Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/B1Pw919sLY_aqFPKxYHdrSiptVk.roa
File: B1Pw919sLY_aqFPKxYHdrSiptVk.roa (raw, json)
Hash identifier: Edqh7eZQaPXcXrFOsXKU8OaV3JKm6YAOlnDagibGi+U=
Subject key identifier: 07:53:F0:F7:5F:6C:2D:8F:DA:A8:53:CA:C5:81:DD:AD:28:A9:B5:59
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 01880A57D971854BD3D485CBE4FA9FE8B796
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/B1Pw919sLY_aqFPKxYHdrSiptVk.roa
Signing time: Thu 11 May 2023 10:25:09 +0000
ROA not before: Thu 11 May 2023 10:25:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62235
IP address blocks: 89.39.167.0/24 maxlen: 24
85.204.200.0/22 maxlen: 24
85.204.200.0/21 maxlen: 24
85.204.204.0/22 maxlen: 24
89.46.247.0/24 maxlen: 24
188.212.16.0/22 maxlen: 24
188.212.16.0/23 maxlen: 24
188.212.18.0/23 maxlen: 24
185.228.244.0/22 maxlen: 24
185.228.244.0/23 maxlen: 24
185.228.246.0/23 maxlen: 24
185.87.130.0/23 maxlen: 24
185.87.128.0/23 maxlen: 24
185.87.128.0/22 maxlen: 24
194.124.56.0/22 maxlen: 24
194.124.58.0/23 maxlen: 24
194.124.56.0/23 maxlen: 24
89.45.222.0/23 maxlen: 24
89.45.220.0/23 maxlen: 24
89.45.220.0/22 maxlen: 24
94.177.0.0/22 maxlen: 24
94.177.2.0/23 maxlen: 24
94.177.0.0/23 maxlen: 24
89.46.32.0/24 maxlen: 24
89.46.35.0/24 maxlen: 24
89.46.37.0/24 maxlen: 24
89.46.39.0/24 maxlen: 24
185.56.76.0/23 maxlen: 24
185.56.78.0/23 maxlen: 24
185.56.76.0/22 maxlen: 24
45.86.184.0/23 maxlen: 24
45.86.186.0/23 maxlen: 24
188.214.112.0/22 maxlen: 24
89.35.231.0/24 maxlen: 24
188.214.116.0/22 maxlen: 24
188.214.112.0/21 maxlen: 24
188.214.118.0/24 maxlen: 24
188.213.80.0/23 maxlen: 24
92.119.0.0/22 maxlen: 24
188.213.82.0/23 maxlen: 24
188.213.83.0/24 maxlen: 24
188.213.80.0/22 maxlen: 24
92.119.2.0/23 maxlen: 24
92.119.0.0/23 maxlen: 24
37.156.110.0/23 maxlen: 24
37.156.108.0/23 maxlen: 24
37.156.108.0/22 maxlen: 24
185.41.244.0/22 maxlen: 24
195.82.98.0/23 maxlen: 24
195.82.98.0/24 maxlen: 24
185.41.244.0/23 maxlen: 24
185.41.246.0/23 maxlen: 24
195.82.99.0/24 maxlen: 24
87.247.130.0/23 maxlen: 24
87.247.128.0/23 maxlen: 24
87.247.128.0/22 maxlen: 24
45.14.206.0/24 maxlen: 24
5.183.58.0/23 maxlen: 24
5.183.56.0/23 maxlen: 24
45.14.204.0/23 maxlen: 24
5.183.56.0/22 maxlen: 24
45.14.204.0/22 maxlen: 24
37.156.78.0/23 maxlen: 24
37.156.76.0/23 maxlen: 24
45.14.207.0/24 maxlen: 24
37.156.76.0/22 maxlen: 24
139.28.88.0/22 maxlen: 24
89.44.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0a:57:d9:71:85:4b:d3:d4:85:cb:e4:fa:9f:e8:b7:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: May 11 10:25:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0753f0f75f6c2d8fdaa853cac581ddad28a9b559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:80:12:b2:44:d7:a1:3f:d9:3c:86:da:ec:dc:
29:74:a4:d3:67:44:d0:6b:ef:35:8e:ee:f7:c0:3b:
c5:f6:58:89:56:f6:07:4b:14:a5:8a:8f:b1:d6:f7:
5e:21:f8:2f:05:e3:c2:ac:5c:7e:0e:fc:5f:19:d5:
51:a9:06:7e:ef:10:c9:53:05:6b:78:95:12:b6:ad:
9b:48:52:0e:c5:08:71:91:0e:01:8e:c7:d3:6e:5f:
ea:26:b5:9f:ca:ca:1a:b3:2d:e8:94:29:22:c8:21:
eb:53:4d:f6:6c:3b:40:1b:aa:fc:99:eb:e3:d9:03:
06:a2:18:3f:f2:8e:c7:89:90:33:9e:e5:b2:39:0d:
52:44:0f:db:fa:4d:7e:4f:96:1a:8e:c1:85:7b:2a:
11:6d:ff:76:75:84:b3:27:d1:66:75:76:70:bb:25:
45:f0:a9:d5:90:ac:4c:02:b3:16:b7:ba:55:e6:af:
3a:d3:60:91:b6:3b:f4:b8:a1:4c:cb:2e:9f:b9:e7:
87:f1:f3:c3:9c:59:9c:99:77:55:90:54:e6:55:eb:
f2:6d:45:17:d6:4d:e7:a6:21:d1:bc:52:47:80:21:
25:7e:25:9d:96:e4:75:c5:4b:08:cb:50:79:e0:23:
52:ad:d6:af:b5:be:46:dd:db:68:8c:4a:8f:de:93:
f8:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:53:F0:F7:5F:6C:2D:8F:DA:A8:53:CA:C5:81:DD:AD:28:A9:B5:59
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/B1Pw919sLY_aqFPKxYHdrSiptVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.56.0/22
37.156.76.0/22
37.156.108.0/22
45.14.204.0/22
45.86.184.0/22
85.204.200.0/21
87.247.128.0/22
89.35.231.0/24
89.39.167.0/24
89.44.82.0/24
89.45.220.0/22
89.46.32.0/24
89.46.35.0/24
89.46.37.0/24
89.46.39.0/24
89.46.247.0/24
92.119.0.0/22
94.177.0.0/22
139.28.88.0/22
185.41.244.0/22
185.56.76.0/22
185.87.128.0/22
185.228.244.0/22
188.212.16.0/22
188.213.80.0/22
188.214.112.0/21
194.124.56.0/22
195.82.98.0/23
Signature Algorithm: sha256WithRSAEncryption
04:c1:1d:43:44:68:89:15:17:4f:11:cf:ac:7d:7b:e3:9c:07:
1b:21:d8:6c:85:1a:c1:da:36:4a:f3:98:92:13:b9:31:03:af:
f4:0f:6d:4f:a5:56:15:ea:37:19:b0:fb:63:0d:6e:11:ec:ff:
a0:47:86:b0:57:f1:57:a3:29:85:5e:64:03:e9:6a:75:3f:46:
f0:1a:63:ae:fd:14:11:88:7f:1f:b0:a8:d7:cb:e5:e9:30:90:
a0:65:8a:39:7e:66:b4:3c:52:1e:cd:01:ad:83:64:08:d8:80:
80:f4:e3:4c:f4:ed:a7:4c:d7:fe:7f:2f:11:e2:d9:9e:94:4a:
69:90:33:a6:ec:0b:a0:90:22:2b:75:d9:49:b8:a6:77:0d:42:
47:1c:53:03:8f:51:80:35:f1:f7:e4:c7:75:51:ca:9c:5c:54:
d5:6f:be:41:29:c9:6b:48:f8:41:ec:8f:e7:51:15:12:7d:be:
1e:74:56:3b:bc:9d:e3:31:30:55:98:6e:72:d8:ba:60:35:28:
16:06:cd:ed:f7:9c:83:da:87:d0:55:49:ed:ec:2d:4c:9a:19:
cc:e9:e1:48:e4:01:26:42:f1:94:41:53:a1:d3:01:b9:15:10:
ad:37:b7:82:ff:72:86:46:2f:0f:65:d2:92:1b:ad:f7:f6:4d:
c2:1a:ee:cc
-----BEGIN CERTIFICATE-----
MIIFpDCCBIygAwIBAgISAYgKV9lxhUvT1IXL5Pqf6LeWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0NzVmYjA5MzRjZjZhNThkY2NlZjExMDg3NWRiZTVlM2U4
YjZiNzUwHhcNMjMwNTExMTAyNTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNzUzZjBmNzVmNmMyZDhmZGFhODUzY2FjNTgxZGRhZDI4YTliNTU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgIASskTXoT/ZPIba7NwpdKTTZ0TQ
a+81ju73wDvF9liJVvYHSxSlio+x1vdeIfgvBePCrFx+DvxfGdVRqQZ+7xDJUwVr
eJUStq2bSFIOxQhxkQ4BjsfTbl/qJrWfysoasy3olCkiyCHrU032bDtAG6r8mevj
2QMGohg/8o7HiZAznuWyOQ1SRA/b+k1+T5YajsGFeyoRbf92dYSzJ9FmdXZwuyVF
8KnVkKxMArMWt7pV5q8602CRtjv0uKFMyy6fueeH8fPDnFmcmXdVkFTmVevybUUX
1k3npiHRvFJHgCElfiWdluR1xUsIy1B54CNSrdavtb5G3dtojEqP3pP4HQIDAQAB
o4ICsDCCAqwwHQYDVR0OBBYEFAdT8PdfbC2P2qhTysWB3a0oqbVZMB8GA1UdIwQY
MBaAFNR1+wk0z2pY3M7xEIddvl4+i2t1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYt
Yzc5MTRhYjY0MjczLzEvQjFQdzkxOXNMWV9hcUZQS3hZSGRyU2lwdFZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYtYzc5MTRhYjY0Mjcz
LzEvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHFBggrBgEFBQcBBwEB/wSBtTCBsjCBrwQCAAEwgagDBAIF
tzgDBAIlnEwDBAIlnGwDBAItDswDBAItVrgDBANVzMgDBAJX94ADBABZI+cDBABZ
J6cDBABZLFIDBAJZLdwDBABZLiADBABZLiMDBABZLiUDBABZLicDBABZLvcDBAJc
dwADBAJesQADBAKLHFgDBAK5KfQDBAK5OEwDBAK5V4ADBAK55PQDBAK81BADBAK8
1VADBAO81nADBALCfDgDBAHDUmIwDQYJKoZIhvcNAQELBQADggEBAATBHUNEaIkV
F08Rz6x9e+OcBxsh2GyFGsHaNkrzmJITuTEDr/QPbU+lVhXqNxmw+2MNbhHs/6BH
hrBX8VejKYVeZAPpanU/RvAaY679FBGIfx+wqNfL5ekwkKBlijl+ZrQ8Uh7NAa2D
ZAjYgID040z07adM1/5/LxHi2Z6USmmQM6bsC6CQIit12Um4pncNQkccUwOPUYA1
8ffkx3VRypxcVNVvvkEpyWtI+EHsj+dRFRJ9vh50Vju8neMxMFWYbnLYumA1KBYG
ze33nIPah9BVSe3sLUyaGczp4UjkASZC8ZRBU6HTAbkVEK03t4L/coZGLw9l0pIb
rff2TcIa7sw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:50 2024 by rpki-client on console-ams.rpki-client.org