Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/EbtGFPTqvP1Uq5p8PGHiKIzIPOE.roa
File: EbtGFPTqvP1Uq5p8PGHiKIzIPOE.roa (raw, json)
Hash identifier: 5RTzh66E5r4YjA+ll+KVxfHvoFxhh2cW8+Xa4ov0bXY=
Subject key identifier: 11:BB:46:14:F4:EA:BC:FD:54:AB:9A:7C:3C:61:E2:28:8C:C8:3C:E1
Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Certificate serial: 0191998BF30A7B0B53927F7A52C47E270F46
Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/EbtGFPTqvP1Uq5p8PGHiKIzIPOE.roa
Signing time: Wed 28 Aug 2024 15:12:51 +0000
ROA not before: Wed 28 Aug 2024 15:12:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44477
IP address blocks: 37.221.124.0/22 maxlen: 24
45.67.228.0/24 maxlen: 24
45.67.229.0/24 maxlen: 24
45.67.230.0/24 maxlen: 24
45.67.231.0/24 maxlen: 24
45.120.176.0/22 maxlen: 24
62.3.12.0/24 maxlen: 24
74.119.192.0/24 maxlen: 24
74.119.193.0/24 maxlen: 24
74.119.194.0/24 maxlen: 24
74.119.195.0/24 maxlen: 24
80.92.204.0/24 maxlen: 24
80.92.205.0/24 maxlen: 24
80.92.206.0/24 maxlen: 24
86.104.72.0/22 maxlen: 24
89.221.224.0/24 maxlen: 24
89.221.225.0/24 maxlen: 24
91.132.132.0/22 maxlen: 24
91.194.161.0/24 maxlen: 24
91.225.217.0/24 maxlen: 24
91.225.218.0/24 maxlen: 24
91.225.219.0/24 maxlen: 24
103.35.188.0/22 maxlen: 24
103.106.0.0/22 maxlen: 24
103.113.68.0/22 maxlen: 24
103.231.72.0/22 maxlen: 24
176.120.64.0/22 maxlen: 24
176.120.64.0/24 maxlen: 24
176.120.72.0/22 maxlen: 24
185.234.56.0/22 maxlen: 24
185.234.64.0/22 maxlen: 24
185.235.240.0/22 maxlen: 24
185.236.232.0/22 maxlen: 24
185.242.84.0/24 maxlen: 24
185.242.85.0/24 maxlen: 24
185.242.86.0/24 maxlen: 24
185.242.87.0/24 maxlen: 24
185.250.148.0/24 maxlen: 24
185.250.149.0/24 maxlen: 24
185.250.150.0/24 maxlen: 24
185.250.151.0/24 maxlen: 24
193.203.202.0/24 maxlen: 24
194.54.156.0/24 maxlen: 24
194.54.157.0/24 maxlen: 24
194.54.158.0/24 maxlen: 24
194.54.159.0/24 maxlen: 24
194.246.114.0/24 maxlen: 24
194.246.115.0/24 maxlen: 24
195.42.232.0/22 maxlen: 24
195.149.87.0/24 maxlen: 24
213.159.64.0/21 maxlen: 24
213.159.72.0/21 maxlen: 24
213.159.76.0/24 maxlen: 24
2a09:7c40::/32 maxlen: 32
2a09:7c41::/32 maxlen: 32
2a09:7c42::/32 maxlen: 32
2a09:7c43::/32 maxlen: 32
2a09:7c44::/32 maxlen: 32
2a09:7c45::/32 maxlen: 32
2a09:7c46::/32 maxlen: 32
2a09:7c47::/32 maxlen: 32
2a11:3805::/32 maxlen: 32
2a11:3c02::/32 maxlen: 32
2a11:3c03::/32 maxlen: 32
2a14:2d80::/32 maxlen: 32
2a14:2d81::/32 maxlen: 32
2a14:2d82::/32 maxlen: 32
2a14:2d83::/32 maxlen: 32
2a14:2d85::/32 maxlen: 32
2a14:2e80::/32 maxlen: 32
2a14:2f80::/32 maxlen: 32
2a14:3080::/32 maxlen: 32
2a14:3880::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 25 Sep 2024 15:14:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:99:8b:f3:0a:7b:0b:53:92:7f:7a:52:c4:7e:27:0f:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Validity
Not Before: Aug 28 15:12:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=11bb4614f4eabcfd54ab9a7c3c61e2288cc83ce1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:14:89:91:7f:3c:47:d0:d8:e7:09:b6:d9:d7:
a2:70:b3:8b:33:4f:9e:5f:48:36:48:db:3a:e3:71:
88:9c:57:c0:01:ed:b2:91:a8:fc:ef:a5:8d:85:b7:
86:1b:f3:5e:9d:23:a1:78:6e:3a:7d:66:cd:be:0d:
e3:a5:e4:30:d4:a5:39:38:36:21:0f:44:b0:b0:ce:
52:85:08:84:1b:c9:9a:51:2b:63:0b:0b:16:da:8e:
b4:b5:c9:a4:4e:75:fe:5f:2e:e5:9f:dd:40:dc:1b:
1e:a9:f2:4b:67:2a:3e:2d:6a:dc:9b:09:c0:31:2f:
ae:c4:f4:43:bd:26:23:9d:b3:73:42:1a:94:40:3c:
21:56:a8:76:2b:e8:ac:b8:5e:f5:68:7d:19:df:b0:
82:32:3c:25:95:31:3e:00:e1:89:a2:a3:72:cc:bf:
de:50:0e:e2:30:6c:3e:44:8a:59:0a:a4:7f:46:68:
51:d2:ec:37:a2:76:cd:da:79:38:82:f9:b5:f7:b6:
5e:b0:6b:6b:d6:67:9b:b1:db:7a:a0:54:73:33:46:
49:23:6e:de:43:12:fd:2e:58:08:03:4f:11:26:53:
c5:da:a4:da:16:9d:7a:19:0e:f5:ee:f2:23:49:43:
72:1c:73:54:8c:0e:91:f4:ed:6a:cf:71:21:9b:13:
01:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:BB:46:14:F4:EA:BC:FD:54:AB:9A:7C:3C:61:E2:28:8C:C8:3C:E1
X509v3 Authority Key Identifier:
keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/EbtGFPTqvP1Uq5p8PGHiKIzIPOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.124.0/22
45.67.228.0/22
45.120.176.0/22
62.3.12.0/24
74.119.192.0/22
80.92.204.0-80.92.206.255
86.104.72.0/22
89.221.224.0/23
91.132.132.0/22
91.194.161.0/24
91.225.217.0-91.225.219.255
103.35.188.0/22
103.106.0.0/22
103.113.68.0/22
103.231.72.0/22
176.120.64.0/22
176.120.72.0/22
185.234.56.0/22
185.234.64.0/22
185.235.240.0/22
185.236.232.0/22
185.242.84.0/22
185.250.148.0/22
193.203.202.0/24
194.54.156.0/22
194.246.114.0/23
195.42.232.0/22
195.149.87.0/24
213.159.64.0/20
IPv6:
2a09:7c40::/29
2a11:3805::/32
2a11:3c02::/31
2a14:2d80::/30
2a14:2d85::/32
2a14:2e80::/32
2a14:2f80::/32
2a14:3080::/32
2a14:3880::/32
Signature Algorithm: sha256WithRSAEncryption
34:54:3f:f9:20:5b:89:40:ca:80:ef:f4:c9:a5:4f:aa:6b:e0:
18:09:61:8a:59:97:8a:4e:48:20:e4:28:e9:44:98:41:88:24:
06:5e:4f:3c:b9:0c:33:06:36:58:5f:90:cd:be:d6:1b:4f:3b:
9b:4f:71:51:28:15:98:c4:3d:f4:e6:85:05:97:32:e5:5d:42:
58:5d:60:8a:98:96:9a:4e:00:c0:7f:45:d5:1b:ca:c8:80:70:
2a:9d:43:2a:05:e0:a8:34:2a:61:df:d1:b8:a4:c9:ec:c2:2c:
a4:4f:40:a5:a4:ff:37:4a:cf:82:20:ce:a3:b7:2b:2f:85:45:
c6:b3:33:7f:8b:e7:f3:33:5a:1f:a5:3f:00:66:71:5c:c9:d3:
1a:e4:09:6b:d4:4f:f2:35:95:34:5c:15:cb:44:fe:64:59:a5:
c2:cc:6f:42:47:8b:a9:c0:d6:0c:97:c2:fe:3f:21:13:c5:2f:
2c:c0:86:84:c3:30:5b:b7:cd:f7:1d:0c:1a:51:45:ff:f0:de:
b6:27:40:17:58:db:c7:46:ae:5d:ab:37:ad:e2:76:f3:e6:6d:
dd:21:b5:26:31:0a:8f:50:5f:dd:f0:6a:f3:63:12:48:d2:4c:
f1:4f:74:89:56:fa:0e:59:b0:48:74:6d:a5:e6:72:58:55:e4:
91:7e:d5:7f
-----BEGIN CERTIFICATE-----
MIIGBDCCBOygAwIBAgISAZGZi/MKewtTkn96UsR+Jw9GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiODMwNjMwZjIzYjA3MGEyYjdiZGY1MjlmNzM5NDhjOTdl
YWNkNDAwHhcNMjQwODI4MTUxMjUxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMWJiNDYxNGY0ZWFiY2ZkNTRhYjlhN2MzYzYxZTIyODhjYzgzY2UxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4xSJkX88R9DY5wm22deicLOLM0+e
X0g2SNs643GInFfAAe2ykaj876WNhbeGG/NenSOheG46fWbNvg3jpeQw1KU5ODYh
D0SwsM5ShQiEG8maUStjCwsW2o60tcmkTnX+Xy7ln91A3BseqfJLZyo+LWrcmwnA
MS+uxPRDvSYjnbNzQhqUQDwhVqh2K+isuF71aH0Z37CCMjwllTE+AOGJoqNyzL/e
UA7iMGw+RIpZCqR/RmhR0uw3onbN2nk4gvm197ZesGtr1mebsdt6oFRzM0ZJI27e
QxL9LlgIA08RJlPF2qTaFp16GQ717vIjSUNyHHNUjA6R9O1qz3EhmxMBMwIDAQAB
o4IDEDCCAwwwHQYDVR0OBBYEFBG7RhT06rz9VKuafDxh4iiMyDzhMB8GA1UdIwQY
MBaAFLuDBjDyOwcKK3vfUp9zlIyX6s1AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdTRNR01QSTdCd29yZTk5U24zT1VqSmZxelVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS9mNzZlMjAtNTg1OS00MTVkLTg2YjMt
MTE5ZWZjYmIyMDIzLzEvRWJ0R0ZQVHF2UDFVcTVwOFBHSGlLSXpJUE9FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZS9mNzZlMjAtNTg1OS00MTVkLTg2YjMtMTE5ZWZjYmIyMDIz
LzEvdTRNR01QSTdCd29yZTk5U24zT1VqSmZxelVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBJAYIKwYBBQUHAQcBAf8EggETMIIBDzCBxQQCAAEwgb4D
BAIl3XwDBAItQ+QDBAIteLADBAA+AwwDBAJKd8AwDAMEAlBczAMEAFBczgMEAlZo
SAMEAVnd4AMEAluEhAMEAFvCoTAMAwQAW+HZAwQCW+HYAwQCZyO8AwQCZ2oAAwQC
Z3FEAwQCZ+dIAwQCsHhAAwQCsHhIAwQCueo4AwQCuepAAwQCuevwAwQCuezoAwQC
ufJUAwQCufqUAwQAwcvKAwQCwjacAwQBwvZyAwQCwyroAwQAw5VXAwQE1Z9AMEUE
AgACMD8DBQMqCXxAAwUAKhE4BQMFASoRPAIDBQIqFC2AAwUAKhQthQMFACoULoAD
BQAqFC+AAwUAKhQwgAMFACoUOIAwDQYJKoZIhvcNAQELBQADggEBADRUP/kgW4lA
yoDv9MmlT6pr4BgJYYpZl4pOSCDkKOlEmEGIJAZeTzy5DDMGNlhfkM2+1htPO5tP
cVEoFZjEPfTmhQWXMuVdQlhdYIqYlppOAMB/RdUbysiAcCqdQyoF4Kg0KmHf0bik
yezCLKRPQKWk/zdKz4IgzqO3Ky+FRcazM3+L5/MzWh+lPwBmcVzJ0xrkCWvUT/I1
lTRcFctE/mRZpcLMb0JHi6nA1gyXwv4/IRPFLyzAhoTDMFu3zfcdDBpRRf/w3rYn
QBdY28dGrl2rN63idvPmbd0htSYxCo9QX93wavNjEkjSTPFPdIlW+g5ZsEh0baXm
clhV5JF+1X8=
-----END CERTIFICATE-----
Generated at Wed Sep 25 17:34:00 2024 by rpki-client on console-fra.rpki-client.org