Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/XzVMy_UKY45h54mEi1Gy8huNY10.roa
File: XzVMy_UKY45h54mEi1Gy8huNY10.roa (raw, json)
Hash identifier: 04Pnt9gNiv3voNvA5qtKPforfv4zQiPx0dcfdZnR3tk=
Subject key identifier: 5F:35:4C:CB:F5:0A:63:8E:61:E7:89:84:8B:51:B2:F2:1B:8D:63:5D
Certificate issuer: /CN=9da140e8028e6d537600e0888a9af5a971c5db46
Certificate serial: 01864F7F41CA3B302DA8DC3ADA389C9BC5B9
Authority key identifier: 9D:A1:40:E8:02:8E:6D:53:76:00:E0:88:8A:9A:F5:A9:71:C5:DB:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/naFA6AKObVN2AOCIipr1qXHF20Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/XzVMy_UKY45h54mEi1Gy8huNY10.roa
Signing time: Tue 14 Feb 2023 10:36:25 +0000
ROA not before: Tue 14 Feb 2023 10:36:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1759
IP address blocks: 81.16.64.0/20 maxlen: 20
194.252.0.0/16 maxlen: 24
194.215.0.0/16 maxlen: 24
86.114.0.0/16 maxlen: 21
192.83.96.0/22 maxlen: 24
213.140.160.0/19 maxlen: 19
212.83.96.0/19 maxlen: 24
141.208.0.0/16 maxlen: 16
192.83.100.0/24 maxlen: 24
193.208.0.0/14 maxlen: 24
194.111.0.0/16 maxlen: 24
195.165.0.0/16 maxlen: 24
192.130.0.0/16 maxlen: 24
192.194.0.0/16 maxlen: 24
213.173.128.0/19 maxlen: 19
194.251.0.0/16 maxlen: 24
131.177.0.0/16 maxlen: 16
192.103.92.0/24 maxlen: 24
192.103.105.0/24 maxlen: 24
192.103.106.0/24 maxlen: 24
192.103.112.0/22 maxlen: 24
62.73.32.0/19 maxlen: 19
192.83.64.0/19 maxlen: 24
217.140.128.0/17 maxlen: 17
192.103.116.0/24 maxlen: 24
192.83.0.0/18 maxlen: 24
84.248.0.0/14 maxlen: 21
188.238.0.0/16 maxlen: 24
192.103.85.0/24 maxlen: 24
194.137.0.0/16 maxlen: 24
192.103.86.0/24 maxlen: 24
192.103.91.0/24 maxlen: 24
88.86.128.0/19 maxlen: 19
192.58.80.0/21 maxlen: 24
212.149.64.0/18 maxlen: 18
192.58.88.0/23 maxlen: 24
213.28.0.0/16 maxlen: 24
195.156.0.0/16 maxlen: 24
80.220.0.0/14 maxlen: 21
109.240.0.0/16 maxlen: 24
212.182.192.0/18 maxlen: 24
192.58.42.0/23 maxlen: 24
192.58.44.0/22 maxlen: 24
192.58.48.0/20 maxlen: 24
192.58.64.0/20 maxlen: 24
93.106.0.0/16 maxlen: 24
194.197.0.0/16 maxlen: 24
176.72.0.0/16 maxlen: 24
192.89.0.0/16 maxlen: 24
194.89.0.0/16 maxlen: 24
62.71.0.0/16 maxlen: 16
84.34.0.0/16 maxlen: 16
193.178.133.0/24 maxlen: 24
88.192.0.0/14 maxlen: 24
80.74.192.0/19 maxlen: 19
46.132.0.0/16 maxlen: 16
212.213.0.0/16 maxlen: 24
86.115.0.0/16 maxlen: 16
194.142.0.0/16 maxlen: 24
2001:8b8::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4f:7f:41:ca:3b:30:2d:a8:dc:3a:da:38:9c:9b:c5:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9da140e8028e6d537600e0888a9af5a971c5db46
Validity
Not Before: Feb 14 10:36:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f354ccbf50a638e61e789848b51b2f21b8d635d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:bc:e8:cf:60:e9:e3:85:90:9f:72:f8:77:65:
56:01:d6:e1:77:e3:17:d8:3a:fb:25:81:e7:12:2c:
75:b9:f1:01:ce:8a:c9:f4:f9:b2:b1:60:44:e5:5e:
a6:89:98:04:52:a5:ab:90:da:99:6a:11:50:98:ad:
18:db:66:06:d2:2d:24:89:a4:14:78:74:28:9b:a0:
9d:68:fa:19:69:af:bd:f4:90:43:9d:da:50:d0:d0:
04:84:6c:55:22:6f:72:4d:a9:73:5f:90:b5:56:d0:
fb:1f:c3:4d:98:f3:15:f3:34:f7:88:ce:6e:e8:34:
cc:62:ea:26:09:8a:a5:e3:4f:f0:19:46:bd:02:c3:
29:e2:b4:04:8a:36:4a:27:7a:9f:f1:d9:b0:ef:77:
87:b0:9d:d5:e9:17:e2:8d:31:5c:9e:f2:55:61:5a:
db:8a:6e:98:8d:b9:37:fc:86:75:c3:1e:67:57:b8:
47:58:fa:4a:d2:ab:1c:c9:6e:54:d2:1d:bb:f0:69:
e3:a4:6c:ca:ed:e3:1d:16:31:1a:e4:e0:54:49:a3:
eb:89:01:ec:de:85:89:e6:2b:76:9a:f3:eb:f1:73:
ec:ce:15:8f:61:a6:12:8a:d0:7e:8c:3e:e1:3c:0d:
94:1f:a2:6f:5f:24:f7:bb:4f:25:b3:43:82:8f:5b:
17:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:35:4C:CB:F5:0A:63:8E:61:E7:89:84:8B:51:B2:F2:1B:8D:63:5D
X509v3 Authority Key Identifier:
keyid:9D:A1:40:E8:02:8E:6D:53:76:00:E0:88:8A:9A:F5:A9:71:C5:DB:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/naFA6AKObVN2AOCIipr1qXHF20Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/XzVMy_UKY45h54mEi1Gy8huNY10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/naFA6AKObVN2AOCIipr1qXHF20Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.132.0.0/16
62.71.0.0/16
62.73.32.0/19
80.74.192.0/19
80.220.0.0/14
81.16.64.0/20
84.34.0.0/16
84.248.0.0/14
86.114.0.0/15
88.86.128.0/19
88.192.0.0/14
93.106.0.0/16
109.240.0.0/16
131.177.0.0/16
141.208.0.0/16
176.72.0.0/16
188.238.0.0/16
192.58.42.0-192.58.89.255
192.83.0.0-192.83.100.255
192.89.0.0/16
192.103.85.0-192.103.86.255
192.103.91.0-192.103.92.255
192.103.105.0-192.103.106.255
192.103.112.0-192.103.116.255
192.130.0.0/16
192.194.0.0/16
193.178.133.0/24
193.208.0.0/14
194.89.0.0/16
194.111.0.0/16
194.137.0.0/16
194.142.0.0/16
194.197.0.0/16
194.215.0.0/16
194.251.0.0-194.252.255.255
195.156.0.0/16
195.165.0.0/16
212.83.96.0/19
212.149.64.0/18
212.182.192.0/18
212.213.0.0/16
213.28.0.0/16
213.140.160.0/19
213.173.128.0/19
217.140.128.0/17
IPv6:
2001:8b8::/29
Signature Algorithm: sha256WithRSAEncryption
34:5d:e1:8a:12:23:09:66:09:8b:bb:12:57:5e:ce:86:89:b3:
f5:bc:e9:47:65:64:19:86:e0:73:00:51:70:31:2f:f4:73:70:
9f:84:2e:51:c0:95:32:f0:4e:56:69:0b:f5:57:1d:8f:2c:9b:
cc:0e:af:c8:27:17:7e:5b:3d:2f:2d:33:8f:79:25:9d:b5:a7:
f0:05:a6:42:13:8f:bd:75:94:13:b5:d8:4e:ab:75:c4:99:9c:
d3:e7:8d:d2:00:f0:70:a3:d5:23:c2:ef:82:3a:26:76:c2:2a:
14:45:c7:c0:53:a3:3f:f0:56:c4:a1:2d:97:e0:9d:7d:cc:6a:
a2:f9:10:d0:ed:14:44:b3:14:07:08:0f:20:3c:c0:73:00:e2:
16:19:f6:ea:8e:37:b4:92:74:9f:a4:8d:8f:49:11:34:0a:00:
0a:0a:24:33:04:89:91:98:c0:5c:b4:45:89:7b:f1:b9:a5:a5:
e2:ec:dc:97:c4:e6:a3:ec:3d:e0:45:af:53:40:34:e3:b7:5d:
c2:69:ea:b1:63:b5:51:6e:80:8e:b4:4b:6c:bb:a4:2d:6d:06:
b5:93:68:0c:dd:43:50:b9:af:fb:19:70:45:e4:e2:d3:07:a7:
59:75:0a:ff:85:41:dd:21:16:9b:90:cd:e7:22:6a:8e:22:3f:
3a:73:b5:8f
-----BEGIN CERTIFICATE-----
MIIGODCCBSCgAwIBAgISAYZPf0HKOzAtqNw62jicm8W5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkYTE0MGU4MDI4ZTZkNTM3NjAwZTA4ODhhOWFmNWE5NzFj
NWRiNDYwHhcNMjMwMjE0MTAzNjI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZjM1NGNjYmY1MGE2MzhlNjFlNzg5ODQ4YjUxYjJmMjFiOGQ2MzVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkbzoz2Dp44WQn3L4d2VWAdbhd+MX
2Dr7JYHnEix1ufEBzorJ9PmysWBE5V6miZgEUqWrkNqZahFQmK0Y22YG0i0kiaQU
eHQom6CdaPoZaa+99JBDndpQ0NAEhGxVIm9yTalzX5C1VtD7H8NNmPMV8zT3iM5u
6DTMYuomCYql40/wGUa9AsMp4rQEijZKJ3qf8dmw73eHsJ3V6RfijTFcnvJVYVrb
im6Yjbk3/IZ1wx5nV7hHWPpK0qscyW5U0h278GnjpGzK7eMdFjEa5OBUSaPriQHs
3oWJ5it2mvPr8XPszhWPYaYSitB+jD7hPA2UH6JvXyT3u08ls0OCj1sXpwIDAQAB
o4IDRDCCA0AwHQYDVR0OBBYEFF81TMv1CmOOYeeJhItRsvIbjWNdMB8GA1UdIwQY
MBaAFJ2hQOgCjm1TdgDgiIqa9alxxdtGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmFGQTZBS09iVk4yQU9DSWlwcjFxWEhGMjBZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC8xMjY3NTUtZWVkZC00MGIxLTk1ZTgt
YTRjYThiOWMyMDViLzEvWHpWTXlfVUtZNDVoNTRtRWkxR3k4aHVOWTEwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC8xMjY3NTUtZWVkZC00MGIxLTk1ZTgtYTRjYThiOWMyMDVi
LzEvbmFGQTZBS09iVk4yQU9DSWlwcjFxWEhGMjBZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBWAYIKwYBBQUHAQcBAf8EggFHMIIBQzCCATAEAgABMIIB
KAMDAC6EAwMAPkcDBAU+SSADBAVQSsADAwJQ3AMEBFEQQAMDAFQiAwMCVPgDAwFW
cgMEBVhWgAMDAljAAwMAXWoDAwBt8AMDAIOxAwMAjdADAwCwSAMDALzuMAwDBAHA
OioDBAHAOlgwCwMDAMBTAwQAwFNkAwMAwFkwDAMEAMBnVQMEAMBnVjAMAwQAwGdb
AwQAwGdcMAwDBADAZ2kDBADAZ2owDAMEBMBncAMEAMBndAMDAMCCAwMAwMIDBADB
soUDAwLB0AMDAMJZAwMAwm8DAwDCiQMDAMKOAwMAwsUDAwDC1zAKAwMAwvsDAwDC
/AMDAMOcAwMAw6UDBAXUU2ADBAbUlUADBAbUtsADAwDU1QMDANUcAwQF1YygAwQF
1a2AAwQH2YyAMA0EAgACMAcDBQMgAQi4MA0GCSqGSIb3DQEBCwUAA4IBAQA0XeGK
EiMJZgmLuxJXXs6GibP1vOlHZWQZhuBzAFFwMS/0c3CfhC5RwJUy8E5WaQv1Vx2P
LJvMDq/IJxd+Wz0vLTOPeSWdtafwBaZCE4+9dZQTtdhOq3XEmZzT543SAPBwo9Uj
wu+COiZ2wioURcfAU6M/8FbEoS2X4J19zGqi+RDQ7RREsxQHCA8gPMBzAOIWGfbq
jje0knSfpI2PSRE0CgAKCiQzBImRmMBctEWJe/G5paXi7NyXxOaj7D3gRa9TQDTj
t13CaeqxY7VRboCOtEtsu6QtbQa1k2gM3UNQua/7GXBF5OLTB6dZdQr/hUHdIRab
kM3nImqOIj86c7WP
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:12 2023 by rpki-client on console-ams.rpki-client.org