Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/yKuJq1FUg6IrzZt5ZAl7AHhIcL0.roa
File: yKuJq1FUg6IrzZt5ZAl7AHhIcL0.roa (raw, json)
Hash identifier: c9Xx7rRdIG0DfD5G1tnWapr32RjPmYJ/n00jJemrKjM=
Subject key identifier: C8:AB:89:AB:51:54:83:A2:2B:CD:9B:79:64:09:7B:00:78:48:70:BD
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 018EE2B48CB2F0AFD356BFB228A61567763E
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/yKuJq1FUg6IrzZt5ZAl7AHhIcL0.roa
Signing time: Mon 15 Apr 2024 17:01:07 +0000
ROA not before: Mon 15 Apr 2024 17:01:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206065
IP address blocks: 31.217.208.0/21 maxlen: 24
37.19.80.0/20 maxlen: 24
37.114.192.0/18 maxlen: 24
37.114.192.0/20 maxlen: 24
37.114.216.0/22 maxlen: 24
37.114.220.0/22 maxlen: 24
37.114.224.0/22 maxlen: 24
37.114.228.0/22 maxlen: 24
37.114.244.0/22 maxlen: 24
37.114.248.0/21 maxlen: 24
37.114.252.0/24 maxlen: 24
37.114.253.0/24 maxlen: 24
37.114.254.0/24 maxlen: 24
37.114.255.0/24 maxlen: 24
37.221.0.0/18 maxlen: 24
37.235.16.0/20 maxlen: 24
45.128.140.0/22 maxlen: 24
45.144.124.0/22 maxlen: 24
46.32.5.0/24 maxlen: 24
46.32.9.0/24 maxlen: 24
46.32.14.0/24 maxlen: 24
46.34.164.0/22 maxlen: 24
46.34.168.0/21 maxlen: 24
46.34.178.0/23 maxlen: 24
46.34.180.0/22 maxlen: 24
46.34.184.0/22 maxlen: 24
46.34.188.0/22 maxlen: 24
78.158.182.0/23 maxlen: 24
79.132.213.0/24 maxlen: 24
79.132.217.0/24 maxlen: 24
79.132.218.0/24 maxlen: 24
79.132.219.0/24 maxlen: 24
80.71.113.0/24 maxlen: 24
80.71.122.0/23 maxlen: 24
80.71.124.0/23 maxlen: 24
80.71.127.0/24 maxlen: 24
81.29.243.0/24 maxlen: 24
81.29.248.0/21 maxlen: 24
81.29.250.0/23 maxlen: 24
81.29.250.0/24 maxlen: 24
81.29.251.0/24 maxlen: 24
81.29.254.0/24 maxlen: 24
81.91.144.0/20 maxlen: 24
86.109.32.0/23 maxlen: 24
86.109.41.0/24 maxlen: 24
86.109.56.0/23 maxlen: 24
87.247.180.0/23 maxlen: 24
91.184.64.0/20 maxlen: 24
92.61.184.0/21 maxlen: 24
92.119.68.0/22 maxlen: 24
94.139.160.0/20 maxlen: 24
109.230.64.0/21 maxlen: 24
109.230.80.0/20 maxlen: 24
109.230.94.0/24 maxlen: 24
109.230.95.0/24 maxlen: 24
176.221.65.0/24 maxlen: 24
185.12.62.0/24 maxlen: 24
185.21.76.0/22 maxlen: 24
185.30.76.0/22 maxlen: 24
185.40.240.0/22 maxlen: 24
185.45.188.0/22 maxlen: 24
185.70.60.0/22 maxlen: 24
185.82.164.0/23 maxlen: 24
185.104.228.0/24 maxlen: 24
185.133.152.0/22 maxlen: 24
185.142.233.0/24 maxlen: 24
185.142.234.0/23 maxlen: 24
185.172.0.0/22 maxlen: 24
185.190.20.0/22 maxlen: 24
185.197.68.0/22 maxlen: 24
188.75.92.0/24 maxlen: 24
188.75.94.0/24 maxlen: 24
188.75.102.0/23 maxlen: 24
188.75.107.0/24 maxlen: 24
188.75.110.0/23 maxlen: 24
188.75.122.0/23 maxlen: 24
188.121.128.0/19 maxlen: 24
188.121.146.0/24 maxlen: 24
188.136.220.0/23 maxlen: 24
213.207.192.0/20 maxlen: 24
217.66.208.0/24 maxlen: 24
217.66.211.0/24 maxlen: 24
2a0c:100::/29 maxlen: 48
Validation: Failed, certificate revoked on Sat 20 Apr 2024 13:11:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e2:b4:8c:b2:f0:af:d3:56:bf:b2:28:a6:15:67:76:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Apr 15 17:01:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c8ab89ab515483a22bcd9b7964097b00784870bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4b:0a:10:e0:a2:91:59:cb:09:9f:b0:27:1d:
6b:6d:13:89:ab:3c:93:5c:ed:10:9e:9d:e9:7d:62:
37:11:9c:9a:24:3f:b1:04:6c:8b:12:84:77:78:c5:
e6:fc:42:ab:80:f3:40:d7:41:bb:4f:5d:8c:1d:36:
47:7f:6c:4a:37:7c:1d:7f:00:94:1c:bd:9e:e8:7f:
c2:5c:62:27:ef:2a:59:15:c5:7e:fd:0d:c9:df:77:
96:24:eb:fb:12:a4:3e:30:3a:f5:34:c9:e9:cf:b5:
a8:9a:56:ab:0a:16:9d:44:44:f7:fc:22:dc:ad:66:
1f:90:a3:78:c6:72:52:b4:9f:34:11:a9:84:25:52:
72:27:6d:21:e2:ec:e5:c3:9d:88:4b:2a:6d:6c:a7:
6c:6e:33:0b:8b:ea:b2:7b:91:da:fa:d9:ba:7d:15:
3e:10:9c:cd:a7:71:01:b8:5e:55:f0:10:89:d3:67:
37:58:7e:3a:de:56:a7:41:a2:a0:63:dd:8f:2b:fa:
c4:32:7f:60:47:70:45:26:ac:16:0f:e4:74:a7:c6:
7d:90:af:f5:9e:74:61:0c:35:17:d0:11:01:5c:f0:
c1:c4:1b:6d:1e:27:67:67:cb:e0:0c:f7:03:eb:5b:
54:51:35:0a:b3:0b:6f:22:65:5e:cc:31:96:d3:77:
a2:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:AB:89:AB:51:54:83:A2:2B:CD:9B:79:64:09:7B:00:78:48:70:BD
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/yKuJq1FUg6IrzZt5ZAl7AHhIcL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.217.208.0/21
37.19.80.0/20
37.114.192.0/18
37.221.0.0/18
37.235.16.0/20
45.128.140.0/22
45.144.124.0/22
46.32.5.0/24
46.32.9.0/24
46.32.14.0/24
46.34.164.0-46.34.175.255
46.34.178.0-46.34.191.255
78.158.182.0/23
79.132.213.0/24
79.132.217.0-79.132.219.255
80.71.113.0/24
80.71.122.0-80.71.125.255
80.71.127.0/24
81.29.243.0/24
81.29.248.0/21
81.91.144.0/20
86.109.32.0/23
86.109.41.0/24
86.109.56.0/23
87.247.180.0/23
91.184.64.0/20
92.61.184.0/21
92.119.68.0/22
94.139.160.0/20
109.230.64.0/21
109.230.80.0/20
176.221.65.0/24
185.12.62.0/24
185.21.76.0/22
185.30.76.0/22
185.40.240.0/22
185.45.188.0/22
185.70.60.0/22
185.82.164.0/23
185.104.228.0/24
185.133.152.0/22
185.142.233.0-185.142.235.255
185.172.0.0/22
185.190.20.0/22
185.197.68.0/22
188.75.92.0/24
188.75.94.0/24
188.75.102.0/23
188.75.107.0/24
188.75.110.0/23
188.75.122.0/23
188.121.128.0/19
188.136.220.0/23
213.207.192.0/20
217.66.208.0/24
217.66.211.0/24
IPv6:
2a0c:100::/29
Signature Algorithm: sha256WithRSAEncryption
50:e5:33:0b:2f:45:e9:12:5b:05:21:fd:b3:5e:9b:4b:00:28:
5e:a6:95:e7:38:fc:08:df:79:0f:53:1b:69:93:41:e8:43:97:
02:13:9e:aa:f5:3e:9b:f4:b1:0c:8d:2f:e7:d0:7e:33:b8:ad:
8b:0b:62:51:21:f2:fe:bb:bc:e9:00:ed:a5:86:b4:44:a1:65:
80:d8:ca:60:63:e5:4e:e5:79:43:25:d2:ae:9f:b4:71:07:a6:
a0:1f:bc:93:08:d4:85:d5:73:0e:6c:77:5d:64:4f:b3:ac:43:
b0:c0:fa:4e:f5:86:eb:b2:e5:54:68:c7:c8:cd:02:22:6e:fc:
68:04:1d:8d:4f:1c:ed:a8:93:e4:79:c7:e9:ee:4a:89:c9:35:
63:61:2e:22:9e:7d:b8:6f:b7:1b:cc:e4:9a:4b:21:1c:05:99:
06:22:72:65:5f:ef:24:25:e1:40:f5:ee:33:ab:75:b8:a2:c9:
f6:83:f4:da:f4:94:5d:cd:28:d0:ee:59:a4:74:0b:2e:d8:5a:
2f:f4:77:98:02:27:c9:29:a4:5d:c1:0a:e8:cb:0a:c7:a0:52:
21:36:b5:fe:05:d3:2d:83:ed:28:49:1d:4c:ad:7f:f9:4b:f1:
da:19:1f:2c:93:b4:b7:45:0e:a7:a4:5a:9e:24:fe:c9:55:c3:
19:bb:e1:31
-----BEGIN CERTIFICATE-----
MIIGiDCCBXCgAwIBAgISAY7itIyy8K/TVr+yKKYVZ3Y+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViNjk4YzRiNjEyYWZlZTJjYmIxY2RkNTA5ZTRmMDI0NmZi
YjgwZTEwHhcNMjQwNDE1MTcwMTA3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjOGFiODlhYjUxNTQ4M2EyMmJjZDliNzk2NDA5N2IwMDc4NDg3MGJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwEsKEOCikVnLCZ+wJx1rbROJqzyT
XO0Qnp3pfWI3EZyaJD+xBGyLEoR3eMXm/EKrgPNA10G7T12MHTZHf2xKN3wdfwCU
HL2e6H/CXGIn7ypZFcV+/Q3J33eWJOv7EqQ+MDr1NMnpz7WomlarChadRET3/CLc
rWYfkKN4xnJStJ80EamEJVJyJ20h4uzlw52ISyptbKdsbjMLi+qye5Ha+tm6fRU+
EJzNp3EBuF5V8BCJ02c3WH463lanQaKgY92PK/rEMn9gR3BFJqwWD+R0p8Z9kK/1
nnRhDDUX0BEBXPDBxBttHidnZ8vgDPcD61tUUTUKswtvImVezDGW03eiSwIDAQAB
o4IDlDCCA5AwHQYDVR0OBBYEFMiriatRVIOiK82beWQJewB4SHC9MB8GA1UdIwQY
MBaAFFtpjEthKv7iy7HN1Qnk8CRvu4DhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVzJtTVMyRXFfdUxMc2MzVkNlVHdKRy03Z09FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9jMTZmNTUtYjQ0ZC00MGMzLTlkYWMt
Y2MyZmFmZTNhOGI0LzEveUt1SnExRlVnNklyelp0NVpBbDdBSGhJY0wwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9jMTZmNTUtYjQ0ZC00MGMzLTlkYWMtY2MyZmFmZTNhOGI0
LzEvVzJtTVMyRXFfdUxMc2MzVkNlVHdKRy03Z09FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBqAYIKwYBBQUHAQcBAf8EggGXMIIBkzCCAYAEAgABMIIB
eAMEAx/Z0AMEBCUTUAMEBiVywAMEBiXdAAMEBCXrEAMEAi2AjAMEAi2QfAMEAC4g
BQMEAC4gCQMEAC4gDjAMAwQCLiKkAwQELiKgMAwDBAEuIrIDBAYuIoADBAFOnrYD
BABPhNUwDAMEAE+E2QMEAk+E2AMEAFBHcTAMAwQBUEd6AwQBUEd8AwQAUEd/AwQA
UR3zAwQDUR34AwQEUVuQAwQBVm0gAwQAVm0pAwQBVm04AwQBV/e0AwQEW7hAAwQD
XD24AwQCXHdEAwQEXougAwQDbeZAAwQEbeZQAwQAsN1BAwQAuQw+AwQCuRVMAwQC
uR5MAwQCuSjwAwQCuS28AwQCuUY8AwQBuVKkAwQAuWjkAwQCuYWYMAwDBAC5jukD
BAK5jugDBAK5rAADBAK5vhQDBAK5xUQDBAC8S1wDBAC8S14DBAG8S2YDBAC8S2sD
BAG8S24DBAG8S3oDBAW8eYADBAG8iNwDBATVz8ADBADZQtADBADZQtMwDQQCAAIw
BwMFAyoMAQAwDQYJKoZIhvcNAQELBQADggEBAFDlMwsvRekSWwUh/bNem0sAKF6m
lec4/AjfeQ9TG2mTQehDlwITnqr1Ppv0sQyNL+fQfjO4rYsLYlEh8v67vOkA7aWG
tEShZYDYymBj5U7leUMl0q6ftHEHpqAfvJMI1IXVcw5sd11kT7OsQ7DA+k71huuy
5VRox8jNAiJu/GgEHY1PHO2ok+R5x+nuSonJNWNhLiKefbhvtxvM5JpLIRwFmQYi
cmVf7yQl4UD17jOrdbiiyfaD9Nr0lF3NKNDuWaR0Cy7YWi/0d5gCJ8kppF3BCujL
CsegUiE2tf4F0y2D7ShJHUytf/lL8doZHyyTtLdFDqekWp4k/slVwxm74TE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:06 2024 by rpki-client on console-ams.rpki-client.org