Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/KuNfqq8noLasZ5INqC773TUQ8PI.roa
File: KuNfqq8noLasZ5INqC773TUQ8PI.roa (raw, json)
Hash identifier: cdsFKiWz02ig8cy3NcH5Ohs7xDGOhGYZAcVsNOKkRw8=
Subject key identifier: 2A:E3:5F:AA:AF:27:A0:B6:AC:67:92:0D:A8:2E:FB:DD:35:10:F0:F2
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01864F119438C93E8E377FDE92EFDAFF9F65
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/KuNfqq8noLasZ5INqC773TUQ8PI.roa
Signing time: Tue 14 Feb 2023 08:36:37 +0000
ROA not before: Tue 14 Feb 2023 08:36:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58272
IP address blocks: 188.72.114.0/24 maxlen: 24
188.72.116.0/24 maxlen: 24
188.72.115.0/24 maxlen: 24
188.72.119.0/24 maxlen: 24
37.18.0.0/24 maxlen: 24
185.4.150.0/24 maxlen: 24
185.4.149.0/24 maxlen: 24
185.4.148.0/24 maxlen: 24
185.4.151.0/24 maxlen: 24
188.72.83.0/24 maxlen: 24
188.72.81.0/24 maxlen: 24
188.72.80.0/24 maxlen: 24
188.72.85.0/24 maxlen: 24
188.72.84.0/24 maxlen: 24
188.72.86.0/24 maxlen: 24
188.72.89.0/24 maxlen: 24
188.72.87.0/24 maxlen: 24
188.72.95.0/24 maxlen: 24
188.72.102.0/24 maxlen: 24
37.18.63.0/24 maxlen: 24
37.18.78.0/24 maxlen: 24
37.230.254.0/24 maxlen: 24
37.230.187.0/24 maxlen: 24
178.170.231.0/24 maxlen: 24
178.170.139.0/24 maxlen: 24
178.170.137.0/24 maxlen: 24
178.170.136.0/24 maxlen: 24
217.150.90.0/24 maxlen: 24
217.150.89.0/24 maxlen: 24
217.150.88.0/24 maxlen: 24
217.150.91.0/24 maxlen: 24
178.170.141.0/24 maxlen: 24
178.170.140.0/24 maxlen: 24
178.170.145.0/24 maxlen: 24
217.150.94.0/24 maxlen: 24
217.150.93.0/24 maxlen: 24
217.150.92.0/24 maxlen: 24
217.150.95.0/24 maxlen: 24
46.243.149.0/24 maxlen: 24
141.101.248.0/24 maxlen: 24
141.101.255.0/24 maxlen: 24
46.243.139.0/24 maxlen: 24
46.243.138.0/24 maxlen: 24
46.243.140.0/24 maxlen: 24
37.230.134.0/24 maxlen: 24
37.230.151.0/24 maxlen: 24
37.230.163.0/24 maxlen: 24
37.230.170.0/24 maxlen: 24
37.230.171.0/24 maxlen: 24
37.230.176.0/24 maxlen: 24
37.230.178.0/24 maxlen: 24
37.230.183.0/24 maxlen: 24
37.230.182.0/24 maxlen: 24
46.243.204.0/24 maxlen: 24
46.243.215.0/24 maxlen: 24
46.243.214.0/24 maxlen: 24
46.243.222.0/24 maxlen: 24
46.243.221.0/24 maxlen: 24
46.243.225.0/24 maxlen: 24
46.243.224.0/24 maxlen: 24
46.243.223.0/24 maxlen: 24
46.243.240.0/24 maxlen: 24
46.243.236.0/24 maxlen: 24
46.243.238.0/24 maxlen: 24
46.243.237.0/24 maxlen: 24
46.243.243.0/24 maxlen: 24
46.243.242.0/24 maxlen: 24
46.243.241.0/24 maxlen: 24
46.243.246.0/24 maxlen: 24
46.243.250.0/24 maxlen: 24
46.243.249.0/24 maxlen: 24
46.243.248.0/24 maxlen: 24
46.243.247.0/24 maxlen: 24
46.243.253.0/24 maxlen: 24
46.243.251.0/24 maxlen: 24
128.0.71.0/24 maxlen: 24
141.101.174.0/24 maxlen: 24
141.101.179.0/24 maxlen: 24
141.101.191.0/24 maxlen: 24
141.101.199.0/24 maxlen: 24
141.101.132.0/24 maxlen: 24
141.101.138.0/23 maxlen: 23
141.101.133.0/24 maxlen: 24
141.101.135.0/24 maxlen: 24
141.101.145.0/24 maxlen: 24
141.101.144.0/24 maxlen: 24
141.101.143.0/24 maxlen: 24
141.101.148.0/24 maxlen: 24
141.101.147.0/24 maxlen: 24
141.101.146.0/24 maxlen: 24
141.101.150.0/24 maxlen: 24
141.101.149.0/24 maxlen: 24
141.101.155.0/24 maxlen: 24
141.101.154.0/24 maxlen: 24
141.101.153.0/24 maxlen: 24
141.101.159.0/24 maxlen: 24
141.101.158.0/24 maxlen: 24
141.101.157.0/24 maxlen: 24
141.101.156.0/24 maxlen: 24
141.101.162.0/24 maxlen: 24
141.101.161.0/24 maxlen: 24
141.101.160.0/24 maxlen: 24
141.101.166.0/24 maxlen: 24
141.101.165.0/24 maxlen: 24
141.101.164.0/24 maxlen: 24
141.101.163.0/24 maxlen: 24
141.101.169.0/24 maxlen: 24
141.101.168.0/24 maxlen: 24
141.101.167.0/24 maxlen: 24
141.101.172.0/24 maxlen: 24
141.101.171.0/24 maxlen: 24
141.101.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Feb 2023 14:41:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4f:11:94:38:c9:3e:8e:37:7f:de:92:ef:da:ff:9f:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Feb 14 08:36:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ae35faaaf27a0b6ac67920da82efbdd3510f0f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:76:5d:df:cf:7b:ed:75:ab:14:2d:03:41:81:
53:db:b3:2b:43:aa:63:ff:e5:34:af:53:db:ab:c6:
0c:53:97:59:be:fb:c9:0d:32:d8:ce:97:8f:60:ff:
25:ba:36:91:38:d6:9f:36:3f:bf:e9:60:00:5e:62:
1f:ae:c3:86:54:57:b9:69:9d:22:e3:47:a7:20:e9:
3a:75:9e:03:86:2d:9b:73:1c:a8:1e:d0:6a:53:3a:
cf:64:09:d9:84:ba:f0:65:9c:40:95:4d:f4:b7:99:
1c:67:90:b9:65:f0:ce:d1:dd:0e:a0:85:c1:df:8f:
2d:f7:0c:b6:2e:4c:ff:d4:9c:86:ca:33:0a:48:9e:
25:44:b7:d0:d3:18:85:91:eb:29:7d:90:81:68:e9:
c5:0b:0a:6b:bb:c6:7c:9d:b4:d7:12:45:3a:7e:eb:
42:89:a0:2c:f5:fb:52:fd:40:f7:c7:99:6d:bc:02:
6d:3a:fb:fa:99:da:17:56:c1:bb:c3:85:9c:b5:48:
81:99:73:37:3c:92:9f:45:45:23:01:54:3b:51:91:
83:62:e4:34:33:6a:ba:dd:86:85:1a:13:79:77:ab:
52:a4:f4:d5:2d:86:3a:5e:b0:94:6b:3e:6d:81:4d:
52:83:bf:f7:08:b8:96:5f:84:81:50:d5:af:41:80:
d6:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:E3:5F:AA:AF:27:A0:B6:AC:67:92:0D:A8:2E:FB:DD:35:10:F0:F2
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/KuNfqq8noLasZ5INqC773TUQ8PI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.0.0/24
37.18.63.0/24
37.18.78.0/24
37.230.134.0/24
37.230.151.0/24
37.230.163.0/24
37.230.170.0/23
37.230.176.0/24
37.230.178.0/24
37.230.182.0/23
37.230.187.0/24
37.230.254.0/24
46.243.138.0-46.243.140.255
46.243.149.0/24
46.243.204.0/24
46.243.214.0/23
46.243.221.0-46.243.225.255
46.243.236.0-46.243.238.255
46.243.240.0/22
46.243.246.0-46.243.251.255
46.243.253.0/24
128.0.71.0/24
141.101.132.0/23
141.101.135.0/24
141.101.138.0/23
141.101.143.0-141.101.150.255
141.101.153.0-141.101.172.255
141.101.174.0/24
141.101.179.0/24
141.101.191.0/24
141.101.199.0/24
141.101.248.0/24
141.101.255.0/24
178.170.136.0/23
178.170.139.0-178.170.141.255
178.170.145.0/24
178.170.231.0/24
185.4.148.0/22
188.72.80.0/23
188.72.83.0-188.72.87.255
188.72.89.0/24
188.72.95.0/24
188.72.102.0/24
188.72.114.0-188.72.116.255
188.72.119.0/24
217.150.88.0/21
Signature Algorithm: sha256WithRSAEncryption
7f:02:14:aa:2b:02:8d:37:86:dd:36:a8:28:ea:4f:1a:25:d9:
d5:1a:c3:9d:97:d4:d0:0a:ab:b1:88:9f:2e:78:fd:e1:21:fa:
8c:68:40:16:ab:a5:90:7e:9d:61:4a:fb:2d:67:73:06:93:c5:
f4:d2:17:b3:19:06:eb:de:5f:df:80:42:fe:ad:2e:b9:86:6b:
72:ac:13:60:dc:01:bf:84:75:1a:23:5d:50:e6:03:9d:c9:8c:
ed:02:d3:c1:86:da:3b:fd:49:5e:68:a4:75:ef:00:f7:14:32:
7f:e1:7c:95:6b:1b:a5:ee:d9:3e:db:ed:fc:63:74:41:5c:b1:
f9:ce:ba:1d:2f:ad:a6:88:4c:0e:42:35:4e:cd:89:5f:48:6d:
44:8d:f0:93:b8:b4:d2:b7:b1:1e:9e:b3:8c:16:72:d6:57:c0:
4c:fe:6d:d0:4e:16:d3:74:31:7e:9f:0f:02:c3:21:d7:6c:96:
a6:44:f1:f4:42:e2:9b:ac:0c:7a:d6:4a:fc:11:98:b5:39:f9:
30:80:78:97:67:83:c1:de:52:09:8e:a4:2d:9e:cd:a3:0b:1c:
cf:2a:05:0d:ea:3f:59:2b:52:a7:b9:c4:58:9d:e6:88:e1:90:
1d:73:ec:8d:1a:7b:34:7f:0d:47:bc:86:f7:cb:98:9c:ac:78:
a9:35:87:71
-----BEGIN CERTIFICATE-----
MIIGXTCCBUWgAwIBAgISAYZPEZQ4yT6ON3/eku/a/59lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4ODVlODg0YzJmYzdhNzVkMTJkZDFkZWE0OWNlMjM0OWM0
NzA2N2UwHhcNMjMwMjE0MDgzNjM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYWUzNWZhYWFmMjdhMGI2YWM2NzkyMGRhODJlZmJkZDM1MTBmMGYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtXZd38977XWrFC0DQYFT27MrQ6pj
/+U0r1Pbq8YMU5dZvvvJDTLYzpePYP8lujaRONafNj+/6WAAXmIfrsOGVFe5aZ0i
40enIOk6dZ4Dhi2bcxyoHtBqUzrPZAnZhLrwZZxAlU30t5kcZ5C5ZfDO0d0OoIXB
348t9wy2Lkz/1JyGyjMKSJ4lRLfQ0xiFkespfZCBaOnFCwpru8Z8nbTXEkU6futC
iaAs9ftS/UD3x5ltvAJtOvv6mdoXVsG7w4WctUiBmXM3PJKfRUUjAVQ7UZGDYuQ0
M2q63YaFGhN5d6tSpPTVLYY6XrCUaz5tgU1Sg7/3CLiWX4SBUNWvQYDWuwIDAQAB
o4IDaTCCA2UwHQYDVR0OBBYEFCrjX6qvJ6C2rGeSDagu+901EPDyMB8GA1UdIwQY
MBaAFFiF6ITC/Hp10S3R3qSc4jScRwZ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODkt
OGM5NTgxZDk2ZDhmLzEvS3VOZnFxOG5vTGFzWjVJTnFDNzczVFVROFBJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODktOGM5NTgxZDk2ZDhm
LzEvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBfQYIKwYBBQUHAQcBAf8EggFsMIIBaDCCAWQEAgABMIIB
XAMEACUSAAMEACUSPwMEACUSTgMEACXmhgMEACXmlwMEACXmowMEASXmqgMEACXm
sAMEACXmsgMEASXmtgMEACXmuwMEACXm/jAMAwQBLvOKAwQALvOMAwQALvOVAwQA
LvPMAwQBLvPWMAwDBAAu890DBAEu8+AwDAMEAi7z7AMEAC7z7gMEAi7z8DAMAwQB
LvP2AwQCLvP4AwQALvP9AwQAgABHAwQBjWWEAwQAjWWHAwQBjWWKMAwDBACNZY8D
BACNZZYwDAMEAI1lmQMEAI1lrAMEAI1lrgMEAI1lswMEAI1lvwMEAI1lxwMEAI1l
+AMEAI1l/wMEAbKqiDAMAwQAsqqLAwQBsqqMAwQAsqqRAwQAsqrnAwQCuQSUAwQB
vEhQMAwDBAC8SFMDBAO8SFADBAC8SFkDBAC8SF8DBAC8SGYwDAMEAbxIcgMEALxI
dAMEALxIdwMEA9mWWDANBgkqhkiG9w0BAQsFAAOCAQEAfwIUqisCjTeG3TaoKOpP
GiXZ1RrDnZfU0AqrsYifLnj94SH6jGhAFqulkH6dYUr7LWdzBpPF9NIXsxkG695f
34BC/q0uuYZrcqwTYNwBv4R1GiNdUOYDncmM7QLTwYbaO/1JXmikde8A9xQyf+F8
lWsbpe7ZPtvt/GN0QVyx+c66HS+tpohMDkI1Ts2JX0htRI3wk7i00rexHp6zjBZy
1lfATP5t0E4W03Qxfp8PAsMh12yWpkTx9ELim6wMetZK/BGYtTn5MIB4l2eDwd5S
CY6kLZ7NowsczyoFDeo/WStSp7nEWJ3miOGQHXPsjRp7NH8NR7yG98uYnKx4qTWH
cQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:38 2024 by rpki-client on console-fra.rpki-client.org