Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/_kI_zibQEsMeN3DynmE_jCQ09Mc.roa
File: _kI_zibQEsMeN3DynmE_jCQ09Mc.roa (raw, json)
Hash identifier: hl/HBEM6sbc0kWx7aOPQ4dCrMBpI+LuRZLgPuy6zrwA=
Subject key identifier: FE:42:3F:CE:26:D0:12:C3:1E:37:70:F2:9E:61:3F:8C:24:34:F4:C7
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018B61705EB70371379B1232D2CC224CB0FC
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/_kI_zibQEsMeN3DynmE_jCQ09Mc.roa
Signing time: Tue 24 Oct 2023 11:27:16 +0000
ROA not before: Tue 24 Oct 2023 11:27:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201942
IP address blocks: 91.235.41.0/24 maxlen: 24
91.235.40.0/24 maxlen: 24
185.201.152.0/22 maxlen: 24
185.204.244.0/22 maxlen: 24
92.60.35.0/24 maxlen: 24
45.137.160.0/22 maxlen: 24
45.147.104.0/22 maxlen: 24
185.224.220.0/22 maxlen: 24
185.245.32.0/23 maxlen: 23
45.147.116.0/22 maxlen: 24
185.107.152.0/22 maxlen: 24
185.124.108.0/22 maxlen: 24
212.80.208.0/22 maxlen: 24
185.232.8.0/22 maxlen: 24
193.26.152.0/22 maxlen: 24
91.238.239.0/24 maxlen: 24
109.230.250.0/24 maxlen: 24
93.92.228.0/22 maxlen: 24
31.170.100.0/22 maxlen: 24
185.254.156.0/22 maxlen: 24
185.163.168.0/22 maxlen: 24
185.220.240.0/22 maxlen: 24
185.227.176.0/22 maxlen: 24
185.106.124.0/22 maxlen: 24
185.150.78.0/23 maxlen: 24
193.8.112.0/22 maxlen: 24
81.21.228.0/22 maxlen: 24
109.230.194.0/24 maxlen: 24
185.204.108.0/24 maxlen: 24
95.214.144.0/22 maxlen: 24
185.224.184.0/22 maxlen: 24
185.218.16.0/22 maxlen: 24
185.197.216.0/22 maxlen: 24
185.227.204.0/24 maxlen: 24
185.221.16.0/22 maxlen: 24
185.200.228.0/22 maxlen: 24
185.163.232.0/22 maxlen: 24
185.166.36.0/22 maxlen: 24
185.247.4.0/24 maxlen: 24
185.230.48.0/22 maxlen: 24
194.38.56.0/22 maxlen: 24
185.230.64.0/22 maxlen: 24
85.115.192.0/22 maxlen: 24
193.105.66.0/24 maxlen: 24
185.239.255.0/24 maxlen: 24
93.189.123.0/24 maxlen: 24
93.189.120.0/24 maxlen: 24
193.17.180.0/22 maxlen: 24
85.31.60.0/22 maxlen: 24
45.159.76.0/22 maxlen: 24
194.41.118.0/24 maxlen: 24
194.41.116.0/22 maxlen: 24
185.105.232.0/22 maxlen: 24
194.35.40.0/24 maxlen: 24
185.217.12.0/22 maxlen: 24
185.223.220.0/22 maxlen: 24
185.176.188.0/22 maxlen: 24
185.166.172.0/22 maxlen: 24
193.35.88.0/22 maxlen: 24
185.119.48.0/22 maxlen: 24
185.179.228.0/22 maxlen: 24
185.179.232.0/22 maxlen: 24
185.129.104.0/22 maxlen: 24
185.128.52.0/22 maxlen: 24
185.118.52.0/23 maxlen: 23
185.118.54.0/23 maxlen: 23
185.226.8.0/22 maxlen: 24
185.212.84.0/22 maxlen: 24
195.182.13.0/24 maxlen: 24
212.115.44.0/22 maxlen: 24
185.105.12.0/22 maxlen: 24
185.202.204.0/22 maxlen: 24
45.81.152.0/22 maxlen: 24
185.196.42.0/24 maxlen: 24
185.196.43.0/24 maxlen: 24
185.196.40.0/22 maxlen: 24
185.239.252.0/22 maxlen: 24
185.239.253.0/24 maxlen: 24
185.239.252.0/24 maxlen: 24
185.175.152.0/22 maxlen: 24
185.222.188.0/22 maxlen: 24
185.226.28.0/22 maxlen: 24
185.199.44.0/22 maxlen: 24
185.199.52.0/22 maxlen: 24
185.91.108.0/22 maxlen: 24
213.232.232.0/24 maxlen: 24
88.135.64.0/22 maxlen: 24
185.162.52.0/22 maxlen: 24
185.216.28.0/22 maxlen: 24
185.189.64.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Dec 2023 10:02:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:61:70:5e:b7:03:71:37:9b:12:32:d2:cc:22:4c:b0:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Oct 24 11:27:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe423fce26d012c31e3770f29e613f8c2434f4c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c7:b5:ed:64:5b:b3:7c:33:7e:37:9a:98:c0:
57:54:41:d6:be:82:58:db:0a:d3:e1:bb:87:60:6e:
c1:d2:72:ac:35:89:25:01:53:64:a3:a5:e8:c1:e3:
db:73:19:90:6d:25:fa:f5:10:84:07:2d:8b:74:ae:
cd:49:96:3d:c2:37:45:d2:85:d8:b9:d8:0c:4c:7a:
58:8c:c2:d1:60:cc:89:80:ba:6a:2f:34:6e:32:3a:
1b:f0:bd:22:18:42:c0:32:30:53:b2:8b:10:f8:ff:
6f:d6:b4:83:ab:b2:70:fb:7e:81:00:b5:8e:3b:d4:
b2:f1:73:b8:e4:78:27:02:da:4e:aa:d1:e0:20:53:
a0:b4:e5:d9:f4:00:c3:54:42:76:2d:bd:6f:fa:48:
bd:2c:51:de:b4:ed:8c:be:7d:ab:3e:1d:ee:0a:89:
1e:f1:fa:3a:8d:99:fd:d0:7d:8c:97:32:4f:9a:6f:
52:7f:26:a9:87:c0:dc:b3:48:e4:b3:f7:f0:e8:aa:
74:7d:78:52:36:e3:4f:3a:f4:cb:8a:ca:52:73:56:
1c:69:cb:1f:03:26:68:aa:fb:8f:75:00:e0:6e:6d:
09:f0:ba:2c:4d:c8:23:c3:9d:9a:ea:86:f0:c7:be:
33:b5:7e:b1:29:eb:02:7b:80:8f:99:2a:ea:20:0e:
88:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:42:3F:CE:26:D0:12:C3:1E:37:70:F2:9E:61:3F:8C:24:34:F4:C7
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/_kI_zibQEsMeN3DynmE_jCQ09Mc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.100.0/22
45.81.152.0/22
45.137.160.0/22
45.147.104.0/22
45.147.116.0/22
45.159.76.0/22
81.21.228.0/22
85.31.60.0/22
85.115.192.0/22
88.135.64.0/22
91.235.40.0/23
91.238.239.0/24
92.60.35.0/24
93.92.228.0/22
93.189.120.0/24
93.189.123.0/24
95.214.144.0/22
109.230.194.0/24
109.230.250.0/24
185.91.108.0/22
185.105.12.0/22
185.105.232.0/22
185.106.124.0/22
185.107.152.0/22
185.118.52.0/22
185.119.48.0/22
185.124.108.0/22
185.128.52.0/22
185.129.104.0/22
185.150.78.0/23
185.162.52.0/22
185.163.168.0/22
185.163.232.0/22
185.166.36.0/22
185.166.172.0/22
185.175.152.0/22
185.176.188.0/22
185.179.228.0-185.179.235.255
185.189.64.0/22
185.196.40.0/22
185.197.216.0/22
185.199.44.0/22
185.199.52.0/22
185.200.228.0/22
185.201.152.0/22
185.202.204.0/22
185.204.108.0/24
185.204.244.0/22
185.212.84.0/22
185.216.28.0/22
185.217.12.0/22
185.218.16.0/22
185.220.240.0/22
185.221.16.0/22
185.222.188.0/22
185.223.220.0/22
185.224.184.0/22
185.224.220.0/22
185.226.8.0/22
185.226.28.0/22
185.227.176.0/22
185.227.204.0/24
185.230.48.0/22
185.230.64.0/22
185.232.8.0/22
185.239.252.0/22
185.245.32.0/23
185.247.4.0/24
185.254.156.0/22
193.8.112.0/22
193.17.180.0/22
193.26.152.0/22
193.35.88.0/22
193.105.66.0/24
194.35.40.0/24
194.38.56.0/22
194.41.116.0/22
195.182.13.0/24
212.80.208.0/22
212.115.44.0/22
213.232.232.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:24:cf:fe:b7:1d:5d:1a:2d:e9:1a:8f:a4:70:d8:7f:b7:9b:
da:42:ef:aa:2a:20:36:f0:43:49:c4:ee:75:de:4b:df:a2:c5:
76:71:60:51:88:8f:72:80:84:37:17:22:4f:14:98:14:4d:1a:
6c:6b:f2:2d:1a:c1:9c:bf:20:6f:3d:3b:e8:c6:ba:eb:77:df:
53:01:61:3a:58:a7:b1:31:5d:46:5c:d3:51:12:0f:07:6c:3b:
f8:2b:bd:f7:76:45:bc:3b:8a:a5:69:33:a1:3a:68:48:30:84:
65:90:15:f9:50:24:25:14:19:08:93:ec:4f:bf:50:4a:4a:e7:
cd:63:6a:e9:c4:48:18:07:15:7a:43:5b:d8:1b:63:04:54:aa:
e9:cf:ef:3c:b4:83:d6:0b:7d:28:55:9a:d8:14:aa:82:58:fe:
ec:e2:1c:3f:a9:cb:df:26:9c:ba:e6:99:f6:cf:ec:f1:eb:66:
7e:86:6a:f2:2a:a9:b2:da:c7:fa:3c:f6:7a:4c:dd:ff:83:dc:
7f:d0:26:56:d3:32:f1:d2:b0:be:d7:38:74:b5:dd:a2:c7:f2:
69:0f:f0:91:16:04:a6:cb:48:79:4d:ce:b2:4b:54:7b:04:f2:
cb:6c:cf:72:e0:d7:13:7b:ac:74:55:09:05:07:ef:f5:b0:14:
0c:0e:24:d8
-----BEGIN CERTIFICATE-----
MIIG7zCCBdegAwIBAgISAYthcF63A3E3mxIy0swiTLD8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMxMDI0MTEyNzE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZTQyM2ZjZTI2ZDAxMmMzMWUzNzcwZjI5ZTYxM2Y4YzI0MzRmNGM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnMe17WRbs3wzfjeamMBXVEHWvoJY
2wrT4buHYG7B0nKsNYklAVNko6XowePbcxmQbSX69RCEBy2LdK7NSZY9wjdF0oXY
udgMTHpYjMLRYMyJgLpqLzRuMjob8L0iGELAMjBTsosQ+P9v1rSDq7Jw+36BALWO
O9Sy8XO45HgnAtpOqtHgIFOgtOXZ9ADDVEJ2Lb1v+ki9LFHetO2Mvn2rPh3uCoke
8fo6jZn90H2MlzJPmm9Sfyaph8Dcs0jks/fw6Kp0fXhSNuNPOvTLispSc1Ycacsf
AyZoqvuPdQDgbm0J8LosTcgjw52a6obwx74ztX6xKesCe4CPmSrqIA6IBQIDAQAB
o4ID+zCCA/cwHQYDVR0OBBYEFP5CP84m0BLDHjdw8p5hP4wkNPTHMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvX2tJX3ppYlFFc01lTjNEeW5tRV9qQ1EwOU1jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIICDwYIKwYBBQUHAQcBAf8EggH+MIIB+jCCAfYEAgABMIIB
7gMEAh+qZAMEAi1RmAMEAi2JoAMEAi2TaAMEAi2TdAMEAi2fTAMEAlEV5AMEAlUf
PAMEAlVzwAMEAliHQAMEAVvrKAMEAFvu7wMEAFw8IwMEAl1c5AMEAF29eAMEAF29
ewMEAl/WkAMEAG3mwgMEAG3m+gMEArlbbAMEArlpDAMEArlp6AMEArlqfAMEArlr
mAMEArl2NAMEArl3MAMEArl8bAMEArmANAMEArmBaAMEAbmWTgMEArmiNAMEArmj
qAMEArmj6AMEArmmJAMEArmmrAMEArmvmAMEArmwvDAMAwQCubPkAwQCubPoAwQC
ub1AAwQCucQoAwQCucXYAwQCuccsAwQCucc0AwQCucjkAwQCucmYAwQCucrMAwQA
ucxsAwQCucz0AwQCudRUAwQCudgcAwQCudkMAwQCudoQAwQCudzwAwQCud0QAwQC
ud68AwQCud/cAwQCueC4AwQCueDcAwQCueIIAwQCueIcAwQCueOwAwQAuePMAwQC
ueYwAwQCueZAAwQCuegIAwQCue/8AwQBufUgAwQAufcEAwQCuf6cAwQCwQhwAwQC
wRG0AwQCwRqYAwQCwSNYAwQAwWlCAwQAwiMoAwQCwiY4AwQCwil0AwQAw7YNAwQC
1FDQAwQC1HMsAwQA1ejoMA0GCSqGSIb3DQEBCwUAA4IBAQAdJM/+tx1dGi3pGo+k
cNh/t5vaQu+qKiA28ENJxO513kvfosV2cWBRiI9ygIQ3FyJPFJgUTRpsa/ItGsGc
vyBvPTvoxrrrd99TAWE6WKexMV1GXNNREg8HbDv4K733dkW8O4qlaTOhOmhIMIRl
kBX5UCQlFBkIk+xPv1BKSufNY2rpxEgYBxV6Q1vYG2MEVKrpz+88tIPWC30oVZrY
FKqCWP7s4hw/qcvfJpy65pn2z+zx62Z+hmryKqmy2sf6PPZ6TN3/g9x/0CZW0zLx
0rC+1zh0td2ix/JpD/CRFgSmy0h5Tc6yS1R7BPLLbM9y4NcTe6x0VQkFB+/1sBQM
DiTY
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org