Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/h6R6i-HYpq0fOfan-OCCF-fFGgY.roa
File: h6R6i-HYpq0fOfan-OCCF-fFGgY.roa (raw, json)
Hash identifier: INpC+XnFrw0JpE9w0hBkRQT1hZAhv+vz0YP7koUdILg=
Subject key identifier: 87:A4:7A:8B:E1:D8:A6:AD:1F:39:F6:A7:F8:E0:82:17:E7:C5:1A:06
Certificate issuer: /CN=4ecf53007c79cc5e2f2d7356ba9121a78c0c7714
Certificate serial: 0185BAAA50AFACEB4BA942937DC16C340EC8
Authority key identifier: 4E:CF:53:00:7C:79:CC:5E:2F:2D:73:56:BA:91:21:A7:8C:0C:77:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/h6R6i-HYpq0fOfan-OCCF-fFGgY.roa
Signing time: Mon 16 Jan 2023 13:00:01 +0000
ROA not before: Mon 16 Jan 2023 13:00:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5617
IP address blocks: 79.188.0.0/16 maxlen: 24
31.60.0.0/14 maxlen: 25
83.13.0.0/16 maxlen: 24
83.6.0.0/16 maxlen: 24
46.134.0.0/16 maxlen: 25
83.20.0.0/16 maxlen: 24
188.47.0.0/16 maxlen: 24
37.47.0.0/16 maxlen: 16
91.94.0.0/16 maxlen: 16
213.25.125.0/24 maxlen: 24
83.12.0.0/16 maxlen: 24
213.25.166.0/24 maxlen: 24
212.160.0.0/16 maxlen: 16
79.187.0.0/16 maxlen: 24
213.25.92.0/24 maxlen: 24
37.228.0.0/18 maxlen: 18
212.160.172.0/24 maxlen: 24
83.26.0.0/16 maxlen: 24
80.53.0.0/16 maxlen: 24
83.19.0.0/16 maxlen: 24
83.18.0.0/16 maxlen: 24
83.11.0.0/16 maxlen: 24
80.52.0.0/16 maxlen: 24
83.5.0.0/16 maxlen: 24
217.99.0.0/16 maxlen: 24
213.25.0.0/16 maxlen: 16
83.25.0.0/16 maxlen: 24
217.98.0.0/16 maxlen: 24
195.205.147.0/24 maxlen: 24
83.17.0.0/16 maxlen: 24
83.24.0.0/13 maxlen: 13
83.4.0.0/16 maxlen: 24
83.31.0.0/16 maxlen: 24
79.186.0.0/16 maxlen: 24
83.24.0.0/16 maxlen: 24
195.205.239.0/24 maxlen: 24
80.51.0.0/16 maxlen: 24
95.51.0.0/16 maxlen: 24
83.16.0.0/13 maxlen: 13
83.23.0.0/16 maxlen: 24
95.50.0.0/16 maxlen: 24
80.50.0.0/16 maxlen: 24
213.77.0.0/17 maxlen: 17
213.77.0.0/16 maxlen: 24
213.77.5.0/24 maxlen: 24
195.205.0.0/16 maxlen: 16
83.16.0.0/16 maxlen: 24
193.110.120.0/22 maxlen: 22
217.97.0.0/16 maxlen: 24
37.225.0.0/16 maxlen: 25
213.77.68.0/24 maxlen: 24
83.10.0.0/16 maxlen: 24
213.77.20.0/24 maxlen: 24
83.3.0.0/16 maxlen: 24
213.77.34.0/24 maxlen: 24
83.30.0.0/16 maxlen: 24
79.185.0.0/16 maxlen: 24
213.76.0.0/16 maxlen: 24
83.2.0.0/16 maxlen: 24
83.29.0.0/16 maxlen: 24
87.96.0.0/17 maxlen: 17
217.96.0.0/16 maxlen: 24
217.96.0.0/14 maxlen: 14
79.163.128.0/17 maxlen: 25
83.22.0.0/16 maxlen: 24
217.116.96.0/20 maxlen: 20
95.49.0.0/16 maxlen: 24
80.49.0.0/16 maxlen: 24
217.116.100.0/22 maxlen: 22
79.184.0.0/13 maxlen: 13
212.244.226.0/24 maxlen: 24
79.191.0.0/16 maxlen: 24
213.76.129.0/24 maxlen: 24
194.204.128.0/18 maxlen: 18
213.76.135.0/24 maxlen: 24
213.76.140.0/24 maxlen: 24
213.76.143.0/24 maxlen: 24
194.204.152.0/24 maxlen: 24
213.76.146.0/24 maxlen: 24
194.204.159.0/24 maxlen: 24
195.117.0.0/16 maxlen: 16
178.56.0.0/16 maxlen: 16
5.184.0.0/16 maxlen: 16
79.184.0.0/16 maxlen: 24
5.184.0.0/15 maxlen: 15
83.9.0.0/16 maxlen: 24
80.48.0.0/13 maxlen: 13
83.28.0.0/16 maxlen: 24
80.55.0.0/16 maxlen: 24
83.0.0.0/11 maxlen: 11
80.48.0.0/16 maxlen: 24
95.48.0.0/16 maxlen: 24
95.48.0.0/14 maxlen: 14
80.48.0.0/14 maxlen: 14
83.1.0.0/16 maxlen: 24
83.8.0.0/13 maxlen: 13
213.77.68.192/26 maxlen: 26
195.116.0.0/16 maxlen: 24
212.244.0.0/16 maxlen: 16
83.15.0.0/16 maxlen: 24
46.170.0.0/15 maxlen: 24
178.42.0.0/15 maxlen: 24
83.8.0.0/16 maxlen: 24
79.163.0.0/16 maxlen: 25
79.190.0.0/16 maxlen: 24
83.0.0.0/13 maxlen: 13
37.108.0.0/16 maxlen: 25
83.7.0.0/16 maxlen: 24
79.162.0.0/15 maxlen: 24
79.189.0.0/16 maxlen: 24
83.0.0.0/16 maxlen: 24
83.27.0.0/16 maxlen: 24
80.54.0.0/16 maxlen: 24
83.21.0.0/16 maxlen: 24
83.14.0.0/16 maxlen: 24
2a01:1140::/28 maxlen: 28
2a01:1700:3::/48 maxlen: 48
2a01:1160::/28 maxlen: 28
2a01:1120::/28 maxlen: 28
2a01:11a0::/28 maxlen: 28
2a00:f40::/29 maxlen: 29
2a01:1100::/28 maxlen: 28
2a01:11d0::/28 maxlen: 28
2a01:1700:2::/48 maxlen: 48
2a01:1130::/28 maxlen: 28
2a01:1150::/28 maxlen: 28
2a01:11c0::/28 maxlen: 28
2a01:1170::/28 maxlen: 28
2a01:1000::/21 maxlen: 21
2a01:1190::/28 maxlen: 28
2a01:11b0::/28 maxlen: 28
2a01:1110::/28 maxlen: 28
2a01:1180::/28 maxlen: 28
Validation: Failed, certificate revoked on Tue 17 Jan 2023 11:17:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ba:aa:50:af:ac:eb:4b:a9:42:93:7d:c1:6c:34:0e:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ecf53007c79cc5e2f2d7356ba9121a78c0c7714
Validity
Not Before: Jan 16 13:00:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=87a47a8be1d8a6ad1f39f6a7f8e08217e7c51a06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:0f:fc:fc:bc:6f:28:ee:bf:ec:06:21:7a:b7:
78:82:51:4b:62:90:70:dd:06:e3:91:f5:18:cc:3f:
33:2e:f2:27:0d:22:40:22:17:55:43:95:4c:e9:f5:
8e:88:d5:fb:dd:a9:46:59:9b:14:f3:1d:0e:36:34:
02:27:73:aa:c5:52:97:1a:61:57:db:f8:aa:cb:08:
61:5e:8e:82:b6:12:27:47:6e:4f:78:ee:a6:56:2f:
e8:67:0b:8d:14:64:fd:52:c3:2f:3c:a7:c4:4b:f9:
0f:81:c5:e5:fc:ff:f5:b7:49:81:fe:00:2a:28:dc:
c8:60:06:ed:ef:41:17:b2:39:b6:89:1b:fe:82:93:
64:cb:57:ef:df:e1:ec:3a:05:f6:28:8e:ec:9c:1d:
2e:ee:cd:97:1a:f9:49:14:42:be:10:44:51:9a:49:
31:44:c6:e1:3c:62:e6:8e:67:59:cc:46:71:f3:d4:
8c:d1:c6:45:0a:aa:1e:de:b1:4a:da:95:33:ed:1a:
77:52:ed:73:b3:a0:1c:a3:d5:79:67:9a:69:f6:e2:
a5:f2:ca:b1:2e:d7:c8:5c:4a:74:8c:b5:e6:0c:dd:
50:6b:81:97:36:76:d0:90:69:a6:14:e4:41:f5:ca:
7b:ab:d7:42:10:45:c0:3f:7a:09:fe:1a:64:0a:0b:
42:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:A4:7A:8B:E1:D8:A6:AD:1F:39:F6:A7:F8:E0:82:17:E7:C5:1A:06
X509v3 Authority Key Identifier:
keyid:4E:CF:53:00:7C:79:CC:5E:2F:2D:73:56:BA:91:21:A7:8C:0C:77:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/h6R6i-HYpq0fOfan-OCCF-fFGgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.184.0.0/15
31.60.0.0/14
37.47.0.0/16
37.108.0.0/16
37.225.0.0/16
37.228.0.0/18
46.134.0.0/16
46.170.0.0/15
79.162.0.0/15
79.184.0.0/13
80.48.0.0/13
83.0.0.0/11
87.96.0.0/17
91.94.0.0/16
95.48.0.0/14
178.42.0.0/15
178.56.0.0/16
188.47.0.0/16
193.110.120.0/22
194.204.128.0/18
195.116.0.0/15
195.205.0.0/16
212.160.0.0/16
212.244.0.0/16
213.25.0.0/16
213.76.0.0/15
217.96.0.0/14
217.116.96.0/20
IPv6:
2a00:f40::/29
2a01:1000::/21
Signature Algorithm: sha256WithRSAEncryption
09:ba:ac:85:55:f3:cd:ff:bc:77:d4:7a:be:5e:3f:4d:40:ae:
e1:b4:4e:29:8d:76:ee:cf:f3:06:20:a5:ef:ba:93:6d:89:fe:
fe:a9:c0:18:16:34:9d:34:3f:c9:72:f9:b3:69:d0:8b:d8:17:
d0:06:ce:3e:a2:d7:0b:09:7d:54:7a:9b:5a:2c:4d:cb:2b:d7:
62:a7:a4:04:8a:e7:38:23:41:ae:20:b5:30:8c:42:c9:5e:89:
7d:7a:6c:db:4f:b7:39:db:c9:ea:49:58:c6:9d:d5:e3:98:0f:
0b:ba:e3:2a:36:0d:ee:39:28:f3:b1:9f:69:36:55:21:d0:4f:
a1:4c:06:a2:37:b5:f2:1a:3f:2d:68:1b:08:0e:ff:d7:14:5a:
3c:a9:b2:42:5e:65:1a:60:fa:d4:1e:10:6f:f0:ac:67:a4:79:
50:39:20:05:ba:25:0f:69:7c:68:57:51:6b:a7:da:30:44:d4:
4e:44:4b:4a:05:48:d4:2a:c9:9f:06:2f:16:f5:87:7c:d6:38:
93:31:9a:f7:04:63:28:1b:72:a6:25:1d:cc:a3:d3:15:70:59:
57:9e:fc:ac:24:4f:f6:ec:0f:58:43:ab:fa:df:83:ee:ef:83:
40:16:01:9d:21:10:d7:db:0b:a9:f8:a8:db:5e:c3:3c:71:26:
5b:72:68:36
-----BEGIN CERTIFICATE-----
MIIFojCCBIqgAwIBAgISAYW6qlCvrOtLqUKTfcFsNA7IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlY2Y1MzAwN2M3OWNjNWUyZjJkNzM1NmJhOTEyMWE3OGMw
Yzc3MTQwHhcNMjMwMTE2MTMwMDAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4N2E0N2E4YmUxZDhhNmFkMWYzOWY2YTdmOGUwODIxN2U3YzUxYTA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiQ/8/LxvKO6/7AYherd4glFLYpBw
3QbjkfUYzD8zLvInDSJAIhdVQ5VM6fWOiNX73alGWZsU8x0ONjQCJ3OqxVKXGmFX
2/iqywhhXo6CthInR25PeO6mVi/oZwuNFGT9UsMvPKfES/kPgcXl/P/1t0mB/gAq
KNzIYAbt70EXsjm2iRv+gpNky1fv3+HsOgX2KI7snB0u7s2XGvlJFEK+EERRmkkx
RMbhPGLmjmdZzEZx89SM0cZFCqoe3rFK2pUz7Rp3Uu1zs6Aco9V5Z5pp9uKl8sqx
LtfIXEp0jLXmDN1Qa4GXNnbQkGmmFORB9cp7q9dCEEXAP3oJ/hpkCgtCkQIDAQAB
o4ICrjCCAqowHQYDVR0OBBYEFIekeovh2KatHzn2p/jgghfnxRoGMB8GA1UdIwQY
MBaAFE7PUwB8ecxeLy1zVrqRIaeMDHcUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHM5VEFIeDV6RjR2TFhOV3VwRWhwNHdNZHhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi82NDhjNzUtMmJlOC00YmZkLWExYjEt
Y2I4YjNhMDk0MjA5LzEvaDZSNmktSFlwcTBmT2Zhbi1PQ0NGLWZGR2dZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi82NDhjNzUtMmJlOC00YmZkLWExYjEtY2I4YjNhMDk0MjA5
LzEvVHM5VEFIeDV6RjR2TFhOV3VwRWhwNHdNZHhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHDBggrBgEFBQcBBwEB/wSBszCBsDCBmAQCAAEwgZEDAwEF
uAMDAh88AwMAJS8DAwAlbAMDACXhAwQGJeQAAwMALoYDAwEuqgMDAU+iAwMDT7gD
AwNQMAMDBVMAAwQHV2AAAwMAW14DAwJfMAMDAbIqAwMAsjgDAwC8LwMEAsFueAME
BsLMgAMDAcN0AwMAw80DAwDUoAMDANT0AwMA1RkDAwHVTAMDAtlgAwQE2XRgMBME
AgACMA0DBQMqAA9AAwQDKgEQMA0GCSqGSIb3DQEBCwUAA4IBAQAJuqyFVfPN/7x3
1Hq+Xj9NQK7htE4pjXbuz/MGIKXvupNtif7+qcAYFjSdND/JcvmzadCL2BfQBs4+
otcLCX1UeptaLE3LK9dip6QEiuc4I0GuILUwjELJXol9emzbT7c528nqSVjGndXj
mA8LuuMqNg3uOSjzsZ9pNlUh0E+hTAaiN7XyGj8taBsIDv/XFFo8qbJCXmUaYPrU
HhBv8KxnpHlQOSAFuiUPaXxoV1Frp9owRNROREtKBUjUKsmfBi8W9Yd81jiTMZr3
BGMoG3KmJR3Mo9MVcFlXnvysJE/27A9YQ6v634Pu74NAFgGdIRDX2wup+KjbXsM8
cSZbcmg2
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:23 2024 by rpki-client on console-fra.rpki-client.org