Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/qNCo_SbWpHdKBiFgE_c6w8B-Ozg.roa
File: qNCo_SbWpHdKBiFgE_c6w8B-Ozg.roa (raw, json)
Hash identifier: oi1FFEc6o8WsdLCHcJnHnYJhWyh/PuKSpDIl86fkFzI=
Subject key identifier: A8:D0:A8:FD:26:D6:A4:77:4A:06:21:60:13:F7:3A:C3:C0:7E:3B:38
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 01906956DD9E7E054E445D6959ACC69535DB
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/qNCo_SbWpHdKBiFgE_c6w8B-Ozg.roa
Signing time: Sun 30 Jun 2024 13:30:18 +0000
ROA not before: Sun 30 Jun 2024 13:30:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48309
IP address blocks: 31.25.104.0/22 maxlen: 22
31.25.108.0/24 maxlen: 24
31.25.109.0/24 maxlen: 24
31.25.110.0/23 maxlen: 23
37.191.64.0/22 maxlen: 22
37.191.68.0/22 maxlen: 22
37.191.72.0/22 maxlen: 22
37.191.74.0/24 maxlen: 24
37.191.76.0/22 maxlen: 22
37.191.80.0/21 maxlen: 24
37.191.88.0/22 maxlen: 22
37.191.92.0/22 maxlen: 24
185.85.68.0/22 maxlen: 22
188.136.128.0/24 maxlen: 24
188.136.129.0/24 maxlen: 24
188.136.130.0/24 maxlen: 24
188.136.131.0/24 maxlen: 24
188.136.132.0/24 maxlen: 24
188.136.133.0/24 maxlen: 24
188.136.134.0/24 maxlen: 24
188.136.135.0/24 maxlen: 24
188.136.140.0/22 maxlen: 24
188.136.141.0/24 maxlen: 24
188.136.142.0/24 maxlen: 24
188.136.143.0/24 maxlen: 24
188.136.144.0/22 maxlen: 22
188.136.144.0/24 maxlen: 24
188.136.145.0/24 maxlen: 24
188.136.146.0/24 maxlen: 24
188.136.147.0/24 maxlen: 24
188.136.149.0/24 maxlen: 24
188.136.150.0/24 maxlen: 24
188.136.151.0/24 maxlen: 24
188.136.152.0/24 maxlen: 24
188.136.153.0/24 maxlen: 24
188.136.154.0/24 maxlen: 24
188.136.155.0/24 maxlen: 24
188.136.156.0/24 maxlen: 24
188.136.157.0/24 maxlen: 24
188.136.158.0/24 maxlen: 24
188.136.159.0/24 maxlen: 24
188.136.160.0/24 maxlen: 24
188.136.161.0/24 maxlen: 24
188.136.162.0/24 maxlen: 24
188.136.163.0/24 maxlen: 24
188.136.164.0/24 maxlen: 24
188.136.165.0/24 maxlen: 24
188.136.166.0/24 maxlen: 24
188.136.167.0/24 maxlen: 24
188.136.168.0/24 maxlen: 24
188.136.169.0/24 maxlen: 24
188.136.170.0/24 maxlen: 24
188.136.171.0/24 maxlen: 24
188.136.172.0/24 maxlen: 24
188.136.173.0/24 maxlen: 24
188.136.175.0/24 maxlen: 24
188.136.185.0/24 maxlen: 24
188.136.187.0/24 maxlen: 24
188.136.189.0/24 maxlen: 24
188.136.190.0/24 maxlen: 24
188.136.191.0/24 maxlen: 24
188.136.192.0/23 maxlen: 23
188.136.194.0/24 maxlen: 24
188.136.196.0/22 maxlen: 22
188.136.196.0/24 maxlen: 24
188.136.200.0/24 maxlen: 24
188.136.209.0/24 maxlen: 24
188.136.210.0/24 maxlen: 24
188.136.211.0/24 maxlen: 24
188.136.216.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 29 Jul 2024 13:21:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:69:56:dd:9e:7e:05:4e:44:5d:69:59:ac:c6:95:35:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Jun 30 13:30:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a8d0a8fd26d6a4774a06216013f73ac3c07e3b38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:21:29:7c:7a:37:77:0a:ee:39:be:86:04:c5:
54:16:28:40:aa:1e:87:96:1f:81:83:c9:c3:fe:e0:
7d:96:78:b2:10:7d:01:21:9f:77:53:d7:15:eb:61:
99:01:fa:86:51:70:4e:d0:ef:f8:bb:3e:f7:4e:cf:
7e:4d:c6:2d:43:88:23:a0:a2:3e:77:c7:2f:2c:66:
c8:94:eb:71:93:98:8f:46:f5:56:f0:99:c0:18:ef:
3b:58:ed:eb:e8:30:79:a3:5e:e7:df:2f:e9:31:5d:
0f:9f:c3:e7:f6:f2:2b:2a:a4:bb:bc:15:10:d3:c8:
00:32:53:61:ad:ae:e8:35:c2:f7:79:9f:cd:42:40:
13:19:4b:1e:b8:d8:55:dd:73:8e:f4:27:5e:7b:81:
6d:0a:57:bb:37:53:25:89:75:4d:9e:2b:78:79:da:
79:7c:47:4c:b3:3f:f3:b1:08:8a:f3:40:17:9f:44:
14:7b:b3:28:c7:bf:a8:d5:a5:22:d6:9a:35:3c:d4:
76:64:2f:b6:1b:1f:dc:43:ff:d7:24:5a:6b:ca:08:
dc:c4:bd:40:24:ec:2c:eb:0e:af:82:a0:ce:93:92:
66:21:6a:60:00:d3:fb:fa:dc:60:ee:a7:92:16:10:
87:fc:9e:dc:1b:83:08:cf:72:e3:ed:cd:ee:d2:af:
7a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:D0:A8:FD:26:D6:A4:77:4A:06:21:60:13:F7:3A:C3:C0:7E:3B:38
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/qNCo_SbWpHdKBiFgE_c6w8B-Ozg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.104.0/21
37.191.64.0/19
185.85.68.0/22
188.136.128.0/21
188.136.140.0-188.136.147.255
188.136.149.0-188.136.173.255
188.136.175.0/24
188.136.185.0/24
188.136.187.0/24
188.136.189.0-188.136.194.255
188.136.196.0-188.136.200.255
188.136.209.0-188.136.211.255
188.136.216.0/22
Signature Algorithm: sha256WithRSAEncryption
35:01:1f:ea:ea:3a:26:c0:18:55:1e:35:51:a5:d0:df:a6:54:
d6:42:73:aa:b2:8e:ce:85:f4:48:07:86:76:1e:de:d7:90:dd:
ff:19:5a:eb:17:cd:21:ef:c4:81:ce:56:7b:bd:90:72:61:01:
98:31:13:5f:32:e0:60:c5:aa:76:a2:72:11:96:29:68:53:53:
4f:07:cf:61:b2:98:c7:34:7f:a3:70:91:64:b8:e6:d0:7e:71:
b5:6a:f7:c9:39:fb:20:a7:15:1e:7f:ba:51:c8:b7:d4:ad:8d:
68:06:e9:b9:6b:a5:a9:f3:ed:23:7c:6c:a1:12:19:c4:aa:41:
6e:52:2d:69:04:ec:13:ef:af:81:f9:3d:7d:4f:89:6e:c0:4d:
c8:9c:00:3a:5d:03:51:ba:89:a5:49:cc:27:7b:c3:e9:78:28:
cd:0b:e9:9a:91:d8:5f:2b:d3:b8:62:1e:42:e3:84:02:73:e4:
00:a6:24:36:f4:f7:23:f5:1f:a8:c7:f5:dd:26:8a:f7:cd:c5:
c0:12:70:9e:b5:fd:94:e5:9a:e8:ad:7f:e5:99:2e:5a:b8:78:
fd:96:86:86:66:68:de:5f:6d:84:c1:d5:01:39:2d:53:34:75:
c1:81:c9:8e:48:22:36:59:e4:4e:ac:c5:38:89:d7:59:d9:2f:
59:5e:74:86
-----BEGIN CERTIFICATE-----
MIIFbzCCBFegAwIBAgISAZBpVt2efgVORF1pWazGlTXbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViNjk4YzRiNjEyYWZlZTJjYmIxY2RkNTA5ZTRmMDI0NmZi
YjgwZTEwHhcNMjQwNjMwMTMzMDE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhOGQwYThmZDI2ZDZhNDc3NGEwNjIxNjAxM2Y3M2FjM2MwN2UzYjM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtCEpfHo3dwruOb6GBMVUFihAqh6H
lh+Bg8nD/uB9lniyEH0BIZ93U9cV62GZAfqGUXBO0O/4uz73Ts9+TcYtQ4gjoKI+
d8cvLGbIlOtxk5iPRvVW8JnAGO87WO3r6DB5o17n3y/pMV0Pn8Pn9vIrKqS7vBUQ
08gAMlNhra7oNcL3eZ/NQkATGUseuNhV3XOO9Cdee4FtCle7N1MliXVNnit4edp5
fEdMsz/zsQiK80AXn0QUe7Mox7+o1aUi1po1PNR2ZC+2Gx/cQ//XJFprygjcxL1A
JOws6w6vgqDOk5JmIWpgANP7+txg7qeSFhCH/J7cG4MIz3Lj7c3u0q96cQIDAQAB
o4ICezCCAncwHQYDVR0OBBYEFKjQqP0m1qR3SgYhYBP3OsPAfjs4MB8GA1UdIwQY
MBaAFFtpjEthKv7iy7HN1Qnk8CRvu4DhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVzJtTVMyRXFfdUxMc2MzVkNlVHdKRy03Z09FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9jMTZmNTUtYjQ0ZC00MGMzLTlkYWMt
Y2MyZmFmZTNhOGI0LzEvcU5Db19TYldwSGRLQmlGZ0VfYzZ3OEItT3pnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9jMTZmNTUtYjQ0ZC00MGMzLTlkYWMtY2MyZmFmZTNhOGI0
LzEvVzJtTVMyRXFfdUxMc2MzVkNlVHdKRy03Z09FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGQBggrBgEFBQcBBwEB/wSBgDB+MHwEAgABMHYDBAMfGWgD
BAUlv0ADBAK5VUQDBAO8iIAwDAMEAryIjAMEAryIkDAMAwQAvIiVAwQBvIisAwQA
vIivAwQAvIi5AwQAvIi7MAwDBAC8iL0DBAC8iMIwDAMEAryIxAMEALyIyDAMAwQA
vIjRAwQCvIjQAwQCvIjYMA0GCSqGSIb3DQEBCwUAA4IBAQA1AR/q6jomwBhVHjVR
pdDfplTWQnOqso7OhfRIB4Z2Ht7XkN3/GVrrF80h78SBzlZ7vZByYQGYMRNfMuBg
xap2onIRliloU1NPB89hspjHNH+jcJFkuObQfnG1avfJOfsgpxUef7pRyLfUrY1o
Bum5a6Wp8+0jfGyhEhnEqkFuUi1pBOwT76+B+T19T4luwE3InAA6XQNRuomlScwn
e8PpeCjNC+makdhfK9O4Yh5C44QCc+QApiQ29Pcj9R+ox/XdJor3zcXAEnCetf2U
5ZrorX/lmS5auHj9loaGZmjeX22EwdUBOS1TNHXBgcmOSCI2WeROrMU4iddZ2S9Z
XnSG
-----END CERTIFICATE-----
Generated at Mon Jul 29 16:14:08 2024 by rpki-client on console-fra.rpki-client.org