Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/Z6yElLU5YjMLhlhtAC-8nW3TYJQ.roa
File: Z6yElLU5YjMLhlhtAC-8nW3TYJQ.roa (raw, json)
Hash identifier: w8SR3QtFWjupjqErZxd117diD5rChR8KhOy95DfrK1c=
Subject key identifier: 67:AC:84:94:B5:39:62:33:0B:86:58:6D:00:2F:BC:9D:6D:D3:60:94
Certificate issuer: /CN=aebf394e2f1b251c88d988a87161084580786ef5
Certificate serial: 019150E6F807C1D8A7603457F3DFE63B1A53
Authority key identifier: AE:BF:39:4E:2F:1B:25:1C:88:D9:88:A8:71:61:08:45:80:78:6E:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rr85Ti8bJRyI2YiocWEIRYB4bvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/Z6yElLU5YjMLhlhtAC-8nW3TYJQ.roa
Signing time: Wed 14 Aug 2024 12:39:59 +0000
ROA not before: Wed 14 Aug 2024 12:39:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16347
IP address blocks: 5.182.252.0/22 maxlen: 24
37.18.160.0/20 maxlen: 24
37.58.128.0/17 maxlen: 24
37.157.60.0/22 maxlen: 24
45.142.172.0/22 maxlen: 24
45.145.124.0/22 maxlen: 24
46.20.160.0/20 maxlen: 24
62.102.224.0/19 maxlen: 24
62.244.70.0/23 maxlen: 24
62.244.72.0/22 maxlen: 24
62.244.80.0/23 maxlen: 24
62.244.90.0/23 maxlen: 24
62.244.92.0/23 maxlen: 24
79.98.96.0/21 maxlen: 24
81.22.216.0/21 maxlen: 24
91.103.232.0/21 maxlen: 24
91.206.156.0/23 maxlen: 24
91.217.94.0/23 maxlen: 24
91.229.230.0/23 maxlen: 24
92.61.72.0/21 maxlen: 24
94.127.8.0/21 maxlen: 24
103.73.172.0/22 maxlen: 24
103.77.32.0/22 maxlen: 24
103.229.36.0/23 maxlen: 24
103.232.172.0/22 maxlen: 24
109.69.192.0/21 maxlen: 24
109.237.240.0/20 maxlen: 24
128.127.128.0/20 maxlen: 24
146.247.88.0/21 maxlen: 24
149.255.136.0/21 maxlen: 24
149.255.136.0/22 maxlen: 24
178.249.160.0/21 maxlen: 24
185.15.128.0/22 maxlen: 24
185.42.132.0/22 maxlen: 24
185.65.224.0/22 maxlen: 24
185.67.88.0/22 maxlen: 24
185.79.148.0/22 maxlen: 24
185.90.96.0/22 maxlen: 24
185.95.120.0/22 maxlen: 24
185.149.8.0/22 maxlen: 24
185.172.16.0/22 maxlen: 24
185.196.248.0/22 maxlen: 24
185.204.140.0/22 maxlen: 24
185.208.248.0/22 maxlen: 24
185.247.248.0/22 maxlen: 24
188.66.56.0/22 maxlen: 24
193.27.194.0/23 maxlen: 24
193.47.139.0/24 maxlen: 24
193.108.197.0/24 maxlen: 24
193.222.142.0/23 maxlen: 24
193.222.188.0/23 maxlen: 24
194.177.32.0/19 maxlen: 24
195.214.240.0/21 maxlen: 24
212.51.160.0/19 maxlen: 24
213.108.64.0/21 maxlen: 24
213.151.166.0/24 maxlen: 24
213.151.168.0/23 maxlen: 24
213.151.171.0/24 maxlen: 24
213.151.172.0/23 maxlen: 24
213.151.174.0/24 maxlen: 24
213.151.175.0/24 maxlen: 24
2a01:6d8::/32 maxlen: 32
2a01:728::/29 maxlen: 48
2a03:4c00::/29 maxlen: 48
2a03:bf40::/32 maxlen: 32
2a05:df00::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 26 Sep 2024 17:11:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:50:e6:f8:07:c1:d8:a7:60:34:57:f3:df:e6:3b:1a:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aebf394e2f1b251c88d988a87161084580786ef5
Validity
Not Before: Aug 14 12:39:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=67ac8494b53962330b86586d002fbc9d6dd36094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f6:aa:ff:9f:c4:74:83:48:25:af:0f:3a:7f:
42:f7:ad:9c:a7:a8:75:80:bf:3e:62:32:c1:1e:2e:
1a:65:db:fd:bf:5a:c1:43:fc:8b:4b:4c:9f:2e:c9:
f9:24:3a:ba:64:61:c3:bb:02:c0:f2:b1:79:1d:37:
ba:8c:b5:31:bf:b6:99:6d:33:b8:75:1c:c3:4e:12:
60:de:0d:9d:23:c6:1d:66:ef:36:e9:12:7a:49:e3:
be:91:71:8a:ca:f8:3b:48:e5:c8:cf:4b:ee:c9:2a:
11:14:c6:d4:31:55:07:99:a6:dc:07:f7:0b:f3:93:
cc:5b:b1:54:41:67:ea:ed:f1:27:97:89:b0:8e:aa:
96:3c:20:b3:f4:bc:7f:57:00:03:c3:ee:1c:4b:ae:
37:0d:9e:09:33:6b:38:da:38:e4:c8:59:33:99:7f:
18:1f:3e:b5:8e:f8:12:78:7a:2e:37:ac:e9:2c:c2:
3f:76:32:a6:dc:e1:ad:5f:ba:7f:b9:17:22:36:32:
a2:4d:53:13:b7:7f:18:17:2f:cc:5d:b2:7b:7d:ad:
17:3b:8b:06:2d:99:1c:23:f9:46:70:7c:36:82:5c:
f6:e3:0e:4d:a7:36:65:12:26:c7:95:5e:de:1c:c1:
6b:92:49:e1:50:bc:29:17:3d:9c:57:df:9b:3b:bb:
0f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:AC:84:94:B5:39:62:33:0B:86:58:6D:00:2F:BC:9D:6D:D3:60:94
X509v3 Authority Key Identifier:
keyid:AE:BF:39:4E:2F:1B:25:1C:88:D9:88:A8:71:61:08:45:80:78:6E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rr85Ti8bJRyI2YiocWEIRYB4bvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/Z6yElLU5YjMLhlhtAC-8nW3TYJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/40498e-d1c0-484c-abcb-61e7f40d5dd6/1/rr85Ti8bJRyI2YiocWEIRYB4bvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.252.0/22
37.18.160.0/20
37.58.128.0/17
37.157.60.0/22
45.142.172.0/22
45.145.124.0/22
46.20.160.0/20
62.102.224.0/19
62.244.70.0-62.244.75.255
62.244.80.0/23
62.244.90.0-62.244.93.255
79.98.96.0/21
81.22.216.0/21
91.103.232.0/21
91.206.156.0/23
91.217.94.0/23
91.229.230.0/23
92.61.72.0/21
94.127.8.0/21
103.73.172.0/22
103.77.32.0/22
103.229.36.0/23
103.232.172.0/22
109.69.192.0/21
109.237.240.0/20
128.127.128.0/20
146.247.88.0/21
149.255.136.0/21
178.249.160.0/21
185.15.128.0/22
185.42.132.0/22
185.65.224.0/22
185.67.88.0/22
185.79.148.0/22
185.90.96.0/22
185.95.120.0/22
185.149.8.0/22
185.172.16.0/22
185.196.248.0/22
185.204.140.0/22
185.208.248.0/22
185.247.248.0/22
188.66.56.0/22
193.27.194.0/23
193.47.139.0/24
193.108.197.0/24
193.222.142.0/23
193.222.188.0/23
194.177.32.0/19
195.214.240.0/21
212.51.160.0/19
213.108.64.0/21
213.151.166.0/24
213.151.168.0/23
213.151.171.0-213.151.175.255
IPv6:
2a01:6d8::/32
2a01:728::/29
2a03:4c00::/29
2a03:bf40::/32
2a05:df00::/29
Signature Algorithm: sha256WithRSAEncryption
1b:09:a3:1b:5a:52:0e:2d:e7:77:96:d3:ea:5f:a1:d8:2f:54:
b5:c4:68:90:07:ab:23:34:7a:22:69:3c:5e:d5:ba:56:10:79:
71:83:b5:b4:5d:e4:71:25:97:ca:3b:d0:f9:b6:d2:3e:66:d6:
53:62:9f:3a:7e:e0:d5:f9:57:bb:2f:18:23:71:a0:f7:15:29:
70:bd:24:6b:52:50:6d:96:43:b2:bd:bd:84:b9:c2:c9:3a:ce:
84:c4:92:83:97:45:53:81:3d:20:ae:a7:2a:1b:c4:be:0a:c9:
04:34:bf:3d:b8:3b:b3:b3:63:72:6c:67:47:cd:8d:7c:de:35:
7e:20:88:fd:0e:a7:ee:7d:db:a4:9b:4e:c1:86:00:1d:11:60:
31:fe:e9:a6:b0:77:e5:73:df:f2:8c:64:df:21:b7:f6:78:80:
f3:13:c9:8e:01:7f:95:e0:41:ef:2f:77:75:f1:a9:7b:18:c2:
0b:66:81:32:ac:2e:44:d4:1d:78:38:8d:c9:f5:dd:31:04:b1:
6d:8c:bc:de:b5:8d:53:da:6a:6d:a8:56:62:55:38:4e:4a:0b:
d0:e7:a5:d9:cf:1d:2d:b9:3f:bd:4b:01:b2:70:c2:a0:f3:ad:
d1:ab:72:44:b4:26:20:a0:b8:1d:c7:84:b3:ef:cd:db:7f:4a:
32:3a:d0:fa
-----BEGIN CERTIFICATE-----
MIIGjjCCBXagAwIBAgISAZFQ5vgHwdinYDRX89/mOxpTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlYmYzOTRlMmYxYjI1MWM4OGQ5ODhhODcxNjEwODQ1ODA3
ODZlZjUwHhcNMjQwODE0MTIzOTU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2N2FjODQ5NGI1Mzk2MjMzMGI4NjU4NmQwMDJmYmM5ZDZkZDM2MDk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/aq/5/EdINIJa8POn9C962cp6h1
gL8+YjLBHi4aZdv9v1rBQ/yLS0yfLsn5JDq6ZGHDuwLA8rF5HTe6jLUxv7aZbTO4
dRzDThJg3g2dI8YdZu826RJ6SeO+kXGKyvg7SOXIz0vuySoRFMbUMVUHmabcB/cL
85PMW7FUQWfq7fEnl4mwjqqWPCCz9Lx/VwADw+4cS643DZ4JM2s42jjkyFkzmX8Y
Hz61jvgSeHouN6zpLMI/djKm3OGtX7p/uRciNjKiTVMTt38YFy/MXbJ7fa0XO4sG
LZkcI/lGcHw2glz24w5NpzZlEibHlV7eHMFrkknhULwpFz2cV9+bO7sPUQIDAQAB
o4IDmjCCA5YwHQYDVR0OBBYEFGeshJS1OWIzC4ZYbQAvvJ1t02CUMB8GA1UdIwQY
MBaAFK6/OU4vGyUciNmIqHFhCEWAeG71MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnI4NVRpOGJKUnlJMllpb2NXRUlSWUI0YnZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS80MDQ5OGUtZDFjMC00ODRjLWFiY2It
NjFlN2Y0MGQ1ZGQ2LzEvWjZ5RWxMVTVZak1MaGxodEFDLThuVzNUWUpRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOS80MDQ5OGUtZDFjMC00ODRjLWFiY2ItNjFlN2Y0MGQ1ZGQ2
LzEvcnI4NVRpOGJKUnlJMllpb2NXRUlSWUI0YnZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBrgYIKwYBBQUHAQcBAf8EggGdMIIBmTCCAWoEAgABMIIB
YgMEAgW2/AMEBCUSoAMEByU6gAMEAiWdPAMEAi2OrAMEAi2RfAMEBC4UoAMEBT5m
4DAMAwQBPvRGAwQCPvRIAwQBPvRQMAwDBAE+9FoDBAE+9FwDBANPYmADBANRFtgD
BANbZ+gDBAFbzpwDBAFb2V4DBAFb5eYDBANcPUgDBANefwgDBAJnSawDBAJnTSAD
BAFn5SQDBAJn6KwDBANtRcADBARt7fADBASAf4ADBAOS91gDBAOV/4gDBAOy+aAD
BAK5D4ADBAK5KoQDBAK5QeADBAK5Q1gDBAK5T5QDBAK5WmADBAK5X3gDBAK5lQgD
BAK5rBADBAK5xPgDBAK5zIwDBAK50PgDBAK59/gDBAK8QjgDBAHBG8IDBADBL4sD
BADBbMUDBAHB3o4DBAHB3rwDBAXCsSADBAPD1vADBAXUM6ADBAPVbEADBADVl6YD
BAHVl6gwDAMEANWXqwMEBNWXoDApBAIAAjAjAwUAKgEG2AMFAyoBBygDBQMqA0wA
AwUAKgO/QAMFAyoF3wAwDQYJKoZIhvcNAQELBQADggEBABsJoxtaUg4t53eW0+pf
odgvVLXEaJAHqyM0eiJpPF7VulYQeXGDtbRd5HEll8o70Pm20j5m1lNinzp+4NX5
V7svGCNxoPcVKXC9JGtSUG2WQ7K9vYS5wsk6zoTEkoOXRVOBPSCupyobxL4KyQQ0
vz24O7OzY3JsZ0fNjXzeNX4giP0Op+5926SbTsGGAB0RYDH+6aawd+Vz3/KMZN8h
t/Z4gPMTyY4Bf5XgQe8vd3XxqXsYwgtmgTKsLkTUHXg4jcn13TEEsW2MvN61jVPa
am2oVmJVOE5KC9DnpdnPHS25P71LAbJwwqDzrdGrckS0JiCguB3HhLPvzdt/SjI6
0Po=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:47:13 2025 by rpki-client