Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/RCAWLhMErcYOYxlr6Mrk2RAn_ic.roa
File: RCAWLhMErcYOYxlr6Mrk2RAn_ic.roa (raw, json)
Hash identifier: IDuMDBdvnIlMMtqlvBYRgnz2UU59LRyIz3ikqyuGmvQ=
Subject key identifier: 44:20:16:2E:13:04:AD:C6:0E:63:19:6B:E8:CA:E4:D9:10:27:FE:27
Certificate issuer: /CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Certificate serial: 018F4D87310365BEEC96D16986C3BDB8C983
Authority key identifier: 7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/RCAWLhMErcYOYxlr6Mrk2RAn_ic.roa
Signing time: Mon 06 May 2024 10:50:56 +0000
ROA not before: Mon 06 May 2024 10:50:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204601
IP address blocks: 5.8.248.0/24 maxlen: 24
45.81.224.0/22 maxlen: 22
45.82.68.0/22 maxlen: 22
45.82.176.0/22 maxlen: 22
45.87.0.0/22 maxlen: 22
45.136.84.0/24 maxlen: 24
45.136.85.0/24 maxlen: 24
45.136.86.0/24 maxlen: 24
45.136.87.0/24 maxlen: 24
45.137.64.0/22 maxlen: 22
46.18.107.0/24 maxlen: 24
46.21.250.0/24 maxlen: 24
77.220.212.0/22 maxlen: 22
77.220.212.0/24 maxlen: 24
77.220.213.0/24 maxlen: 24
77.220.214.0/24 maxlen: 24
77.220.215.0/24 maxlen: 24
81.31.197.0/24 maxlen: 24
91.201.25.0/24 maxlen: 24
91.208.127.0/24 maxlen: 24
91.209.226.0/24 maxlen: 24
91.228.56.0/24 maxlen: 24
94.124.78.0/24 maxlen: 24
178.159.38.0/24 maxlen: 24
178.159.39.0/24 maxlen: 24
178.159.42.0/24 maxlen: 24
178.159.43.0/24 maxlen: 24
185.23.108.0/24 maxlen: 24
185.51.121.0/24 maxlen: 24
185.51.246.0/24 maxlen: 24
185.51.247.0/24 maxlen: 24
185.93.6.0/24 maxlen: 24
185.107.237.0/24 maxlen: 24
185.201.252.0/24 maxlen: 24
185.204.109.0/24 maxlen: 24
185.229.251.0/24 maxlen: 24
185.232.164.0/24 maxlen: 24
185.235.128.0/24 maxlen: 24
185.235.129.0/24 maxlen: 24
185.235.130.0/24 maxlen: 24
185.235.131.0/24 maxlen: 24
185.241.52.0/24 maxlen: 24
185.241.53.0/24 maxlen: 24
185.241.54.0/24 maxlen: 24
185.241.55.0/24 maxlen: 24
185.244.216.0/22 maxlen: 22
185.244.216.0/24 maxlen: 24
185.244.217.0/24 maxlen: 24
185.244.218.0/24 maxlen: 24
185.244.219.0/24 maxlen: 24
185.250.204.0/24 maxlen: 24
185.250.205.0/24 maxlen: 24
185.250.206.0/24 maxlen: 24
185.250.207.0/24 maxlen: 24
185.251.25.0/24 maxlen: 24
185.253.7.0/24 maxlen: 24
193.22.21.0/24 maxlen: 24
193.56.8.0/24 maxlen: 24
193.163.7.0/24 maxlen: 24
193.163.113.0/24 maxlen: 24
193.169.105.0/24 maxlen: 24
194.15.46.0/24 maxlen: 24
194.29.53.0/24 maxlen: 24
212.8.244.0/24 maxlen: 24
212.8.246.0/24 maxlen: 24
212.23.221.0/24 maxlen: 24
212.86.101.0/24 maxlen: 24
212.86.102.0/24 maxlen: 24
212.86.108.0/24 maxlen: 24
212.86.109.0/24 maxlen: 24
212.86.114.0/24 maxlen: 24
212.86.115.0/24 maxlen: 24
212.162.152.0/22 maxlen: 24
213.166.68.0/24 maxlen: 24
213.166.69.0/24 maxlen: 24
213.166.70.0/24 maxlen: 24
213.166.71.0/24 maxlen: 24
2a07:5980::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 10 May 2024 10:33:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4d:87:31:03:65:be:ec:96:d1:69:86:c3:bd:b8:c9:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Validity
Not Before: May 6 10:50:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4420162e1304adc60e63196be8cae4d91027fe27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:28:04:8c:11:c4:3e:d6:85:46:94:2c:cf:ac:
ba:57:a3:37:8b:88:52:72:d2:9d:00:29:2a:f1:5f:
e3:04:7c:03:2b:90:ec:29:47:a7:53:97:0b:d1:1b:
bb:ae:b0:ae:a6:99:12:77:50:17:2b:ee:33:f0:04:
02:70:a5:ed:75:4b:a0:17:e1:1d:7c:d7:ba:4f:0a:
b4:6b:96:03:4f:ad:41:7d:63:a8:80:d5:18:67:5f:
d5:64:19:92:93:78:cc:b9:8d:7f:bf:5a:df:1f:11:
d2:42:f5:21:f6:2d:e7:94:58:47:1b:a3:5d:f6:9d:
8e:64:7d:96:ce:1f:94:50:0c:ef:7f:9e:e0:ea:a8:
c9:5a:de:4c:3b:35:f4:d7:59:e3:d6:00:f0:a2:1e:
61:62:25:e8:d1:f2:43:84:15:ea:48:11:e0:7f:13:
49:14:46:5a:a3:41:ab:b3:f0:b0:04:de:fe:52:5b:
f0:77:09:9f:17:5a:63:2a:44:0b:16:e9:2b:80:89:
ff:82:aa:f9:0c:44:42:21:55:20:9e:22:07:b2:d5:
11:12:1b:12:59:ff:3a:8d:cd:99:63:b2:0f:34:41:
9d:92:5e:19:c7:ed:f5:06:93:95:74:59:ae:39:ce:
41:eb:ba:1e:ac:32:99:26:3d:92:71:4b:8a:f6:56:
f8:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:20:16:2E:13:04:AD:C6:0E:63:19:6B:E8:CA:E4:D9:10:27:FE:27
X509v3 Authority Key Identifier:
keyid:7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/RCAWLhMErcYOYxlr6Mrk2RAn_ic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/f8rYnfG_maNvKQzD7w8ee00CdTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.248.0/24
45.81.224.0/22
45.82.68.0/22
45.82.176.0/22
45.87.0.0/22
45.136.84.0/22
45.137.64.0/22
46.18.107.0/24
46.21.250.0/24
77.220.212.0/22
81.31.197.0/24
91.201.25.0/24
91.208.127.0/24
91.209.226.0/24
91.228.56.0/24
94.124.78.0/24
178.159.38.0/23
178.159.42.0/23
185.23.108.0/24
185.51.121.0/24
185.51.246.0/23
185.93.6.0/24
185.107.237.0/24
185.201.252.0/24
185.204.109.0/24
185.229.251.0/24
185.232.164.0/24
185.235.128.0/22
185.241.52.0/22
185.244.216.0/22
185.250.204.0/22
185.251.25.0/24
185.253.7.0/24
193.22.21.0/24
193.56.8.0/24
193.163.7.0/24
193.163.113.0/24
193.169.105.0/24
194.15.46.0/24
194.29.53.0/24
212.8.244.0/24
212.8.246.0/24
212.23.221.0/24
212.86.101.0-212.86.102.255
212.86.108.0/23
212.86.114.0/23
212.162.152.0/22
213.166.68.0/22
IPv6:
2a07:5980::/29
Signature Algorithm: sha256WithRSAEncryption
56:5e:a5:f6:60:83:5f:a8:77:ae:27:ed:a0:b1:23:26:80:5a:
7d:41:3c:38:e4:2c:75:ae:e0:a1:50:d3:a5:d2:cf:79:6a:1c:
6e:e0:29:76:4d:39:e3:c5:1e:13:a3:46:01:00:c5:9a:c1:94:
fc:90:ff:a1:94:e8:8c:9e:c3:fe:72:4d:5e:a5:85:99:19:7a:
69:51:65:79:33:8e:9b:e5:3d:01:ae:4c:6f:9c:1b:55:ee:84:
bc:b1:45:3a:82:bd:97:cf:05:fa:ad:5c:a7:b1:9d:b8:f7:f0:
5b:6a:5c:92:48:82:1d:2d:34:e4:ce:1b:1d:51:3f:b7:7d:60:
ce:2f:2a:a6:f7:1e:62:ee:82:4d:6c:25:5d:c3:f4:8f:e7:a3:
37:d1:09:cb:50:e1:4e:2c:ff:ce:39:25:c6:5d:7b:08:24:4e:
80:c5:25:e6:b8:10:ff:e8:de:11:b8:86:c4:36:b5:2d:07:44:
ad:f4:f6:50:da:93:d8:a4:73:07:19:d0:4a:e3:e7:20:dd:d7:
53:92:7a:3f:56:81:70:3a:ce:57:32:cc:7e:cf:aa:c6:f2:e1:
ba:ff:5d:45:e7:f2:d1:d7:5e:98:ef:4b:04:4d:a6:39:d6:5e:
2d:a0:66:80:1a:f2:a3:7d:0b:f5:53:96:44:f2:79:07:51:85:
50:a0:31:cc
-----BEGIN CERTIFICATE-----
MIIGODCCBSCgAwIBAgISAY9NhzEDZb7sltFphsO9uMmDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdmY2FkODlkZjFiZjk5YTM2ZjI5MGNjM2VmMGYxZTdiNGQw
Mjc1MzMwHhcNMjQwNTA2MTA1MDU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NDIwMTYyZTEzMDRhZGM2MGU2MzE5NmJlOGNhZTRkOTEwMjdmZTI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxSgEjBHEPtaFRpQsz6y6V6M3i4hS
ctKdACkq8V/jBHwDK5DsKUenU5cL0Ru7rrCuppkSd1AXK+4z8AQCcKXtdUugF+Ed
fNe6Twq0a5YDT61BfWOogNUYZ1/VZBmSk3jMuY1/v1rfHxHSQvUh9i3nlFhHG6Nd
9p2OZH2Wzh+UUAzvf57g6qjJWt5MOzX011nj1gDwoh5hYiXo0fJDhBXqSBHgfxNJ
FEZao0Grs/CwBN7+UlvwdwmfF1pjKkQLFukrgIn/gqr5DERCIVUgniIHstUREhsS
Wf86jc2ZY7IPNEGdkl4Zx+31BpOVdFmuOc5B67oerDKZJj2ScUuK9lb4WwIDAQAB
o4IDRDCCA0AwHQYDVR0OBBYEFEQgFi4TBK3GDmMZa+jK5NkQJ/4nMB8GA1UdIwQY
MBaAFH/K2J3xv5mjbykMw+8PHntNAnUzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZjhyWW5mR19tYU52S1F6RDd3OGVlMDBDZFRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS85ZjhiMTYtMjg0Zi00NTEyLWIzZGMt
MDE1ZDlmMWI0YjUwLzEvUkNBV0xoTUVyY1lPWXhscjZNcmsyUkFuX2ljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS85ZjhiMTYtMjg0Zi00NTEyLWIzZGMtMDE1ZDlmMWI0YjUw
LzEvZjhyWW5mR19tYU52S1F6RDd3OGVlMDBDZFRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBWAYIKwYBBQUHAQcBAf8EggFHMIIBQzCCATAEAgABMIIB
KAMEAAUI+AMEAi1R4AMEAi1SRAMEAi1SsAMEAi1XAAMEAi2IVAMEAi2JQAMEAC4S
awMEAC4V+gMEAk3c1AMEAFEfxQMEAFvJGQMEAFvQfwMEAFvR4gMEAFvkOAMEAF58
TgMEAbKfJgMEAbKfKgMEALkXbAMEALkzeQMEAbkz9gMEALldBgMEALlr7QMEALnJ
/AMEALnMbQMEALnl+wMEALnopAMEArnrgAMEArnxNAMEArn02AMEArn6zAMEALn7
GQMEALn9BwMEAMEWFQMEAME4CAMEAMGjBwMEAMGjcQMEAMGpaQMEAMIPLgMEAMId
NQMEANQI9AMEANQI9gMEANQX3TAMAwQA1FZlAwQA1FZmAwQB1FZsAwQB1FZyAwQC
1KKYAwQC1aZEMA0EAgACMAcDBQMqB1mAMA0GCSqGSIb3DQEBCwUAA4IBAQBWXqX2
YINfqHeuJ+2gsSMmgFp9QTw45Cx1ruChUNOl0s95ahxu4Cl2TTnjxR4To0YBAMWa
wZT8kP+hlOiMnsP+ck1epYWZGXppUWV5M46b5T0BrkxvnBtV7oS8sUU6gr2XzwX6
rVynsZ249/BbalySSIIdLTTkzhsdUT+3fWDOLyqm9x5i7oJNbCVdw/SP56M30QnL
UOFOLP/OOSXGXXsIJE6AxSXmuBD/6N4RuIbENrUtB0St9PZQ2pPYpHMHGdBK4+cg
3ddTkno/VoFwOs5XMsx+z6rG8uG6/11F5/LR116Y70sETaY51l4toGaAGvKjfQv1
U5ZE8nkHUYVQoDHM
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:12 2024 by rpki-client on console-fra.rpki-client.org