Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/mzGwJvuMIQ3Svi4Diie0AuVSmlg.roa
File: mzGwJvuMIQ3Svi4Diie0AuVSmlg.roa (raw, json)
Hash identifier: Fvg9kBUusodumIpgjLtgY6Xa0G1ohhUyjbobZa95/bE=
Subject key identifier: 9B:31:B0:26:FB:8C:21:0D:D2:BE:2E:03:8A:27:B4:02:E5:52:9A:58
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 0189C06556A34D58A542D717115495C5687F
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/mzGwJvuMIQ3Svi4Diie0AuVSmlg.roa
Signing time: Fri 04 Aug 2023 11:53:34 +0000
ROA not before: Fri 04 Aug 2023 11:53:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13194
IP address blocks: 84.46.139.0/24 maxlen: 24
89.117.69.0/24 maxlen: 24
89.117.93.0/24 maxlen: 24
89.117.92.0/24 maxlen: 24
89.117.14.0/24 maxlen: 24
82.140.177.0/24 maxlen: 24
82.140.180.0/24 maxlen: 24
217.9.248.0/23 maxlen: 23
89.117.225.0/24 maxlen: 24
89.117.223.0/24 maxlen: 24
89.117.221.0/24 maxlen: 24
89.117.220.0/24 maxlen: 24
89.117.125.0/24 maxlen: 24
89.117.127.0/24 maxlen: 24
84.46.204.0/24 maxlen: 24
89.117.138.0/24 maxlen: 24
84.46.207.0/24 maxlen: 24
89.117.141.0/24 maxlen: 24
89.117.156.0/24 maxlen: 24
89.117.165.0/24 maxlen: 24
86.38.245.0/24 maxlen: 24
89.116.124.0/24 maxlen: 24
89.116.129.0/24 maxlen: 24
89.116.143.0/24 maxlen: 24
89.116.151.0/24 maxlen: 24
89.116.155.0/24 maxlen: 24
86.38.215.0/24 maxlen: 24
86.38.230.0/24 maxlen: 24
86.38.228.0/24 maxlen: 24
89.116.232.0/24 maxlen: 24
89.116.235.0/24 maxlen: 24
82.140.130.0/24 maxlen: 24
82.140.128.0/24 maxlen: 24
82.140.129.0/24 maxlen: 24
82.140.159.0/24 maxlen: 24
89.117.10.0/24 maxlen: 24
89.116.162.0/24 maxlen: 24
89.116.160.0/24 maxlen: 24
89.116.176.0/24 maxlen: 24
89.116.174.0/24 maxlen: 24
89.116.178.0/24 maxlen: 24
86.38.41.0/24 maxlen: 24
86.38.73.0/24 maxlen: 24
86.38.74.0/24 maxlen: 24
86.38.72.0/24 maxlen: 24
86.38.75.0/24 maxlen: 24
86.38.1.0/24 maxlen: 24
213.226.161.0/24 maxlen: 24
185.189.154.0/24 maxlen: 24
86.38.152.0/24 maxlen: 24
84.15.0.0/16 maxlen: 24
86.38.153.0/24 maxlen: 24
86.38.81.0/24 maxlen: 24
86.38.84.0/24 maxlen: 24
86.38.97.0/24 maxlen: 24
213.252.223.0/24 maxlen: 24
213.252.224.0/22 maxlen: 22
213.252.234.0/23 maxlen: 23
213.252.236.0/23 maxlen: 23
213.252.252.0/24 maxlen: 24
213.252.254.0/24 maxlen: 24
89.117.243.0/24 maxlen: 24
89.117.248.0/23 maxlen: 24
89.117.247.0/24 maxlen: 24
213.252.192.0/20 maxlen: 20
89.117.255.0/24 maxlen: 24
213.226.128.0/18 maxlen: 24
2a00:f500::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c0:65:56:a3:4d:58:a5:42:d7:17:11:54:95:c5:68:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: Aug 4 11:53:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b31b026fb8c210dd2be2e038a27b402e5529a58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3c:aa:b9:f0:11:ea:41:ce:50:19:70:35:54:
39:f0:7c:38:be:68:8c:85:8b:ce:54:96:f6:ee:0f:
c7:95:a7:aa:97:19:50:b3:5a:f3:d1:cf:bb:3b:3f:
62:0a:3a:98:77:6d:9d:58:dd:62:56:ce:c2:81:d5:
0c:67:0e:8f:ad:be:f3:dd:aa:b1:2e:b8:09:5f:e7:
4e:df:4e:43:0e:9b:f6:ac:33:54:3c:5e:23:95:65:
53:75:4b:a7:b2:9d:71:75:5e:c7:4f:51:8e:17:f5:
c2:4d:18:dc:aa:8e:e0:2c:26:34:00:33:cc:03:88:
95:b2:22:8b:cd:d5:06:48:f9:17:2b:67:fe:d5:a8:
af:7a:40:17:d3:18:00:7d:5a:3a:31:3f:38:50:30:
4c:a7:ee:e6:cd:3f:30:e0:3e:a2:c5:28:b6:cb:3f:
e7:32:a1:82:db:1f:a3:ca:df:f9:99:22:d6:7a:83:
b2:d3:c5:72:0c:6c:a5:c6:fe:94:e9:22:d7:5b:51:
38:19:2d:d0:a8:8b:2b:7d:e5:47:68:99:ff:6a:3c:
9b:93:90:ca:91:e8:3b:c7:73:63:a4:27:56:15:98:
85:2e:a8:db:f4:71:46:e8:83:c8:e7:2b:99:33:c5:
e2:fe:60:9b:66:70:81:13:c6:cd:4b:6b:f8:9e:05:
98:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:31:B0:26:FB:8C:21:0D:D2:BE:2E:03:8A:27:B4:02:E5:52:9A:58
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/mzGwJvuMIQ3Svi4Diie0AuVSmlg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.128.0-82.140.130.255
82.140.159.0/24
82.140.177.0/24
82.140.180.0/24
84.15.0.0/16
84.46.139.0/24
84.46.204.0/24
84.46.207.0/24
86.38.1.0/24
86.38.41.0/24
86.38.72.0/22
86.38.81.0/24
86.38.84.0/24
86.38.97.0/24
86.38.152.0/23
86.38.215.0/24
86.38.228.0/24
86.38.230.0/24
86.38.245.0/24
89.116.124.0/24
89.116.129.0/24
89.116.143.0/24
89.116.151.0/24
89.116.155.0/24
89.116.160.0/24
89.116.162.0/24
89.116.174.0/24
89.116.176.0/24
89.116.178.0/24
89.116.232.0/24
89.116.235.0/24
89.117.10.0/24
89.117.14.0/24
89.117.69.0/24
89.117.92.0/23
89.117.125.0/24
89.117.127.0/24
89.117.138.0/24
89.117.141.0/24
89.117.156.0/24
89.117.165.0/24
89.117.220.0/23
89.117.223.0/24
89.117.225.0/24
89.117.243.0/24
89.117.247.0-89.117.249.255
89.117.255.0/24
185.189.154.0/24
213.226.128.0/18
213.252.192.0/20
213.252.223.0-213.252.227.255
213.252.234.0-213.252.237.255
213.252.252.0/24
213.252.254.0/24
217.9.248.0/23
IPv6:
2a00:f500::/29
Signature Algorithm: sha256WithRSAEncryption
4a:e7:89:49:1b:b6:b0:e4:c4:00:f2:97:76:5a:e0:58:6a:ac:
71:b8:7a:43:35:95:bf:c7:95:7b:d9:d2:31:63:5e:be:73:92:
82:28:5c:67:6c:8f:ca:8e:35:10:33:d3:ed:c4:24:6b:f0:0e:
b0:7b:0f:75:af:19:af:d0:6d:f0:68:61:44:15:4f:ae:ef:30:
29:fa:ed:f7:13:ba:a3:64:6a:ac:13:1f:11:c0:58:16:67:93:
e0:55:b4:7c:47:c1:34:6a:fa:f7:ac:69:74:ea:cd:09:d3:97:
b6:85:76:20:8f:ea:af:1b:d3:5c:26:34:d4:d2:9b:80:1a:9d:
c3:59:47:12:6c:98:21:35:e3:83:93:01:ee:82:f9:81:7b:2d:
67:a6:e1:93:eb:ac:d3:80:3d:2a:8a:91:6e:a6:85:84:a5:db:
00:48:4d:a8:93:d9:d3:52:98:d4:bd:94:d4:d0:08:c3:65:bd:
bf:c7:50:e8:a3:69:34:10:cb:ef:ef:5f:53:ee:aa:ef:1c:18:
e1:45:ff:d4:ad:3c:4e:9e:0c:21:5a:a4:1a:37:10:0d:7c:6d:
84:37:ba:e8:13:96:19:69:1d:94:4e:03:cb:56:f4:12:4b:04:
08:01:4c:56:9c:b0:89:9b:3d:fc:ff:91:b9:b7:e9:d8:bf:50:
10:34:e4:6c
-----BEGIN CERTIFICATE-----
MIIGeTCCBWGgAwIBAgISAYnAZVajTVilQtcXEVSVxWh/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwZGQ4MWE4MzNkOWIwNDNjN2ZmZDYzNWE1OTg3ZjUzNjk3
MTE4MGQwHhcNMjMwODA0MTE1MzM0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YjMxYjAyNmZiOGMyMTBkZDJiZTJlMDM4YTI3YjQwMmU1NTI5YTU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArjyqufAR6kHOUBlwNVQ58Hw4vmiM
hYvOVJb27g/HlaeqlxlQs1rz0c+7Oz9iCjqYd22dWN1iVs7CgdUMZw6Prb7z3aqx
LrgJX+dO305DDpv2rDNUPF4jlWVTdUunsp1xdV7HT1GOF/XCTRjcqo7gLCY0ADPM
A4iVsiKLzdUGSPkXK2f+1aivekAX0xgAfVo6MT84UDBMp+7mzT8w4D6ixSi2yz/n
MqGC2x+jyt/5mSLWeoOy08VyDGylxv6U6SLXW1E4GS3QqIsrfeVHaJn/ajybk5DK
keg7x3NjpCdWFZiFLqjb9HFG6IPI5yuZM8Xi/mCbZnCBE8bNS2v4ngWYRwIDAQAB
o4IDhTCCA4EwHQYDVR0OBBYEFJsxsCb7jCEN0r4uA4ontALlUppYMB8GA1UdIwQY
MBaAFPDdgagz2bBDx//WNaWYf1NpcRgNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOE4yQnFEUFpzRVBIXzlZMXBaaF9VMmx4R0EwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS9hOGViZTQtZDBiMy00ZTdkLWFmMjUt
MDQ2ODA0MjQ4NmRjLzEvbXpHd0p2dU1JUTNTdmk0RGlpZTBBdVZTbWxnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS9hOGViZTQtZDBiMy00ZTdkLWFmMjUtMDQ2ODA0MjQ4NmRj
LzEvOE4yQnFEUFpzRVBIXzlZMXBaaF9VMmx4R0EwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBmQYIKwYBBQUHAQcBAf8EggGIMIIBhDCCAXEEAgABMIIB
aTAMAwQHUoyAAwQAUoyCAwQAUoyfAwQAUoyxAwQAUoy0AwMAVA8DBABULosDBABU
LswDBABULs8DBABWJgEDBABWJikDBAJWJkgDBABWJlEDBABWJlQDBABWJmEDBAFW
JpgDBABWJtcDBABWJuQDBABWJuYDBABWJvUDBABZdHwDBABZdIEDBABZdI8DBABZ
dJcDBABZdJsDBABZdKADBABZdKIDBABZdK4DBABZdLADBABZdLIDBABZdOgDBABZ
dOsDBABZdQoDBABZdQ4DBABZdUUDBAFZdVwDBABZdX0DBABZdX8DBABZdYoDBABZ
dY0DBABZdZwDBABZdaUDBAFZddwDBABZdd8DBABZdeEDBABZdfMwDAMEAFl19wME
AVl1+AMEAFl1/wMEALm9mgMEBtXigAMEBNX8wDAMAwQA1fzfAwQC1fzgMAwDBAHV
/OoDBAHV/OwDBADV/PwDBADV/P4DBAHZCfgwDQQCAAIwBwMFAyoA9QAwDQYJKoZI
hvcNAQELBQADggEBAErniUkbtrDkxADyl3Za4FhqrHG4ekM1lb/HlXvZ0jFjXr5z
koIoXGdsj8qONRAz0+3EJGvwDrB7D3WvGa/QbfBoYUQVT67vMCn67fcTuqNkaqwT
HxHAWBZnk+BVtHxHwTRq+vesaXTqzQnTl7aFdiCP6q8b01wmNNTSm4AancNZRxJs
mCE144OTAe6C+YF7LWem4ZPrrNOAPSqKkW6mhYSl2wBITaiT2dNSmNS9lNTQCMNl
vb/HUOijaTQQy+/vX1Puqu8cGOFF/9StPE6eDCFapBo3EA18bYQ3uugTlhlpHZRO
A8tW9BJLBAgBTFacsImbPfz/kbm36di/UBA05Gw=
-----END CERTIFICATE-----
Generated at Mon Oct 16 10:07:34 2023 by rpki-client on console-ams.rpki-client.org