Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/HfrgWygEGuHHui37GDphwYZVbhk.roa
File: HfrgWygEGuHHui37GDphwYZVbhk.roa (raw, json)
Hash identifier: eXb8+Glps4Q/0wQtQEYzIBSVbE7JHjYKKAB2p496bb0=
Subject key identifier: 1D:FA:E0:5B:28:04:1A:E1:C7:BA:2D:FB:18:3A:61:C1:86:55:6E:19
Certificate issuer: /CN=a74c6706e3fbebdff146a8a14ec2a3284a92ba62
Certificate serial: 018CC56EB8B65595F859EDDE3D09BA560360
Authority key identifier: A7:4C:67:06:E3:FB:EB:DF:F1:46:A8:A1:4E:C2:A3:28:4A:92:BA:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p0xnBuP769_xRqihTsKjKEqSumI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/HfrgWygEGuHHui37GDphwYZVbhk.roa
Signing time: Mon 01 Jan 2024 14:30:16 +0000
ROA not before: Mon 01 Jan 2024 14:30:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1836
IP address blocks: 193.73.120.0/23 maxlen: 24
193.73.124.0/24 maxlen: 24
193.73.123.0/24 maxlen: 24
193.73.128.0/18 maxlen: 19
193.73.126.0/23 maxlen: 24
81.6.48.0/20 maxlen: 21
80.86.192.0/20 maxlen: 21
146.228.64.0/24 maxlen: 24
193.73.80.0/20 maxlen: 20
81.6.0.0/19 maxlen: 20
193.73.96.0/22 maxlen: 22
193.73.96.0/21 maxlen: 21
195.130.160.0/19 maxlen: 20
193.73.104.0/23 maxlen: 24
193.73.100.0/22 maxlen: 22
193.73.112.0/24 maxlen: 24
193.73.108.0/22 maxlen: 23
193.73.115.0/24 maxlen: 24
193.73.116.0/22 maxlen: 23
193.73.232.0/22 maxlen: 23
193.73.240.0/23 maxlen: 24
193.73.239.0/24 maxlen: 24
193.73.236.0/23 maxlen: 24
193.73.244.0/22 maxlen: 23
193.73.252.0/22 maxlen: 23
193.73.248.0/23 maxlen: 24
193.73.192.0/20 maxlen: 21
193.73.212.0/22 maxlen: 23
193.73.209.0/24 maxlen: 24
193.73.210.0/24 maxlen: 24
193.73.216.0/21 maxlen: 22
193.73.224.0/21 maxlen: 22
193.72.164.0/23 maxlen: 24
193.72.160.0/22 maxlen: 23
193.72.168.0/21 maxlen: 22
193.72.167.0/24 maxlen: 24
193.72.176.0/21 maxlen: 22
193.72.184.0/23 maxlen: 24
193.72.192.0/20 maxlen: 21
80.254.160.0/19 maxlen: 20
193.72.187.0/24 maxlen: 24
193.72.188.0/22 maxlen: 23
81.221.0.0/16 maxlen: 17
193.72.208.0/21 maxlen: 22
193.72.128.0/20 maxlen: 21
195.49.0.0/17 maxlen: 18
193.72.152.0/21 maxlen: 22
193.72.148.0/22 maxlen: 23
195.49.6.0/24 maxlen: 24
146.228.0.0/16 maxlen: 17
194.191.0.0/16 maxlen: 17
193.73.64.0/19 maxlen: 20
193.72.218.0/23 maxlen: 24
193.72.217.0/24 maxlen: 24
193.72.224.0/19 maxlen: 20
195.49.78.0/24 maxlen: 24
193.72.220.0/22 maxlen: 23
195.49.79.0/24 maxlen: 24
212.59.128.0/18 maxlen: 19
193.73.0.0/18 maxlen: 19
195.48.0.0/16 maxlen: 17
193.72.64.0/21 maxlen: 21
193.193.128.0/19 maxlen: 20
193.72.78.0/24 maxlen: 24
193.72.76.0/23 maxlen: 23
193.72.72.0/22 maxlen: 22
193.72.84.0/22 maxlen: 23
193.72.81.0/24 maxlen: 24
193.72.82.0/23 maxlen: 24
193.72.88.0/21 maxlen: 22
193.72.96.0/19 maxlen: 20
193.72.0.0/18 maxlen: 19
80.253.80.0/21 maxlen: 22
82.195.224.0/19 maxlen: 20
2001:1b50::/29 maxlen: 29
2a01:2a8::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 06 May 2024 14:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:b8:b6:55:95:f8:59:ed:de:3d:09:ba:56:03:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a74c6706e3fbebdff146a8a14ec2a3284a92ba62
Validity
Not Before: Jan 1 14:30:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1dfae05b28041ae1c7ba2dfb183a61c186556e19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:7e:d4:b9:ea:2a:dd:1b:f1:69:06:6c:25:6a:
f1:85:e0:00:44:25:f1:22:6a:c4:99:ee:36:a7:4e:
f4:fb:70:03:f2:2f:9b:5a:5c:32:c5:d4:8d:65:2d:
09:ca:1a:c7:f2:fd:4f:7b:55:be:25:5a:12:53:54:
b8:a7:ac:23:5f:f7:01:79:c3:de:cd:6b:57:38:2e:
e4:53:24:25:d9:a8:7a:86:36:c8:05:df:ea:42:fc:
6c:4a:dc:d8:c3:a8:49:44:a1:fd:9d:ff:1d:c8:04:
a7:66:ce:a9:f1:b1:0d:85:f4:d1:d1:59:5e:9e:fa:
b0:ee:79:4d:a5:d4:42:84:d8:24:b0:28:a7:8f:3a:
ea:83:3a:02:92:f6:9a:b8:15:25:62:06:b6:48:d2:
ee:94:a3:06:bf:c8:0c:fd:f7:42:0d:60:38:7d:43:
6a:08:56:f2:95:fa:0a:58:76:f3:43:a0:89:20:5d:
8a:4c:cf:ea:5e:0f:3e:c6:da:02:0d:4a:6c:ed:c6:
79:cf:63:e5:fa:82:07:fb:b3:f4:46:3f:a9:d5:64:
fb:b1:32:80:40:dd:99:72:f8:9a:58:2c:c3:f1:b2:
21:21:31:62:38:30:8e:2c:77:3e:89:4d:c7:50:6b:
e8:fd:88:fa:ac:95:1d:c1:70:eb:81:35:ca:a2:05:
b4:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:FA:E0:5B:28:04:1A:E1:C7:BA:2D:FB:18:3A:61:C1:86:55:6E:19
X509v3 Authority Key Identifier:
keyid:A7:4C:67:06:E3:FB:EB:DF:F1:46:A8:A1:4E:C2:A3:28:4A:92:BA:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p0xnBuP769_xRqihTsKjKEqSumI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/HfrgWygEGuHHui37GDphwYZVbhk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/p0xnBuP769_xRqihTsKjKEqSumI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.86.192.0/20
80.253.80.0/21
80.254.160.0/19
81.6.0.0/19
81.6.48.0/20
81.221.0.0/16
82.195.224.0/19
146.228.0.0/16
193.72.0.0-193.72.78.255
193.72.81.0-193.72.143.255
193.72.148.0-193.72.165.255
193.72.167.0-193.72.185.255
193.72.187.0-193.72.215.255
193.72.217.0-193.73.105.255
193.73.108.0-193.73.112.255
193.73.115.0-193.73.121.255
193.73.123.0-193.73.124.255
193.73.126.0-193.73.207.255
193.73.209.0-193.73.210.255
193.73.212.0-193.73.237.255
193.73.239.0-193.73.241.255
193.73.244.0-193.73.249.255
193.73.252.0/22
193.193.128.0/19
194.191.0.0/16
195.48.0.0-195.49.127.255
195.130.160.0/19
212.59.128.0/18
IPv6:
2001:1b50::/29
2a01:2a8::/29
Signature Algorithm: sha256WithRSAEncryption
85:c3:a1:5b:11:4a:cf:73:01:8c:fb:7c:a0:be:37:c6:46:eb:
01:7d:df:26:0d:ee:3c:57:36:11:3c:4d:96:9d:71:04:dd:5f:
04:60:5c:da:a5:4e:28:10:95:ef:b1:ec:a7:c5:57:7b:98:8b:
89:9f:ac:f3:72:0f:37:c9:e3:1d:b7:a9:fa:97:6a:45:a8:62:
e0:19:9b:6f:f2:88:7d:6b:6c:11:17:d3:80:a2:87:7e:e5:42:
f9:b3:98:7e:f6:84:59:ef:41:8a:97:b0:b6:59:a4:f2:af:c9:
d9:7d:a5:76:1f:cd:2c:f3:4e:df:f8:a8:fb:a3:ab:cc:04:52:
83:07:a4:bc:7e:81:d4:eb:24:4f:d4:ac:d1:62:87:1e:d2:94:
b5:5f:dd:11:b6:f2:c7:78:f6:d9:55:d4:c2:5e:ce:53:7b:61:
c1:a1:44:46:9d:b4:20:04:df:d1:2f:f2:5a:29:0a:a0:e6:17:
d6:c2:e9:4e:3d:98:a2:f5:6a:6f:e8:ca:f3:6b:8c:a9:5d:10:
f8:a1:79:e8:0c:fb:78:11:b9:61:ac:b8:b3:bf:02:ab:82:a0:
4a:00:9d:9d:83:22:f1:d1:1b:e8:aa:6f:49:f0:67:aa:c4:1f:
c2:6c:b2:35:77:49:cf:69:e2:f2:66:6a:9f:1f:20:81:41:97:
83:1b:83:cf
-----BEGIN CERTIFICATE-----
MIIGMjCCBRqgAwIBAgISAYzFbri2VZX4We3ePQm6VgNgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3NGM2NzA2ZTNmYmViZGZmMTQ2YThhMTRlYzJhMzI4NGE5
MmJhNjIwHhcNMjQwMTAxMTQzMDE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZGZhZTA1YjI4MDQxYWUxYzdiYTJkZmIxODNhNjFjMTg2NTU2ZTE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4H7Uueoq3RvxaQZsJWrxheAARCXx
ImrEme42p070+3AD8i+bWlwyxdSNZS0JyhrH8v1Pe1W+JVoSU1S4p6wjX/cBecPe
zWtXOC7kUyQl2ah6hjbIBd/qQvxsStzYw6hJRKH9nf8dyASnZs6p8bENhfTR0Vle
nvqw7nlNpdRChNgksCinjzrqgzoCkvaauBUlYga2SNLulKMGv8gM/fdCDWA4fUNq
CFbylfoKWHbzQ6CJIF2KTM/qXg8+xtoCDUps7cZ5z2Pl+oIH+7P0Rj+p1WT7sTKA
QN2ZcviaWCzD8bIhITFiODCOLHc+iU3HUGvo/Yj6rJUdwXDrgTXKogW0YwIDAQAB
o4IDPjCCAzowHQYDVR0OBBYEFB364FsoBBrhx7ot+xg6YcGGVW4ZMB8GA1UdIwQY
MBaAFKdMZwbj++vf8UaooU7CoyhKkrpiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcDB4bkJ1UDc2OV94UnFpaFRzS2pLRXFTdW1JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi9hMGM0NDQtOTc5Ni00ZjA2LTgzZjIt
YWE3ODhhNDIwYWVjLzEvSGZyZ1d5Z0VHdUhIdWkzN0dEcGh3WVpWYmhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Zi9hMGM0NDQtOTc5Ni00ZjA2LTgzZjItYWE3ODhhNDIwYWVj
LzEvcDB4bkJ1UDc2OV94UnFpaFRzS2pLRXFTdW1JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBUgYIKwYBBQUHAQcBAf8EggFBMIIBPTCCASMEAgABMIIB
GwMEBFBWwAMEA1D9UAMEBVD+oAMEBVEGAAMEBFEGMAMDAFHdAwQFUsPgAwMAkuQw
CwMDA8FIAwQAwUhOMAwDBADBSFEDBATBSIAwDAMEAsFIlAMEAcFIpDAMAwQAwUin
AwQBwUi4MAwDBADBSLsDBAPBSNAwDAMEAMFI2QMEAcFJaDAMAwQCwUlsAwQAwUlw
MAwDBADBSXMDBAHBSXgwDAMEAMFJewMEAMFJfDAMAwQBwUl+AwQEwUnAMAwDBADB
SdEDBADBSdIwDAMEAsFJ1AMEAcFJ7DAMAwQAwUnvAwQBwUnwMAwDBALBSfQDBAHB
SfgDBALBSfwDBAXBwYADAwDCvzALAwMEwzADBAfDMQADBAXDgqADBAbUO4AwFAQC
AAIwDgMFAyABG1ADBQMqAQKoMA0GCSqGSIb3DQEBCwUAA4IBAQCFw6FbEUrPcwGM
+3ygvjfGRusBfd8mDe48VzYRPE2WnXEE3V8EYFzapU4oEJXvseynxVd7mIuJn6zz
cg83yeMdt6n6l2pFqGLgGZtv8oh9a2wRF9OAood+5UL5s5h+9oRZ70GKl7C2WaTy
r8nZfaV2H80s807f+Kj7o6vMBFKDB6S8foHU6yRP1KzRYoce0pS1X90RtvLHePbZ
VdTCXs5Te2HBoURGnbQgBN/RL/JaKQqg5hfWwulOPZii9Wpv6Mrza4ypXRD4oXno
DPt4EblhrLizvwKrgqBKAJ2dgyLx0Rvoqm9J8GeqxB/CbLI1d0nPaeLyZmqfHyCB
QZeDG4PP
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:03 2024 by rpki-client on console-fra.rpki-client.org