Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/K32_91xFQ23B2SA90FMsoiolZhE.roa
File: K32_91xFQ23B2SA90FMsoiolZhE.roa (raw, json)
Hash identifier: BP8Q/ksYwfXC2kjF8kZ7pfcyAAtIJ6k8c/G/bjcDMIk=
Subject key identifier: 2B:7D:BF:F7:5C:45:43:6D:C1:D9:20:3D:D0:53:2C:A2:2A:25:66:11
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 0186C48FF26935A3C86390884E889C89BCD7
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/K32_91xFQ23B2SA90FMsoiolZhE.roa
Signing time: Thu 09 Mar 2023 04:10:13 +0000
ROA not before: Thu 09 Mar 2023 04:10:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44709
IP address blocks: 91.228.126.0/23 maxlen: 23
194.36.91.0/24 maxlen: 24
194.36.90.0/24 maxlen: 24
194.36.89.0/24 maxlen: 24
195.238.120.0/24 maxlen: 24
5.100.250.0/23 maxlen: 23
5.100.251.0/24 maxlen: 24
5.100.250.0/24 maxlen: 24
5.100.252.0/23 maxlen: 23
5.100.253.0/24 maxlen: 24
5.100.252.0/24 maxlen: 24
5.100.249.0/24 maxlen: 24
5.100.248.0/23 maxlen: 23
5.100.248.0/24 maxlen: 24
212.80.204.0/24 maxlen: 24
212.80.206.0/24 maxlen: 24
212.80.205.0/24 maxlen: 24
5.100.254.0/24 maxlen: 24
5.100.254.0/23 maxlen: 23
5.100.255.0/24 maxlen: 24
212.80.207.0/24 maxlen: 24
188.191.147.0/24 maxlen: 24
31.133.103.0/24 maxlen: 24
31.133.102.0/24 maxlen: 24
31.133.100.0/24 maxlen: 24
195.28.181.0/24 maxlen: 24
195.28.180.0/24 maxlen: 24
109.207.76.0/24 maxlen: 24
185.241.4.0/24 maxlen: 24
109.207.79.0/24 maxlen: 24
185.241.7.0/24 maxlen: 24
185.241.6.0/24 maxlen: 24
185.241.5.0/24 maxlen: 24
185.220.207.0/24 maxlen: 24
45.83.40.0/24 maxlen: 24
45.83.43.0/24 maxlen: 24
45.83.42.0/24 maxlen: 24
185.56.72.0/22 maxlen: 22
45.93.95.0/24 maxlen: 24
45.93.92.0/24 maxlen: 24
45.93.94.0/24 maxlen: 24
45.93.93.0/24 maxlen: 24
81.28.7.0/24 maxlen: 24
91.223.106.0/24 maxlen: 24
63.250.63.0/24 maxlen: 24
63.250.61.0/24 maxlen: 24
63.250.62.0/24 maxlen: 24
185.28.152.0/24 maxlen: 24
185.28.154.0/24 maxlen: 24
185.28.153.0/24 maxlen: 24
185.28.155.0/24 maxlen: 24
83.229.71.0/24 maxlen: 24
83.229.70.0/24 maxlen: 24
83.229.74.0/24 maxlen: 24
83.229.73.0/24 maxlen: 24
83.229.72.0/24 maxlen: 24
185.253.75.0/24 maxlen: 24
185.253.73.0/24 maxlen: 24
185.253.72.0/24 maxlen: 24
185.162.125.0/24 maxlen: 24
185.162.124.0/24 maxlen: 24
185.162.126.0/24 maxlen: 24
185.47.175.0/24 maxlen: 24
91.202.171.0/24 maxlen: 24
91.202.168.0/24 maxlen: 24
91.202.170.0/24 maxlen: 24
91.202.169.0/24 maxlen: 24
91.226.72.0/24 maxlen: 24
2a06:c5c0:900::/48 maxlen: 48
2a06:c5c0:700::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c4:8f:f2:69:35:a3:c8:63:90:88:4e:88:9c:89:bc:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Mar 9 04:10:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b7dbff75c45436dc1d9203dd0532ca22a256611
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:59:d7:52:ad:33:a0:4a:43:f3:92:17:fa:11:
0b:8f:75:c3:b1:b2:99:dc:62:86:b0:3e:e1:d7:1f:
90:ad:2b:77:6f:21:d7:b4:b0:5e:19:7b:c1:3e:27:
d1:c2:f2:62:57:a2:fd:18:11:82:a8:38:56:11:ec:
8e:b4:c2:7c:ec:c6:e6:e5:1e:51:14:a7:cd:4a:9c:
5e:57:6b:c9:b8:08:0d:16:01:e1:8b:b0:a3:ff:9e:
ae:8a:87:26:63:24:fa:86:5f:bd:22:09:52:b4:08:
f8:e9:e6:2d:dc:82:14:80:3b:0e:63:af:eb:ae:69:
eb:b5:f0:3d:df:55:13:66:d6:f4:8a:80:ab:1d:05:
dd:1f:90:3a:9c:71:11:72:d6:64:8b:c9:ee:d1:a2:
dc:62:83:50:33:26:4b:3b:ac:e9:22:cb:ad:7d:5a:
70:a3:95:13:bd:4d:00:e0:b9:dd:d0:64:df:4c:1b:
53:fd:28:94:ee:61:36:ef:04:ca:72:ce:02:0b:5b:
17:1a:73:76:d6:01:7f:8b:35:b1:2c:cb:d4:c2:16:
52:4f:e8:d8:59:44:2d:c0:2f:31:c5:3c:64:5a:15:
54:c9:f8:37:ad:89:0f:99:45:d0:b2:38:9c:d4:91:
38:9d:fd:d4:59:f9:65:ad:71:95:54:cd:33:93:9a:
97:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:7D:BF:F7:5C:45:43:6D:C1:D9:20:3D:D0:53:2C:A2:2A:25:66:11
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/K32_91xFQ23B2SA90FMsoiolZhE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.248.0/21
31.133.100.0/24
31.133.102.0/23
45.83.40.0/24
45.83.42.0/23
45.93.92.0/22
63.250.61.0-63.250.63.255
81.28.7.0/24
83.229.70.0-83.229.74.255
91.202.168.0/22
91.223.106.0/24
91.226.72.0/24
91.228.126.0/23
109.207.76.0/24
109.207.79.0/24
185.28.152.0/22
185.47.175.0/24
185.56.72.0/22
185.162.124.0-185.162.126.255
185.220.207.0/24
185.241.4.0/22
185.253.72.0/23
185.253.75.0/24
188.191.147.0/24
194.36.89.0-194.36.91.255
195.28.180.0/23
195.238.120.0/24
212.80.204.0/22
IPv6:
2a06:c5c0:700::/48
2a06:c5c0:900::/48
Signature Algorithm: sha256WithRSAEncryption
a4:42:11:f2:65:ce:3c:c6:8a:e5:ab:f4:b1:a8:2d:5d:e4:35:
0b:d4:29:8a:a4:b1:a5:60:8c:7e:a1:68:45:ec:e8:70:8c:a4:
87:bf:8f:96:80:4c:13:36:6d:c9:1c:86:d5:42:96:90:08:2d:
5f:ed:71:e0:22:0f:45:f8:85:42:64:6a:fc:62:fe:6b:c5:2f:
ec:52:4f:fa:df:69:9b:08:d6:d5:08:3e:e4:99:cd:93:27:ff:
07:25:ba:e1:8b:59:98:60:86:1e:0a:4a:fd:ec:e3:95:1e:fe:
59:00:31:8b:d6:c8:67:6e:51:b4:ef:5d:df:b0:24:65:11:cd:
8b:e2:9d:5d:96:7e:08:24:0a:4e:34:f4:62:71:3b:3c:4c:84:
e3:4f:79:f7:06:e7:97:82:39:ec:60:4f:e7:8d:63:92:08:7a:
b5:92:1b:e8:b5:9a:57:5b:c6:9a:6b:50:88:83:41:3c:f6:a1:
ad:57:86:ac:24:86:0b:42:13:b7:e4:5d:51:4a:ac:cb:e8:e0:
fb:6c:38:d9:20:b4:1c:17:aa:b8:c8:a4:7b:79:ff:d7:ec:0a:
2e:2a:a2:97:a5:09:ed:55:a5:f0:6f:97:c4:51:78:da:d1:3a:
53:f6:c8:6e:c1:af:4a:f0:bc:d5:d0:cf:34:ae:21:bd:86:a2:
96:ff:53:e6
-----BEGIN CERTIFICATE-----
MIIF3jCCBMagAwIBAgISAYbEj/JpNaPIY5CIToicibzXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1YmQ3OTIzYWZkYmFlODdkMDdiMjMwOGRkMzg5ZDljZjA4
MmVkNmQwHhcNMjMwMzA5MDQxMDEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYjdkYmZmNzVjNDU0MzZkYzFkOTIwM2RkMDUzMmNhMjJhMjU2NjExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj1nXUq0zoEpD85IX+hELj3XDsbKZ
3GKGsD7h1x+QrSt3byHXtLBeGXvBPifRwvJiV6L9GBGCqDhWEeyOtMJ87Mbm5R5R
FKfNSpxeV2vJuAgNFgHhi7Cj/56uiocmYyT6hl+9IglStAj46eYt3IIUgDsOY6/r
rmnrtfA931UTZtb0ioCrHQXdH5A6nHERctZki8nu0aLcYoNQMyZLO6zpIsutfVpw
o5UTvU0A4Lnd0GTfTBtT/SiU7mE27wTKcs4CC1sXGnN21gF/izWxLMvUwhZST+jY
WUQtwC8xxTxkWhVUyfg3rYkPmUXQsjic1JE4nf3UWfllrXGVVM0zk5qX7wIDAQAB
o4IC6jCCAuYwHQYDVR0OBBYEFCt9v/dcRUNtwdkgPdBTLKIqJWYRMB8GA1UdIwQY
MBaAFOW9eSOv266H0HsjCN04nZzwgu1tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWIxNUk2X2Jyb2ZRZXlNSTNUaWRuUENDN1cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS8yNjkyMjktMjBlYi00ZjFjLWExM2Ut
MjZkMWU1NDU3OGYxLzEvSzMyXzkxeEZRMjNCMlNBOTBGTXNvaW9sWmhFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS8yNjkyMjktMjBlYi00ZjFjLWExM2UtMjZkMWU1NDU3OGYx
LzEvNWIxNUk2X2Jyb2ZRZXlNSTNUaWRuUENDN1cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIH/BggrBgEFBQcBBwEB/wSB7zCB7DCBzwQCAAEwgcgDBAMF
ZPgDBAAfhWQDBAEfhWYDBAAtUygDBAEtUyoDBAItXVwwDAMEAD/6PQMEBj/6AAME
AFEcBzAMAwQBU+VGAwQAU+VKAwQCW8qoAwQAW99qAwQAW+JIAwQBW+R+AwQAbc9M
AwQAbc9PAwQCuRyYAwQAuS+vAwQCuThIMAwDBAK5onwDBAC5on4DBAC53M8DBAK5
8QQDBAG5/UgDBAC5/UsDBAC8v5MwDAMEAMIkWQMEAsIkWAMEAcMctAMEAMPueAME
AtRQzDAYBAIAAjASAwcAKgbFwAcAAwcAKgbFwAkAMA0GCSqGSIb3DQEBCwUAA4IB
AQCkQhHyZc48xorlq/SxqC1d5DUL1CmKpLGlYIx+oWhF7OhwjKSHv4+WgEwTNm3J
HIbVQpaQCC1f7XHgIg9F+IVCZGr8Yv5rxS/sUk/632mbCNbVCD7kmc2TJ/8HJbrh
i1mYYIYeCkr97OOVHv5ZADGL1shnblG0713fsCRlEc2L4p1dln4IJApONPRicTs8
TITjT3n3BueXgjnsYE/njWOSCHq1khvotZpXW8aaa1CIg0E89qGtV4asJIYLQhO3
5F1RSqzL6OD7bDjZILQcF6q4yKR7ef/X7AouKqKXpQntVaXwb5fEUXja0TpT9shu
wa9K8LzV0M80riG9hqKW/1Pm
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:31 2023 by rpki-client on console-fra.rpki-client.org