Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/wFB2If92FXPyshpIN1Qlnrb1bjs.roa
File: wFB2If92FXPyshpIN1Qlnrb1bjs.roa (raw, json)
Hash identifier: Bt70JlyAxqH57Hoqy61vO/PMRieZ0XyUn5UVWmGFSIc=
Subject key identifier: C0:50:76:21:FF:76:15:73:F2:B2:1A:48:37:54:25:9E:B6:F5:6E:3B
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 019403467E30244875A7B04249F0FD5BD243
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/wFB2If92FXPyshpIN1Qlnrb1bjs.roa
Signing time: Thu 26 Dec 2024 14:02:18 +0000
ROA not before: Thu 26 Dec 2024 14:02:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3267
IP address blocks: 80.250.160.0/19 maxlen: 24
82.137.128.0/18 maxlen: 24
82.137.176.0/20 maxlen: 22
82.179.32.0/20 maxlen: 24
82.179.63.0/24 maxlen: 24
82.179.64.0/19 maxlen: 24
82.179.140.0/23 maxlen: 23
82.179.160.0/20 maxlen: 24
82.179.192.0/19 maxlen: 24
83.149.192.0/18 maxlen: 24
85.142.8.0/21 maxlen: 21
85.142.16.0/20 maxlen: 24
85.142.32.0/21 maxlen: 24
85.142.52.0/22 maxlen: 24
85.142.56.0/22 maxlen: 24
85.142.102.0/23 maxlen: 24
85.142.104.0/21 maxlen: 24
85.142.116.0/22 maxlen: 24
85.142.120.0/21 maxlen: 24
85.142.148.0/23 maxlen: 24
85.142.153.0/24 maxlen: 24
85.142.162.0/23 maxlen: 24
85.143.0.0/20 maxlen: 24
85.143.18.0/23 maxlen: 24
85.143.26.0/24 maxlen: 24
85.143.96.0/22 maxlen: 24
85.143.112.0/22 maxlen: 24
85.143.124.0/22 maxlen: 24
85.143.224.0/21 maxlen: 21
85.143.239.0/24 maxlen: 24
86.110.96.0/24 maxlen: 24
86.110.101.0/24 maxlen: 24
86.110.102.0/23 maxlen: 24
185.71.96.0/22 maxlen: 22
185.141.124.0/22 maxlen: 22
188.93.107.0/24 maxlen: 24
193.27.214.0/23 maxlen: 24
194.85.32.0/20 maxlen: 20
194.85.168.0/23 maxlen: 23
194.85.174.0/23 maxlen: 23
194.149.64.0/24 maxlen: 24
194.149.70.0/23 maxlen: 24
194.190.232.0/21 maxlen: 24
194.190.240.0/23 maxlen: 24
194.190.247.0/24 maxlen: 24
194.190.249.0/24 maxlen: 24
194.190.254.0/23 maxlen: 23
194.226.192.0/19 maxlen: 24
195.209.224.0/22 maxlen: 22
195.209.234.0/24 maxlen: 24
195.209.236.0/23 maxlen: 23
195.209.240.0/22 maxlen: 22
2001:b08:22::/48 maxlen: 48
2001:b08:26::/48 maxlen: 48
2a00:db8::/32 maxlen: 48
2a07:a6c0::/29 maxlen: 29
2a07:a6c4::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 11:48:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:03:46:7e:30:24:48:75:a7:b0:42:49:f0:fd:5b:d2:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Dec 26 14:02:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c0507621ff761573f2b21a483754259eb6f56e3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:bb:38:df:2c:27:d3:62:7f:f0:88:b7:c9:74:
50:36:9a:d9:56:87:25:39:7f:0c:65:12:0e:5c:cd:
15:75:cc:bf:3a:fb:22:58:1c:bf:7c:87:28:d8:f6:
0f:33:c8:1c:3b:c5:b5:13:ca:79:80:9e:5c:f7:9c:
7a:f1:21:f7:ab:2b:01:be:9d:5e:88:e5:12:20:16:
9f:50:70:83:40:23:e2:91:61:d4:81:26:3e:a5:dc:
cf:94:0a:4f:50:02:44:ca:a8:db:b4:08:52:b7:39:
47:a1:1b:b2:64:a4:7d:1e:4f:76:22:47:77:5d:dc:
50:a6:57:23:0a:b3:e0:d2:3a:bb:17:68:d2:4c:30:
4c:44:ef:4d:01:ed:87:9e:7c:a0:e9:f4:44:2a:4c:
ec:3f:c7:84:fc:77:33:6a:35:c6:d4:10:e9:b0:b5:
e4:db:15:cf:ce:f7:35:9d:e3:50:c9:86:e6:64:c6:
52:19:95:65:08:9c:0f:00:e8:da:d4:37:f6:d1:c2:
97:f3:bd:ea:11:d3:4f:34:f9:e4:73:d6:98:d9:b2:
91:f7:c8:fd:57:f3:2d:1c:ed:5c:b5:98:32:ed:eb:
a3:7b:b1:12:17:36:01:08:74:79:22:9f:a4:e5:0e:
fd:66:fb:ac:fe:0d:9e:d1:c5:f4:26:1f:42:43:31:
18:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:50:76:21:FF:76:15:73:F2:B2:1A:48:37:54:25:9E:B6:F5:6E:3B
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/wFB2If92FXPyshpIN1Qlnrb1bjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.250.160.0/19
82.137.128.0/18
82.179.32.0/20
82.179.63.0-82.179.95.255
82.179.140.0/23
82.179.160.0/20
82.179.192.0/19
83.149.192.0/18
85.142.8.0-85.142.39.255
85.142.52.0-85.142.59.255
85.142.102.0-85.142.111.255
85.142.116.0-85.142.127.255
85.142.148.0/23
85.142.153.0/24
85.142.162.0/23
85.143.0.0/20
85.143.18.0/23
85.143.26.0/24
85.143.96.0/22
85.143.112.0/22
85.143.124.0/22
85.143.224.0/21
85.143.239.0/24
86.110.96.0/24
86.110.101.0-86.110.103.255
185.71.96.0/22
185.141.124.0/22
188.93.107.0/24
193.27.214.0/23
194.85.32.0/20
194.85.168.0/23
194.85.174.0/23
194.149.64.0/24
194.149.70.0/23
194.190.232.0-194.190.241.255
194.190.247.0/24
194.190.249.0/24
194.190.254.0/23
194.226.192.0/19
195.209.224.0/22
195.209.234.0/24
195.209.236.0/23
195.209.240.0/22
IPv6:
2001:b08:22::/48
2001:b08:26::/48
2a00:db8::/32
2a07:a6c0::/29
Signature Algorithm: sha256WithRSAEncryption
3e:7a:4d:1b:48:23:55:35:72:ae:47:a9:0d:cf:b1:dc:8c:06:
39:44:84:63:da:2e:c8:f3:0a:25:ac:e8:ec:35:a6:1c:d7:ed:
33:ee:f8:d0:c3:83:b2:9b:14:55:39:9d:b5:e8:37:41:43:fb:
86:47:c1:fd:15:1e:70:cd:ef:de:83:86:62:7a:1e:30:bf:46:
43:d8:7e:4c:64:9e:46:b4:ff:f4:35:77:66:73:f6:ac:24:64:
19:80:38:7d:c9:37:ce:0c:73:16:bd:16:b0:84:0e:d5:cc:8c:
f4:67:1c:84:45:21:9b:67:d5:6c:0a:eb:03:7e:2c:cd:04:f9:
e1:10:30:f4:23:8c:91:b8:b1:a3:d8:07:44:fa:21:3a:1a:4e:
ec:30:b8:29:80:d7:f0:c2:62:4b:40:5f:1f:1b:d5:21:8e:fc:
53:b6:81:f9:e2:10:6a:42:8a:69:47:dc:1c:06:b0:d1:5c:89:
03:b2:f4:59:b5:c6:1c:80:2a:0b:90:68:d1:e0:d8:56:e5:16:
ae:ab:3a:11:2e:db:13:e3:37:b8:16:8e:2b:be:ec:f3:d7:09:
5f:6d:04:ff:59:72:19:f8:13:ac:3a:cd:a7:b7:88:ef:37:18:
94:00:03:00:05:01:d4:7c:25:c7:84:1d:ca:f3:f3:42:09:97:
bb:50:84:5f
-----BEGIN CERTIFICATE-----
MIIGYzCCBUugAwIBAgISAZQDRn4wJEh1p7BCSfD9W9JDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4YjIyMDIzYjZlYWQ0YzI5NjgzYTlmZWQ0NDkzZDAzZGVl
MmM2ODUwHhcNMjQxMjI2MTQwMjE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMDUwNzYyMWZmNzYxNTczZjJiMjFhNDgzNzU0MjU5ZWI2ZjU2ZTNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvLs43ywn02J/8Ii3yXRQNprZVocl
OX8MZRIOXM0Vdcy/OvsiWBy/fIco2PYPM8gcO8W1E8p5gJ5c95x68SH3qysBvp1e
iOUSIBafUHCDQCPikWHUgSY+pdzPlApPUAJEyqjbtAhStzlHoRuyZKR9Hk92Ikd3
XdxQplcjCrPg0jq7F2jSTDBMRO9NAe2Hnnyg6fREKkzsP8eE/HczajXG1BDpsLXk
2xXPzvc1neNQyYbmZMZSGZVlCJwPAOja1Df20cKX873qEdNPNPnkc9aY2bKR98j9
V/MtHO1ctZgy7euje7ESFzYBCHR5Ip+k5Q79Zvus/g2e0cX0Jh9CQzEY5QIDAQAB
o4IDbzCCA2swHQYDVR0OBBYEFMBQdiH/dhVz8rIaSDdUJZ629W47MB8GA1UdIwQY
MBaAFDiyICO26tTCloOp/tRJPQPe4saFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0xJZ0k3YnExTUtXZzZuLTFFazlBOTdpeG9VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy84ODEzZjUtNGU3Yi00ZDUxLWI1ZjMt
NDBkOTViZDMzZmNiLzEvd0ZCMklmOTJGWFB5c2hwSU4xUWxucmIxYmpzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy84ODEzZjUtNGU3Yi00ZDUxLWI1ZjMtNDBkOTViZDMzZmNi
LzEvT0xJZ0k3YnExTUtXZzZuLTFFazlBOTdpeG9VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBgwYIKwYBBQUHAQcBAf8EggFyMIIBbjCCAUIEAgABMIIB
OgMEBVD6oAMEBlKJgAMEBFKzIDAMAwQAUrM/AwQFUrNAAwQBUrOMAwQEUrOgAwQF
UrPAAwQGU5XAMAwDBANVjggDBANVjiAwDAMEAlWONAMEAlWOODAMAwQBVY5mAwQE
VY5gMAwDBAJVjnQDBAdVjgADBAFVjpQDBABVjpkDBAFVjqIDBARVjwADBAFVjxID
BABVjxoDBAJVj2ADBAJVj3ADBAJVj3wDBANVj+ADBABVj+8DBABWbmAwDAMEAFZu
ZQMEA1ZuYAMEArlHYAMEArmNfAMEALxdawMEAcEb1gMEBMJVIAMEAcJVqAMEAcJV
rgMEAMKVQAMEAcKVRjAMAwQDwr7oAwQBwr7wAwQAwr73AwQAwr75AwQBwr7+AwQF
wuLAAwQCw9HgAwQAw9HqAwQBw9HsAwQCw9HwMCYEAgACMCADBwAgAQsIACIDBwAg
AQsIACYDBQAqAA24AwUDKgemwDANBgkqhkiG9w0BAQsFAAOCAQEAPnpNG0gjVTVy
rkepDc+x3IwGOUSEY9ouyPMKJazo7DWmHNftM+740MODspsUVTmdteg3QUP7hkfB
/RUecM3v3oOGYnoeML9GQ9h+TGSeRrT/9DV3ZnP2rCRkGYA4fck3zgxzFr0WsIQO
1cyM9GcchEUhm2fVbArrA34szQT54RAw9COMkbixo9gHRPohOhpO7DC4KYDX8MJi
S0BfHxvVIY78U7aB+eIQakKKaUfcHAaw0VyJA7L0WbXGHIAqC5Bo0eDYVuUWrqs6
ES7bE+M3uBaOK77s89cJX20E/1lyGfgTrDrNp7eI7zcYlAADAAUB1Hwlx4QdyvPz
QgmXu1CEXw==
-----END CERTIFICATE-----
Generated at Sat Apr 19 12:05:54 2025 by rpki-client