Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/53e496-0097-462a-a989-d67a61d5416d/1/xBPYsRG4dLsjLHAQO8fnK5nYGzw.roa
File: xBPYsRG4dLsjLHAQO8fnK5nYGzw.roa (raw, json)
Hash identifier: N1pWyocAXtZtaUEjy8aGy4IBCJL10TgXKkQjg6598HI=
Subject key identifier: C4:13:D8:B1:11:B8:74:BB:23:2C:70:10:3B:C7:E7:2B:99:D8:1B:3C
Certificate issuer: /CN=f416539e74934d23a0572f6625dbfdb54e820873
Certificate serial: 018F29E287D5696E6B27D57FE6721607BDA3
Authority key identifier: F4:16:53:9E:74:93:4D:23:A0:57:2F:66:25:DB:FD:B5:4E:82:08:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9BZTnnSTTSOgVy9mJdv9tU6CCHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/53e496-0097-462a-a989-d67a61d5416d/1/xBPYsRG4dLsjLHAQO8fnK5nYGzw.roa
Signing time: Mon 29 Apr 2024 12:44:22 +0000
ROA not before: Mon 29 Apr 2024 12:44:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47394
IP address blocks: 46.255.144.0/21 maxlen: 21
46.255.144.0/22 maxlen: 22
46.255.144.0/24 maxlen: 24
46.255.145.0/24 maxlen: 24
46.255.146.0/24 maxlen: 24
46.255.147.0/24 maxlen: 24
46.255.148.0/22 maxlen: 22
46.255.148.0/24 maxlen: 24
46.255.149.0/24 maxlen: 24
46.255.150.0/24 maxlen: 24
46.255.151.0/24 maxlen: 24
95.107.128.0/21 maxlen: 21
95.107.129.0/24 maxlen: 24
95.107.132.0/24 maxlen: 24
95.107.135.0/24 maxlen: 24
95.107.136.0/21 maxlen: 21
95.107.136.0/24 maxlen: 24
95.107.141.0/24 maxlen: 24
95.107.144.0/23 maxlen: 23
95.107.144.0/24 maxlen: 24
95.107.145.0/24 maxlen: 24
95.107.146.0/23 maxlen: 23
95.107.150.0/24 maxlen: 24
95.107.156.0/24 maxlen: 24
95.107.157.0/24 maxlen: 24
95.107.159.0/24 maxlen: 24
95.107.160.0/21 maxlen: 21
95.107.160.0/22 maxlen: 22
95.107.160.0/24 maxlen: 24
95.107.162.0/23 maxlen: 23
95.107.162.0/24 maxlen: 24
95.107.164.0/22 maxlen: 22
95.107.164.0/24 maxlen: 24
95.107.165.0/24 maxlen: 24
95.107.166.0/24 maxlen: 24
95.107.167.0/24 maxlen: 24
95.107.168.0/22 maxlen: 22
95.107.168.0/23 maxlen: 23
95.107.170.0/23 maxlen: 23
95.107.172.0/23 maxlen: 23
95.107.174.0/24 maxlen: 24
95.107.176.0/21 maxlen: 21
95.107.177.0/24 maxlen: 24
95.107.180.0/22 maxlen: 22
95.107.182.0/24 maxlen: 24
95.107.184.0/21 maxlen: 21
95.107.184.0/22 maxlen: 22
95.107.188.0/22 maxlen: 22
95.107.188.0/24 maxlen: 24
95.107.192.0/22 maxlen: 22
95.107.192.0/24 maxlen: 24
95.107.193.0/24 maxlen: 24
95.107.194.0/23 maxlen: 23
95.107.194.0/24 maxlen: 24
95.107.195.0/24 maxlen: 24
95.107.196.0/22 maxlen: 22
95.107.196.0/23 maxlen: 23
95.107.196.0/24 maxlen: 24
95.107.198.0/23 maxlen: 23
95.107.200.0/21 maxlen: 21
95.107.200.0/24 maxlen: 24
95.107.201.0/24 maxlen: 24
95.107.202.0/23 maxlen: 23
95.107.204.0/22 maxlen: 22
95.107.208.0/20 maxlen: 20
95.107.208.0/21 maxlen: 21
95.107.208.0/22 maxlen: 22
95.107.208.0/23 maxlen: 23
95.107.209.0/24 maxlen: 24
95.107.212.0/22 maxlen: 22
95.107.212.0/23 maxlen: 23
95.107.212.0/24 maxlen: 24
95.107.216.0/21 maxlen: 21
95.107.216.0/22 maxlen: 22
95.107.216.0/23 maxlen: 23
95.107.218.0/23 maxlen: 23
95.107.220.0/22 maxlen: 22
95.107.220.0/23 maxlen: 23
95.107.222.0/23 maxlen: 23
95.107.224.0/20 maxlen: 20
95.107.224.0/22 maxlen: 22
95.107.228.0/22 maxlen: 22
95.107.228.0/24 maxlen: 24
95.107.232.0/22 maxlen: 22
95.107.234.0/23 maxlen: 23
95.107.236.0/22 maxlen: 22
95.107.238.0/23 maxlen: 23
95.107.240.0/20 maxlen: 20
95.107.240.0/22 maxlen: 22
95.107.244.0/22 maxlen: 22
95.107.248.0/22 maxlen: 22
95.107.248.0/23 maxlen: 23
95.107.248.0/24 maxlen: 24
95.107.252.0/22 maxlen: 22
95.107.254.0/23 maxlen: 23
141.8.200.0/21 maxlen: 21
185.118.148.0/22 maxlen: 22
185.118.148.0/23 maxlen: 23
185.118.150.0/23 maxlen: 23
185.122.228.0/22 maxlen: 22
185.122.228.0/23 maxlen: 23
185.122.228.0/24 maxlen: 24
2a03:8480::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 02 May 2024 19:22:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:29:e2:87:d5:69:6e:6b:27:d5:7f:e6:72:16:07:bd:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f416539e74934d23a0572f6625dbfdb54e820873
Validity
Not Before: Apr 29 12:44:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c413d8b111b874bb232c70103bc7e72b99d81b3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2d:af:f2:71:1f:d3:23:51:2d:cb:ca:f3:fe:
40:83:5d:05:32:43:9d:57:da:fd:c5:8f:a4:ee:92:
5c:9b:aa:f9:fd:1e:80:4f:02:71:51:16:c8:bc:a8:
7e:32:87:68:19:54:34:0f:94:57:19:89:17:88:39:
33:c5:83:f4:96:94:bc:ef:bc:7b:cb:93:ea:81:b6:
37:85:dc:fb:b0:7d:89:3e:e5:0f:97:99:c0:38:14:
32:f4:24:01:aa:50:fe:5c:68:fe:86:e9:4f:12:15:
95:a1:6b:30:d6:51:34:de:57:b7:83:f6:cc:3b:d9:
d6:77:ea:1e:80:bf:b4:eb:d5:ed:ed:9f:d2:68:f2:
a5:27:7a:03:6b:4f:1c:41:ae:be:68:c3:44:ea:39:
5a:75:db:d5:36:60:d8:28:69:ff:ca:0a:81:5c:d9:
89:5c:25:bc:99:8f:e1:3f:ac:3e:81:a1:29:a9:9c:
17:a6:ed:87:56:8c:a8:5a:fa:00:85:25:3a:a3:32:
45:46:8c:53:9c:6c:2f:89:e4:3a:f1:30:13:52:7c:
b1:8f:72:3b:51:9c:b8:e0:38:35:7e:27:90:d6:a3:
1b:7a:33:3e:77:a4:92:a4:5a:37:a0:31:7f:9c:60:
19:a8:4e:48:d2:9d:19:8a:c9:3c:10:28:4e:cd:ba:
cb:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:13:D8:B1:11:B8:74:BB:23:2C:70:10:3B:C7:E7:2B:99:D8:1B:3C
X509v3 Authority Key Identifier:
keyid:F4:16:53:9E:74:93:4D:23:A0:57:2F:66:25:DB:FD:B5:4E:82:08:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9BZTnnSTTSOgVy9mJdv9tU6CCHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/53e496-0097-462a-a989-d67a61d5416d/1/xBPYsRG4dLsjLHAQO8fnK5nYGzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/53e496-0097-462a-a989-d67a61d5416d/1/9BZTnnSTTSOgVy9mJdv9tU6CCHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.255.144.0/21
95.107.128.0-95.107.147.255
95.107.150.0/24
95.107.156.0/23
95.107.159.0-95.107.174.255
95.107.176.0-95.107.255.255
141.8.200.0/21
185.118.148.0/22
185.122.228.0/22
IPv6:
2a03:8480::/32
Signature Algorithm: sha256WithRSAEncryption
77:32:cc:c7:d9:b1:dd:62:0e:26:ee:0f:77:f9:f7:42:ac:f1:
ad:6c:fe:03:74:8a:68:69:56:76:b5:09:93:8f:9d:91:d1:17:
44:e7:53:ac:56:6a:96:ef:db:f0:c1:ab:c9:6a:d4:7a:63:f6:
ae:ac:d4:9e:63:ab:42:39:89:6c:ef:6d:b0:b6:60:ae:9d:40:
21:6f:59:d1:eb:ca:23:81:e6:fd:d9:52:51:cd:3b:87:e2:c7:
fd:bc:33:c8:44:fc:17:a7:d1:5b:4b:23:d5:14:07:21:89:00:
17:94:05:1c:4a:d5:3c:b3:30:4a:ab:4a:29:1a:b1:64:82:7b:
b4:fd:22:63:2c:d0:ed:3e:99:72:a6:7a:84:34:cb:73:38:05:
af:e9:f5:7f:54:5d:9e:7d:92:15:97:c6:ca:c0:3c:a0:c1:59:
15:12:6f:fc:26:11:7d:3b:00:ec:26:f8:ae:2a:19:da:7a:45:
f0:f3:ed:f8:d3:79:04:a1:4d:5f:aa:5c:06:f7:9b:c6:30:98:
c9:06:18:4d:d1:42:d1:1f:8a:40:27:30:fa:87:f5:c7:92:18:
63:47:a8:33:77:64:52:00:4b:6a:de:cf:58:7e:f5:22:4b:85:
33:74:a9:a2:6c:0b:ea:b5:fb:7e:13:34:4c:a1:7f:68:11:33:
9c:56:0f:24
-----BEGIN CERTIFICATE-----
MIIFUzCCBDugAwIBAgISAY8p4ofVaW5rJ9V/5nIWB72jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0MTY1MzllNzQ5MzRkMjNhMDU3MmY2NjI1ZGJmZGI1NGU4
MjA4NzMwHhcNMjQwNDI5MTI0NDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNDEzZDhiMTExYjg3NGJiMjMyYzcwMTAzYmM3ZTcyYjk5ZDgxYjNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuy2v8nEf0yNRLcvK8/5Ag10FMkOd
V9r9xY+k7pJcm6r5/R6ATwJxURbIvKh+ModoGVQ0D5RXGYkXiDkzxYP0lpS877x7
y5PqgbY3hdz7sH2JPuUPl5nAOBQy9CQBqlD+XGj+hulPEhWVoWsw1lE03le3g/bM
O9nWd+oegL+069Xt7Z/SaPKlJ3oDa08cQa6+aMNE6jladdvVNmDYKGn/ygqBXNmJ
XCW8mY/hP6w+gaEpqZwXpu2HVoyoWvoAhSU6ozJFRoxTnGwvieQ68TATUnyxj3I7
UZy44Dg1fieQ1qMbejM+d6SSpFo3oDF/nGAZqE5I0p0Zisk8EChOzbrLDwIDAQAB
o4ICXzCCAlswHQYDVR0OBBYEFMQT2LERuHS7IyxwEDvH5yuZ2Bs8MB8GA1UdIwQY
MBaAFPQWU550k00joFcvZiXb/bVOgghzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOUJaVG5uU1RUU09nVnk5bUpkdjl0VTZDQ0hNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy81M2U0OTYtMDA5Ny00NjJhLWE5ODkt
ZDY3YTYxZDU0MTZkLzEveEJQWXNSRzRkTHNqTEhBUU84Zm5LNW5ZR3p3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy81M2U0OTYtMDA5Ny00NjJhLWE5ODktZDY3YTYxZDU0MTZk
LzEvOUJaVG5uU1RUU09nVnk5bUpkdjl0VTZDQ0hNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHUGCCsGAQUFBwEHAQH/BGYwZDBTBAIAATBNAwQDLv+QMAwD
BAdfa4ADBAJfa5ADBABfa5YDBAFfa5wwDAMEAF9rnwMEAF9rrjALAwQEX2uwAwMC
X2gDBAONCMgDBAK5dpQDBAK5euQwDQQCAAIwBwMFACoDhIAwDQYJKoZIhvcNAQEL
BQADggEBAHcyzMfZsd1iDibuD3f590Ks8a1s/gN0imhpVna1CZOPnZHRF0TnU6xW
apbv2/DBq8lq1Hpj9q6s1J5jq0I5iWzvbbC2YK6dQCFvWdHryiOB5v3ZUlHNO4fi
x/28M8hE/Ben0VtLI9UUByGJABeUBRxK1TyzMEqrSikasWSCe7T9ImMs0O0+mXKm
eoQ0y3M4Ba/p9X9UXZ59khWXxsrAPKDBWRUSb/wmEX07AOwm+K4qGdp6RfDz7fjT
eQShTV+qXAb3m8YwmMkGGE3RQtEfikAnMPqH9ceSGGNHqDN3ZFIAS2rez1h+9SJL
hTN0qaJsC+q1+34TNEyhf2gRM5xWDyQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:43 2024 by rpki-client on console-ams.rpki-client.org