Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/Bpvg4ir8xVx9JUa10Ic0EyCpQsk.roa
File: Bpvg4ir8xVx9JUa10Ic0EyCpQsk.roa (raw, json)
Hash identifier: EDerg214b2To38w67+wH41Pygp6EJGnGOxHmeVDz1QY=
Subject key identifier: 06:9B:E0:E2:2A:FC:C5:5C:7D:25:46:B5:D0:87:34:13:20:A9:42:C9
Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd
Certificate serial: 018CC5DBFDF97AFDF0D8F4DDAE0105FC4575
Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/Bpvg4ir8xVx9JUa10Ic0EyCpQsk.roa
Signing time: Mon 01 Jan 2024 16:29:38 +0000
ROA not before: Mon 01 Jan 2024 16:29:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15704
IP address blocks: 119.12.224.0/23 maxlen: 23
119.12.226.0/23 maxlen: 23
119.12.228.0/23 maxlen: 23
119.12.230.0/23 maxlen: 23
119.12.232.0/23 maxlen: 23
217.113.240.0/20 maxlen: 22
119.12.236.0/23 maxlen: 23
119.12.238.0/23 maxlen: 23
119.12.240.0/23 maxlen: 23
119.12.234.0/23 maxlen: 23
119.12.242.0/23 maxlen: 23
119.12.244.0/23 maxlen: 23
119.12.246.0/23 maxlen: 23
119.12.250.0/23 maxlen: 23
119.12.248.0/23 maxlen: 23
185.228.152.0/23 maxlen: 23
185.228.154.0/23 maxlen: 23
195.160.224.0/22 maxlen: 22
207.188.130.0/24 maxlen: 24
213.94.0.0/18 maxlen: 23
193.53.160.0/22 maxlen: 22
137.59.58.0/24 maxlen: 24
185.153.164.0/23 maxlen: 23
185.153.166.0/23 maxlen: 23
94.73.32.0/19 maxlen: 19
185.227.212.0/23 maxlen: 23
89.39.52.0/24 maxlen: 24
185.227.214.0/23 maxlen: 23
91.194.62.0/23 maxlen: 23
91.106.16.0/21 maxlen: 21
185.146.56.0/22 maxlen: 22
170.253.0.0/20 maxlen: 20
185.145.64.0/22 maxlen: 22
170.253.16.0/20 maxlen: 20
170.253.32.0/20 maxlen: 20
170.253.48.0/20 maxlen: 20
185.252.12.0/22 maxlen: 22
185.197.240.0/23 maxlen: 23
213.177.192.0/19 maxlen: 21
185.197.242.0/23 maxlen: 23
188.212.23.0/24 maxlen: 24
93.177.120.0/22 maxlen: 23
93.115.152.0/24 maxlen: 24
181.41.128.0/21 maxlen: 21
212.14.96.0/19 maxlen: 23
93.115.128.0/22 maxlen: 22
93.115.132.0/22 maxlen: 22
93.176.160.0/20 maxlen: 20
93.176.176.0/20 maxlen: 20
89.35.62.0/23 maxlen: 23
93.115.202.0/24 maxlen: 24
93.176.128.0/18 maxlen: 18
93.176.128.0/21 maxlen: 21
93.176.136.0/21 maxlen: 21
93.176.144.0/21 maxlen: 21
93.176.152.0/21 maxlen: 21
93.115.242.0/24 maxlen: 24
207.188.160.0/21 maxlen: 21
188.208.219.0/24 maxlen: 24
207.188.168.0/21 maxlen: 21
91.242.152.0/21 maxlen: 21
93.115.37.0/24 maxlen: 24
2a00:d100:6800::/37 maxlen: 37
2a00:d100:800::/37 maxlen: 37
2a00:d100:6000::/37 maxlen: 37
2a00:d100:3000::/37 maxlen: 37
2a00:d100:3800::/37 maxlen: 37
2a00:d100:1000::/37 maxlen: 37
2a00:d100:1800::/37 maxlen: 37
2a00:d100:4000::/37 maxlen: 37
2a00:d100:4800::/37 maxlen: 37
2a00:d100:2800::/37 maxlen: 37
2a00:d100:5000::/37 maxlen: 37
2a00:d100:2000::/37 maxlen: 37
2a00:d100:5800::/37 maxlen: 37
2a01:8480:2004::/48 maxlen: 48
2a00:d100::/37 maxlen: 37
2a00:d103:2800::/37 maxlen: 37
2a00:d103:2000::/37 maxlen: 37
2a00:d103:1800::/37 maxlen: 37
2a00:d103:1000::/37 maxlen: 37
2a00:d103:800::/37 maxlen: 37
2a00:d103::/37 maxlen: 37
2a00:d102:2800::/37 maxlen: 37
2a00:d102:2000::/37 maxlen: 37
2a00:d102:1800::/37 maxlen: 37
2a00:d102:1000::/37 maxlen: 37
2a00:d102:800::/37 maxlen: 37
2a00:d102::/37 maxlen: 37
2a00:d101:4800::/37 maxlen: 37
2a00:d101:800::/37 maxlen: 37
2a00:d101:2800::/37 maxlen: 37
2a00:d101::/37 maxlen: 37
2a00:d101:2000::/37 maxlen: 37
2a00:d101:3000::/37 maxlen: 37
2a00:d101:4000::/37 maxlen: 37
2a00:d101:1000::/37 maxlen: 37
2a00:d101:1800::/37 maxlen: 37
2a01:8480::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 01 Mar 2024 11:48:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:db:fd:f9:7a:fd:f0:d8:f4:dd:ae:01:05:fc:45:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd
Validity
Not Before: Jan 1 16:29:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=069be0e22afcc55c7d2546b5d087341320a942c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:1a:2c:47:01:2b:ef:77:54:97:bf:16:10:98:
66:70:40:7b:0c:99:ed:b0:3f:c9:08:3b:8b:32:d5:
14:48:1f:4e:9a:c6:b1:5b:50:bc:7c:33:c4:77:7a:
a0:3d:54:ed:4b:62:d9:5f:63:5b:cd:64:9f:58:4a:
a8:1f:42:7b:33:a4:a3:46:ed:04:5b:66:87:cf:43:
3a:c2:85:c5:09:39:fc:b2:94:73:c7:71:45:2c:48:
3d:01:b8:4f:e9:27:26:d8:d2:de:a3:50:db:99:ef:
69:18:51:19:61:62:42:71:ce:33:6b:c8:a9:7d:4b:
91:91:fe:33:0c:3c:5b:75:43:c6:f7:7c:f8:05:99:
3c:2e:bb:45:92:cd:8f:0c:af:95:4f:ae:4e:4f:07:
36:be:02:6f:2d:2c:37:94:a4:62:1c:db:82:31:8e:
75:7c:4c:f7:55:f2:5d:51:b0:0d:69:80:b4:28:31:
2c:6b:4a:09:09:67:b1:62:3d:f4:d4:bc:93:39:8d:
01:3b:b1:b6:d1:64:e8:2a:ed:d5:49:74:cc:a4:b9:
72:ae:f5:50:c6:8b:53:44:49:58:98:2e:78:73:66:
f9:4b:3b:f4:b9:aa:56:67:70:f1:fd:1d:e3:63:a7:
d1:76:df:3a:7b:3b:8b:a7:91:4c:77:50:60:5b:41:
e5:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:9B:E0:E2:2A:FC:C5:5C:7D:25:46:B5:D0:87:34:13:20:A9:42:C9
X509v3 Authority Key Identifier:
keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/Bpvg4ir8xVx9JUa10Ic0EyCpQsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.62.0/23
89.39.52.0/24
91.106.16.0/21
91.194.62.0/23
91.242.152.0/21
93.115.37.0/24
93.115.128.0/21
93.115.152.0/24
93.115.202.0/24
93.115.242.0/24
93.176.128.0/18
93.177.120.0/22
94.73.32.0/19
119.12.224.0-119.12.251.255
137.59.58.0/24
170.253.0.0/18
181.41.128.0/21
185.145.64.0/22
185.146.56.0/22
185.153.164.0/22
185.197.240.0/22
185.227.212.0/22
185.228.152.0/22
185.252.12.0/22
188.208.219.0/24
188.212.23.0/24
193.53.160.0/22
195.160.224.0/22
207.188.130.0/24
207.188.160.0/20
212.14.96.0/19
213.94.0.0/18
213.177.192.0/19
217.113.240.0/20
IPv6:
2a00:d100::-2a00:d100:6fff:ffff:ffff:ffff:ffff:ffff
2a00:d101::-2a00:d101:37ff:ffff:ffff:ffff:ffff:ffff
2a00:d101:4000::/36
2a00:d102::-2a00:d102:2fff:ffff:ffff:ffff:ffff:ffff
2a00:d103::-2a00:d103:2fff:ffff:ffff:ffff:ffff:ffff
2a01:8480::/32
Signature Algorithm: sha256WithRSAEncryption
47:62:9f:6b:fb:28:30:e6:87:89:d6:8b:41:91:01:46:cf:0c:
2b:b6:46:2c:23:44:84:bb:e3:d2:3d:ac:8b:4b:3b:f6:7f:ec:
98:74:e5:a6:f1:ca:96:96:e5:71:8e:98:c1:33:2a:8f:32:d4:
da:bb:12:a3:e1:15:44:6a:85:c0:88:92:fe:5f:eb:34:46:08:
a1:d6:89:ed:f6:98:96:99:cc:3e:38:5c:87:5f:d0:7a:88:cd:
d8:81:23:71:c7:e6:fd:73:54:55:22:fc:70:87:ab:92:59:d5:
83:26:63:cf:8a:52:84:98:f6:be:34:ec:ad:99:80:8c:eb:1a:
c6:66:28:c4:f2:91:f0:90:5d:46:f0:72:11:57:e9:80:f3:31:
c3:54:e8:44:85:49:c4:4a:9e:57:0e:ab:e0:62:1f:b8:3d:fd:
63:c5:25:35:77:ed:9f:05:7b:3c:49:59:8a:1e:13:c1:1c:f7:
61:a6:a3:d1:82:4f:7d:3d:4b:4c:43:39:6f:37:a0:24:8b:86:
77:8b:da:71:28:87:17:57:ab:bf:42:a6:15:f7:11:fc:08:49:
8d:39:81:91:57:46:48:a9:32:1b:4f:a0:14:5b:79:fd:74:e7:
0d:48:4c:df:46:1f:2e:ec:29:75:d4:3d:70:08:f8:24:86:a7:
7f:ff:8c:a6
-----BEGIN CERTIFICATE-----
MIIGLTCCBRWgAwIBAgISAYzF2/35ev3w2PTdrgEF/EV1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1ZDBlNzYzZjkzNWMxNzE2OTRmMTcyMDU2ZWI0NDIwOWRi
MmUyY2QwHhcNMjQwMTAxMTYyOTM4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNjliZTBlMjJhZmNjNTVjN2QyNTQ2YjVkMDg3MzQxMzIwYTk0MmM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAghosRwEr73dUl78WEJhmcEB7DJnt
sD/JCDuLMtUUSB9OmsaxW1C8fDPEd3qgPVTtS2LZX2NbzWSfWEqoH0J7M6SjRu0E
W2aHz0M6woXFCTn8spRzx3FFLEg9AbhP6Scm2NLeo1Dbme9pGFEZYWJCcc4za8ip
fUuRkf4zDDxbdUPG93z4BZk8LrtFks2PDK+VT65OTwc2vgJvLSw3lKRiHNuCMY51
fEz3VfJdUbANaYC0KDEsa0oJCWexYj301LyTOY0BO7G20WToKu3VSXTMpLlyrvVQ
xotTRElYmC54c2b5Szv0uapWZ3Dx/R3jY6fRdt86ezuLp5FMd1BgW0HllwIDAQAB
o4IDOTCCAzUwHQYDVR0OBBYEFAab4OIq/MVcfSVGtdCHNBMgqULJMB8GA1UdIwQY
MBaAFIXQ52P5NcFxaU8XIFbrRCCdsuLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2Qt
ZjEyODM1ZjAyNDdiLzEvQnB2ZzRpcjh4Vng5SlVhMTBJYzBFeUNwUXNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2QtZjEyODM1ZjAyNDdi
LzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBTQYIKwYBBQUHAQcBAf8EggE8MIIBODCB2wQCAAEwgdQD
BAFZIz4DBABZJzQDBANbahADBAFbwj4DBANb8pgDBABdcyUDBANdc4ADBABdc5gD
BABdc8oDBABdc/IDBAZdsIADBAJdsXgDBAVeSSAwDAMEBXcM4AMEAncM+AMEAIk7
OgMEBqr9AAMEA7UpgAMEArmRQAMEArmSOAMEArmZpAMEArnF8AMEArnj1AMEArnk
mAMEArn8DAMEALzQ2wMEALzUFwMEAsE1oAMEAsOg4AMEAM+8ggMEBM+8oAMEBdQO
YAMEBtVeAAMEBdWxwAMEBNlx8DBYBAIAAjBSMA4DBAAqANEDBgQqANEAYDAPAwUA
KgDRAQMGAyoA0QEwAwYEKgDRAUAwDwMFASoA0QIDBgQqANECIDAPAwUAKgDRAwMG
BCoA0QMgAwUAKgGEgDANBgkqhkiG9w0BAQsFAAOCAQEAR2Kfa/soMOaHidaLQZEB
Rs8MK7ZGLCNEhLvj0j2si0s79n/smHTlpvHKlpblcY6YwTMqjzLU2rsSo+EVRGqF
wIiS/l/rNEYIodaJ7faYlpnMPjhch1/QeojN2IEjccfm/XNUVSL8cIerklnVgyZj
z4pShJj2vjTsrZmAjOsaxmYoxPKR8JBdRvByEVfpgPMxw1ToRIVJxEqeVw6r4GIf
uD39Y8UlNXftnwV7PElZih4TwRz3Yaaj0YJPfT1LTEM5bzegJIuGd4vacSiHF1er
v0KmFfcR/AhJjTmBkVdGSKkyG0+gFFt5/XTnDUhM30YfLuwpddQ9cAj4JIanf/+M
pg==
-----END CERTIFICATE-----
Generated at Fri Mar 1 16:01:14 2024 by rpki-client on console-fra.rpki-client.org