Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/oLUZrAyojqiBsgAzA40k7BH-4T4.roa
File: oLUZrAyojqiBsgAzA40k7BH-4T4.roa (raw, json)
Hash identifier: JApB3h+MR8H73QgPkt0uJgQ+WuEFEFVdHl+c406yt5M=
Subject key identifier: A0:B5:19:AC:0C:A8:8E:A8:81:B2:00:33:03:8D:24:EC:11:FE:E1:3E
Certificate issuer: /CN=24147c8b3f37850e9f9074993845c4e069f8efe2
Certificate serial: 0189FD2724396C04212F3BB7656F9159CE23
Authority key identifier: 24:14:7C:8B:3F:37:85:0E:9F:90:74:99:38:45:C4:E0:69:F8:EF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JBR8iz83hQ6fkHSZOEXE4Gn47-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/oLUZrAyojqiBsgAzA40k7BH-4T4.roa
Signing time: Wed 16 Aug 2023 07:02:28 +0000
ROA not before: Wed 16 Aug 2023 07:02:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 83.144.64.0/19 maxlen: 19
83.144.64.0/18 maxlen: 18
31.178.0.0/16 maxlen: 16
83.144.96.0/19 maxlen: 19
31.178.0.0/15 maxlen: 15
91.150.192.0/20 maxlen: 20
91.150.192.0/19 maxlen: 19
91.150.208.0/20 maxlen: 20
188.93.164.0/22 maxlen: 22
188.93.160.0/21 maxlen: 21
188.93.160.0/22 maxlen: 22
84.10.0.0/17 maxlen: 17
213.134.160.0/20 maxlen: 20
213.134.160.0/19 maxlen: 19
84.10.0.0/16 maxlen: 16
213.134.176.0/20 maxlen: 20
95.158.64.0/18 maxlen: 18
85.222.64.0/18 maxlen: 18
85.222.0.0/18 maxlen: 18
85.222.0.0/17 maxlen: 17
81.18.192.0/20 maxlen: 20
81.18.192.0/21 maxlen: 21
194.187.40.0/22 maxlen: 22
81.18.200.0/21 maxlen: 21
81.18.208.0/21 maxlen: 21
81.18.208.0/20 maxlen: 20
81.18.216.0/21 maxlen: 21
212.76.32.0/20 maxlen: 20
212.76.32.0/19 maxlen: 19
212.76.48.0/20 maxlen: 20
31.187.0.0/18 maxlen: 18
31.187.0.0/19 maxlen: 19
31.187.32.0/19 maxlen: 19
178.73.32.0/19 maxlen: 19
178.73.0.0/18 maxlen: 18
178.73.0.0/19 maxlen: 19
94.75.64.0/19 maxlen: 19
195.34.208.0/22 maxlen: 22
94.75.64.0/18 maxlen: 18
89.72.0.0/13 maxlen: 13
31.186.192.0/19 maxlen: 19
87.207.0.0/16 maxlen: 16
92.244.32.0/20 maxlen: 20
92.244.32.0/19 maxlen: 19
92.244.48.0/20 maxlen: 20
94.75.96.0/19 maxlen: 19
94.172.0.0/17 maxlen: 17
77.236.0.0/20 maxlen: 20
77.236.0.0/19 maxlen: 19
89.64.0.0/13 maxlen: 13
94.172.0.0/16 maxlen: 16
77.236.16.0/20 maxlen: 20
84.10.128.0/17 maxlen: 17
94.172.128.0/17 maxlen: 17
89.64.0.0/12 maxlen: 12
193.47.159.0/24 maxlen: 24
193.47.158.0/24 maxlen: 24
193.47.160.0/24 maxlen: 24
31.179.0.0/16 maxlen: 16
83.175.176.0/20 maxlen: 20
83.175.176.0/21 maxlen: 21
83.175.184.0/21 maxlen: 21
87.206.0.0/16 maxlen: 16
87.206.0.0/15 maxlen: 15
2001:4050::/32 maxlen: 32
2001:4050::/33 maxlen: 33
2001:4050:8000::/33 maxlen: 33
2a02:a300::/28 maxlen: 28
2a02:a310::/28 maxlen: 28
2a02:a300::/27 maxlen: 27
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:fd:27:24:39:6c:04:21:2f:3b:b7:65:6f:91:59:ce:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24147c8b3f37850e9f9074993845c4e069f8efe2
Validity
Not Before: Aug 16 07:02:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0b519ac0ca88ea881b20033038d24ec11fee13e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:af:58:c7:85:57:0d:2b:af:49:34:6e:03:8b:
48:a9:3f:7b:af:12:df:ec:f8:ec:64:90:e4:68:fc:
35:46:1d:cb:91:7c:e9:5e:a7:22:8c:95:77:4d:4d:
17:20:48:fb:f3:52:b9:1c:49:1e:ae:db:dc:ee:24:
6b:16:2b:ea:e4:0f:3f:04:d3:90:75:67:ec:cc:ad:
cb:11:a2:25:97:a7:e8:72:97:00:12:64:a2:d9:c9:
b5:1c:95:81:a1:f2:e0:49:d7:ad:76:8e:48:9e:df:
29:9a:c4:3e:2a:6c:21:b6:75:5e:50:3b:06:8c:b3:
5a:f7:88:df:fd:6b:93:bf:34:99:ff:b0:69:5e:fd:
bc:ac:1e:5d:83:80:92:e3:c8:2d:0d:6a:ab:0d:09:
3e:2f:a1:7b:c2:75:ad:84:c0:3d:e4:e2:74:b8:ee:
31:3a:24:23:5c:c9:8e:f4:ba:3d:2f:1b:43:aa:a3:
e2:d6:19:b4:93:6a:29:d3:74:73:92:17:1d:aa:d6:
cd:1b:50:8b:a1:0c:69:74:28:1c:69:a3:c8:56:36:
65:ac:01:26:bd:b0:f4:88:40:a6:f5:2d:a0:f7:59:
eb:da:0e:d2:ec:1d:b7:e3:0f:32:8e:e5:68:0d:fa:
bf:59:82:3e:3d:7f:5f:ab:aa:fd:cb:27:f0:d7:dd:
41:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:B5:19:AC:0C:A8:8E:A8:81:B2:00:33:03:8D:24:EC:11:FE:E1:3E
X509v3 Authority Key Identifier:
keyid:24:14:7C:8B:3F:37:85:0E:9F:90:74:99:38:45:C4:E0:69:F8:EF:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JBR8iz83hQ6fkHSZOEXE4Gn47-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/oLUZrAyojqiBsgAzA40k7BH-4T4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/JBR8iz83hQ6fkHSZOEXE4Gn47-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.178.0.0/15
31.186.192.0/19
31.187.0.0/18
77.236.0.0/19
81.18.192.0/19
83.144.64.0/18
83.175.176.0/20
84.10.0.0/16
85.222.0.0/17
87.206.0.0/15
89.64.0.0/12
91.150.192.0/19
92.244.32.0/19
94.75.64.0/18
94.172.0.0/16
95.158.64.0/18
178.73.0.0/18
188.93.160.0/21
193.47.158.0-193.47.160.255
194.187.40.0/22
195.34.208.0/22
212.76.32.0/19
213.134.160.0/19
IPv6:
2001:4050::/32
2a02:a300::/27
Signature Algorithm: sha256WithRSAEncryption
4e:43:db:7c:35:67:0c:14:5f:b5:c5:47:0f:48:db:9a:86:a4:
77:6a:6a:d3:00:8b:c3:ad:f1:f0:bd:65:31:2b:21:74:cc:81:
3e:43:f6:60:f2:de:de:08:41:d9:8e:82:d4:43:c1:59:d8:56:
22:9d:cb:77:ba:e1:90:24:b0:83:17:d7:3e:f6:ad:76:f5:69:
ba:a1:73:99:ef:6d:c8:8e:6d:dd:d3:1a:77:35:f6:91:29:b6:
7e:65:a9:99:1a:90:ee:39:bb:28:93:5c:dd:af:0c:2c:5e:1c:
f6:a0:05:f9:8e:f4:81:ef:ce:a6:5a:55:98:8f:7a:06:1a:c1:
08:9c:b2:22:f9:b7:1a:a5:24:79:3c:0a:ed:37:24:49:0e:a4:
a6:c1:20:2a:19:dd:df:eb:94:8d:5e:e9:83:36:fa:68:6e:ac:
da:98:b3:5f:26:6c:43:e5:a4:ac:b0:9f:12:66:28:3d:1c:6c:
f2:86:b1:dc:01:f7:83:c1:41:cd:6b:c7:ee:ba:6e:14:d8:99:
aa:14:13:8f:81:d6:84:b9:96:87:ce:4a:9e:73:d1:9b:fe:96:
22:65:33:c4:8d:55:f6:b0:d3:29:54:6a:f2:ca:22:b6:fe:b0:
12:cf:f5:fe:19:15:7c:99:c3:d0:24:21:11:42:54:1e:73:7b:
bc:e9:32:2b
-----BEGIN CERTIFICATE-----
MIIFnzCCBIegAwIBAgISAYn9JyQ5bAQhLzu3ZW+RWc4jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0MTQ3YzhiM2YzNzg1MGU5ZjkwNzQ5OTM4NDVjNGUwNjlm
OGVmZTIwHhcNMjMwODE2MDcwMjI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMGI1MTlhYzBjYTg4ZWE4ODFiMjAwMzMwMzhkMjRlYzExZmVlMTNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAia9Yx4VXDSuvSTRuA4tIqT97rxLf
7PjsZJDkaPw1Rh3LkXzpXqcijJV3TU0XIEj781K5HEkertvc7iRrFivq5A8/BNOQ
dWfszK3LEaIll6focpcAEmSi2cm1HJWBofLgSdetdo5Int8pmsQ+KmwhtnVeUDsG
jLNa94jf/WuTvzSZ/7BpXv28rB5dg4CS48gtDWqrDQk+L6F7wnWthMA95OJ0uO4x
OiQjXMmO9Lo9LxtDqqPi1hm0k2op03RzkhcdqtbNG1CLoQxpdCgcaaPIVjZlrAEm
vbD0iECm9S2g91nr2g7S7B234w8yjuVoDfq/WYI+PX9fq6r9yyfw191BkwIDAQAB
o4ICqzCCAqcwHQYDVR0OBBYEFKC1GawMqI6ogbIAMwONJOwR/uE+MB8GA1UdIwQY
MBaAFCQUfIs/N4UOn5B0mThFxOBp+O/iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSkJSOGl6ODNoUTZma0hTWk9FWEU0R240Ny1JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS84ZGE1ZmUtZjQwNS00Y2UwLWIyZDEt
YjM1MzViNGNhNTBmLzEvb0xVWnJBeW9qcWlCc2dBekE0MGs3QkgtNFQ0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS84ZGE1ZmUtZjQwNS00Y2UwLWIyZDEtYjM1MzViNGNhNTBm
LzEvSkJSOGl6ODNoUTZma0hTWk9FWEU0R240Ny1JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHABggrBgEFBQcBBwEB/wSBsDCBrTCBlAQCAAEwgY0DAwEf
sgMEBR+6wAMEBh+7AAMEBU3sAAMEBVESwAMEBlOQQAMEBFOvsAMDAFQKAwQHVd4A
AwMBV84DAwRZQAMEBVuWwAMEBVz0IAMEBl5LQAMDAF6sAwQGX55AAwQGskkAAwQD
vF2gMAwDBAHBL54DBADBL6ADBALCuygDBALDItADBAXUTCADBAXVhqAwFAQCAAIw
DgMFACABQFADBQUqAqMAMA0GCSqGSIb3DQEBCwUAA4IBAQBOQ9t8NWcMFF+1xUcP
SNuahqR3amrTAIvDrfHwvWUxKyF0zIE+Q/Zg8t7eCEHZjoLUQ8FZ2FYinct3uuGQ
JLCDF9c+9q129Wm6oXOZ723Ijm3d0xp3NfaRKbZ+ZamZGpDuObsok1zdrwwsXhz2
oAX5jvSB786mWlWYj3oGGsEInLIi+bcapSR5PArtNyRJDqSmwSAqGd3f65SNXumD
NvpobqzamLNfJmxD5aSssJ8SZig9HGzyhrHcAfeDwUHNa8fuum4U2JmqFBOPgdaE
uZaHzkqec9Gb/pYiZTPEjVX2sNMpVGryyiK2/rASz/X+GRV8mcPQJCERQlQec3u8
6TIr
-----END CERTIFICATE-----
Generated at Mon Sep 18 10:00:54 2023 by rpki-client on console-fra.rpki-client.org