Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/8H5oS_HNb2JMacNSrnaI48nBvVA.roa
File: 8H5oS_HNb2JMacNSrnaI48nBvVA.roa (raw, json)
Hash identifier: Eqrl47bk92my/RREXur4iybnKQO5AGQUdSoXpjU2S4I=
Subject key identifier: F0:7E:68:4B:F1:CD:6F:62:4C:69:C3:52:AE:76:88:E3:C9:C1:BD:50
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018B6C2DB46B238AAD345AFDC06B5DA7137E
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/8H5oS_HNb2JMacNSrnaI48nBvVA.roa
Signing time: Thu 26 Oct 2023 13:30:16 +0000
ROA not before: Thu 26 Oct 2023 13:30:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 194.50.94.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
185.238.188.0/22 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
93.88.200.0/21 maxlen: 24
193.163.85.0/24 maxlen: 24
193.163.86.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
45.148.116.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
77.81.50.0/23 maxlen: 24
185.232.117.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
109.61.104.0/21 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a04:ccc6::/32 maxlen: 48
2a0e:97c3:110::/44 maxlen: 48
2a0c:3b80::/32 maxlen: 48
2a04:ccc7::/32 maxlen: 48
2a04:ccc4::/32 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a10:2f00:193::/48 maxlen: 48
2a04:ccc5::/32 maxlen: 48
2a0e:b107:2220::/45 maxlen: 48
2a0e:97c0:1d0::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a04:ccc3::/32 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a10:ccc0:420::/44 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0e:b107:21c0::/45 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a04:ccc0:ffff::/48 maxlen: 48
2a10:cc45:130::/44 maxlen: 44
2a0c:3b83::/32 maxlen: 48
2a04:ccc1::/32 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a0e:b107:2228::/45 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:6c:2d:b4:6b:23:8a:ad:34:5a:fd:c0:6b:5d:a7:13:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 26 13:30:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f07e684bf1cd6f624c69c352ae7688e3c9c1bd50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:2e:a7:1b:d9:1d:41:4b:2b:64:da:dd:fe:ee:
6c:cc:29:d7:37:75:40:71:85:3d:74:28:0e:07:b4:
7d:ec:fa:a1:9f:f2:60:59:0c:ce:44:68:6f:5b:c1:
96:a6:81:88:62:60:e8:06:35:ff:0d:52:01:ec:77:
9c:e9:09:c7:3a:eb:77:3b:aa:f9:79:94:e1:c0:d2:
2d:12:9e:e2:03:c1:9c:51:7b:e4:80:51:4d:8d:89:
65:d3:17:78:8a:50:87:75:d4:14:31:5a:92:a4:15:
a4:48:af:14:fc:e2:c0:19:76:eb:7a:52:e0:4a:1b:
68:55:26:b5:5c:64:d9:fa:68:8b:63:b8:fd:5a:d2:
b4:2b:55:c9:3b:96:04:4a:1d:15:70:02:79:9f:59:
05:41:c5:3a:b8:f9:c5:2d:fd:a0:31:e7:55:56:f6:
e9:3d:29:f0:50:64:b6:e8:6b:0a:a5:a3:5b:46:ab:
b5:1a:86:c5:22:53:95:17:e8:21:bc:87:48:09:f8:
13:69:ca:b7:11:72:87:c8:5e:76:54:77:06:ac:3e:
38:cb:6b:20:66:3e:92:2d:61:55:27:08:21:c2:bc:
e5:75:e5:5c:62:39:c0:c0:4c:fe:12:de:47:ef:f1:
87:c2:da:c4:3a:c6:73:d1:71:24:40:5f:90:2f:6e:
9a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:7E:68:4B:F1:CD:6F:62:4C:69:C3:52:AE:76:88:E3:C9:C1:BD:50
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/8H5oS_HNb2JMacNSrnaI48nBvVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.131.184.0/22
45.136.136.0/22
45.148.116.0/22
77.81.50.0/23
85.202.203.0/24
93.88.200.0/21
94.177.122.0/24
109.61.104.0/21
139.28.96.0/22
185.232.117.0/24
185.238.188.0/22
193.163.85.0-193.163.86.255
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2a04:ccc0:ffff::-2a04:ccc1:ffff:ffff:ffff:ffff:ffff:ffff
2a04:ccc3::-2a04:ccc7:ffff:ffff:ffff:ffff:ffff:ffff
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:170::/48
2a0e:97c0:1d0::/44
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:100::/44
2a0e:97c4:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0e:b107:21c0::/45
2a0e:b107:2220::/44
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:2f00:193::/48
2a10:cc40:250::/44
2a10:cc45:130::/44
2a10:ccc0:420::/44
Signature Algorithm: sha256WithRSAEncryption
98:c2:35:0d:3f:34:a5:6e:51:1c:eb:48:5a:42:b0:7f:8e:c3:
01:a3:64:52:8e:5a:dc:b5:75:b5:47:8a:aa:38:ca:14:af:1e:
5a:d4:12:64:1e:1b:4a:99:3b:36:ba:8e:82:13:ae:76:87:99:
83:8f:75:04:be:39:10:7a:c8:41:46:c9:e8:7f:3a:6f:73:e4:
40:f4:8a:04:a9:43:2f:7d:19:d3:9d:6f:4f:68:f8:4d:0e:f1:
e3:df:f2:0e:1e:a2:d3:e8:a8:08:84:b3:42:e9:1a:8b:0a:22:
97:d3:38:19:d4:d4:a3:a4:c8:75:09:18:4f:fc:a1:3e:46:8f:
91:44:7c:2e:f1:2a:7a:c4:54:dc:4c:29:1f:c0:91:b3:e1:89:
f3:5a:26:68:1a:98:6b:7d:40:30:82:17:98:fe:8e:4b:bf:0f:
f6:2d:a5:dd:32:8b:a5:a8:2a:b8:9f:56:77:f4:40:81:28:c8:
df:e9:9e:d3:95:f6:8c:aa:b2:33:75:9a:e0:e9:18:a0:32:dd:
5d:c3:30:f2:e2:cb:be:36:94:a6:da:0b:3f:d2:93:79:08:3a:
3a:93:f9:61:67:0e:5c:eb:f3:7e:05:4f:e7:c9:72:a3:c7:ae:
73:f3:5c:ab:95:19:1b:e4:6a:70:30:c9:58:e1:38:1e:19:ea:
50:3b:43:5f
-----BEGIN CERTIFICATE-----
MIIGWDCCBUCgAwIBAgISAYtsLbRrI4qtNFr9wGtdpxN+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMxMDI2MTMzMDE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMDdlNjg0YmYxY2Q2ZjYyNGM2OWMzNTJhZTc2ODhlM2M5YzFiZDUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiC6nG9kdQUsrZNrd/u5szCnXN3VA
cYU9dCgOB7R97Pqhn/JgWQzORGhvW8GWpoGIYmDoBjX/DVIB7Hec6QnHOut3O6r5
eZThwNItEp7iA8GcUXvkgFFNjYll0xd4ilCHddQUMVqSpBWkSK8U/OLAGXbrelLg
ShtoVSa1XGTZ+miLY7j9WtK0K1XJO5YESh0VcAJ5n1kFQcU6uPnFLf2gMedVVvbp
PSnwUGS26GsKpaNbRqu1GobFIlOVF+ghvIdICfgTacq3EXKHyF52VHcGrD44y2sg
Zj6SLWFVJwghwrzldeVcYjnAwEz+Et5H7/GHwtrEOsZz0XEkQF+QL26a+QIDAQAB
o4IDZDCCA2AwHQYDVR0OBBYEFPB+aEvxzW9iTGnDUq52iOPJwb1QMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvOEg1b1NfSE5iMkpNYWNOU3JuYUk0OG5CdlZBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBeAYIKwYBBQUHAQcBAf8EggFnMIIBYzB0BAIAATBuAwQA
Hyq3AwQCLQxEAwQCLYO4AwQCLYiIAwQCLZR0AwQBTVEyAwQAVcrLAwQDXVjIAwQA
XrF6AwQDbT1oAwQCixxgAwQAueh1AwQCue68MAwDBADBo1UDBADBo1YDBADCMlwD
BADCMl4DBADCMm8wgeoEAgACMIHjMBADBwAqBMzA//8DBQEqBMzAMA4DBQAqBMzD
AwUDKgTMwAMFAyoJBMAwDgMFByoMO4ADBQAqDDuGAwcAKg6XwAFwAwcEKg6XwAHQ
AwcEKg6XwAJgAwYAKg6XwQIDBwQqDpfDARADBwQqDpfEAQADBwQqDpfEASADBwAq
DrEHCfIDBwAqDrEHEWUDBwAqDrEHF4YDBwMqDrEHIcADBwQqDrEHIiADBwAqD+QE
AQIDBwAqEC8AAY0DBwAqEC8AAY8DBwAqEC8AAZMDBwQqEMxAAlADBwQqEMxFATAD
BwQqEMzABCAwDQYJKoZIhvcNAQELBQADggEBAJjCNQ0/NKVuURzrSFpCsH+OwwGj
ZFKOWty1dbVHiqo4yhSvHlrUEmQeG0qZOza6joITrnaHmYOPdQS+ORB6yEFGyeh/
Om9z5ED0igSpQy99GdOdb09o+E0O8ePf8g4eotPoqAiEs0LpGosKIpfTOBnU1KOk
yHUJGE/8oT5Gj5FEfC7xKnrEVNxMKR/AkbPhifNaJmgamGt9QDCCF5j+jku/D/Yt
pd0yi6WoKrifVnf0QIEoyN/pntOV9oyqsjN1muDpGKAy3V3DMPLiy742lKbaCz/S
k3kIOjqT+WFnDlzr834FT+fJcqPHrnPzXKuVGRvkanAwyVjhOB4Z6lA7Q18=
-----END CERTIFICATE-----
Generated at Fri Oct 27 12:06:41 2023 by rpki-client on console-ams.rpki-client.org