Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/yS0jXDdKeNioCRprIqqSE1oNtcs.roa
File: yS0jXDdKeNioCRprIqqSE1oNtcs.roa (raw, json)
Hash identifier: MBgbprA/dXLLOhEIOZ0MleNyy0FOOkxBezJ0rmPvf7c=
Subject key identifier: C9:2D:23:5C:37:4A:78:D8:A8:09:1A:6B:22:AA:92:13:5A:0D:B5:CB
Certificate issuer: /CN=07a6a589ee848a8052238191b98035e775122725
Certificate serial: 018E60D880EB962020465A1722D1856EAC73
Authority key identifier: 07:A6:A5:89:EE:84:8A:80:52:23:81:91:B9:80:35:E7:75:12:27:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6alie6EioBSI4GRuYA153USJyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/yS0jXDdKeNioCRprIqqSE1oNtcs.roa
Signing time: Thu 21 Mar 2024 11:49:45 +0000
ROA not before: Thu 21 Mar 2024 11:49:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210218
IP address blocks: 2.58.136.0/23 maxlen: 23
2.58.138.0/23 maxlen: 23
2.59.248.0/22 maxlen: 22
31.13.194.0/24 maxlen: 24
31.13.249.0/24 maxlen: 24
31.13.250.0/23 maxlen: 23
31.13.252.0/22 maxlen: 22
45.8.74.0/23 maxlen: 23
45.12.248.0/22 maxlen: 22
45.139.100.0/22 maxlen: 22
45.149.232.0/24 maxlen: 24
77.75.56.0/23 maxlen: 23
77.75.58.0/23 maxlen: 23
78.40.160.0/22 maxlen: 22
78.40.164.0/22 maxlen: 22
80.249.124.0/22 maxlen: 22
87.120.46.0/23 maxlen: 23
87.120.63.0/24 maxlen: 24
87.120.85.0/24 maxlen: 24
87.120.96.0/23 maxlen: 23
87.120.111.0/24 maxlen: 24
87.120.177.0/24 maxlen: 24
87.120.218.0/24 maxlen: 24
87.120.224.0/24 maxlen: 24
87.120.226.0/24 maxlen: 24
87.120.232.0/22 maxlen: 22
87.121.19.0/24 maxlen: 24
87.121.36.0/23 maxlen: 23
87.121.66.0/23 maxlen: 23
87.121.68.0/24 maxlen: 24
87.121.116.0/24 maxlen: 24
87.121.148.0/23 maxlen: 23
91.92.3.0/24 maxlen: 24
91.197.196.0/22 maxlen: 22
91.243.184.0/22 maxlen: 22
93.123.68.0/22 maxlen: 22
93.123.86.0/23 maxlen: 23
93.123.108.0/24 maxlen: 24
94.154.174.0/23 maxlen: 23
94.156.16.0/22 maxlen: 22
94.156.32.0/24 maxlen: 24
94.156.48.0/21 maxlen: 21
94.156.95.0/24 maxlen: 24
94.156.108.0/22 maxlen: 22
94.156.168.0/23 maxlen: 23
94.156.182.0/23 maxlen: 23
94.156.184.0/24 maxlen: 24
94.156.187.0/24 maxlen: 24
94.156.192.0/23 maxlen: 23
94.156.234.0/23 maxlen: 23
94.156.240.0/22 maxlen: 22
94.156.246.0/23 maxlen: 23
94.240.56.0/22 maxlen: 22
95.214.124.0/23 maxlen: 23
95.214.126.0/23 maxlen: 23
141.98.0.0/24 maxlen: 24
178.175.184.0/21 maxlen: 21
178.175.184.0/22 maxlen: 22
185.171.148.0/22 maxlen: 22
193.19.200.0/22 maxlen: 22
193.36.232.0/22 maxlen: 22
193.46.172.0/22 maxlen: 22
193.56.16.0/22 maxlen: 22
193.56.248.0/22 maxlen: 22
193.58.184.0/22 maxlen: 22
193.207.0.0/24 maxlen: 24
193.207.16.0/21 maxlen: 21
194.76.204.0/22 maxlen: 22
194.147.8.0/22 maxlen: 22
195.225.120.0/22 maxlen: 22
212.22.128.0/19 maxlen: 19
212.24.0.0/19 maxlen: 19
212.73.135.0/24 maxlen: 24
2a09:e6c0::/29 maxlen: 29
2a09:e6c0::/48 maxlen: 48
2a09:e6c7:f800::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 16 Apr 2024 10:59:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:60:d8:80:eb:96:20:20:46:5a:17:22:d1:85:6e:ac:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a6a589ee848a8052238191b98035e775122725
Validity
Not Before: Mar 21 11:49:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c92d235c374a78d8a8091a6b22aa92135a0db5cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f6:b7:2f:c6:19:ac:a4:bc:0c:9e:2d:74:2e:
92:85:f0:eb:a9:4d:cb:cc:9d:4b:0c:e1:48:6b:7d:
7e:b3:30:c6:7e:d9:3b:36:64:9c:45:62:57:c6:fe:
1e:75:27:0e:e9:62:5a:f3:5d:4c:7d:f4:c5:a8:a0:
6a:07:14:57:d7:60:85:73:4b:92:6f:6d:9c:4e:6c:
ad:ed:e1:5d:13:cd:08:64:11:83:77:a2:e1:84:ae:
19:49:8a:6d:fc:8c:41:03:80:e6:1f:c5:e5:49:99:
e4:26:e4:60:6d:b2:e5:b7:b1:83:77:00:60:7c:1e:
52:bd:f0:54:56:97:a4:fa:5b:3c:5a:41:25:87:fd:
5c:6d:81:87:cd:fb:1b:94:66:c1:f3:09:ff:47:68:
17:f4:04:2c:ba:46:d8:50:be:c5:17:43:09:0c:79:
60:40:2a:b1:77:40:06:22:65:4d:3a:bd:71:57:d8:
e8:d9:6f:58:73:f2:b5:3f:79:ad:03:37:18:b3:6b:
3d:fc:07:bc:26:a8:04:f6:1b:49:d7:2d:fd:47:68:
62:72:29:7c:97:c5:57:43:fd:b4:5b:08:07:2e:b7:
63:72:85:b1:a3:ec:57:59:d4:12:f8:ef:58:65:4a:
af:58:fc:ed:22:50:3b:48:53:11:ad:c8:21:30:e2:
d1:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:2D:23:5C:37:4A:78:D8:A8:09:1A:6B:22:AA:92:13:5A:0D:B5:CB
X509v3 Authority Key Identifier:
keyid:07:A6:A5:89:EE:84:8A:80:52:23:81:91:B9:80:35:E7:75:12:27:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6alie6EioBSI4GRuYA153USJyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/yS0jXDdKeNioCRprIqqSE1oNtcs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/B6alie6EioBSI4GRuYA153USJyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.136.0/22
2.59.248.0/22
31.13.194.0/24
31.13.249.0-31.13.255.255
45.8.74.0/23
45.12.248.0/22
45.139.100.0/22
45.149.232.0/24
77.75.56.0/22
78.40.160.0/21
80.249.124.0/22
87.120.46.0/23
87.120.63.0/24
87.120.85.0/24
87.120.96.0/23
87.120.111.0/24
87.120.177.0/24
87.120.218.0/24
87.120.224.0/24
87.120.226.0/24
87.120.232.0/22
87.121.19.0/24
87.121.36.0/23
87.121.66.0-87.121.68.255
87.121.116.0/24
87.121.148.0/23
91.92.3.0/24
91.197.196.0/22
91.243.184.0/22
93.123.68.0/22
93.123.86.0/23
93.123.108.0/24
94.154.174.0/23
94.156.16.0/22
94.156.32.0/24
94.156.48.0/21
94.156.95.0/24
94.156.108.0/22
94.156.168.0/23
94.156.182.0-94.156.184.255
94.156.187.0/24
94.156.192.0/23
94.156.234.0/23
94.156.240.0/22
94.156.246.0/23
94.240.56.0/22
95.214.124.0/22
141.98.0.0/24
178.175.184.0/21
185.171.148.0/22
193.19.200.0/22
193.36.232.0/22
193.46.172.0/22
193.56.16.0/22
193.56.248.0/22
193.58.184.0/22
193.207.0.0/24
193.207.16.0/21
194.76.204.0/22
194.147.8.0/22
195.225.120.0/22
212.22.128.0/19
212.24.0.0/19
212.73.135.0/24
IPv6:
2a09:e6c0::/29
Signature Algorithm: sha256WithRSAEncryption
1b:07:9f:af:59:1e:7c:e5:b6:70:b4:4d:82:be:d7:9c:da:10:
bf:b4:0f:8e:bd:a8:6a:46:d7:09:d4:5a:7e:a0:35:9d:e3:4a:
49:33:53:e6:20:52:d7:4d:05:92:4c:37:78:35:cd:5b:fb:08:
5b:51:ff:54:52:90:c7:b1:fe:ca:f8:a0:b1:f0:04:36:e7:c3:
1f:80:8f:98:82:bc:bd:61:25:f4:4e:78:77:8e:35:e7:0f:f3:
fe:ef:e3:f2:de:a3:5d:f7:81:4a:9f:bb:e8:61:43:f9:6a:e1:
3a:db:04:4c:5d:ef:ba:ee:ae:5b:fa:6e:69:6a:6e:c1:dc:7d:
02:77:6b:ee:d1:f2:ec:2c:b0:67:36:72:eb:21:af:00:89:98:
d4:df:e1:f4:8e:8e:49:8e:58:7e:47:02:5d:5e:4f:c9:28:80:
4f:cd:8e:80:1d:1e:37:1a:1b:66:16:c9:16:49:99:c3:9d:bc:
49:9e:66:67:c9:d9:a0:47:23:86:59:e1:ac:80:f4:f3:2b:17:
a0:eb:38:11:36:28:98:02:06:1c:ff:17:dc:30:55:b5:98:ad:
34:f5:b4:7d:44:36:87:0f:34:96:4f:a8:d2:9e:b0:83:95:74:
69:09:54:5e:ad:9f:62:e2:b6:e3:11:81:bf:9c:2a:1a:3f:93:
1b:5d:64:88
-----BEGIN CERTIFICATE-----
MIIGpzCCBY+gAwIBAgISAY5g2IDrliAgRloXItGFbqxzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3YTZhNTg5ZWU4NDhhODA1MjIzODE5MWI5ODAzNWU3NzUx
MjI3MjUwHhcNMjQwMzIxMTE0OTQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjOTJkMjM1YzM3NGE3OGQ4YTgwOTFhNmIyMmFhOTIxMzVhMGRiNWNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArfa3L8YZrKS8DJ4tdC6ShfDrqU3L
zJ1LDOFIa31+szDGftk7NmScRWJXxv4edScO6WJa811MffTFqKBqBxRX12CFc0uS
b22cTmyt7eFdE80IZBGDd6LhhK4ZSYpt/IxBA4DmH8XlSZnkJuRgbbLlt7GDdwBg
fB5SvfBUVpek+ls8WkElh/1cbYGHzfsblGbB8wn/R2gX9AQsukbYUL7FF0MJDHlg
QCqxd0AGImVNOr1xV9jo2W9Yc/K1P3mtAzcYs2s9/Ae8JqgE9htJ1y39R2hicil8
l8VXQ/20WwgHLrdjcoWxo+xXWdQS+O9YZUqvWPztIlA7SFMRrcghMOLRDQIDAQAB
o4IDszCCA68wHQYDVR0OBBYEFMktI1w3SnjYqAkaayKqkhNaDbXLMB8GA1UdIwQY
MBaAFAempYnuhIqAUiOBkbmANed1EiclMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQjZhbGllNkVpb0JTSTRHUnVZQTE1M1VTSnlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC83ZmFmNWUtNzQzNS00OWZlLWFjZDct
MjBmYmM5MDY0OTRiLzEveVMwalhEZEtlTmlvQ1JwcklxcVNFMW9OdGNzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC83ZmFmNWUtNzQzNS00OWZlLWFjZDctMjBmYmM5MDY0OTRi
LzEvQjZhbGllNkVpb0JTSTRHUnVZQTE1M1VTSnlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBxwYIKwYBBQUHAQcBAf8EggG2MIIBsjCCAZ8EAgABMIIB
lwMEAgI6iAMEAgI7+AMEAB8NwjALAwQAHw35AwMBHwwDBAEtCEoDBAItDPgDBAIt
i2QDBAAtlegDBAJNSzgDBANOKKADBAJQ+XwDBAFXeC4DBABXeD8DBABXeFUDBAFX
eGADBABXeG8DBABXeLEDBABXeNoDBABXeOADBABXeOIDBAJXeOgDBABXeRMDBAFX
eSQwDAMEAVd5QgMEAFd5RAMEAFd5dAMEAVd5lAMEAFtcAwMEAlvFxAMEAlvzuAME
Al17RAMEAV17VgMEAF17bAMEAV6argMEAl6cEAMEAF6cIAMEA16cMAMEAF6cXwME
Al6cbAMEAV6cqDAMAwQBXpy2AwQAXpy4AwQAXpy7AwQBXpzAAwQBXpzqAwQCXpzw
AwQBXpz2AwQCXvA4AwQCX9Z8AwQAjWIAAwQDsq+4AwQCuauUAwQCwRPIAwQCwSTo
AwQCwS6sAwQCwTgQAwQCwTj4AwQCwTq4AwQAwc8AAwQDwc8QAwQCwkzMAwQCwpMI
AwQCw+F4AwQF1BaAAwQF1BgAAwQA1EmHMA0EAgACMAcDBQMqCebAMA0GCSqGSIb3
DQEBCwUAA4IBAQAbB5+vWR585bZwtE2Cvtec2hC/tA+OvahqRtcJ1Fp+oDWd40pJ
M1PmIFLXTQWSTDd4Nc1b+whbUf9UUpDHsf7K+KCx8AQ258MfgI+Ygry9YSX0Tnh3
jjXnD/P+7+Py3qNd94FKn7voYUP5auE62wRMXe+67q5b+m5pam7B3H0Cd2vu0fLs
LLBnNnLrIa8AiZjU3+H0jo5Jjlh+RwJdXk/JKIBPzY6AHR43GhtmFskWSZnDnbxJ
nmZnydmgRyOGWeGsgPTzKxeg6zgRNiiYAgYc/xfcMFW1mK009bR9RDaHDzSWT6jS
nrCDlXRpCVRerZ9i4rbjEYG/nCoaP5MbXWSI
-----END CERTIFICATE-----
Generated at Tue Apr 16 14:06:35 2024 by rpki-client on console-ams.rpki-client.org