Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/c976fc-d7d3-4cba-b02e-dbbb35c9e378/1/YXKmPYtLTBhaPkTwc7cy9qBO_P0.roa
File: YXKmPYtLTBhaPkTwc7cy9qBO_P0.roa (raw, json)
Hash identifier: y9VBOsmBG5YCv/yuzIjc4iKvABT3lyw9KutADiK6IVU=
Subject key identifier: 61:72:A6:3D:8B:4B:4C:18:5A:3E:44:F0:73:B7:32:F6:A0:4E:FC:FD
Certificate issuer: /CN=c3e86569b1690c9dff745cbb43805b8582b005ad
Certificate serial: 018876083F763D80125604FBE255961A529F
Authority key identifier: C3:E8:65:69:B1:69:0C:9D:FF:74:5C:BB:43:80:5B:85:82:B0:05:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w-hlabFpDJ3_dFy7Q4BbhYKwBa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/c976fc-d7d3-4cba-b02e-dbbb35c9e378/1/YXKmPYtLTBhaPkTwc7cy9qBO_P0.roa
Signing time: Thu 01 Jun 2023 08:17:11 +0000
ROA not before: Thu 01 Jun 2023 08:17:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47253
IP address blocks: 62.16.64.0/24 maxlen: 24
62.16.64.0/20 maxlen: 20
62.16.65.0/24 maxlen: 24
62.16.67.0/24 maxlen: 24
62.16.66.0/24 maxlen: 24
185.6.58.0/24 maxlen: 24
185.6.57.0/24 maxlen: 24
62.16.79.0/24 maxlen: 24
185.6.56.0/22 maxlen: 24
185.6.56.0/24 maxlen: 24
185.6.59.0/24 maxlen: 24
194.58.242.0/23 maxlen: 23
194.58.244.0/23 maxlen: 23
194.58.247.0/24 maxlen: 24
93.184.1.0/24 maxlen: 24
93.184.0.0/22 maxlen: 22
93.184.0.0/20 maxlen: 20
93.184.0.0/24 maxlen: 24
93.184.3.0/24 maxlen: 24
93.184.2.0/24 maxlen: 24
93.184.4.0/22 maxlen: 22
93.184.4.0/24 maxlen: 24
93.184.11.0/24 maxlen: 24
93.184.5.0/24 maxlen: 24
93.184.6.0/24 maxlen: 24
93.184.8.0/24 maxlen: 24
93.184.7.0/24 maxlen: 24
93.184.8.0/22 maxlen: 22
93.184.10.0/24 maxlen: 24
93.184.9.0/24 maxlen: 24
93.184.12.0/24 maxlen: 24
93.184.13.0/24 maxlen: 24
93.184.12.0/22 maxlen: 22
93.184.15.0/24 maxlen: 24
93.184.14.0/24 maxlen: 24
46.18.17.0/24 maxlen: 24
46.18.16.0/24 maxlen: 24
46.18.16.0/21 maxlen: 21
46.18.18.0/24 maxlen: 24
46.18.19.0/24 maxlen: 24
46.18.21.0/24 maxlen: 24
46.18.20.0/24 maxlen: 24
46.18.23.0/24 maxlen: 24
46.18.22.0/24 maxlen: 24
194.58.72.0/24 maxlen: 24
194.58.73.0/24 maxlen: 24
194.58.72.0/22 maxlen: 22
194.58.75.0/24 maxlen: 24
194.58.74.0/24 maxlen: 24
194.58.76.0/23 maxlen: 23
194.58.220.0/23 maxlen: 23
194.58.240.0/24 maxlen: 24
194.58.152.0/23 maxlen: 23
193.124.248.0/24 maxlen: 24
193.124.248.0/22 maxlen: 22
193.124.250.0/24 maxlen: 24
193.124.249.0/24 maxlen: 24
193.124.251.0/24 maxlen: 24
2a02:26d0::/32 maxlen: 32
2a02:26d0:9::/48 maxlen: 48
2a02:26d0:2::/48 maxlen: 48
2a02:26d0:1::/48 maxlen: 48
2a02:26d0:a::/48 maxlen: 48
2a02:26d0::/48 maxlen: 48
2a02:26d0:4::/48 maxlen: 48
2a02:26d0:10::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:76:08:3f:76:3d:80:12:56:04:fb:e2:55:96:1a:52:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3e86569b1690c9dff745cbb43805b8582b005ad
Validity
Not Before: Jun 1 08:17:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6172a63d8b4b4c185a3e44f073b732f6a04efcfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8e:6a:b7:8a:67:15:05:89:f7:bd:b7:5d:41:
ce:5e:3f:ff:e7:63:52:1b:53:5c:6d:0d:7a:e2:5a:
27:5b:95:06:e3:7b:aa:70:09:d6:64:48:36:51:dd:
37:d8:b7:ca:6e:d9:09:7c:fc:31:42:9d:ee:bd:d0:
e4:bb:a0:7e:ad:d6:fe:b2:eb:7f:e0:70:23:5c:cb:
af:dd:7f:21:53:fd:18:26:1c:4a:2a:bc:4c:f8:27:
86:3c:c6:52:63:d3:8a:0c:ab:e7:d7:f4:54:76:14:
d9:2e:e7:fa:10:6d:a5:b8:35:db:25:91:3e:17:45:
2c:d6:5e:a6:a1:9f:11:10:8f:7d:61:2d:3b:f7:7d:
ab:62:42:62:52:e4:6b:c4:ca:0d:48:e2:cb:d0:98:
7c:a7:d6:da:7d:b9:e6:ab:31:7c:0b:e2:ab:71:63:
77:da:a7:a2:8c:6f:f0:68:cd:ce:96:97:f8:cd:23:
b4:34:f8:23:9b:01:4f:24:9f:87:8e:4c:db:ef:ca:
f5:8d:c5:4b:b9:8e:cd:27:2a:cc:64:5d:c0:a4:29:
48:a4:dc:5b:7e:c9:2c:1d:77:6c:93:98:13:52:29:
76:00:64:a9:1b:54:c5:ca:45:c2:14:82:78:96:61:
d4:75:be:6d:00:98:a6:f7:3c:26:c0:a7:c1:f9:4a:
d1:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:72:A6:3D:8B:4B:4C:18:5A:3E:44:F0:73:B7:32:F6:A0:4E:FC:FD
X509v3 Authority Key Identifier:
keyid:C3:E8:65:69:B1:69:0C:9D:FF:74:5C:BB:43:80:5B:85:82:B0:05:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w-hlabFpDJ3_dFy7Q4BbhYKwBa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c976fc-d7d3-4cba-b02e-dbbb35c9e378/1/YXKmPYtLTBhaPkTwc7cy9qBO_P0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c976fc-d7d3-4cba-b02e-dbbb35c9e378/1/w-hlabFpDJ3_dFy7Q4BbhYKwBa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.18.16.0/21
62.16.64.0/20
93.184.0.0/20
185.6.56.0/22
193.124.248.0/22
194.58.72.0-194.58.77.255
194.58.152.0/23
194.58.220.0/23
194.58.240.0/24
194.58.242.0-194.58.245.255
194.58.247.0/24
IPv6:
2a02:26d0::/32
Signature Algorithm: sha256WithRSAEncryption
0d:8d:ed:58:d6:fb:91:42:f1:39:1a:aa:01:41:3c:b7:87:91:
4b:f3:1a:13:6f:8c:58:75:40:cf:05:79:a1:f2:02:5d:c7:ba:
14:60:e9:bb:fd:1e:b4:4d:9e:c3:ed:f0:ee:87:68:bb:8a:83:
d8:b0:99:bb:bc:50:d0:b7:8c:7b:17:73:be:86:99:7b:52:94:
5c:61:ef:88:8e:e8:09:00:67:69:70:89:73:45:ab:c2:5b:e6:
59:6c:47:e3:1a:a0:31:62:62:89:d8:37:e9:9e:45:db:e0:6d:
2c:55:a0:d6:a7:ae:cf:fc:07:8e:1e:6a:2c:d3:a3:aa:d6:5a:
df:10:83:ca:04:bf:f6:ad:38:e6:61:f7:05:f9:4b:0a:da:cb:
3d:b5:19:c2:f7:19:6e:9a:91:99:03:b1:32:26:be:3d:02:8f:
da:24:95:28:6b:ca:49:3b:ec:41:06:22:1a:3c:7b:ff:6e:e1:
9e:2b:fc:63:61:b6:b1:d2:c8:4c:61:94:48:8f:a7:bb:0c:3f:
a0:11:97:47:a6:14:b8:59:9e:38:34:b1:a7:e5:ea:b7:ff:ad:
66:0c:ea:3b:d9:50:7b:0e:95:52:38:5f:77:33:34:8e:30:87:
c4:fb:2e:a1:18:c6:5a:07:2b:5b:45:cd:d6:ef:33:28:a0:01:
6a:67:7e:e1
-----BEGIN CERTIFICATE-----
MIIFWDCCBECgAwIBAgISAYh2CD92PYASVgT74lWWGlKfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzZTg2NTY5YjE2OTBjOWRmZjc0NWNiYjQzODA1Yjg1ODJi
MDA1YWQwHhcNMjMwNjAxMDgxNzExWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MTcyYTYzZDhiNGI0YzE4NWEzZTQ0ZjA3M2I3MzJmNmEwNGVmY2ZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo45qt4pnFQWJ9723XUHOXj//52NS
G1NcbQ164lonW5UG43uqcAnWZEg2Ud032LfKbtkJfPwxQp3uvdDku6B+rdb+sut/
4HAjXMuv3X8hU/0YJhxKKrxM+CeGPMZSY9OKDKvn1/RUdhTZLuf6EG2luDXbJZE+
F0Us1l6moZ8REI99YS07932rYkJiUuRrxMoNSOLL0Jh8p9bafbnmqzF8C+KrcWN3
2qeijG/waM3Olpf4zSO0NPgjmwFPJJ+Hjkzb78r1jcVLuY7NJyrMZF3ApClIpNxb
fsksHXdsk5gTUil2AGSpG1TFykXCFIJ4lmHUdb5tAJim9zwmwKfB+UrRrwIDAQAB
o4ICZDCCAmAwHQYDVR0OBBYEFGFypj2LS0wYWj5E8HO3MvagTvz9MB8GA1UdIwQY
MBaAFMPoZWmxaQyd/3Rcu0OAW4WCsAWtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdy1obGFiRnBESjNfZEZ5N1E0QmJoWUt3QmEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS9jOTc2ZmMtZDdkMy00Y2JhLWIwMmUt
ZGJiYjM1YzllMzc4LzEvWVhLbVBZdExUQmhhUGtUd2M3Y3k5cUJPX1AwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OS9jOTc2ZmMtZDdkMy00Y2JhLWIwMmUtZGJiYjM1YzllMzc4
LzEvdy1obGFiRnBESjNfZEZ5N1E0QmJoWUt3QmEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHoGCCsGAQUFBwEHAQH/BGswaTBYBAIAATBSAwQDLhIQAwQE
PhBAAwQEXbgAAwQCuQY4AwQCwXz4MAwDBAPCOkgDBAHCOkwDBAHCOpgDBAHCOtwD
BADCOvAwDAMEAcI68gMEAcI69AMEAMI69zANBAIAAjAHAwUAKgIm0DANBgkqhkiG
9w0BAQsFAAOCAQEADY3tWNb7kULxORqqAUE8t4eRS/MaE2+MWHVAzwV5ofICXce6
FGDpu/0etE2ew+3w7odou4qD2LCZu7xQ0LeMexdzvoaZe1KUXGHviI7oCQBnaXCJ
c0WrwlvmWWxH4xqgMWJiidg36Z5F2+BtLFWg1qeuz/wHjh5qLNOjqtZa3xCDygS/
9q045mH3BflLCtrLPbUZwvcZbpqRmQOxMia+PQKP2iSVKGvKSTvsQQYiGjx7/27h
niv8Y2G2sdLITGGUSI+nuww/oBGXR6YUuFmeODSxp+Xqt/+tZgzqO9lQew6VUjhf
dzM0jjCHxPsuoRjGWgcrW0XN1u8zKKABamd+4Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:47 2024 by rpki-client on console-ams.rpki-client.org