Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/3huFFsbphldObsDJWECB2zJOaPo.roa
File: 3huFFsbphldObsDJWECB2zJOaPo.roa (raw, json)
Hash identifier: R2WXSrRbSzKlIoFxTRfVS07hf5RvC1wJrGu0kv/Yw6E=
Subject key identifier: DE:1B:85:16:C6:E9:86:57:4E:6E:C0:C9:58:40:81:DB:32:4E:68:FA
Certificate issuer: /CN=3919f2ad91584baff0467447bac8fb978d1f9dd3
Certificate serial: 018F5239482B7BC66BB68FDDEBAEE51A678E
Authority key identifier: 39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/3huFFsbphldObsDJWECB2zJOaPo.roa
Signing time: Tue 07 May 2024 08:43:56 +0000
ROA not before: Tue 07 May 2024 08:43:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9021
IP address blocks: 90.158.0.0/16 maxlen: 16
90.158.0.0/18 maxlen: 18
90.158.0.0/22 maxlen: 22
90.158.0.0/23 maxlen: 23
90.158.3.0/24 maxlen: 24
90.158.8.0/24 maxlen: 24
90.158.15.0/24 maxlen: 24
90.158.16.0/24 maxlen: 24
90.158.18.0/24 maxlen: 24
90.158.19.0/24 maxlen: 24
90.158.24.0/24 maxlen: 24
90.158.26.0/24 maxlen: 24
90.158.27.0/24 maxlen: 24
90.158.28.0/24 maxlen: 24
90.158.29.0/24 maxlen: 24
90.158.30.0/24 maxlen: 24
90.158.31.0/24 maxlen: 24
90.158.32.0/24 maxlen: 24
90.158.33.0/24 maxlen: 24
90.158.36.0/24 maxlen: 24
90.158.37.0/24 maxlen: 24
90.158.39.0/24 maxlen: 24
90.158.41.0/24 maxlen: 24
90.158.43.0/24 maxlen: 24
90.158.44.0/24 maxlen: 24
90.158.45.0/24 maxlen: 24
90.158.46.0/24 maxlen: 24
90.158.47.0/24 maxlen: 24
90.158.48.0/20 maxlen: 20
90.158.48.0/24 maxlen: 24
90.158.50.0/23 maxlen: 23
90.158.51.0/24 maxlen: 24
90.158.52.0/23 maxlen: 23
90.158.52.0/24 maxlen: 24
90.158.53.0/24 maxlen: 24
90.158.54.0/23 maxlen: 23
90.158.55.0/24 maxlen: 24
90.158.56.0/24 maxlen: 24
90.158.60.0/24 maxlen: 24
90.158.62.0/24 maxlen: 24
90.158.64.0/21 maxlen: 21
90.158.64.0/24 maxlen: 24
90.158.65.0/24 maxlen: 24
90.158.66.0/24 maxlen: 24
90.158.67.0/24 maxlen: 24
90.158.68.0/24 maxlen: 24
90.158.72.0/22 maxlen: 22
90.158.72.0/24 maxlen: 24
90.158.73.0/24 maxlen: 24
90.158.74.0/24 maxlen: 24
90.158.75.0/24 maxlen: 24
90.158.96.0/22 maxlen: 22
90.158.100.0/24 maxlen: 24
90.158.101.0/24 maxlen: 24
90.158.102.0/23 maxlen: 23
90.158.104.0/24 maxlen: 24
90.158.105.0/24 maxlen: 24
90.158.109.0/24 maxlen: 24
90.158.110.0/24 maxlen: 24
90.158.111.0/24 maxlen: 24
90.158.112.0/20 maxlen: 20
90.158.114.0/24 maxlen: 24
90.158.116.0/24 maxlen: 24
90.158.117.0/24 maxlen: 24
90.158.119.0/24 maxlen: 24
90.158.120.0/24 maxlen: 24
90.158.121.0/24 maxlen: 24
90.158.122.0/24 maxlen: 24
90.158.123.0/24 maxlen: 24
90.158.126.0/24 maxlen: 24
90.158.127.0/24 maxlen: 24
90.158.128.0/17 maxlen: 17
90.158.128.0/21 maxlen: 21
90.158.136.0/21 maxlen: 21
90.158.139.0/24 maxlen: 24
90.158.160.0/24 maxlen: 24
90.158.161.0/24 maxlen: 24
90.158.200.0/23 maxlen: 23
90.158.224.0/22 maxlen: 22
90.158.240.0/21 maxlen: 21
90.158.244.0/22 maxlen: 22
90.158.248.0/21 maxlen: 21
90.158.249.0/24 maxlen: 24
90.158.251.0/24 maxlen: 24
90.159.0.0/16 maxlen: 16
90.159.0.0/22 maxlen: 22
90.159.0.0/24 maxlen: 24
90.159.1.0/24 maxlen: 24
90.159.2.0/24 maxlen: 24
90.159.3.0/24 maxlen: 24
90.159.4.0/23 maxlen: 23
90.159.10.0/24 maxlen: 24
90.159.15.0/24 maxlen: 24
90.159.20.0/24 maxlen: 24
90.159.26.0/24 maxlen: 24
90.159.27.0/24 maxlen: 24
90.159.29.0/24 maxlen: 24
90.159.31.0/24 maxlen: 24
90.159.33.0/24 maxlen: 24
90.159.34.0/24 maxlen: 24
90.159.36.0/24 maxlen: 24
90.159.37.0/24 maxlen: 24
90.159.38.0/24 maxlen: 24
90.159.44.0/22 maxlen: 22
90.159.50.0/24 maxlen: 24
90.159.51.0/24 maxlen: 24
90.159.58.0/24 maxlen: 24
90.159.59.0/24 maxlen: 24
90.159.60.0/24 maxlen: 24
90.159.61.0/24 maxlen: 24
90.159.64.0/18 maxlen: 18
90.159.68.0/24 maxlen: 24
90.159.128.0/20 maxlen: 20
90.159.136.0/21 maxlen: 21
90.159.136.0/24 maxlen: 24
90.159.240.0/20 maxlen: 20
90.159.246.0/24 maxlen: 24
212.98.0.0/19 maxlen: 19
212.98.0.0/20 maxlen: 20
212.98.1.0/24 maxlen: 24
212.98.2.0/24 maxlen: 24
212.98.8.0/21 maxlen: 21
212.98.9.0/24 maxlen: 24
212.98.16.0/21 maxlen: 21
212.98.16.0/24 maxlen: 24
212.98.28.0/22 maxlen: 22
213.143.224.0/20 maxlen: 20
213.143.226.0/23 maxlen: 23
213.143.226.0/24 maxlen: 24
213.143.227.0/24 maxlen: 24
213.143.228.0/24 maxlen: 24
213.143.229.0/24 maxlen: 24
213.143.230.0/24 maxlen: 24
213.143.233.0/24 maxlen: 24
213.143.234.0/24 maxlen: 24
213.143.235.0/24 maxlen: 24
213.143.236.0/22 maxlen: 22
213.143.238.0/24 maxlen: 24
213.143.239.0/24 maxlen: 24
213.143.240.0/20 maxlen: 20
213.143.240.0/22 maxlen: 22
213.143.240.0/24 maxlen: 24
213.143.241.0/24 maxlen: 24
213.143.243.0/24 maxlen: 24
213.143.244.0/22 maxlen: 22
213.143.250.0/24 maxlen: 24
213.143.251.0/24 maxlen: 24
213.143.252.0/24 maxlen: 24
213.143.253.0/24 maxlen: 24
213.143.254.0/24 maxlen: 24
213.143.255.0/24 maxlen: 24
213.161.128.0/19 maxlen: 19
213.161.128.0/21 maxlen: 21
213.161.135.0/24 maxlen: 24
213.161.136.0/21 maxlen: 21
213.161.144.0/23 maxlen: 23
213.161.144.0/24 maxlen: 24
213.161.145.0/24 maxlen: 24
213.161.146.0/24 maxlen: 24
213.161.148.0/23 maxlen: 23
213.161.148.0/24 maxlen: 24
213.161.149.0/24 maxlen: 24
213.161.150.0/24 maxlen: 24
213.161.151.0/24 maxlen: 24
213.161.152.0/21 maxlen: 21
213.161.152.0/24 maxlen: 24
2a00:1f90::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jul 2024 13:23:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:52:39:48:2b:7b:c6:6b:b6:8f:dd:eb:ae:e5:1a:67:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3919f2ad91584baff0467447bac8fb978d1f9dd3
Validity
Not Before: May 7 08:43:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=de1b8516c6e986574e6ec0c9584081db324e68fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d2:92:b5:7b:5d:9a:c2:a1:fd:77:c3:88:93:
b1:5d:50:28:c1:ac:00:15:7e:3b:f9:7a:de:0c:6c:
b7:cb:09:7d:3e:eb:83:a0:34:fd:2f:3b:64:05:9b:
2e:30:58:c3:01:94:c5:53:65:4e:2c:59:72:92:e2:
10:30:15:9a:70:fb:46:cc:21:c4:44:22:d0:47:54:
a8:d0:70:5a:94:74:85:e2:8e:45:70:88:bc:1c:63:
32:ff:3f:55:9d:bd:ea:20:b7:9d:b0:ad:ff:b2:e7:
63:3b:2b:5a:85:8c:14:8d:10:9f:52:f7:f0:05:5b:
e9:e4:51:ec:ed:fe:de:58:02:de:3b:7c:c9:c0:55:
95:22:94:be:86:d2:3e:90:a6:a6:a3:b3:09:a3:e8:
e8:18:a0:61:ec:9c:aa:88:ec:cd:c5:18:89:6d:ec:
60:7a:a0:e4:7f:9d:81:2a:9e:00:d8:b8:98:ef:80:
43:5d:46:4d:bd:7a:9f:66:c3:59:c6:e2:ed:3b:ec:
96:66:1f:64:39:be:45:6d:b7:bc:f3:c0:9c:7f:b3:
72:de:fa:14:88:79:db:c3:5e:b5:11:50:dc:26:17:
bf:10:68:85:e4:ca:4b:84:26:a3:2e:ed:f5:7f:e1:
c7:5d:69:ee:28:d8:64:45:ac:95:f1:f6:fb:ee:0e:
3c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:1B:85:16:C6:E9:86:57:4E:6E:C0:C9:58:40:81:DB:32:4E:68:FA
X509v3 Authority Key Identifier:
keyid:39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/3huFFsbphldObsDJWECB2zJOaPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/ORnyrZFYS6_wRnRHusj7l40fndM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.158.0.0/15
212.98.0.0/19
213.143.224.0/19
213.161.128.0/19
IPv6:
2a00:1f90::/32
Signature Algorithm: sha256WithRSAEncryption
6e:a4:cf:f9:88:51:12:ef:0e:5d:c4:63:06:02:39:2c:bb:02:
0f:21:d8:c4:e1:1b:b3:c5:31:58:7f:e5:a1:67:c8:52:bc:5a:
81:5f:f0:29:60:e8:da:5b:20:ce:1f:8e:88:ed:d6:04:da:5f:
08:cc:4d:43:57:f5:24:fe:37:87:3a:39:25:e7:2c:5d:18:30:
4c:41:57:a0:8c:cd:64:de:0d:de:89:e9:91:e3:e6:f3:d6:60:
fb:a9:28:02:5c:87:1b:5e:5c:fa:9f:f3:a2:bd:97:44:db:43:
8b:e6:e3:3f:7b:ae:27:4d:25:fd:bb:7e:82:65:b6:50:42:a7:
3b:f0:84:23:64:6e:6a:e6:62:c8:7b:9a:7e:d1:26:63:45:65:
0e:7a:b4:bb:ef:25:36:15:ff:9b:75:09:56:f1:aa:85:0c:4c:
6d:43:46:22:4e:01:d0:6d:74:94:31:c6:c4:e1:e7:20:d4:e3:
4a:62:5c:c0:65:4e:6f:4c:a2:d0:61:04:6a:5c:b8:f9:c7:33:
af:8e:34:17:f1:99:6c:e5:52:ee:dd:45:d9:30:0f:2f:d4:6f:
c6:e0:38:5d:5e:9d:bc:21:cf:da:c0:7d:5d:a4:17:ee:c1:19:
cf:9e:ac:f1:36:b5:2b:bc:33:1f:73:7e:aa:a4:0a:67:90:ba:
9f:92:ff:f7
-----BEGIN CERTIFICATE-----
MIIFHTCCBAWgAwIBAgISAY9SOUgre8Zrto/d667lGmeOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MTlmMmFkOTE1ODRiYWZmMDQ2NzQ0N2JhYzhmYjk3OGQx
ZjlkZDMwHhcNMjQwNTA3MDg0MzU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZTFiODUxNmM2ZTk4NjU3NGU2ZWMwYzk1ODQwODFkYjMyNGU2OGZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAntKStXtdmsKh/XfDiJOxXVAowawA
FX47+XreDGy3ywl9PuuDoDT9LztkBZsuMFjDAZTFU2VOLFlykuIQMBWacPtGzCHE
RCLQR1So0HBalHSF4o5FcIi8HGMy/z9Vnb3qILedsK3/sudjOytahYwUjRCfUvfw
BVvp5FHs7f7eWALeO3zJwFWVIpS+htI+kKamo7MJo+joGKBh7JyqiOzNxRiJbexg
eqDkf52BKp4A2LiY74BDXUZNvXqfZsNZxuLtO+yWZh9kOb5Fbbe888Ccf7Ny3voU
iHnbw161EVDcJhe/EGiF5MpLhCajLu31f+HHXWnuKNhkRayV8fb77g48ywIDAQAB
o4ICKTCCAiUwHQYDVR0OBBYEFN4bhRbG6YZXTm7AyVhAgdsyTmj6MB8GA1UdIwQY
MBaAFDkZ8q2RWEuv8EZ0R7rI+5eNH53TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1JueXJaRllTNl93Um5SSHVzajdsNDBmbmRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS85MTE4ZTItYWU3NC00YzI0LWE3NzUt
MzJhYTY3MzFjMjkxLzEvM2h1RkZzYnBobGRPYnNESldFQ0IyekpPYVBvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS85MTE4ZTItYWU3NC00YzI0LWE3NzUtMzJhYTY3MzFjMjkx
LzEvT1JueXJaRllTNl93Um5SSHVzajdsNDBmbmRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjAdBAIAATAXAwMBWp4DBAXU
YgADBAXVj+ADBAXVoYAwDQQCAAIwBwMFACoAH5AwDQYJKoZIhvcNAQELBQADggEB
AG6kz/mIURLvDl3EYwYCOSy7Ag8h2MThG7PFMVh/5aFnyFK8WoFf8Clg6NpbIM4f
jojt1gTaXwjMTUNX9ST+N4c6OSXnLF0YMExBV6CMzWTeDd6J6ZHj5vPWYPupKAJc
hxteXPqf86K9l0TbQ4vm4z97ridNJf27foJltlBCpzvwhCNkbmrmYsh7mn7RJmNF
ZQ56tLvvJTYV/5t1CVbxqoUMTG1DRiJOAdBtdJQxxsTh5yDU40piXMBlTm9MotBh
BGpcuPnHM6+ONBfxmWzlUu7dRdkwDy/Ub8bgOF1enbwhz9rAfV2kF+7BGc+erPE2
tSu8Mx9zfqqkCmeQup+S//c=
-----END CERTIFICATE-----
Generated at Mon Jul 1 16:21:27 2024 by rpki-client on console-ams.rpki-client.org