Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/kHFLo8XtIlbJLa3sSmUoVqk4If8.roa
File: kHFLo8XtIlbJLa3sSmUoVqk4If8.roa (raw, json)
Hash identifier: 7KbsIOy5Tm+mSJxpokHYTwTNgihrhlJ5IDk3YQDoCu8=
Subject key identifier: 90:71:4B:A3:C5:ED:22:56:C9:2D:AD:EC:4A:65:28:56:A9:38:21:FF
Certificate issuer: /CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Certificate serial: 018F7C4B124EE446A6AD571261B742F7EEE7
Authority key identifier: 7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/kHFLo8XtIlbJLa3sSmUoVqk4If8.roa
Signing time: Wed 15 May 2024 12:47:25 +0000
ROA not before: Wed 15 May 2024 12:47:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204601
IP address blocks: 45.81.224.0/22 maxlen: 22
45.82.68.0/22 maxlen: 22
45.82.176.0/22 maxlen: 22
45.87.0.0/22 maxlen: 22
45.136.84.0/24 maxlen: 24
45.136.85.0/24 maxlen: 24
45.136.86.0/24 maxlen: 24
45.136.87.0/24 maxlen: 24
45.137.64.0/22 maxlen: 22
46.18.107.0/24 maxlen: 24
46.21.250.0/24 maxlen: 24
77.220.212.0/22 maxlen: 22
77.220.212.0/24 maxlen: 24
77.220.213.0/24 maxlen: 24
77.220.214.0/24 maxlen: 24
77.220.215.0/24 maxlen: 24
81.31.197.0/24 maxlen: 24
91.201.25.0/24 maxlen: 24
91.208.127.0/24 maxlen: 24
91.209.226.0/24 maxlen: 24
91.228.56.0/24 maxlen: 24
94.124.78.0/24 maxlen: 24
178.159.38.0/24 maxlen: 24
178.159.39.0/24 maxlen: 24
178.159.42.0/24 maxlen: 24
178.159.43.0/24 maxlen: 24
185.23.108.0/24 maxlen: 24
185.51.121.0/24 maxlen: 24
185.51.246.0/24 maxlen: 24
185.51.247.0/24 maxlen: 24
185.93.6.0/24 maxlen: 24
185.107.237.0/24 maxlen: 24
185.201.252.0/24 maxlen: 24
185.204.109.0/24 maxlen: 24
185.232.164.0/24 maxlen: 24
185.235.128.0/24 maxlen: 24
185.235.129.0/24 maxlen: 24
185.235.130.0/24 maxlen: 24
185.235.131.0/24 maxlen: 24
185.241.52.0/24 maxlen: 24
185.241.53.0/24 maxlen: 24
185.241.54.0/24 maxlen: 24
185.241.55.0/24 maxlen: 24
185.244.216.0/22 maxlen: 22
185.244.216.0/24 maxlen: 24
185.244.217.0/24 maxlen: 24
185.244.218.0/24 maxlen: 24
185.244.219.0/24 maxlen: 24
185.250.204.0/24 maxlen: 24
185.250.205.0/24 maxlen: 24
185.250.206.0/24 maxlen: 24
185.250.207.0/24 maxlen: 24
193.22.21.0/24 maxlen: 24
193.56.8.0/24 maxlen: 24
193.163.7.0/24 maxlen: 24
193.163.113.0/24 maxlen: 24
194.29.53.0/24 maxlen: 24
212.8.244.0/24 maxlen: 24
212.8.246.0/24 maxlen: 24
212.23.221.0/24 maxlen: 24
212.86.101.0/24 maxlen: 24
212.86.102.0/24 maxlen: 24
212.86.108.0/24 maxlen: 24
212.86.109.0/24 maxlen: 24
212.86.114.0/24 maxlen: 24
212.86.115.0/24 maxlen: 24
212.162.152.0/22 maxlen: 24
213.166.68.0/24 maxlen: 24
213.166.69.0/24 maxlen: 24
213.166.70.0/24 maxlen: 24
213.166.71.0/24 maxlen: 24
2a07:5980::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 26 May 2024 18:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7c:4b:12:4e:e4:46:a6:ad:57:12:61:b7:42:f7:ee:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Validity
Not Before: May 15 12:47:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=90714ba3c5ed2256c92dadec4a652856a93821ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:69:6c:1f:92:d1:5e:e1:d7:15:15:69:66:45:
fb:99:6d:65:da:38:4e:c1:e4:fe:78:a9:ec:b2:a7:
f2:18:86:18:1b:25:f2:65:c3:f4:99:7c:2b:f9:81:
f8:c1:88:7a:98:13:f2:dc:52:af:f4:9e:14:eb:96:
2b:99:af:91:03:31:8a:14:0c:2f:8b:b5:9c:df:1a:
dd:33:40:cd:fa:c1:58:d1:5d:38:5c:94:73:f1:b8:
f2:62:51:15:0a:54:bf:3d:ea:74:3d:bb:fc:d5:f5:
b7:b3:5e:a7:42:d9:62:17:2e:62:8e:b8:91:fd:49:
9a:49:fd:e8:10:77:22:bb:7e:6a:a7:be:97:b4:d6:
44:0b:72:d9:54:6c:ce:9a:54:ad:dc:04:40:ee:47:
8a:50:eb:52:c8:44:d6:98:1d:0a:68:53:60:3b:14:
27:e4:c6:5f:d8:36:9d:8a:d9:78:1b:e5:cf:a2:cb:
fd:1d:5b:d3:96:71:62:8c:e5:88:1b:46:e7:04:ae:
2c:36:e4:1b:03:dd:dc:09:d2:30:1b:57:38:6a:c8:
a8:ef:c6:36:4a:cd:0d:df:20:ff:6d:a0:13:0f:3d:
85:16:a6:fd:47:c1:09:c7:ec:7b:36:1b:e5:05:15:
b0:5b:44:fb:6b:b8:9c:b4:08:18:6d:51:a3:d7:dc:
09:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:71:4B:A3:C5:ED:22:56:C9:2D:AD:EC:4A:65:28:56:A9:38:21:FF
X509v3 Authority Key Identifier:
keyid:7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/kHFLo8XtIlbJLa3sSmUoVqk4If8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/f8rYnfG_maNvKQzD7w8ee00CdTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.224.0/22
45.82.68.0/22
45.82.176.0/22
45.87.0.0/22
45.136.84.0/22
45.137.64.0/22
46.18.107.0/24
46.21.250.0/24
77.220.212.0/22
81.31.197.0/24
91.201.25.0/24
91.208.127.0/24
91.209.226.0/24
91.228.56.0/24
94.124.78.0/24
178.159.38.0/23
178.159.42.0/23
185.23.108.0/24
185.51.121.0/24
185.51.246.0/23
185.93.6.0/24
185.107.237.0/24
185.201.252.0/24
185.204.109.0/24
185.232.164.0/24
185.235.128.0/22
185.241.52.0/22
185.244.216.0/22
185.250.204.0/22
193.22.21.0/24
193.56.8.0/24
193.163.7.0/24
193.163.113.0/24
194.29.53.0/24
212.8.244.0/24
212.8.246.0/24
212.23.221.0/24
212.86.101.0-212.86.102.255
212.86.108.0/23
212.86.114.0/23
212.162.152.0/22
213.166.68.0/22
IPv6:
2a07:5980::/29
Signature Algorithm: sha256WithRSAEncryption
4f:ab:50:a4:79:34:47:c2:08:b0:c1:02:af:ad:1a:93:fe:d1:
f6:6d:96:e0:c8:59:a9:4b:67:be:80:c7:15:37:71:e3:40:6d:
2b:f5:3e:67:77:bd:86:82:28:1b:00:f7:c3:53:17:37:7e:66:
8c:ce:61:76:d5:dc:08:bd:84:d5:10:c1:5e:a9:be:3a:17:7a:
1c:72:d0:5f:96:8a:ac:a9:52:ea:f5:4c:45:67:95:b6:7f:76:
7c:1a:5d:b6:83:40:3b:a1:7f:1b:18:fb:99:76:97:f3:7b:ac:
ae:8f:7d:5d:fc:10:c3:50:89:79:8b:31:75:16:58:e4:b3:7b:
eb:69:ca:e5:40:67:50:d6:5b:a7:a8:56:55:ae:de:88:b9:d5:
0b:b6:d1:b2:0e:ee:df:cb:18:2c:0e:96:8a:37:61:9f:9c:b4:
dc:30:81:12:93:12:ed:16:80:cb:0b:64:ef:07:59:d4:2c:f1:
70:fd:4a:6d:0f:43:56:e2:2c:e1:d3:d6:fc:e3:a9:32:d4:c4:
88:6a:2d:a8:d2:a5:5a:04:d8:6d:c0:1b:82:3c:d9:f9:96:49:
2d:4a:9b:5a:11:28:fa:fb:ca:58:64:81:e5:d4:d7:c5:c7:00:
4c:8d:c0:96:1c:26:fe:d4:93:a4:8d:13:87:45:ac:14:34:60:
cc:5c:65:88
-----BEGIN CERTIFICATE-----
MIIGFDCCBPygAwIBAgISAY98SxJO5EamrVcSYbdC9+7nMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdmY2FkODlkZjFiZjk5YTM2ZjI5MGNjM2VmMGYxZTdiNGQw
Mjc1MzMwHhcNMjQwNTE1MTI0NzI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MDcxNGJhM2M1ZWQyMjU2YzkyZGFkZWM0YTY1Mjg1NmE5MzgyMWZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA12lsH5LRXuHXFRVpZkX7mW1l2jhO
weT+eKnssqfyGIYYGyXyZcP0mXwr+YH4wYh6mBPy3FKv9J4U65Yrma+RAzGKFAwv
i7Wc3xrdM0DN+sFY0V04XJRz8bjyYlEVClS/Pep0Pbv81fW3s16nQtliFy5ijriR
/UmaSf3oEHciu35qp76XtNZEC3LZVGzOmlSt3ARA7keKUOtSyETWmB0KaFNgOxQn
5MZf2Daditl4G+XPosv9HVvTlnFijOWIG0bnBK4sNuQbA93cCdIwG1c4asio78Y2
Ss0N3yD/baATDz2FFqb9R8EJx+x7NhvlBRWwW0T7a7ictAgYbVGj19wJRQIDAQAB
o4IDIDCCAxwwHQYDVR0OBBYEFJBxS6PF7SJWyS2t7EplKFapOCH/MB8GA1UdIwQY
MBaAFH/K2J3xv5mjbykMw+8PHntNAnUzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZjhyWW5mR19tYU52S1F6RDd3OGVlMDBDZFRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS85ZjhiMTYtMjg0Zi00NTEyLWIzZGMt
MDE1ZDlmMWI0YjUwLzEva0hGTG84WHRJbGJKTGEzc1NtVW9WcWs0SWY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS85ZjhiMTYtMjg0Zi00NTEyLWIzZGMtMDE1ZDlmMWI0YjUw
LzEvZjhyWW5mR19tYU52S1F6RDd3OGVlMDBDZFRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBNAYIKwYBBQUHAQcBAf8EggEjMIIBHzCCAQwEAgABMIIB
BAMEAi1R4AMEAi1SRAMEAi1SsAMEAi1XAAMEAi2IVAMEAi2JQAMEAC4SawMEAC4V
+gMEAk3c1AMEAFEfxQMEAFvJGQMEAFvQfwMEAFvR4gMEAFvkOAMEAF58TgMEAbKf
JgMEAbKfKgMEALkXbAMEALkzeQMEAbkz9gMEALldBgMEALlr7QMEALnJ/AMEALnM
bQMEALnopAMEArnrgAMEArnxNAMEArn02AMEArn6zAMEAMEWFQMEAME4CAMEAMGj
BwMEAMGjcQMEAMIdNQMEANQI9AMEANQI9gMEANQX3TAMAwQA1FZlAwQA1FZmAwQB
1FZsAwQB1FZyAwQC1KKYAwQC1aZEMA0EAgACMAcDBQMqB1mAMA0GCSqGSIb3DQEB
CwUAA4IBAQBPq1CkeTRHwgiwwQKvrRqT/tH2bZbgyFmpS2e+gMcVN3HjQG0r9T5n
d72GgigbAPfDUxc3fmaMzmF21dwIvYTVEMFeqb46F3occtBfloqsqVLq9UxFZ5W2
f3Z8Gl22g0A7oX8bGPuZdpfze6yuj31d/BDDUIl5izF1Fljks3vracrlQGdQ1lun
qFZVrt6IudULttGyDu7fyxgsDpaKN2GfnLTcMIESkxLtFoDLC2TvB1nULPFw/Upt
D0NW4izh09b846ky1MSIai2o0qVaBNhtwBuCPNn5lkktSptaESj6+8pYZIHl1NfF
xwBMjcCWHCb+1JOkjROHRawUNGDMXGWI
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:06 2025 by rpki-client