Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/lSKcDHfVVSBjhSNyo7wgY_WKn1Y.roa
File: lSKcDHfVVSBjhSNyo7wgY_WKn1Y.roa (raw, json)
Hash identifier: v2CxtaEuGgrpCfNulIlhdk8kV57kcKQexanOolTaMk8=
Subject key identifier: 95:22:9C:0C:77:D5:55:20:63:85:23:72:A3:BC:20:63:F5:8A:9F:56
Certificate issuer: /CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Certificate serial: 0190264F609AA71F20B37D24CA87A41818CD
Authority key identifier: 7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/lSKcDHfVVSBjhSNyo7wgY_WKn1Y.roa
Signing time: Mon 17 Jun 2024 13:07:34 +0000
ROA not before: Mon 17 Jun 2024 13:07:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204601
IP address blocks: 45.81.224.0/22 maxlen: 22
45.82.68.0/22 maxlen: 22
45.82.176.0/22 maxlen: 22
45.87.0.0/22 maxlen: 22
45.136.84.0/24 maxlen: 24
45.136.85.0/24 maxlen: 24
45.136.86.0/24 maxlen: 24
45.136.87.0/24 maxlen: 24
45.137.64.0/22 maxlen: 22
46.18.107.0/24 maxlen: 24
46.21.250.0/24 maxlen: 24
77.220.214.0/24 maxlen: 24
77.220.215.0/24 maxlen: 24
81.31.197.0/24 maxlen: 24
91.201.25.0/24 maxlen: 24
91.208.127.0/24 maxlen: 24
91.209.226.0/24 maxlen: 24
91.228.56.0/24 maxlen: 24
94.124.78.0/24 maxlen: 24
178.159.38.0/24 maxlen: 24
178.159.39.0/24 maxlen: 24
178.159.42.0/24 maxlen: 24
178.159.43.0/24 maxlen: 24
185.23.108.0/24 maxlen: 24
185.51.121.0/24 maxlen: 24
185.51.246.0/24 maxlen: 24
185.51.247.0/24 maxlen: 24
185.107.237.0/24 maxlen: 24
185.204.109.0/24 maxlen: 24
185.232.164.0/24 maxlen: 24
185.235.128.0/24 maxlen: 24
185.235.129.0/24 maxlen: 24
185.235.130.0/24 maxlen: 24
185.235.131.0/24 maxlen: 24
185.241.52.0/24 maxlen: 24
185.241.53.0/24 maxlen: 24
185.241.54.0/24 maxlen: 24
185.241.55.0/24 maxlen: 24
185.244.216.0/22 maxlen: 22
185.244.216.0/24 maxlen: 24
185.244.217.0/24 maxlen: 24
185.244.218.0/24 maxlen: 24
185.244.219.0/24 maxlen: 24
185.250.204.0/24 maxlen: 24
185.250.205.0/24 maxlen: 24
185.250.206.0/24 maxlen: 24
185.250.207.0/24 maxlen: 24
193.22.21.0/24 maxlen: 24
193.56.8.0/24 maxlen: 24
193.163.7.0/24 maxlen: 24
193.163.113.0/24 maxlen: 24
194.29.53.0/24 maxlen: 24
212.8.244.0/24 maxlen: 24
212.8.246.0/24 maxlen: 24
212.23.221.0/24 maxlen: 24
212.86.101.0/24 maxlen: 24
212.86.102.0/24 maxlen: 24
212.86.108.0/24 maxlen: 24
212.86.109.0/24 maxlen: 24
212.162.152.0/22 maxlen: 24
213.166.68.0/24 maxlen: 24
213.166.69.0/24 maxlen: 24
213.166.70.0/24 maxlen: 24
213.166.71.0/24 maxlen: 24
2a07:5980::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 26 Jun 2024 13:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:26:4f:60:9a:a7:1f:20:b3:7d:24:ca:87:a4:18:18:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Validity
Not Before: Jun 17 13:07:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=95229c0c77d5552063852372a3bc2063f58a9f56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:11:0a:ba:4e:23:92:8f:f9:d0:a7:8b:5f:19:
e9:26:9b:5e:09:83:ef:37:9b:06:72:fa:52:c9:ef:
1d:f7:aa:b8:0c:d9:7d:ec:38:a1:39:4c:b8:ff:4e:
71:29:d1:a2:cc:ea:df:df:37:1a:26:54:30:6c:b5:
91:7b:59:f6:b9:9b:1b:f7:56:88:33:76:6c:b7:3f:
11:32:3b:56:50:f8:55:83:fd:a2:37:e0:a7:b7:3d:
e5:a8:b3:97:4e:9a:01:5c:70:35:ce:58:63:5e:7b:
dd:17:b1:c9:1f:43:78:f3:ca:a1:a9:a3:82:fe:98:
aa:2e:da:1d:fa:7a:40:1f:8b:56:26:5c:8d:2e:c2:
d9:51:27:fa:a0:6e:fa:7e:07:b4:cd:00:2d:d9:34:
b3:68:87:9b:13:36:25:07:0e:5a:75:93:1b:a6:1e:
ec:05:f3:bd:99:da:d6:a1:e5:bd:72:c0:d0:bd:ac:
82:99:39:94:b2:88:5f:2a:1f:74:a5:3a:50:d1:25:
30:87:44:8d:91:3c:0e:68:3e:14:84:0e:da:98:c7:
b3:16:60:b1:b0:d9:fa:63:72:93:e2:8e:2e:b0:51:
a5:2d:8e:49:58:0d:af:15:20:3f:26:87:a6:10:ef:
3b:83:81:ee:9c:81:85:b8:65:c7:ed:04:42:1e:39:
a5:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:22:9C:0C:77:D5:55:20:63:85:23:72:A3:BC:20:63:F5:8A:9F:56
X509v3 Authority Key Identifier:
keyid:7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/lSKcDHfVVSBjhSNyo7wgY_WKn1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/f8rYnfG_maNvKQzD7w8ee00CdTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.224.0/22
45.82.68.0/22
45.82.176.0/22
45.87.0.0/22
45.136.84.0/22
45.137.64.0/22
46.18.107.0/24
46.21.250.0/24
77.220.214.0/23
81.31.197.0/24
91.201.25.0/24
91.208.127.0/24
91.209.226.0/24
91.228.56.0/24
94.124.78.0/24
178.159.38.0/23
178.159.42.0/23
185.23.108.0/24
185.51.121.0/24
185.51.246.0/23
185.107.237.0/24
185.204.109.0/24
185.232.164.0/24
185.235.128.0/22
185.241.52.0/22
185.244.216.0/22
185.250.204.0/22
193.22.21.0/24
193.56.8.0/24
193.163.7.0/24
193.163.113.0/24
194.29.53.0/24
212.8.244.0/24
212.8.246.0/24
212.23.221.0/24
212.86.101.0-212.86.102.255
212.86.108.0/23
212.162.152.0/22
213.166.68.0/22
IPv6:
2a07:5980::/29
Signature Algorithm: sha256WithRSAEncryption
28:84:6f:a1:5c:30:47:15:51:82:4f:7f:37:bd:15:36:41:2b:
79:f2:51:9f:3b:4f:ed:cc:c7:4f:d0:c5:49:4b:a1:69:1e:49:
5e:d5:21:57:82:9a:02:b3:06:84:fa:2b:53:0c:30:ed:49:ca:
a9:a9:7f:a0:d6:21:de:95:6e:ec:f4:17:77:c5:c5:72:f0:88:
9c:33:dd:5f:2c:5f:d2:8f:6c:82:77:4e:9a:34:93:48:91:36:
44:e1:00:c7:61:ea:be:f4:9e:73:8a:bf:0e:fa:1f:fa:39:e2:
f6:96:19:cb:8e:0e:fc:73:8c:3c:6a:5e:0f:6b:27:d5:5c:8b:
f3:09:2f:31:f2:bf:99:24:a8:be:dc:e1:5f:79:b4:21:d4:1c:
92:c0:82:40:b3:5e:37:a0:f1:ad:6a:56:14:4f:f3:43:f3:1a:
c7:0e:a7:d9:07:2b:d0:51:7f:88:68:0f:43:a9:1c:b7:74:f7:
86:6e:ea:fb:fd:a0:8c:23:5d:b6:d8:74:fc:bb:5a:e2:a7:84:
ad:81:cc:90:25:d6:10:40:c9:30:a4:43:26:4f:d7:86:90:c3:
cd:cc:89:7d:e6:7d:f6:7f:94:bd:92:7a:01:c9:a6:51:30:5a:
9b:4f:19:62:e5:49:1f:83:c8:07:24:d1:f3:a2:6b:0a:10:1e:
04:8e:1d:cb
-----BEGIN CERTIFICATE-----
MIIGADCCBOigAwIBAgISAZAmT2Capx8gs30kyoekGBjNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdmY2FkODlkZjFiZjk5YTM2ZjI5MGNjM2VmMGYxZTdiNGQw
Mjc1MzMwHhcNMjQwNjE3MTMwNzM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NTIyOWMwYzc3ZDU1NTIwNjM4NTIzNzJhM2JjMjA2M2Y1OGE5ZjU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzBEKuk4jko/50KeLXxnpJpteCYPv
N5sGcvpSye8d96q4DNl97DihOUy4/05xKdGizOrf3zcaJlQwbLWRe1n2uZsb91aI
M3Zstz8RMjtWUPhVg/2iN+Cntz3lqLOXTpoBXHA1zlhjXnvdF7HJH0N488qhqaOC
/piqLtod+npAH4tWJlyNLsLZUSf6oG76fge0zQAt2TSzaIebEzYlBw5adZMbph7s
BfO9mdrWoeW9csDQvayCmTmUsohfKh90pTpQ0SUwh0SNkTwOaD4UhA7amMezFmCx
sNn6Y3KT4o4usFGlLY5JWA2vFSA/JoemEO87g4HunIGFuGXH7QRCHjmlawIDAQAB
o4IDDDCCAwgwHQYDVR0OBBYEFJUinAx31VUgY4UjcqO8IGP1ip9WMB8GA1UdIwQY
MBaAFH/K2J3xv5mjbykMw+8PHntNAnUzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZjhyWW5mR19tYU52S1F6RDd3OGVlMDBDZFRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS85ZjhiMTYtMjg0Zi00NTEyLWIzZGMt
MDE1ZDlmMWI0YjUwLzEvbFNLY0RIZlZWU0JqaFNOeW83d2dZX1dLbjFZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS85ZjhiMTYtMjg0Zi00NTEyLWIzZGMtMDE1ZDlmMWI0YjUw
LzEvZjhyWW5mR19tYU52S1F6RDd3OGVlMDBDZFRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBIAYIKwYBBQUHAQcBAf8EggEPMIIBCzCB+QQCAAEwgfID
BAItUeADBAItUkQDBAItUrADBAItVwADBAItiFQDBAItiUADBAAuEmsDBAAuFfoD
BAFN3NYDBABRH8UDBABbyRkDBABb0H8DBABb0eIDBABb5DgDBABefE4DBAGynyYD
BAGynyoDBAC5F2wDBAC5M3kDBAG5M/YDBAC5a+0DBAC5zG0DBAC56KQDBAK564AD
BAK58TQDBAK59NgDBAK5+swDBADBFhUDBADBOAgDBADBowcDBADBo3EDBADCHTUD
BADUCPQDBADUCPYDBADUF90wDAMEANRWZQMEANRWZgMEAdRWbAMEAtSimAMEAtWm
RDANBAIAAjAHAwUDKgdZgDANBgkqhkiG9w0BAQsFAAOCAQEAKIRvoVwwRxVRgk9/
N70VNkErefJRnztP7czHT9DFSUuhaR5JXtUhV4KaArMGhPorUwww7UnKqal/oNYh
3pVu7PQXd8XFcvCInDPdXyxf0o9sgndOmjSTSJE2ROEAx2HqvvSec4q/Dvof+jni
9pYZy44O/HOMPGpeD2sn1VyL8wkvMfK/mSSovtzhX3m0IdQcksCCQLNeN6DxrWpW
FE/zQ/Maxw6n2Qcr0FF/iGgPQ6kct3T3hm7q+/2gjCNdtth0/Lta4qeErYHMkCXW
EEDJMKRDJk/XhpDDzcyJfeZ99n+UvZJ6AcmmUTBam08ZYuVJH4PIByTR86JrChAe
BI4dyw==
-----END CERTIFICATE-----
Generated at Wed Jun 26 18:22:50 2024 by rpki-client on console-ams.rpki-client.org