Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/CFDzZ0D2sWBZt2LMKxozVnwjeUA.roa
File: CFDzZ0D2sWBZt2LMKxozVnwjeUA.roa (raw, json)
Hash identifier: UrHzZiCxE4BzcsfQ/IM/RS3yCiaK0AdVsLV9YPrxy54=
Subject key identifier: 08:50:F3:67:40:F6:B1:60:59:B7:62:CC:2B:1A:33:56:7C:23:79:40
Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd
Certificate serial: 018EE0B958376B50542E9D86E7C45E68E694
Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/CFDzZ0D2sWBZt2LMKxozVnwjeUA.roa
Signing time: Mon 15 Apr 2024 07:47:06 +0000
ROA not before: Mon 15 Apr 2024 07:47:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15704
IP address blocks: 82.213.192.0/20 maxlen: 20
82.213.208.0/20 maxlen: 20
83.138.40.0/21 maxlen: 21
89.35.62.0/23 maxlen: 23
89.39.52.0/24 maxlen: 24
91.106.16.0/21 maxlen: 21
91.194.62.0/23 maxlen: 23
91.242.152.0/21 maxlen: 21
93.115.37.0/24 maxlen: 24
93.115.128.0/22 maxlen: 22
93.115.132.0/22 maxlen: 22
93.115.152.0/24 maxlen: 24
93.115.202.0/24 maxlen: 24
93.115.242.0/24 maxlen: 24
93.176.128.0/18 maxlen: 18
93.176.128.0/21 maxlen: 21
93.176.136.0/21 maxlen: 21
93.176.144.0/21 maxlen: 21
93.176.152.0/21 maxlen: 21
93.176.160.0/20 maxlen: 20
93.176.176.0/20 maxlen: 20
93.177.120.0/22 maxlen: 23
94.73.32.0/19 maxlen: 19
119.12.224.0/23 maxlen: 23
119.12.226.0/23 maxlen: 23
119.12.228.0/23 maxlen: 23
119.12.230.0/23 maxlen: 23
119.12.232.0/23 maxlen: 23
119.12.234.0/23 maxlen: 23
119.12.236.0/23 maxlen: 23
119.12.238.0/23 maxlen: 23
119.12.240.0/23 maxlen: 23
119.12.242.0/23 maxlen: 23
119.12.244.0/23 maxlen: 23
119.12.246.0/23 maxlen: 23
119.12.248.0/23 maxlen: 23
119.12.250.0/23 maxlen: 23
137.59.58.0/24 maxlen: 24
170.253.0.0/20 maxlen: 20
170.253.16.0/20 maxlen: 20
170.253.32.0/20 maxlen: 20
170.253.48.0/20 maxlen: 20
181.41.128.0/21 maxlen: 21
185.145.64.0/22 maxlen: 22
185.146.56.0/22 maxlen: 22
185.153.164.0/23 maxlen: 23
185.153.166.0/23 maxlen: 23
185.197.240.0/23 maxlen: 23
185.197.242.0/23 maxlen: 23
185.227.212.0/23 maxlen: 23
185.227.214.0/23 maxlen: 23
185.228.152.0/23 maxlen: 23
185.228.154.0/23 maxlen: 23
185.252.12.0/22 maxlen: 22
188.208.219.0/24 maxlen: 24
188.212.23.0/24 maxlen: 24
193.53.160.0/22 maxlen: 22
195.160.224.0/22 maxlen: 22
207.188.130.0/24 maxlen: 24
207.188.160.0/21 maxlen: 21
207.188.168.0/21 maxlen: 21
212.14.96.0/19 maxlen: 23
213.94.0.0/18 maxlen: 23
213.177.192.0/19 maxlen: 21
217.113.240.0/20 maxlen: 22
2a00:d100::/37 maxlen: 37
2a00:d100:800::/37 maxlen: 37
2a00:d100:1000::/37 maxlen: 37
2a00:d100:1800::/37 maxlen: 37
2a00:d100:2000::/37 maxlen: 37
2a00:d100:2800::/37 maxlen: 37
2a00:d100:3000::/37 maxlen: 37
2a00:d100:3800::/37 maxlen: 37
2a00:d100:4000::/37 maxlen: 37
2a00:d100:4800::/37 maxlen: 37
2a00:d100:5000::/37 maxlen: 37
2a00:d100:5800::/37 maxlen: 37
2a00:d100:6000::/37 maxlen: 37
2a00:d100:6800::/37 maxlen: 37
2a00:d101::/37 maxlen: 37
2a00:d101:800::/37 maxlen: 37
2a00:d101:1000::/37 maxlen: 37
2a00:d101:1800::/37 maxlen: 37
2a00:d101:2000::/37 maxlen: 37
2a00:d101:2800::/37 maxlen: 37
2a00:d101:3000::/37 maxlen: 37
2a00:d101:4000::/37 maxlen: 37
2a00:d101:4800::/37 maxlen: 37
2a00:d102::/37 maxlen: 37
2a00:d102:800::/37 maxlen: 37
2a00:d102:1000::/37 maxlen: 37
2a00:d102:1800::/37 maxlen: 37
2a00:d102:2000::/37 maxlen: 37
2a00:d102:2800::/37 maxlen: 37
2a00:d103::/37 maxlen: 37
2a00:d103:800::/37 maxlen: 37
2a00:d103:1000::/37 maxlen: 37
2a00:d103:1800::/37 maxlen: 37
2a00:d103:2000::/37 maxlen: 37
2a00:d103:2800::/37 maxlen: 37
2a01:8480::/32 maxlen: 32
2a01:8480:2004::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 22 Apr 2024 06:52:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e0:b9:58:37:6b:50:54:2e:9d:86:e7:c4:5e:68:e6:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd
Validity
Not Before: Apr 15 07:47:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0850f36740f6b16059b762cc2b1a33567c237940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:80:ce:12:e9:55:31:cd:56:cd:50:da:e8:73:
ed:8d:ad:af:f5:5b:f0:0a:3d:ae:40:02:e5:94:86:
ce:60:f3:41:61:43:aa:26:2b:72:61:2e:46:cd:58:
34:ff:0c:26:0e:d6:95:20:52:a1:a5:5d:39:9b:a9:
22:4f:59:e5:53:c7:ac:52:f4:aa:1d:34:d1:6a:7d:
1f:90:53:7d:00:4c:95:14:ed:34:97:0c:0c:5c:66:
46:ca:f4:70:86:0b:4f:19:05:02:95:59:c5:0e:89:
f4:02:1f:74:a7:5e:01:83:a2:8d:d3:01:c4:73:78:
79:56:43:1d:7c:aa:b6:b4:25:df:2a:0e:6b:89:f7:
db:cd:36:57:a9:b2:2d:90:ab:34:6a:4a:3e:17:dc:
c8:83:e5:b2:e9:db:a6:19:2f:5e:52:2a:81:93:80:
88:c2:5f:6c:07:23:4c:2d:05:ac:6d:1a:00:e1:d0:
88:6a:07:a6:a5:c5:aa:01:e2:dc:19:db:f5:af:e8:
b5:4a:f7:bb:13:19:61:df:3f:a2:aa:be:a7:93:e1:
10:07:4d:e8:dd:8d:44:26:45:6b:91:35:91:33:53:
03:4f:46:58:08:15:e8:12:20:0b:2b:7a:40:f0:22:
3b:6e:af:c2:4d:67:e6:a6:8b:7c:ed:d7:83:8f:90:
fb:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:50:F3:67:40:F6:B1:60:59:B7:62:CC:2B:1A:33:56:7C:23:79:40
X509v3 Authority Key Identifier:
keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/CFDzZ0D2sWBZt2LMKxozVnwjeUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.213.192.0/19
83.138.40.0/21
89.35.62.0/23
89.39.52.0/24
91.106.16.0/21
91.194.62.0/23
91.242.152.0/21
93.115.37.0/24
93.115.128.0/21
93.115.152.0/24
93.115.202.0/24
93.115.242.0/24
93.176.128.0/18
93.177.120.0/22
94.73.32.0/19
119.12.224.0-119.12.251.255
137.59.58.0/24
170.253.0.0/18
181.41.128.0/21
185.145.64.0/22
185.146.56.0/22
185.153.164.0/22
185.197.240.0/22
185.227.212.0/22
185.228.152.0/22
185.252.12.0/22
188.208.219.0/24
188.212.23.0/24
193.53.160.0/22
195.160.224.0/22
207.188.130.0/24
207.188.160.0/20
212.14.96.0/19
213.94.0.0/18
213.177.192.0/19
217.113.240.0/20
IPv6:
2a00:d100::-2a00:d100:6fff:ffff:ffff:ffff:ffff:ffff
2a00:d101::-2a00:d101:37ff:ffff:ffff:ffff:ffff:ffff
2a00:d101:4000::/36
2a00:d102::-2a00:d102:2fff:ffff:ffff:ffff:ffff:ffff
2a00:d103::-2a00:d103:2fff:ffff:ffff:ffff:ffff:ffff
2a01:8480::/32
Signature Algorithm: sha256WithRSAEncryption
35:8c:9e:68:8a:09:06:24:b5:18:81:36:27:56:65:09:98:e4:
6d:0b:7e:09:03:cc:69:9e:50:b9:df:fc:94:38:8c:3c:4f:1e:
56:ae:f8:e8:d6:89:5a:86:00:b5:27:7d:65:65:87:d6:ec:60:
c8:75:22:01:9b:73:65:b7:1d:ce:18:09:cd:e9:41:13:ce:03:
d1:f1:45:3e:48:a6:10:72:40:94:bb:bc:6a:d1:ca:56:d1:dd:
e2:f6:80:fa:cf:8a:01:02:df:2a:cd:0a:87:c5:11:06:2f:8d:
47:64:e4:66:c1:ee:54:af:3e:53:30:0c:d9:34:39:dc:38:b8:
b4:0b:0b:4a:3e:92:52:e7:6f:2c:99:5b:f7:b9:af:75:6f:2f:
5e:38:d9:05:01:c4:8b:df:51:29:05:d5:8f:77:fc:84:e9:9d:
32:9e:50:bd:17:13:37:10:ec:a3:6e:81:7a:b2:46:9d:a2:11:
91:82:3a:0d:6b:96:af:88:df:b0:c5:76:4b:8b:46:45:ed:ca:
95:d7:3f:f1:19:33:5f:d6:8f:c4:ef:72:83:c8:6b:0f:d3:92:
63:c8:2d:c9:98:a7:4f:76:66:60:3d:6e:f2:d3:4b:03:5a:98:
bd:1f:d4:0e:b3:3f:ac:8d:9d:fa:00:c2:f0:2a:cc:f2:5c:da:
15:fe:8a:7f
-----BEGIN CERTIFICATE-----
MIIGOTCCBSGgAwIBAgISAY7guVg3a1BULp2G58ReaOaUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1ZDBlNzYzZjkzNWMxNzE2OTRmMTcyMDU2ZWI0NDIwOWRi
MmUyY2QwHhcNMjQwNDE1MDc0NzA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwODUwZjM2NzQwZjZiMTYwNTliNzYyY2MyYjFhMzM1NjdjMjM3OTQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4DOEulVMc1WzVDa6HPtja2v9Vvw
Cj2uQALllIbOYPNBYUOqJityYS5GzVg0/wwmDtaVIFKhpV05m6kiT1nlU8esUvSq
HTTRan0fkFN9AEyVFO00lwwMXGZGyvRwhgtPGQUClVnFDon0Ah90p14Bg6KN0wHE
c3h5VkMdfKq2tCXfKg5riffbzTZXqbItkKs0ako+F9zIg+Wy6dumGS9eUiqBk4CI
wl9sByNMLQWsbRoA4dCIagempcWqAeLcGdv1r+i1Sve7Exlh3z+iqr6nk+EQB03o
3Y1EJkVrkTWRM1MDT0ZYCBXoEiALK3pA8CI7bq/CTWfmpot87deDj5D7vQIDAQAB
o4IDRTCCA0EwHQYDVR0OBBYEFAhQ82dA9rFgWbdizCsaM1Z8I3lAMB8GA1UdIwQY
MBaAFIXQ52P5NcFxaU8XIFbrRCCdsuLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2Qt
ZjEyODM1ZjAyNDdiLzEvQ0ZEelowRDJzV0JadDJMTUt4b3pWbndqZVVBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2QtZjEyODM1ZjAyNDdi
LzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBWQYIKwYBBQUHAQcBAf8EggFIMIIBRDCB5wQCAAEwgeAD
BAVS1cADBANTiigDBAFZIz4DBABZJzQDBANbahADBAFbwj4DBANb8pgDBABdcyUD
BANdc4ADBABdc5gDBABdc8oDBABdc/IDBAZdsIADBAJdsXgDBAVeSSAwDAMEBXcM
4AMEAncM+AMEAIk7OgMEBqr9AAMEA7UpgAMEArmRQAMEArmSOAMEArmZpAMEArnF
8AMEArnj1AMEArnkmAMEArn8DAMEALzQ2wMEALzUFwMEAsE1oAMEAsOg4AMEAM+8
ggMEBM+8oAMEBdQOYAMEBtVeAAMEBdWxwAMEBNlx8DBYBAIAAjBSMA4DBAAqANED
BgQqANEAYDAPAwUAKgDRAQMGAyoA0QEwAwYEKgDRAUAwDwMFASoA0QIDBgQqANEC
IDAPAwUAKgDRAwMGBCoA0QMgAwUAKgGEgDANBgkqhkiG9w0BAQsFAAOCAQEANYye
aIoJBiS1GIE2J1ZlCZjkbQt+CQPMaZ5Qud/8lDiMPE8eVq746NaJWoYAtSd9ZWWH
1uxgyHUiAZtzZbcdzhgJzelBE84D0fFFPkimEHJAlLu8atHKVtHd4vaA+s+KAQLf
Ks0Kh8URBi+NR2TkZsHuVK8+UzAM2TQ53Di4tAsLSj6SUudvLJlb97mvdW8vXjjZ
BQHEi99RKQXVj3f8hOmdMp5QvRcTNxDso26BerJGnaIRkYI6DWuWr4jfsMV2S4tG
Re3Kldc/8RkzX9aPxO9yg8hrD9OSY8gtyZinT3ZmYD1u8tNLA1qYvR/UDrM/rI2d
+gDC8CrM8lzaFf6Kfw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:48 2024 by rpki-client on console-ams.rpki-client.org