Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/ctKvYA6ps0QH5Ug_7dZR37PY7k4.roa
File: ctKvYA6ps0QH5Ug_7dZR37PY7k4.roa (raw, json)
Hash identifier: 6zdOTu6GvoDwSkmId+qmCIflWooQmpcN1+DnlYu9xTs=
Subject key identifier: 72:D2:AF:60:0E:A9:B3:44:07:E5:48:3F:ED:D6:51:DF:B3:D8:EE:4E
Certificate issuer: /CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Certificate serial: 018E5B996D45C25D1AE8C056E9C96F5C209F
Authority key identifier: 6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/ctKvYA6ps0QH5Ug_7dZR37PY7k4.roa
Signing time: Wed 20 Mar 2024 11:22:45 +0000
ROA not before: Wed 20 Mar 2024 11:22:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34164
IP address blocks: 2.16.49.0/24 maxlen: 24
2.18.25.0/24 maxlen: 24
2.20.48.0/24 maxlen: 24
2.21.236.0/24 maxlen: 24
2.21.237.0/24 maxlen: 24
80.67.81.0/24 maxlen: 24
84.53.176.0/24 maxlen: 24
84.53.186.0/24 maxlen: 24
92.122.120.0/23 maxlen: 23
92.122.152.0/24 maxlen: 24
92.122.191.0/24 maxlen: 24
92.122.204.0/23 maxlen: 23
95.101.12.0/24 maxlen: 24
95.101.121.0/24 maxlen: 24
193.108.152.0/24 maxlen: 24
195.245.126.0/24 maxlen: 24
2a02:26f0:a::/48 maxlen: 48
2a02:26f0:1d::/48 maxlen: 48
2a02:26f0:33::/48 maxlen: 48
2a02:26f0:36::/48 maxlen: 48
2a02:26f0:74::/48 maxlen: 48
2a02:26f0:77::/48 maxlen: 48
2a02:26f0:88::/48 maxlen: 48
2a02:26f0:96::/48 maxlen: 48
2a02:26f0:9c::/48 maxlen: 48
2a02:26f0:9d::/48 maxlen: 48
2a02:26f0:a5::/48 maxlen: 48
2a02:26f0:a6::/48 maxlen: 48
2a02:26f0:a7::/48 maxlen: 48
2a02:26f0:bb::/48 maxlen: 48
2a02:26f0:bc::/48 maxlen: 48
2a02:26f0:bd::/48 maxlen: 48
2a02:26f0:c0::/48 maxlen: 48
2a02:26f0:f9::/48 maxlen: 48
2a02:26f0:106::/48 maxlen: 48
2a02:26f0:107::/48 maxlen: 48
2a02:26f0:110::/48 maxlen: 48
2a02:26f0:124::/48 maxlen: 48
2a02:26f0:125::/48 maxlen: 48
2a02:26f0:126::/48 maxlen: 48
2a02:26f0:1600::/48 maxlen: 48
2a02:26f0:1a00::/48 maxlen: 48
2a02:26f0:1e00::/48 maxlen: 48
2a02:26f0:3600::/48 maxlen: 48
2a02:26f0:4500::/48 maxlen: 48
2a02:26f0:4a00::/48 maxlen: 48
2a02:26f0:4d00::/48 maxlen: 48
2a02:26f0:4e00::/48 maxlen: 48
2a02:26f0:5400::/48 maxlen: 48
2a02:26f0:5600::/48 maxlen: 48
2a02:26f0:6200::/48 maxlen: 48
2a02:26f0:6300::/48 maxlen: 48
2a02:26f0:7e00::/48 maxlen: 48
2a02:26f0:8200::/48 maxlen: 48
2a02:26f0:8600::/48 maxlen: 48
2a02:26f0:8a00::/48 maxlen: 48
2a02:26f0:8e00::/48 maxlen: 48
2a02:26f0:9600::/48 maxlen: 48
2a02:26f0:9a00::/48 maxlen: 48
2a02:26f0:9e00::/48 maxlen: 48
2a02:26f0:a200::/48 maxlen: 48
2a02:26f0:a800::/48 maxlen: 48
2a02:26f0:af00::/48 maxlen: 48
2a02:26f0:b000::/48 maxlen: 48
2a02:26f0:bb00::/48 maxlen: 48
2a02:26f0:bd00::/48 maxlen: 48
2a02:26f0:bf00::/48 maxlen: 48
2a02:26f0:c100::/48 maxlen: 48
2a02:26f0:c200::/48 maxlen: 48
2a02:26f0:c500::/48 maxlen: 48
2a02:26f0:cd00::/48 maxlen: 48
2a02:26f0:ce00::/48 maxlen: 48
2a02:26f0:cf00::/48 maxlen: 48
2a02:26f0:d500::/48 maxlen: 48
2a02:26f0:d600::/48 maxlen: 48
2a02:26f0:d700::/48 maxlen: 48
2a02:26f0:da00::/48 maxlen: 48
2a02:26f0:dc00::/48 maxlen: 48
2a02:26f0:e400::/48 maxlen: 48
2a02:26f0:ec00::/48 maxlen: 48
2a02:26f0:f400::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 20 Mar 2024 15:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:5b:99:6d:45:c2:5d:1a:e8:c0:56:e9:c9:6f:5c:20:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Validity
Not Before: Mar 20 11:22:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=72d2af600ea9b34407e5483fedd651dfb3d8ee4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ff:b1:cc:ae:d0:e2:d4:c8:3b:2e:bf:4a:2d:
2f:08:90:b8:f5:b7:a4:39:b1:55:ce:7e:0c:d1:5b:
4e:d1:8a:76:c9:a4:ad:40:d0:6c:99:dd:6d:10:ee:
ce:cb:07:3a:81:c7:83:25:59:31:d7:63:55:17:53:
86:40:ef:92:76:b4:73:4d:fa:b2:bc:ac:96:39:ab:
cb:d7:4e:b8:4a:12:65:f2:25:42:76:50:99:07:2b:
d8:b3:da:50:06:66:5a:54:e8:ff:e3:90:63:b0:7c:
3b:2c:5f:33:68:e4:c7:7d:7b:09:e9:0c:2f:0f:85:
62:fb:d0:99:6b:76:2c:38:72:93:39:e7:f7:6f:f4:
91:06:9d:16:9a:ee:fe:92:d8:06:0a:ae:ce:59:b7:
92:7a:a4:b7:1b:4d:a6:fe:97:9c:ca:f8:df:4f:0d:
b9:d1:8c:e3:1f:fd:32:e3:1f:08:67:ba:a3:9f:46:
d3:c4:16:02:12:fc:78:12:ef:18:8c:b0:ec:b6:9b:
aa:1d:07:f1:0b:41:82:15:d4:19:11:93:2f:be:4b:
96:74:48:6f:ac:64:3c:cb:4f:52:ea:8f:f7:4e:c7:
94:1f:e3:4d:12:6b:a6:fb:b5:54:96:e3:4d:39:fb:
2b:46:19:f3:ce:64:a0:45:cb:7e:c7:3a:eb:f0:b1:
77:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:D2:AF:60:0E:A9:B3:44:07:E5:48:3F:ED:D6:51:DF:B3:D8:EE:4E
X509v3 Authority Key Identifier:
keyid:6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/ctKvYA6ps0QH5Ug_7dZR37PY7k4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/a1_LvqSJN6RCur2zMCEyxLyb1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.16.49.0/24
2.18.25.0/24
2.20.48.0/24
2.21.236.0/23
80.67.81.0/24
84.53.176.0/24
84.53.186.0/24
92.122.120.0/23
92.122.152.0/24
92.122.191.0/24
92.122.204.0/23
95.101.12.0/24
95.101.121.0/24
193.108.152.0/24
195.245.126.0/24
IPv6:
2a02:26f0:a::/48
2a02:26f0:1d::/48
2a02:26f0:33::/48
2a02:26f0:36::/48
2a02:26f0:74::/48
2a02:26f0:77::/48
2a02:26f0:88::/48
2a02:26f0:96::/48
2a02:26f0:9c::/47
2a02:26f0:a5::-2a02:26f0:a7:ffff:ffff:ffff:ffff:ffff
2a02:26f0:bb::-2a02:26f0:bd:ffff:ffff:ffff:ffff:ffff
2a02:26f0:c0::/48
2a02:26f0:f9::/48
2a02:26f0:106::/47
2a02:26f0:110::/48
2a02:26f0:124::-2a02:26f0:126:ffff:ffff:ffff:ffff:ffff
2a02:26f0:1600::/48
2a02:26f0:1a00::/48
2a02:26f0:1e00::/48
2a02:26f0:3600::/48
2a02:26f0:4500::/48
2a02:26f0:4a00::/48
2a02:26f0:4d00::/48
2a02:26f0:4e00::/48
2a02:26f0:5400::/48
2a02:26f0:5600::/48
2a02:26f0:6200::/48
2a02:26f0:6300::/48
2a02:26f0:7e00::/48
2a02:26f0:8200::/48
2a02:26f0:8600::/48
2a02:26f0:8a00::/48
2a02:26f0:8e00::/48
2a02:26f0:9600::/48
2a02:26f0:9a00::/48
2a02:26f0:9e00::/48
2a02:26f0:a200::/48
2a02:26f0:a800::/48
2a02:26f0:af00::/48
2a02:26f0:b000::/48
2a02:26f0:bb00::/48
2a02:26f0:bd00::/48
2a02:26f0:bf00::/48
2a02:26f0:c100::/48
2a02:26f0:c200::/48
2a02:26f0:c500::/48
2a02:26f0:cd00::/48
2a02:26f0:ce00::/48
2a02:26f0:cf00::/48
2a02:26f0:d500::/48
2a02:26f0:d600::/48
2a02:26f0:d700::/48
2a02:26f0:da00::/48
2a02:26f0:dc00::/48
2a02:26f0:e400::/48
2a02:26f0:ec00::/48
2a02:26f0:f400::/48
Signature Algorithm: sha256WithRSAEncryption
82:30:70:a8:70:02:7a:25:a4:b5:93:38:a1:a3:2f:bb:bc:f5:
7b:3b:78:90:5f:23:06:d0:1d:91:cb:ce:84:6f:3f:c5:f6:5e:
2d:ac:cc:ac:cb:ac:e2:1b:db:f0:db:cc:b0:a4:09:5e:ad:92:
9f:a9:55:b8:31:0f:70:2c:e6:50:4a:59:7d:78:55:9f:f3:95:
b9:ca:35:34:64:81:da:7e:44:d4:6e:b5:2e:39:01:36:d6:f4:
09:09:a3:1a:9b:4f:e8:60:58:30:cd:b5:88:79:90:e9:9f:40:
85:fe:1e:e3:f5:d6:51:f3:56:3e:27:73:d0:1a:58:48:ff:a3:
e5:c6:e3:58:a1:56:d5:86:31:09:b6:bd:55:8f:a3:39:83:6a:
02:04:f3:42:8b:b5:74:ed:c4:eb:30:76:59:90:98:38:ec:11:
e2:3e:29:0f:2b:b2:a7:f1:83:06:c2:d7:1a:fa:2d:fd:3b:be:
cd:16:6b:04:ed:55:9d:6a:af:ea:84:de:e6:a6:a1:83:8d:a4:
ed:fb:53:54:58:26:7d:46:31:46:c9:71:56:10:c7:5e:ba:c0:
22:e8:ec:5c:6d:f8:b0:e5:0c:c2:d4:d6:61:2f:81:e5:f9:29:
99:cc:d4:0d:8d:4c:37:6a:bb:e9:d1:0e:8c:96:b0:8a:f4:78:
ef:71:e4:c9
-----BEGIN CERTIFICATE-----
MIIHhTCCBm2gAwIBAgISAY5bmW1Fwl0a6MBW6clvXCCfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiNWZjYmJlYTQ4OTM3YTQ0MmJhYmRiMzMwMjEzMmM0YmM5
YmQ2YWEwHhcNMjQwMzIwMTEyMjQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MmQyYWY2MDBlYTliMzQ0MDdlNTQ4M2ZlZGQ2NTFkZmIzZDhlZTRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw/+xzK7Q4tTIOy6/Si0vCJC49bek
ObFVzn4M0VtO0Yp2yaStQNBsmd1tEO7Oywc6gceDJVkx12NVF1OGQO+SdrRzTfqy
vKyWOavL1064ShJl8iVCdlCZByvYs9pQBmZaVOj/45BjsHw7LF8zaOTHfXsJ6Qwv
D4Vi+9CZa3YsOHKTOef3b/SRBp0Wmu7+ktgGCq7OWbeSeqS3G02m/pecyvjfTw25
0YzjH/0y4x8IZ7qjn0bTxBYCEvx4Eu8YjLDstpuqHQfxC0GCFdQZEZMvvkuWdEhv
rGQ8y09S6o/3TseUH+NNEmum+7VUluNNOfsrRhnzzmSgRct+xzrr8LF3DwIDAQAB
o4IEkTCCBI0wHQYDVR0OBBYEFHLSr2AOqbNEB+VIP+3WUd+z2O5OMB8GA1UdIwQY
MBaAFGtfy76kiTekQrq9szAhMsS8m9aqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYTFfTHZxU0pONlJDdXIyek1DRXl4THliMXFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC8wNDIxODgtZGZiNi00YWQ0LTkxYTQt
ODhkMWNhYzllNGYxLzEvY3RLdllBNnBzMFFINVVnXzdkWlIzN1BZN2s0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC8wNDIxODgtZGZiNi00YWQ0LTkxYTQtODhkMWNhYzllNGYx
LzEvYTFfTHZxU0pONlJDdXIyek1DRXl4THliMXFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIICpQYIKwYBBQUHAQcBAf8EggKUMIICkDBgBAIAATBaAwQA
AhAxAwQAAhIZAwQAAhQwAwQBAhXsAwQAUENRAwQAVDWwAwQAVDW6AwQBXHp4AwQA
XHqYAwQAXHq/AwQBXHrMAwQAX2UMAwQAX2V5AwQAwWyYAwQAw/V+MIICKgQCAAIw
ggIiAwcAKgIm8AAKAwcAKgIm8AAdAwcAKgIm8AAzAwcAKgIm8AA2AwcAKgIm8AB0
AwcAKgIm8AB3AwcAKgIm8ACIAwcAKgIm8ACWAwcBKgIm8ACcMBIDBwAqAibwAKUD
BwMqAibwAKAwEgMHACoCJvAAuwMHASoCJvAAvAMHACoCJvAAwAMHACoCJvAA+QMH
ASoCJvABBgMHACoCJvABEDASAwcCKgIm8AEkAwcAKgIm8AEmAwcAKgIm8BYAAwcA
KgIm8BoAAwcAKgIm8B4AAwcAKgIm8DYAAwcAKgIm8EUAAwcAKgIm8EoAAwcAKgIm
8E0AAwcAKgIm8E4AAwcAKgIm8FQAAwcAKgIm8FYAAwcAKgIm8GIAAwcAKgIm8GMA
AwcAKgIm8H4AAwcAKgIm8IIAAwcAKgIm8IYAAwcAKgIm8IoAAwcAKgIm8I4AAwcA
KgIm8JYAAwcAKgIm8JoAAwcAKgIm8J4AAwcAKgIm8KIAAwcAKgIm8KgAAwcAKgIm
8K8AAwcAKgIm8LAAAwcAKgIm8LsAAwcAKgIm8L0AAwcAKgIm8L8AAwcAKgIm8MEA
AwcAKgIm8MIAAwcAKgIm8MUAAwcAKgIm8M0AAwcAKgIm8M4AAwcAKgIm8M8AAwcA
KgIm8NUAAwcAKgIm8NYAAwcAKgIm8NcAAwcAKgIm8NoAAwcAKgIm8NwAAwcAKgIm
8OQAAwcAKgIm8OwAAwcAKgIm8PQAMA0GCSqGSIb3DQEBCwUAA4IBAQCCMHCocAJ6
JaS1kzihoy+7vPV7O3iQXyMG0B2Ry86Ebz/F9l4trMysy6ziG9vw28ywpAlerZKf
qVW4MQ9wLOZQSll9eFWf85W5yjU0ZIHafkTUbrUuOQE21vQJCaMam0/oYFgwzbWI
eZDpn0CF/h7j9dZR81Y+J3PQGlhI/6PlxuNYoVbVhjEJtr1Vj6M5g2oCBPNCi7V0
7cTrMHZZkJg47BHiPikPK7Kn8YMGwtca+i39O77NFmsE7VWdaq/qhN7mpqGDjaTt
+1NUWCZ9RjFGyXFWEMdeusAi6Oxcbfiw5QzC1NZhL4Hl+SmZzNQNjUw3arvp0Q6M
lrCK9HjvceTJ
-----END CERTIFICATE-----
Generated at Wed Mar 20 19:31:58 2024 by rpki-client on console-fra.rpki-client.org