Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/24Zw2izWcV73oqNnjmL7NX0HV94.roa
File: 24Zw2izWcV73oqNnjmL7NX0HV94.roa (raw, json)
Hash identifier: D4Vk5MM65qmKD186vwX4QPUxtjdf5uW38qEg56DKHGk=
Subject key identifier: DB:86:70:DA:2C:D6:71:5E:F7:A2:A3:67:8E:62:FB:35:7D:07:57:DE
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 01912C63832D2B5E143754E72A5F4E00F5B2
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/24Zw2izWcV73oqNnjmL7NX0HV94.roa
Signing time: Wed 07 Aug 2024 10:30:04 +0000
ROA not before: Wed 07 Aug 2024 10:30:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3352
IP address blocks: 2.136.0.0/16 maxlen: 16
2.137.0.0/16 maxlen: 16
2.138.0.0/16 maxlen: 16
2.139.0.0/16 maxlen: 16
79.144.0.0/16 maxlen: 16
79.145.0.0/16 maxlen: 16
79.146.0.0/16 maxlen: 16
79.147.0.0/16 maxlen: 16
79.148.0.0/16 maxlen: 16
80.24.0.0/16 maxlen: 16
80.25.0.0/16 maxlen: 16
80.30.0.0/16 maxlen: 16
80.31.0.0/16 maxlen: 16
80.32.0.0/16 maxlen: 16
80.33.0.0/16 maxlen: 16
80.34.0.0/16 maxlen: 16
80.35.0.0/16 maxlen: 16
80.36.0.0/16 maxlen: 16
80.37.0.0/16 maxlen: 16
80.38.0.0/16 maxlen: 16
80.39.0.0/16 maxlen: 16
80.59.0.0/16 maxlen: 16
81.32.0.0/16 maxlen: 16
81.33.0.0/16 maxlen: 16
81.34.0.0/16 maxlen: 16
81.35.0.0/16 maxlen: 16
81.36.0.0/16 maxlen: 16
81.37.0.0/16 maxlen: 16
81.38.0.0/16 maxlen: 16
81.39.0.0/16 maxlen: 16
81.40.0.0/16 maxlen: 16
81.41.0.0/16 maxlen: 16
81.42.0.0/16 maxlen: 16
81.43.0.0/16 maxlen: 16
81.44.0.0/16 maxlen: 16
83.32.0.0/16 maxlen: 16
83.33.0.0/16 maxlen: 16
83.34.0.0/16 maxlen: 16
83.35.0.0/16 maxlen: 16
83.36.0.0/16 maxlen: 16
83.37.0.0/16 maxlen: 16
83.38.0.0/16 maxlen: 16
83.39.0.0/16 maxlen: 16
83.47.0.0/16 maxlen: 16
83.52.0.0/16 maxlen: 16
83.53.0.0/16 maxlen: 16
83.54.0.0/16 maxlen: 16
83.55.0.0/16 maxlen: 16
83.56.0.0/16 maxlen: 16
83.57.0.0/16 maxlen: 16
83.58.0.0/16 maxlen: 16
83.59.0.0/16 maxlen: 16
83.60.0.0/16 maxlen: 16
83.61.0.0/16 maxlen: 16
83.63.0.0/16 maxlen: 16
88.0.0.0/16 maxlen: 16
88.1.0.0/16 maxlen: 16
88.2.0.0/16 maxlen: 16
88.3.0.0/16 maxlen: 16
88.8.0.0/16 maxlen: 16
88.9.0.0/16 maxlen: 16
88.10.0.0/16 maxlen: 16
88.11.0.0/16 maxlen: 16
88.12.0.0/16 maxlen: 16
88.13.0.0/16 maxlen: 16
88.14.0.0/16 maxlen: 16
88.15.0.0/16 maxlen: 16
88.16.0.0/16 maxlen: 16
88.24.0.0/16 maxlen: 16
88.25.0.0/16 maxlen: 16
88.27.0.0/16 maxlen: 16
88.30.0.0/16 maxlen: 16
192.101.1.0/24 maxlen: 24
194.69.225.0/24 maxlen: 24
194.179.34.0/24 maxlen: 24
194.179.112.0/24 maxlen: 24
194.224.157.0/24 maxlen: 24
195.53.0.0/16 maxlen: 16
195.53.69.0/24 maxlen: 24
195.53.193.0/24 maxlen: 24
195.53.218.0/23 maxlen: 23
195.55.78.0/24 maxlen: 24
195.55.79.0/24 maxlen: 24
195.55.110.0/24 maxlen: 24
195.57.5.0/24 maxlen: 24
195.57.27.0/24 maxlen: 24
195.76.0.0/16 maxlen: 16
195.76.141.0/24 maxlen: 24
195.76.164.0/24 maxlen: 24
195.77.57.0/24 maxlen: 24
195.77.132.0/22 maxlen: 22
195.77.132.0/23 maxlen: 23
195.77.132.0/24 maxlen: 24
195.235.0.0/16 maxlen: 16
195.235.95.0/24 maxlen: 24
195.235.188.0/24 maxlen: 24
195.235.225.0/24 maxlen: 24
195.235.241.0/24 maxlen: 24
195.235.242.0/24 maxlen: 24
212.170.0.0/16 maxlen: 16
212.170.156.0/24 maxlen: 24
212.170.159.0/24 maxlen: 24
213.96.0.0/16 maxlen: 16
213.97.0.0/16 maxlen: 16
213.98.0.0/16 maxlen: 16
213.99.0.0/16 maxlen: 24
213.99.44.0/24 maxlen: 24
213.99.59.0/24 maxlen: 24
217.11.96.0/19 maxlen: 19
217.124.182.0/24 maxlen: 24
217.126.0.0/16 maxlen: 16
217.127.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Wed 07 Aug 2024 11:49:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:2c:63:83:2d:2b:5e:14:37:54:e7:2a:5f:4e:00:f5:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Aug 7 10:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=db8670da2cd6715ef7a2a3678e62fb357d0757de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:33:22:8b:b7:38:4b:95:cd:e2:f1:55:1b:94:
c3:2e:f3:bf:47:41:a4:8a:50:b7:d8:7a:6f:f5:4f:
0a:31:3c:ed:b6:ed:d5:68:4c:58:3d:f0:c5:15:1b:
c9:65:cc:d3:54:85:df:2b:7b:91:57:8f:9b:a1:91:
5a:7b:b1:16:6f:06:bb:5f:2d:05:24:b3:29:6a:36:
07:40:b8:39:4f:bb:e5:11:e8:f6:c1:7a:21:4b:45:
06:96:ee:00:3f:50:0a:2b:ce:b1:2e:18:0c:9f:52:
3c:bf:5e:31:87:99:cf:a7:9f:33:cf:48:22:bd:e2:
c6:2b:fa:7d:36:2d:a9:a1:cd:aa:0d:65:e2:f6:6d:
af:79:3c:ae:0e:f9:51:87:b8:63:6a:a5:7b:b2:bd:
d7:ed:a8:a1:5e:2d:da:b8:46:01:f7:f1:31:53:d4:
1f:53:23:2b:cc:10:a1:7a:95:e9:ee:c8:b8:2e:a2:
1b:20:c3:e8:8e:c5:3e:ff:c6:83:6c:16:e7:e6:a6:
37:af:8a:1f:7f:5b:6f:cf:d1:0e:9b:f7:d9:fe:27:
4b:5b:b0:df:60:26:c9:1b:75:ae:e1:2e:62:40:39:
0d:63:62:0e:8b:82:42:07:5e:73:e9:00:d3:3a:88:
54:f1:82:a2:8d:08:16:d0:02:65:82:57:bf:2e:6b:
3d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:86:70:DA:2C:D6:71:5E:F7:A2:A3:67:8E:62:FB:35:7D:07:57:DE
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/24Zw2izWcV73oqNnjmL7NX0HV94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.136.0.0/14
79.144.0.0-79.148.255.255
80.24.0.0/15
80.30.0.0-80.39.255.255
80.59.0.0/16
81.32.0.0-81.44.255.255
83.32.0.0/13
83.47.0.0/16
83.52.0.0-83.61.255.255
83.63.0.0/16
88.0.0.0/14
88.8.0.0-88.16.255.255
88.24.0.0/15
88.27.0.0/16
88.30.0.0/16
192.101.1.0/24
194.69.225.0/24
194.179.34.0/24
194.179.112.0/24
194.224.157.0/24
195.53.0.0/16
195.55.78.0/23
195.55.110.0/24
195.57.5.0/24
195.57.27.0/24
195.76.0.0/16
195.77.57.0/24
195.77.132.0/22
195.235.0.0/16
212.170.0.0/16
213.96.0.0/14
217.11.96.0/19
217.124.182.0/24
217.126.0.0/15
Signature Algorithm: sha256WithRSAEncryption
96:25:84:2b:5b:7e:a4:11:9e:38:dd:1d:e0:c6:26:31:61:b6:
6c:02:7a:2d:68:1e:42:c5:3d:96:45:6a:78:0e:dc:09:2d:5c:
49:36:b1:7f:7b:84:8e:fc:06:ad:70:5d:72:a2:47:60:eb:ef:
27:1f:a9:6b:b3:0f:8f:40:cc:b3:0a:3c:02:6e:49:42:ef:9a:
f0:de:76:5b:d8:93:a9:f9:0b:25:fd:45:91:38:f2:74:0c:be:
6c:89:85:e1:56:c8:24:9e:45:62:48:c9:0e:54:3d:6d:06:11:
9e:da:67:af:c7:8a:59:9a:8a:36:cc:d8:4d:68:b8:d1:26:a1:
cd:3b:b0:b2:c2:ea:9f:ec:9d:c9:60:e3:9f:2e:96:b1:2b:fa:
a6:8f:cd:1d:68:c9:80:89:b9:04:8c:1e:ba:5f:ea:77:52:c3:
61:4c:3b:fc:6d:77:cb:57:41:19:39:b1:90:b2:b7:12:82:41:
bd:17:8c:71:51:ef:15:ce:bc:0b:f1:1a:74:63:c5:0b:58:9f:
bc:5e:e6:4f:4a:ab:b9:97:3f:31:6f:c1:d1:df:bd:b4:25:e6:
6b:0c:4e:2a:5b:9c:e6:cc:62:8b:09:ab:9b:7a:86:ca:4d:7f:
9a:fa:7c:ce:7c:56:72:6b:1c:0f:87:07:69:c7:80:a6:96:34:
09:3e:b4:e7
-----BEGIN CERTIFICATE-----
MIIF1jCCBL6gAwIBAgISAZEsY4MtK14UN1TnKl9OAPWyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwN2Y1ZmUyNzQwYTJiNmRlNGMzNzA5ZDI5NjQxMTViM2M5
NjdkYTEwHhcNMjQwODA3MTAzMDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYjg2NzBkYTJjZDY3MTVlZjdhMmEzNjc4ZTYyZmIzNTdkMDc1N2RlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiTMii7c4S5XN4vFVG5TDLvO/R0Gk
ilC32Hpv9U8KMTzttu3VaExYPfDFFRvJZczTVIXfK3uRV4+boZFae7EWbwa7Xy0F
JLMpajYHQLg5T7vlEej2wXohS0UGlu4AP1AKK86xLhgMn1I8v14xh5nPp58zz0gi
veLGK/p9Ni2poc2qDWXi9m2veTyuDvlRh7hjaqV7sr3X7aihXi3auEYB9/ExU9Qf
UyMrzBChepXp7si4LqIbIMPojsU+/8aDbBbn5qY3r4off1tvz9EOm/fZ/idLW7Df
YCbJG3Wu4S5iQDkNY2IOi4JCB15z6QDTOohU8YKijQgW0AJlgle/Lms9/wIDAQAB
o4IC4jCCAt4wHQYDVR0OBBYEFNuGcNos1nFe96KjZ45i+zV9B1feMB8GA1UdIwQY
MBaAFDB/X+J0Citt5MNwnSlkEVs8ln2hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQt
NGJhMmY4ZjFmODNiLzEvMjRadzJpeldjVjczb3FObmptTDdOWDBIVjk0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQtNGJhMmY4ZjFmODNi
LzEvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIH3BggrBgEFBQcBBwEB/wSB5zCB5DCB4QQCAAEwgdoDAwIC
iDAKAwMET5ADAwBPlAMDAVAYMAoDAwFQHgMDA1AgAwMAUDswCgMDBVEgAwMAUSwD
AwNTIAMDAFMvMAoDAwJTNAMDAVM8AwMAUz8DAwJYADAKAwMDWAgDAwBYEAMDAVgY
AwMAWBsDAwBYHgMEAMBlAQMEAMJF4QMEAMKzIgMEAMKzcAMEAMLgnQMDAMM1AwQB
wzdOAwQAwzduAwQAwzkFAwQAwzkbAwMAw0wDBADDTTkDBALDTYQDAwDD6wMDANSq
AwMC1WADBAXZC2ADBADZfLYDAwHZfjANBgkqhkiG9w0BAQsFAAOCAQEAliWEK1t+
pBGeON0d4MYmMWG2bAJ6LWgeQsU9lkVqeA7cCS1cSTaxf3uEjvwGrXBdcqJHYOvv
Jx+pa7MPj0DMswo8Am5JQu+a8N52W9iTqfkLJf1FkTjydAy+bImF4VbIJJ5FYkjJ
DlQ9bQYRntpnr8eKWZqKNszYTWi40SahzTuwssLqn+ydyWDjny6WsSv6po/NHWjJ
gIm5BIweul/qd1LDYUw7/G13y1dBGTmxkLK3EoJBvReMcVHvFc68C/EadGPFC1if
vF7mT0qruZc/MW/B0d+9tCXmawxOKluc5sxiiwmrm3qGyk1/mvp8znxWcmscD4cH
aceAppY0CT605w==
-----END CERTIFICATE-----
Generated at Wed Aug 7 15:00:16 2024 by rpki-client on console-ams.rpki-client.org