Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/vQ8rGYSkH9qEDAUQrW02xuZeIus.roa
File: vQ8rGYSkH9qEDAUQrW02xuZeIus.roa (raw, json)
Hash identifier: w7h92jEhCgB9JLeea8Ry4bNdtli0nAwUxOd+tx5GCg4=
Subject key identifier: BD:0F:2B:19:84:A4:1F:DA:84:0C:05:10:AD:6D:36:C6:E6:5E:22:EB
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 018A939E75592767D230B28DE31A11BE710C
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/vQ8rGYSkH9qEDAUQrW02xuZeIus.roa
Signing time: Thu 14 Sep 2023 12:15:50 +0000
ROA not before: Thu 14 Sep 2023 12:15:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42473
IP address blocks: 185.228.148.0/22 maxlen: 22
94.16.98.0/24 maxlen: 24
37.235.4.0/24 maxlen: 24
37.235.3.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
185.2.176.0/22 maxlen: 32
144.208.192.0/18 maxlen: 32
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.207.0/24 maxlen: 24
178.255.152.0/21 maxlen: 32
94.16.125.0/24 maxlen: 24
94.16.126.0/24 maxlen: 24
193.33.114.0/23 maxlen: 32
176.123.54.0/23 maxlen: 23
213.227.160.0/19 maxlen: 32
194.1.206.0/24 maxlen: 32
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
188.172.230.0/23 maxlen: 23
217.146.0.0/19 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.247.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
45.132.61.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
185.81.206.0/24 maxlen: 24
188.172.192.0/18 maxlen: 32
185.81.209.0/24 maxlen: 24
188.172.208.0/24 maxlen: 24
188.65.72.0/21 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.228.0/24 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.244.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
144.208.216.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
144.208.229.0/24 maxlen: 24
144.208.230.0/24 maxlen: 24
144.208.228.0/24 maxlen: 24
144.208.233.0/24 maxlen: 24
144.208.232.0/24 maxlen: 24
144.208.236.0/24 maxlen: 24
144.208.237.0/24 maxlen: 24
144.208.235.0/24 maxlen: 24
144.208.244.0/24 maxlen: 24
2a00:11c0:66::/48 maxlen: 48
2a00:11c0:dc::/48 maxlen: 48
2a00:11c0::/32 maxlen: 128
2a01:aea0:dd1::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:99::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:13::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a00:11c0:1335::/48 maxlen: 48
2a00:11c0:24::/48 maxlen: 48
2a01:aea0::/40 maxlen: 40
2a01:aea0::/32 maxlen: 32
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a00:11c0:79::/48 maxlen: 48
2a00:11c0:22::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:87::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 04 Oct 2023 12:28:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:93:9e:75:59:27:67:d2:30:b2:8d:e3:1a:11:be:71:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Sep 14 12:15:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd0f2b1984a41fda840c0510ad6d36c6e65e22eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c3:8f:8f:c5:3e:32:b7:90:77:6a:66:9e:45:
a2:39:9d:eb:84:54:e1:cb:49:22:d4:88:81:c0:0d:
5e:8b:a5:6b:47:fb:57:8b:01:17:52:07:58:51:b0:
18:fc:e6:d8:f8:08:a1:d3:e1:2d:da:f3:79:54:de:
c9:bd:ae:0b:2a:6a:a0:3c:b4:6b:e6:3e:3d:99:07:
f2:b7:7f:a9:6f:5e:16:37:de:39:cc:f7:92:65:e4:
ce:b4:fe:a9:d4:d7:f6:4f:f2:90:a8:dc:6a:e1:23:
08:9b:aa:f6:5c:42:e2:21:95:02:7b:b1:94:cd:3d:
2f:95:8d:cd:7e:53:bb:b2:37:d2:7c:65:75:d6:9a:
40:e6:a5:59:95:c9:b8:6a:b1:23:d8:5b:f2:0d:37:
ab:3a:5c:cc:20:2e:8e:bc:92:b8:97:db:a5:a0:18:
b9:ce:0c:fa:80:8d:93:9d:f9:bd:2d:b7:25:28:97:
76:93:b0:c6:ba:94:15:f9:ef:f6:46:06:8a:77:80:
7c:af:a4:07:d9:50:b6:05:fc:01:43:cc:b4:07:4b:
63:bc:6f:34:5c:57:e8:c8:32:3e:9f:38:b3:cc:62:
8f:50:2e:c0:de:3c:dd:96:aa:a3:8e:c6:c9:ad:ec:
68:15:89:92:11:9e:17:be:cb:90:44:19:ff:e4:4d:
ad:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:0F:2B:19:84:A4:1F:DA:84:0C:05:10:AD:6D:36:C6:E6:5E:22:EB
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/vQ8rGYSkH9qEDAUQrW02xuZeIus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.61.0-45.132.63.255
94.16.98.0/24
94.16.125.0-94.16.126.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.206.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
Signature Algorithm: sha256WithRSAEncryption
7d:e5:95:48:41:00:fa:06:d3:7c:09:20:fa:69:e3:78:b9:38:
49:ff:d4:79:7f:d5:5e:4d:4d:74:4b:c3:ac:7e:00:c3:72:8f:
cf:93:0c:98:7e:69:11:27:d6:1e:a4:99:bc:ae:c0:6e:ae:7c:
68:e1:f4:32:af:7e:73:f6:17:00:58:da:df:ad:4a:79:70:ca:
e2:92:63:68:6a:05:ba:94:18:d0:2e:94:69:f4:6d:d1:d3:c6:
4d:ba:57:3f:e5:56:f7:de:af:ac:17:d7:9e:8d:ea:59:f5:2a:
29:e7:3d:e8:91:0b:26:23:41:8c:bb:a2:8b:8e:f7:d5:6a:10:
84:5a:80:d1:fe:a4:b1:78:3d:e7:36:c5:9d:1f:01:f0:ab:97:
89:3d:84:66:f2:83:d9:19:8f:dc:a5:7a:af:f7:0b:79:f2:23:
8f:c7:c1:c1:48:70:7f:a8:78:8d:f1:3d:7f:4e:29:ca:ca:d2:
47:1e:fa:96:c8:18:2e:eb:31:d7:5e:5a:80:91:cb:62:75:b3:
97:49:bd:e7:eb:09:ea:d4:18:4a:0e:1b:0b:60:95:43:34:5e:
8c:2d:91:79:d6:1b:af:30:89:0b:f4:d4:22:9c:35:77:ef:32:
a1:ad:41:77:58:68:06:2e:e7:10:1e:65:d8:86:88:f6:c9:79:
83:c1:83:3c
-----BEGIN CERTIFICATE-----
MIIFqDCCBJCgAwIBAgISAYqTnnVZJ2fSMLKN4xoRvnEMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1MzlhZmViYWNlODk5YThlZTBiYjRmOGJiNDQ3NWZlMjQ3
YTE1MjgwHhcNMjMwOTE0MTIxNTUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZDBmMmIxOTg0YTQxZmRhODQwYzA1MTBhZDZkMzZjNmU2NWUyMmViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8OPj8U+MreQd2pmnkWiOZ3rhFTh
y0ki1IiBwA1ei6VrR/tXiwEXUgdYUbAY/ObY+Aih0+Et2vN5VN7Jva4LKmqgPLRr
5j49mQfyt3+pb14WN945zPeSZeTOtP6p1Nf2T/KQqNxq4SMIm6r2XELiIZUCe7GU
zT0vlY3NflO7sjfSfGV11ppA5qVZlcm4arEj2FvyDTerOlzMIC6OvJK4l9uloBi5
zgz6gI2Tnfm9LbclKJd2k7DGupQV+e/2RgaKd4B8r6QH2VC2BfwBQ8y0B0tjvG80
XFfoyDI+nzizzGKPUC7A3jzdlqqjjsbJrexoFYmSEZ4XvsuQRBn/5E2tuwIDAQAB
o4ICtDCCArAwHQYDVR0OBBYEFL0PKxmEpB/ahAwFEK1tNsbmXiLrMB8GA1UdIwQY
MBaAFKU5r+us6Jmo7gu0+LtEdf4kehUoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFRtdjY2em9tYWp1QzdUNHUwUjFfaVI2RlNnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS85OGM0ZWUtMmY1OS00NWE3LWFkYjYt
NzQxMzk1OTEzMTJlLzEvdlE4ckdZU2tIOXFFREFVUXJXMDJ4dVplSXVzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS85OGM0ZWUtMmY1OS00NWE3LWFkYjYtNzQxMzk1OTEzMTJl
LzEvcFRtdjY2em9tYWp1QzdUNHUwUjFfaVI2RlNnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHJBggrBgEFBQcBBwEB/wSBuTCBtjCBnQQCAAEwgZYwDAME
ACXrAwMEASXrBAMEBSX84DAMAwQALYQ9AwQGLYQAAwQAXhBiMAwDBABeEH0DBABe
EH4DBAaQ0MADBAGwezYDBAOy/5gDBAK5ArADBAG5MugDBAC5MusDBAC5Uc4DBAC5
UdEDBAK5dGADBAK55JQDBAO8QUgDBAa8rMADBAHBIXIDBADCAc4DBAXV46ADBAXZ
kgAwFAQCAAIwDgMFACoAEcADBQAqAa6gMA0GCSqGSIb3DQEBCwUAA4IBAQB95ZVI
QQD6BtN8CSD6aeN4uThJ/9R5f9VeTU10S8OsfgDDco/PkwyYfmkRJ9YepJm8rsBu
rnxo4fQyr35z9hcAWNrfrUp5cMrikmNoagW6lBjQLpRp9G3R08ZNulc/5Vb33q+s
F9eejepZ9Sop5z3okQsmI0GMu6KLjvfVahCEWoDR/qSxeD3nNsWdHwHwq5eJPYRm
8oPZGY/cpXqv9wt58iOPx8HBSHB/qHiN8T1/TinKytJHHvqWyBgu6zHXXlqAkcti
dbOXSb3n6wnq1BhKDhsLYJVDNF6MLZF51huvMIkL9NQinDV37zKhrUF3WGgGLucQ
HmXYhoj2yXmDwYM8
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:14 2024 by rpki-client on console-fra.rpki-client.org