Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/DsRJd25abeUKKd_kiZdLkHdL8K4.roa
File: DsRJd25abeUKKd_kiZdLkHdL8K4.roa (raw, json)
Hash identifier: gwl9xlwTojY98FzVED9zdqWaNcqhb4WO/FowdAInBuc=
Subject key identifier: 0E:C4:49:77:6E:5A:6D:E5:0A:29:DF:E4:89:97:4B:90:77:4B:F0:AE
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018BDCBD16D0FDBC29E29C743839474ACB66
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/DsRJd25abeUKKd_kiZdLkHdL8K4.roa
Signing time: Fri 17 Nov 2023 10:04:21 +0000
ROA not before: Fri 17 Nov 2023 10:04:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7393
IP address blocks: 146.19.151.0/24 maxlen: 24
37.140.222.0/24 maxlen: 24
188.241.248.0/24 maxlen: 24
193.221.210.0/24 maxlen: 24
94.154.126.0/24 maxlen: 24
146.19.110.0/24 maxlen: 24
146.19.132.0/24 maxlen: 24
185.161.123.0/24 maxlen: 24
194.26.200.0/24 maxlen: 24
62.3.57.0/24 maxlen: 24
185.151.145.0/24 maxlen: 24
185.184.216.0/24 maxlen: 24
62.3.5.0/24 maxlen: 24
79.110.228.0/24 maxlen: 24
79.110.230.0/24 maxlen: 24
62.106.91.0/24 maxlen: 24
45.86.37.0/24 maxlen: 24
188.244.126.0/24 maxlen: 24
193.163.192.0/24 maxlen: 24
193.163.195.0/24 maxlen: 24
194.150.76.0/24 maxlen: 24
193.163.193.0/24 maxlen: 24
91.247.172.0/24 maxlen: 24
37.72.136.0/24 maxlen: 24
213.109.149.0/24 maxlen: 24
213.109.156.0/24 maxlen: 24
213.109.159.0/24 maxlen: 24
176.126.119.0/24 maxlen: 24
62.106.74.0/24 maxlen: 24
193.201.14.0/24 maxlen: 24
193.201.12.0/24 maxlen: 24
188.241.159.0/24 maxlen: 24
62.204.60.0/24 maxlen: 24
62.197.128.0/24 maxlen: 24
5.180.178.0/24 maxlen: 24
146.19.36.0/24 maxlen: 24
212.24.123.0/24 maxlen: 24
46.253.135.0/24 maxlen: 24
62.122.191.0/24 maxlen: 24
89.38.136.0/24 maxlen: 24
78.142.243.0/24 maxlen: 24
212.52.11.0/24 maxlen: 24
193.38.154.0/24 maxlen: 24
212.18.102.0/24 maxlen: 24
212.18.106.0/24 maxlen: 24
217.119.135.0/24 maxlen: 24
185.234.15.0/24 maxlen: 24
213.173.37.0/24 maxlen: 24
91.209.12.0/24 maxlen: 24
176.118.35.0/24 maxlen: 24
91.246.32.0/24 maxlen: 24
91.246.37.0/24 maxlen: 24
193.3.180.0/24 maxlen: 24
91.246.63.0/24 maxlen: 24
193.3.181.0/24 maxlen: 24
91.242.233.0/24 maxlen: 24
193.3.187.0/24 maxlen: 24
176.97.198.0/24 maxlen: 24
176.97.195.0/24 maxlen: 24
185.235.225.0/24 maxlen: 24
176.97.200.0/24 maxlen: 24
185.235.228.0/24 maxlen: 24
176.97.211.0/24 maxlen: 24
185.252.213.0/24 maxlen: 24
62.233.32.0/24 maxlen: 24
62.233.38.0/24 maxlen: 24
91.242.252.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:dc:bd:16:d0:fd:bc:29:e2:9c:74:38:39:47:4a:cb:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Nov 17 10:04:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ec449776e5a6de50a29dfe489974b90774bf0ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:05:c4:6e:cf:af:56:d0:a4:a9:d7:18:76:f8:
ea:48:83:7b:15:73:a2:da:67:7f:55:b3:a9:41:e3:
02:e8:26:4f:9d:7e:83:3e:54:eb:24:18:41:51:6a:
e4:c8:1d:a9:ec:e7:d6:00:37:8e:d6:8b:53:9c:aa:
29:96:f3:82:5e:22:18:ef:71:aa:01:bf:df:04:12:
bc:a9:0a:7c:3c:e6:41:30:de:1f:a0:9b:7c:48:05:
13:b3:25:96:ca:95:ae:81:c5:6c:5d:cd:3d:76:0a:
c9:7b:18:b3:b1:eb:78:71:e8:ac:b8:b0:8d:b0:cc:
5d:52:6d:35:29:6c:b4:eb:fe:06:48:e8:f9:ab:11:
b0:41:ba:7e:21:09:ee:67:49:37:3d:61:df:43:49:
31:74:e8:26:f1:7f:8c:a8:96:47:1d:38:d3:15:cd:
cd:59:00:f7:2b:2e:29:27:13:f3:0f:ea:c1:6d:9b:
0f:36:7a:73:04:4e:b3:35:6f:39:6a:75:8a:0d:bf:
88:f1:57:27:a6:88:55:14:4f:c7:2f:2d:da:4f:64:
2a:0f:45:06:ae:bc:cf:aa:75:d9:bc:21:7b:77:c3:
fc:81:51:40:3b:44:5b:55:de:be:6b:f5:69:b7:7e:
8a:ed:0f:0c:8c:d2:18:a8:b3:55:03:23:11:a1:03:
2a:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:C4:49:77:6E:5A:6D:E5:0A:29:DF:E4:89:97:4B:90:77:4B:F0:AE
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/DsRJd25abeUKKd_kiZdLkHdL8K4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.178.0/24
37.72.136.0/24
37.140.222.0/24
45.86.37.0/24
46.253.135.0/24
62.3.5.0/24
62.3.57.0/24
62.106.74.0/24
62.106.91.0/24
62.122.191.0/24
62.197.128.0/24
62.204.60.0/24
62.233.32.0/24
62.233.38.0/24
78.142.243.0/24
79.110.228.0/24
79.110.230.0/24
89.38.136.0/24
91.209.12.0/24
91.242.233.0/24
91.242.252.0/24
91.246.32.0/24
91.246.37.0/24
91.246.63.0/24
91.247.172.0/24
94.154.126.0/24
146.19.36.0/24
146.19.110.0/24
146.19.132.0/24
146.19.151.0/24
176.97.195.0/24
176.97.198.0/24
176.97.200.0/24
176.97.211.0/24
176.118.35.0/24
176.126.119.0/24
185.151.145.0/24
185.161.123.0/24
185.184.216.0/24
185.234.15.0/24
185.235.225.0/24
185.235.228.0/24
185.252.213.0/24
188.241.159.0/24
188.241.248.0/24
188.244.126.0/24
193.3.180.0/23
193.3.187.0/24
193.38.154.0/24
193.163.192.0/23
193.163.195.0/24
193.201.12.0/24
193.201.14.0/24
193.221.210.0/24
194.26.200.0/24
194.150.76.0/24
212.18.102.0/24
212.18.106.0/24
212.24.123.0/24
212.52.11.0/24
213.109.149.0/24
213.109.156.0/24
213.109.159.0/24
213.173.37.0/24
217.119.135.0/24
Signature Algorithm: sha256WithRSAEncryption
27:10:81:da:ef:ee:40:bb:11:05:78:98:26:4c:43:dd:0f:f0:
c7:d9:0b:91:95:3a:6e:70:7c:93:bd:05:bd:ee:af:49:76:e0:
fd:48:71:9f:ea:78:87:1b:36:b9:8a:05:da:19:c8:74:ed:3f:
96:d3:28:36:c9:ce:d1:56:5a:31:c2:aa:94:39:49:40:8e:7d:
89:cd:d3:31:09:21:4e:f2:50:07:0c:de:f6:f1:79:47:3e:e1:
f5:d5:ad:8d:2a:2d:ea:f0:6f:9c:47:32:1f:33:13:37:f8:66:
63:4b:69:94:e8:ce:78:41:e9:67:20:59:81:1e:90:c0:8e:57:
6d:1e:4d:a4:2e:f1:e4:a7:2e:9f:8a:16:f6:34:d5:33:dc:6a:
3f:d8:07:68:cb:ec:53:15:74:7a:9f:1d:31:fd:a1:b5:4b:eb:
c4:bf:d9:86:81:12:22:0c:c5:4d:47:e5:54:6c:45:a9:b2:6e:
ea:a7:e8:47:42:a7:f4:b3:30:08:c9:9a:7e:2f:45:ed:17:02:
c0:95:9c:8d:4c:76:91:ab:29:37:f1:ca:18:6f:28:e4:28:2b:
15:13:ac:b8:19:8d:07:25:07:44:a5:21:8c:ca:41:b4:07:d1:
03:8f:94:b4:d0:bb:f9:23:5f:c4:4c:ee:92:7f:d6:cc:32:28:
7c:92:a8:21
-----BEGIN CERTIFICATE-----
MIIGhzCCBW+gAwIBAgISAYvcvRbQ/bwp4px0ODlHSstmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2YzJhNGI3ZDVkNzNjNWI1NzA0NjIyM2JmMzBlYjY1MzAw
NWIwZTIwHhcNMjMxMTE3MTAwNDIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZWM0NDk3NzZlNWE2ZGU1MGEyOWRmZTQ4OTk3NGI5MDc3NGJmMGFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuAXEbs+vVtCkqdcYdvjqSIN7FXOi
2md/VbOpQeMC6CZPnX6DPlTrJBhBUWrkyB2p7OfWADeO1otTnKoplvOCXiIY73Gq
Ab/fBBK8qQp8POZBMN4foJt8SAUTsyWWypWugcVsXc09dgrJexizset4ceisuLCN
sMxdUm01KWy06/4GSOj5qxGwQbp+IQnuZ0k3PWHfQ0kxdOgm8X+MqJZHHTjTFc3N
WQD3Ky4pJxPzD+rBbZsPNnpzBE6zNW85anWKDb+I8VcnpohVFE/HLy3aT2QqD0UG
rrzPqnXZvCF7d8P8gVFAO0RbVd6+a/Vpt36K7Q8MjNIYqLNVAyMRoQMqaQIDAQAB
o4IDkzCCA48wHQYDVR0OBBYEFA7ESXduWm3lCinf5ImXS5B3S/CuMB8GA1UdIwQY
MBaAFDbCpLfV1zxbVwRiI78w62UwBbDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGIt
MmNjZWRiOTY2YTU4LzEvRHNSSmQyNWFiZVVLS2Rfa2laZExrSGRMOEs0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGItMmNjZWRiOTY2YTU4
LzEvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBpwYIKwYBBQUHAQcBAf8EggGWMIIBkjCCAY4EAgABMIIB
hgMEAAW0sgMEACVIiAMEACWM3gMEAC1WJQMEAC79hwMEAD4DBQMEAD4DOQMEAD5q
SgMEAD5qWwMEAD56vwMEAD7FgAMEAD7MPAMEAD7pIAMEAD7pJgMEAE6O8wMEAE9u
5AMEAE9u5gMEAFkmiAMEAFvRDAMEAFvy6QMEAFvy/AMEAFv2IAMEAFv2JQMEAFv2
PwMEAFv3rAMEAF6afgMEAJITJAMEAJITbgMEAJIThAMEAJITlwMEALBhwwMEALBh
xgMEALBhyAMEALBh0wMEALB2IwMEALB+dwMEALmXkQMEALmhewMEALm42AMEALnq
DwMEALnr4QMEALnr5AMEALn81QMEALzxnwMEALzx+AMEALz0fgMEAcEDtAMEAMED
uwMEAMEmmgMEAcGjwAMEAMGjwwMEAMHJDAMEAMHJDgMEAMHd0gMEAMIayAMEAMKW
TAMEANQSZgMEANQSagMEANQYewMEANQ0CwMEANVtlQMEANVtnAMEANVtnwMEANWt
JQMEANl3hzANBgkqhkiG9w0BAQsFAAOCAQEAJxCB2u/uQLsRBXiYJkxD3Q/wx9kL
kZU6bnB8k70Fve6vSXbg/Uhxn+p4hxs2uYoF2hnIdO0/ltMoNsnO0VZaMcKqlDlJ
QI59ic3TMQkhTvJQBwze9vF5Rz7h9dWtjSot6vBvnEcyHzMTN/hmY0tplOjOeEHp
ZyBZgR6QwI5XbR5NpC7x5Kcun4oW9jTVM9xqP9gHaMvsUxV0ep8dMf2htUvrxL/Z
hoESIgzFTUflVGxFqbJu6qfoR0Kn9LMwCMmafi9F7RcCwJWcjUx2kaspN/HKGG8o
5CgrFROsuBmNByUHRKUhjMpBtAfRA4+UtNC7+SNfxEzukn/WzDIofJKoIQ==
-----END CERTIFICATE-----
Generated at Fri Nov 17 13:49:49 2023 by rpki-client on console-ams.rpki-client.org