Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/r5cXWGfhiziVOkzJbX1oyy1mMcE.roa
File: r5cXWGfhiziVOkzJbX1oyy1mMcE.roa (raw, json)
Hash identifier: 1KMptXKI5bgKxdNNPtraK1QVjBxOk82Rf6dn2aJpQY8=
Subject key identifier: AF:97:17:58:67:E1:8B:38:95:3A:4C:C9:6D:7D:68:CB:2D:66:31:C1
Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd
Certificate serial: 01892F67DCC08B22EB8124DACA0DBE0D0DF8
Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/r5cXWGfhiziVOkzJbX1oyy1mMcE.roa
Signing time: Fri 07 Jul 2023 08:11:23 +0000
ROA not before: Fri 07 Jul 2023 08:11:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15704
IP address blocks: 119.12.224.0/23 maxlen: 23
119.12.226.0/23 maxlen: 23
119.12.228.0/23 maxlen: 23
119.12.230.0/23 maxlen: 23
119.12.232.0/23 maxlen: 23
217.113.240.0/20 maxlen: 20
119.12.236.0/23 maxlen: 23
119.12.238.0/23 maxlen: 23
119.12.240.0/23 maxlen: 23
119.12.234.0/23 maxlen: 23
119.12.242.0/23 maxlen: 23
119.12.244.0/23 maxlen: 23
119.12.246.0/23 maxlen: 23
119.12.250.0/23 maxlen: 23
119.12.248.0/23 maxlen: 23
185.228.152.0/23 maxlen: 23
185.228.154.0/23 maxlen: 23
195.160.224.0/22 maxlen: 22
207.188.130.0/24 maxlen: 24
213.94.0.0/18 maxlen: 23
193.53.160.0/22 maxlen: 22
137.59.58.0/24 maxlen: 24
185.153.164.0/23 maxlen: 23
185.153.166.0/23 maxlen: 23
89.39.32.0/19 maxlen: 24
94.73.32.0/19 maxlen: 19
185.227.212.0/23 maxlen: 23
89.39.52.0/24 maxlen: 24
185.227.214.0/23 maxlen: 23
91.194.62.0/23 maxlen: 23
91.106.16.0/21 maxlen: 21
185.146.56.0/22 maxlen: 22
170.253.0.0/20 maxlen: 20
185.145.64.0/22 maxlen: 22
170.253.16.0/20 maxlen: 20
170.253.32.0/20 maxlen: 20
170.253.48.0/20 maxlen: 20
185.252.12.0/22 maxlen: 22
185.197.240.0/23 maxlen: 23
213.177.192.0/19 maxlen: 21
185.197.242.0/23 maxlen: 23
188.212.23.0/24 maxlen: 24
93.177.120.0/22 maxlen: 23
93.115.152.0/24 maxlen: 24
181.41.128.0/21 maxlen: 21
212.14.96.0/19 maxlen: 23
93.115.128.0/22 maxlen: 22
93.115.132.0/22 maxlen: 22
93.176.160.0/20 maxlen: 20
93.176.176.0/20 maxlen: 20
89.35.62.0/23 maxlen: 23
93.115.202.0/24 maxlen: 24
93.176.128.0/18 maxlen: 18
93.176.128.0/21 maxlen: 21
93.176.136.0/21 maxlen: 21
93.176.144.0/21 maxlen: 21
93.176.152.0/21 maxlen: 21
93.115.242.0/24 maxlen: 24
207.188.160.0/21 maxlen: 21
188.208.219.0/24 maxlen: 24
207.188.168.0/21 maxlen: 21
91.242.152.0/21 maxlen: 21
93.115.37.0/24 maxlen: 24
2a00:d100:6800::/37 maxlen: 37
2a00:d100:2000::/37 maxlen: 37
2a00:d100:4800::/37 maxlen: 37
2a00:d100:2800::/37 maxlen: 37
2a00:d100:5000::/37 maxlen: 37
2a00:d100:1000::/37 maxlen: 37
2a00:d100:4000::/37 maxlen: 37
2a00:d100:6000::/37 maxlen: 37
2a00:d100:3000::/37 maxlen: 37
2a00:d100:800::/37 maxlen: 37
2a00:d100:3800::/37 maxlen: 37
2a00:d100:1800::/37 maxlen: 37
2a00:d100::/37 maxlen: 37
2a00:d100:5800::/37 maxlen: 37
2a01:8480:2004::/48 maxlen: 48
2a00:d103::/37 maxlen: 37
2a00:d103:800::/37 maxlen: 37
2a00:d103:1000::/37 maxlen: 37
2a00:d103:1800::/37 maxlen: 37
2a00:d103:2000::/37 maxlen: 37
2a00:d103:2800::/37 maxlen: 37
2a00:d102::/37 maxlen: 37
2a00:d102:800::/37 maxlen: 37
2a00:d102:1000::/37 maxlen: 37
2a00:d102:1800::/37 maxlen: 37
2a00:d102:2000::/37 maxlen: 37
2a00:d102:2800::/37 maxlen: 37
2a00:d101:1000::/37 maxlen: 37
2a00:d101:800::/37 maxlen: 37
2a00:d101:4800::/37 maxlen: 37
2a00:d101:3000::/37 maxlen: 37
2a00:d101:2000::/37 maxlen: 37
2a00:d101:2800::/37 maxlen: 37
2a00:d101::/37 maxlen: 37
2a00:d101:1800::/37 maxlen: 37
2a00:d101:4000::/37 maxlen: 37
2a01:8480::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2f:67:dc:c0:8b:22:eb:81:24:da:ca:0d:be:0d:0d:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd
Validity
Not Before: Jul 7 08:11:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af97175867e18b38953a4cc96d7d68cb2d6631c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:55:83:0a:f0:fd:35:cf:6b:81:dd:19:3b:3c:
a6:ad:4e:48:39:ff:5b:4f:a5:17:f6:ff:cb:13:ed:
f2:38:a0:4f:cd:3e:f2:e7:af:95:f9:36:c8:72:39:
e1:52:45:79:f9:82:00:b3:21:9a:b6:d2:b2:19:4c:
e2:76:04:60:16:04:cc:d4:99:a9:c2:bf:a7:f2:37:
d3:34:3e:a0:8c:5c:d3:2c:7e:68:2b:35:b1:9f:df:
0a:99:c2:94:89:9a:dc:c6:29:df:27:de:1b:b6:27:
20:9a:20:42:ac:0c:ff:1e:31:6d:0e:0e:8f:01:60:
47:11:df:8e:2f:c2:6b:80:3f:e4:59:c2:80:cf:b1:
56:f9:79:90:a2:0c:15:b5:12:4d:61:74:b1:8a:d8:
28:72:0a:00:28:c0:d8:ab:6a:33:a4:cc:ef:1e:f2:
53:7f:e3:09:e1:1a:b7:71:88:9d:97:42:8c:50:3c:
b6:35:b4:d0:81:3c:c3:3f:f7:47:e7:45:2d:fb:7c:
33:53:07:69:78:29:73:cf:3a:0f:06:18:ba:cb:bf:
a3:88:d4:22:83:97:ed:8b:3a:10:14:38:09:df:46:
17:20:58:40:6c:01:54:2f:e9:5c:7e:28:89:6f:82:
2c:33:2a:a2:38:32:4a:37:db:4e:11:13:97:b5:a8:
bf:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:97:17:58:67:E1:8B:38:95:3A:4C:C9:6D:7D:68:CB:2D:66:31:C1
X509v3 Authority Key Identifier:
keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/r5cXWGfhiziVOkzJbX1oyy1mMcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.62.0/23
89.39.32.0/19
91.106.16.0/21
91.194.62.0/23
91.242.152.0/21
93.115.37.0/24
93.115.128.0/21
93.115.152.0/24
93.115.202.0/24
93.115.242.0/24
93.176.128.0/18
93.177.120.0/22
94.73.32.0/19
119.12.224.0-119.12.251.255
137.59.58.0/24
170.253.0.0/18
181.41.128.0/21
185.145.64.0/22
185.146.56.0/22
185.153.164.0/22
185.197.240.0/22
185.227.212.0/22
185.228.152.0/22
185.252.12.0/22
188.208.219.0/24
188.212.23.0/24
193.53.160.0/22
195.160.224.0/22
207.188.130.0/24
207.188.160.0/20
212.14.96.0/19
213.94.0.0/18
213.177.192.0/19
217.113.240.0/20
IPv6:
2a00:d100::-2a00:d100:6fff:ffff:ffff:ffff:ffff:ffff
2a00:d101::-2a00:d101:37ff:ffff:ffff:ffff:ffff:ffff
2a00:d101:4000::/36
2a00:d102::-2a00:d102:2fff:ffff:ffff:ffff:ffff:ffff
2a00:d103::-2a00:d103:2fff:ffff:ffff:ffff:ffff:ffff
2a01:8480::/32
Signature Algorithm: sha256WithRSAEncryption
86:e8:ae:4a:c1:3d:b7:67:db:a1:51:4d:9b:b1:23:b8:7d:6d:
f0:f4:35:3e:ef:cc:60:18:83:a7:b8:47:15:70:b9:5e:d4:aa:
7d:a8:d4:1b:ad:af:ea:e2:5c:2f:21:46:4a:24:72:0f:06:d8:
66:df:82:c5:56:8f:6f:fe:06:d8:0a:cc:63:03:ab:0c:43:7e:
a9:f2:e4:f2:82:46:30:0e:d9:15:bb:45:60:d7:ad:4a:d1:f2:
7a:09:20:1d:98:5a:6a:db:3a:4c:7e:38:15:42:7a:55:71:15:
1c:b2:ac:e4:f9:fd:c6:66:33:f2:e6:20:9d:9d:0f:f8:56:c6:
9a:69:68:f8:17:ce:a3:cf:3f:47:47:e2:f2:42:50:f8:ae:06:
45:bf:f1:0c:fa:6c:9f:a7:20:28:14:3a:37:70:cb:14:4d:6b:
77:5e:19:35:f0:eb:fe:bf:75:17:ec:14:87:82:62:55:08:b1:
e0:16:3b:44:1a:68:11:4c:d1:56:0f:08:08:ee:b2:90:73:68:
77:63:f3:fe:8c:eb:4b:ca:4e:c2:38:a4:33:b9:4b:7d:47:81:
a6:4b:49:a2:13:21:71:c5:1e:74:01:fc:9c:1d:c8:d9:6f:1e:
2c:15:ea:3a:04:66:06:37:a1:ee:5d:68:e0:09:30:80:5f:4c:
62:da:d2:c7
-----BEGIN CERTIFICATE-----
MIIGLTCCBRWgAwIBAgISAYkvZ9zAiyLrgSTayg2+DQ34MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1ZDBlNzYzZjkzNWMxNzE2OTRmMTcyMDU2ZWI0NDIwOWRi
MmUyY2QwHhcNMjMwNzA3MDgxMTIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZjk3MTc1ODY3ZTE4YjM4OTUzYTRjYzk2ZDdkNjhjYjJkNjYzMWMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr1WDCvD9Nc9rgd0ZOzymrU5IOf9b
T6UX9v/LE+3yOKBPzT7y56+V+TbIcjnhUkV5+YIAsyGattKyGUzidgRgFgTM1Jmp
wr+n8jfTND6gjFzTLH5oKzWxn98KmcKUiZrcxinfJ94bticgmiBCrAz/HjFtDg6P
AWBHEd+OL8JrgD/kWcKAz7FW+XmQogwVtRJNYXSxitgocgoAKMDYq2ozpMzvHvJT
f+MJ4Rq3cYidl0KMUDy2NbTQgTzDP/dH50Ut+3wzUwdpeClzzzoPBhi6y7+jiNQi
g5ftizoQFDgJ30YXIFhAbAFUL+lcfiiJb4IsMyqiODJKN9tOEROXtai/pQIDAQAB
o4IDOTCCAzUwHQYDVR0OBBYEFK+XF1hn4Ys4lTpMyW19aMstZjHBMB8GA1UdIwQY
MBaAFIXQ52P5NcFxaU8XIFbrRCCdsuLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2Qt
ZjEyODM1ZjAyNDdiLzEvcjVjWFdHZmhpemlWT2t6SmJYMW95eTFtTWNFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2QtZjEyODM1ZjAyNDdi
LzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBTQYIKwYBBQUHAQcBAf8EggE8MIIBODCB2wQCAAEwgdQD
BAFZIz4DBAVZJyADBANbahADBAFbwj4DBANb8pgDBABdcyUDBANdc4ADBABdc5gD
BABdc8oDBABdc/IDBAZdsIADBAJdsXgDBAVeSSAwDAMEBXcM4AMEAncM+AMEAIk7
OgMEBqr9AAMEA7UpgAMEArmRQAMEArmSOAMEArmZpAMEArnF8AMEArnj1AMEArnk
mAMEArn8DAMEALzQ2wMEALzUFwMEAsE1oAMEAsOg4AMEAM+8ggMEBM+8oAMEBdQO
YAMEBtVeAAMEBdWxwAMEBNlx8DBYBAIAAjBSMA4DBAAqANEDBgQqANEAYDAPAwUA
KgDRAQMGAyoA0QEwAwYEKgDRAUAwDwMFASoA0QIDBgQqANECIDAPAwUAKgDRAwMG
BCoA0QMgAwUAKgGEgDANBgkqhkiG9w0BAQsFAAOCAQEAhuiuSsE9t2fboVFNm7Ej
uH1t8PQ1Pu/MYBiDp7hHFXC5XtSqfajUG62v6uJcLyFGSiRyDwbYZt+CxVaPb/4G
2ArMYwOrDEN+qfLk8oJGMA7ZFbtFYNetStHyegkgHZhaats6TH44FUJ6VXEVHLKs
5Pn9xmYz8uYgnZ0P+FbGmmlo+BfOo88/R0fi8kJQ+K4GRb/xDPpsn6cgKBQ6N3DL
FE1rd14ZNfDr/r91F+wUh4JiVQix4BY7RBpoEUzRVg8ICO6ykHNod2Pz/ozrS8pO
wjikM7lLfUeBpktJohMhccUedAH8nB3I2W8eLBXqOgRmBjeh7l1o4AkwgF9MYtrS
xw==
-----END CERTIFICATE-----
Generated at Tue Oct 10 08:56:09 2023 by rpki-client on console-fra.rpki-client.org