Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/b65126-31cb-4ae6-beca-e3e04bd4f242/1/37adaxnbnp52jbkm7joTVH9Z7hc.roa
File: 37adaxnbnp52jbkm7joTVH9Z7hc.roa (raw, json)
Hash identifier: c7Ow43oe7ccVbKX2zsuLch/HeIS2mR+mzgjzfBm5tyc=
Subject key identifier: DF:B6:9D:6B:19:DB:9E:9E:76:8D:B9:26:EE:3A:13:54:7F:59:EE:17
Certificate issuer: /CN=56d641486bdc98d4a7de0928a42d7d68e6015f30
Certificate serial: 01920EA6DA13F50902EE1ECAD8637DFBE3CB
Authority key identifier: 56:D6:41:48:6B:DC:98:D4:A7:DE:09:28:A4:2D:7D:68:E6:01:5F:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VtZBSGvcmNSn3gkopC19aOYBXzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/b65126-31cb-4ae6-beca-e3e04bd4f242/1/37adaxnbnp52jbkm7joTVH9Z7hc.roa
Signing time: Fri 20 Sep 2024 08:57:48 +0000
ROA not before: Fri 20 Sep 2024 08:57:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216071
IP address blocks: 77.238.224.0/24 maxlen: 24
77.238.225.0/24 maxlen: 24
77.238.226.0/24 maxlen: 24
77.238.227.0/24 maxlen: 24
77.238.228.0/24 maxlen: 24
77.238.229.0/24 maxlen: 24
77.238.230.0/24 maxlen: 24
77.238.231.0/24 maxlen: 24
77.238.232.0/24 maxlen: 24
77.238.233.0/24 maxlen: 24
77.238.234.0/24 maxlen: 24
77.238.235.0/24 maxlen: 24
77.238.236.0/24 maxlen: 24
77.238.237.0/24 maxlen: 24
77.238.238.0/24 maxlen: 24
77.238.239.0/24 maxlen: 24
77.238.240.0/24 maxlen: 24
77.238.241.0/24 maxlen: 24
77.238.242.0/24 maxlen: 24
77.238.243.0/24 maxlen: 24
77.238.244.0/24 maxlen: 24
77.238.245.0/24 maxlen: 24
77.238.246.0/24 maxlen: 24
77.238.247.0/24 maxlen: 24
77.238.248.0/24 maxlen: 24
77.238.249.0/24 maxlen: 24
77.238.250.0/24 maxlen: 24
77.238.251.0/24 maxlen: 24
77.238.252.0/24 maxlen: 24
77.238.253.0/24 maxlen: 24
77.238.254.0/24 maxlen: 24
77.238.255.0/24 maxlen: 24
80.85.244.0/24 maxlen: 24
80.85.245.0/24 maxlen: 24
80.85.246.0/24 maxlen: 24
80.85.247.0/24 maxlen: 24
91.246.41.0/24 maxlen: 24
93.183.124.0/24 maxlen: 24
93.183.125.0/24 maxlen: 24
93.183.126.0/24 maxlen: 24
93.183.127.0/24 maxlen: 24
94.103.80.0/24 maxlen: 24
94.103.81.0/24 maxlen: 24
94.103.82.0/24 maxlen: 24
94.103.94.0/24 maxlen: 24
94.103.95.0/24 maxlen: 24
109.234.33.0/24 maxlen: 24
109.234.34.0/24 maxlen: 24
109.234.35.0/24 maxlen: 24
109.234.36.0/24 maxlen: 24
109.234.37.0/24 maxlen: 24
109.234.38.0/24 maxlen: 24
109.234.39.0/24 maxlen: 24
193.178.169.0/24 maxlen: 24
193.178.172.0/24 maxlen: 24
193.178.174.0/24 maxlen: 24
194.164.32.0/24 maxlen: 24
194.164.33.0/24 maxlen: 24
194.164.34.0/24 maxlen: 24
194.164.35.0/24 maxlen: 24
195.2.86.0/24 maxlen: 24
195.2.92.0/24 maxlen: 24
195.2.93.0/24 maxlen: 24
195.200.16.0/24 maxlen: 24
195.200.17.0/24 maxlen: 24
195.200.18.0/24 maxlen: 24
195.200.19.0/24 maxlen: 24
195.200.26.0/24 maxlen: 24
195.200.28.0/24 maxlen: 24
195.200.29.0/24 maxlen: 24
195.200.30.0/24 maxlen: 24
195.200.31.0/24 maxlen: 24
212.34.144.0/24 maxlen: 24
212.34.145.0/24 maxlen: 24
212.34.146.0/24 maxlen: 24
212.34.147.0/24 maxlen: 24
212.34.148.0/24 maxlen: 24
212.34.149.0/24 maxlen: 24
212.34.150.0/24 maxlen: 24
212.34.151.0/24 maxlen: 24
212.34.152.0/24 maxlen: 24
212.34.153.0/24 maxlen: 24
212.34.154.0/24 maxlen: 24
212.34.155.0/24 maxlen: 24
2a06:7740::/48 maxlen: 48
2a0d:8480:1::/48 maxlen: 48
2a0d:8480:3::/48 maxlen: 48
2a14:1e00:1::/48 maxlen: 48
2a14:1e00:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 21 Sep 2024 23:31:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:0e:a6:da:13:f5:09:02:ee:1e:ca:d8:63:7d:fb:e3:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56d641486bdc98d4a7de0928a42d7d68e6015f30
Validity
Not Before: Sep 20 08:57:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dfb69d6b19db9e9e768db926ee3a13547f59ee17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:63:80:1b:ad:54:af:04:5d:b0:96:a0:bd:8b:
25:6e:5a:56:84:a4:f1:c2:78:25:29:2f:de:be:f9:
0a:74:31:68:04:6b:b2:f7:de:fd:50:ee:af:2a:ad:
4e:63:38:21:8d:85:ea:ed:ec:41:a3:87:27:07:65:
5f:eb:15:8a:f3:34:12:6b:f8:f7:fa:00:0a:a2:f7:
f2:92:e5:44:eb:cb:d9:a2:d6:8c:0b:aa:c4:a4:ce:
a6:1e:d5:6b:e6:bb:d6:cb:a9:2b:8b:a1:5e:87:13:
70:1d:f5:c5:9f:b1:99:71:cb:2c:1f:77:db:60:1f:
4a:b5:b7:47:3c:0a:34:30:8d:f2:93:22:1d:cd:82:
42:d7:a8:99:6c:51:05:07:66:ba:62:89:ac:7e:aa:
96:02:08:ed:8b:6c:a1:1f:6a:e3:a0:41:69:2c:86:
1b:d0:da:69:1a:c7:16:9b:cf:f6:b6:d4:f1:e1:06:
e8:fc:da:70:01:1c:36:28:98:87:57:bd:9e:ed:7c:
0e:ed:30:6e:11:45:c6:c2:e9:54:3f:ce:92:bc:f1:
f8:26:31:df:73:5c:c9:bb:57:a0:72:66:c3:de:4e:
a5:8e:7a:df:48:c4:4a:11:a5:e9:ce:d1:e8:fc:5e:
8a:85:ab:e7:bb:cb:a2:2a:2b:cc:c4:f8:80:f2:80:
02:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:B6:9D:6B:19:DB:9E:9E:76:8D:B9:26:EE:3A:13:54:7F:59:EE:17
X509v3 Authority Key Identifier:
keyid:56:D6:41:48:6B:DC:98:D4:A7:DE:09:28:A4:2D:7D:68:E6:01:5F:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VtZBSGvcmNSn3gkopC19aOYBXzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b65126-31cb-4ae6-beca-e3e04bd4f242/1/37adaxnbnp52jbkm7joTVH9Z7hc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b65126-31cb-4ae6-beca-e3e04bd4f242/1/VtZBSGvcmNSn3gkopC19aOYBXzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.238.224.0/19
80.85.244.0/22
91.246.41.0/24
93.183.124.0/22
94.103.80.0-94.103.82.255
94.103.94.0/23
109.234.33.0-109.234.39.255
193.178.169.0/24
193.178.172.0/24
193.178.174.0/24
194.164.32.0/22
195.2.86.0/24
195.2.92.0/23
195.200.16.0/22
195.200.26.0/24
195.200.28.0/22
212.34.144.0-212.34.155.255
IPv6:
2a06:7740::/48
2a0d:8480:1::/48
2a0d:8480:3::/48
2a14:1e00:1::-2a14:1e00:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
6d:19:53:7e:33:ee:75:09:ac:85:ed:e7:3f:f1:0f:89:4e:d7:
48:fe:65:98:7a:ad:52:f9:85:51:ce:e9:66:29:73:41:a7:00:
01:87:0e:2e:be:ac:e0:9c:10:7c:5b:c4:28:8d:d9:04:c7:f8:
f2:3d:56:82:5d:8d:72:11:f0:5a:88:4d:2d:08:30:b5:88:97:
5f:c1:3f:35:fe:a5:60:43:81:ff:5a:68:d0:31:a2:49:0c:ac:
31:43:4c:fd:6e:87:5b:2f:3c:6a:3d:81:bf:53:87:fc:6a:8e:
07:62:7a:e3:57:37:65:42:81:cd:d8:b3:81:50:1a:3e:c9:13:
b1:00:e9:63:c5:8c:04:3c:fa:e9:f6:79:6a:92:c8:12:90:71:
7d:aa:5a:02:ef:dd:57:73:9e:5f:77:af:81:d5:de:25:b9:5b:
ee:8a:d4:c5:ca:84:26:4c:6f:59:38:9b:ae:db:7c:45:09:1b:
b0:a6:e2:f7:65:da:8d:68:ee:42:a5:18:60:96:0e:33:da:23:
61:7e:cf:40:24:f8:89:cb:20:ee:5d:bf:46:e5:9a:2b:40:7e:
64:b9:28:aa:c0:36:1c:fd:69:3e:72:48:da:3c:51:c0:6d:81:
d3:6d:81:4b:36:02:05:8b:66:d6:93:f6:7b:5e:24:df:fc:41:
c5:23:1a:22
-----BEGIN CERTIFICATE-----
MIIFsDCCBJigAwIBAgISAZIOptoT9QkC7h7K2GN9++PLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU2ZDY0MTQ4NmJkYzk4ZDRhN2RlMDkyOGE0MmQ3ZDY4ZTYw
MTVmMzAwHhcNMjQwOTIwMDg1NzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZmI2OWQ2YjE5ZGI5ZTllNzY4ZGI5MjZlZTNhMTM1NDdmNTllZTE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiGOAG61UrwRdsJagvYslblpWhKTx
wnglKS/evvkKdDFoBGuy9979UO6vKq1OYzghjYXq7exBo4cnB2Vf6xWK8zQSa/j3
+gAKovfykuVE68vZotaMC6rEpM6mHtVr5rvWy6kri6FehxNwHfXFn7GZccssH3fb
YB9KtbdHPAo0MI3ykyIdzYJC16iZbFEFB2a6YomsfqqWAgjti2yhH2rjoEFpLIYb
0NppGscWm8/2ttTx4Qbo/NpwARw2KJiHV72e7XwO7TBuEUXGwulUP86SvPH4JjHf
c1zJu1egcmbD3k6ljnrfSMRKEaXpztHo/F6Khavnu8uiKivMxPiA8oACcwIDAQAB
o4ICvDCCArgwHQYDVR0OBBYEFN+2nWsZ256edo25Ju46E1R/We4XMB8GA1UdIwQY
MBaAFFbWQUhr3JjUp94JKKQtfWjmAV8wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVnRaQlNHdmNtTlNuM2drb3BDMTlhT1lCWHpBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9iNjUxMjYtMzFjYi00YWU2LWJlY2Et
ZTNlMDRiZDRmMjQyLzEvMzdhZGF4bmJucDUyamJrbTdqb1RWSDlaN2hjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy9iNjUxMjYtMzFjYi00YWU2LWJlY2EtZTNlMDRiZDRmMjQy
LzEvVnRaQlNHdmNtTlNuM2drb3BDMTlhT1lCWHpBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHRBggrBgEFBQcBBwEB/wSBwTCBvjCBhAQCAAEwfgMEBU3u
4AMEAlBV9AMEAFv2KQMEAl23fDAMAwQEXmdQAwQAXmdSAwQBXmdeMAwDBABt6iED
BANt6iADBADBsqkDBADBsqwDBADBsq4DBALCpCADBADDAlYDBAHDAlwDBALDyBAD
BADDyBoDBALDyBwwDAMEBNQikAMEAtQimDA1BAIAAjAvAwcAKgZ3QAAAAwcAKg2E
gAABAwcAKg2EgAADMBIDBwAqFB4AAAEDBwAqFB4AAAIwDQYJKoZIhvcNAQELBQAD
ggEBAG0ZU34z7nUJrIXt5z/xD4lO10j+ZZh6rVL5hVHO6WYpc0GnAAGHDi6+rOCc
EHxbxCiN2QTH+PI9VoJdjXIR8FqITS0IMLWIl1/BPzX+pWBDgf9aaNAxokkMrDFD
TP1uh1svPGo9gb9Th/xqjgdieuNXN2VCgc3Ys4FQGj7JE7EA6WPFjAQ8+un2eWqS
yBKQcX2qWgLv3Vdznl93r4HV3iW5W+6K1MXKhCZMb1k4m67bfEUJG7Cm4vdl2o1o
7kKlGGCWDjPaI2F+z0Ak+InLIO5dv0blmitAfmS5KKrANhz9aT5ySNo8UcBtgdNt
gUs2AgWLZtaT9nteJN/8QcUjGiI=
-----END CERTIFICATE-----
Generated at Sun Sep 22 03:03:22 2024 by rpki-client on console-ams.rpki-client.org