Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/dmFPjvsJMwnJf8UTg9uU3ng7d4g.roa
File: dmFPjvsJMwnJf8UTg9uU3ng7d4g.roa (raw, json)
Hash identifier: GTiXI+avqciAN8UMVdJ1rQgXZ/KAfDrmecIBi7OJPFE=
Subject key identifier: 76:61:4F:8E:FB:09:33:09:C9:7F:C5:13:83:DB:94:DE:78:3B:77:88
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 018B99D81168740031337524DBC88C8C2447
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/dmFPjvsJMwnJf8UTg9uU3ng7d4g.roa
Signing time: Sat 04 Nov 2023 10:19:16 +0000
ROA not before: Sat 04 Nov 2023 10:19:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39074
IP address blocks: 85.133.231.0/24 maxlen: 24
85.133.232.0/24 maxlen: 24
85.133.228.0/24 maxlen: 24
85.133.232.0/22 maxlen: 22
85.133.229.0/24 maxlen: 24
85.133.230.0/24 maxlen: 24
85.133.227.0/24 maxlen: 24
85.133.239.0/24 maxlen: 24
85.133.240.0/24 maxlen: 24
85.133.235.0/24 maxlen: 24
85.133.240.0/22 maxlen: 22
85.133.245.0/24 maxlen: 24
85.133.246.0/24 maxlen: 24
85.133.243.0/24 maxlen: 24
85.133.244.0/24 maxlen: 24
85.133.247.0/24 maxlen: 24
85.133.248.0/23 maxlen: 24
85.133.249.0/24 maxlen: 24
85.133.250.0/24 maxlen: 24
85.133.251.0/24 maxlen: 24
85.133.252.0/22 maxlen: 22
85.133.254.0/24 maxlen: 24
85.133.255.0/24 maxlen: 24
85.133.179.0/24 maxlen: 24
85.133.176.0/22 maxlen: 24
85.133.178.0/24 maxlen: 24
85.133.174.0/24 maxlen: 24
85.133.184.0/22 maxlen: 24
85.133.180.0/22 maxlen: 24
85.133.189.0/24 maxlen: 24
85.133.188.0/22 maxlen: 22
85.133.192.0/22 maxlen: 22
85.133.196.0/24 maxlen: 24
85.133.197.0/24 maxlen: 24
85.133.199.0/24 maxlen: 24
85.133.196.0/22 maxlen: 22
85.133.205.0/24 maxlen: 24
85.133.203.0/24 maxlen: 24
85.133.204.0/24 maxlen: 24
85.133.200.0/22 maxlen: 22
85.133.206.0/24 maxlen: 24
85.133.200.0/24 maxlen: 24
85.133.201.0/24 maxlen: 24
85.133.204.0/22 maxlen: 22
85.133.202.0/24 maxlen: 24
85.133.210.0/23 maxlen: 24
85.133.211.0/24 maxlen: 24
85.133.212.0/24 maxlen: 24
85.133.213.0/24 maxlen: 24
85.133.207.0/24 maxlen: 24
85.133.212.0/22 maxlen: 22
85.133.208.0/24 maxlen: 24
85.133.209.0/24 maxlen: 24
85.133.217.0/24 maxlen: 24
85.133.219.0/24 maxlen: 24
85.133.215.0/24 maxlen: 24
85.133.220.0/24 maxlen: 24
85.133.220.0/22 maxlen: 22
85.133.225.0/24 maxlen: 24
85.133.226.0/24 maxlen: 24
85.133.221.0/24 maxlen: 24
85.133.223.0/24 maxlen: 24
85.133.224.0/22 maxlen: 22
85.133.130.0/24 maxlen: 24
85.133.131.0/24 maxlen: 24
85.133.128.0/17 maxlen: 24
85.133.128.0/24 maxlen: 24
85.133.129.0/24 maxlen: 24
85.133.128.0/22 maxlen: 22
85.133.134.0/24 maxlen: 24
85.133.135.0/24 maxlen: 24
85.133.136.0/24 maxlen: 24
85.133.133.0/24 maxlen: 24
85.133.138.0/24 maxlen: 24
85.133.139.0/24 maxlen: 24
85.133.144.0/22 maxlen: 22
85.133.144.0/24 maxlen: 24
85.133.145.0/24 maxlen: 24
85.133.140.0/22 maxlen: 22
85.133.141.0/24 maxlen: 24
85.133.142.0/24 maxlen: 24
85.133.140.0/24 maxlen: 24
85.133.148.0/24 maxlen: 24
85.133.149.0/24 maxlen: 24
85.133.150.0/24 maxlen: 24
85.133.146.0/24 maxlen: 24
85.133.148.0/22 maxlen: 22
85.133.147.0/24 maxlen: 24
85.133.152.0/22 maxlen: 22
85.133.152.0/24 maxlen: 24
85.133.158.0/24 maxlen: 24
85.133.159.0/24 maxlen: 24
85.133.155.0/24 maxlen: 24
85.133.156.0/24 maxlen: 24
85.133.157.0/24 maxlen: 24
85.133.154.0/24 maxlen: 24
85.133.162.0/24 maxlen: 24
85.133.163.0/24 maxlen: 24
85.133.164.0/24 maxlen: 24
85.133.161.0/24 maxlen: 24
85.133.165.0/24 maxlen: 24
85.133.172.0/24 maxlen: 24
85.133.172.0/22 maxlen: 24
85.133.168.0/22 maxlen: 24
185.41.0.0/24 maxlen: 24
185.41.1.0/24 maxlen: 24
185.41.2.0/24 maxlen: 24
185.41.3.0/24 maxlen: 24
2a04:87c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 04 Nov 2023 10:33:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:99:d8:11:68:74:00:31:33:75:24:db:c8:8c:8c:24:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Nov 4 10:19:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76614f8efb093309c97fc51383db94de783b7788
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f5:ec:60:c0:c7:cf:95:43:34:3e:e1:32:25:
d2:2f:35:db:b3:3f:0a:43:32:c6:11:28:1e:52:2d:
ec:28:0b:ad:f5:51:8e:73:76:78:27:75:4b:0e:6e:
b2:89:0e:c8:b5:6a:90:28:ea:fa:37:d6:87:8f:5d:
c7:42:dc:37:72:72:1c:2e:83:43:0f:3e:fe:e4:a6:
0c:ad:65:1d:64:44:97:d0:f3:c9:1d:07:48:9a:a2:
99:2a:57:13:75:b9:d3:16:a8:74:59:2d:c7:3a:8b:
9f:7e:71:c9:a7:2b:4c:3b:ad:44:9a:84:a0:b3:05:
64:14:07:e5:ce:a1:d9:45:d9:0d:a7:38:6d:fa:91:
a3:fb:68:57:7e:1e:59:4f:c3:99:62:47:bb:0b:ad:
41:c5:4d:b5:d2:2b:b2:cd:9d:99:eb:34:62:6c:33:
3d:19:ee:78:66:cb:23:a3:61:31:03:38:2c:11:4d:
f6:b8:81:82:74:69:0d:f1:67:51:cb:fd:fd:c2:c9:
74:35:be:3d:c3:23:3b:35:7f:1b:96:a4:f2:e9:b6:
e6:1c:89:10:be:1e:e8:5f:9c:ce:df:37:5e:9d:89:
9e:2d:45:91:37:bc:7f:e6:86:5d:39:d3:63:63:96:
fc:d9:cb:99:25:70:7b:b5:9c:d1:93:ad:d3:1b:26:
ee:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:61:4F:8E:FB:09:33:09:C9:7F:C5:13:83:DB:94:DE:78:3B:77:88
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/dmFPjvsJMwnJf8UTg9uU3ng7d4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.128.0/17
185.41.0.0/22
IPv6:
2a04:87c0::/29
Signature Algorithm: sha256WithRSAEncryption
59:eb:88:80:a1:ed:5c:c9:8c:06:76:52:de:80:c8:a0:58:c7:
06:55:5c:8b:88:b4:cf:5b:90:b2:e8:5e:9a:6f:5a:32:69:56:
88:58:b3:9e:75:09:ef:e1:74:63:32:0f:d0:34:94:4d:9d:c1:
e2:ec:aa:cc:83:e8:45:68:a3:3f:c3:08:7b:e2:87:50:34:85:
42:ac:34:1c:ac:68:7e:b7:ee:97:3f:17:78:dd:2d:9e:91:f3:
3c:36:32:79:13:80:a5:7f:16:a9:84:16:c5:d3:81:2d:bb:5e:
81:23:21:88:2b:41:57:16:52:75:81:87:6f:54:4a:df:77:f0:
23:8c:a3:dc:1f:d3:7b:0e:70:b0:38:57:ed:c9:12:10:d7:0b:
01:b3:35:ee:99:3b:cf:ef:0e:e4:39:e8:06:a3:a7:8d:49:b2:
22:94:e1:e3:72:1b:d8:a0:3a:ef:59:7c:ca:11:2b:ad:97:4b:
ab:dd:31:bb:2d:73:16:8e:1c:bd:1b:71:2a:e4:7e:05:31:91:
f4:5e:4a:da:65:3b:74:9e:0c:a3:e1:57:51:72:15:b3:5b:73:
58:14:20:ab:37:e5:47:c9:1f:51:1d:6e:49:af:f2:54:18:33:
91:7e:e2:42:4a:c0:d6:93:ef:23:e0:4c:4d:87:cc:42:f8:34:
cd:a7:98:84
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAYuZ2BFodAAxM3Uk28iMjCRHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5
NDY3MDIwHhcNMjMxMTA0MTAxOTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NjYxNGY4ZWZiMDkzMzA5Yzk3ZmM1MTM4M2RiOTRkZTc4M2I3Nzg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkvXsYMDHz5VDND7hMiXSLzXbsz8K
QzLGESgeUi3sKAut9VGOc3Z4J3VLDm6yiQ7ItWqQKOr6N9aHj13HQtw3cnIcLoND
Dz7+5KYMrWUdZESX0PPJHQdImqKZKlcTdbnTFqh0WS3HOouffnHJpytMO61EmoSg
swVkFAflzqHZRdkNpzht+pGj+2hXfh5ZT8OZYke7C61BxU210iuyzZ2Z6zRibDM9
Ge54Zssjo2ExAzgsEU32uIGCdGkN8WdRy/39wsl0Nb49wyM7NX8blqTy6bbmHIkQ
vh7oX5zO3zdenYmeLUWRN7x/5oZdOdNjY5b82cuZJXB7tZzRk63TGybunwIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFHZhT477CTMJyX/FE4PblN54O3eIMB8GA1UdIwQY
MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt
NWQxZmE2NmMzNjNiLzEvZG1GUGp2c0pNd25KZjhVVGc5dVUzbmc3ZDRnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi
LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQHVYWAAwQC
uSkAMA0EAgACMAcDBQMqBIfAMA0GCSqGSIb3DQEBCwUAA4IBAQBZ64iAoe1cyYwG
dlLegMigWMcGVVyLiLTPW5Cy6F6ab1oyaVaIWLOedQnv4XRjMg/QNJRNncHi7KrM
g+hFaKM/wwh74odQNIVCrDQcrGh+t+6XPxd43S2ekfM8NjJ5E4ClfxaphBbF04Et
u16BIyGIK0FXFlJ1gYdvVErfd/AjjKPcH9N7DnCwOFftyRIQ1wsBszXumTvP7w7k
OegGo6eNSbIilOHjchvYoDrvWXzKESutl0ur3TG7LXMWjhy9G3Eq5H4FMZH0Xkra
ZTt0ngyj4VdRchWzW3NYFCCrN+VHyR9RHW5Jr/JUGDORfuJCSsDWk+8j4ExNh8xC
+DTNp5iE
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:13 2024 by rpki-client on console-fra.rpki-client.org