Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/4t8M6C4Sb8xAnpWmHPRkomY7OfQ.roa
File: 4t8M6C4Sb8xAnpWmHPRkomY7OfQ.roa (raw, json)
Hash identifier: qXGmdMeiWhyo2wJSw+OGreBuKXzfkoWWrWNuDP8/L3U=
Subject key identifier: E2:DF:0C:E8:2E:12:6F:CC:40:9E:95:A6:1C:F4:64:A2:66:3B:39:F4
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018CC8028A12B14DBE9B591B307A7691BBC1
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/4t8M6C4Sb8xAnpWmHPRkomY7OfQ.roa
Signing time: Tue 02 Jan 2024 02:30:58 +0000
ROA not before: Tue 02 Jan 2024 02:30:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201942
IP address blocks: 91.235.41.0/24 maxlen: 24
91.235.40.0/24 maxlen: 24
185.201.152.0/22 maxlen: 24
185.204.244.0/22 maxlen: 24
92.60.35.0/24 maxlen: 24
45.137.160.0/22 maxlen: 24
45.147.104.0/22 maxlen: 24
185.224.220.0/22 maxlen: 24
185.245.32.0/23 maxlen: 23
45.147.116.0/22 maxlen: 24
185.107.152.0/22 maxlen: 24
212.80.208.0/22 maxlen: 24
185.232.8.0/22 maxlen: 24
193.26.152.0/22 maxlen: 24
91.238.239.0/24 maxlen: 24
109.230.250.0/24 maxlen: 24
93.92.228.0/22 maxlen: 24
31.170.100.0/22 maxlen: 24
185.163.168.0/22 maxlen: 24
185.220.240.0/22 maxlen: 24
185.227.176.0/22 maxlen: 24
185.106.124.0/22 maxlen: 24
185.150.78.0/23 maxlen: 24
81.21.228.0/22 maxlen: 24
109.230.194.0/24 maxlen: 24
185.204.108.0/24 maxlen: 24
95.214.144.0/22 maxlen: 24
185.224.184.0/22 maxlen: 24
185.218.16.0/22 maxlen: 24
185.197.216.0/22 maxlen: 24
185.227.204.0/24 maxlen: 24
185.221.16.0/22 maxlen: 24
185.200.228.0/22 maxlen: 24
185.163.232.0/22 maxlen: 24
185.247.4.0/24 maxlen: 24
185.230.48.0/22 maxlen: 24
194.38.56.0/22 maxlen: 24
85.115.192.0/22 maxlen: 24
193.105.66.0/24 maxlen: 24
185.239.255.0/24 maxlen: 24
93.189.123.0/24 maxlen: 24
93.189.120.0/24 maxlen: 24
193.17.180.0/22 maxlen: 24
45.159.76.0/22 maxlen: 24
194.41.118.0/24 maxlen: 24
194.41.116.0/22 maxlen: 24
185.105.232.0/22 maxlen: 24
194.35.40.0/24 maxlen: 24
185.217.12.0/22 maxlen: 24
185.223.220.0/22 maxlen: 24
185.176.188.0/22 maxlen: 24
185.166.172.0/22 maxlen: 24
193.35.88.0/22 maxlen: 24
185.119.48.0/22 maxlen: 24
185.179.228.0/22 maxlen: 24
185.179.232.0/22 maxlen: 24
185.129.104.0/22 maxlen: 24
185.128.52.0/22 maxlen: 24
185.118.52.0/23 maxlen: 23
185.118.54.0/23 maxlen: 23
185.226.8.0/22 maxlen: 24
185.212.84.0/22 maxlen: 24
195.182.13.0/24 maxlen: 24
212.115.44.0/22 maxlen: 24
185.105.12.0/22 maxlen: 24
185.202.204.0/22 maxlen: 24
45.81.152.0/22 maxlen: 24
185.196.42.0/24 maxlen: 24
185.196.43.0/24 maxlen: 24
185.196.40.0/22 maxlen: 24
185.239.252.0/22 maxlen: 24
185.239.253.0/24 maxlen: 24
185.239.252.0/24 maxlen: 24
185.175.152.0/22 maxlen: 24
185.222.188.0/22 maxlen: 24
185.226.28.0/22 maxlen: 24
185.199.44.0/22 maxlen: 24
185.91.108.0/22 maxlen: 24
213.232.232.0/24 maxlen: 24
88.135.64.0/22 maxlen: 24
185.216.28.0/22 maxlen: 24
185.189.64.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Mar 2024 15:39:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:8a:12:b1:4d:be:9b:59:1b:30:7a:76:91:bb:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 02:30:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e2df0ce82e126fcc409e95a61cf464a2663b39f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:3c:fe:1d:c2:f3:c3:56:cd:c9:85:bb:00:98:
45:a5:62:35:7c:10:47:ae:d2:a7:f6:44:54:fd:74:
d8:c7:c6:b6:88:62:ec:1e:de:48:8b:b7:3a:0c:ce:
c6:3d:5b:2b:de:ef:50:1a:71:7f:25:bd:ac:ac:5d:
53:55:33:0c:37:c6:40:90:91:0d:a8:f0:a1:ac:e2:
f3:18:0e:14:f5:1e:1d:39:b1:c2:73:40:b6:78:df:
71:42:e7:d3:27:a6:02:fd:13:3b:e9:6c:0b:3a:40:
f4:97:2d:ca:e5:47:5d:1b:ab:cf:a3:f4:f4:d4:6a:
a8:19:d6:78:a0:48:8b:13:b0:e7:2c:2b:f3:18:b9:
14:aa:b6:5a:6a:41:49:6d:8a:72:20:11:f7:d6:fb:
a4:3d:11:35:5e:c7:37:98:3f:65:ba:53:5d:4f:ab:
ae:fb:8b:b5:a7:b6:9d:82:7d:37:98:7f:50:cd:84:
f5:ed:d3:a1:1d:b7:87:32:37:84:1b:7e:6b:9c:e0:
e4:d1:ec:5d:b0:06:44:97:39:a6:85:92:66:2d:32:
7c:c6:1d:fc:07:82:1f:c3:74:c3:2a:79:90:d1:3b:
57:97:87:d7:cd:b2:f5:90:60:fd:35:93:7b:f6:6b:
df:6a:fb:74:2b:60:5d:60:2b:8e:e4:9b:d0:7a:19:
c6:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:DF:0C:E8:2E:12:6F:CC:40:9E:95:A6:1C:F4:64:A2:66:3B:39:F4
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/4t8M6C4Sb8xAnpWmHPRkomY7OfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.100.0/22
45.81.152.0/22
45.137.160.0/22
45.147.104.0/22
45.147.116.0/22
45.159.76.0/22
81.21.228.0/22
85.115.192.0/22
88.135.64.0/22
91.235.40.0/23
91.238.239.0/24
92.60.35.0/24
93.92.228.0/22
93.189.120.0/24
93.189.123.0/24
95.214.144.0/22
109.230.194.0/24
109.230.250.0/24
185.91.108.0/22
185.105.12.0/22
185.105.232.0/22
185.106.124.0/22
185.107.152.0/22
185.118.52.0/22
185.119.48.0/22
185.128.52.0/22
185.129.104.0/22
185.150.78.0/23
185.163.168.0/22
185.163.232.0/22
185.166.172.0/22
185.175.152.0/22
185.176.188.0/22
185.179.228.0-185.179.235.255
185.189.64.0/22
185.196.40.0/22
185.197.216.0/22
185.199.44.0/22
185.200.228.0/22
185.201.152.0/22
185.202.204.0/22
185.204.108.0/24
185.204.244.0/22
185.212.84.0/22
185.216.28.0/22
185.217.12.0/22
185.218.16.0/22
185.220.240.0/22
185.221.16.0/22
185.222.188.0/22
185.223.220.0/22
185.224.184.0/22
185.224.220.0/22
185.226.8.0/22
185.226.28.0/22
185.227.176.0/22
185.227.204.0/24
185.230.48.0/22
185.232.8.0/22
185.239.252.0/22
185.245.32.0/23
185.247.4.0/24
193.17.180.0/22
193.26.152.0/22
193.35.88.0/22
193.105.66.0/24
194.35.40.0/24
194.38.56.0/22
194.41.116.0/22
195.182.13.0/24
212.80.208.0/22
212.115.44.0/22
213.232.232.0/24
Signature Algorithm: sha256WithRSAEncryption
24:bf:f4:30:36:e7:c3:bc:84:33:98:74:42:21:20:9b:cd:8f:
cc:8d:84:9c:ec:a9:75:18:5c:44:38:f7:80:9b:e2:9d:8a:c6:
38:e4:fe:b2:b4:b2:dd:09:55:85:ab:34:13:d4:57:c2:a3:c4:
a2:9c:3d:2e:eb:a8:ca:ef:92:11:bc:5c:d0:1a:c7:d2:c4:35:
47:01:d5:16:a3:4f:dd:e4:1e:04:18:8c:08:24:42:e8:73:cd:
62:22:77:86:b6:c6:66:d2:dc:ef:1e:2d:83:21:7b:fb:b0:ae:
2a:1d:38:a6:c7:92:76:3f:5f:f2:ab:0c:3c:26:7f:87:a3:d5:
e5:ba:86:e4:74:8b:d2:96:ba:b0:4d:4c:9c:ec:66:e3:42:a9:
14:a0:b4:98:49:66:a9:a8:04:70:cc:b7:33:b3:f3:2d:04:4f:
c4:4b:fb:45:82:de:cb:af:7f:cb:4a:06:90:1b:6f:62:06:fd:
01:04:ff:1f:32:2d:37:78:9d:bf:b5:d5:d2:5e:ef:02:f8:e8:
ed:cf:01:c4:2f:11:e7:3d:de:24:2e:d2:fd:13:71:1e:42:85:
b1:7d:be:01:39:ae:c8:d4:74:ad:f9:e5:b5:8d:58:55:05:1e:
c8:8f:e2:13:51:25:29:9d:c1:94:3c:de:d3:eb:7b:1e:bb:d0:
c5:46:fa:ba
-----BEGIN CERTIFICATE-----
MIIGvzCCBaegAwIBAgISAYzIAooSsU2+m1kbMHp2kbvBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjQwMTAyMDIzMDU4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMmRmMGNlODJlMTI2ZmNjNDA5ZTk1YTYxY2Y0NjRhMjY2M2IzOWY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAizz+HcLzw1bNyYW7AJhFpWI1fBBH
rtKn9kRU/XTYx8a2iGLsHt5Ii7c6DM7GPVsr3u9QGnF/Jb2srF1TVTMMN8ZAkJEN
qPChrOLzGA4U9R4dObHCc0C2eN9xQufTJ6YC/RM76WwLOkD0ly3K5UddG6vPo/T0
1GqoGdZ4oEiLE7DnLCvzGLkUqrZaakFJbYpyIBH31vukPRE1Xsc3mD9lulNdT6uu
+4u1p7adgn03mH9QzYT17dOhHbeHMjeEG35rnODk0exdsAZElzmmhZJmLTJ8xh38
B4Ifw3TDKnmQ0TtXl4fXzbL1kGD9NZN79mvfavt0K2BdYCuO5JvQehnGDQIDAQAB
o4IDyzCCA8cwHQYDVR0OBBYEFOLfDOguEm/MQJ6Vphz0ZKJmOzn0MB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvNHQ4TTZDNFNiOHhBbnBXbUhQUmtvbVk3T2ZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIB3wYIKwYBBQUHAQcBAf8EggHOMIIByjCCAcYEAgABMIIB
vgMEAh+qZAMEAi1RmAMEAi2JoAMEAi2TaAMEAi2TdAMEAi2fTAMEAlEV5AMEAlVz
wAMEAliHQAMEAVvrKAMEAFvu7wMEAFw8IwMEAl1c5AMEAF29eAMEAF29ewMEAl/W
kAMEAG3mwgMEAG3m+gMEArlbbAMEArlpDAMEArlp6AMEArlqfAMEArlrmAMEArl2
NAMEArl3MAMEArmANAMEArmBaAMEAbmWTgMEArmjqAMEArmj6AMEArmmrAMEArmv
mAMEArmwvDAMAwQCubPkAwQCubPoAwQCub1AAwQCucQoAwQCucXYAwQCuccsAwQC
ucjkAwQCucmYAwQCucrMAwQAucxsAwQCucz0AwQCudRUAwQCudgcAwQCudkMAwQC
udoQAwQCudzwAwQCud0QAwQCud68AwQCud/cAwQCueC4AwQCueDcAwQCueIIAwQC
ueIcAwQCueOwAwQAuePMAwQCueYwAwQCuegIAwQCue/8AwQBufUgAwQAufcEAwQC
wRG0AwQCwRqYAwQCwSNYAwQAwWlCAwQAwiMoAwQCwiY4AwQCwil0AwQAw7YNAwQC
1FDQAwQC1HMsAwQA1ejoMA0GCSqGSIb3DQEBCwUAA4IBAQAkv/QwNufDvIQzmHRC
ISCbzY/MjYSc7Kl1GFxEOPeAm+KdisY45P6ytLLdCVWFqzQT1FfCo8SinD0u66jK
75IRvFzQGsfSxDVHAdUWo0/d5B4EGIwIJELoc81iIneGtsZm0tzvHi2DIXv7sK4q
HTimx5J2P1/yqww8Jn+Ho9XluobkdIvSlrqwTUyc7GbjQqkUoLSYSWapqARwzLcz
s/MtBE/ES/tFgt7Lr3/LSgaQG29iBv0BBP8fMi03eJ2/tdXSXu8C+OjtzwHELxHn
Pd4kLtL9E3EeQoWxfb4BOa7I1HSt+eW1jVhVBR7Ij+ITUSUpncGUPN7T63seu9DF
Rvq6
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:20 2024 by rpki-client on console-ams.rpki-client.org