Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/xce868Bx8LOE61TviA5hYLKTSws.roa
File: xce868Bx8LOE61TviA5hYLKTSws.roa (raw, json)
Hash identifier: I+Fd8sbImCuEcNlTym+AUsqDrUeg8bgLnC1qPFBEy6A=
Subject key identifier: C5:C7:BC:EB:C0:71:F0:B3:84:EB:54:EF:88:0E:61:60:B2:93:4B:0B
Certificate issuer: /CN=84f824d32df1a5113d82101345d785a38addbde5
Certificate serial: 018997BF56E10B9305656139BB7F4AB81F56
Authority key identifier: 84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/xce868Bx8LOE61TviA5hYLKTSws.roa
Signing time: Thu 27 Jul 2023 14:27:26 +0000
ROA not before: Thu 27 Jul 2023 14:27:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203346
IP address blocks: 188.208.52.0/22 maxlen: 22
89.39.212.0/24 maxlen: 24
89.39.215.0/24 maxlen: 24
89.33.47.0/24 maxlen: 24
86.107.72.0/24 maxlen: 24
89.33.46.0/24 maxlen: 24
89.39.241.0/24 maxlen: 24
188.241.211.0/24 maxlen: 24
188.208.48.0/22 maxlen: 22
89.33.134.0/24 maxlen: 24
86.107.193.0/24 maxlen: 24
86.107.194.0/23 maxlen: 23
188.208.109.0/24 maxlen: 24
185.80.112.0/23 maxlen: 23
185.80.114.0/23 maxlen: 23
93.114.51.0/24 maxlen: 24
93.114.58.0/24 maxlen: 24
93.114.52.0/23 maxlen: 23
93.114.54.0/24 maxlen: 24
91.235.130.0/24 maxlen: 24
91.235.131.0/24 maxlen: 24
93.114.59.0/24 maxlen: 24
89.33.116.0/24 maxlen: 24
193.32.66.0/24 maxlen: 24
193.32.67.0/24 maxlen: 24
86.106.94.0/24 maxlen: 24
86.106.95.0/24 maxlen: 24
86.106.105.0/24 maxlen: 24
86.106.110.0/23 maxlen: 23
86.106.106.0/23 maxlen: 23
86.106.114.0/23 maxlen: 23
86.106.116.0/23 maxlen: 23
86.106.118.0/24 maxlen: 24
188.213.252.0/22 maxlen: 22
188.213.248.0/22 maxlen: 22
89.32.43.0/24 maxlen: 24
89.38.240.0/24 maxlen: 24
89.32.170.0/24 maxlen: 24
89.46.47.0/24 maxlen: 24
86.106.138.0/23 maxlen: 23
176.126.192.0/23 maxlen: 23
86.106.140.0/23 maxlen: 23
176.126.194.0/24 maxlen: 24
188.214.95.0/24 maxlen: 24
89.39.69.0/24 maxlen: 24
86.106.174.0/24 maxlen: 24
86.106.175.0/24 maxlen: 24
188.172.176.0/20 maxlen: 20
86.105.229.0/24 maxlen: 24
86.105.230.0/24 maxlen: 24
86.105.242.0/24 maxlen: 24
86.105.243.0/24 maxlen: 24
89.45.82.0/24 maxlen: 24
193.254.48.0/21 maxlen: 21
93.119.118.0/23 maxlen: 23
93.119.120.0/23 maxlen: 23
193.254.56.0/21 maxlen: 21
93.119.124.0/24 maxlen: 24
188.213.206.0/24 maxlen: 24
86.106.10.0/24 maxlen: 24
188.213.207.0/24 maxlen: 24
188.213.214.0/24 maxlen: 24
86.106.13.0/24 maxlen: 24
188.213.215.0/24 maxlen: 24
86.106.14.0/23 maxlen: 23
86.105.176.0/24 maxlen: 24
86.105.178.0/24 maxlen: 24
86.105.184.0/24 maxlen: 24
86.105.185.0/24 maxlen: 24
89.37.96.0/24 maxlen: 24
89.37.92.0/24 maxlen: 24
193.30.254.0/24 maxlen: 24
188.212.254.0/24 maxlen: 24
89.37.129.0/24 maxlen: 24
86.104.224.0/23 maxlen: 23
89.37.130.0/23 maxlen: 23
89.37.132.0/23 maxlen: 23
86.104.222.0/23 maxlen: 23
89.37.134.0/24 maxlen: 24
86.105.2.0/24 maxlen: 24
86.105.6.0/24 maxlen: 24
188.211.167.0/24 maxlen: 24
89.36.136.0/24 maxlen: 24
89.36.138.0/24 maxlen: 24
89.36.139.0/24 maxlen: 24
89.36.141.0/24 maxlen: 24
91.218.236.0/23 maxlen: 23
91.218.238.0/23 maxlen: 23
37.156.173.0/24 maxlen: 24
94.177.126.0/24 maxlen: 24
89.36.38.0/24 maxlen: 24
89.36.39.0/24 maxlen: 24
89.42.152.0/23 maxlen: 23
176.223.116.0/23 maxlen: 23
176.223.118.0/24 maxlen: 24
89.35.54.0/24 maxlen: 24
89.42.10.0/24 maxlen: 24
46.102.182.0/24 maxlen: 24
46.102.183.0/24 maxlen: 24
89.35.89.0/24 maxlen: 24
89.35.90.0/24 maxlen: 24
37.156.64.0/24 maxlen: 24
89.41.189.0/24 maxlen: 24
89.41.190.0/23 maxlen: 23
37.156.65.0/24 maxlen: 24
176.223.161.0/24 maxlen: 24
89.33.250.0/24 maxlen: 24
89.33.251.0/24 maxlen: 24
89.33.255.0/24 maxlen: 24
89.33.254.0/24 maxlen: 24
89.40.207.0/24 maxlen: 24
89.40.209.0/24 maxlen: 24
188.208.222.0/23 maxlen: 23
89.33.198.0/23 maxlen: 23
89.33.200.0/23 maxlen: 23
89.33.206.0/24 maxlen: 24
89.40.140.0/24 maxlen: 24
89.40.141.0/24 maxlen: 24
188.209.120.0/22 maxlen: 22
188.209.124.0/22 maxlen: 22
89.41.28.0/23 maxlen: 23
89.34.104.0/24 maxlen: 24
89.34.105.0/24 maxlen: 24
93.115.59.0/24 maxlen: 24
89.34.102.0/24 maxlen: 24
89.41.50.0/23 maxlen: 23
89.41.49.0/24 maxlen: 24
31.14.66.0/23 maxlen: 23
194.41.60.0/24 maxlen: 24
194.41.61.0/24 maxlen: 24
77.81.84.0/23 maxlen: 23
77.81.89.0/24 maxlen: 24
77.81.86.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:97:bf:56:e1:0b:93:05:65:61:39:bb:7f:4a:b8:1f:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f824d32df1a5113d82101345d785a38addbde5
Validity
Not Before: Jul 27 14:27:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c5c7bcebc071f0b384eb54ef880e6160b2934b0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:cc:e7:14:4d:bd:c3:d1:00:09:bf:cb:5a:df:
f4:1d:4c:dd:6d:37:1a:79:7a:88:8b:b9:e3:61:db:
97:6d:92:65:44:01:bd:d5:dd:45:0f:a2:4a:88:03:
c0:b1:3e:36:be:fc:c4:fb:66:e5:6a:6e:81:c8:87:
2e:3b:31:a8:4f:bb:55:32:9c:c2:b0:52:2f:3f:2c:
f5:82:13:e0:8d:4c:34:57:40:35:46:36:d5:a2:3a:
0e:71:a7:e1:d9:68:fd:98:ef:a3:6a:6f:96:f7:cf:
ed:69:6f:e9:ff:01:17:ff:88:e2:85:be:25:59:dd:
b6:8c:65:95:f8:cf:14:35:10:ba:a3:c8:bd:2f:d8:
a1:15:10:57:96:73:04:e4:d5:c8:81:67:99:b7:0f:
70:6d:7f:5f:e3:9a:45:62:75:25:3b:7c:d5:4f:07:
29:55:27:f0:a8:95:c0:61:25:90:0a:07:f3:e8:78:
50:a1:10:01:28:5c:e6:8f:3f:85:ee:a3:2a:a7:76:
a7:25:58:26:8c:9d:41:22:ee:ad:32:5d:b0:45:49:
40:44:27:66:2f:a1:d1:1c:72:ca:58:99:f7:b9:15:
32:1c:46:b0:26:fa:29:77:16:3f:e0:45:c9:40:14:
67:5e:ad:dd:09:98:db:49:1c:e5:35:84:cf:82:ed:
20:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:C7:BC:EB:C0:71:F0:B3:84:EB:54:EF:88:0E:61:60:B2:93:4B:0B
X509v3 Authority Key Identifier:
keyid:84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/xce868Bx8LOE61TviA5hYLKTSws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/hPgk0y3xpRE9ghATRdeFo4rdveU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.66.0/23
37.156.64.0/23
37.156.173.0/24
46.102.182.0/23
77.81.84.0-77.81.86.255
77.81.89.0/24
86.104.222.0-86.104.225.255
86.105.2.0/24
86.105.6.0/24
86.105.176.0/24
86.105.178.0/24
86.105.184.0/23
86.105.229.0-86.105.230.255
86.105.242.0/23
86.106.10.0/24
86.106.13.0-86.106.15.255
86.106.94.0/23
86.106.105.0-86.106.107.255
86.106.110.0/23
86.106.114.0-86.106.118.255
86.106.138.0-86.106.141.255
86.106.174.0/23
86.107.72.0/24
86.107.193.0-86.107.195.255
89.32.43.0/24
89.32.170.0/24
89.33.46.0/23
89.33.116.0/24
89.33.134.0/24
89.33.198.0-89.33.201.255
89.33.206.0/24
89.33.250.0/23
89.33.254.0/23
89.34.102.0/24
89.34.104.0/23
89.35.54.0/24
89.35.89.0-89.35.90.255
89.36.38.0/23
89.36.136.0/24
89.36.138.0/23
89.36.141.0/24
89.37.92.0/24
89.37.96.0/24
89.37.129.0-89.37.134.255
89.38.240.0/24
89.39.69.0/24
89.39.212.0/24
89.39.215.0/24
89.39.241.0/24
89.40.140.0/23
89.40.207.0/24
89.40.209.0/24
89.41.28.0/23
89.41.49.0-89.41.51.255
89.41.189.0-89.41.191.255
89.42.10.0/24
89.42.152.0/23
89.45.82.0/24
89.46.47.0/24
91.218.236.0/22
91.235.130.0/23
93.114.51.0-93.114.54.255
93.114.58.0/23
93.115.59.0/24
93.119.118.0-93.119.121.255
93.119.124.0/24
94.177.126.0/24
176.126.192.0-176.126.194.255
176.223.116.0-176.223.118.255
176.223.161.0/24
185.80.112.0/22
188.172.176.0/20
188.208.48.0/21
188.208.109.0/24
188.208.222.0/23
188.209.120.0/21
188.211.167.0/24
188.212.254.0/24
188.213.206.0/23
188.213.214.0/23
188.213.248.0/21
188.214.95.0/24
188.241.211.0/24
193.30.254.0/24
193.32.66.0/23
193.254.48.0/20
194.41.60.0/23
Signature Algorithm: sha256WithRSAEncryption
83:d0:d7:9a:8b:15:16:0b:bf:c4:6f:68:99:fc:a5:94:8b:21:
5e:ef:b8:f2:57:1b:58:9a:e7:42:34:ac:95:c7:51:66:72:d6:
c1:aa:ae:d5:46:72:7b:f9:96:bf:5e:56:a0:2b:73:b6:b5:91:
3c:ed:12:ae:b2:44:35:5f:12:7d:d4:be:fd:29:37:20:01:0f:
5c:e9:93:eb:72:d9:80:17:fd:aa:5b:a3:83:b9:50:13:fb:c3:
12:97:c9:32:88:ac:5d:2c:37:5b:42:7c:74:d5:6c:91:00:40:
5c:2e:78:e6:7b:14:85:3f:ce:90:7f:fe:dd:36:d7:c9:35:66:
b2:53:bd:d6:ed:3d:3a:0e:d5:88:b8:d6:77:f4:e8:e3:0c:83:
6d:41:96:7e:c7:ee:d8:24:f7:76:72:c5:b0:85:a9:a3:d2:c5:
b5:df:71:87:b9:6f:33:25:de:cc:98:2a:4c:c3:35:29:95:cf:
d7:f1:74:55:18:9c:19:62:7f:0b:dd:d2:c1:9e:df:7d:a4:b5:
2d:df:e0:42:25:f7:2c:fa:f1:1f:7f:4b:70:af:40:53:51:8a:
2d:b4:df:da:e5:94:5b:d9:b3:27:8e:19:14:ae:d4:d5:52:be:
d9:73:0e:b8:ef:8e:eb:86:99:2d:ab:65:ec:d5:8a:7d:47:7e:
b0:b8:56:a7
-----BEGIN CERTIFICATE-----
MIIHkzCCBnugAwIBAgISAYmXv1bhC5MFZWE5u39KuB9WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0ZjgyNGQzMmRmMWE1MTEzZDgyMTAxMzQ1ZDc4NWEzOGFk
ZGJkZTUwHhcNMjMwNzI3MTQyNzI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNWM3YmNlYmMwNzFmMGIzODRlYjU0ZWY4ODBlNjE2MGIyOTM0YjBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgcznFE29w9EACb/LWt/0HUzdbTca
eXqIi7njYduXbZJlRAG91d1FD6JKiAPAsT42vvzE+2blam6ByIcuOzGoT7tVMpzC
sFIvPyz1ghPgjUw0V0A1RjbVojoOcafh2Wj9mO+jam+W98/taW/p/wEX/4jihb4l
Wd22jGWV+M8UNRC6o8i9L9ihFRBXlnME5NXIgWeZtw9wbX9f45pFYnUlO3zVTwcp
VSfwqJXAYSWQCgfz6HhQoRABKFzmjz+F7qMqp3anJVgmjJ1BIu6tMl2wRUlARCdm
L6HRHHLKWJn3uRUyHEawJvopdxY/4EXJQBRnXq3dCZjbSRzlNYTPgu0gwwIDAQAB
o4IEnzCCBJswHQYDVR0OBBYEFMXHvOvAcfCzhOtU74gOYWCyk0sLMB8GA1UdIwQY
MBaAFIT4JNMt8aURPYIQE0XXhaOK3b3lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFBnazB5M3hwUkU5Z2hBVFJkZUZvNHJkdmVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS85ZDY1YmItYWI0Zi00M2FhLWJiYTgt
NDM3Mzk0OTM4YzUyLzEveGNlODY4Qng4TE9FNjFUdmlBNWhZTEtUU3dzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS85ZDY1YmItYWI0Zi00M2FhLWJiYTgtNDM3Mzk0OTM4YzUy
LzEvaFBnazB5M3hwUkU5Z2hBVFJkZUZvNHJkdmVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIICswYIKwYBBQUHAQcBAf8EggKiMIICnjCCApoEAgABMIIC
kgMEAR8OQgMEASWcQAMEACWcrQMEAS5mtjAMAwQCTVFUAwQATVFWAwQATVFZMAwD
BAFWaN4DBAFWaOADBABWaQIDBABWaQYDBABWabADBABWabIDBAFWabgwDAMEAFZp
5QMEAFZp5gMEAVZp8gMEAFZqCjAMAwQAVmoNAwQEVmoAAwQBVmpeMAwDBABWamkD
BAJWamgDBAFWam4wDAMEAVZqcgMEAFZqdjAMAwQBVmqKAwQBVmqMAwQBVmquAwQA
VmtIMAwDBABWa8EDBAJWa8ADBABZICsDBABZIKoDBAFZIS4DBABZIXQDBABZIYYw
DAMEAVkhxgMEAVkhyAMEAFkhzgMEAVkh+gMEAVkh/gMEAFkiZgMEAVkiaAMEAFkj
NjAMAwQAWSNZAwQAWSNaAwQBWSQmAwQAWSSIAwQBWSSKAwQAWSSNAwQAWSVcAwQA
WSVgMAwDBABZJYEDBABZJYYDBABZJvADBABZJ0UDBABZJ9QDBABZJ9cDBABZJ/ED
BAFZKIwDBABZKM8DBABZKNEDBAFZKRwwDAMEAFkpMQMEAlkpMDAMAwQAWSm9AwQG
WSmAAwQAWSoKAwQBWSqYAwQAWS1SAwQAWS4vAwQCW9rsAwQBW+uCMAwDBABdcjMD
BABdcjYDBAFdcjoDBABdczswDAMEAV13dgMEAV13eAMEAF13fAMEAF6xfjAMAwQG
sH7AAwQAsH7CMAwDBAKw33QDBACw33YDBACw36EDBAK5UHADBAS8rLADBAO80DAD
BAC80G0DBAG80N4DBAO80XgDBAC806cDBAC81P4DBAG81c4DBAG81dYDBAO81fgD
BAC81l8DBAC88dMDBADBHv4DBAHBIEIDBATB/jADBAHCKTwwDQYJKoZIhvcNAQEL
BQADggEBAIPQ15qLFRYLv8RvaJn8pZSLIV7vuPJXG1ia50I0rJXHUWZy1sGqrtVG
cnv5lr9eVqArc7a1kTztEq6yRDVfEn3Uvv0pNyABD1zpk+ty2YAX/apbo4O5UBP7
wxKXyTKIrF0sN1tCfHTVbJEAQFwueOZ7FIU/zpB//t0218k1ZrJTvdbtPToO1Yi4
1nf06OMMg21Bln7H7tgk93ZyxbCFqaPSxbXfcYe5bzMl3syYKkzDNSmVz9fxdFUY
nBlifwvd0sGe332ktS3f4EIl9yz68R9/S3CvQFNRii2039rllFvZsyeOGRSu1NVS
vtlzDrjvjuuGmS2rZezVin1HfrC4Vqc=
-----END CERTIFICATE-----
Generated at Thu Aug 17 17:38:52 2023 by rpki-client on console-ams.rpki-client.org