Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/sFPnPLLeTjOlAadxlKF3-lbCigo.roa
File: sFPnPLLeTjOlAadxlKF3-lbCigo.roa (raw, json)
Hash identifier: 3X/dg4cYU4tqkr8WA2XEYdru+dahZ7Z3IJujHXA3oug=
Subject key identifier: B0:53:E7:3C:B2:DE:4E:33:A5:01:A7:71:94:A1:77:FA:56:C2:8A:0A
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 01916C1E7CA0A24A9B41308AE099C5614362
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/sFPnPLLeTjOlAadxlKF3-lbCigo.roa
Signing time: Mon 19 Aug 2024 19:30:22 +0000
ROA not before: Mon 19 Aug 2024 19:30:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 5.42.218.0/24 maxlen: 24
31.41.253.0/24 maxlen: 24
45.87.124.0/24 maxlen: 24
45.87.125.0/24 maxlen: 24
45.87.127.0/24 maxlen: 24
45.128.124.0/24 maxlen: 24
45.128.128.0/24 maxlen: 24
45.129.198.0/24 maxlen: 24
62.3.7.0/24 maxlen: 24
62.3.31.0/24 maxlen: 24
77.72.83.0/24 maxlen: 24
77.72.84.0/24 maxlen: 24
84.252.69.0/24 maxlen: 24
88.151.11.0/24 maxlen: 24
88.151.112.0/24 maxlen: 24
88.151.115.0/24 maxlen: 24
88.218.184.0/24 maxlen: 24
88.218.185.0/24 maxlen: 24
88.218.186.0/24 maxlen: 24
88.218.187.0/24 maxlen: 24
91.190.158.0/24 maxlen: 24
91.209.31.0/24 maxlen: 24
91.210.68.0/24 maxlen: 24
91.210.71.0/24 maxlen: 24
91.212.169.0/24 maxlen: 24
91.228.215.0/24 maxlen: 24
91.239.212.0/24 maxlen: 24
91.239.213.0/24 maxlen: 24
94.143.230.0/24 maxlen: 24
109.205.62.0/24 maxlen: 24
146.19.111.0/24 maxlen: 24
146.19.120.0/24 maxlen: 24
146.255.186.0/24 maxlen: 24
176.116.17.0/24 maxlen: 24
176.118.38.0/24 maxlen: 24
176.126.98.0/24 maxlen: 24
176.126.102.0/24 maxlen: 24
185.109.236.0/24 maxlen: 24
185.109.237.0/24 maxlen: 24
185.109.239.0/24 maxlen: 24
185.128.42.0/24 maxlen: 24
185.128.43.0/24 maxlen: 24
185.128.224.0/24 maxlen: 24
185.209.50.0/24 maxlen: 24
185.211.168.0/24 maxlen: 24
185.211.169.0/24 maxlen: 24
185.211.171.0/24 maxlen: 24
185.214.164.0/24 maxlen: 24
185.214.165.0/24 maxlen: 24
185.214.167.0/24 maxlen: 24
193.0.62.0/24 maxlen: 24
193.17.65.0/24 maxlen: 24
193.33.188.0/24 maxlen: 24
193.104.177.0/24 maxlen: 24
193.200.61.0/24 maxlen: 24
193.228.129.0/24 maxlen: 24
193.228.131.0/24 maxlen: 24
194.59.222.0/24 maxlen: 24
194.60.76.0/24 maxlen: 24
194.110.251.0/24 maxlen: 24
195.35.105.0/24 maxlen: 24
195.64.103.0/24 maxlen: 24
195.69.161.0/24 maxlen: 24
195.69.162.0/24 maxlen: 24
195.211.164.0/24 maxlen: 24
212.6.36.0/24 maxlen: 24
212.107.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Aug 2024 18:11:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6c:1e:7c:a0:a2:4a:9b:41:30:8a:e0:99:c5:61:43:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Aug 19 19:30:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b053e73cb2de4e33a501a77194a177fa56c28a0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ad:4e:47:a8:87:0b:70:8a:8a:31:70:ac:98:
a3:a9:46:d5:38:1a:f0:c7:29:eb:98:99:f4:35:29:
c3:7a:f6:30:9d:1b:f5:78:0f:7c:6a:cc:93:32:79:
8c:3d:4c:a6:11:37:7c:91:5b:f7:9e:c7:c2:85:cc:
d6:be:34:2b:b7:00:fb:fd:d8:54:d5:18:60:17:84:
32:37:ac:c7:c9:8f:01:b3:34:87:8b:da:30:0c:cc:
5a:99:b9:e3:0c:fb:66:55:7f:06:90:91:cb:a9:c8:
d1:ad:12:8e:04:cc:c3:2d:87:1b:67:d9:34:d9:56:
c1:21:3e:59:af:6d:b0:1e:4d:64:db:67:47:75:59:
3d:f0:fb:e0:f8:ec:88:80:9e:9f:3b:4c:b9:de:f4:
c3:59:00:8c:8a:f2:4e:1d:92:d7:19:32:94:d1:db:
38:6e:25:c7:2b:57:e2:9d:ed:84:5d:2a:19:d6:1a:
5b:89:74:d1:7e:2b:17:83:fe:fd:c5:9d:f6:43:5f:
27:2c:6d:2c:fa:f3:a5:e3:2c:f9:03:d9:61:d8:82:
81:7a:fd:f3:20:0d:d8:6b:74:e7:55:0b:43:ee:f5:
0b:65:f1:29:7f:85:d9:a4:ec:bd:7b:e0:8a:f7:97:
74:99:ef:10:ad:ec:0d:77:9b:c8:b7:31:bb:d1:c9:
13:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:53:E7:3C:B2:DE:4E:33:A5:01:A7:71:94:A1:77:FA:56:C2:8A:0A
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/sFPnPLLeTjOlAadxlKF3-lbCigo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.218.0/24
31.41.253.0/24
45.87.124.0/23
45.87.127.0/24
45.128.124.0/24
45.128.128.0/24
45.129.198.0/24
62.3.7.0/24
62.3.31.0/24
77.72.83.0-77.72.84.255
84.252.69.0/24
88.151.11.0/24
88.151.112.0/24
88.151.115.0/24
88.218.184.0/22
91.190.158.0/24
91.209.31.0/24
91.210.68.0/24
91.210.71.0/24
91.212.169.0/24
91.228.215.0/24
91.239.212.0/23
94.143.230.0/24
109.205.62.0/24
146.19.111.0/24
146.19.120.0/24
146.255.186.0/24
176.116.17.0/24
176.118.38.0/24
176.126.98.0/24
176.126.102.0/24
185.109.236.0/23
185.109.239.0/24
185.128.42.0/23
185.128.224.0/24
185.209.50.0/24
185.211.168.0/23
185.211.171.0/24
185.214.164.0/23
185.214.167.0/24
193.0.62.0/24
193.17.65.0/24
193.33.188.0/24
193.104.177.0/24
193.200.61.0/24
193.228.129.0/24
193.228.131.0/24
194.59.222.0/24
194.60.76.0/24
194.110.251.0/24
195.35.105.0/24
195.64.103.0/24
195.69.161.0-195.69.162.255
195.211.164.0/24
212.6.36.0/24
212.107.25.0/24
Signature Algorithm: sha256WithRSAEncryption
80:ea:ad:49:18:4c:38:79:7d:e3:50:b5:7a:48:7d:a3:cc:cc:
5a:c5:4a:e5:4e:ac:a6:9c:f8:76:3a:a8:e3:64:4d:47:ec:4b:
20:c8:02:5d:02:aa:a8:f2:74:d3:7a:4d:1b:a9:98:2c:e7:92:
8f:f8:50:62:c3:15:fb:b5:64:91:a9:85:d7:4d:ed:e8:d0:4e:
15:99:0c:05:5d:37:8b:b1:c4:50:0b:10:92:c2:49:87:5a:d8:
13:eb:7a:8a:c6:62:8e:bf:bc:ed:ca:16:58:2e:5e:f9:c1:51:
1f:e4:d0:23:56:62:43:fd:06:d7:75:6c:1d:bf:2c:81:5a:ac:
24:8c:f5:56:ef:88:ba:7b:7a:7d:6f:6c:ea:3c:4a:19:0e:f5:
f7:46:65:a3:c2:d5:cd:17:75:a7:22:1f:10:a7:ac:be:04:93:
cc:b2:04:f1:32:bd:20:d7:78:b6:23:9b:10:89:20:5a:bc:c2:
f9:16:e7:b4:c1:18:4f:cd:63:8a:16:87:ab:39:34:23:7a:95:
68:ec:5d:6a:4a:ed:e3:ac:f7:56:f8:41:e3:65:a5:b0:df:65:
74:3d:23:b1:86:ea:59:cb:8f:0b:4b:c4:af:21:f4:99:09:8e:
33:f6:dc:13:60:ad:f6:be:35:c5:94:cf:3f:8c:c1:78:21:17:
5c:95:e3:58
-----BEGIN CERTIFICATE-----
MIIGYTCCBUmgAwIBAgISAZFsHnygokqbQTCK4JnFYUNiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4
ZmNjNGMwHhcNMjQwODE5MTkzMDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMDUzZTczY2IyZGU0ZTMzYTUwMWE3NzE5NGExNzdmYTU2YzI4YTBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAya1OR6iHC3CKijFwrJijqUbVOBrw
xynrmJn0NSnDevYwnRv1eA98asyTMnmMPUymETd8kVv3nsfChczWvjQrtwD7/dhU
1RhgF4QyN6zHyY8BszSHi9owDMxambnjDPtmVX8GkJHLqcjRrRKOBMzDLYcbZ9k0
2VbBIT5Zr22wHk1k22dHdVk98Pvg+OyIgJ6fO0y53vTDWQCMivJOHZLXGTKU0ds4
biXHK1fine2EXSoZ1hpbiXTRfisXg/79xZ32Q18nLG0s+vOl4yz5A9lh2IKBev3z
IA3Ya3TnVQtD7vULZfEpf4XZpOy9e+CK95d0me8QrewNd5vItzG70ckTDwIDAQAB
o4IDbTCCA2kwHQYDVR0OBBYEFLBT5zyy3k4zpQGncZShd/pWwooKMB8GA1UdIwQY
MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt
MjM5ZDJmZTM5OGIxLzEvc0ZQblBMTGVUak9sQWFkeGxLRjMtbGJDaWdvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx
LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBgQYIKwYBBQUHAQcBAf8EggFwMIIBbDCCAWgEAgABMIIB
YAMEAAUq2gMEAB8p/QMEAS1XfAMEAC1XfwMEAC2AfAMEAC2AgAMEAC2BxgMEAD4D
BwMEAD4DHzAMAwQATUhTAwQATUhUAwQAVPxFAwQAWJcLAwQAWJdwAwQAWJdzAwQC
WNq4AwQAW76eAwQAW9EfAwQAW9JEAwQAW9JHAwQAW9SpAwQAW+TXAwQBW+/UAwQA
Xo/mAwQAbc0+AwQAkhNvAwQAkhN4AwQAkv+6AwQAsHQRAwQAsHYmAwQAsH5iAwQA
sH5mAwQBuW3sAwQAuW3vAwQBuYAqAwQAuYDgAwQAudEyAwQBudOoAwQAudOrAwQB
udakAwQAudanAwQAwQA+AwQAwRFBAwQAwSG8AwQAwWixAwQAwcg9AwQAweSBAwQA
weSDAwQAwjveAwQAwjxMAwQAwm77AwQAwyNpAwQAw0BnMAwDBADDRaEDBADDRaID
BADD06QDBADUBiQDBADUaxkwDQYJKoZIhvcNAQELBQADggEBAIDqrUkYTDh5feNQ
tXpIfaPMzFrFSuVOrKac+HY6qONkTUfsSyDIAl0CqqjydNN6TRupmCznko/4UGLD
Ffu1ZJGphddN7ejQThWZDAVdN4uxxFALEJLCSYda2BPreorGYo6/vO3KFlguXvnB
UR/k0CNWYkP9Btd1bB2/LIFarCSM9VbviLp7en1vbOo8ShkO9fdGZaPC1c0Xdaci
HxCnrL4Ek8yyBPEyvSDXeLYjmxCJIFq8wvkW57TBGE/NY4oWh6s5NCN6lWjsXWpK
7eOs91b4QeNlpbDfZXQ9I7GG6lnLjwtLxK8h9JkJjjP23BNgrfa+NcWUzz+MwXgh
F1yV41g=
-----END CERTIFICATE-----
Generated at Wed Aug 21 22:37:05 2024 by rpki-client on console-fra.rpki-client.org