Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/qOgQscYYopuxhMDBWSU2drTcETk.roa
File: qOgQscYYopuxhMDBWSU2drTcETk.roa (raw, json)
Hash identifier: uHXsStc3o7/fiBtIrfO0Avm2Pnmdsh9J2urqM6Gc3IQ=
Subject key identifier: A8:E8:10:B1:C6:18:A2:9B:B1:84:C0:C1:59:25:36:76:B4:DC:11:39
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 018B806AAB039E401E37F0B336EEB7E59697
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/qOgQscYYopuxhMDBWSU2drTcETk.roa
Signing time: Mon 30 Oct 2023 11:49:15 +0000
ROA not before: Mon 30 Oct 2023 11:49:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31083
IP address blocks: 79.124.4.0/24 maxlen: 24
79.124.5.0/24 maxlen: 24
79.124.6.0/24 maxlen: 24
217.174.152.0/23 maxlen: 24
217.174.151.0/24 maxlen: 24
217.174.148.0/23 maxlen: 24
217.174.146.0/23 maxlen: 24
79.124.17.0/24 maxlen: 24
79.124.16.0/24 maxlen: 24
79.124.14.0/24 maxlen: 24
79.124.13.0/24 maxlen: 24
217.174.155.0/24 maxlen: 24
79.124.22.0/24 maxlen: 24
79.124.31.0/24 maxlen: 24
79.124.29.0/24 maxlen: 24
79.124.44.0/24 maxlen: 24
79.124.52.0/24 maxlen: 24
79.124.64.0/24 maxlen: 24
79.124.63.0/24 maxlen: 24
79.124.66.0/24 maxlen: 24
79.124.67.0/24 maxlen: 24
79.124.65.0/24 maxlen: 24
79.124.76.0/24 maxlen: 24
79.124.75.0/24 maxlen: 24
79.124.84.0/24 maxlen: 24
79.124.90.0/24 maxlen: 24
77.76.14.0/24 maxlen: 24
94.72.136.0/22 maxlen: 24
185.197.152.0/22 maxlen: 24
82.118.243.0/24 maxlen: 24
178.132.87.0/24 maxlen: 24
178.132.86.0/24 maxlen: 24
82.118.229.0/24 maxlen: 24
78.128.62.0/24 maxlen: 24
78.128.63.0/24 maxlen: 24
78.128.60.0/24 maxlen: 24
5.104.175.0/24 maxlen: 24
78.128.78.0/24 maxlen: 24
78.128.76.0/24 maxlen: 24
78.128.77.0/24 maxlen: 24
78.128.81.0/24 maxlen: 24
78.128.80.0/24 maxlen: 24
91.148.148.0/24 maxlen: 24
78.128.1.0/24 maxlen: 24
78.128.8.0/24 maxlen: 24
78.128.9.0/24 maxlen: 24
78.128.7.0/24 maxlen: 24
78.128.6.0/24 maxlen: 24
78.128.43.0/24 maxlen: 24
78.128.42.0/24 maxlen: 24
185.232.156.0/23 maxlen: 24
130.185.232.0/24 maxlen: 24
78.142.32.0/24 maxlen: 24
78.142.51.0/24 maxlen: 24
78.142.47.0/24 maxlen: 24
78.142.58.0/24 maxlen: 24
78.142.56.0/24 maxlen: 24
78.142.57.0/24 maxlen: 24
78.142.63.0/24 maxlen: 24
78.142.62.0/24 maxlen: 24
78.142.59.0/24 maxlen: 24
78.128.118.0/24 maxlen: 24
91.148.168.0/24 maxlen: 24
91.148.167.0/24 maxlen: 24
78.128.126.0/24 maxlen: 24
78.142.6.0/24 maxlen: 24
130.185.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 31 Oct 2023 15:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:80:6a:ab:03:9e:40:1e:37:f0:b3:36:ee:b7:e5:96:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Oct 30 11:49:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8e810b1c618a29bb184c0c159253676b4dc1139
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:bc:36:5b:00:60:60:79:47:ef:23:89:09:89:
c9:f7:b5:5c:50:9a:a7:11:98:4e:e6:ed:6e:ed:5d:
b9:bb:4f:cd:b0:a3:8d:17:e6:ab:5b:fa:d3:81:44:
16:94:48:33:2e:ec:7a:89:e8:b0:6f:19:90:cb:34:
95:a3:41:44:ef:75:06:9b:f0:cf:45:6c:24:db:9a:
96:3b:05:81:a9:10:83:e2:98:fb:57:6d:09:45:31:
37:a5:d3:0c:73:e9:a6:89:04:6f:8c:a6:38:ef:52:
34:d6:e0:e3:77:c5:2d:ca:97:09:4d:ff:4b:b1:c9:
cc:68:fa:65:ab:5d:d1:48:18:db:33:93:13:78:8b:
19:f8:7c:96:1c:cd:19:b7:ba:8d:44:c2:86:b9:9d:
a5:82:22:32:cf:fb:a2:6a:73:95:2e:ca:aa:3b:c1:
7e:93:ad:42:e4:1d:14:76:21:11:c3:5e:7b:01:7f:
e7:60:9c:90:e6:ec:5f:00:a9:45:f7:15:98:48:d8:
82:14:1f:3c:b2:77:df:c6:b7:d2:dc:67:41:23:66:
57:47:07:03:93:9f:2c:2b:fc:b1:14:5d:3f:78:f5:
29:2c:e0:7f:75:53:4d:1c:63:23:78:d6:06:80:99:
16:b4:91:e8:a2:75:86:ac:8e:fc:5b:ee:11:c4:76:
3a:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:E8:10:B1:C6:18:A2:9B:B1:84:C0:C1:59:25:36:76:B4:DC:11:39
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/qOgQscYYopuxhMDBWSU2drTcETk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.175.0/24
77.76.14.0/24
78.128.1.0/24
78.128.6.0-78.128.9.255
78.128.42.0/23
78.128.60.0/24
78.128.62.0/23
78.128.76.0-78.128.78.255
78.128.80.0/23
78.128.118.0/24
78.128.126.0/24
78.142.6.0/24
78.142.32.0/24
78.142.47.0/24
78.142.51.0/24
78.142.56.0/22
78.142.62.0/23
79.124.4.0-79.124.6.255
79.124.13.0-79.124.14.255
79.124.16.0/23
79.124.22.0/24
79.124.29.0/24
79.124.31.0/24
79.124.44.0/24
79.124.52.0/24
79.124.63.0-79.124.67.255
79.124.75.0-79.124.76.255
79.124.84.0/24
79.124.90.0/24
82.118.229.0/24
82.118.243.0/24
91.148.148.0/24
91.148.167.0-91.148.168.255
94.72.136.0/22
130.185.225.0/24
130.185.232.0/24
178.132.86.0/23
185.197.152.0/22
185.232.156.0/23
217.174.146.0-217.174.149.255
217.174.151.0-217.174.153.255
217.174.155.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:8b:56:92:c0:31:75:67:b0:00:7f:a3:9e:e4:e0:d1:87:89:
23:44:f1:68:51:c7:dd:5a:70:94:4c:8c:61:14:16:ed:84:89:
f7:39:6f:17:9f:5a:10:5f:24:16:83:84:ad:de:25:62:27:f0:
66:83:e6:7f:30:a1:c6:2d:50:36:f1:74:db:ba:98:ec:45:7d:
c5:7f:0e:02:b2:05:3f:91:29:90:ca:bd:30:56:04:4e:f1:78:
d5:c0:a1:f9:83:66:2e:ff:69:18:0a:19:9b:2c:6f:b1:83:83:
dc:c0:a5:9b:7d:4f:0d:7c:5b:b4:d8:a9:0c:08:56:50:93:a4:
d0:9c:34:82:e8:fa:bb:53:1c:07:65:bb:d7:8a:a0:68:96:d2:
77:6c:5c:4b:28:3f:26:94:03:b0:ad:50:01:bd:0b:3d:07:9f:
14:39:4d:c2:74:75:03:87:4b:3e:9d:a7:0b:89:1e:bc:fa:96:
bd:8b:a7:e0:d2:08:07:4c:cb:c7:de:31:c4:98:dd:76:95:e6:
d3:ef:2f:fc:99:f9:8f:25:35:d8:24:76:f5:52:85:1f:bd:13:
a1:9a:7e:61:97:0a:da:c1:12:53:d4:40:c3:3d:d6:19:34:8d:
d2:f3:40:5f:5c:a8:fd:8d:5d:54:72:3e:b3:f1:70:4f:bb:b2:
7d:1b:c1:3a
-----BEGIN CERTIFICATE-----
MIIGRTCCBS2gAwIBAgISAYuAaqsDnkAeN/CzNu635ZaXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzNWVhYzY0ZWE0ODAyZTY4MjQ2ODZmN2MwZDIwMWYyYzg1
Y2IyYWEwHhcNMjMxMDMwMTE0OTE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhOGU4MTBiMWM2MThhMjliYjE4NGMwYzE1OTI1MzY3NmI0ZGMxMTM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAibw2WwBgYHlH7yOJCYnJ97VcUJqn
EZhO5u1u7V25u0/NsKONF+arW/rTgUQWlEgzLux6ieiwbxmQyzSVo0FE73UGm/DP
RWwk25qWOwWBqRCD4pj7V20JRTE3pdMMc+mmiQRvjKY471I01uDjd8UtypcJTf9L
scnMaPplq13RSBjbM5MTeIsZ+HyWHM0Zt7qNRMKGuZ2lgiIyz/uianOVLsqqO8F+
k61C5B0UdiERw157AX/nYJyQ5uxfAKlF9xWYSNiCFB88snffxrfS3GdBI2ZXRwcD
k58sK/yxFF0/ePUpLOB/dVNNHGMjeNYGgJkWtJHoonWGrI78W+4RxHY6JQIDAQAB
o4IDUTCCA00wHQYDVR0OBBYEFKjoELHGGKKbsYTAwVklNna03BE5MB8GA1UdIwQY
MBaAFMNerGTqSALmgkaG98DSAfLIXLKqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMt
ZGFjYjVmMzU2ZWEzLzEvcU9nUXNjWVlvcHV4aE1EQldTVTJkclRjRVRrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMtZGFjYjVmMzU2ZWEz
LzEvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBZQYIKwYBBQUHAQcBAf8EggFUMIIBUDCCAUwEAgABMIIB
RAMEAAVorwMEAE1MDgMEAE6AATAMAwQBToAGAwQBToAIAwQBToAqAwQAToA8AwQB
ToA+MAwDBAJOgEwDBABOgE4DBAFOgFADBABOgHYDBABOgH4DBABOjgYDBABOjiAD
BABOji8DBABOjjMDBAJOjjgDBAFOjj4wDAMEAk98BAMEAE98BjAMAwQAT3wNAwQA
T3wOAwQBT3wQAwQAT3wWAwQAT3wdAwQAT3wfAwQAT3wsAwQAT3w0MAwDBABPfD8D
BAJPfEAwDAMEAE98SwMEAE98TAMEAE98VAMEAE98WgMEAFJ25QMEAFJ28wMEAFuU
lDAMAwQAW5SnAwQAW5SoAwQCXkiIAwQAgrnhAwQAgrnoAwQBsoRWAwQCucWYAwQB
ueicMAwDBAHZrpIDBAHZrpQwDAMEANmulwMEAdmumAMEANmumzANBgkqhkiG9w0B
AQsFAAOCAQEAyotWksAxdWewAH+jnuTg0YeJI0TxaFHH3VpwlEyMYRQW7YSJ9zlv
F59aEF8kFoOErd4lYifwZoPmfzChxi1QNvF027qY7EV9xX8OArIFP5EpkMq9MFYE
TvF41cCh+YNmLv9pGAoZmyxvsYOD3MClm31PDXxbtNipDAhWUJOk0Jw0guj6u1Mc
B2W714qgaJbSd2xcSyg/JpQDsK1QAb0LPQefFDlNwnR1A4dLPp2nC4kevPqWvYun
4NIIB0zLx94xxJjddpXm0+8v/Jn5jyU12CR29VKFH70ToZp+YZcK2sESU9RAwz3W
GTSN0vNAX1yo/Y1dVHI+s/FwT7uyfRvBOg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:12 2024 by rpki-client on console-ams.rpki-client.org