Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/3DTs6hZe1bGHrDz5nSfo__LV5Ug.roa
File: 3DTs6hZe1bGHrDz5nSfo__LV5Ug.roa (raw, json)
Hash identifier: FACf8d5ADEwu1gzBhqhvFnIQVm5trUZSSLFsrZ5i0NU=
Subject key identifier: DC:34:EC:EA:16:5E:D5:B1:87:AC:3C:F9:9D:27:E8:FF:F2:D5:E5:48
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 018D785338830AEEBFAF70B252FD28D0B618
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/3DTs6hZe1bGHrDz5nSfo__LV5Ug.roa
Signing time: Mon 05 Feb 2024 08:12:16 +0000
ROA not before: Mon 05 Feb 2024 08:12:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3352
IP address blocks: 2.136.0.0/16 maxlen: 16
2.137.0.0/16 maxlen: 16
2.138.0.0/16 maxlen: 16
2.139.0.0/16 maxlen: 16
79.144.0.0/16 maxlen: 16
79.145.0.0/16 maxlen: 16
79.146.0.0/16 maxlen: 16
79.147.0.0/16 maxlen: 16
79.148.0.0/16 maxlen: 16
80.24.0.0/16 maxlen: 16
80.25.0.0/16 maxlen: 16
80.30.0.0/16 maxlen: 16
80.31.0.0/16 maxlen: 16
80.32.0.0/16 maxlen: 16
80.33.0.0/16 maxlen: 16
80.34.0.0/16 maxlen: 16
80.35.0.0/16 maxlen: 16
80.36.0.0/16 maxlen: 16
80.37.0.0/16 maxlen: 16
80.38.0.0/16 maxlen: 16
80.39.0.0/16 maxlen: 16
80.59.0.0/16 maxlen: 16
81.32.0.0/16 maxlen: 16
81.34.0.0/16 maxlen: 16
81.35.0.0/16 maxlen: 16
81.36.0.0/16 maxlen: 16
81.37.0.0/16 maxlen: 16
81.38.0.0/16 maxlen: 16
81.39.0.0/16 maxlen: 16
81.40.0.0/16 maxlen: 16
81.41.0.0/16 maxlen: 16
81.42.0.0/16 maxlen: 16
81.43.0.0/16 maxlen: 16
81.44.0.0/16 maxlen: 16
83.32.0.0/16 maxlen: 16
83.33.0.0/16 maxlen: 16
83.34.0.0/16 maxlen: 16
83.35.0.0/16 maxlen: 16
83.37.0.0/16 maxlen: 16
83.38.0.0/16 maxlen: 16
83.39.0.0/16 maxlen: 16
83.47.0.0/16 maxlen: 16
83.52.0.0/16 maxlen: 16
83.53.0.0/16 maxlen: 16
83.54.0.0/16 maxlen: 16
83.55.0.0/16 maxlen: 16
83.56.0.0/16 maxlen: 16
83.57.0.0/16 maxlen: 16
83.58.0.0/16 maxlen: 16
83.59.0.0/16 maxlen: 16
83.60.0.0/16 maxlen: 16
83.61.0.0/16 maxlen: 16
83.63.0.0/16 maxlen: 16
88.0.0.0/16 maxlen: 16
88.1.0.0/16 maxlen: 16
88.2.0.0/16 maxlen: 16
88.8.0.0/16 maxlen: 16
88.9.0.0/16 maxlen: 16
88.10.0.0/16 maxlen: 16
88.11.0.0/16 maxlen: 16
88.13.0.0/16 maxlen: 16
88.14.0.0/16 maxlen: 16
88.15.0.0/16 maxlen: 16
88.16.0.0/16 maxlen: 16
88.24.0.0/16 maxlen: 16
88.25.0.0/16 maxlen: 16
88.30.0.0/16 maxlen: 16
192.101.1.0/24 maxlen: 24
194.69.225.0/24 maxlen: 24
194.179.34.0/24 maxlen: 24
194.179.112.0/24 maxlen: 24
194.224.157.0/24 maxlen: 24
195.53.0.0/16 maxlen: 16
195.53.193.0/24 maxlen: 24
195.53.218.0/23 maxlen: 23
195.55.78.0/24 maxlen: 24
195.55.79.0/24 maxlen: 24
195.55.110.0/24 maxlen: 24
195.57.5.0/24 maxlen: 24
195.57.27.0/24 maxlen: 24
195.76.141.0/24 maxlen: 24
195.76.164.0/24 maxlen: 24
195.77.57.0/24 maxlen: 24
195.235.95.0/24 maxlen: 24
195.235.188.0/24 maxlen: 24
195.235.225.0/24 maxlen: 24
212.170.156.0/24 maxlen: 24
212.170.159.0/24 maxlen: 24
213.96.0.0/16 maxlen: 16
213.99.44.0/24 maxlen: 24
213.99.59.0/24 maxlen: 24
217.124.182.0/24 maxlen: 24
217.126.0.0/16 maxlen: 16
217.127.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Tue 06 Feb 2024 07:32:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:78:53:38:83:0a:ee:bf:af:70:b2:52:fd:28:d0:b6:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Feb 5 08:12:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dc34ecea165ed5b187ac3cf99d27e8fff2d5e548
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ef:33:6a:fd:cd:2c:63:48:a4:a0:a5:c0:1f:
73:06:ec:4a:16:c6:8a:9e:bc:b9:b4:83:c1:8a:fd:
b6:46:2c:b6:a9:47:fc:e0:ca:56:90:05:fa:e5:f5:
63:0c:13:43:ca:f3:d1:1c:0e:6e:43:db:21:78:4b:
43:31:ee:34:36:cc:4a:e7:7b:ee:15:78:e9:8d:ef:
89:d6:de:3c:d4:30:65:4a:70:90:80:dd:23:39:ec:
a4:e2:1c:cf:43:bc:f0:85:7e:91:ec:81:52:b1:e0:
83:f1:d9:28:c8:ec:ff:46:34:9b:3f:bb:0d:f5:a3:
29:c9:48:28:37:e7:1e:44:83:ec:76:7b:6d:d1:79:
cc:0a:07:fa:03:a8:92:5e:28:e8:53:1b:52:aa:01:
25:fd:6d:d2:72:97:3a:43:c8:b0:f5:f0:04:f8:47:
04:c9:52:da:4e:cd:47:a5:f9:38:af:a4:6b:e5:09:
9e:13:94:9c:32:59:67:9b:3d:82:1f:2b:55:9a:1c:
57:a0:37:04:35:c1:57:89:85:93:d2:6e:92:79:f8:
b3:95:77:cb:e3:0f:20:73:6c:19:06:59:79:1f:7a:
3e:5a:bb:fc:49:32:6f:6d:4e:87:32:c4:40:11:27:
3f:15:53:4a:d6:8d:8b:b9:7c:fd:0a:a0:76:0b:ab:
56:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:34:EC:EA:16:5E:D5:B1:87:AC:3C:F9:9D:27:E8:FF:F2:D5:E5:48
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/3DTs6hZe1bGHrDz5nSfo__LV5Ug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.136.0.0/14
79.144.0.0-79.148.255.255
80.24.0.0/15
80.30.0.0-80.39.255.255
80.59.0.0/16
81.32.0.0/16
81.34.0.0-81.44.255.255
83.32.0.0/14
83.37.0.0-83.39.255.255
83.47.0.0/16
83.52.0.0-83.61.255.255
83.63.0.0/16
88.0.0.0-88.2.255.255
88.8.0.0/14
88.13.0.0-88.16.255.255
88.24.0.0/15
88.30.0.0/16
192.101.1.0/24
194.69.225.0/24
194.179.34.0/24
194.179.112.0/24
194.224.157.0/24
195.53.0.0/16
195.55.78.0/23
195.55.110.0/24
195.57.5.0/24
195.57.27.0/24
195.76.141.0/24
195.76.164.0/24
195.77.57.0/24
195.235.95.0/24
195.235.188.0/24
195.235.225.0/24
212.170.156.0/24
212.170.159.0/24
213.96.0.0/16
213.99.44.0/24
213.99.59.0/24
217.124.182.0/24
217.126.0.0/15
Signature Algorithm: sha256WithRSAEncryption
8b:b1:30:b2:6e:a7:04:41:f7:4a:4d:3c:a4:a8:12:b1:76:cf:
a3:27:db:bb:80:ca:43:42:13:cb:e1:21:06:29:84:ad:fa:70:
1f:9b:61:22:ae:7b:2c:52:f1:a4:02:f4:18:2b:83:a2:01:6b:
53:1e:ad:02:49:7a:fd:42:5d:f0:39:e7:80:93:27:39:65:13:
ff:b2:5f:0a:c6:13:3d:b3:ea:5e:6c:a2:21:5d:ad:eb:78:1b:
6f:36:d3:5b:ae:e4:7b:53:fe:b5:f6:bb:7b:7a:7d:4e:50:44:
ba:e3:11:97:54:00:c5:47:66:93:70:22:87:07:69:e1:f7:af:
92:03:d4:dc:ae:ac:8b:28:45:2f:ac:10:8c:de:1c:f6:a5:89:
f7:94:2a:d5:da:c0:e9:7f:38:ae:fe:6b:8a:b2:b6:9c:5e:64:
cf:3b:19:7f:56:ec:3b:a5:84:bf:3f:2e:b6:f8:91:c7:bf:0e:
49:3c:92:ed:21:94:7b:7f:69:37:5d:b9:96:23:f9:a2:69:b5:
96:f1:c9:6d:81:08:78:88:71:d4:d8:d8:b9:b1:02:a2:f3:62:
8b:ab:cc:1d:99:91:c8:68:96:79:b1:9d:77:7f:06:99:7b:21:
f3:b5:a4:be:0a:e3:df:b6:ab:83:b1:ce:1d:4a:ab:bf:f6:43:
f6:d2:96:a9
-----BEGIN CERTIFICATE-----
MIIGDTCCBPWgAwIBAgISAY14UziDCu6/r3CyUv0o0LYYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwN2Y1ZmUyNzQwYTJiNmRlNGMzNzA5ZDI5NjQxMTViM2M5
NjdkYTEwHhcNMjQwMjA1MDgxMjE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYzM0ZWNlYTE2NWVkNWIxODdhYzNjZjk5ZDI3ZThmZmYyZDVlNTQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAke8zav3NLGNIpKClwB9zBuxKFsaK
nry5tIPBiv22Riy2qUf84MpWkAX65fVjDBNDyvPRHA5uQ9sheEtDMe40NsxK53vu
FXjpje+J1t481DBlSnCQgN0jOeyk4hzPQ7zwhX6R7IFSseCD8dkoyOz/RjSbP7sN
9aMpyUgoN+ceRIPsdntt0XnMCgf6A6iSXijoUxtSqgEl/W3Scpc6Q8iw9fAE+EcE
yVLaTs1Hpfk4r6Rr5QmeE5ScMllnmz2CHytVmhxXoDcENcFXiYWT0m6SefizlXfL
4w8gc2wZBll5H3o+Wrv8STJvbU6HMsRAESc/FVNK1o2LuXz9CqB2C6tWFwIDAQAB
o4IDGTCCAxUwHQYDVR0OBBYEFNw07OoWXtWxh6w8+Z0n6P/y1eVIMB8GA1UdIwQY
MBaAFDB/X+J0Citt5MNwnSlkEVs8ln2hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQt
NGJhMmY4ZjFmODNiLzEvM0RUczZoWmUxYkdIckR6NW5TZm9fX0xWNVVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQtNGJhMmY4ZjFmODNi
LzEvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBLQYIKwYBBQUHAQcBAf8EggEcMIIBGDCCARQEAgABMIIB
DAMDAgKIMAoDAwRPkAMDAE+UAwMBUBgwCgMDAVAeAwMDUCADAwBQOwMDAFEgMAoD
AwFRIgMDAFEsAwMCUyAwCgMDAFMlAwMDUyADAwBTLzAKAwMCUzQDAwFTPAMDAFM/
MAkDAgNYAwMAWAIDAwJYCDAKAwMAWA0DAwBYEAMDAVgYAwMAWB4DBADAZQEDBADC
ReEDBADCsyIDBADCs3ADBADC4J0DAwDDNQMEAcM3TgMEAMM3bgMEAMM5BQMEAMM5
GwMEAMNMjQMEAMNMpAMEAMNNOQMEAMPrXwMEAMPrvAMEAMPr4QMEANSqnAMEANSq
nwMDANVgAwQA1WMsAwQA1WM7AwQA2Xy2AwMB2X4wDQYJKoZIhvcNAQELBQADggEB
AIuxMLJupwRB90pNPKSoErF2z6Mn27uAykNCE8vhIQYphK36cB+bYSKueyxS8aQC
9Bgrg6IBa1MerQJJev1CXfA554CTJzllE/+yXwrGEz2z6l5soiFdret4G28201uu
5HtT/rX2u3t6fU5QRLrjEZdUAMVHZpNwIocHaeH3r5ID1NyurIsoRS+sEIzeHPal
ifeUKtXawOl/OK7+a4qytpxeZM87GX9W7DulhL8/Lrb4kce/Dkk8ku0hlHt/aTdd
uZYj+aJptZbxyW2BCHiIcdTY2LmxAqLzYourzB2ZkcholnmxnXd/Bpl7IfO1pL4K
49+2q4Oxzh1Kq7/2Q/bSlqk=
-----END CERTIFICATE-----
Generated at Tue Feb 6 12:22:11 2024 by rpki-client on console-fra.rpki-client.org