Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/JKHObbvyhYBB7HcUkxd8DKW2Q9Y.roa
File: JKHObbvyhYBB7HcUkxd8DKW2Q9Y.roa (raw, json)
Hash identifier: PLt7afHLf4arhoBEZamFyfJ3LZcaDUNZXFO1t5Uryc4=
Subject key identifier: 24:A1:CE:6D:BB:F2:85:80:41:EC:77:14:93:17:7C:0C:A5:B6:43:D6
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 018CF744F4E9A059053DBD0D6D1DB990F7C9
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/JKHObbvyhYBB7HcUkxd8DKW2Q9Y.roa
Signing time: Thu 11 Jan 2024 06:45:40 +0000
ROA not before: Thu 11 Jan 2024 06:45:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42473
IP address blocks: 185.228.148.0/22 maxlen: 22
37.235.4.0/24 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
144.208.192.0/18 maxlen: 32
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.204.0/24 maxlen: 24
144.208.207.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
178.255.152.0/21 maxlen: 32
193.33.114.0/23 maxlen: 32
213.227.160.0/19 maxlen: 32
213.227.184.0/24 maxlen: 24
188.172.230.0/23 maxlen: 23
217.146.0.0/19 maxlen: 24
217.146.6.0/24 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.247.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
45.132.61.0/24 maxlen: 24
188.172.192.0/18 maxlen: 32
188.172.208.0/24 maxlen: 24
188.65.72.0/21 maxlen: 32
37.252.224.0/19 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.228.0/24 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.244.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
94.16.98.0/24 maxlen: 24
185.2.176.0/22 maxlen: 32
185.2.176.0/24 maxlen: 24
94.16.125.0/24 maxlen: 24
94.16.126.0/24 maxlen: 24
176.123.54.0/23 maxlen: 23
194.1.206.0/24 maxlen: 32
185.116.96.0/24 maxlen: 24
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
185.81.206.0/24 maxlen: 24
185.81.209.0/24 maxlen: 24
144.208.216.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
144.208.229.0/24 maxlen: 24
144.208.230.0/24 maxlen: 24
144.208.228.0/24 maxlen: 24
144.208.233.0/24 maxlen: 24
144.208.231.0/24 maxlen: 24
144.208.232.0/24 maxlen: 24
144.208.238.0/24 maxlen: 24
144.208.236.0/24 maxlen: 24
144.208.237.0/24 maxlen: 24
144.208.235.0/24 maxlen: 24
144.208.244.0/24 maxlen: 24
2a00:11c0:88::/48 maxlen: 48
2a00:11c0:66::/48 maxlen: 48
2a00:11c0:41::/48 maxlen: 48
2a00:11c0::/32 maxlen: 128
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:99::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:13::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:1335::/48 maxlen: 48
2a00:11c0:24::/48 maxlen: 48
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:9021::/48 maxlen: 48
2a00:11c0:40::/48 maxlen: 48
2a00:11c0:179b::/48 maxlen: 48
2a00:11c0:79::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:1798::/48 maxlen: 48
2a00:11c0:87::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
2a00:11c0:dc::/48 maxlen: 48
2a01:aea0:dd1::/48 maxlen: 48
2a00:11c0:1334::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a00:11c0:179a::/48 maxlen: 48
2a05:8900:28::/48 maxlen: 48
2a01:aea0::/32 maxlen: 32
2a01:aea0::/40 maxlen: 40
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:80::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a00:11c0:22::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 30 Jan 2024 09:16:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f7:44:f4:e9:a0:59:05:3d:bd:0d:6d:1d:b9:90:f7:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jan 11 06:45:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=24a1ce6dbbf2858041ec771493177c0ca5b643d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d9:60:6f:d5:9a:c4:85:f6:01:07:7d:3c:76:
65:be:bb:37:1d:1d:ef:e5:c6:28:b1:26:e8:9f:1c:
0e:7d:02:18:0b:e0:62:4b:fa:e7:df:37:64:c9:60:
25:17:39:49:5f:35:24:d7:3f:1e:13:7e:bc:6d:4b:
5b:6d:81:d4:cf:d3:34:7d:1e:85:bc:db:5a:b9:04:
e5:f1:d1:af:60:60:70:0d:cd:e1:b5:15:e0:17:c3:
aa:f5:e1:1c:22:db:2f:15:38:94:74:72:a6:6b:08:
c2:8a:e1:5f:03:54:6e:bf:ad:a6:3f:4b:21:8f:da:
b8:72:99:da:6d:97:b8:0b:b4:ab:27:76:a5:61:61:
af:6f:f2:0b:b8:23:ac:5a:7a:e8:d5:75:ef:15:f2:
1c:a5:30:46:02:9c:c2:57:84:0a:5c:ba:29:ca:77:
ac:20:be:e1:7b:da:69:2a:7c:0a:6f:ee:89:a3:d8:
96:db:b7:21:0c:8c:16:8b:9a:89:b4:26:7e:66:a4:
a2:d0:7c:5c:f6:12:ec:ed:a3:17:95:c6:f1:a0:44:
a2:91:1e:68:ae:0d:92:e5:be:9c:15:c3:86:49:2b:
92:f0:cb:d2:d9:a7:04:72:09:01:6a:f2:18:50:32:
97:89:b6:2a:67:03:72:09:50:3c:ad:da:34:df:5a:
fa:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:A1:CE:6D:BB:F2:85:80:41:EC:77:14:93:17:7C:0C:A5:B6:43:D6
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/JKHObbvyhYBB7HcUkxd8DKW2Q9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.61.0-45.132.63.255
94.16.98.0/24
94.16.125.0-94.16.126.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.206.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
2a05:8900:28::/48
Signature Algorithm: sha256WithRSAEncryption
4d:f5:ed:d7:29:f6:45:51:b5:e0:17:43:83:dd:d4:e9:93:95:
04:1a:36:01:67:8a:80:10:f6:19:99:ba:13:82:33:28:fa:45:
51:3d:46:08:84:54:68:5b:2b:df:c7:39:df:ed:52:68:0b:1b:
b6:62:dc:e8:a8:2f:26:37:d2:9e:72:d5:b3:06:45:d6:c8:78:
7f:4e:93:7a:a0:9a:1c:f9:6b:73:33:aa:38:00:1a:41:ca:da:
2f:ce:2c:71:cf:fc:e0:5c:34:ce:b5:c2:e0:de:01:06:25:0f:
9b:5a:99:72:2f:6b:3d:c7:86:68:5e:55:f8:8a:e4:89:32:3b:
06:9d:63:ed:a7:39:e1:a0:6a:36:48:ec:e4:5f:aa:f6:bb:00:
5f:20:de:f3:27:33:4c:ff:8a:af:3d:fa:a8:f1:89:8a:6e:2a:
26:36:42:72:1f:33:7f:81:f3:1c:cd:58:a0:28:e7:ce:31:36:
1b:3d:a8:7d:00:13:d3:1b:61:c4:d5:1f:8c:62:54:2b:3e:5e:
7e:36:9e:de:4f:d5:55:a5:f4:3e:71:8b:ec:84:ef:e0:8e:ad:
39:29:d1:79:2c:df:c0:83:de:d0:59:4f:34:e0:c0:db:db:ef:
de:bc:d2:f2:c3:6c:73:65:ff:2c:0a:e5:f7:ff:d0:7a:10:db:
fc:3f:45:dd
-----BEGIN CERTIFICATE-----
MIIFsTCCBJmgAwIBAgISAYz3RPTpoFkFPb0NbR25kPfJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1MzlhZmViYWNlODk5YThlZTBiYjRmOGJiNDQ3NWZlMjQ3
YTE1MjgwHhcNMjQwMTExMDY0NTQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNGExY2U2ZGJiZjI4NTgwNDFlYzc3MTQ5MzE3N2MwY2E1YjY0M2Q2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAldlgb9WaxIX2AQd9PHZlvrs3HR3v
5cYosSbonxwOfQIYC+BiS/rn3zdkyWAlFzlJXzUk1z8eE368bUtbbYHUz9M0fR6F
vNtauQTl8dGvYGBwDc3htRXgF8Oq9eEcItsvFTiUdHKmawjCiuFfA1Ruv62mP0sh
j9q4cpnabZe4C7SrJ3alYWGvb/ILuCOsWnro1XXvFfIcpTBGApzCV4QKXLopynes
IL7he9ppKnwKb+6Jo9iW27chDIwWi5qJtCZ+ZqSi0Hxc9hLs7aMXlcbxoESikR5o
rg2S5b6cFcOGSSuS8MvS2acEcgkBavIYUDKXibYqZwNyCVA8rdo031r6kQIDAQAB
o4ICvTCCArkwHQYDVR0OBBYEFCShzm278oWAQex3FJMXfAyltkPWMB8GA1UdIwQY
MBaAFKU5r+us6Jmo7gu0+LtEdf4kehUoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFRtdjY2em9tYWp1QzdUNHUwUjFfaVI2RlNnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS85OGM0ZWUtMmY1OS00NWE3LWFkYjYt
NzQxMzk1OTEzMTJlLzEvSktIT2JidnloWUJCN0hjVWt4ZDhES1cyUTlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS85OGM0ZWUtMmY1OS00NWE3LWFkYjYtNzQxMzk1OTEzMTJl
LzEvcFRtdjY2em9tYWp1QzdUNHUwUjFfaVI2RlNnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHSBggrBgEFBQcBBwEB/wSBwjCBvzCBnQQCAAEwgZYwDAME
ACXrAwMEASXrBAMEBSX84DAMAwQALYQ9AwQGLYQAAwQAXhBiMAwDBABeEH0DBABe
EH4DBAaQ0MADBAGwezYDBAOy/5gDBAK5ArADBAG5MugDBAC5MusDBAC5Uc4DBAC5
UdEDBAK5dGADBAK55JQDBAO8QUgDBAa8rMADBAHBIXIDBADCAc4DBAXV46ADBAXZ
kgAwHQQCAAIwFwMFACoAEcADBQAqAa6gAwcAKgWJAAAoMA0GCSqGSIb3DQEBCwUA
A4IBAQBN9e3XKfZFUbXgF0OD3dTpk5UEGjYBZ4qAEPYZmboTgjMo+kVRPUYIhFRo
Wyvfxznf7VJoCxu2YtzoqC8mN9KectWzBkXWyHh/TpN6oJoc+WtzM6o4ABpBytov
zixxz/zgXDTOtcLg3gEGJQ+bWplyL2s9x4ZoXlX4iuSJMjsGnWPtpznhoGo2SOzk
X6r2uwBfIN7zJzNM/4qvPfqo8YmKbiomNkJyHzN/gfMczVigKOfOMTYbPah9ABPT
G2HE1R+MYlQrPl5+Np7eT9VVpfQ+cYvshO/gjq05KdF5LN/Ag97QWU804MDb2+/e
vNLyw2xzZf8sCuX3/9B6ENv8P0Xd
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:50 2024 by rpki-client on console-ams.rpki-client.org