Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/HmlFvL_27rSSEvtsP_h0XbEccA8.roa
File: HmlFvL_27rSSEvtsP_h0XbEccA8.roa (raw, json)
Hash identifier: ZOQZBlum2OELUHa76omjI3PsqwZ9oZk1HdP8UuY+Tj0=
Subject key identifier: 1E:69:45:BC:BF:F6:EE:B4:92:12:FB:6C:3F:F8:74:5D:B1:1C:70:0F
Certificate issuer: /CN=84f824d32df1a5113d82101345d785a38addbde5
Certificate serial: 018B1F2F003EB3DB682961986B7B94250AE1
Authority key identifier: 84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/HmlFvL_27rSSEvtsP_h0XbEccA8.roa
Signing time: Wed 11 Oct 2023 14:40:55 +0000
ROA not before: Wed 11 Oct 2023 14:40:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203346
IP address blocks: 188.208.52.0/22 maxlen: 22
89.39.212.0/24 maxlen: 24
89.39.215.0/24 maxlen: 24
89.33.47.0/24 maxlen: 24
86.107.72.0/24 maxlen: 24
89.33.46.0/24 maxlen: 24
89.39.241.0/24 maxlen: 24
188.241.211.0/24 maxlen: 24
188.208.48.0/22 maxlen: 22
89.33.134.0/24 maxlen: 24
86.107.193.0/24 maxlen: 24
86.107.194.0/23 maxlen: 23
188.208.109.0/24 maxlen: 24
185.80.112.0/23 maxlen: 23
185.80.114.0/23 maxlen: 23
93.114.51.0/24 maxlen: 24
93.114.58.0/24 maxlen: 24
93.114.52.0/23 maxlen: 23
93.114.54.0/24 maxlen: 24
91.235.130.0/24 maxlen: 24
91.235.131.0/24 maxlen: 24
93.114.59.0/24 maxlen: 24
89.33.116.0/24 maxlen: 24
193.32.66.0/24 maxlen: 24
193.32.67.0/24 maxlen: 24
86.106.94.0/24 maxlen: 24
86.106.95.0/24 maxlen: 24
86.106.105.0/24 maxlen: 24
86.106.110.0/23 maxlen: 23
86.106.106.0/23 maxlen: 23
86.106.114.0/23 maxlen: 23
86.106.118.0/24 maxlen: 24
188.213.252.0/22 maxlen: 22
188.213.248.0/22 maxlen: 22
89.32.43.0/24 maxlen: 24
89.38.240.0/24 maxlen: 24
89.32.170.0/24 maxlen: 24
89.46.47.0/24 maxlen: 24
86.106.138.0/23 maxlen: 23
176.126.192.0/23 maxlen: 23
86.106.140.0/23 maxlen: 23
176.126.194.0/24 maxlen: 24
188.214.95.0/24 maxlen: 24
89.39.69.0/24 maxlen: 24
86.106.174.0/24 maxlen: 24
86.106.175.0/24 maxlen: 24
188.172.176.0/20 maxlen: 20
86.105.229.0/24 maxlen: 24
86.105.230.0/24 maxlen: 24
86.105.242.0/24 maxlen: 24
86.105.243.0/24 maxlen: 24
89.45.82.0/24 maxlen: 24
193.254.48.0/21 maxlen: 21
93.119.118.0/23 maxlen: 23
93.119.120.0/23 maxlen: 23
193.254.56.0/21 maxlen: 21
93.119.124.0/24 maxlen: 24
188.213.206.0/24 maxlen: 24
86.106.10.0/24 maxlen: 24
188.213.207.0/24 maxlen: 24
188.213.214.0/24 maxlen: 24
86.106.13.0/24 maxlen: 24
188.213.215.0/24 maxlen: 24
86.106.14.0/23 maxlen: 23
86.105.176.0/24 maxlen: 24
86.105.178.0/24 maxlen: 24
86.105.184.0/24 maxlen: 24
86.105.185.0/24 maxlen: 24
89.37.96.0/24 maxlen: 24
89.37.92.0/24 maxlen: 24
193.30.254.0/24 maxlen: 24
188.212.254.0/24 maxlen: 24
89.37.129.0/24 maxlen: 24
86.104.224.0/23 maxlen: 23
89.37.130.0/23 maxlen: 23
89.37.132.0/23 maxlen: 23
86.104.222.0/23 maxlen: 23
89.37.134.0/24 maxlen: 24
86.105.2.0/24 maxlen: 24
86.105.6.0/24 maxlen: 24
188.211.167.0/24 maxlen: 24
89.36.136.0/24 maxlen: 24
89.36.138.0/24 maxlen: 24
89.36.139.0/24 maxlen: 24
89.36.141.0/24 maxlen: 24
91.218.236.0/23 maxlen: 23
91.218.238.0/23 maxlen: 23
37.156.173.0/24 maxlen: 24
94.177.126.0/24 maxlen: 24
89.36.38.0/24 maxlen: 24
89.36.39.0/24 maxlen: 24
89.42.152.0/23 maxlen: 23
176.223.116.0/23 maxlen: 23
176.223.118.0/24 maxlen: 24
89.35.54.0/24 maxlen: 24
89.42.10.0/24 maxlen: 24
46.102.182.0/24 maxlen: 24
46.102.183.0/24 maxlen: 24
89.35.89.0/24 maxlen: 24
89.35.90.0/24 maxlen: 24
37.156.64.0/24 maxlen: 24
89.41.189.0/24 maxlen: 24
89.41.190.0/23 maxlen: 23
37.156.65.0/24 maxlen: 24
176.223.161.0/24 maxlen: 24
89.33.250.0/24 maxlen: 24
89.33.251.0/24 maxlen: 24
89.33.255.0/24 maxlen: 24
89.33.254.0/24 maxlen: 24
89.40.207.0/24 maxlen: 24
89.40.209.0/24 maxlen: 24
188.208.222.0/23 maxlen: 23
89.33.198.0/23 maxlen: 23
89.33.200.0/23 maxlen: 23
89.33.206.0/24 maxlen: 24
89.40.140.0/24 maxlen: 24
89.40.141.0/24 maxlen: 24
188.209.120.0/22 maxlen: 22
188.209.124.0/22 maxlen: 22
89.41.28.0/23 maxlen: 23
89.34.104.0/24 maxlen: 24
89.34.105.0/24 maxlen: 24
93.115.59.0/24 maxlen: 24
89.34.102.0/24 maxlen: 24
89.41.50.0/23 maxlen: 23
89.41.49.0/24 maxlen: 24
194.41.60.0/24 maxlen: 24
194.41.61.0/24 maxlen: 24
77.81.84.0/23 maxlen: 23
77.81.89.0/24 maxlen: 24
77.81.86.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1f:2f:00:3e:b3:db:68:29:61:98:6b:7b:94:25:0a:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f824d32df1a5113d82101345d785a38addbde5
Validity
Not Before: Oct 11 14:40:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e6945bcbff6eeb49212fb6c3ff8745db11c700f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ed:ea:09:87:3e:0d:00:43:74:0e:c6:75:42:
2a:2c:53:2d:a4:e0:eb:c8:f9:0c:8d:6f:bc:75:5c:
18:f1:e6:d0:50:db:43:a4:e4:62:7e:91:72:d7:42:
da:41:15:c3:85:a3:d4:81:61:1d:6c:ca:1b:bd:d5:
1b:bd:79:a0:69:e8:41:f5:e8:59:7f:13:2c:63:35:
0c:86:e0:14:d3:bb:75:83:41:17:92:cd:45:52:80:
38:87:c0:7a:2c:46:93:da:83:af:0e:37:45:fb:78:
c8:eb:40:fd:03:07:fb:34:af:b9:91:f1:7a:ec:a8:
6e:d2:77:b2:09:92:cc:e5:18:47:e7:71:47:9a:73:
c9:ea:7e:03:c8:04:8f:d5:2a:cb:f4:5b:1e:18:da:
07:2d:51:9a:2b:f4:17:c0:1e:fe:13:8b:ba:de:74:
ae:6a:ed:d0:39:98:36:19:c6:ad:dc:a2:47:c9:05:
43:4d:59:4a:0d:02:9d:db:9c:97:eb:2e:94:1e:ed:
d1:a3:6c:82:2e:d1:8b:6f:a6:68:a9:6a:85:b5:96:
8d:6d:b9:27:f2:c5:4a:93:58:9b:87:fa:46:b0:dd:
c7:71:ad:63:2f:24:2f:b6:ce:90:04:8e:94:eb:ed:
8b:69:35:07:44:d2:46:ac:0d:3c:0c:53:af:99:23:
14:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:69:45:BC:BF:F6:EE:B4:92:12:FB:6C:3F:F8:74:5D:B1:1C:70:0F
X509v3 Authority Key Identifier:
keyid:84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/HmlFvL_27rSSEvtsP_h0XbEccA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/hPgk0y3xpRE9ghATRdeFo4rdveU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.64.0/23
37.156.173.0/24
46.102.182.0/23
77.81.84.0-77.81.86.255
77.81.89.0/24
86.104.222.0-86.104.225.255
86.105.2.0/24
86.105.6.0/24
86.105.176.0/24
86.105.178.0/24
86.105.184.0/23
86.105.229.0-86.105.230.255
86.105.242.0/23
86.106.10.0/24
86.106.13.0-86.106.15.255
86.106.94.0/23
86.106.105.0-86.106.107.255
86.106.110.0/23
86.106.114.0/23
86.106.118.0/24
86.106.138.0-86.106.141.255
86.106.174.0/23
86.107.72.0/24
86.107.193.0-86.107.195.255
89.32.43.0/24
89.32.170.0/24
89.33.46.0/23
89.33.116.0/24
89.33.134.0/24
89.33.198.0-89.33.201.255
89.33.206.0/24
89.33.250.0/23
89.33.254.0/23
89.34.102.0/24
89.34.104.0/23
89.35.54.0/24
89.35.89.0-89.35.90.255
89.36.38.0/23
89.36.136.0/24
89.36.138.0/23
89.36.141.0/24
89.37.92.0/24
89.37.96.0/24
89.37.129.0-89.37.134.255
89.38.240.0/24
89.39.69.0/24
89.39.212.0/24
89.39.215.0/24
89.39.241.0/24
89.40.140.0/23
89.40.207.0/24
89.40.209.0/24
89.41.28.0/23
89.41.49.0-89.41.51.255
89.41.189.0-89.41.191.255
89.42.10.0/24
89.42.152.0/23
89.45.82.0/24
89.46.47.0/24
91.218.236.0/22
91.235.130.0/23
93.114.51.0-93.114.54.255
93.114.58.0/23
93.115.59.0/24
93.119.118.0-93.119.121.255
93.119.124.0/24
94.177.126.0/24
176.126.192.0-176.126.194.255
176.223.116.0-176.223.118.255
176.223.161.0/24
185.80.112.0/22
188.172.176.0/20
188.208.48.0/21
188.208.109.0/24
188.208.222.0/23
188.209.120.0/21
188.211.167.0/24
188.212.254.0/24
188.213.206.0/23
188.213.214.0/23
188.213.248.0/21
188.214.95.0/24
188.241.211.0/24
193.30.254.0/24
193.32.66.0/23
193.254.48.0/20
194.41.60.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:fa:65:68:72:b6:82:97:f3:6e:49:2a:a9:f5:4e:91:99:4b:
30:26:9a:f9:f5:c5:be:9d:8f:ab:5a:2f:88:04:45:91:eb:dd:
67:3b:ad:84:07:84:82:1c:d4:2b:90:ce:50:41:0c:0b:a1:48:
ce:16:7c:87:8d:d7:27:a0:19:d5:e5:89:61:e7:81:fa:8b:e5:
55:2d:64:a5:c9:e2:38:79:2e:9e:b1:43:dd:aa:96:c9:5a:b4:
04:58:92:97:8e:06:0b:62:d2:90:8f:86:9b:44:1c:57:d8:fc:
1d:51:77:d3:d9:af:80:58:c3:f3:48:e1:fb:1a:06:db:74:f4:
be:04:a1:12:4a:0d:bf:f4:10:7e:d6:3f:f6:59:c9:30:d5:19:
2c:e6:0a:3f:a8:8f:65:5b:f6:be:83:69:88:19:f9:02:4a:cb:
31:13:eb:b8:90:86:ad:12:20:81:3f:ac:26:3d:08:e1:90:f2:
30:bd:6f:6c:27:1e:e1:ee:27:1b:81:2e:6e:94:f7:87:25:ef:
9c:40:c5:8b:1d:2d:47:fd:de:0e:0c:ed:58:8c:8b:75:43:40:
06:e4:13:68:56:a8:e3:7a:4f:40:37:fe:46:8f:bb:3a:03:16:
c1:29:16:e6:22:d9:b9:99:a3:77:fe:88:57:26:30:0a:00:e1:
32:c9:44:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:50 2024 by rpki-client on console-fra.rpki-client.org