Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/9068a5-7979-4f8c-bf82-cfe2a9657c26/1/k6mzcvhGnpU0zgahvEEcJrfPUDk.roa
File: k6mzcvhGnpU0zgahvEEcJrfPUDk.roa (raw, json)
Hash identifier: x9g+E73JJfJbZ/mv4toWSVYz6n9jFeW+S5bOpHSoImw=
Subject key identifier: 93:A9:B3:72:F8:46:9E:95:34:CE:06:A1:BC:41:1C:26:B7:CF:50:39
Certificate issuer: /CN=f5daf0ba21e90202597ee47e09f6877fe23c2a9f
Certificate serial: 018D84FB428B9B9C905F0D114578C8F5C172
Authority key identifier: F5:DA:F0:BA:21:E9:02:02:59:7E:E4:7E:09:F6:87:7F:E2:3C:2A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9drwuiHpAgJZfuR-CfaHf-I8Kp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/9068a5-7979-4f8c-bf82-cfe2a9657c26/1/k6mzcvhGnpU0zgahvEEcJrfPUDk.roa
Signing time: Wed 07 Feb 2024 19:11:15 +0000
ROA not before: Wed 07 Feb 2024 19:11:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206262
IP address blocks: 5.206.232.0/21 maxlen: 21
5.206.232.0/24 maxlen: 24
5.206.233.0/24 maxlen: 24
5.206.234.0/24 maxlen: 24
5.206.235.0/24 maxlen: 24
5.206.236.0/24 maxlen: 24
5.206.237.0/24 maxlen: 24
5.206.238.0/24 maxlen: 24
5.206.239.0/24 maxlen: 24
37.26.64.0/21 maxlen: 21
37.26.64.0/24 maxlen: 24
37.26.65.0/24 maxlen: 24
37.26.66.0/24 maxlen: 24
37.26.67.0/24 maxlen: 24
37.26.68.0/24 maxlen: 24
37.26.69.0/24 maxlen: 24
37.26.70.0/24 maxlen: 24
37.26.71.0/24 maxlen: 24
87.238.208.0/21 maxlen: 21
87.238.208.0/24 maxlen: 24
87.238.209.0/24 maxlen: 24
87.238.210.0/24 maxlen: 24
87.238.211.0/24 maxlen: 24
87.238.212.0/24 maxlen: 24
87.238.213.0/24 maxlen: 24
87.238.214.0/24 maxlen: 24
87.238.215.0/24 maxlen: 24
95.86.40.0/22 maxlen: 22
95.86.40.0/24 maxlen: 24
95.86.41.0/24 maxlen: 24
95.86.42.0/24 maxlen: 24
95.86.43.0/24 maxlen: 24
95.86.56.0/22 maxlen: 24
95.86.56.0/24 maxlen: 24
95.86.57.0/24 maxlen: 24
95.86.58.0/24 maxlen: 24
95.86.59.0/24 maxlen: 24
147.78.160.0/24 maxlen: 24
147.78.161.0/24 maxlen: 24
147.78.162.0/24 maxlen: 24
147.78.163.0/24 maxlen: 24
185.171.60.0/22 maxlen: 22
185.171.60.0/24 maxlen: 24
185.171.61.0/24 maxlen: 24
185.171.62.0/24 maxlen: 24
185.171.63.0/24 maxlen: 24
185.174.208.0/22 maxlen: 22
185.174.208.0/24 maxlen: 24
185.174.209.0/24 maxlen: 24
185.174.210.0/24 maxlen: 24
185.174.211.0/24 maxlen: 24
185.179.28.0/22 maxlen: 22
185.179.28.0/24 maxlen: 24
185.179.29.0/24 maxlen: 24
185.179.30.0/24 maxlen: 24
185.179.31.0/24 maxlen: 24
185.186.80.0/22 maxlen: 22
185.186.80.0/24 maxlen: 24
185.186.81.0/24 maxlen: 24
185.186.82.0/24 maxlen: 24
185.186.83.0/24 maxlen: 24
185.191.164.0/22 maxlen: 22
185.191.164.0/24 maxlen: 24
185.191.165.0/24 maxlen: 24
185.191.166.0/24 maxlen: 24
185.191.167.0/24 maxlen: 24
2a0c:b340::/29 maxlen: 29
2a0c:b340::/32 maxlen: 32
2a0c:b340::/48 maxlen: 48
2a0c:b340:1::/48 maxlen: 48
2a0c:b341::/32 maxlen: 32
2a0c:b342::/32 maxlen: 32
2a0c:b343::/32 maxlen: 32
2a0c:b344::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 08 Feb 2024 06:57:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:84:fb:42:8b:9b:9c:90:5f:0d:11:45:78:c8:f5:c1:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5daf0ba21e90202597ee47e09f6877fe23c2a9f
Validity
Not Before: Feb 7 19:11:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=93a9b372f8469e9534ce06a1bc411c26b7cf5039
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:7d:82:fe:c4:d3:ba:d7:84:e3:25:dc:b8:7b:
13:8c:6e:2a:00:99:32:dc:86:2c:93:61:21:a2:c1:
f3:a0:b6:9d:a5:fd:8f:a6:2a:ee:3f:55:e4:d7:c6:
51:f4:67:bf:76:33:20:61:66:4e:8a:47:b6:48:75:
b1:07:88:97:5b:97:39:07:3c:2a:fa:7c:97:92:42:
15:ac:7e:1e:ac:eb:01:c7:37:ae:27:48:dc:44:76:
21:fb:05:c8:7b:b7:d5:ab:ca:e7:b8:9f:08:cd:d4:
01:8e:55:88:23:b1:3e:5f:17:13:86:c2:62:70:90:
3e:d7:3b:02:6c:06:5d:d8:77:db:eb:30:46:95:dc:
b6:a1:95:7b:ca:97:bf:54:ff:3d:d7:da:01:47:df:
59:1d:36:7c:0f:d4:31:2c:40:9c:96:9d:55:d0:c7:
3e:ec:55:16:cd:85:06:79:0e:28:63:3a:70:52:ec:
fd:72:91:8d:9e:a2:ec:d7:b0:03:8f:c0:9a:7d:e9:
bc:a8:56:00:e0:31:c7:dc:04:5b:a5:71:45:f8:57:
5b:3d:a6:4c:c0:96:6d:cd:ad:a2:3a:5c:8b:68:90:
fa:67:60:d4:4f:c9:fb:b6:31:c8:ab:98:f0:2c:a6:
97:32:9d:9e:e3:d9:a3:61:f3:4f:27:d2:1b:01:43:
62:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:A9:B3:72:F8:46:9E:95:34:CE:06:A1:BC:41:1C:26:B7:CF:50:39
X509v3 Authority Key Identifier:
keyid:F5:DA:F0:BA:21:E9:02:02:59:7E:E4:7E:09:F6:87:7F:E2:3C:2A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9drwuiHpAgJZfuR-CfaHf-I8Kp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9068a5-7979-4f8c-bf82-cfe2a9657c26/1/k6mzcvhGnpU0zgahvEEcJrfPUDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9068a5-7979-4f8c-bf82-cfe2a9657c26/1/9drwuiHpAgJZfuR-CfaHf-I8Kp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.206.232.0/21
37.26.64.0/21
87.238.208.0/21
95.86.40.0/22
95.86.56.0/22
147.78.160.0/22
185.171.60.0/22
185.174.208.0/22
185.179.28.0/22
185.186.80.0/22
185.191.164.0/22
IPv6:
2a0c:b340::/29
Signature Algorithm: sha256WithRSAEncryption
20:af:8c:14:a1:42:57:53:af:4d:ec:9f:66:8c:70:0b:90:89:
bd:26:cb:86:cf:42:68:40:95:ad:29:9c:7f:cc:06:e3:96:72:
9d:ac:d1:63:c8:84:8f:7a:bf:01:dc:87:89:b3:66:80:db:e7:
d6:20:59:8e:40:76:8c:c8:79:3d:77:64:c7:a5:25:3c:16:28:
3d:c4:06:b4:25:7f:43:ee:93:1d:47:88:53:06:2f:35:73:ce:
aa:6e:3d:b6:7c:57:3e:61:6f:89:5a:da:f9:c0:f5:11:fa:e8:
c0:86:50:20:a2:4b:37:1e:59:95:a0:e7:c5:58:5e:28:89:49:
14:70:43:81:86:f3:1b:67:04:1c:e9:6d:02:15:b7:91:0b:ac:
8a:2d:b2:ab:76:db:98:7a:bf:86:1f:ee:45:ab:da:8b:ed:83:
cd:77:cd:49:e4:77:d6:f4:c3:a7:2f:ca:2b:4c:76:23:37:70:
72:e1:34:d8:50:7e:89:97:6b:9d:03:bf:98:af:f3:4d:e1:8a:
22:58:6a:fe:ae:7c:90:cd:eb:e1:5a:b5:11:a6:1e:09:c7:01:
7c:1e:ee:86:3f:e9:e5:f7:21:5d:d4:27:54:4d:4f:76:10:5d:
48:aa:36:6a:ff:22:86:dd:9a:c0:41:1c:4e:e9:da:38:1e:1e:
91:d7:c1:a9
-----BEGIN CERTIFICATE-----
MIIFSDCCBDCgAwIBAgISAY2E+0KLm5yQXw0RRXjI9cFyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY1ZGFmMGJhMjFlOTAyMDI1OTdlZTQ3ZTA5ZjY4NzdmZTIz
YzJhOWYwHhcNMjQwMjA3MTkxMTE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5M2E5YjM3MmY4NDY5ZTk1MzRjZTA2YTFiYzQxMWMyNmI3Y2Y1MDM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApH2C/sTTuteE4yXcuHsTjG4qAJky
3IYsk2EhosHzoLadpf2PpiruP1Xk18ZR9Ge/djMgYWZOike2SHWxB4iXW5c5Bzwq
+nyXkkIVrH4erOsBxzeuJ0jcRHYh+wXIe7fVq8rnuJ8IzdQBjlWII7E+XxcThsJi
cJA+1zsCbAZd2Hfb6zBGldy2oZV7ype/VP8919oBR99ZHTZ8D9QxLECclp1V0Mc+
7FUWzYUGeQ4oYzpwUuz9cpGNnqLs17ADj8Cafem8qFYA4DHH3ARbpXFF+FdbPaZM
wJZtza2iOlyLaJD6Z2DUT8n7tjHIq5jwLKaXMp2e49mjYfNPJ9IbAUNiKwIDAQAB
o4ICVDCCAlAwHQYDVR0OBBYEFJOps3L4Rp6VNM4GobxBHCa3z1A5MB8GA1UdIwQY
MBaAFPXa8Loh6QICWX7kfgn2h3/iPCqfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOWRyd3VpSHBBZ0paZnVSLUNmYUhmLUk4S3A4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS85MDY4YTUtNzk3OS00ZjhjLWJmODIt
Y2ZlMmE5NjU3YzI2LzEvazZtemN2aEducFUwemdhaHZFRWNKcmZQVURrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS85MDY4YTUtNzk3OS00ZjhjLWJmODItY2ZlMmE5NjU3YzI2
LzEvOWRyd3VpSHBBZ0paZnVSLUNmYUhmLUk4S3A4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGoGCCsGAQUFBwEHAQH/BFswWTBIBAIAATBCAwQDBc7oAwQD
JRpAAwQDV+7QAwQCX1YoAwQCX1Y4AwQCk06gAwQCuas8AwQCua7QAwQCubMcAwQC
ubpQAwQCub+kMA0EAgACMAcDBQMqDLNAMA0GCSqGSIb3DQEBCwUAA4IBAQAgr4wU
oUJXU69N7J9mjHALkIm9JsuGz0JoQJWtKZx/zAbjlnKdrNFjyISPer8B3IeJs2aA
2+fWIFmOQHaMyHk9d2THpSU8Fig9xAa0JX9D7pMdR4hTBi81c86qbj22fFc+YW+J
Wtr5wPUR+ujAhlAgoks3HlmVoOfFWF4oiUkUcEOBhvMbZwQc6W0CFbeRC6yKLbKr
dtuYer+GH+5Fq9qL7YPNd81J5HfW9MOnL8orTHYjN3By4TTYUH6Jl2udA7+Yr/NN
4YoiWGr+rnyQzevhWrURph4JxwF8Hu6GP+nl9yFd1CdUTU92EF1IqjZq/yKG3ZrA
QRxO6do4Hh6R18Gp
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:07 2024 by rpki-client on console-ams.rpki-client.org