Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/8Uosl4lQcWosoYCrvo0jKp-WUmM.roa
File: 8Uosl4lQcWosoYCrvo0jKp-WUmM.roa (raw, json)
Hash identifier: Gg5e+mwLbv25mdBmf3fvbHgk4FXYv0RQ7e3bxBu+U0w=
Subject key identifier: F1:4A:2C:97:89:50:71:6A:2C:A1:80:AB:BE:8D:23:2A:9F:96:52:63
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 0189C043D64C5A0F9D81C34D593A5BC978C7
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/8Uosl4lQcWosoYCrvo0jKp-WUmM.roa
Signing time: Fri 04 Aug 2023 11:16:58 +0000
ROA not before: Fri 04 Aug 2023 11:16:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58272
IP address blocks: 188.72.114.0/24 maxlen: 24
188.72.116.0/24 maxlen: 24
188.72.115.0/24 maxlen: 24
188.72.119.0/24 maxlen: 24
37.18.0.0/24 maxlen: 24
185.4.150.0/24 maxlen: 24
185.4.149.0/24 maxlen: 24
185.4.148.0/24 maxlen: 24
185.4.151.0/24 maxlen: 24
188.72.83.0/24 maxlen: 24
188.72.81.0/24 maxlen: 24
188.72.80.0/24 maxlen: 24
188.72.85.0/24 maxlen: 24
188.72.84.0/24 maxlen: 24
188.72.86.0/24 maxlen: 24
188.72.89.0/24 maxlen: 24
188.72.87.0/24 maxlen: 24
188.72.95.0/24 maxlen: 24
188.72.102.0/24 maxlen: 24
37.18.63.0/24 maxlen: 24
37.18.78.0/24 maxlen: 24
37.230.254.0/24 maxlen: 24
37.230.187.0/24 maxlen: 24
37.230.232.0/24 maxlen: 24
178.170.139.0/24 maxlen: 24
178.170.137.0/24 maxlen: 24
178.170.136.0/24 maxlen: 24
217.150.90.0/24 maxlen: 24
217.150.89.0/24 maxlen: 24
217.150.88.0/24 maxlen: 24
217.150.91.0/24 maxlen: 24
178.170.141.0/24 maxlen: 24
178.170.140.0/24 maxlen: 24
178.170.145.0/24 maxlen: 24
217.150.94.0/24 maxlen: 24
217.150.93.0/24 maxlen: 24
217.150.92.0/24 maxlen: 24
217.150.95.0/24 maxlen: 24
46.243.149.0/24 maxlen: 24
141.101.235.0/24 maxlen: 24
141.101.248.0/24 maxlen: 24
141.101.255.0/24 maxlen: 24
46.243.139.0/24 maxlen: 24
46.243.138.0/24 maxlen: 24
46.243.140.0/24 maxlen: 24
37.230.134.0/24 maxlen: 24
37.230.151.0/24 maxlen: 24
37.230.163.0/24 maxlen: 24
37.230.176.0/24 maxlen: 24
37.230.178.0/24 maxlen: 24
37.230.183.0/24 maxlen: 24
37.230.182.0/24 maxlen: 24
46.243.204.0/24 maxlen: 24
46.243.215.0/24 maxlen: 24
46.243.214.0/24 maxlen: 24
46.243.222.0/24 maxlen: 24
46.243.221.0/24 maxlen: 24
46.243.225.0/24 maxlen: 24
46.243.224.0/24 maxlen: 24
46.243.223.0/24 maxlen: 24
46.243.240.0/24 maxlen: 24
46.243.236.0/24 maxlen: 24
46.243.238.0/24 maxlen: 24
46.243.237.0/24 maxlen: 24
46.243.243.0/24 maxlen: 24
46.243.242.0/24 maxlen: 24
46.243.241.0/24 maxlen: 24
46.243.246.0/24 maxlen: 24
46.243.250.0/24 maxlen: 24
46.243.249.0/24 maxlen: 24
46.243.248.0/24 maxlen: 24
46.243.247.0/24 maxlen: 24
46.243.251.0/24 maxlen: 24
128.0.71.0/24 maxlen: 24
141.101.174.0/24 maxlen: 24
141.101.179.0/24 maxlen: 24
141.101.191.0/24 maxlen: 24
141.101.199.0/24 maxlen: 24
141.101.132.0/24 maxlen: 24
141.101.138.0/23 maxlen: 23
141.101.133.0/24 maxlen: 24
141.101.135.0/24 maxlen: 24
141.101.145.0/24 maxlen: 24
141.101.144.0/24 maxlen: 24
141.101.143.0/24 maxlen: 24
141.101.148.0/24 maxlen: 24
141.101.147.0/24 maxlen: 24
141.101.146.0/24 maxlen: 24
141.101.150.0/24 maxlen: 24
141.101.149.0/24 maxlen: 24
141.101.155.0/24 maxlen: 24
141.101.154.0/24 maxlen: 24
141.101.153.0/24 maxlen: 24
141.101.159.0/24 maxlen: 24
141.101.158.0/24 maxlen: 24
141.101.157.0/24 maxlen: 24
141.101.156.0/24 maxlen: 24
141.101.162.0/24 maxlen: 24
141.101.161.0/24 maxlen: 24
141.101.160.0/24 maxlen: 24
141.101.166.0/24 maxlen: 24
141.101.165.0/24 maxlen: 24
141.101.164.0/24 maxlen: 24
141.101.163.0/24 maxlen: 24
141.101.169.0/24 maxlen: 24
141.101.168.0/24 maxlen: 24
141.101.167.0/24 maxlen: 24
141.101.172.0/24 maxlen: 24
141.101.171.0/24 maxlen: 24
141.101.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Sep 2023 09:41:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c0:43:d6:4c:5a:0f:9d:81:c3:4d:59:3a:5b:c9:78:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Aug 4 11:16:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f14a2c978950716a2ca180abbe8d232a9f965263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:5f:63:a5:06:97:9b:7d:90:97:31:10:fd:0e:
d3:60:66:e1:fa:0a:17:c6:63:5b:c9:bd:ba:c9:46:
d3:b5:16:d3:aa:36:3c:9d:70:b4:f3:01:e8:fa:ac:
25:f2:50:4c:d0:21:b6:b2:d8:0d:f1:eb:c0:7a:82:
f9:c2:ac:6d:eb:d6:f0:03:e4:a3:c5:af:bb:12:5a:
c8:2f:07:6b:8c:c4:48:d0:71:16:e3:53:b8:a7:ad:
30:76:7d:13:5f:0a:ee:60:e9:93:67:e1:69:cc:08:
4b:8a:58:02:5a:97:42:0d:45:f5:5a:d8:74:9e:15:
ab:7c:23:f5:75:b3:ad:5d:37:b9:eb:42:0f:a5:57:
c0:37:37:58:0e:6c:10:00:36:52:c7:1f:b2:94:2e:
6c:f9:06:c9:27:31:89:e2:27:1f:98:1c:25:1a:68:
6e:7d:04:2d:ca:c0:49:1e:d8:6b:b7:33:90:63:a1:
78:85:84:dd:dd:4b:2c:38:aa:e7:f1:bf:ea:e2:26:
ce:7d:62:ee:0a:0a:d4:af:01:da:83:4f:29:7a:5f:
23:1d:c4:c9:f0:e9:49:c9:d1:32:ac:63:b6:4e:34:
85:90:2f:d7:ed:28:20:ce:08:b4:51:10:28:89:02:
29:50:9c:c2:40:e0:e8:ed:02:b1:32:56:13:48:4a:
8a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:4A:2C:97:89:50:71:6A:2C:A1:80:AB:BE:8D:23:2A:9F:96:52:63
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/8Uosl4lQcWosoYCrvo0jKp-WUmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.0.0/24
37.18.63.0/24
37.18.78.0/24
37.230.134.0/24
37.230.151.0/24
37.230.163.0/24
37.230.176.0/24
37.230.178.0/24
37.230.182.0/23
37.230.187.0/24
37.230.232.0/24
37.230.254.0/24
46.243.138.0-46.243.140.255
46.243.149.0/24
46.243.204.0/24
46.243.214.0/23
46.243.221.0-46.243.225.255
46.243.236.0-46.243.238.255
46.243.240.0/22
46.243.246.0-46.243.251.255
128.0.71.0/24
141.101.132.0/23
141.101.135.0/24
141.101.138.0/23
141.101.143.0-141.101.150.255
141.101.153.0-141.101.172.255
141.101.174.0/24
141.101.179.0/24
141.101.191.0/24
141.101.199.0/24
141.101.235.0/24
141.101.248.0/24
141.101.255.0/24
178.170.136.0/23
178.170.139.0-178.170.141.255
178.170.145.0/24
185.4.148.0/22
188.72.80.0/23
188.72.83.0-188.72.87.255
188.72.89.0/24
188.72.95.0/24
188.72.102.0/24
188.72.114.0-188.72.116.255
188.72.119.0/24
217.150.88.0/21
Signature Algorithm: sha256WithRSAEncryption
70:32:74:2c:5e:ca:2f:a2:98:e4:6d:40:ff:6b:a0:7c:3d:47:
da:e0:e3:aa:42:1d:6e:2c:48:29:7b:81:fa:9f:12:d7:d2:3b:
94:2d:a6:2d:b0:14:6c:d4:b4:f5:31:4e:a1:72:df:1a:48:e9:
f6:cc:f0:dd:7b:9a:17:27:85:a8:3a:29:cb:1a:53:34:94:e6:
9e:f6:2f:a0:95:b8:0b:f5:33:25:51:8f:09:bb:f3:4c:f5:fc:
91:95:a9:58:22:92:c9:79:8f:ee:ef:9a:48:f6:14:5a:63:16:
cf:73:2e:ad:38:87:74:f7:45:18:2b:35:f2:bb:42:37:bc:35:
71:83:52:16:d2:e7:e8:a8:4b:e0:c8:49:aa:e5:86:a7:d2:36:
19:ef:85:13:82:e3:59:17:44:8e:5b:27:90:7a:b2:9b:45:91:
e6:c0:54:c3:f6:63:3b:e4:12:61:d8:e7:e3:b7:42:41:fc:9e:
6d:da:18:99:64:f1:17:1f:d7:88:89:50:a2:90:a4:a2:6b:64:
8f:fa:5b:99:f0:ff:10:e1:96:25:4c:90:fe:8d:a3:c6:cf:3f:
63:91:2f:82:0e:1f:a5:6f:7d:33:13:e4:2c:11:50:f6:0e:c1:
16:d3:01:32:08:15:37:7c:c6:ef:6a:84:2f:78:44:a8:9c:df:
d1:87:8f:fc
-----BEGIN CERTIFICATE-----
MIIGVzCCBT+gAwIBAgISAYnAQ9ZMWg+dgcNNWTpbyXjHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4ODVlODg0YzJmYzdhNzVkMTJkZDFkZWE0OWNlMjM0OWM0
NzA2N2UwHhcNMjMwODA0MTExNjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMTRhMmM5Nzg5NTA3MTZhMmNhMTgwYWJiZThkMjMyYTlmOTY1MjYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3V9jpQaXm32QlzEQ/Q7TYGbh+goX
xmNbyb26yUbTtRbTqjY8nXC08wHo+qwl8lBM0CG2stgN8evAeoL5wqxt69bwA+Sj
xa+7ElrILwdrjMRI0HEW41O4p60wdn0TXwruYOmTZ+FpzAhLilgCWpdCDUX1Wth0
nhWrfCP1dbOtXTe560IPpVfANzdYDmwQADZSxx+ylC5s+QbJJzGJ4icfmBwlGmhu
fQQtysBJHthrtzOQY6F4hYTd3UssOKrn8b/q4ibOfWLuCgrUrwHag08pel8jHcTJ
8OlJydEyrGO2TjSFkC/X7Sggzgi0URAoiQIpUJzCQODo7QKxMlYTSEqK0QIDAQAB
o4IDYzCCA18wHQYDVR0OBBYEFPFKLJeJUHFqLKGAq76NIyqfllJjMB8GA1UdIwQY
MBaAFFiF6ITC/Hp10S3R3qSc4jScRwZ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODkt
OGM5NTgxZDk2ZDhmLzEvOFVvc2w0bFFjV29zb1lDcnZvMGpLcC1XVW1NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODktOGM5NTgxZDk2ZDhm
LzEvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBdwYIKwYBBQUHAQcBAf8EggFmMIIBYjCCAV4EAgABMIIB
VgMEACUSAAMEACUSPwMEACUSTgMEACXmhgMEACXmlwMEACXmowMEACXmsAMEACXm
sgMEASXmtgMEACXmuwMEACXm6AMEACXm/jAMAwQBLvOKAwQALvOMAwQALvOVAwQA
LvPMAwQBLvPWMAwDBAAu890DBAEu8+AwDAMEAi7z7AMEAC7z7gMEAi7z8DAMAwQB
LvP2AwQCLvP4AwQAgABHAwQBjWWEAwQAjWWHAwQBjWWKMAwDBACNZY8DBACNZZYw
DAMEAI1lmQMEAI1lrAMEAI1lrgMEAI1lswMEAI1lvwMEAI1lxwMEAI1l6wMEAI1l
+AMEAI1l/wMEAbKqiDAMAwQAsqqLAwQBsqqMAwQAsqqRAwQCuQSUAwQBvEhQMAwD
BAC8SFMDBAO8SFADBAC8SFkDBAC8SF8DBAC8SGYwDAMEAbxIcgMEALxIdAMEALxI
dwMEA9mWWDANBgkqhkiG9w0BAQsFAAOCAQEAcDJ0LF7KL6KY5G1A/2ugfD1H2uDj
qkIdbixIKXuB+p8S19I7lC2mLbAUbNS09TFOoXLfGkjp9szw3XuaFyeFqDopyxpT
NJTmnvYvoJW4C/UzJVGPCbvzTPX8kZWpWCKSyXmP7u+aSPYUWmMWz3MurTiHdPdF
GCs18rtCN7w1cYNSFtLn6KhL4MhJquWGp9I2Ge+FE4LjWRdEjlsnkHqym0WR5sBU
w/ZjO+QSYdjn47dCQfyebdoYmWTxFx/XiIlQopCkomtkj/pbmfD/EOGWJUyQ/o2j
xs8/Y5Evgg4fpW99MxPkLBFQ9g7BFtMBMggVN3zG72qEL3hEqJzf0YeP/A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:33 2024 by rpki-client on console-ams.rpki-client.org