Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/qMM-_mHYjl5rGdKZBRvtvWjaKXc.roa
File: qMM-_mHYjl5rGdKZBRvtvWjaKXc.roa (raw, json)
Hash identifier: UyogFT4G99Xz0FrgjBUHOq1rxNrN3F4+AEbQu47ARRE=
Subject key identifier: A8:C3:3E:FE:61:D8:8E:5E:6B:19:D2:99:05:1B:ED:BD:68:DA:29:77
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 018731F025CAB6632C76BB62CCA3D781BE32
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/qMM-_mHYjl5rGdKZBRvtvWjaKXc.roa
Signing time: Thu 30 Mar 2023 09:53:54 +0000
ROA not before: Thu 30 Mar 2023 09:53:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35196
IP address blocks: 185.5.248.0/23 maxlen: 23
185.5.250.0/23 maxlen: 23
185.5.248.0/22 maxlen: 22
185.5.250.0/24 maxlen: 24
185.87.48.0/22 maxlen: 22
185.87.50.0/24 maxlen: 24
185.87.48.0/24 maxlen: 24
185.87.49.0/24 maxlen: 24
185.87.51.0/24 maxlen: 24
185.117.152.0/22 maxlen: 22
45.89.67.0/24 maxlen: 24
45.89.65.0/24 maxlen: 24
45.89.66.0/24 maxlen: 24
91.217.80.0/24 maxlen: 24
45.9.73.184/32 maxlen: 32
195.66.87.0/24 maxlen: 24
45.9.73.179/32 maxlen: 32
94.142.136.0/21 maxlen: 21
185.105.119.0/24 maxlen: 24
94.142.139.0/24 maxlen: 24
94.142.143.0/24 maxlen: 24
185.87.48.18/32 maxlen: 32
185.125.218.0/23 maxlen: 23
185.125.216.0/22 maxlen: 22
94.142.136.67/32 maxlen: 32
185.105.116.0/24 maxlen: 24
185.105.118.0/24 maxlen: 24
185.105.117.0/24 maxlen: 24
185.58.206.0/24 maxlen: 24
185.58.204.0/22 maxlen: 22
185.125.229.0/24 maxlen: 24
185.125.231.0/24 maxlen: 24
185.125.228.0/22 maxlen: 22
185.125.228.0/24 maxlen: 24
185.125.230.0/24 maxlen: 24
45.9.73.236/32 maxlen: 32
194.67.192.0/19 maxlen: 19
194.67.196.0/22 maxlen: 22
194.67.194.0/23 maxlen: 23
194.67.193.0/24 maxlen: 24
193.124.176.0/20 maxlen: 20
45.128.176.0/24 maxlen: 24
45.128.178.0/24 maxlen: 24
45.128.177.0/24 maxlen: 24
45.128.179.0/24 maxlen: 24
195.47.250.0/24 maxlen: 24
194.67.203.0/24 maxlen: 24
194.67.200.0/21 maxlen: 21
194.67.202.0/24 maxlen: 24
194.67.200.0/23 maxlen: 23
194.67.204.0/22 maxlen: 22
194.67.208.0/20 maxlen: 20
2a0a:9300:1000::/48 maxlen: 48
2a0a:9301:1::/48 maxlen: 48
2a0a:9301::/48 maxlen: 48
2a0a:9301:2::/48 maxlen: 48
2a0a:9302::/32 maxlen: 32
2a09:5302:ffff::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 03 May 2023 12:07:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:31:f0:25:ca:b6:63:2c:76:bb:62:cc:a3:d7:81:be:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Mar 30 09:53:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8c33efe61d88e5e6b19d299051bedbd68da2977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:0b:54:8a:5a:0a:fe:6c:df:b2:e3:52:5c:22:
8a:ac:c3:68:31:48:ac:8a:9b:06:38:c1:98:a2:cd:
63:86:4b:23:c6:3a:fb:23:9b:5d:6f:2f:15:79:c7:
dd:44:cf:97:5e:41:3e:89:8b:6d:3f:73:5f:97:c9:
06:10:98:5a:c3:2d:9c:2c:2d:00:14:8a:7e:79:b3:
c2:5e:f0:70:7d:c0:ed:f3:0e:77:01:24:31:b1:ff:
0f:86:f0:f0:09:f7:fd:86:ae:7d:65:13:a5:0d:44:
e1:1a:a8:9f:49:e0:b3:f2:f6:fc:25:f6:9c:88:28:
5c:1f:f0:08:5c:88:c4:5a:c1:6b:16:e2:c8:43:f9:
bd:68:72:2c:b7:ba:c9:0c:c5:0f:42:09:cf:7e:8f:
ce:76:01:97:0f:63:9c:bb:78:98:81:76:ef:5b:b4:
a9:ec:20:25:be:9a:1b:e9:2b:3e:43:f2:76:9c:6f:
8d:12:a0:a0:86:89:ca:27:30:7e:56:b6:4a:42:b0:
cc:b2:e8:1d:8d:88:ec:c9:54:c4:c2:ca:0b:3f:12:
47:89:63:68:0f:13:af:dc:29:89:38:25:6c:a5:dc:
7d:e2:82:fb:bc:11:5d:69:51:4e:6e:89:39:fe:d0:
de:a3:c5:c8:6b:2f:64:72:f9:b3:c8:77:88:ea:9c:
06:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:C3:3E:FE:61:D8:8E:5E:6B:19:D2:99:05:1B:ED:BD:68:DA:29:77
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/qMM-_mHYjl5rGdKZBRvtvWjaKXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.73.179/32
45.9.73.184/32
45.9.73.236/32
45.89.65.0-45.89.67.255
45.128.176.0/22
91.217.80.0/24
94.142.136.0/21
185.5.248.0/22
185.58.204.0/22
185.87.48.0/22
185.105.116.0/22
185.117.152.0/22
185.125.216.0/22
185.125.228.0/22
193.124.176.0/20
194.67.192.0/19
195.47.250.0/24
195.66.87.0/24
IPv6:
2a09:5302:ffff::/48
2a0a:9300:1000::/48
2a0a:9301::-2a0a:9301:2:ffff:ffff:ffff:ffff:ffff
2a0a:9302::/32
Signature Algorithm: sha256WithRSAEncryption
18:b3:7c:58:20:38:35:e9:5b:e3:15:fa:50:99:d4:a5:1e:d6:
ef:82:54:ca:33:8b:95:ef:f7:78:92:e8:70:37:b2:50:ae:73:
58:d5:29:58:e0:08:87:cc:f5:0c:26:65:09:be:5c:99:1f:41:
39:76:cb:04:4c:ca:86:39:95:a6:e5:1d:43:23:10:29:48:9f:
8b:6a:a8:ef:b1:ae:55:3e:d8:d8:9c:34:5a:95:3b:a8:59:30:
84:98:b4:d1:01:7d:1d:bc:ac:1c:b4:d0:8c:56:e3:a8:ad:cb:
13:48:a5:8f:fb:ed:c8:30:e8:4d:6a:56:b5:50:01:39:5c:1b:
dd:a7:c7:66:e5:d4:88:65:48:ec:3c:18:cc:a3:50:32:6e:08:
29:24:9a:2a:48:0a:29:f6:7b:97:36:2d:92:ad:2b:ff:f5:1d:
36:51:32:a5:9a:a1:70:08:08:3a:0b:e3:a4:69:8e:28:5f:87:
9d:12:07:31:a2:51:09:8c:61:b8:c5:24:e9:a2:9e:ce:4f:c0:
60:3b:fa:87:5a:e1:c2:10:d1:af:39:6c:49:02:d7:a6:3d:73:
b1:48:b0:be:dd:bf:2c:09:c1:48:7d:49:77:00:9c:d8:b0:4c:
bf:09:2b:94:5b:70:a2:27:73:52:cc:10:f1:49:4b:96:8f:ed:
dc:d6:e2:2b
-----BEGIN CERTIFICATE-----
MIIFpDCCBIygAwIBAgISAYcx8CXKtmMsdrtizKPXgb4yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0Zjk2MzQ1ZDNmMjJlZGIzOTVkMjQ3ZjdiODZkMmQ3M2U0
YTAwOTEwHhcNMjMwMzMwMDk1MzU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhOGMzM2VmZTYxZDg4ZTVlNmIxOWQyOTkwNTFiZWRiZDY4ZGEyOTc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkAtUiloK/mzfsuNSXCKKrMNoMUis
ipsGOMGYos1jhksjxjr7I5tdby8VecfdRM+XXkE+iYttP3Nfl8kGEJhawy2cLC0A
FIp+ebPCXvBwfcDt8w53ASQxsf8PhvDwCff9hq59ZROlDUThGqifSeCz8vb8Jfac
iChcH/AIXIjEWsFrFuLIQ/m9aHIst7rJDMUPQgnPfo/OdgGXD2Ocu3iYgXbvW7Sp
7CAlvpob6Ss+Q/J2nG+NEqCghonKJzB+VrZKQrDMsugdjYjsyVTEwsoLPxJHiWNo
DxOv3CmJOCVspdx94oL7vBFdaVFObok5/tDeo8XIay9kcvmzyHeI6pwGawIDAQAB
o4ICsDCCAqwwHQYDVR0OBBYEFKjDPv5h2I5eaxnSmQUb7b1o2il3MB8GA1UdIwQY
MBaAFLT5Y0XT8i7bOV0kf3uG0tc+SgCRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQt
NmZjMzQzZDc3Y2QyLzEvcU1NLV9tSFlqbDVyR2RLWkJSdnR2V2phS1hjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQtNmZjMzQzZDc3Y2Qy
LzEvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHFBggrBgEFBQcBBwEB/wSBtTCBsjB9BAIAATB3AwUALQlJ
swMFAC0JSbgDBQAtCUnsMAwDBAAtWUEDBAItWUADBAItgLADBABb2VADBANejogD
BAK5BfgDBAK5OswDBAK5VzADBAK5aXQDBAK5dZgDBAK5fdgDBAK5feQDBATBfLAD
BAXCQ8ADBADDL/oDBADDQlcwMQQCAAIwKwMHACoJUwL//wMHACoKkwAQADAQAwUA
KgqTAQMHACoKkwEAAgMFACoKkwIwDQYJKoZIhvcNAQELBQADggEBABizfFggODXp
W+MV+lCZ1KUe1u+CVMozi5Xv93iS6HA3slCuc1jVKVjgCIfM9QwmZQm+XJkfQTl2
ywRMyoY5lablHUMjEClIn4tqqO+xrlU+2NicNFqVO6hZMISYtNEBfR28rBy00IxW
46ityxNIpY/77cgw6E1qVrVQATlcG92nx2bl1IhlSOw8GMyjUDJuCCkkmipICin2
e5c2LZKtK//1HTZRMqWaoXAICDoL46Rpjihfh50SBzGiUQmMYbjFJOmins5PwGA7
+oda4cIQ0a85bEkC16Y9c7FIsL7dvywJwUh9SXcAnNiwTL8JK5RbcKInc1LMEPFJ
S5aP7dzW4is=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org