Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/oqYTBi0npJQ5pTmM-GHFUPfR5NE.roa
File: oqYTBi0npJQ5pTmM-GHFUPfR5NE.roa (raw, json)
Hash identifier: Tod3gvEnhm8kKOcgOkaqHaqhtexXHF6zoMJjdLA06Ok=
Subject key identifier: A2:A6:13:06:2D:27:A4:94:39:A5:39:8C:F8:61:C5:50:F7:D1:E4:D1
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 018CC6B923E4C0CA865B8CA77C25D674EBF3
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/oqYTBi0npJQ5pTmM-GHFUPfR5NE.roa
Signing time: Mon 01 Jan 2024 20:31:11 +0000
ROA not before: Mon 01 Jan 2024 20:31:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48728
IP address blocks: 31.11.48.0/21 maxlen: 21
37.186.37.0/24 maxlen: 24
37.186.38.0/24 maxlen: 24
37.186.32.0/24 maxlen: 24
37.186.34.0/24 maxlen: 24
37.186.33.0/24 maxlen: 24
37.186.36.0/24 maxlen: 24
37.186.35.0/24 maxlen: 24
37.186.32.0/19 maxlen: 19
37.186.44.0/24 maxlen: 24
37.186.39.0/24 maxlen: 24
37.186.41.0/24 maxlen: 24
37.186.40.0/24 maxlen: 24
37.186.43.0/24 maxlen: 24
37.186.42.0/24 maxlen: 24
37.186.51.0/24 maxlen: 24
37.186.50.0/24 maxlen: 24
37.186.46.0/24 maxlen: 24
37.186.45.0/24 maxlen: 24
37.186.48.0/24 maxlen: 24
37.186.47.0/24 maxlen: 24
37.186.49.0/24 maxlen: 24
37.186.58.0/24 maxlen: 24
37.186.57.0/24 maxlen: 24
37.186.53.0/24 maxlen: 24
37.186.52.0/24 maxlen: 24
37.186.55.0/24 maxlen: 24
37.186.54.0/24 maxlen: 24
37.186.56.0/24 maxlen: 24
37.186.60.0/24 maxlen: 24
37.186.59.0/24 maxlen: 24
37.186.62.0/24 maxlen: 24
37.186.61.0/24 maxlen: 24
37.186.63.0/24 maxlen: 24
185.247.88.0/22 maxlen: 22
103.17.1.0/24 maxlen: 24
103.17.0.0/24 maxlen: 24
103.17.3.0/24 maxlen: 24
103.17.2.0/24 maxlen: 24
103.17.0.0/22 maxlen: 22
103.199.88.0/22 maxlen: 22
103.199.89.0/24 maxlen: 24
103.199.88.0/24 maxlen: 24
103.199.91.0/24 maxlen: 24
103.199.90.0/24 maxlen: 24
80.76.165.0/24 maxlen: 24
80.76.164.0/24 maxlen: 24
80.76.160.0/24 maxlen: 24
80.76.162.0/24 maxlen: 24
80.76.161.0/24 maxlen: 24
80.76.163.0/24 maxlen: 24
80.76.160.0/21 maxlen: 21
80.76.160.0/20 maxlen: 20
80.76.172.0/24 maxlen: 24
80.76.171.0/24 maxlen: 24
80.76.169.0/24 maxlen: 24
80.76.170.0/24 maxlen: 24
80.76.168.0/21 maxlen: 21
80.76.174.0/24 maxlen: 24
80.76.173.0/24 maxlen: 24
80.76.175.0/24 maxlen: 24
103.23.124.0/22 maxlen: 22
103.23.124.0/24 maxlen: 24
103.23.125.0/24 maxlen: 24
103.23.126.0/24 maxlen: 24
103.23.127.0/24 maxlen: 24
103.225.74.0/24 maxlen: 24
103.225.73.0/24 maxlen: 24
103.225.75.0/24 maxlen: 24
103.225.72.0/24 maxlen: 24
103.225.72.0/22 maxlen: 22
212.70.96.0/19 maxlen: 19
212.70.96.0/24 maxlen: 24
212.70.98.0/24 maxlen: 24
212.70.97.0/24 maxlen: 24
212.70.102.0/24 maxlen: 24
212.70.104.0/24 maxlen: 24
212.70.99.0/24 maxlen: 24
212.70.109.0/24 maxlen: 24
212.70.108.0/24 maxlen: 24
212.70.110.0/24 maxlen: 24
212.70.112.0/24 maxlen: 24
212.70.111.0/24 maxlen: 24
212.70.107.0/24 maxlen: 24
212.70.106.0/24 maxlen: 24
212.70.116.0/24 maxlen: 24
212.70.115.0/24 maxlen: 24
212.70.117.0/24 maxlen: 24
212.70.118.0/24 maxlen: 24
212.70.114.0/24 maxlen: 24
212.70.113.0/24 maxlen: 24
212.70.122.0/24 maxlen: 24
212.70.125.0/24 maxlen: 24
212.70.119.0/24 maxlen: 24
212.70.121.0/24 maxlen: 24
212.70.126.0/24 maxlen: 24
212.70.127.0/24 maxlen: 24
2a04:7f80::/29 maxlen: 29
2a04:7f80:0:a::/64 maxlen: 64
Validation: Failed, certificate revoked on Wed 31 Jan 2024 08:33:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:23:e4:c0:ca:86:5b:8c:a7:7c:25:d6:74:eb:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Jan 1 20:31:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a2a613062d27a49439a5398cf861c550f7d1e4d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:83:c1:50:db:3a:8a:3f:7e:2e:e2:eb:8c:49:
52:2a:fe:39:20:12:c8:b8:ec:73:3f:c2:50:3b:fe:
9c:a5:71:9e:f7:ce:c6:e7:99:f8:8f:1f:4c:0b:86:
d6:3f:ff:a6:d1:50:d6:a5:02:68:5e:ef:b3:a5:bf:
b7:af:5c:5f:ea:5b:76:be:ae:0e:0b:fc:95:2b:2a:
4e:55:fa:36:a9:b7:ec:76:c7:db:06:00:6f:df:b9:
85:a1:f4:0f:fc:ad:df:22:c8:92:c7:1f:2d:80:52:
df:0b:49:cb:6f:01:8c:2b:25:a9:2a:0d:01:86:20:
64:21:4c:21:46:a3:58:83:9c:33:f4:74:df:ba:a3:
ec:51:7f:5b:55:92:61:6f:93:ac:d8:13:28:b5:fc:
14:06:b9:12:48:73:60:6b:c0:ad:54:de:e1:8a:60:
0d:44:ca:81:c1:99:ca:1f:e4:64:3e:9c:72:c1:25:
a4:e5:01:59:cc:9c:32:c6:d4:cd:e1:0d:f8:a0:68:
ec:fe:ab:9f:b1:d9:1d:6c:c3:6c:2d:68:94:37:ca:
e9:db:b8:62:e3:c7:20:da:aa:5b:8f:68:2c:94:fc:
99:fb:52:26:34:e1:14:62:c4:20:a7:c8:f7:d7:6e:
0d:6e:0c:a2:52:00:71:dd:d2:ff:ee:e9:13:00:32:
3d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:A6:13:06:2D:27:A4:94:39:A5:39:8C:F8:61:C5:50:F7:D1:E4:D1
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/oqYTBi0npJQ5pTmM-GHFUPfR5NE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.32.0/19
80.76.160.0/20
103.17.0.0/22
103.23.124.0/22
103.199.88.0/22
103.225.72.0/22
185.247.88.0/22
212.70.96.0/19
IPv6:
2a04:7f80::/29
Signature Algorithm: sha256WithRSAEncryption
6a:9e:da:38:18:5d:29:db:37:b9:4c:79:28:e1:3e:5e:ec:0e:
3d:83:65:c4:1b:2c:68:87:5c:a1:10:f4:fc:04:7a:b0:f9:45:
e9:6a:92:58:40:ff:a4:63:e3:fd:23:e6:9b:39:a8:ee:a8:12:
1d:26:95:ef:05:59:32:9b:92:a9:99:8e:56:f1:54:00:e7:79:
7a:c2:e0:9a:ba:3b:8b:d1:7e:23:9a:ec:c6:12:72:38:5e:e6:
3f:82:4f:81:77:ce:90:dc:04:78:3e:28:f0:e9:31:17:e0:b5:
69:a5:cd:7d:b1:6c:4a:3b:9f:c3:33:cd:0d:3f:7f:79:ec:55:
d7:89:d9:8c:2d:7f:3f:9c:2a:3f:fa:01:e6:64:73:ba:bf:93:
24:5c:8c:f7:5d:9c:a3:27:83:78:1d:66:5d:97:d1:e2:55:c2:
7b:cf:0c:73:e2:cb:23:b8:f6:34:4a:19:20:a5:fb:61:9f:1e:
5a:19:49:a9:b1:de:b1:67:2b:3d:53:3d:6a:5f:c7:fc:b4:a7:
97:0f:0d:c1:12:6c:d7:94:4c:3f:06:ba:3f:46:38:30:d8:b1:
4c:cf:a4:e5:b6:d9:93:d8:4f:19:13:52:18:8a:9d:f2:ef:60:
7c:37:a4:7d:13:c7:c8:90:c8:52:f1:35:9e:24:f8:ef:84:f9:
31:48:d7:6c
-----BEGIN CERTIFICATE-----
MIIFPDCCBCSgAwIBAgISAYzGuSPkwMqGW4ynfCXWdOvzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0YTkzMDg3NDJlN2ViNjY1MDYyMTlkODI5ZDg2MTg1ODk5
YTFlMzQwHhcNMjQwMTAxMjAzMTExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMmE2MTMwNjJkMjdhNDk0MzlhNTM5OGNmODYxYzU1MGY3ZDFlNGQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjoPBUNs6ij9+LuLrjElSKv45IBLI
uOxzP8JQO/6cpXGe987G55n4jx9MC4bWP/+m0VDWpQJoXu+zpb+3r1xf6lt2vq4O
C/yVKypOVfo2qbfsdsfbBgBv37mFofQP/K3fIsiSxx8tgFLfC0nLbwGMKyWpKg0B
hiBkIUwhRqNYg5wz9HTfuqPsUX9bVZJhb5Os2BMotfwUBrkSSHNga8CtVN7himAN
RMqBwZnKH+RkPpxywSWk5QFZzJwyxtTN4Q34oGjs/qufsdkdbMNsLWiUN8rp27hi
48cg2qpbj2gslPyZ+1ImNOEUYsQgp8j3124NbgyiUgBx3dL/7ukTADI9TQIDAQAB
o4ICSDCCAkQwHQYDVR0OBBYEFKKmEwYtJ6SUOaU5jPhhxVD30eTRMB8GA1UdIwQY
MBaAFOSpMIdC5+tmUGIZ2CnYYYWJmh40MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUtrd2gwTG42MlpRWWhuWUtkaGhoWW1hSGpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy8xYzlkYmItMDUyYy00ZWVhLWFkZTYt
ZWM1Yjg4ZDAxMzhhLzEvb3FZVEJpMG5wSlE1cFRtTS1HSEZVUGZSNU5FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy8xYzlkYmItMDUyYy00ZWVhLWFkZTYtZWM1Yjg4ZDAxMzhh
LzEvNUtrd2gwTG42MlpRWWhuWUtkaGhoWW1hSGpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMF4GCCsGAQUFBwEHAQH/BE8wTTA8BAIAATA2AwQDHwswAwQF
JbogAwQEUEygAwQCZxEAAwQCZxd8AwQCZ8dYAwQCZ+FIAwQCufdYAwQF1EZgMA0E
AgACMAcDBQMqBH+AMA0GCSqGSIb3DQEBCwUAA4IBAQBqnto4GF0p2ze5THko4T5e
7A49g2XEGyxoh1yhEPT8BHqw+UXpapJYQP+kY+P9I+abOajuqBIdJpXvBVkym5Kp
mY5W8VQA53l6wuCaujuL0X4jmuzGEnI4XuY/gk+Bd86Q3AR4Pijw6TEX4LVppc19
sWxKO5/DM80NP3957FXXidmMLX8/nCo/+gHmZHO6v5MkXIz3XZyjJ4N4HWZdl9Hi
VcJ7zwxz4ssjuPY0Shkgpfthnx5aGUmpsd6xZys9Uz1qX8f8tKeXDw3BEmzXlEw/
Bro/Rjgw2LFMz6TlttmT2E8ZE1IYip3y72B8N6R9E8fIkMhS8TWeJPjvhPkxSNds
-----END CERTIFICATE-----
Generated at Wed Jan 31 12:07:45 2024 by rpki-client on console-fra.rpki-client.org