Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/Cp0LdY2-pc_vgJ98ZPKCdL9EVlA.roa
File: Cp0LdY2-pc_vgJ98ZPKCdL9EVlA.roa (raw, json)
Hash identifier: zDBEGwgQewDr/S+ErA6i4ZJFC+0ikengkHcmwHgAW3U=
Subject key identifier: 0A:9D:0B:75:8D:BE:A5:CF:EF:80:9F:7C:64:F2:82:74:BF:44:56:50
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 01894588AA5D6DD0A078DA2FEF13DA251FA9
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/Cp0LdY2-pc_vgJ98ZPKCdL9EVlA.roa
Signing time: Tue 11 Jul 2023 15:18:51 +0000
ROA not before: Tue 11 Jul 2023 15:18:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 185.231.205.0/24 maxlen: 24
185.231.204.0/24 maxlen: 24
185.231.206.0/24 maxlen: 24
185.231.207.0/24 maxlen: 24
45.84.0.0/24 maxlen: 24
193.43.147.0/24 maxlen: 24
193.43.146.0/24 maxlen: 24
45.84.1.0/24 maxlen: 24
45.67.35.0/24 maxlen: 24
45.67.34.0/24 maxlen: 24
45.93.8.0/24 maxlen: 24
45.93.11.0/24 maxlen: 24
45.93.10.0/24 maxlen: 24
45.93.9.0/24 maxlen: 24
45.8.145.0/24 maxlen: 24
45.8.144.0/24 maxlen: 24
45.8.147.0/24 maxlen: 24
45.8.146.0/24 maxlen: 24
193.46.57.0/24 maxlen: 24
193.46.56.0/24 maxlen: 24
194.116.172.0/24 maxlen: 24
194.116.173.0/24 maxlen: 24
194.116.191.0/24 maxlen: 24
194.116.190.0/24 maxlen: 24
141.98.170.0/24 maxlen: 24
141.98.169.0/24 maxlen: 24
141.98.168.0/24 maxlen: 24
188.119.122.0/24 maxlen: 24
188.119.121.0/24 maxlen: 24
188.119.125.0/24 maxlen: 24
188.119.124.0/24 maxlen: 24
188.119.123.0/24 maxlen: 24
45.89.55.0/24 maxlen: 24
45.89.54.0/24 maxlen: 24
45.89.52.0/24 maxlen: 24
45.159.250.0/24 maxlen: 24
45.159.249.0/24 maxlen: 24
45.159.248.0/24 maxlen: 24
45.159.251.0/24 maxlen: 24
5.182.37.0/24 maxlen: 24
5.182.36.0/24 maxlen: 24
5.182.38.0/24 maxlen: 24
5.182.39.0/24 maxlen: 24
193.57.138.0/24 maxlen: 24
193.57.137.0/24 maxlen: 24
193.57.136.0/24 maxlen: 24
193.57.139.0/24 maxlen: 24
93.185.166.0/24 maxlen: 24
45.87.152.0/24 maxlen: 24
45.87.153.0/24 maxlen: 24
45.87.155.0/24 maxlen: 24
45.87.154.0/24 maxlen: 24
194.4.48.0/24 maxlen: 24
194.4.51.0/24 maxlen: 24
194.4.50.0/24 maxlen: 24
194.4.49.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:45:88:aa:5d:6d:d0:a0:78:da:2f:ef:13:da:25:1f:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Jul 11 15:18:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a9d0b758dbea5cfef809f7c64f28274bf445650
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:95:fd:c1:f5:a6:ff:cc:96:74:1e:98:fc:b4:
a1:9c:14:fc:df:4a:80:85:c5:eb:aa:ce:1c:f6:db:
b0:00:41:6f:c2:63:72:d8:0d:f0:16:85:29:3a:35:
7b:f3:05:82:9c:35:c5:65:d5:13:1f:b3:da:18:d4:
15:4d:dc:44:52:ad:a3:85:62:6f:bc:e4:52:60:d7:
d6:d2:c2:d0:f0:31:25:70:a5:f6:47:4a:e8:ab:f9:
7c:79:a2:dc:34:3a:fc:29:cd:10:b2:11:b1:4a:3c:
a0:27:75:f3:64:28:64:70:30:f3:e5:d6:c7:58:3b:
51:65:79:16:fd:19:d6:60:1e:8e:ba:ea:f7:c4:70:
9d:d8:03:ef:ca:0b:30:0f:1d:d9:14:33:8b:21:f7:
a6:c1:a0:e2:c2:f9:22:66:43:7f:c4:ca:36:37:8c:
73:1b:32:30:ac:19:33:e4:85:dc:07:f3:89:59:9d:
be:ee:72:95:dc:ba:3d:09:3b:53:4e:74:0d:46:4c:
f0:60:1a:bd:5b:a4:7d:75:f1:5c:d9:e0:c7:26:43:
d5:4c:02:02:8c:81:fd:86:84:45:ee:64:19:9e:b6:
be:aa:ae:4a:7f:60:2d:f8:2f:27:0d:17:30:62:c3:
f2:b4:4c:43:20:c8:21:00:87:9d:12:c8:37:c3:a1:
05:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:9D:0B:75:8D:BE:A5:CF:EF:80:9F:7C:64:F2:82:74:BF:44:56:50
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/Cp0LdY2-pc_vgJ98ZPKCdL9EVlA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.36.0/22
45.8.144.0/22
45.67.34.0/23
45.84.0.0/23
45.87.152.0/22
45.89.52.0/24
45.89.54.0/23
45.93.8.0/22
45.159.248.0/22
93.185.166.0/24
141.98.168.0-141.98.170.255
185.231.204.0/22
188.119.121.0-188.119.125.255
193.43.146.0/23
193.46.56.0/23
193.57.136.0/22
194.4.48.0/22
194.116.172.0/23
194.116.190.0/23
Signature Algorithm: sha256WithRSAEncryption
70:eb:f1:33:f9:d1:40:5e:1d:ec:44:d2:d3:78:87:ba:83:f0:
08:8f:a9:d4:2b:79:a8:02:e3:20:f2:67:7c:87:03:96:55:be:
b6:45:07:a6:f2:f9:73:b6:b0:42:5a:5e:4d:bd:d0:a9:c0:a5:
3f:b8:b8:12:7e:67:0d:96:4f:5e:7a:31:3a:f8:4b:22:e5:d9:
81:b6:06:2c:c0:1b:b6:0e:0e:9a:70:fc:20:16:a9:5f:80:9a:
15:63:28:ae:49:6b:fa:ad:22:62:ae:af:be:96:42:b4:4c:b9:
e0:a5:76:30:7a:b6:92:3d:eb:e6:72:fb:a5:b3:7c:a1:b8:2b:
ce:79:ee:f1:cd:c3:5c:e9:1d:a6:ac:81:b0:1f:54:95:0f:04:
ba:ee:19:81:f6:b9:9f:67:2a:51:c2:d2:9f:db:da:9e:6a:40:
3b:33:33:28:d6:06:d0:6c:1d:6b:d2:6e:4c:fa:db:57:f5:0b:
c5:70:0e:29:75:17:e2:a1:b8:65:fe:58:67:43:74:c4:d1:9e:
02:f0:4e:54:eb:d0:f6:bc:f7:2b:b1:48:00:e8:9d:35:29:58:
55:35:ea:11:91:a4:7b:f6:4e:33:d1:10:31:52:86:64:20:28:
e8:72:ca:46:de:43:f1:58:a2:1b:18:9d:72:22:2c:72:b7:bc:
aa:79:79:cc
-----BEGIN CERTIFICATE-----
MIIFfjCCBGagAwIBAgISAYlFiKpdbdCgeNov7xPaJR+pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDExYTAxMGY4N2EwNDliNmUyMWFiZWQ5YjQwOTgzYjA0ZjNm
MWM3ZTgwHhcNMjMwNzExMTUxODUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYTlkMGI3NThkYmVhNWNmZWY4MDlmN2M2NGYyODI3NGJmNDQ1NjUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiJX9wfWm/8yWdB6Y/LShnBT830qA
hcXrqs4c9tuwAEFvwmNy2A3wFoUpOjV78wWCnDXFZdUTH7PaGNQVTdxEUq2jhWJv
vORSYNfW0sLQ8DElcKX2R0roq/l8eaLcNDr8Kc0QshGxSjygJ3XzZChkcDDz5dbH
WDtRZXkW/RnWYB6Ouur3xHCd2APvygswDx3ZFDOLIfemwaDiwvkiZkN/xMo2N4xz
GzIwrBkz5IXcB/OJWZ2+7nKV3Lo9CTtTTnQNRkzwYBq9W6R9dfFc2eDHJkPVTAIC
jIH9hoRF7mQZnra+qq5Kf2At+C8nDRcwYsPytExDIMghAIedEsg3w6EFFwIDAQAB
o4ICijCCAoYwHQYDVR0OBBYEFAqdC3WNvqXP74CffGTygnS/RFZQMB8GA1UdIwQY
MBaAFBGgEPh6BJtuIavtm0CYOwTz8cfoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRWFBUS1Ib0VtMjRocS0yYlFKZzdCUFB4eC1nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9mMjVkN2MtNjY3Ny00ZmRiLTg5OGUt
ZWU3NDY1NzU0ZmY2LzEvQ3AwTGRZMi1wY192Z0o5OFpQS0NkTDlFVmxBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi9mMjVkN2MtNjY3Ny00ZmRiLTg5OGUtZWU3NDY1NzU0ZmY2
LzEvRWFBUS1Ib0VtMjRocS0yYlFKZzdCUFB4eC1nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGfBggrBgEFBQcBBwEB/wSBjzCBjDCBiQQCAAEwgYIDBAIF
tiQDBAItCJADBAEtQyIDBAEtVAADBAItV5gDBAAtWTQDBAEtWTYDBAItXQgDBAIt
n/gDBABduaYwDAMEA41iqAMEAI1iqgMEArnnzDAMAwQAvHd5AwQBvHd8AwQBwSuS
AwQBwS44AwQCwTmIAwQCwgQwAwQBwnSsAwQBwnS+MA0GCSqGSIb3DQEBCwUAA4IB
AQBw6/Ez+dFAXh3sRNLTeIe6g/AIj6nUK3moAuMg8md8hwOWVb62RQem8vlztrBC
Wl5NvdCpwKU/uLgSfmcNlk9eejE6+Esi5dmBtgYswBu2Dg6acPwgFqlfgJoVYyiu
SWv6rSJirq++lkK0TLngpXYweraSPevmcvuls3yhuCvOee7xzcNc6R2mrIGwH1SV
DwS67hmB9rmfZypRwtKf29qeakA7MzMo1gbQbB1r0m5M+ttX9QvFcA4pdRfiobhl
/lhnQ3TE0Z4C8E5U69D2vPcrsUgA6J01KVhVNeoRkaR79k4z0RAxUoZkICjocspG
3kPxWKIbGJ1yIixyt7yqeXnM
-----END CERTIFICATE-----
Generated at Mon Aug 14 17:06:27 2023 by rpki-client on console-ams.rpki-client.org