Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/QBjORMrTmD8C_jJgcaEGr2jiJyU.roa
File: QBjORMrTmD8C_jJgcaEGr2jiJyU.roa (raw, json)
Hash identifier: 0U2lrRVHaSwbdHp9fYs4lD4F1oKZ0WQoe2vGwiFfFho=
Subject key identifier: 40:18:CE:44:CA:D3:98:3F:02:FE:32:60:71:A1:06:AF:68:E2:27:25
Certificate issuer: /CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Certificate serial: 018CC64B27E1433F42A670589B9C10EF1286
Authority key identifier: 08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/QBjORMrTmD8C_jJgcaEGr2jiJyU.roa
Signing time: Mon 01 Jan 2024 18:31:03 +0000
ROA not before: Mon 01 Jan 2024 18:31:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44285
IP address blocks: 45.140.224.0/22 maxlen: 22
45.87.4.0/22 maxlen: 22
185.18.213.0/24 maxlen: 24
185.18.212.0/24 maxlen: 24
185.18.212.0/22 maxlen: 22
185.18.215.0/24 maxlen: 24
185.18.214.0/24 maxlen: 24
37.32.32.0/22 maxlen: 22
37.32.32.0/21 maxlen: 21
37.32.36.0/22 maxlen: 22
37.32.33.0/24 maxlen: 24
37.32.32.0/24 maxlen: 24
37.32.38.0/24 maxlen: 24
37.32.34.0/24 maxlen: 24
37.32.37.0/24 maxlen: 24
37.32.36.0/24 maxlen: 24
37.32.35.0/24 maxlen: 24
37.32.39.0/24 maxlen: 24
185.51.201.0/24 maxlen: 24
185.51.200.0/24 maxlen: 24
185.51.203.0/24 maxlen: 24
185.51.202.0/24 maxlen: 24
86.57.120.0/23 maxlen: 23
86.57.122.0/23 maxlen: 23
86.57.96.0/20 maxlen: 20
86.57.112.0/23 maxlen: 23
86.57.114.0/23 maxlen: 23
86.57.116.0/22 maxlen: 22
217.172.124.0/23 maxlen: 23
217.172.120.0/21 maxlen: 24
217.172.126.0/23 maxlen: 23
217.172.127.0/24 maxlen: 24
78.110.120.0/22 maxlen: 24
85.198.24.0/22 maxlen: 24
45.9.253.0/24 maxlen: 24
45.9.252.0/24 maxlen: 24
45.9.254.0/24 maxlen: 24
37.75.244.0/22 maxlen: 22
37.75.246.0/24 maxlen: 24
37.75.245.0/24 maxlen: 24
37.75.244.0/24 maxlen: 24
37.75.243.0/24 maxlen: 24
37.75.247.0/24 maxlen: 24
195.110.38.0/24 maxlen: 24
195.110.39.0/24 maxlen: 24
195.110.38.0/23 maxlen: 23
185.182.250.0/23 maxlen: 23
185.182.248.0/22 maxlen: 22
185.182.248.0/23 maxlen: 23
185.182.250.0/24 maxlen: 24
185.182.251.0/24 maxlen: 24
91.236.169.0/24 maxlen: 24
91.236.168.0/24 maxlen: 24
91.236.168.0/23 maxlen: 23
46.28.72.0/21 maxlen: 24
46.28.74.0/24 maxlen: 24
46.28.73.0/24 maxlen: 24
46.28.72.0/24 maxlen: 24
185.121.128.0/24 maxlen: 24
185.121.131.0/24 maxlen: 24
185.121.130.0/24 maxlen: 24
185.121.129.0/24 maxlen: 24
185.121.128.0/22 maxlen: 24
88.135.38.0/24 maxlen: 24
88.135.37.0/24 maxlen: 24
185.141.132.0/24 maxlen: 24
185.141.134.0/24 maxlen: 24
185.141.133.0/24 maxlen: 24
185.141.135.0/24 maxlen: 24
84.47.224.0/22 maxlen: 22
84.47.224.0/21 maxlen: 21
84.47.226.0/24 maxlen: 24
84.47.225.0/24 maxlen: 24
84.47.224.0/24 maxlen: 24
84.47.231.0/24 maxlen: 24
84.47.228.0/22 maxlen: 22
188.209.152.0/23 maxlen: 23
84.47.227.0/24 maxlen: 24
84.47.230.0/24 maxlen: 24
84.47.229.0/24 maxlen: 24
84.47.228.0/24 maxlen: 24
88.135.39.0/24 maxlen: 24
185.128.138.0/24 maxlen: 24
185.128.137.0/24 maxlen: 24
185.128.136.0/24 maxlen: 24
185.128.139.0/24 maxlen: 24
2a02:828::/32 maxlen: 32
2a02:829::/32 maxlen: 32
2a02:82b::/32 maxlen: 32
2a02:82f::/32 maxlen: 32
2a02:828:1::/48 maxlen: 48
2a02:82a::/32 maxlen: 32
2a02:828::/29 maxlen: 29
2a02:828::/64 maxlen: 64
2a02:828::/48 maxlen: 48
2a02:82e::/32 maxlen: 32
2a02:82c::/32 maxlen: 32
2a02:82d::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 03 Apr 2024 12:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:27:e1:43:3f:42:a6:70:58:9b:9c:10:ef:12:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Validity
Not Before: Jan 1 18:31:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4018ce44cad3983f02fe326071a106af68e22725
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2e:b8:06:0d:96:cc:0d:c1:d4:df:fb:6d:42:
78:04:33:10:2a:2c:af:33:b2:60:4a:55:67:6e:8a:
0a:96:2e:85:51:f8:dc:5c:fe:a5:2c:98:9a:75:c4:
45:08:b0:50:ef:f1:de:16:fe:e8:ef:13:eb:35:83:
dd:0f:ff:02:f0:9e:a3:83:7f:8b:cc:a3:f7:94:0a:
a9:15:c8:9e:48:13:38:95:15:e2:0e:9c:f2:a0:be:
08:0a:7a:0f:7d:06:ed:2f:8a:16:2f:02:4d:4a:e9:
2f:b7:61:80:e7:3c:3c:37:9a:c8:d5:1a:57:b7:11:
27:0d:1d:16:78:c2:fc:d6:59:4b:04:f6:ac:f3:83:
06:c1:bf:32:d3:99:3e:e2:da:31:7c:ee:c5:f3:46:
8f:90:ab:bb:72:3d:a2:1b:f9:70:85:84:0f:1b:4d:
c3:07:85:67:59:19:c4:5a:0a:3d:fe:39:64:78:14:
e3:ed:cd:91:04:62:74:1a:76:cb:94:c8:e3:81:83:
1b:99:40:8f:44:0f:5f:ec:0d:21:6b:77:29:00:69:
2e:d3:3d:fe:d2:44:07:b6:41:e0:0f:96:68:16:a4:
56:24:6f:ce:b1:17:e8:31:6d:6d:2a:b1:8d:7a:7d:
b5:ba:39:bb:98:39:4d:37:e3:2b:43:cb:5c:90:51:
81:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:18:CE:44:CA:D3:98:3F:02:FE:32:60:71:A1:06:AF:68:E2:27:25
X509v3 Authority Key Identifier:
keyid:08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/QBjORMrTmD8C_jJgcaEGr2jiJyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/CBt6IuUc-5z4QgXkRJmYrVXY8GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.32.0/21
37.75.243.0-37.75.247.255
45.9.252.0-45.9.254.255
45.87.4.0/22
45.140.224.0/22
46.28.72.0/21
78.110.120.0/22
84.47.224.0/21
85.198.24.0/22
86.57.96.0-86.57.123.255
88.135.37.0-88.135.39.255
91.236.168.0/23
185.18.212.0/22
185.51.200.0/22
185.121.128.0/22
185.128.136.0/22
185.141.132.0/22
185.182.248.0/22
188.209.152.0/23
195.110.38.0/23
217.172.120.0/21
IPv6:
2a02:828::/29
Signature Algorithm: sha256WithRSAEncryption
09:b1:c3:57:ff:62:48:e1:2d:50:aa:e2:bb:2f:40:78:fb:87:
6e:f7:24:0c:40:ef:63:2a:be:3d:84:7a:d8:f6:72:1d:8d:d6:
d1:c4:a9:df:76:b5:e5:c1:0b:c6:01:71:28:30:5e:2e:b0:b1:
f5:77:ca:6c:20:84:0d:0a:84:9e:c8:77:7b:96:5d:b7:29:c7:
e5:28:ea:a6:38:31:77:05:73:de:1a:40:53:29:9c:33:f0:63:
dd:0f:45:da:e2:86:72:15:97:c7:da:0a:d3:e2:57:88:c7:ee:
66:5f:a7:8a:43:a8:1f:fe:ca:06:ec:61:d6:4d:6e:60:43:5e:
ca:ac:77:bf:f6:9d:4d:d9:ce:9e:fd:7e:01:44:dd:88:50:a1:
48:98:f1:52:70:d8:99:79:55:8a:f1:00:00:28:24:8b:13:27:
bf:ca:b0:a6:ac:b1:fd:d6:11:5f:3f:98:bf:06:0b:53:6e:80:
1e:db:a5:0c:68:8d:4c:3d:ce:18:c6:e1:bb:e7:9f:a3:49:3d:
f7:0c:f8:4a:10:93:7d:5c:5b:a3:87:fe:8f:4b:d2:91:3d:87:
83:48:03:5f:24:e9:c1:1d:b2:a8:07:33:93:ed:47:75:ec:56:
e1:bf:1e:dc:c9:2d:49:20:7d:0f:15:47:16:f7:e6:78:ed:08:
86:04:13:2c
-----BEGIN CERTIFICATE-----
MIIFqTCCBJGgAwIBAgISAYzGSyfhQz9CpnBYm5wQ7xKGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4MWI3YTIyZTUxY2ZiOWNmODQyMDVlNDQ0OTk5OGFkNTVk
OGYwNjUwHhcNMjQwMTAxMTgzMTAzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MDE4Y2U0NGNhZDM5ODNmMDJmZTMyNjA3MWExMDZhZjY4ZTIyNzI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtS64Bg2WzA3B1N/7bUJ4BDMQKiyv
M7JgSlVnbooKli6FUfjcXP6lLJiadcRFCLBQ7/HeFv7o7xPrNYPdD/8C8J6jg3+L
zKP3lAqpFcieSBM4lRXiDpzyoL4ICnoPfQbtL4oWLwJNSukvt2GA5zw8N5rI1RpX
txEnDR0WeML81llLBPas84MGwb8y05k+4toxfO7F80aPkKu7cj2iG/lwhYQPG03D
B4VnWRnEWgo9/jlkeBTj7c2RBGJ0GnbLlMjjgYMbmUCPRA9f7A0ha3cpAGku0z3+
0kQHtkHgD5ZoFqRWJG/OsRfoMW1tKrGNen21ujm7mDlNN+MrQ8tckFGBhwIDAQAB
o4ICtTCCArEwHQYDVR0OBBYEFEAYzkTK05g/Av4yYHGhBq9o4iclMB8GA1UdIwQY
MBaAFAgbeiLlHPuc+EIF5ESZmK1V2PBlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0J0Nkl1VWMtNXo0UWdYa1JKbVlyVlhZOEdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9jNTE1YzktZGYwOC00MjZjLTgwZTYt
MDM2NzI2OGZmODcxLzEvUUJqT1JNclRtRDhDX2pKZ2NhRUdyMmppSnlVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy9jNTE1YzktZGYwOC00MjZjLTgwZTYtMDM2NzI2OGZmODcx
LzEvQ0J0Nkl1VWMtNXo0UWdYa1JKbVlyVlhZOEdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHKBggrBgEFBQcBBwEB/wSBujCBtzCBpQQCAAEwgZ4DBAMl
ICAwDAMEACVL8wMEAyVL8DAMAwQCLQn8AwQALQn+AwQCLVcEAwQCLYzgAwQDLhxI
AwQCTm54AwQDVC/gAwQCVcYYMAwDBAVWOWADBAJWOXgwDAMEAFiHJQMEA1iHIAME
AVvsqAMEArkS1AMEArkzyAMEArl5gAMEArmAiAMEArmNhAMEArm2+AMEAbzRmAME
AcNuJgMEA9mseDANBAIAAjAHAwUDKgIIKDANBgkqhkiG9w0BAQsFAAOCAQEACbHD
V/9iSOEtUKriuy9AePuHbvckDEDvYyq+PYR62PZyHY3W0cSp33a15cELxgFxKDBe
LrCx9XfKbCCEDQqEnsh3e5ZdtynH5SjqpjgxdwVz3hpAUymcM/Bj3Q9F2uKGchWX
x9oK0+JXiMfuZl+nikOoH/7KBuxh1k1uYENeyqx3v/adTdnOnv1+AUTdiFChSJjx
UnDYmXlVivEAACgkixMnv8qwpqyx/dYRXz+YvwYLU26AHtulDGiNTD3OGMbhu+ef
o0k99wz4ShCTfVxbo4f+j0vSkT2Hg0gDXyTpwR2yqAczk+1HdexW4b8e3MktSSB9
DxVHFvfmeO0IhgQTLA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:49 2024 by rpki-client on console-ams.rpki-client.org