Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/IoOLfBEWXIdGnwGxJxLNXAljoC8.roa
File: IoOLfBEWXIdGnwGxJxLNXAljoC8.roa (raw, json)
Hash identifier: OzLX14T6ABib20UdfnqjeSusJTysciBdjk7x+RBI9iw=
Subject key identifier: 22:83:8B:7C:11:16:5C:87:46:9F:01:B1:27:12:CD:5C:09:63:A0:2F
Certificate issuer: /CN=3a5dc2ba5942e04fdd8ba99516a1b93b1e4f9624
Certificate serial: 01896DC04F2507EE0DE9B0E5ACD18AE12654
Authority key identifier: 3A:5D:C2:BA:59:42:E0:4F:DD:8B:A9:95:16:A1:B9:3B:1E:4F:96:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ol3CullC4E_di6mVFqG5Ox5PliQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/IoOLfBEWXIdGnwGxJxLNXAljoC8.roa
Signing time: Wed 19 Jul 2023 10:44:26 +0000
ROA not before: Wed 19 Jul 2023 10:44:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48503
IP address blocks: 185.234.60.0/22 maxlen: 22
79.133.184.0/22 maxlen: 22
79.133.188.0/22 maxlen: 22
91.234.208.0/24 maxlen: 24
91.234.209.0/24 maxlen: 24
85.193.120.0/21 maxlen: 21
185.234.24.0/22 maxlen: 22
85.193.96.0/21 maxlen: 21
85.193.104.0/21 maxlen: 21
85.193.112.0/21 maxlen: 21
188.124.232.0/22 maxlen: 22
188.124.236.0/22 maxlen: 22
188.124.244.0/23 maxlen: 23
188.124.246.0/23 maxlen: 23
176.64.0.0/21 maxlen: 21
176.64.8.0/21 maxlen: 21
176.64.16.0/21 maxlen: 21
176.64.24.0/21 maxlen: 21
176.64.32.0/24 maxlen: 24
176.64.34.0/24 maxlen: 24
176.64.33.0/24 maxlen: 24
176.64.35.0/24 maxlen: 24
185.212.246.0/24 maxlen: 24
185.212.245.0/24 maxlen: 24
185.212.244.0/24 maxlen: 24
81.91.180.0/22 maxlen: 22
185.212.247.0/24 maxlen: 24
81.91.184.0/22 maxlen: 22
185.44.84.0/23 maxlen: 23
185.44.86.0/23 maxlen: 23
93.157.176.0/23 maxlen: 23
81.211.150.0/24 maxlen: 24
93.157.178.0/23 maxlen: 23
93.157.181.0/24 maxlen: 24
93.157.180.0/24 maxlen: 24
93.157.183.0/24 maxlen: 24
93.157.182.0/24 maxlen: 24
81.211.172.0/24 maxlen: 24
81.211.195.0/24 maxlen: 24
81.211.196.0/24 maxlen: 24
81.211.198.0/24 maxlen: 24
79.137.171.0/24 maxlen: 24
81.211.197.0/24 maxlen: 24
79.137.170.0/24 maxlen: 24
81.211.199.0/24 maxlen: 24
81.211.194.0/24 maxlen: 24
81.211.193.0/24 maxlen: 24
81.211.130.0/24 maxlen: 24
81.211.133.0/24 maxlen: 24
31.10.3.0/24 maxlen: 24
81.211.201.0/24 maxlen: 24
81.211.203.0/24 maxlen: 24
79.137.176.0/23 maxlen: 23
81.211.202.0/24 maxlen: 24
81.211.204.0/24 maxlen: 24
81.211.206.0/24 maxlen: 24
79.137.178.0/23 maxlen: 23
81.211.207.0/24 maxlen: 24
217.171.144.0/24 maxlen: 24
81.211.251.0/24 maxlen: 24
81.211.253.0/24 maxlen: 24
81.211.250.0/24 maxlen: 24
212.96.64.0/24 maxlen: 24
212.96.67.0/24 maxlen: 24
212.96.66.0/24 maxlen: 24
212.96.68.0/24 maxlen: 24
212.96.70.0/23 maxlen: 23
212.96.69.0/24 maxlen: 24
212.96.65.0/24 maxlen: 24
212.96.72.0/23 maxlen: 23
212.96.74.0/23 maxlen: 23
212.96.77.0/24 maxlen: 24
212.96.76.0/24 maxlen: 24
212.96.78.0/24 maxlen: 24
212.96.80.0/23 maxlen: 23
212.96.82.0/24 maxlen: 24
212.96.84.0/24 maxlen: 24
212.96.83.0/24 maxlen: 24
212.96.85.0/24 maxlen: 24
212.96.79.0/24 maxlen: 24
212.96.86.0/23 maxlen: 23
212.96.88.0/24 maxlen: 24
212.96.91.0/24 maxlen: 24
212.96.90.0/24 maxlen: 24
212.96.95.0/24 maxlen: 24
212.96.94.0/24 maxlen: 24
212.96.93.0/24 maxlen: 24
212.96.92.0/24 maxlen: 24
95.163.145.0/24 maxlen: 24
91.103.104.0/24 maxlen: 24
91.103.105.0/24 maxlen: 24
193.41.131.0/24 maxlen: 24
193.41.130.0/24 maxlen: 24
89.223.112.0/22 maxlen: 22
89.223.116.0/22 maxlen: 22
62.122.104.0/23 maxlen: 23
62.122.106.0/23 maxlen: 23
62.122.108.0/24 maxlen: 24
62.122.109.0/24 maxlen: 24
185.250.30.0/23 maxlen: 23
185.250.28.0/23 maxlen: 23
194.0.244.0/24 maxlen: 24
194.0.245.0/24 maxlen: 24
185.223.188.0/22 maxlen: 22
185.229.84.0/22 maxlen: 22
62.122.4.0/22 maxlen: 22
62.122.0.0/22 maxlen: 22
194.0.188.0/24 maxlen: 24
194.0.189.0/24 maxlen: 24
185.229.121.0/24 maxlen: 24
185.229.120.0/24 maxlen: 24
195.189.48.0/23 maxlen: 23
195.189.51.0/24 maxlen: 24
195.189.50.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Oct 2023 08:17:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6d:c0:4f:25:07:ee:0d:e9:b0:e5:ac:d1:8a:e1:26:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a5dc2ba5942e04fdd8ba99516a1b93b1e4f9624
Validity
Not Before: Jul 19 10:44:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22838b7c11165c87469f01b12712cd5c0963a02f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:01:e1:b8:d7:25:d1:c4:e3:d5:7d:1f:9b:d0:
6b:2f:45:8c:18:fd:65:36:b6:cf:13:7c:80:40:4d:
cd:79:8c:b9:80:ab:08:e8:0c:5e:c0:ed:42:fc:dd:
ac:fc:cf:55:95:00:da:bf:77:87:6c:2f:c5:95:02:
70:6f:0a:cf:9a:a9:14:4b:39:55:54:87:55:00:be:
9d:55:28:ba:8a:f2:e0:7a:61:35:73:8a:ef:29:f8:
1d:73:7a:dd:14:ad:4b:10:99:10:85:88:bc:85:54:
03:8c:de:1a:43:e1:6a:b6:13:ac:18:5f:22:78:1d:
ae:73:87:80:a9:b2:83:6e:20:86:47:e4:a2:d9:ac:
cb:0c:81:17:39:df:f5:4d:4c:19:5b:2d:b3:0f:11:
e4:06:d1:36:ed:e3:c5:1e:7f:54:6a:ef:49:69:b8:
4d:01:8a:fc:09:d4:fb:45:ce:f3:42:78:5b:6f:23:
79:4b:c4:fd:55:74:4b:0e:43:f1:b6:c0:8b:7b:7c:
df:9c:b6:6d:a5:44:26:d8:63:f7:a4:b4:33:1b:70:
02:45:81:62:ca:da:52:c0:a5:77:e8:fc:9d:57:7f:
d7:36:96:8a:e1:52:49:a5:09:99:1b:32:6d:84:72:
70:a4:7f:83:79:ac:5e:15:f1:d3:3e:bf:ae:85:11:
b1:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:83:8B:7C:11:16:5C:87:46:9F:01:B1:27:12:CD:5C:09:63:A0:2F
X509v3 Authority Key Identifier:
keyid:3A:5D:C2:BA:59:42:E0:4F:DD:8B:A9:95:16:A1:B9:3B:1E:4F:96:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ol3CullC4E_di6mVFqG5Ox5PliQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/IoOLfBEWXIdGnwGxJxLNXAljoC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/714f54-fa75-4091-8c0b-9c15fbd5ee5e/1/Ol3CullC4E_di6mVFqG5Ox5PliQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.10.3.0/24
62.122.0.0/21
62.122.104.0-62.122.109.255
79.133.184.0/21
79.137.170.0/23
79.137.176.0/22
81.91.180.0-81.91.187.255
81.211.130.0/24
81.211.133.0/24
81.211.150.0/24
81.211.172.0/24
81.211.193.0-81.211.199.255
81.211.201.0-81.211.204.255
81.211.206.0/23
81.211.250.0/23
81.211.253.0/24
85.193.96.0/19
89.223.112.0/21
91.103.104.0/23
91.234.208.0/23
93.157.176.0/21
95.163.145.0/24
176.64.0.0-176.64.35.255
185.44.84.0/22
185.212.244.0/22
185.223.188.0/22
185.229.84.0/22
185.229.120.0/23
185.234.24.0/22
185.234.60.0/22
185.250.28.0/22
188.124.232.0/21
188.124.244.0/22
193.41.130.0/23
194.0.188.0/23
194.0.244.0/23
195.189.48.0/22
212.96.64.0-212.96.88.255
212.96.90.0-212.96.95.255
217.171.144.0/24
Signature Algorithm: sha256WithRSAEncryption
92:36:27:f0:fa:30:bc:50:40:a6:5b:9b:48:ee:86:72:93:9b:
64:fd:b8:64:ee:20:d9:e2:97:7c:69:65:9a:56:44:79:11:e0:
1a:40:c5:fb:7b:11:ea:d5:f3:cc:c2:18:e1:a1:6d:20:7d:59:
64:04:31:24:69:21:14:d4:ab:38:9c:5b:da:8e:65:00:31:8d:
66:dc:40:1e:a2:d4:f6:b5:29:fe:36:f3:b9:05:4e:72:17:e2:
6e:22:4a:01:47:34:16:c3:75:ee:30:46:eb:50:d4:cb:bc:27:
c4:c7:e9:41:a8:98:bd:54:dc:26:94:51:e6:06:1c:0f:fd:b5:
60:68:ba:01:b3:84:a2:9d:7d:57:34:c4:a4:03:2c:bc:73:4a:
c9:1d:67:d6:76:ba:d6:7a:ee:17:91:90:77:24:d1:fe:07:8e:
1e:7f:e2:d2:dd:6b:62:28:51:13:b5:16:69:e0:25:e3:0c:51:
79:9b:29:04:f7:e6:79:ba:41:65:4b:4b:b8:de:74:29:80:70:
34:ad:3d:bc:95:ce:8e:e4:97:a6:14:9e:bb:ca:d0:f2:04:30:
f4:74:06:ba:d0:0f:00:0c:93:61:c4:16:ef:72:9a:7b:81:4b:
6f:79:45:6a:d3:2b:4d:c5:77:fa:5f:5b:82:8b:42:76:b5:f4:
6e:dc:e8:02
-----BEGIN CERTIFICATE-----
MIIGKDCCBRCgAwIBAgISAYltwE8lB+4N6bDlrNGK4SZUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhNWRjMmJhNTk0MmUwNGZkZDhiYTk5NTE2YTFiOTNiMWU0
Zjk2MjQwHhcNMjMwNzE5MTA0NDI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMjgzOGI3YzExMTY1Yzg3NDY5ZjAxYjEyNzEyY2Q1YzA5NjNhMDJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1gHhuNcl0cTj1X0fm9BrL0WMGP1l
NrbPE3yAQE3NeYy5gKsI6AxewO1C/N2s/M9VlQDav3eHbC/FlQJwbwrPmqkUSzlV
VIdVAL6dVSi6ivLgemE1c4rvKfgdc3rdFK1LEJkQhYi8hVQDjN4aQ+FqthOsGF8i
eB2uc4eAqbKDbiCGR+Si2azLDIEXOd/1TUwZWy2zDxHkBtE27ePFHn9Uau9JabhN
AYr8CdT7Rc7zQnhbbyN5S8T9VXRLDkPxtsCLe3zfnLZtpUQm2GP3pLQzG3ACRYFi
ytpSwKV36PydV3/XNpaK4VJJpQmZGzJthHJwpH+DeaxeFfHTPr+uhRGxrwIDAQAB
o4IDNDCCAzAwHQYDVR0OBBYEFCKDi3wRFlyHRp8BsScSzVwJY6AvMB8GA1UdIwQY
MBaAFDpdwrpZQuBP3YuplRahuTseT5YkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2wzQ3VsbEM0RV9kaTZtVkZxRzVPeDVQbGlRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC83MTRmNTQtZmE3NS00MDkxLThjMGIt
OWMxNWZiZDVlZTVlLzEvSW9PTGZCRVdYSWRHbndHeEp4TE5YQWxqb0M4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC83MTRmNTQtZmE3NS00MDkxLThjMGItOWMxNWZiZDVlZTVl
LzEvT2wzQ3VsbEM0RV9kaTZtVkZxRzVPeDVQbGlRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBSAYIKwYBBQUHAQcBAf8EggE3MIIBMzCCAS8EAgABMIIB
JwMEAB8KAwMEAz56ADAMAwQDPnpoAwQBPnpsAwQDT4W4AwQBT4mqAwQCT4mwMAwD
BAJRW7QDBAJRW7gDBABR04IDBABR04UDBABR05YDBABR06wwDAMEAFHTwQMEA1HT
wDAMAwQAUdPJAwQAUdPMAwQBUdPOAwQBUdP6AwQAUdP9AwQFVcFgAwQDWd9wAwQB
W2doAwQBW+rQAwQDXZ2wAwQAX6ORMAsDAwawQAMEArBAIAMEArksVAMEArnU9AME
ArnfvAMEArnlVAMEAbnleAMEArnqGAMEArnqPAMEArn6HAMEA7x86AMEArx89AME
AcEpggMEAcIAvAMEAcIA9AMEAsO9MDAMAwQG1GBAAwQA1GBYMAwDBAHUYFoDBAXU
YEADBADZq5AwDQYJKoZIhvcNAQELBQADggEBAJI2J/D6MLxQQKZbm0juhnKTm2T9
uGTuINnil3xpZZpWRHkR4BpAxft7EerV88zCGOGhbSB9WWQEMSRpIRTUqzicW9qO
ZQAxjWbcQB6i1Pa1Kf4287kFTnIX4m4iSgFHNBbDde4wRutQ1Mu8J8TH6UGomL1U
3CaUUeYGHA/9tWBougGzhKKdfVc0xKQDLLxzSskdZ9Z2utZ67heRkHck0f4Hjh5/
4tLda2IoURO1FmngJeMMUXmbKQT35nm6QWVLS7jedCmAcDStPbyVzo7kl6YUnrvK
0PIEMPR0BrrQDwAMk2HEFu9ymnuBS295RWrTK03Fd/pfW4KLQna19G7c6AI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:44 2024 by rpki-client on console-fra.rpki-client.org