Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/USpLw0hl-3XFXFi8lXwUxa6vAcw.roa
File: USpLw0hl-3XFXFi8lXwUxa6vAcw.roa (raw, json)
Hash identifier: eXjRJGPPRgnANWv8WZR+5N454XINv3UoOgvGSnTbsCs=
Subject key identifier: 51:2A:4B:C3:48:65:FB:75:C5:5C:58:BC:95:7C:14:C5:AE:AF:01:CC
Certificate issuer: /CN=0526b03c717184c3680817e55e2455f85d73a413
Certificate serial: 0191F118EF312FCE24AFDF6903E4E150B366
Authority key identifier: 05:26:B0:3C:71:71:84:C3:68:08:17:E5:5E:24:55:F8:5D:73:A4:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSawPHFxhMNoCBflXiRV-F1zpBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/USpLw0hl-3XFXFi8lXwUxa6vAcw.roa
Signing time: Sat 14 Sep 2024 15:13:48 +0000
ROA not before: Sat 14 Sep 2024 15:13:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49453
IP address blocks: 37.123.210.0/24 maxlen: 24
45.133.250.0/24 maxlen: 24
109.202.97.0/24 maxlen: 24
109.202.98.0/24 maxlen: 24
109.202.99.0/24 maxlen: 24
109.202.100.0/24 maxlen: 24
109.202.101.0/24 maxlen: 24
109.202.102.0/24 maxlen: 24
109.202.103.0/24 maxlen: 24
109.202.104.0/24 maxlen: 24
109.202.106.0/24 maxlen: 24
109.202.107.0/24 maxlen: 24
109.202.108.0/24 maxlen: 24
109.202.109.0/24 maxlen: 24
109.202.110.0/24 maxlen: 24
109.202.111.0/24 maxlen: 24
109.232.224.0/24 maxlen: 24
109.232.225.0/24 maxlen: 24
109.232.226.0/24 maxlen: 24
109.232.227.0/24 maxlen: 24
109.232.228.0/24 maxlen: 24
109.232.229.0/24 maxlen: 24
109.232.230.0/24 maxlen: 24
109.232.231.0/24 maxlen: 24
134.19.176.0/24 maxlen: 24
134.19.177.0/24 maxlen: 24
134.19.178.0/24 maxlen: 24
134.19.179.0/24 maxlen: 24
134.19.180.0/24 maxlen: 24
134.19.181.0/24 maxlen: 24
134.19.182.0/24 maxlen: 24
134.19.183.0/24 maxlen: 24
134.19.184.0/24 maxlen: 24
134.19.185.0/24 maxlen: 24
134.19.186.0/24 maxlen: 24
134.19.187.0/24 maxlen: 24
134.19.188.0/24 maxlen: 24
134.19.189.0/24 maxlen: 24
134.19.190.0/23 maxlen: 23
185.23.212.0/22 maxlen: 22
185.23.214.0/24 maxlen: 24
188.95.49.0/24 maxlen: 24
188.95.50.0/24 maxlen: 24
188.95.51.0/24 maxlen: 24
188.95.52.0/24 maxlen: 24
188.95.53.0/24 maxlen: 24
213.152.160.0/24 maxlen: 24
213.152.161.0/24 maxlen: 24
213.152.162.0/24 maxlen: 24
213.152.163.0/24 maxlen: 24
213.152.164.0/24 maxlen: 24
213.152.165.0/24 maxlen: 24
213.152.166.0/24 maxlen: 24
213.152.167.0/24 maxlen: 24
213.152.168.0/24 maxlen: 24
213.152.169.0/24 maxlen: 24
213.152.170.0/24 maxlen: 24
213.152.171.0/24 maxlen: 24
213.152.172.0/24 maxlen: 24
213.152.173.0/24 maxlen: 24
213.152.174.0/24 maxlen: 24
213.152.176.0/24 maxlen: 24
213.152.177.0/24 maxlen: 24
213.152.180.0/24 maxlen: 24
213.152.181.0/24 maxlen: 24
213.152.183.0/24 maxlen: 24
213.152.184.0/24 maxlen: 24
213.152.185.0/24 maxlen: 24
213.152.186.0/24 maxlen: 24
213.152.187.0/24 maxlen: 24
213.152.188.0/22 maxlen: 22
213.152.188.0/24 maxlen: 24
213.152.189.0/24 maxlen: 24
2a00:1678:1337::/48 maxlen: 48
2a00:1678:2470::/48 maxlen: 48
2a00:1678:3cc0::/48 maxlen: 48
2a00:1678:5afe::/48 maxlen: 48
2a00:1678:b00b::/48 maxlen: 48
2a00:1678:baba::/48 maxlen: 48
2a00:1678:da7a::/48 maxlen: 48
2a00:1678:dea1::/48 maxlen: 48
2a00:1678:efa5::/48 maxlen: 48
2a00:1678:fa11::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 14 Sep 2024 17:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:f1:18:ef:31:2f:ce:24:af:df:69:03:e4:e1:50:b3:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0526b03c717184c3680817e55e2455f85d73a413
Validity
Not Before: Sep 14 15:13:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=512a4bc34865fb75c55c58bc957c14c5aeaf01cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:70:f1:8d:00:45:30:33:15:a6:9b:66:c7:4f:
50:1d:5b:b8:b4:93:a8:a6:f2:7a:8a:16:cd:92:47:
16:d8:58:cd:55:50:de:6f:2a:5a:4f:f8:2b:0d:56:
61:5c:91:d2:56:9b:24:7d:6e:94:64:af:1b:13:0c:
89:50:78:0e:e5:50:5e:f9:4e:e8:bb:a3:59:65:0e:
36:41:5c:60:79:ba:01:77:10:79:cf:ca:e1:b2:38:
6b:3e:c1:b0:1c:b7:f5:95:9f:69:10:d1:ec:b9:c4:
6e:ef:38:5e:f7:99:af:b5:cd:90:e5:80:67:6f:8b:
9e:39:7c:02:f4:ab:56:39:3c:1f:bf:2c:1f:e0:9c:
d0:de:4a:db:24:60:4b:db:eb:53:93:e8:55:f3:e2:
a8:f3:6a:c3:7a:19:45:f0:66:00:f5:07:81:c6:c6:
fe:c6:b3:ed:02:64:94:db:56:f5:f5:7b:25:0a:67:
ff:6b:78:dd:1e:93:26:83:56:c6:2a:b1:c2:35:e7:
ae:07:35:83:d8:67:88:38:28:37:d8:e9:85:c6:7f:
80:86:ca:15:6d:49:c2:36:8c:a0:db:e3:23:c9:c1:
92:d1:f9:11:13:68:0a:9b:1a:7c:de:17:76:f8:87:
09:e6:a2:c9:b7:d1:72:6a:6f:f1:b9:5c:bb:2a:b6:
0b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:2A:4B:C3:48:65:FB:75:C5:5C:58:BC:95:7C:14:C5:AE:AF:01:CC
X509v3 Authority Key Identifier:
keyid:05:26:B0:3C:71:71:84:C3:68:08:17:E5:5E:24:55:F8:5D:73:A4:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSawPHFxhMNoCBflXiRV-F1zpBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/USpLw0hl-3XFXFi8lXwUxa6vAcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/BSawPHFxhMNoCBflXiRV-F1zpBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.123.210.0/24
45.133.250.0/24
109.202.97.0-109.202.104.255
109.202.106.0-109.202.111.255
109.232.224.0/21
134.19.176.0/20
185.23.212.0/22
188.95.49.0-188.95.53.255
213.152.160.0-213.152.174.255
213.152.176.0/23
213.152.180.0/23
213.152.183.0-213.152.191.255
IPv6:
2a00:1678:1337::/48
2a00:1678:2470::/48
2a00:1678:3cc0::/48
2a00:1678:5afe::/48
2a00:1678:b00b::/48
2a00:1678:baba::/48
2a00:1678:da7a::/48
2a00:1678:dea1::/48
2a00:1678:efa5::/48
2a00:1678:fa11::/48
Signature Algorithm: sha256WithRSAEncryption
18:83:b7:bf:8d:88:cc:f2:d7:5a:1f:89:53:47:06:81:a2:de:
28:b8:42:bb:01:88:36:33:c7:df:99:fa:aa:40:3b:47:2d:2c:
10:f3:60:0d:98:b7:57:f2:34:a6:9a:c3:13:71:3a:55:7f:bb:
9c:b3:ae:b3:c4:b7:94:cf:38:93:cf:80:6b:07:25:9a:21:ef:
ed:d7:ab:d9:56:e0:73:d2:93:66:71:e2:b8:66:da:6c:24:a6:
ec:5a:8f:a5:8c:86:a6:aa:79:9f:5d:fd:ad:39:46:ff:aa:ef:
bd:99:ab:f1:8d:46:9f:72:89:85:e1:f8:19:bf:18:82:91:b0:
86:31:ba:de:37:e6:b4:55:37:0c:7a:c4:06:b9:71:91:14:85:
40:d2:81:bf:45:56:31:0f:fb:5f:33:e7:01:a9:f9:85:d5:90:
e5:e9:73:01:ff:95:e4:82:fc:6c:f0:05:ce:14:f1:0f:1a:e4:
ea:b8:fe:91:76:df:e2:2a:64:1e:ee:35:9f:4b:24:d0:dd:b7:
83:75:1d:c4:06:36:5e:e9:57:dc:87:57:7e:99:31:d2:1f:01:
ac:d2:45:b7:4a:86:95:00:31:e2:d9:31:e4:6d:a8:3c:c5:9e:
6b:4a:c8:28:d5:00:8f:d4:e9:6f:45:2e:1a:f4:9e:6a:63:cb:
5a:e7:05:a3
-----BEGIN CERTIFICATE-----
MIIFzDCCBLSgAwIBAgISAZHxGO8xL84kr99pA+ThULNmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1MjZiMDNjNzE3MTg0YzM2ODA4MTdlNTVlMjQ1NWY4NWQ3
M2E0MTMwHhcNMjQwOTE0MTUxMzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MTJhNGJjMzQ4NjVmYjc1YzU1YzU4YmM5NTdjMTRjNWFlYWYwMWNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy3DxjQBFMDMVpptmx09QHVu4tJOo
pvJ6ihbNkkcW2FjNVVDebypaT/grDVZhXJHSVpskfW6UZK8bEwyJUHgO5VBe+U7o
u6NZZQ42QVxgeboBdxB5z8rhsjhrPsGwHLf1lZ9pENHsucRu7zhe95mvtc2Q5YBn
b4ueOXwC9KtWOTwfvywf4JzQ3krbJGBL2+tTk+hV8+Ko82rDehlF8GYA9QeBxsb+
xrPtAmSU21b19XslCmf/a3jdHpMmg1bGKrHCNeeuBzWD2GeIOCg32OmFxn+AhsoV
bUnCNoyg2+MjycGS0fkRE2gKmxp83hd2+IcJ5qLJt9Fyam/xuVy7KrYL4wIDAQAB
o4IC2DCCAtQwHQYDVR0OBBYEFFEqS8NIZft1xVxYvJV8FMWurwHMMB8GA1UdIwQY
MBaAFAUmsDxxcYTDaAgX5V4kVfhdc6QTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlNhd1BIRnhoTU5vQ0JmbFhpUlYtRjF6cEJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9hMzM4M2EtMDRlYi00M2Y4LWE5NTMt
M2JmMDRhMmE5M2Q4LzEvVVNwTHcwaGwtM1hGWEZpOGxYd1V4YTZ2QWN3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS9hMzM4M2EtMDRlYi00M2Y4LWE5NTMtM2JmMDRhMmE5M2Q4
LzEvQlNhd1BIRnhoTU5vQ0JmbFhpUlYtRjF6cEJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHtBggrBgEFBQcBBwEB/wSB3TCB2jB2BAIAATBwAwQAJXvS
AwQALYX6MAwDBABtymEDBABtymgwDAMEAW3KagMEBG3KYAMEA23o4AMEBIYTsAME
ArkX1DAMAwQAvF8xAwQBvF80MAwDBAXVmKADBADVmK4DBAHVmLADBAHVmLQwDAME
ANWYtwMEBtWYgDBgBAIAAjBaAwcAKgAWeBM3AwcAKgAWeCRwAwcAKgAWeDzAAwcA
KgAWeFr+AwcAKgAWeLALAwcAKgAWeLq6AwcAKgAWeNp6AwcAKgAWeN6hAwcAKgAW
eO+lAwcAKgAWePoRMA0GCSqGSIb3DQEBCwUAA4IBAQAYg7e/jYjM8tdaH4lTRwaB
ot4ouEK7AYg2M8ffmfqqQDtHLSwQ82ANmLdX8jSmmsMTcTpVf7ucs66zxLeUzziT
z4BrByWaIe/t16vZVuBz0pNmceK4ZtpsJKbsWo+ljIamqnmfXf2tOUb/qu+9mavx
jUafcomF4fgZvxiCkbCGMbreN+a0VTcMesQGuXGRFIVA0oG/RVYxD/tfM+cBqfmF
1ZDl6XMB/5Xkgvxs8AXOFPEPGuTquP6Rdt/iKmQe7jWfSyTQ3beDdR3EBjZe6Vfc
h1d+mTHSHwGs0kW3SoaVADHi2THkbag8xZ5rSsgo1QCP1OlvRS4a9J5qY8ta5wWj
Generated at Sat Sep 14 21:01:30 2024 by rpki-client on console-ams.rpki-client.org