Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/xwyaUrRssYsX0Xs1plP-Y9x5lMk.roa
File: xwyaUrRssYsX0Xs1plP-Y9x5lMk.roa (raw, json)
Hash identifier: QAeH0YY+8own4qDGpYDfgQM1ZEX04c6ynkGMvZH65bs=
Subject key identifier: C7:0C:9A:52:B4:6C:B1:8B:17:D1:7B:35:A6:53:FE:63:DC:79:94:C9
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 0187E090DEA7560630C5ABD4E488BAD8C269
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/xwyaUrRssYsX0Xs1plP-Y9x5lMk.roa
Signing time: Wed 03 May 2023 07:43:23 +0000
ROA not before: Wed 03 May 2023 07:43:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59504
IP address blocks: 194.113.104.114/32 maxlen: 32
95.215.110.0/23 maxlen: 23
95.215.108.0/23 maxlen: 23
45.151.139.0/24 maxlen: 24
45.151.137.0/24 maxlen: 24
45.151.136.0/22 maxlen: 22
45.151.136.0/24 maxlen: 24
185.197.73.0/24 maxlen: 24
185.197.72.0/24 maxlen: 24
80.76.40.0/24 maxlen: 24
185.156.179.0/24 maxlen: 24
185.156.178.0/24 maxlen: 24
185.156.178.0/23 maxlen: 23
185.156.177.0/24 maxlen: 24
185.156.176.0/24 maxlen: 24
185.156.176.0/22 maxlen: 22
193.38.232.0/23 maxlen: 23
193.38.234.0/24 maxlen: 24
185.254.190.0/24 maxlen: 24
185.254.189.0/24 maxlen: 24
185.254.188.0/24 maxlen: 24
194.113.104.0/24 maxlen: 24
194.113.107.0/24 maxlen: 24
185.177.115.0/24 maxlen: 24
185.177.113.0/24 maxlen: 24
185.220.35.0/24 maxlen: 24
185.220.34.0/24 maxlen: 24
185.220.33.0/24 maxlen: 24
185.220.32.0/24 maxlen: 24
185.230.142.0/24 maxlen: 24
185.230.140.0/23 maxlen: 23
45.142.208.0/24 maxlen: 24
84.54.37.0/24 maxlen: 24
84.54.39.0/24 maxlen: 24
185.118.64.0/24 maxlen: 24
185.118.64.0/22 maxlen: 22
185.118.66.0/24 maxlen: 24
185.118.66.0/23 maxlen: 23
185.118.65.0/24 maxlen: 24
185.246.117.0/24 maxlen: 24
185.246.116.0/24 maxlen: 24
185.246.119.0/24 maxlen: 24
2a05:fb41::/32 maxlen: 32
2a07:14c0:1::/48 maxlen: 48
2a0d:60c1::/32 maxlen: 32
2a0a:4782::/32 maxlen: 32
2a0a:4781::/32 maxlen: 32
2a0d:7747::/32 maxlen: 32
2a05:fb42::/32 maxlen: 32
2a0a:4780::/32 maxlen: 32
2a0d:60c3::/32 maxlen: 32
2a07:14c1::/32 maxlen: 32
2a0d:60c0::/32 maxlen: 32
2a0a:4783::/32 maxlen: 32
2a07:14c7::/32 maxlen: 32
2a05:fb44::/32 maxlen: 32
2a07:14c6::/32 maxlen: 32
2a07:14c0:d000::/36 maxlen: 36
2a07:14c0:6000::/36 maxlen: 36
2a07:14c0:1000::/36 maxlen: 36
2a07:14c0:5000::/36 maxlen: 36
2a07:14c0:4000::/36 maxlen: 36
2a07:14c0:3000::/36 maxlen: 36
2a0c:5241::/32 maxlen: 32
2a0d:7740::/32 maxlen: 32
2a0c:5247:7000::/36 maxlen: 36
2a0c:5247:c000::/36 maxlen: 36
2a0c:5247:d000::/36 maxlen: 36
2a0c:5247:e000::/36 maxlen: 36
2a0c:5247:f000::/36 maxlen: 36
2a0c:5245::/32 maxlen: 32
2a0a:4785::/32 maxlen: 32
2a07:14c0::/48 maxlen: 48
2a05:fb45::/32 maxlen: 32
2a07:14c2::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 17 May 2023 11:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e0:90:de:a7:56:06:30:c5:ab:d4:e4:88:ba:d8:c2:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: May 3 07:43:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c70c9a52b46cb18b17d17b35a653fe63dc7994c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:54:36:11:c7:ca:c0:a7:fb:64:04:c7:e3:80:
50:0e:d3:ac:b5:b0:65:78:0f:b0:30:45:1d:0b:bd:
06:f7:6f:e8:13:21:74:3c:f2:09:b3:93:b9:38:a9:
31:ae:44:b0:a9:23:c7:c5:67:8a:0c:b3:21:92:f7:
0f:16:58:0c:f3:16:ed:2e:24:d7:7c:ea:54:9c:ad:
ee:d4:5a:bd:5b:7f:8e:c0:b4:0e:5e:47:9f:df:c4:
83:25:71:6d:55:1a:50:f9:80:62:94:91:b2:06:45:
80:9d:d6:fd:41:74:e7:ff:bb:84:77:fb:4d:62:d8:
18:48:b3:91:db:60:20:1a:6a:28:22:07:fe:e3:bc:
f6:ae:55:bd:cb:a5:bd:84:a6:b2:53:12:2a:13:2a:
f9:16:c5:d9:13:25:4e:7d:2e:d9:89:74:84:61:48:
de:b5:d6:90:d9:48:e1:34:e6:4b:b4:a9:ad:dc:45:
bf:e1:4d:a1:34:36:eb:b2:98:da:47:e2:19:d8:c8:
d4:f1:72:36:92:02:9e:78:d4:bf:a9:61:4d:7f:89:
c1:70:00:72:ec:4e:59:ce:26:ae:63:b1:09:e7:cc:
8e:b6:5f:95:1e:9e:f6:5a:17:e9:c0:63:12:a3:9c:
6d:af:0e:34:b9:db:71:62:25:de:fd:9e:fa:51:9e:
4c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:0C:9A:52:B4:6C:B1:8B:17:D1:7B:35:A6:53:FE:63:DC:79:94:C9
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/xwyaUrRssYsX0Xs1plP-Y9x5lMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.208.0/24
45.151.136.0/22
80.76.40.0/24
84.54.37.0/24
84.54.39.0/24
95.215.108.0/22
185.118.64.0/22
185.156.176.0/22
185.177.113.0/24
185.177.115.0/24
185.197.72.0/23
185.220.32.0/22
185.230.140.0-185.230.142.255
185.246.116.0/23
185.246.119.0/24
185.254.188.0-185.254.190.255
193.38.232.0-193.38.234.255
194.113.104.0/24
194.113.107.0/24
IPv6:
2a05:fb41::-2a05:fb42:ffff:ffff:ffff:ffff:ffff:ffff
2a05:fb44::/31
2a07:14c0::/47
2a07:14c0:1000::/36
2a07:14c0:3000::-2a07:14c0:6fff:ffff:ffff:ffff:ffff:ffff
2a07:14c0:d000::/36
2a07:14c1::-2a07:14c2:ffff:ffff:ffff:ffff:ffff:ffff
2a07:14c6::/31
2a0a:4780::/30
2a0a:4785::/32
2a0c:5241::/32
2a0c:5245::/32
2a0c:5247:7000::/36
2a0c:5247:c000::/34
2a0d:60c0::/31
2a0d:60c3::/32
2a0d:7740::/32
2a0d:7747::/32
Signature Algorithm: sha256WithRSAEncryption
9b:64:1e:9f:61:55:d6:21:3e:f0:1c:69:a0:ed:af:fb:e8:26:
5d:b6:b8:0b:44:56:da:c2:2b:fc:70:a5:ba:c7:2f:8a:9e:4f:
79:0b:80:75:46:50:2b:bf:94:bf:a7:60:c5:d5:37:4a:c5:a3:
e5:91:7d:29:92:c1:b2:bc:da:70:92:86:f5:36:d2:6f:29:d5:
9f:54:77:5a:4b:33:3c:52:47:d1:e7:69:06:85:a7:ef:d9:55:
f3:49:57:8c:de:42:18:26:e7:0a:f9:d5:5a:19:21:19:35:31:
be:86:7f:75:5b:3e:b0:1b:0d:6d:32:d6:08:0a:bd:c8:89:16:
fa:fd:b2:2b:81:22:9c:e9:56:62:bf:99:97:a2:a2:e9:69:04:
5f:90:67:48:34:c4:73:fb:48:fc:ce:c7:d2:6b:4e:d8:88:0c:
d4:1c:d3:de:08:ea:e9:37:e6:01:a2:db:ee:7d:f9:29:8d:3d:
56:da:cb:b0:c8:b0:0b:4e:02:86:b6:82:7a:9d:62:05:3f:b1:
ba:c7:0b:02:9d:94:c4:41:75:f7:ad:6e:81:46:58:b6:34:78:
d1:1b:b8:d9:3d:ea:7f:65:4f:90:22:d7:74:97:cf:1d:68:16:
b8:1d:4a:af:27:3a:b2:db:c7:56:4d:2e:a6:f3:58:4e:cb:d7:
87:22:1b:43
-----BEGIN CERTIFICATE-----
MIIGNDCCBRygAwIBAgISAYfgkN6nVgYwxavU5Ii62MJpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0NTllYzJhNWZkNTM5MDljNTIzOWY0Y2M4ZDZkMzI5YTI3
NzliYjEwHhcNMjMwNTAzMDc0MzIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNzBjOWE1MmI0NmNiMThiMTdkMTdiMzVhNjUzZmU2M2RjNzk5NGM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAklQ2EcfKwKf7ZATH44BQDtOstbBl
eA+wMEUdC70G92/oEyF0PPIJs5O5OKkxrkSwqSPHxWeKDLMhkvcPFlgM8xbtLiTX
fOpUnK3u1Fq9W3+OwLQOXkef38SDJXFtVRpQ+YBilJGyBkWAndb9QXTn/7uEd/tN
YtgYSLOR22AgGmooIgf+47z2rlW9y6W9hKayUxIqEyr5FsXZEyVOfS7ZiXSEYUje
tdaQ2UjhNOZLtKmt3EW/4U2hNDbrspjaR+IZ2MjU8XI2kgKeeNS/qWFNf4nBcABy
7E5ZziauY7EJ58yOtl+VHp72WhfpwGMSo5xtrw40udtxYiXe/Z76UZ5M3QIDAQAB
o4IDQDCCAzwwHQYDVR0OBBYEFMcMmlK0bLGLF9F7NaZT/mPceZTJMB8GA1UdIwQY
MBaAFERZ7Cpf1TkJxSOfTMjW0ymid5uxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkZuc0tsX1ZPUW5GSTU5TXlOYlRLYUozbTdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9mMGFlNjItYzEwNy00M2NlLWE4YTkt
NmI0MzcyNjAyMDk2LzEveHd5YVVyUnNzWXNYMFhzMXBsUC1ZOXg1bE1rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny9mMGFlNjItYzEwNy00M2NlLWE4YTktNmI0MzcyNjAyMDk2
LzEvUkZuc0tsX1ZPUW5GSTU5TXlOYlRLYUozbTdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBVAYIKwYBBQUHAQcBAf8EggFDMIIBPzCBkQQCAAEwgYoD
BAAtjtADBAItl4gDBABQTCgDBABUNiUDBABUNicDBAJf12wDBAK5dkADBAK5nLAD
BAC5sXEDBAC5sXMDBAG5xUgDBAK53CAwDAMEArnmjAMEALnmjgMEAbn2dAMEALn2
dzAMAwQCuf68AwQAuf6+MAwDBAPBJugDBADBJuoDBADCcWgDBADCcWswgagEAgAC
MIGhMA4DBQAqBftBAwUAKgX7QgMFASoF+0QDBwEqBxTAAAADBgQqBxTAEDAQAwYE
KgcUwDADBgQqBxTAYAMGBCoHFMDQMA4DBQAqBxTBAwUAKgcUwgMFASoHFMYDBQIq
CkeAAwUAKgpHhQMFACoMUkEDBQAqDFJFAwYEKgxSR3ADBgYqDFJHwAMFASoNYMAD
BQAqDWDDAwUAKg13QAMFACoNd0cwDQYJKoZIhvcNAQELBQADggEBAJtkHp9hVdYh
PvAcaaDtr/voJl22uAtEVtrCK/xwpbrHL4qeT3kLgHVGUCu/lL+nYMXVN0rFo+WR
fSmSwbK82nCShvU20m8p1Z9Ud1pLMzxSR9HnaQaFp+/ZVfNJV4zeQhgm5wr51VoZ
IRk1Mb6Gf3VbPrAbDW0y1ggKvciJFvr9siuBIpzpVmK/mZeioulpBF+QZ0g0xHP7
SPzOx9JrTtiIDNQc094I6uk35gGi2+59+SmNPVbay7DIsAtOAoa2gnqdYgU/sbrH
CwKdlMRBdfetboFGWLY0eNEbuNk96n9lT5Ai13SXzx1oFrgdSq8nOrLbx1ZNLqbz
WE7L14ciG0M=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:59 2024 by rpki-client on console-ams.rpki-client.org