Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/699e85-1027-4c7e-8ae7-df4a2e760ccb/1/0ngEiUD7vCSVLdb6mYHHROKzsqw.roa
File: 0ngEiUD7vCSVLdb6mYHHROKzsqw.roa (raw, json)
Hash identifier: EFB2kUZoszMQkrWChabvG3HwX9GI/b5fKJnfKDntFhg=
Subject key identifier: D2:78:04:89:40:FB:BC:24:95:2D:D6:FA:99:81:C7:44:E2:B3:B2:AC
Certificate issuer: /CN=e4a2b8e90d157ea022f8e700024a93dc356a514d
Certificate serial: 018DD50D8099CD610089ECDD6FB213038CB2
Authority key identifier: E4:A2:B8:E9:0D:15:7E:A0:22:F8:E7:00:02:4A:93:DC:35:6A:51:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5KK46Q0VfqAi-OcAAkqT3DVqUU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/699e85-1027-4c7e-8ae7-df4a2e760ccb/1/0ngEiUD7vCSVLdb6mYHHROKzsqw.roa
Signing time: Fri 23 Feb 2024 08:20:48 +0000
ROA not before: Fri 23 Feb 2024 08:20:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42910
IP address blocks: 31.210.32.0/24 maxlen: 24
31.210.33.0/24 maxlen: 24
31.210.35.0/24 maxlen: 24
31.210.44.0/24 maxlen: 24
31.210.45.0/24 maxlen: 32
31.210.46.0/24 maxlen: 24
31.210.47.0/24 maxlen: 24
31.210.56.0/24 maxlen: 24
31.210.57.0/24 maxlen: 24
31.210.58.0/24 maxlen: 24
31.210.59.0/24 maxlen: 24
31.210.60.0/24 maxlen: 24
31.210.61.0/24 maxlen: 32
77.92.128.0/24 maxlen: 24
77.92.129.0/24 maxlen: 24
77.92.130.0/24 maxlen: 24
77.92.131.0/24 maxlen: 24
77.92.132.0/24 maxlen: 24
77.92.133.0/24 maxlen: 32
77.92.134.0/24 maxlen: 24
77.92.135.0/24 maxlen: 24
77.92.136.0/24 maxlen: 24
77.92.137.0/24 maxlen: 24
77.92.138.0/24 maxlen: 24
77.92.139.0/24 maxlen: 24
77.92.140.0/24 maxlen: 32
77.92.141.0/24 maxlen: 24
77.92.148.0/24 maxlen: 24
77.92.149.0/24 maxlen: 24
77.92.155.0/24 maxlen: 32
77.92.156.0/24 maxlen: 24
77.92.157.0/24 maxlen: 32
77.92.158.0/24 maxlen: 24
77.92.159.0/24 maxlen: 24
78.135.79.0/24 maxlen: 24
78.135.108.0/24 maxlen: 32
78.135.113.0/24 maxlen: 32
78.135.114.0/24 maxlen: 32
78.135.115.0/24 maxlen: 24
78.135.116.0/24 maxlen: 24
188.132.134.0/24 maxlen: 24
188.132.135.0/24 maxlen: 32
188.132.142.0/24 maxlen: 24
188.132.147.0/24 maxlen: 32
188.132.148.0/24 maxlen: 24
188.132.157.0/24 maxlen: 24
188.132.158.0/24 maxlen: 32
188.132.172.0/24 maxlen: 24
188.132.175.0/24 maxlen: 24
188.132.176.0/24 maxlen: 32
188.132.177.0/24 maxlen: 24
188.132.180.0/24 maxlen: 24
188.132.194.0/24 maxlen: 24
188.132.204.0/24 maxlen: 32
188.132.205.0/24 maxlen: 32
188.132.244.0/24 maxlen: 32
188.132.245.0/24 maxlen: 24
188.132.246.0/24 maxlen: 24
188.132.252.0/24 maxlen: 24
188.132.253.0/24 maxlen: 24
188.132.254.0/24 maxlen: 24
188.132.255.0/24 maxlen: 24
212.68.32.0/24 maxlen: 24
212.68.33.0/24 maxlen: 32
212.68.40.0/24 maxlen: 32
212.68.41.0/24 maxlen: 32
212.68.42.0/24 maxlen: 32
212.68.43.0/24 maxlen: 32
212.68.44.0/24 maxlen: 24
212.68.45.0/24 maxlen: 32
212.68.46.0/24 maxlen: 32
212.68.50.0/24 maxlen: 32
212.68.51.0/24 maxlen: 24
212.68.56.0/24 maxlen: 32
212.68.57.0/24 maxlen: 32
212.68.61.0/24 maxlen: 32
2a02:26b0::/32 maxlen: 32
2a02:26b0:8000::/48 maxlen: 48
2a02:26b0:8001::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 05 Apr 2024 16:14:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d5:0d:80:99:cd:61:00:89:ec:dd:6f:b2:13:03:8c:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a2b8e90d157ea022f8e700024a93dc356a514d
Validity
Not Before: Feb 23 08:20:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d278048940fbbc24952dd6fa9981c744e2b3b2ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:56:08:05:29:80:ec:35:33:ba:1b:9b:24:7b:
3a:f1:e6:83:0f:cc:34:29:b2:82:47:c8:71:6c:6e:
95:03:de:06:2f:c7:33:0d:9c:b5:26:98:3d:88:f8:
cc:48:51:8e:ca:65:4f:0b:54:24:fb:23:f2:5a:1c:
5a:50:0c:2d:01:05:a2:eb:8b:08:f4:7f:be:40:ad:
ce:0a:3c:cf:f9:c4:1c:5d:d7:43:b5:52:85:88:b6:
3c:e6:40:72:e4:48:64:f6:15:f9:f0:f4:6e:8d:8e:
a5:c8:21:b8:63:a2:00:06:35:ec:58:62:2e:5f:a4:
18:30:32:65:ed:87:38:67:05:25:11:6d:f0:a6:09:
4d:e5:a8:ae:a9:93:03:77:52:fc:82:6d:3b:11:cb:
cd:21:44:85:5b:de:ad:c0:14:9f:d1:95:9d:25:d0:
f8:f2:5e:72:99:68:81:a8:5e:4c:52:88:41:d7:7e:
0f:59:a5:14:81:12:92:89:f7:51:0a:e1:d6:43:af:
86:65:93:ab:db:3e:55:99:8c:c7:ce:18:65:ed:70:
e0:43:b6:17:e4:35:9e:0e:11:ca:a5:77:7e:7a:a9:
80:b7:b0:5e:cd:c9:ad:ca:12:85:3a:c2:06:de:6f:
02:be:e4:4e:0a:38:f6:87:e3:2d:4e:a0:51:37:76:
4f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:78:04:89:40:FB:BC:24:95:2D:D6:FA:99:81:C7:44:E2:B3:B2:AC
X509v3 Authority Key Identifier:
keyid:E4:A2:B8:E9:0D:15:7E:A0:22:F8:E7:00:02:4A:93:DC:35:6A:51:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5KK46Q0VfqAi-OcAAkqT3DVqUU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/699e85-1027-4c7e-8ae7-df4a2e760ccb/1/0ngEiUD7vCSVLdb6mYHHROKzsqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/699e85-1027-4c7e-8ae7-df4a2e760ccb/1/5KK46Q0VfqAi-OcAAkqT3DVqUU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.32.0/23
31.210.35.0/24
31.210.44.0/22
31.210.56.0-31.210.61.255
77.92.128.0-77.92.141.255
77.92.148.0/23
77.92.155.0-77.92.159.255
78.135.79.0/24
78.135.108.0/24
78.135.113.0-78.135.116.255
188.132.134.0/23
188.132.142.0/24
188.132.147.0-188.132.148.255
188.132.157.0-188.132.158.255
188.132.172.0/24
188.132.175.0-188.132.177.255
188.132.180.0/24
188.132.194.0/24
188.132.204.0/23
188.132.244.0-188.132.246.255
188.132.252.0/22
212.68.32.0/23
212.68.40.0-212.68.46.255
212.68.50.0/23
212.68.56.0/23
212.68.61.0/24
IPv6:
2a02:26b0::/32
Signature Algorithm: sha256WithRSAEncryption
19:e5:ae:8b:3b:b0:e1:e1:5f:ae:a2:d8:cd:69:7d:bc:3a:54:
5f:e5:ba:24:2f:49:e9:1a:6a:4e:a9:cd:33:79:38:1b:1d:ea:
5c:52:ed:5f:e0:26:bd:ff:8a:a2:b8:c5:43:7f:aa:85:4f:c6:
00:f3:9f:0f:f1:c1:10:97:c6:bb:09:cf:d4:15:0e:ec:01:46:
6a:42:a3:a0:92:5f:73:6b:12:43:25:ca:6f:22:34:1c:3d:ce:
e0:df:14:01:6a:11:d6:6c:31:60:b7:f9:67:e3:32:d8:f5:00:
49:52:85:e2:66:0a:34:73:42:fb:ea:fe:9f:2d:88:6e:ba:3f:
38:77:1d:1f:40:42:21:31:e8:93:26:4c:16:0c:ea:7b:91:20:
59:46:9c:33:c4:0b:c4:26:10:e2:25:99:df:1c:eb:a2:34:c8:
2d:fd:04:7f:be:e5:87:15:d4:ad:21:71:18:e5:ae:06:88:48:
2b:9f:d6:fd:dd:c7:1d:4c:88:de:c1:f2:27:05:0d:a5:cd:f2:
60:3e:98:52:b5:5d:e4:3d:36:32:f8:3f:d5:87:b0:32:0b:a2:
c5:37:b6:d4:67:15:f3:24:a2:e9:15:f1:ba:da:cf:5c:0e:67:
6e:9a:90:40:f7:a9:23:bf:fe:eb:fb:61:5b:f4:61:cc:39:ff:
1c:20:f3:16
-----BEGIN CERTIFICATE-----
MIIF8TCCBNmgAwIBAgISAY3VDYCZzWEAiezdb7ITA4yyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0YTJiOGU5MGQxNTdlYTAyMmY4ZTcwMDAyNGE5M2RjMzU2
YTUxNGQwHhcNMjQwMjIzMDgyMDQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMjc4MDQ4OTQwZmJiYzI0OTUyZGQ2ZmE5OTgxYzc0NGUyYjNiMmFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAulYIBSmA7DUzuhubJHs68eaDD8w0
KbKCR8hxbG6VA94GL8czDZy1Jpg9iPjMSFGOymVPC1Qk+yPyWhxaUAwtAQWi64sI
9H++QK3OCjzP+cQcXddDtVKFiLY85kBy5Ehk9hX58PRujY6lyCG4Y6IABjXsWGIu
X6QYMDJl7Yc4ZwUlEW3wpglN5aiuqZMDd1L8gm07EcvNIUSFW96twBSf0ZWdJdD4
8l5ymWiBqF5MUohB134PWaUUgRKSifdRCuHWQ6+GZZOr2z5VmYzHzhhl7XDgQ7YX
5DWeDhHKpXd+eqmAt7BezcmtyhKFOsIG3m8CvuROCjj2h+MtTqBRN3ZP8wIDAQAB
o4IC/TCCAvkwHQYDVR0OBBYEFNJ4BIlA+7wklS3W+pmBx0Tis7KsMB8GA1UdIwQY
MBaAFOSiuOkNFX6gIvjnAAJKk9w1alFNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUtLNDZRMFZmcUFpLU9jQUFrcVQzRFZxVVUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny82OTllODUtMTAyNy00YzdlLThhZTct
ZGY0YTJlNzYwY2NiLzEvMG5nRWlVRDd2Q1NWTGRiNm1ZSEhST0t6c3F3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny82OTllODUtMTAyNy00YzdlLThhZTctZGY0YTJlNzYwY2Ni
LzEvNUtLNDZRMFZmcUFpLU9jQUFrcVQzRFZxVVUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBEQYIKwYBBQUHAQcBAf8EggEAMIH9MIHrBAIAATCB5AME
AR/SIAMEAB/SIwMEAh/SLDAMAwQDH9I4AwQBH9I8MAwDBAdNXIADBAFNXIwDBAFN
XJQwDAMEAE1cmwMEBU1cgAMEAE6HTwMEAE6HbDAMAwQATodxAwQATod0AwQBvISG
AwQAvISOMAwDBAC8hJMDBAC8hJQwDAMEALyEnQMEALyEngMEALyErDAMAwQAvISv
AwQBvISwAwQAvIS0AwQAvITCAwQBvITMMAwDBAK8hPQDBAC8hPYDBAK8hPwDBAHU
RCAwDAMEA9REKAMEANRELgMEAdREMgMEAdREOAMEANREPTANBAIAAjAHAwUAKgIm
sDANBgkqhkiG9w0BAQsFAAOCAQEAGeWuizuw4eFfrqLYzWl9vDpUX+W6JC9J6Rpq
TqnNM3k4Gx3qXFLtX+Amvf+KorjFQ3+qhU/GAPOfD/HBEJfGuwnP1BUO7AFGakKj
oJJfc2sSQyXKbyI0HD3O4N8UAWoR1mwxYLf5Z+My2PUASVKF4mYKNHNC++r+ny2I
bro/OHcdH0BCITHokyZMFgzqe5EgWUacM8QLxCYQ4iWZ3xzrojTILf0Ef77lhxXU
rSFxGOWuBohIK5/W/d3HHUyI3sHyJwUNpc3yYD6YUrVd5D02Mvg/1YewMguixTe2
1GcV8ySi6RXxutrPXA5nbpqQQPepI7/+6/thW/RhzDn/HCDzFg==
-----END CERTIFICATE-----
Generated at Fri Apr 5 21:45:33 2024 by rpki-client on console-ams.rpki-client.org