Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/ABT4OjgZMJjU3QGFu1HG457yjSg.roa
File: ABT4OjgZMJjU3QGFu1HG457yjSg.roa (raw, json)
Hash identifier: UxufLx8+udwtJmGBYqPNWH44JKptr4ulfHhxvR4dJr4=
Subject key identifier: 00:14:F8:3A:38:19:30:98:D4:DD:01:85:BB:51:C6:E3:9E:F2:8D:28
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 018DA2DAC1AD4D020F2826D8D1D6EB3B1817
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/ABT4OjgZMJjU3QGFu1HG457yjSg.roa
Signing time: Tue 13 Feb 2024 14:24:21 +0000
ROA not before: Tue 13 Feb 2024 14:24:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44709
IP address blocks: 5.100.248.0/23 maxlen: 23
5.100.248.0/24 maxlen: 24
5.100.249.0/24 maxlen: 24
5.100.250.0/23 maxlen: 23
5.100.250.0/24 maxlen: 24
5.100.251.0/24 maxlen: 24
5.100.252.0/23 maxlen: 23
5.100.252.0/24 maxlen: 24
5.100.253.0/24 maxlen: 24
5.100.254.0/23 maxlen: 23
5.100.254.0/24 maxlen: 24
5.100.255.0/24 maxlen: 24
31.133.100.0/24 maxlen: 24
31.133.102.0/24 maxlen: 24
31.133.103.0/24 maxlen: 24
45.83.40.0/24 maxlen: 24
45.83.42.0/24 maxlen: 24
45.83.43.0/24 maxlen: 24
45.93.92.0/24 maxlen: 24
45.93.93.0/24 maxlen: 24
45.93.94.0/24 maxlen: 24
45.93.95.0/24 maxlen: 24
63.250.61.0/24 maxlen: 24
63.250.62.0/24 maxlen: 24
63.250.63.0/24 maxlen: 24
81.28.7.0/24 maxlen: 24
83.229.70.0/24 maxlen: 24
83.229.71.0/24 maxlen: 24
83.229.72.0/24 maxlen: 24
83.229.73.0/24 maxlen: 24
83.229.74.0/24 maxlen: 24
91.202.168.0/24 maxlen: 24
91.202.169.0/24 maxlen: 24
91.202.170.0/24 maxlen: 24
91.202.171.0/24 maxlen: 24
91.223.106.0/24 maxlen: 24
91.226.72.0/24 maxlen: 24
91.226.76.0/24 maxlen: 24
91.228.126.0/23 maxlen: 23
103.13.209.0/24 maxlen: 24
109.207.76.0/24 maxlen: 24
109.207.79.0/24 maxlen: 24
185.28.152.0/24 maxlen: 24
185.28.153.0/24 maxlen: 24
185.28.154.0/24 maxlen: 24
185.28.155.0/24 maxlen: 24
185.47.175.0/24 maxlen: 24
185.56.72.0/22 maxlen: 22
185.139.231.0/24 maxlen: 24
185.162.124.0/24 maxlen: 24
185.162.125.0/24 maxlen: 24
185.162.126.0/24 maxlen: 24
185.220.207.0/24 maxlen: 24
185.241.4.0/24 maxlen: 24
185.241.5.0/24 maxlen: 24
185.241.6.0/24 maxlen: 24
185.241.7.0/24 maxlen: 24
185.253.72.0/24 maxlen: 24
185.253.73.0/24 maxlen: 24
185.253.75.0/24 maxlen: 24
188.191.147.0/24 maxlen: 24
194.36.89.0/24 maxlen: 24
194.36.90.0/24 maxlen: 24
194.36.91.0/24 maxlen: 24
195.28.180.0/24 maxlen: 24
195.28.181.0/24 maxlen: 24
195.238.120.0/24 maxlen: 24
212.80.204.0/24 maxlen: 24
212.80.205.0/24 maxlen: 24
212.80.206.0/24 maxlen: 24
212.80.207.0/24 maxlen: 24
2a06:c5c0::/48 maxlen: 48
2a06:c5c0:700::/48 maxlen: 48
2a06:c5c0:900::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 27 Feb 2024 08:39:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a2:da:c1:ad:4d:02:0f:28:26:d8:d1:d6:eb:3b:18:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Feb 13 14:24:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0014f83a38193098d4dd0185bb51c6e39ef28d28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:6a:98:2d:a8:2d:c2:15:57:29:b6:07:d4:b7:
32:3a:26:27:80:fb:de:15:42:65:c0:fa:64:2f:5e:
69:ee:4c:50:55:54:f5:87:6a:a2:4f:b3:4a:10:af:
14:b6:48:b9:dd:39:5c:62:f6:3a:2d:1d:5c:76:4a:
63:a7:06:f5:5b:d7:f3:24:d2:73:49:e8:2c:59:4f:
1d:1b:82:5e:2f:af:b3:57:c2:d5:b7:c8:6b:7e:1a:
ba:1d:8c:11:d1:bd:df:39:fb:51:64:13:c1:1d:73:
02:78:fe:ab:43:80:5a:fb:87:2d:69:6a:51:4c:1e:
da:35:03:d7:f3:4e:1f:93:50:2b:07:83:08:d4:f7:
21:ca:70:a3:d5:16:c7:23:1b:33:f6:fe:3b:bc:8f:
13:8b:66:bd:c7:ad:9a:87:59:29:df:9d:83:e5:c3:
d8:b0:07:28:8f:f5:e4:c5:a1:3f:20:a9:c6:e4:1b:
1b:92:54:4c:bd:8b:b4:0e:b3:ac:1e:76:83:da:1f:
5d:61:0b:35:31:d1:5f:81:95:a9:71:f9:0f:6f:cc:
0b:ce:d4:68:48:4c:35:eb:cb:13:21:c9:a7:da:4e:
4c:9a:47:c5:2c:df:93:05:0c:52:f4:6d:d4:52:7f:
d4:e3:3a:e8:bb:2c:b0:29:d1:ee:8e:89:37:b5:b3:
b9:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:14:F8:3A:38:19:30:98:D4:DD:01:85:BB:51:C6:E3:9E:F2:8D:28
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/ABT4OjgZMJjU3QGFu1HG457yjSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.248.0/21
31.133.100.0/24
31.133.102.0/23
45.83.40.0/24
45.83.42.0/23
45.93.92.0/22
63.250.61.0-63.250.63.255
81.28.7.0/24
83.229.70.0-83.229.74.255
91.202.168.0/22
91.223.106.0/24
91.226.72.0/24
91.226.76.0/24
91.228.126.0/23
103.13.209.0/24
109.207.76.0/24
109.207.79.0/24
185.28.152.0/22
185.47.175.0/24
185.56.72.0/22
185.139.231.0/24
185.162.124.0-185.162.126.255
185.220.207.0/24
185.241.4.0/22
185.253.72.0/23
185.253.75.0/24
188.191.147.0/24
194.36.89.0-194.36.91.255
195.28.180.0/23
195.238.120.0/24
212.80.204.0/22
IPv6:
2a06:c5c0::/48
2a06:c5c0:700::/48
2a06:c5c0:900::/48
Signature Algorithm: sha256WithRSAEncryption
50:15:89:26:93:34:d0:88:6b:5f:89:c7:25:ac:54:69:78:38:
d7:f5:13:ed:a5:7f:eb:8f:f1:00:8c:e6:07:b0:84:b4:5b:7c:
14:6d:c4:ad:04:74:42:43:b0:02:46:5e:f2:9b:c0:12:0b:9c:
c3:c7:29:dd:35:a8:54:19:b5:b0:0a:5b:3c:05:cf:82:a5:f8:
1b:a2:15:96:63:53:b4:3c:e6:80:a7:a4:b3:a5:8a:e3:40:d6:
42:89:43:45:15:2c:38:d6:dc:09:c4:13:37:5b:d5:3a:58:af:
b7:fd:31:f3:5a:33:1e:8a:18:0b:d0:3a:de:68:d7:f4:42:23:
43:2b:15:ef:51:05:08:c5:38:59:13:36:85:a4:14:ea:6f:d6:
5d:9d:bc:97:de:2e:07:ef:94:1a:f9:21:aa:03:4e:31:00:c2:
77:fc:0c:d0:3d:e7:14:25:b3:82:7e:82:ae:91:56:ac:d1:2d:
e8:88:28:9b:a1:45:9d:51:7f:d0:b8:b2:47:c1:1d:e3:cd:7c:
40:a1:74:5b:8e:32:ae:88:09:8c:ec:9e:e8:af:9f:8e:26:b9:
cd:35:ec:8f:c7:87:51:c7:5a:ee:ad:91:32:e5:a3:72:61:ad:
07:84:aa:7e:e6:20:de:a9:ef:14:8f:26:44:a6:52:da:9f:9d:
a0:f6:14:48
-----BEGIN CERTIFICATE-----
MIIF/DCCBOSgAwIBAgISAY2i2sGtTQIPKCbY0dbrOxgXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1YmQ3OTIzYWZkYmFlODdkMDdiMjMwOGRkMzg5ZDljZjA4
MmVkNmQwHhcNMjQwMjEzMTQyNDIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMDE0ZjgzYTM4MTkzMDk4ZDRkZDAxODViYjUxYzZlMzllZjI4ZDI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhmqYLagtwhVXKbYH1LcyOiYngPve
FUJlwPpkL15p7kxQVVT1h2qiT7NKEK8Utki53TlcYvY6LR1cdkpjpwb1W9fzJNJz
SegsWU8dG4JeL6+zV8LVt8hrfhq6HYwR0b3fOftRZBPBHXMCeP6rQ4Ba+4ctaWpR
TB7aNQPX804fk1ArB4MI1PchynCj1RbHIxsz9v47vI8Ti2a9x62ah1kp352D5cPY
sAcoj/XkxaE/IKnG5BsbklRMvYu0DrOsHnaD2h9dYQs1MdFfgZWpcfkPb8wLztRo
SEw168sTIcmn2k5MmkfFLN+TBQxS9G3UUn/U4zrouyywKdHujok3tbO5VQIDAQAB
o4IDCDCCAwQwHQYDVR0OBBYEFAAU+Do4GTCY1N0BhbtRxuOe8o0oMB8GA1UdIwQY
MBaAFOW9eSOv266H0HsjCN04nZzwgu1tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWIxNUk2X2Jyb2ZRZXlNSTNUaWRuUENDN1cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS8yNjkyMjktMjBlYi00ZjFjLWExM2Ut
MjZkMWU1NDU3OGYxLzEvQUJUNE9qZ1pNSmpVM1FHRnUxSEc0NTd5alNnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS8yNjkyMjktMjBlYi00ZjFjLWExM2UtMjZkMWU1NDU3OGYx
LzEvNWIxNUk2X2Jyb2ZRZXlNSTNUaWRuUENDN1cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBHAYIKwYBBQUHAQcBAf8EggELMIIBBzCB4QQCAAEwgdoD
BAMFZPgDBAAfhWQDBAEfhWYDBAAtUygDBAEtUyoDBAItXVwwDAMEAD/6PQMEBj/6
AAMEAFEcBzAMAwQBU+VGAwQAU+VKAwQCW8qoAwQAW99qAwQAW+JIAwQAW+JMAwQB
W+R+AwQAZw3RAwQAbc9MAwQAbc9PAwQCuRyYAwQAuS+vAwQCuThIAwQAuYvnMAwD
BAK5onwDBAC5on4DBAC53M8DBAK58QQDBAG5/UgDBAC5/UsDBAC8v5MwDAMEAMIk
WQMEAsIkWAMEAcMctAMEAMPueAMEAtRQzDAhBAIAAjAbAwcAKgbFwAAAAwcAKgbF
wAcAAwcAKgbFwAkAMA0GCSqGSIb3DQEBCwUAA4IBAQBQFYkmkzTQiGtficclrFRp
eDjX9RPtpX/rj/EAjOYHsIS0W3wUbcStBHRCQ7ACRl7ym8ASC5zDxyndNahUGbWw
Cls8Bc+CpfgbohWWY1O0POaAp6SzpYrjQNZCiUNFFSw41twJxBM3W9U6WK+3/THz
WjMeihgL0DreaNf0QiNDKxXvUQUIxThZEzaFpBTqb9ZdnbyX3i4H75Qa+SGqA04x
AMJ3/AzQPecUJbOCfoKukVas0S3oiCiboUWdUX/QuLJHwR3jzXxAoXRbjjKuiAmM
7J7or5+OJrnNNeyPx4dRx1rurZEy5aNyYa0HhKp+5iDeqe8UjyZEplLan52g9hRI
-----END CERTIFICATE-----
Generated at Tue Feb 27 12:42:36 2024 by rpki-client on console-fra.rpki-client.org