Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/0CtaujKqXc8jwpWCdgNhEKx4QOE.roa
File: 0CtaujKqXc8jwpWCdgNhEKx4QOE.roa (raw, json)
Hash identifier: op+J/dUpH1NFdlLsvEMLOBUnAJYOCUair8gid4NSXvY=
Subject key identifier: D0:2B:5A:BA:32:AA:5D:CF:23:C2:95:82:76:03:61:10:AC:78:40:E1
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 01926614C0198F534E8DDC03D62EA1119FAF
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/0CtaujKqXc8jwpWCdgNhEKx4QOE.roa
Signing time: Mon 07 Oct 2024 08:24:48 +0000
ROA not before: Mon 07 Oct 2024 08:24:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206065
IP address blocks: 31.217.208.0/21 maxlen: 24
37.19.80.0/20 maxlen: 24
37.114.192.0/18 maxlen: 24
37.114.192.0/20 maxlen: 24
37.114.204.0/23 maxlen: 23
37.114.208.0/21 maxlen: 24
37.114.216.0/22 maxlen: 24
37.114.220.0/22 maxlen: 24
37.114.224.0/22 maxlen: 24
37.114.228.0/22 maxlen: 24
37.114.232.0/21 maxlen: 24
37.114.240.0/22 maxlen: 24
37.114.244.0/22 maxlen: 24
37.114.246.0/23 maxlen: 24
37.114.248.0/21 maxlen: 24
37.114.252.0/24 maxlen: 24
37.114.253.0/24 maxlen: 24
37.114.254.0/24 maxlen: 24
37.114.255.0/24 maxlen: 24
37.221.0.0/18 maxlen: 24
37.235.16.0/20 maxlen: 24
37.235.19.0/24 maxlen: 24
45.128.140.0/22 maxlen: 24
45.144.124.0/22 maxlen: 24
46.32.5.0/24 maxlen: 24
46.32.9.0/24 maxlen: 24
46.32.14.0/24 maxlen: 24
46.34.164.0/22 maxlen: 24
46.34.168.0/21 maxlen: 24
46.34.178.0/23 maxlen: 24
46.34.180.0/22 maxlen: 24
46.34.184.0/22 maxlen: 24
46.34.188.0/22 maxlen: 24
78.158.182.0/23 maxlen: 24
79.132.200.0/22 maxlen: 24
79.132.213.0/24 maxlen: 24
79.132.217.0/24 maxlen: 24
79.132.218.0/23 maxlen: 24
79.132.220.0/23 maxlen: 24
80.71.113.0/24 maxlen: 24
80.71.122.0/23 maxlen: 24
80.71.124.0/23 maxlen: 24
80.71.127.0/24 maxlen: 24
81.29.243.0/24 maxlen: 24
81.29.248.0/21 maxlen: 24
81.29.250.0/23 maxlen: 24
81.29.250.0/24 maxlen: 24
81.29.251.0/24 maxlen: 24
81.29.254.0/24 maxlen: 24
81.91.144.0/20 maxlen: 24
81.91.144.0/22 maxlen: 24
81.91.148.0/23 maxlen: 24
81.91.150.0/23 maxlen: 24
81.91.152.0/21 maxlen: 24
86.109.32.0/23 maxlen: 24
86.109.36.0/22 maxlen: 24
86.109.41.0/24 maxlen: 24
86.109.46.0/23 maxlen: 24
86.109.56.0/22 maxlen: 24
86.109.58.0/23 maxlen: 24
86.109.62.0/23 maxlen: 24
87.247.180.0/23 maxlen: 24
91.184.64.0/20 maxlen: 24
92.61.184.0/21 maxlen: 24
92.119.68.0/22 maxlen: 24
94.139.160.0/20 maxlen: 24
109.230.64.0/21 maxlen: 24
109.230.80.0/20 maxlen: 24
109.230.80.0/22 maxlen: 24
109.230.88.0/21 maxlen: 24
109.230.88.0/23 maxlen: 24
176.221.65.0/24 maxlen: 24
185.12.62.0/24 maxlen: 24
185.21.76.0/22 maxlen: 24
185.30.76.0/22 maxlen: 24
185.40.240.0/22 maxlen: 24
185.45.188.0/22 maxlen: 24
185.70.60.0/22 maxlen: 24
185.82.164.0/23 maxlen: 24
185.104.228.0/24 maxlen: 24
185.133.152.0/22 maxlen: 24
185.142.233.0/24 maxlen: 24
185.142.234.0/23 maxlen: 24
185.172.0.0/22 maxlen: 24
185.190.20.0/22 maxlen: 24
185.197.68.0/22 maxlen: 24
185.208.150.0/23 maxlen: 24
188.75.92.0/24 maxlen: 24
188.75.94.0/24 maxlen: 24
188.75.102.0/23 maxlen: 24
188.75.107.0/24 maxlen: 24
188.75.110.0/23 maxlen: 24
188.75.113.0/24 maxlen: 24
188.75.114.0/23 maxlen: 24
188.75.116.0/23 maxlen: 24
188.75.122.0/23 maxlen: 24
188.121.128.0/19 maxlen: 24
188.121.128.0/23 maxlen: 24
188.121.128.0/24 maxlen: 24
188.121.136.0/21 maxlen: 24
188.121.144.0/20 maxlen: 24
188.121.144.0/22 maxlen: 24
188.121.146.0/24 maxlen: 24
188.121.148.0/23 maxlen: 24
188.121.152.0/22 maxlen: 24
188.121.156.0/24 maxlen: 24
188.121.157.0/24 maxlen: 24
188.121.158.0/23 maxlen: 24
188.136.174.0/24 maxlen: 24
188.136.176.0/21 maxlen: 24
188.136.184.0/24 maxlen: 24
188.136.186.0/23 maxlen: 24
188.136.188.0/23 maxlen: 24
188.136.202.0/23 maxlen: 24
188.136.208.0/24 maxlen: 24
188.136.212.0/22 maxlen: 24
188.136.216.0/22 maxlen: 24
188.136.220.0/23 maxlen: 24
188.136.222.0/23 maxlen: 24
213.195.16.0/22 maxlen: 24
213.207.192.0/20 maxlen: 24
213.207.193.0/24 maxlen: 24
213.207.194.0/24 maxlen: 24
213.207.201.0/24 maxlen: 24
217.66.208.0/24 maxlen: 24
217.66.211.0/24 maxlen: 24
2a0c:100::/29 maxlen: 48
Validation: Failed, certificate revoked on Tue 12 Nov 2024 07:39:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:66:14:c0:19:8f:53:4e:8d:dc:03:d6:2e:a1:11:9f:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Oct 7 08:24:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d02b5aba32aa5dcf23c2958276036110ac7840e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:22:2f:05:cb:6a:da:3d:c8:60:4b:02:9e:2f:
0e:0b:f0:40:19:cb:3e:5f:d8:4a:c3:21:9f:ef:11:
20:36:ea:52:14:d9:d2:91:a0:b9:39:91:ee:e2:d9:
69:d8:b0:b2:d0:97:87:07:3a:cb:a6:a2:cf:2f:cf:
eb:5e:62:41:2c:8c:d8:c2:de:3b:82:80:a4:c4:98:
4f:a1:18:37:1e:93:64:bb:38:06:ae:0a:a3:ea:28:
75:0d:6f:4a:da:7f:db:95:22:40:36:4b:ef:f7:e0:
68:b8:6e:60:65:a6:0f:c3:a6:9e:31:44:ae:6a:cf:
c6:66:9e:9b:61:9e:59:d9:3e:da:db:51:99:d4:55:
d7:d2:11:48:26:03:e8:98:71:4e:0b:95:50:a0:3b:
d7:fc:05:e1:7b:fd:04:e7:00:92:5e:2c:b3:61:ce:
5e:60:46:26:b5:ab:c2:2c:2a:82:2e:39:ca:4f:31:
6c:f0:e4:b2:00:10:bd:e6:17:fe:c4:02:ad:d7:18:
3e:13:d6:a6:05:cf:5f:be:09:f7:72:ef:2f:7e:28:
20:7e:07:02:c8:48:9d:6b:b4:30:90:6e:e9:ca:c1:
6e:c6:31:ee:d0:91:f9:10:43:f8:a6:d8:82:d8:ec:
77:6c:94:b1:41:e3:e7:88:8b:f7:e7:1e:f8:ef:e0:
e5:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:2B:5A:BA:32:AA:5D:CF:23:C2:95:82:76:03:61:10:AC:78:40:E1
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/0CtaujKqXc8jwpWCdgNhEKx4QOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.217.208.0/21
37.19.80.0/20
37.114.192.0/18
37.221.0.0/18
37.235.16.0/20
45.128.140.0/22
45.144.124.0/22
46.32.5.0/24
46.32.9.0/24
46.32.14.0/24
46.34.164.0-46.34.175.255
46.34.178.0-46.34.191.255
78.158.182.0/23
79.132.200.0/22
79.132.213.0/24
79.132.217.0-79.132.221.255
80.71.113.0/24
80.71.122.0-80.71.125.255
80.71.127.0/24
81.29.243.0/24
81.29.248.0/21
81.91.144.0/20
86.109.32.0/23
86.109.36.0/22
86.109.41.0/24
86.109.46.0/23
86.109.56.0/22
86.109.62.0/23
87.247.180.0/23
91.184.64.0/20
92.61.184.0/21
92.119.68.0/22
94.139.160.0/20
109.230.64.0/21
109.230.80.0/20
176.221.65.0/24
185.12.62.0/24
185.21.76.0/22
185.30.76.0/22
185.40.240.0/22
185.45.188.0/22
185.70.60.0/22
185.82.164.0/23
185.104.228.0/24
185.133.152.0/22
185.142.233.0-185.142.235.255
185.172.0.0/22
185.190.20.0/22
185.197.68.0/22
185.208.150.0/23
188.75.92.0/24
188.75.94.0/24
188.75.102.0/23
188.75.107.0/24
188.75.110.0/23
188.75.113.0-188.75.117.255
188.75.122.0/23
188.121.128.0/19
188.136.174.0/24
188.136.176.0-188.136.184.255
188.136.186.0-188.136.189.255
188.136.202.0/23
188.136.208.0/24
188.136.212.0-188.136.223.255
213.195.16.0/22
213.207.192.0/20
217.66.208.0/24
217.66.211.0/24
IPv6:
2a0c:100::/29
Signature Algorithm: sha256WithRSAEncryption
84:e0:ed:75:ae:53:62:e1:d4:08:39:5c:ee:b1:4f:68:fc:61:
bd:54:41:30:1e:b9:61:1b:6b:45:dd:88:14:d7:af:d9:79:b5:
c8:ec:d6:9c:89:22:e9:19:7a:3c:4b:cb:4c:ca:f1:1b:2d:31:
28:0b:ef:b8:a3:51:41:c8:26:9f:61:ee:09:3d:96:ad:ed:ec:
de:f8:07:b0:89:5e:86:88:c0:fe:f2:1b:ef:e7:16:07:dc:01:
e4:d5:9e:0c:bd:e2:64:f7:ad:7e:6a:b9:48:9d:0d:03:68:dd:
5a:e1:11:80:c0:44:a2:64:10:11:33:91:3e:4c:85:64:4e:92:
92:7d:bb:0e:95:f0:15:ec:e1:29:7e:61:77:c4:4c:de:ec:06:
1d:88:3f:39:d5:b7:e3:e1:ad:d6:42:71:6e:3c:22:e2:6b:bf:
1f:5f:20:53:8b:e8:5c:30:71:1e:6b:0d:b8:f8:4a:fe:29:d3:
42:a2:02:c1:6f:1f:08:f5:17:ea:9b:f1:9a:97:64:e2:c6:a6:
9a:c3:da:cb:3d:07:91:67:37:3a:5c:56:ca:f5:a8:44:a6:b9:
b0:c9:14:9d:5e:1e:d2:e8:d0:d7:8d:5a:90:48:de:90:c9:9e:
6f:a8:69:83:e3:c4:fc:5a:19:76:d3:3c:7b:2f:95:7e:95:ea:
fd:64:56:1f
-----BEGIN CERTIFICATE-----
MIIG8DCCBdigAwIBAgISAZJmFMAZj1NOjdwD1i6hEZ+vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViNjk4YzRiNjEyYWZlZTJjYmIxY2RkNTA5ZTRmMDI0NmZi
YjgwZTEwHhcNMjQxMDA3MDgyNDQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMDJiNWFiYTMyYWE1ZGNmMjNjMjk1ODI3NjAzNjExMGFjNzg0MGUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtyIvBctq2j3IYEsCni8OC/BAGcs+
X9hKwyGf7xEgNupSFNnSkaC5OZHu4tlp2LCy0JeHBzrLpqLPL8/rXmJBLIzYwt47
goCkxJhPoRg3HpNkuzgGrgqj6ih1DW9K2n/blSJANkvv9+BouG5gZaYPw6aeMUSu
as/GZp6bYZ5Z2T7a21GZ1FXX0hFIJgPomHFOC5VQoDvX/AXhe/0E5wCSXiyzYc5e
YEYmtavCLCqCLjnKTzFs8OSyABC95hf+xAKt1xg+E9amBc9fvgn3cu8vfiggfgcC
yEida7QwkG7pysFuxjHu0JH5EEP4ptiC2Ox3bJSxQePniIv35x747+DlAwIDAQAB
o4ID/DCCA/gwHQYDVR0OBBYEFNArWroyql3PI8KVgnYDYRCseEDhMB8GA1UdIwQY
MBaAFFtpjEthKv7iy7HN1Qnk8CRvu4DhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVzJtTVMyRXFfdUxMc2MzVkNlVHdKRy03Z09FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9jMTZmNTUtYjQ0ZC00MGMzLTlkYWMt
Y2MyZmFmZTNhOGI0LzEvMEN0YXVqS3FYYzhqd3BXQ2RnTmhFS3g0UU9FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9jMTZmNTUtYjQ0ZC00MGMzLTlkYWMtY2MyZmFmZTNhOGI0
LzEvVzJtTVMyRXFfdUxMc2MzVkNlVHdKRy03Z09FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIICEAYIKwYBBQUHAQcBAf8EggH/MIIB+zCCAegEAgABMIIB
4AMEAx/Z0AMEBCUTUAMEBiVywAMEBiXdAAMEBCXrEAMEAi2AjAMEAi2QfAMEAC4g
BQMEAC4gCQMEAC4gDjAMAwQCLiKkAwQELiKgMAwDBAEuIrIDBAYuIoADBAFOnrYD
BAJPhMgDBABPhNUwDAMEAE+E2QMEAU+E3AMEAFBHcTAMAwQBUEd6AwQBUEd8AwQA
UEd/AwQAUR3zAwQDUR34AwQEUVuQAwQBVm0gAwQCVm0kAwQAVm0pAwQBVm0uAwQC
Vm04AwQBVm0+AwQBV/e0AwQEW7hAAwQDXD24AwQCXHdEAwQEXougAwQDbeZAAwQE
beZQAwQAsN1BAwQAuQw+AwQCuRVMAwQCuR5MAwQCuSjwAwQCuS28AwQCuUY8AwQB
uVKkAwQAuWjkAwQCuYWYMAwDBAC5jukDBAK5jugDBAK5rAADBAK5vhQDBAK5xUQD
BAG50JYDBAC8S1wDBAC8S14DBAG8S2YDBAC8S2sDBAG8S24wDAMEALxLcQMEAbxL
dAMEAbxLegMEBbx5gAMEALyIrjAMAwQEvIiwAwQAvIi4MAwDBAG8iLoDBAG8iLwD
BAG8iMoDBAC8iNAwDAMEAryI1AMEBbyIwAMEAtXDEAMEBNXPwAMEANlC0AMEANlC
0zANBAIAAjAHAwUDKgwBADANBgkqhkiG9w0BAQsFAAOCAQEAhODtda5TYuHUCDlc
7rFPaPxhvVRBMB65YRtrRd2IFNev2Xm1yOzWnIki6Rl6PEvLTMrxGy0xKAvvuKNR
Qcgmn2HuCT2Wre3s3vgHsIlehojA/vIb7+cWB9wB5NWeDL3iZPetfmq5SJ0NA2jd
WuERgMBEomQQETORPkyFZE6Skn27DpXwFezhKX5hd8RM3uwGHYg/OdW34+Gt1kJx
bjwi4mu/H18gU4voXDBxHmsNuPhK/inTQqICwW8fCPUX6pvxmpdk4sammsPayz0H
kWc3OlxWyvWoRKa5sMkUnV4e0ujQ141akEjekMmeb6hpg+PE/FoZdtM8ey+VfpXq
/WRWHw==
-----END CERTIFICATE-----
Generated at Tue Nov 12 08:31:08 2024 by rpki-client on console-fra.rpki-client.org