Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/ke1EJdaLG994ZayWIhqsf4mBFf8.roa
File: ke1EJdaLG994ZayWIhqsf4mBFf8.roa (raw, json)
Hash identifier: 6DKrS9UO9gnNLsM7cFJuobosKVoSi0Kc46jA4NpkbnE=
Subject key identifier: 91:ED:44:25:D6:8B:1B:DF:78:65:AC:96:22:1A:AC:7F:89:81:15:FF
Certificate issuer: /CN=0febfbfd6f937c5ae39e3e38e8ab8384107421a6
Certificate serial: 018D143ACC57623F041B9BF6CC1E0C32DCB6
Authority key identifier: 0F:EB:FB:FD:6F:93:7C:5A:E3:9E:3E:38:E8:AB:83:84:10:74:21:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D-v7_W-TfFrjnj446KuDhBB0IaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/ke1EJdaLG994ZayWIhqsf4mBFf8.roa
Signing time: Tue 16 Jan 2024 21:43:34 +0000
ROA not before: Tue 16 Jan 2024 21:43:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56630
IP address blocks: 5.182.228.0/22 maxlen: 24
5.188.172.0/24 maxlen: 24
5.188.173.0/24 maxlen: 24
5.188.180.0/22 maxlen: 24
31.40.216.0/22 maxlen: 24
45.135.120.0/22 maxlen: 24
45.141.8.0/22 maxlen: 24
45.150.232.0/22 maxlen: 24
77.72.16.0/23 maxlen: 24
77.72.18.0/23 maxlen: 24
77.72.20.0/23 maxlen: 24
77.72.22.0/23 maxlen: 24
88.210.38.0/24 maxlen: 24
88.210.39.0/24 maxlen: 24
88.218.240.0/22 maxlen: 24
89.34.238.0/24 maxlen: 24
89.36.160.0/24 maxlen: 24
89.36.161.0/24 maxlen: 24
91.192.80.0/24 maxlen: 24
91.192.83.0/24 maxlen: 24
91.201.64.0/22 maxlen: 24
92.119.88.0/22 maxlen: 24
93.189.56.0/24 maxlen: 24
93.189.57.0/24 maxlen: 24
93.189.58.0/24 maxlen: 24
93.189.60.0/24 maxlen: 24
93.189.61.0/24 maxlen: 24
93.189.62.0/24 maxlen: 24
93.189.63.0/24 maxlen: 24
103.97.88.0/24 maxlen: 24
103.97.89.0/24 maxlen: 24
185.6.12.0/23 maxlen: 24
185.6.14.0/23 maxlen: 24
185.131.64.0/24 maxlen: 24
185.131.65.0/24 maxlen: 24
185.131.66.0/24 maxlen: 24
185.131.67.0/24 maxlen: 24
185.135.84.0/22 maxlen: 24
185.140.12.0/22 maxlen: 24
185.140.208.0/24 maxlen: 24
185.140.209.0/24 maxlen: 24
185.224.250.0/24 maxlen: 24
185.246.152.0/24 maxlen: 24
185.246.153.0/24 maxlen: 24
185.246.154.0/24 maxlen: 24
185.246.155.0/24 maxlen: 24
194.59.46.0/24 maxlen: 24
194.59.59.0/24 maxlen: 24
194.59.142.0/24 maxlen: 24
194.59.155.0/24 maxlen: 24
195.238.124.0/22 maxlen: 24
212.23.200.0/24 maxlen: 24
213.183.32.0/24 maxlen: 24
213.183.33.0/24 maxlen: 24
213.183.36.0/24 maxlen: 24
213.183.37.0/24 maxlen: 24
213.183.38.0/24 maxlen: 24
213.183.39.0/24 maxlen: 24
213.183.40.0/24 maxlen: 24
213.183.41.0/24 maxlen: 24
213.183.42.0/24 maxlen: 24
213.183.43.0/24 maxlen: 24
213.183.44.0/24 maxlen: 24
213.183.45.0/24 maxlen: 24
213.183.46.0/24 maxlen: 24
213.183.47.0/24 maxlen: 24
213.183.48.0/24 maxlen: 24
213.183.49.0/24 maxlen: 24
213.183.50.0/24 maxlen: 24
213.183.51.0/24 maxlen: 24
213.183.52.0/24 maxlen: 24
213.183.53.0/24 maxlen: 24
213.183.58.0/24 maxlen: 24
213.183.59.0/24 maxlen: 24
213.183.60.0/24 maxlen: 24
213.183.61.0/24 maxlen: 24
213.183.62.0/24 maxlen: 24
213.183.63.0/24 maxlen: 24
213.226.68.0/22 maxlen: 24
217.30.8.0/22 maxlen: 24
2a06:f900::/36 maxlen: 36
2a06:f900:4000::/36 maxlen: 36
2a06:f901::/36 maxlen: 36
2a06:f902::/36 maxlen: 36
2a06:f903::/36 maxlen: 36
2a06:f904::/36 maxlen: 36
2a06:f905::/36 maxlen: 36
2a06:f906::/36 maxlen: 36
2a06:f907::/36 maxlen: 36
2a06:f907:4000::/36 maxlen: 36
2a0d:8400::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 06 Feb 2024 00:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:14:3a:cc:57:62:3f:04:1b:9b:f6:cc:1e:0c:32:dc:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0febfbfd6f937c5ae39e3e38e8ab8384107421a6
Validity
Not Before: Jan 16 21:43:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=91ed4425d68b1bdf7865ac96221aac7f898115ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4c:89:fc:c0:2b:af:f8:c7:09:1e:9f:99:b1:
af:eb:dd:44:d6:54:64:36:b2:41:8f:7a:8f:f2:63:
1e:25:2c:96:e3:63:fa:db:b2:f8:df:f7:8e:ff:65:
f3:4a:2a:93:c6:51:8a:d8:47:f5:92:b5:04:a4:28:
92:ef:f9:e3:13:5c:0a:c6:17:5f:43:06:4c:3b:6e:
ab:64:4b:a4:fc:e0:3e:08:7c:46:7a:0d:ed:0d:18:
d8:24:ad:83:00:ed:6d:74:2f:ec:b0:76:be:95:f7:
60:e6:dc:96:71:ee:89:b8:fc:6d:33:22:c6:2e:26:
c1:c0:48:d4:ae:95:93:d6:6b:9f:64:99:12:fe:00:
64:bc:b1:73:fd:9a:63:0d:21:66:6b:d9:a4:1e:91:
9a:87:6a:81:f5:3c:0d:da:93:3b:d8:ce:89:9d:a3:
4d:19:d9:8a:dc:0b:fe:df:28:19:39:4e:65:3f:b1:
0e:ac:f8:c8:76:3a:41:76:e0:26:ec:1d:6b:22:2a:
a8:99:fa:36:d7:5b:95:7a:86:2a:58:3b:23:d4:fa:
bc:90:e4:0b:f4:38:5d:0c:12:1d:7d:27:60:bc:e4:
73:1b:5b:1e:6b:0f:90:c4:47:f8:79:af:2f:7d:7c:
be:b8:1a:4c:1b:05:76:84:3c:a0:c1:54:b8:30:5b:
45:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:ED:44:25:D6:8B:1B:DF:78:65:AC:96:22:1A:AC:7F:89:81:15:FF
X509v3 Authority Key Identifier:
keyid:0F:EB:FB:FD:6F:93:7C:5A:E3:9E:3E:38:E8:AB:83:84:10:74:21:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D-v7_W-TfFrjnj446KuDhBB0IaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/ke1EJdaLG994ZayWIhqsf4mBFf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/D-v7_W-TfFrjnj446KuDhBB0IaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.228.0/22
5.188.172.0/23
5.188.180.0/22
31.40.216.0/22
45.135.120.0/22
45.141.8.0/22
45.150.232.0/22
77.72.16.0/21
88.210.38.0/23
88.218.240.0/22
89.34.238.0/24
89.36.160.0/23
91.192.80.0/24
91.192.83.0/24
91.201.64.0/22
92.119.88.0/22
93.189.56.0-93.189.58.255
93.189.60.0/22
103.97.88.0/23
185.6.12.0/22
185.131.64.0/22
185.135.84.0/22
185.140.12.0/22
185.140.208.0/23
185.224.250.0/24
185.246.152.0/22
194.59.46.0/24
194.59.59.0/24
194.59.142.0/24
194.59.155.0/24
195.238.124.0/22
212.23.200.0/24
213.183.32.0/23
213.183.36.0-213.183.53.255
213.183.58.0-213.183.63.255
213.226.68.0/22
217.30.8.0/22
IPv6:
2a06:f900::/36
2a06:f900:4000::/36
2a06:f901::/36
2a06:f902::/36
2a06:f903::/36
2a06:f904::/36
2a06:f905::/36
2a06:f906::/36
2a06:f907::/36
2a06:f907:4000::/36
2a0d:8400::/32
Signature Algorithm: sha256WithRSAEncryption
0c:1a:a5:f2:cb:1d:7b:30:0d:27:59:26:d6:ee:38:20:e7:0a:
34:ea:b7:a0:69:0c:a0:07:51:29:7e:5f:b2:1a:63:75:a3:26:
86:52:34:c0:05:0c:71:36:b2:50:b8:7c:c3:3d:4b:e5:6f:e0:
08:35:c0:41:83:4d:56:3d:1e:40:8f:26:93:72:22:c6:eb:23:
6d:cd:1c:c7:a3:74:ca:22:c4:88:84:95:f8:70:39:78:bd:f3:
ca:82:9c:a3:30:bc:a3:19:f7:75:5e:cc:a0:63:7e:15:12:b4:
67:4f:0a:e6:c2:bc:29:43:8c:ba:73:c5:27:ac:74:01:65:9b:
ab:ed:f2:91:05:79:87:32:0c:1b:24:93:a6:0d:38:28:e1:c6:
46:b7:66:82:96:fa:fd:d3:e7:d3:f6:19:fc:c3:53:5c:e3:24:
18:46:98:4b:8d:0c:41:08:51:23:8c:19:de:a7:07:98:bd:4e:
f9:82:a2:13:85:34:a4:b5:01:24:61:33:5a:c1:b7:ad:5f:54:
2f:8b:06:b7:ea:82:0f:19:3b:fa:e7:f9:11:bf:5b:ba:ea:f9:
d3:99:06:57:46:74:3c:c9:67:05:c3:67:5c:3a:25:65:77:9e:
4f:d4:0d:7c:6e:b1:ad:5e:bc:f4:f0:02:2e:32:90:7e:47:f0:
3d:06:c0:34
-----BEGIN CERTIFICATE-----
MIIGVDCCBTygAwIBAgISAY0UOsxXYj8EG5v2zB4MMty2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmZWJmYmZkNmY5MzdjNWFlMzllM2UzOGU4YWI4Mzg0MTA3
NDIxYTYwHhcNMjQwMTE2MjE0MzM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MWVkNDQyNWQ2OGIxYmRmNzg2NWFjOTYyMjFhYWM3Zjg5ODExNWZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApUyJ/MArr/jHCR6fmbGv691E1lRk
NrJBj3qP8mMeJSyW42P627L43/eO/2XzSiqTxlGK2Ef1krUEpCiS7/njE1wKxhdf
QwZMO26rZEuk/OA+CHxGeg3tDRjYJK2DAO1tdC/ssHa+lfdg5tyWce6JuPxtMyLG
LibBwEjUrpWT1mufZJkS/gBkvLFz/ZpjDSFma9mkHpGah2qB9TwN2pM72M6JnaNN
GdmK3Av+3ygZOU5lP7EOrPjIdjpBduAm7B1rIiqomfo211uVeoYqWDsj1Pq8kOQL
9DhdDBIdfSdgvORzG1seaw+QxEf4ea8vfXy+uBpMGwV2hDygwVS4MFtF2wIDAQAB
o4IDYDCCA1wwHQYDVR0OBBYEFJHtRCXWixvfeGWsliIarH+JgRX/MB8GA1UdIwQY
MBaAFA/r+/1vk3xa454+OOirg4QQdCGmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRC12N19XLVRmRnJqbmo0NDZLdURoQkIwSWFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS82N2Q4MzQtMjYxMi00NzM5LTlmNGIt
N2Q3MDM3NGQ3NmQyLzEva2UxRUpkYUxHOTk0WmF5V0locXNmNG1CRmY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS82N2Q4MzQtMjYxMi00NzM5LTlmNGItN2Q3MDM3NGQ3NmQy
LzEvRC12N19XLVRmRnJqbmo0NDZLdURoQkIwSWFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBdAYIKwYBBQUHAQcBAf8EggFjMIIBXzCB/QQCAAEwgfYD
BAIFtuQDBAEFvKwDBAIFvLQDBAIfKNgDBAIth3gDBAItjQgDBAItlugDBANNSBAD
BAFY0iYDBAJY2vADBABZIu4DBAFZJKADBABbwFADBABbwFMDBAJbyUADBAJcd1gw
DAMEA129OAMEAF29OgMEAl29PAMEAWdhWAMEArkGDAMEArmDQAMEArmHVAMEArmM
DAMEAbmM0AMEALng+gMEArn2mAMEAMI7LgMEAMI7OwMEAMI7jgMEAMI7mwMEAsPu
fAMEANQXyAMEAdW3IDAMAwQC1bckAwQB1bc0MAwDBAHVtzoDBAbVtwADBALV4kQD
BALZHggwXQQCAAIwVwMGBCoG+QAAAwYEKgb5AEADBgQqBvkBAAMGBCoG+QIAAwYE
Kgb5AwADBgQqBvkEAAMGBCoG+QUAAwYEKgb5BgADBgQqBvkHAAMGBCoG+QdAAwUA
Kg2EADANBgkqhkiG9w0BAQsFAAOCAQEADBql8ssdezANJ1km1u44IOcKNOq3oGkM
oAdRKX5fshpjdaMmhlI0wAUMcTayULh8wz1L5W/gCDXAQYNNVj0eQI8mk3Iixusj
bc0cx6N0yiLEiISV+HA5eL3zyoKcozC8oxn3dV7MoGN+FRK0Z08K5sK8KUOMunPF
J6x0AWWbq+3ykQV5hzIMGySTpg04KOHGRrdmgpb6/dPn0/YZ/MNTXOMkGEaYS40M
QQhRI4wZ3qcHmL1O+YKiE4U0pLUBJGEzWsG3rV9UL4sGt+qCDxk7+uf5Eb9buur5
05kGV0Z0PMlnBcNnXDolZXeeT9QNfG6xrV689PACLjKQfkfwPQbANA==
-----END CERTIFICATE-----
Generated at Tue Feb 6 04:21:14 2024 by rpki-client on console-ams.rpki-client.org