Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/CAEXvvDu4UF0n9IlJihvg7qmj7s.roa
File: CAEXvvDu4UF0n9IlJihvg7qmj7s.roa (raw, json)
Hash identifier: tVDX95D0QcLDb725v6EYW90UapsMsDeMlGcSpzItFp4=
Subject key identifier: 08:01:17:BE:F0:EE:E1:41:74:9F:D2:25:26:28:6F:83:BA:A6:8F:BB
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0185EFACF6B5CEA4BCA9C578BEF4531A461F
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/CAEXvvDu4UF0n9IlJihvg7qmj7s.roa
Signing time: Thu 26 Jan 2023 20:02:47 +0000
ROA not before: Thu 26 Jan 2023 20:02:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 45.83.148.0/22 maxlen: 24
2.56.172.0/22 maxlen: 24
95.214.248.0/22 maxlen: 24
2.56.176.0/22 maxlen: 24
194.33.36.0/22 maxlen: 24
2.56.116.0/22 maxlen: 24
2.56.124.0/22 maxlen: 24
2.56.120.0/22 maxlen: 24
45.83.116.0/22 maxlen: 24
45.83.128.0/22 maxlen: 24
45.83.140.0/22 maxlen: 24
185.161.70.0/23 maxlen: 24
185.161.69.0/24 maxlen: 24
185.106.96.0/22 maxlen: 24
139.28.232.0/22 maxlen: 24
45.15.124.0/22 maxlen: 24
45.86.64.0/22 maxlen: 24
45.86.60.0/22 maxlen: 24
45.15.128.0/22 maxlen: 24
45.86.68.0/22 maxlen: 24
45.15.144.0/22 maxlen: 24
45.15.140.0/22 maxlen: 24
45.86.76.0/22 maxlen: 24
45.86.72.0/22 maxlen: 24
45.92.160.0/22 maxlen: 24
45.92.164.0/22 maxlen: 24
45.92.192.0/22 maxlen: 24
45.89.96.0/22 maxlen: 24
45.89.104.0/22 maxlen: 24
45.89.100.0/22 maxlen: 24
45.89.108.0/22 maxlen: 24
45.9.12.0/22 maxlen: 24
171.22.136.0/22 maxlen: 24
45.9.16.0/22 maxlen: 24
45.12.112.0/22 maxlen: 24
45.12.108.0/22 maxlen: 24
45.12.128.0/22 maxlen: 24
45.12.132.0/22 maxlen: 24
45.12.134.0/24 maxlen: 24
194.76.136.0/22 maxlen: 24
45.12.136.0/22 maxlen: 24
45.12.140.0/22 maxlen: 24
45.12.144.0/22 maxlen: 24
45.83.84.0/22 maxlen: 24
45.12.148.0/22 maxlen: 24
45.15.152.0/22 maxlen: 24
45.82.244.0/22 maxlen: 24
45.82.252.0/22 maxlen: 24
45.82.248.0/22 maxlen: 24
185.153.180.0/22 maxlen: 24
45.15.164.0/22 maxlen: 24
45.15.160.0/22 maxlen: 24
45.15.168.0/22 maxlen: 24
213.59.112.0/20 maxlen: 24
45.89.196.0/22 maxlen: 24
45.15.176.0/22 maxlen: 24
171.22.112.0/22 maxlen: 24
171.22.108.0/22 maxlen: 24
45.83.24.0/22 maxlen: 24
45.15.184.0/22 maxlen: 24
45.83.20.0/22 maxlen: 24
171.22.116.0/22 maxlen: 24
31.12.92.0/22 maxlen: 24
171.22.124.0/22 maxlen: 24
171.22.120.0/22 maxlen: 24
171.22.132.0/22 maxlen: 24
171.22.128.0/22 maxlen: 24
45.88.160.0/22 maxlen: 24
45.88.168.0/22 maxlen: 24
45.88.176.0/22 maxlen: 24
45.88.180.0/22 maxlen: 24
185.149.20.0/22 maxlen: 24
185.203.4.0/22 maxlen: 24
141.98.164.0/22 maxlen: 24
141.98.160.0/22 maxlen: 24
92.118.229.0/24 maxlen: 24
45.88.148.0/22 maxlen: 24
92.118.228.0/22 maxlen: 24
92.118.232.0/22 maxlen: 24
92.118.236.0/22 maxlen: 24
185.156.108.0/22 maxlen: 24
185.166.152.0/22 maxlen: 24
45.92.124.0/22 maxlen: 24
185.166.160.0/22 maxlen: 24
45.92.140.0/22 maxlen: 24
92.119.40.0/22 maxlen: 24
45.128.56.0/22 maxlen: 24
45.128.52.0/22 maxlen: 24
45.128.72.0/22 maxlen: 24
45.128.48.0/22 maxlen: 24
141.98.132.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ef:ac:f6:b5:ce:a4:bc:a9:c5:78:be:f4:53:1a:46:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Jan 26 20:02:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=080117bef0eee141749fd22526286f83baa68fbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:59:53:e5:bb:43:08:dc:71:ea:9a:b9:04:f2:
00:2f:80:65:91:2c:4a:09:0f:e0:7b:3d:2a:57:83:
aa:ec:e9:e2:46:30:32:6f:fb:1f:1f:68:ae:30:00:
42:28:2e:33:ac:95:90:73:91:93:5a:f5:32:46:53:
ed:70:ec:04:39:02:fb:f9:bb:72:9f:ec:d9:4a:c2:
3e:1e:91:50:e2:f2:68:ab:eb:b4:5f:14:e8:1f:39:
5b:92:a5:4e:f8:a6:5c:ab:57:c5:bc:0a:a7:fe:2e:
7e:cb:7a:2e:4a:21:7a:9e:5a:d8:af:48:d4:48:23:
60:07:e9:8c:0d:27:40:03:1e:1a:52:b2:1b:cb:48:
ef:48:13:f4:3f:ad:89:89:7e:5b:67:60:74:d9:99:
9c:8d:ff:9b:c2:3e:b6:d3:db:59:9e:c1:a3:1c:89:
dd:dc:b9:cb:89:8a:09:07:59:5c:02:ca:46:86:3d:
1c:51:c8:2a:20:35:ea:aa:01:4e:60:b9:6e:49:3c:
de:fc:34:00:d0:cf:54:a0:64:f9:86:39:5b:19:82:
86:59:4f:9a:f0:72:80:ce:c2:bb:4d:23:1c:a6:0a:
2d:67:7a:8b:65:c0:63:de:ec:ee:d2:41:27:f6:ea:
85:4f:ef:b6:cb:1a:4f:c6:d2:05:ef:63:60:9f:e7:
83:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:01:17:BE:F0:EE:E1:41:74:9F:D2:25:26:28:6F:83:BA:A6:8F:BB
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/CAEXvvDu4UF0n9IlJihvg7qmj7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.116.0-2.56.127.255
2.56.172.0-2.56.179.255
31.12.92.0/22
45.9.12.0-45.9.19.255
45.12.108.0-45.12.115.255
45.12.128.0-45.12.151.255
45.15.124.0-45.15.131.255
45.15.140.0-45.15.147.255
45.15.152.0/22
45.15.160.0-45.15.171.255
45.15.176.0/22
45.15.184.0/22
45.82.244.0-45.82.255.255
45.83.20.0-45.83.27.255
45.83.84.0/22
45.83.116.0/22
45.83.128.0/22
45.83.140.0/22
45.83.148.0/22
45.86.60.0-45.86.79.255
45.88.148.0/22
45.88.160.0/22
45.88.168.0/22
45.88.176.0/21
45.89.96.0/20
45.89.196.0/22
45.92.124.0/22
45.92.140.0/22
45.92.160.0/21
45.92.192.0/22
45.128.48.0-45.128.59.255
45.128.72.0/22
92.118.228.0-92.118.239.255
92.119.40.0/22
95.214.248.0/22
139.28.232.0/22
141.98.132.0/22
141.98.160.0/21
171.22.108.0-171.22.139.255
185.106.96.0/22
185.149.20.0/22
185.153.180.0/22
185.156.108.0/22
185.161.69.0-185.161.71.255
185.166.152.0/22
185.166.160.0/22
185.203.4.0/22
194.33.36.0/22
194.76.136.0/22
213.59.112.0/20
Signature Algorithm: sha256WithRSAEncryption
3f:d1:03:ec:7e:80:55:39:09:3a:84:8f:41:06:cc:1f:1b:62:
e3:fb:5b:33:a2:62:b3:bd:e7:95:0e:2f:38:35:91:ef:89:a8:
41:c8:0b:be:00:e4:bb:92:a0:4a:01:eb:9a:0d:2e:11:8e:f0:
7d:55:92:c6:f3:e4:9b:68:5d:79:8f:5f:3d:fc:b3:6d:65:73:
4c:6a:bf:59:6e:53:17:50:64:81:7a:f4:92:1d:2a:19:a1:47:
ef:48:34:21:f0:51:1f:f3:7e:be:01:65:9d:27:29:67:0a:43:
ef:34:37:0a:87:29:1a:17:c9:7b:3e:14:98:c2:79:0a:bd:de:
89:f4:39:85:93:0a:9d:a0:f0:c5:c3:f3:23:b3:ad:72:2a:ee:
b2:39:f6:d7:8f:9f:bc:ac:9e:3c:4d:68:66:3b:51:ca:3e:ef:
44:d8:73:b7:14:90:f7:23:da:ba:87:27:22:80:01:db:8e:af:
af:f3:1c:11:ae:81:c6:6b:e9:53:5f:1b:d5:01:34:15:18:ff:
60:73:85:8b:10:a8:19:11:dc:2d:f6:a4:19:aa:96:9f:9c:30:
af:6d:89:6d:d5:ee:e8:c9:4c:97:02:5b:06:e4:45:55:ce:d1:
26:3b:18:d0:ea:49:19:e0:9f:16:72:64:96:fc:03:87:a6:7f:
35:10:85:06
-----BEGIN CERTIFICATE-----
MIIGpDCCBYygAwIBAgISAYXvrPa1zqS8qcV4vvRTGkYfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyZmRiNjc2NTRkZjYxODRlN2Q2MGM0MTUwZWE5NTMzYzJj
Zjk3MDQwHhcNMjMwMTI2MjAwMjQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwODAxMTdiZWYwZWVlMTQxNzQ5ZmQyMjUyNjI4NmY4M2JhYTY4ZmJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsFlT5btDCNxx6pq5BPIAL4BlkSxK
CQ/gez0qV4Oq7OniRjAyb/sfH2iuMABCKC4zrJWQc5GTWvUyRlPtcOwEOQL7+bty
n+zZSsI+HpFQ4vJoq+u0XxToHzlbkqVO+KZcq1fFvAqn/i5+y3ouSiF6nlrYr0jU
SCNgB+mMDSdAAx4aUrIby0jvSBP0P62JiX5bZ2B02Zmcjf+bwj6209tZnsGjHInd
3LnLiYoJB1lcAspGhj0cUcgqIDXqqgFOYLluSTze/DQA0M9UoGT5hjlbGYKGWU+a
8HKAzsK7TSMcpgotZ3qLZcBj3uzu0kEn9uqFT++2yxpPxtIF72Ngn+eD1wIDAQAB
o4IDsDCCA6wwHQYDVR0OBBYEFAgBF77w7uFBdJ/SJSYob4O6po+7MB8GA1UdIwQY
MBaAFGL9tnZU32GE59YMQVDqlTPCz5cEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTct
ZTg2MTIxYzU5NGRmLzEvQ0FFWHZ2RHU0VUYwbjlJbEppaHZnN3FtajdzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTctZTg2MTIxYzU5NGRm
LzEvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBxAYIKwYBBQUHAQcBAf8EggGzMIIBrzCCAasEAgABMIIB
ozAMAwQCAjh0AwQHAjgAMAwDBAICOKwDBAICOLADBAIfDFwwDAMEAi0JDAMEAi0J
EDAMAwQCLQxsAwQCLQxwMAwDBActDIADBAMtDJAwDAMEAi0PfAMEAi0PgDAMAwQC
LQ+MAwQCLQ+QAwQCLQ+YMAwDBAUtD6ADBAItD6gDBAItD7ADBAItD7gwCwMEAi1S
9AMDAC1SMAwDBAItUxQDBAItUxgDBAItU1QDBAItU3QDBAItU4ADBAItU4wDBAIt
U5QwDAMEAi1WPAMEBC1WQAMEAi1YlAMEAi1YoAMEAi1YqAMEAy1YsAMEBC1ZYAME
Ai1ZxAMEAi1cfAMEAi1cjAMEAy1coAMEAi1cwDAMAwQELYAwAwQCLYA4AwQCLYBI
MAwDBAJcduQDBARcduADBAJcdygDBAJf1vgDBAKLHOgDBAKNYoQDBAONYqAwDAME
AqsWbAMEAqsWiAMEArlqYAMEArmVFAMEArmZtAMEArmcbDAMAwQAuaFFAwQDuaFA
AwQCuaaYAwQCuaagAwQCucsEAwQCwiEkAwQCwkyIAwQE1TtwMA0GCSqGSIb3DQEB
CwUAA4IBAQA/0QPsfoBVOQk6hI9BBswfG2Lj+1szomKzveeVDi84NZHviahByAu+
AOS7kqBKAeuaDS4RjvB9VZLG8+SbaF15j189/LNtZXNMar9ZblMXUGSBevSSHSoZ
oUfvSDQh8FEf836+AWWdJylnCkPvNDcKhykaF8l7PhSYwnkKvd6J9DmFkwqdoPDF
w/Mjs61yKu6yOfbXj5+8rJ48TWhmO1HKPu9E2HO3FJD3I9q6hycigAHbjq+v8xwR
roHGa+lTXxvVATQVGP9gc4WLEKgZEdwt9qQZqpafnDCvbYlt1e7oyUyXAlsG5EVV
ztEmOxjQ6kkZ4J8WcmSW/AOHpn81EIUG
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:29 2023 by rpki-client on console-fra.rpki-client.org