Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/0QfXi3GTll6YA7v6GFUcyHkHoTE.roa
File: 0QfXi3GTll6YA7v6GFUcyHkHoTE.roa (raw, json)
Hash identifier: uwzYSoo0wmios7mz9DirzmkWqTE0m2/x0chuSXR9bgY=
Subject key identifier: D1:07:D7:8B:71:93:96:5E:98:03:BB:FA:18:55:1C:C8:79:07:A1:31
Certificate issuer: /CN=1fd5fef692b4c2d22bdd031fabfa7110b7b36e81
Certificate serial: 01856E2F7A116451FA1C4CCAB50AD9E8A360
Authority key identifier: 1F:D5:FE:F6:92:B4:C2:D2:2B:DD:03:1F:AB:FA:71:10:B7:B3:6E:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9X-9pK0wtIr3QMfq_pxELezboE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/0QfXi3GTll6YA7v6GFUcyHkHoTE.roa
Signing time: Sun 01 Jan 2023 16:34:43 +0000
ROA not before: Sun 01 Jan 2023 16:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16086
IP address blocks: 87.100.128.0/17 maxlen: 17
85.23.0.0/16 maxlen: 16
62.241.192.0/18 maxlen: 18
37.130.160.0/19 maxlen: 19
212.90.64.0/19 maxlen: 19
37.33.0.0/16 maxlen: 16
159.255.224.0/19 maxlen: 19
213.141.96.0/19 maxlen: 19
188.94.64.0/21 maxlen: 21
212.50.128.0/19 maxlen: 19
85.131.0.0/17 maxlen: 17
188.67.0.0/16 maxlen: 16
193.143.94.0/23 maxlen: 23
193.143.93.0/24 maxlen: 24
176.93.0.0/16 maxlen: 16
212.86.0.0/19 maxlen: 19
193.143.70.0/23 maxlen: 23
193.143.73.0/24 maxlen: 24
193.143.80.0/21 maxlen: 21
193.143.79.0/24 maxlen: 24
193.143.91.0/24 maxlen: 24
193.143.88.0/23 maxlen: 23
83.100.0.0/17 maxlen: 17
185.15.212.0/22 maxlen: 22
194.100.0.0/16 maxlen: 16
62.113.160.0/19 maxlen: 19
82.181.0.0/16 maxlen: 16
62.197.160.0/19 maxlen: 19
178.55.0.0/16 maxlen: 16
84.253.192.0/18 maxlen: 18
212.146.0.0/18 maxlen: 18
87.92.0.0/14 maxlen: 14
213.216.192.0/18 maxlen: 18
62.78.96.0/19 maxlen: 19
83.102.0.0/17 maxlen: 17
89.166.0.0/17 maxlen: 17
213.243.128.0/18 maxlen: 18
62.44.192.0/18 maxlen: 18
62.78.128.0/17 maxlen: 17
213.139.160.0/19 maxlen: 19
213.186.224.0/19 maxlen: 19
213.186.224.0/24 maxlen: 24
62.183.128.0/17 maxlen: 17
217.78.192.0/19 maxlen: 19
212.149.128.0/17 maxlen: 17
37.136.0.0/16 maxlen: 16
82.203.128.0/17 maxlen: 17
178.75.128.0/18 maxlen: 18
109.108.0.0/19 maxlen: 19
62.236.0.0/15 maxlen: 15
88.148.128.0/17 maxlen: 17
78.27.64.0/18 maxlen: 18
81.175.128.0/17 maxlen: 17
195.10.128.0/18 maxlen: 18
192.107.200.0/21 maxlen: 21
80.64.0.0/20 maxlen: 20
192.107.208.0/20 maxlen: 20
89.27.0.0/17 maxlen: 17
37.219.0.0/16 maxlen: 16
192.107.224.0/21 maxlen: 21
91.145.64.0/18 maxlen: 18
62.165.128.0/18 maxlen: 18
82.128.128.0/17 maxlen: 17
2a01:a800::/29 maxlen: 29
2001:14b8::/29 maxlen: 29
2001:6e8::/29 maxlen: 29
2001:4078::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:7a:11:64:51:fa:1c:4c:ca:b5:0a:d9:e8:a3:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd5fef692b4c2d22bdd031fabfa7110b7b36e81
Validity
Not Before: Jan 1 16:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d107d78b7193965e9803bbfa18551cc87907a131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:d9:35:1b:88:88:19:e4:1a:5b:e0:57:2b:8c:
1d:02:33:92:4b:6e:42:91:02:7a:cf:cb:ca:bf:86:
fc:55:d8:d5:7a:aa:e5:ea:7c:19:a3:66:72:2c:4b:
d6:74:79:bb:e9:d8:80:85:12:68:81:a8:8d:ee:33:
63:dc:d8:8e:a5:55:82:a4:dc:b2:df:20:8d:27:9c:
00:f4:40:fe:f7:d9:36:6c:99:69:71:13:3f:2f:96:
f5:a8:5b:a4:c5:c8:67:4e:6b:fd:86:d7:78:48:32:
6b:96:bc:45:a9:80:07:8d:3d:2c:a9:8d:21:a7:91:
b3:5c:72:97:60:33:00:c6:df:dc:7c:a2:59:4b:10:
81:b6:7c:92:6b:d1:7e:af:f1:58:6f:aa:cd:ae:f8:
18:65:75:56:a3:03:96:14:92:f2:14:6e:1f:11:31:
19:10:06:46:56:05:a6:83:aa:b7:2a:fe:02:84:99:
76:ae:64:5e:1f:67:5c:9c:8b:a8:13:69:9a:2d:1a:
71:3a:fc:b5:74:f3:85:23:57:c4:11:59:c1:64:aa:
da:f5:bc:f1:80:9b:44:c9:5d:d8:e1:5a:c8:29:e4:
83:6b:a4:7a:ac:b6:eb:d3:73:80:f8:da:a1:f5:f5:
f9:25:f4:4c:91:38:41:41:75:a5:87:07:e9:90:85:
cb:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:07:D7:8B:71:93:96:5E:98:03:BB:FA:18:55:1C:C8:79:07:A1:31
X509v3 Authority Key Identifier:
keyid:1F:D5:FE:F6:92:B4:C2:D2:2B:DD:03:1F:AB:FA:71:10:B7:B3:6E:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9X-9pK0wtIr3QMfq_pxELezboE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/0QfXi3GTll6YA7v6GFUcyHkHoTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/H9X-9pK0wtIr3QMfq_pxELezboE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.33.0.0/16
37.130.160.0/19
37.136.0.0/16
37.219.0.0/16
62.44.192.0/18
62.78.96.0-62.78.255.255
62.113.160.0/19
62.165.128.0/18
62.183.128.0/17
62.197.160.0/19
62.236.0.0/15
62.241.192.0/18
78.27.64.0/18
80.64.0.0/20
81.175.128.0/17
82.128.128.0/17
82.181.0.0/16
82.203.128.0/17
83.100.0.0/17
83.102.0.0/17
84.253.192.0/18
85.23.0.0/16
85.131.0.0/17
87.92.0.0/14
87.100.128.0/17
88.148.128.0/17
89.27.0.0/17
89.166.0.0/17
91.145.64.0/18
109.108.0.0/19
159.255.224.0/19
176.93.0.0/16
178.55.0.0/16
178.75.128.0/18
185.15.212.0/22
188.67.0.0/16
188.94.64.0/21
192.107.200.0-192.107.231.255
193.143.70.0/23
193.143.73.0/24
193.143.79.0-193.143.89.255
193.143.91.0/24
193.143.93.0-193.143.95.255
194.100.0.0/16
195.10.128.0/18
212.50.128.0/19
212.86.0.0/19
212.90.64.0/19
212.146.0.0/18
212.149.128.0/17
213.139.160.0/19
213.141.96.0/19
213.186.224.0/19
213.216.192.0/18
213.243.128.0/18
217.78.192.0/19
IPv6:
2001:6e8::/29
2001:14b8::/29
2001:4078::/29
2a01:a800::/29
Signature Algorithm: sha256WithRSAEncryption
05:3a:19:5b:94:36:69:93:92:57:4b:d3:10:9f:f1:0b:b8:c6:
18:eb:32:69:87:11:b0:31:3e:22:33:23:0e:e2:30:c3:83:a5:
ba:3c:ff:d7:c2:f7:37:33:a0:20:95:0f:19:8c:03:75:19:07:
82:60:0a:53:91:ed:cf:09:bc:4c:fd:18:1c:89:b3:4c:36:75:
82:1b:67:94:4b:30:73:5e:c6:f1:b4:99:0a:e4:41:17:79:52:
3e:12:ab:82:5d:af:15:03:4c:f8:5e:e2:72:96:3b:da:5c:94:
6c:29:e9:a5:6a:7a:1b:80:f8:4c:25:6a:7a:6b:39:5d:bc:fb:
34:83:2a:38:2d:4a:be:7e:56:6c:c8:18:75:b3:e4:41:83:66:
1a:91:76:ab:34:e3:8e:bf:2d:3e:83:15:89:e2:06:18:dc:86:
b3:d6:f3:71:1e:3d:43:53:98:14:0c:12:7c:bd:6d:43:78:b5:
dd:75:7b:d7:c0:e4:03:e9:d5:1b:03:57:e1:5d:58:81:fe:9a:
6e:77:c6:3c:08:1b:7a:84:54:ec:8d:ee:f4:0c:34:5e:a9:4c:
a5:8f:2d:5c:45:20:99:57:17:a4:a4:b4:55:ec:f4:60:9c:91:
46:7c:29:29:46:c0:38:61:18:5a:14:be:65:4e:a6:df:d1:71:
0a:a2:9a:dc
-----BEGIN CERTIFICATE-----
MIIGiTCCBXGgAwIBAgISAYVuL3oRZFH6HEzKtQrZ6KNgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmZDVmZWY2OTJiNGMyZDIyYmRkMDMxZmFiZmE3MTEwYjdi
MzZlODEwHhcNMjMwMTAxMTYzNDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMTA3ZDc4YjcxOTM5NjVlOTgwM2JiZmExODU1MWNjODc5MDdhMTMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiNk1G4iIGeQaW+BXK4wdAjOSS25C
kQJ6z8vKv4b8VdjVeqrl6nwZo2ZyLEvWdHm76diAhRJogaiN7jNj3NiOpVWCpNyy
3yCNJ5wA9ED+99k2bJlpcRM/L5b1qFukxchnTmv9htd4SDJrlrxFqYAHjT0sqY0h
p5GzXHKXYDMAxt/cfKJZSxCBtnySa9F+r/FYb6rNrvgYZXVWowOWFJLyFG4fETEZ
EAZGVgWmg6q3Kv4ChJl2rmReH2dcnIuoE2maLRpxOvy1dPOFI1fEEVnBZKra9bzx
gJtEyV3Y4VrIKeSDa6R6rLbr03OA+Nqh9fX5JfRMkThBQXWlhwfpkIXLWQIDAQAB
o4IDlTCCA5EwHQYDVR0OBBYEFNEH14txk5ZemAO7+hhVHMh5B6ExMB8GA1UdIwQY
MBaAFB/V/vaStMLSK90DH6v6cRC3s26BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDlYLTlwSzB3dElyM1FNZnFfcHhFTGV6Ym9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy80OGUxYWUtOTBlOC00ZTQyLWFmM2Qt
NTEwMWJlNWRkNjE1LzEvMFFmWGkzR1RsbDZZQTd2NkdGVWN5SGtIb1RFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy80OGUxYWUtOTBlOC00ZTQyLWFmM2QtNTEwMWJlNWRkNjE1
LzEvSDlYLTlwSzB3dElyM1FNZnFfcHhFTGV6Ym9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBqQYIKwYBBQUHAQcBAf8EggGYMIIBlDCCAWwEAgABMIIB
ZAMDACUhAwQFJYKgAwMAJYgDAwAl2wMEBj4swDALAwQFPk5gAwMAPk4DBAU+caAD
BAY+pYADBAc+t4ADBAU+xaADAwE+7AMEBj7xwAMEBk4bQAMEBFBAAAMEB1GvgAME
B1KAgAMDAFK1AwQHUsuAAwQHU2QAAwQHU2YAAwQGVP3AAwMAVRcDBAdVgwADAwJX
XAMEB1dkgAMEB1iUgAMEB1kbAAMEB1mmAAMEBluRQAMEBW1sAAMEBZ//4AMDALBd
AwMAsjcDBAayS4ADBAK5D9QDAwC8QwMEA7xeQDAMAwQDwGvIAwQDwGvgAwQBwY9G
AwQAwY9JMAwDBADBj08DBAHBj1gDBADBj1swDAMEAMGPXQMEBcGPQAMDAMJkAwQG
wwqAAwQF1DKAAwQF1FYAAwQF1FpAAwQG1JIAAwQH1JWAAwQF1YugAwQF1Y1gAwQF
1brgAwQG1djAAwQG1fOAAwQF2U7AMCIEAgACMBwDBQMgAQboAwUDIAEUuAMFAyAB
QHgDBQMqAagAMA0GCSqGSIb3DQEBCwUAA4IBAQAFOhlblDZpk5JXS9MQn/ELuMYY
6zJphxGwMT4iMyMO4jDDg6W6PP/Xwvc3M6AglQ8ZjAN1GQeCYApTke3PCbxM/Rgc
ibNMNnWCG2eUSzBzXsbxtJkK5EEXeVI+EquCXa8VA0z4XuJyljvaXJRsKemlanob
gPhMJWp6azldvPs0gyo4LUq+flZsyBh1s+RBg2YakXarNOOOvy0+gxWJ4gYY3Iaz
1vNxHj1DU5gUDBJ8vW1DeLXddXvXwOQD6dUbA1fhXViB/ppud8Y8CBt6hFTsje70
DDReqUyljy1cRSCZVxekpLRV7PRgnJFGfCkpRsA4YRhaFL5lTqbf0XEKoprc
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:52:40 2024 by rpki-client on console-fra.rpki-client.org