:e4:08:33:48:df:43:e8:10:a4:bd:b6:
5d:e5:a1:0c:bb:2a:ac:40:81:d4:70:b3:db:63:df:
bb:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:C7:5C:49:44:C5:81:5E:F6:17:D6:98:AE:12:BC:F5:57:76:E0:D9
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/5MdcSUTFgV72F9aYrhK89Vd24Nk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.55.0/24
93.190.12.0/23
109.236.48.0/22
160.20.108.0/23
185.85.188.0/24
185.86.4.0/24
185.86.6.0/23
185.86.12.0/24
185.86.14.0/23
185.86.152.0/24
185.86.155.0/24
185.87.120.0/24
185.88.172.0/22
185.98.61.0-185.98.63.255
185.141.33.0-185.141.35.255
185.184.24.0/22
185.185.232.0-185.185.234.255
185.243.180.0/22
185.249.200.0/22
185.250.210.0/24
185.254.28.0/22
185.254.236.0/22
193.35.152.0/22
193.160.140.0/22
193.223.104.0/22
194.62.52.0/22
IPv6:
2a05:bf00::/29
2a0b:2780::/29
Signature Algorithm: sha256WithRSAEncryption
47:98:49:43:65:d3:b5:b0:77:9b:3c:f3:85:de:80:22:25:06:
99:45:1e:38:6d:f9:2e:14:ac:c9:8a:19:f7:da:f7:17:49:f6:
ab:3b:4a:32:f9:24:27:2b:c8:af:39:d3:21:2e:cc:0d:5f:10:
be:b6:44:62:2c:83:e9:c2:95:ff:88:d4:e8:b4:d6:51:de:bc:
d7:d9:c0:01:67:6c:4e:89:69:03:62:69:02:49:56:f2:96:2b:
78:52:9e:4a:15:f2:ed:64:55:a4:d0:66:d8:6c:5c:d1:ff:e6:
94:c8:0e:4a:ad:35:eb:b8:af:ae:4f:ff:e1:9a:e2:ae:8d:f5:
d9:00:a4:86:61:75:52:5b:58:71:c3:a1:9f:df:93:7e:c6:4d:
46:c9:21:4b:b7:23:cf:5e:ae:e0:06:72:0f:ab:fb:18:00:f5:
73:2a:37:a1:1d:1c:b6:6f:d3:d0:94:63:ae:c8:2a:03:aa:40:
6d:e4:51:57:6c:48:9d:03:9e:97:ea:c5:34:f3:00:f0:fb:83:
87:43:bb:3c:71:65:a2:8e:cd:39:a2:f1:f7:2a:83:d7:c9:db:
8c:c8:0a:6b:94:c9:31:e8:03:5a:f8:a0:54:77:8b:66:9a:6f:
5d:7e:72:e6:bd:64:40:a7:de:5e:1f:54:f8:72:80:32:6b:94:
80:6b:fc:01
-----BEGIN CERTIFICATE-----
MIIFxjCCBK6gAwIBAgISAYVsU8vHOqQHd0PJhjtftZxXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2MTZjNDE5NTE1MmVmZmVkYmY3YjNhZmVlMmFhNzJlMTkw
OTBlNGQwHhcNMjMwMTAxMDc1NTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNGM3NWM0OTQ0YzU4MTVlZjYxN2Q2OThhZTEyYmNmNTU3NzZlMGQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtAVfZUyWcFOHIJotxmxFZoEvnSIM
N/C6qV6WPhOS6/J8YdB12/TKygysZnqp93nvIcvQ65IObk4+tWpntJrmW+Vuk7P5
iLJbEtjKX7NB3r9kBMRWLhmFKdulx+eWQyzlisQIIn5xu9Z5gNF8rbrKyghe5+8p
mfyOZjNlJaUBiAjkspuibS3brW115C+1Q4P4AVnjRY56AHwQEP5l1k+5OuT9BQIO
Rqk3+4dvul2t8kwQl2M20SKVFDTJ9BATcS/iNNFUNMMUWT71GAhNlxFmz5OYFgyt
LU1VKgcrCTFWYXnNVLsI5AgzSN9D6BCkvbZd5aEMuyqsQIHUcLPbY9+7+wIDAQAB
o4IC0jCCAs4wHQYDVR0OBBYEFOTHXElExYFe9hfWmK4SvPVXduDZMB8GA1UdIwQY
MBaAFMYWxBlRUu/+2/ezr+4qpy4ZCQ5NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGhiRUdWRlM3XzdiOTdPdjdpcW5MaGtKRGswLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9hZDY1MjEtZDNhOS00YjEzLWJlNjkt
MzlmZGI5ODZmMDU5LzEvNU1kY1NVVEZnVjcyRjlhWXJoSzg5VmQyNE5rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny9hZDY1MjEtZDNhOS00YjEzLWJlNjktMzlmZGI5ODZmMDU5
LzEveGhiRUdWRlM3XzdiOTdPdjdpcW5MaGtKRGswLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHnBggrBgEFBQcBBwEB/wSB1zCB1DCBuwQCAAEwgbQDBABb
wjcDBAFdvgwDBAJt7DADBAGgFGwDBAC5VbwDBAC5VgQDBAG5VgYDBAC5VgwDBAG5
Vg4DBAC5VpgDBAC5VpsDBAC5V3gDBAK5WKwwDAMEALliPQMEBrliADAMAwQAuY0h
AwQCuY0gAwQCubgYMAwDBAO5uegDBAC5ueoDBAK587QDBAK5+cgDBAC5+tIDBAK5
/hwDBAK5/uwDBALBI5gDBALBoIwDBALB32gDBALCPjQwFAQCAAIwDgMFAyoFvwAD
BQMqCyeAMA0GCSqGSIb3DQEBCwUAA4IBAQBHmElDZdO1sHebPPOF3oAiJQaZRR44
bfkuFKzJihn32vcXSfarO0oy+SQnK8ivOdMhLswNXxC+tkRiLIPpwpX/iNTotNZR
3rzX2cABZ2xOiWkDYmkCSVbylit4Up5KFfLtZFWk0GbYbFzR/+aUyA5KrTXruK+u
T//hmuKujfXZAKSGYXVSW1hxw6Gf35N+xk1GySFLtyPPXq7gBnIPq/sYAPVzKjeh
HRy2b9PQlGOuyCoDqkBt5FFXbEidA56X6sU08wDw+4OHQ7s8cWWijs05ovH3KoPX
yduMyAprlMkx6ANa+KBUd4tmmm9dfnLmvWRAp95eH1T4coAya5SAa/wB
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:24 2024 by rpki-client on console-ams.rpki-client.org