Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/QmgLRfMMWL5bWO4hWD06G1-z-Ys.roa
File: QmgLRfMMWL5bWO4hWD06G1-z-Ys.roa (raw, json)
Hash identifier: ZGWU7w2AnEloIWFj46J0aK4ItRv3ZVPzM6jlrfVa+W4=
Subject key identifier: 42:68:0B:45:F3:0C:58:BE:5B:58:EE:21:58:3D:3A:1B:5F:B3:F9:8B
Certificate issuer: /CN=e84df52af460ca6fa8c923a49f5cb795ea6707f7
Certificate serial: 018F756B6D89FA65395382B5895524A51B80
Authority key identifier: E8:4D:F5:2A:F4:60:CA:6F:A8:C9:23:A4:9F:5C:B7:95:EA:67:07:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/QmgLRfMMWL5bWO4hWD06G1-z-Ys.roa
Signing time: Tue 14 May 2024 04:45:25 +0000
ROA not before: Tue 14 May 2024 04:45:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203
IP address blocks: 45.94.14.0/24 maxlen: 24
45.94.15.0/24 maxlen: 24
91.229.52.0/22 maxlen: 22
212.26.0.0/17 maxlen: 17
212.26.6.0/24 maxlen: 24
212.26.7.0/24 maxlen: 24
212.26.8.0/24 maxlen: 24
212.26.16.0/24 maxlen: 24
212.26.17.0/24 maxlen: 24
212.26.18.0/24 maxlen: 24
212.26.19.0/24 maxlen: 24
212.26.20.0/24 maxlen: 24
212.26.21.0/24 maxlen: 24
212.26.22.0/24 maxlen: 24
212.26.23.0/24 maxlen: 24
212.26.24.0/21 maxlen: 24
212.26.32.0/24 maxlen: 24
212.26.36.0/24 maxlen: 24
212.26.37.0/24 maxlen: 24
212.26.38.0/24 maxlen: 24
212.26.39.0/24 maxlen: 24
212.26.40.0/24 maxlen: 24
212.26.41.0/24 maxlen: 24
212.26.42.0/24 maxlen: 24
212.26.43.0/24 maxlen: 24
212.26.44.0/24 maxlen: 24
212.26.45.0/24 maxlen: 24
212.26.46.0/24 maxlen: 24
212.26.48.0/24 maxlen: 24
212.138.0.0/16 maxlen: 16
212.138.41.0/24 maxlen: 25
212.138.42.0/24 maxlen: 25
212.138.43.0/24 maxlen: 24
212.138.52.0/22 maxlen: 24
212.138.56.0/21 maxlen: 24
212.138.64.0/22 maxlen: 24
212.138.70.0/24 maxlen: 24
212.138.71.0/24 maxlen: 24
212.138.72.0/22 maxlen: 24
212.138.76.0/22 maxlen: 24
212.138.80.0/23 maxlen: 23
212.138.82.0/24 maxlen: 24
212.138.83.0/24 maxlen: 24
212.138.84.0/23 maxlen: 24
212.138.86.0/24 maxlen: 24
212.138.88.0/24 maxlen: 25
212.138.92.0/24 maxlen: 24
212.138.94.0/24 maxlen: 24
212.138.96.0/24 maxlen: 24
212.138.97.0/24 maxlen: 24
212.138.98.0/23 maxlen: 23
212.138.104.0/24 maxlen: 25
212.138.108.0/24 maxlen: 24
212.138.115.0/24 maxlen: 24
212.138.116.0/24 maxlen: 24
212.138.117.0/24 maxlen: 24
212.138.118.0/24 maxlen: 24
212.138.119.0/24 maxlen: 24
212.138.120.0/24 maxlen: 24
212.138.121.0/24 maxlen: 24
212.138.125.0/24 maxlen: 25
212.138.126.0/24 maxlen: 25
212.138.127.0/24 maxlen: 25
212.138.128.0/24 maxlen: 24
212.138.130.0/24 maxlen: 24
212.138.134.0/24 maxlen: 24
212.138.139.0/24 maxlen: 24
212.138.140.0/24 maxlen: 24
212.138.150.0/24 maxlen: 24
212.138.153.0/24 maxlen: 25
212.138.155.0/24 maxlen: 25
212.138.157.0/24 maxlen: 24
212.138.160.0/24 maxlen: 24
212.138.162.0/24 maxlen: 24
212.138.164.0/24 maxlen: 25
212.138.166.0/24 maxlen: 24
212.138.168.0/24 maxlen: 24
212.138.170.0/24 maxlen: 24
212.138.172.0/24 maxlen: 24
212.138.175.0/24 maxlen: 25
212.138.176.0/24 maxlen: 24
212.138.177.0/24 maxlen: 24
212.138.180.0/24 maxlen: 25
212.138.181.0/24 maxlen: 25
212.138.183.0/24 maxlen: 25
212.138.185.0/24 maxlen: 24
212.138.187.0/24 maxlen: 24
212.138.188.0/24 maxlen: 25
212.138.190.0/24 maxlen: 24
212.138.192.0/24 maxlen: 24
212.138.194.0/24 maxlen: 24
212.138.196.0/24 maxlen: 24
212.138.201.0/24 maxlen: 24
212.138.202.0/24 maxlen: 24
212.138.203.0/24 maxlen: 24
212.138.206.0/24 maxlen: 24
212.138.250.0/24 maxlen: 24
2001:1490::/48 maxlen: 48
2001:1490:1::/48 maxlen: 48
2001:1490:103::/48 maxlen: 48
2001:1490:106::/48 maxlen: 48
2001:1490:107::/48 maxlen: 48
2001:1490:110::/48 maxlen: 49
2001:1490:110:8000::/49 maxlen: 49
2001:1490:111::/48 maxlen: 48
2001:1490:113::/48 maxlen: 48
2001:1497:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 06:49:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:75:6b:6d:89:fa:65:39:53:82:b5:89:55:24:a5:1b:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e84df52af460ca6fa8c923a49f5cb795ea6707f7
Validity
Not Before: May 14 04:45:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=42680b45f30c58be5b58ee21583d3a1b5fb3f98b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3c:80:de:af:6b:ea:7c:5a:e2:c1:4c:e3:f5:
3f:17:4a:23:11:0c:37:34:7c:2f:57:03:83:72:c0:
5e:03:fa:19:88:2f:9f:a7:ab:2b:29:51:15:08:54:
57:73:82:f9:ea:b0:32:e6:c0:25:88:e2:9b:0d:06:
96:98:e9:d2:54:53:89:bf:01:08:59:3e:9b:9d:b3:
4b:05:c4:45:ed:51:11:ac:f9:f2:f4:46:52:6e:6b:
da:6c:63:04:7c:36:71:59:88:77:ec:ba:fd:e1:fc:
61:7d:81:ce:d4:4c:d3:15:8a:75:6f:bc:4e:07:d5:
c1:ea:d9:00:dd:52:53:a4:37:f8:29:37:0e:e0:cd:
16:2e:fe:4e:58:f1:fe:12:8c:27:6c:d2:f4:13:dd:
03:1d:8c:41:94:a4:7f:aa:b8:aa:3b:21:ac:b4:87:
bc:cf:a5:1a:08:cd:eb:b1:3f:cf:66:78:ad:81:17:
11:ce:81:f4:74:4b:99:25:93:ad:0c:88:a9:3d:65:
d5:6c:df:a5:82:5c:34:ec:d2:04:01:e1:db:9c:9f:
9c:12:72:39:43:5f:bc:3b:1d:d6:60:26:56:94:36:
ba:97:1b:c1:c0:02:39:5d:7f:f1:5d:45:ad:8c:3a:
c0:b4:62:aa:89:f0:91:c0:53:70:ee:f0:c9:ed:8c:
d0:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:68:0B:45:F3:0C:58:BE:5B:58:EE:21:58:3D:3A:1B:5F:B3:F9:8B
X509v3 Authority Key Identifier:
keyid:E8:4D:F5:2A:F4:60:CA:6F:A8:C9:23:A4:9F:5C:B7:95:EA:67:07:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/QmgLRfMMWL5bWO4hWD06G1-z-Ys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/6E31KvRgym-oySOkn1y3lepnB_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.14.0/23
91.229.52.0/22
212.26.0.0/17
212.138.0.0/16
IPv6:
2001:1490::/47
2001:1490:103::/48
2001:1490:106::/47
2001:1490:110::/47
2001:1490:113::/48
2001:1497:2::/48
Signature Algorithm: sha256WithRSAEncryption
4c:8d:9b:0c:2a:19:d8:b1:44:ab:83:0e:9d:e5:c8:4c:aa:81:
30:a3:37:b3:de:74:49:1e:68:41:b7:44:1f:df:83:41:78:52:
1b:58:4c:a7:70:92:f7:68:55:36:50:bb:93:10:a6:50:61:21:
e2:22:3a:2e:5a:8e:6b:56:9c:d3:cd:b2:97:5e:b3:a6:07:1b:
ea:62:a6:97:7e:b9:d8:e4:ff:36:09:58:a9:c9:e2:d3:96:3d:
85:6d:1f:8a:3c:29:9d:f4:fc:19:fd:67:b0:88:e6:b3:06:60:
11:87:7e:74:4e:49:62:ed:c1:87:0f:d2:91:56:69:c4:3d:73:
2b:64:c6:0b:50:b1:c2:bc:81:18:c3:28:8b:86:e3:43:88:75:
3e:f5:70:62:d5:df:7e:83:1c:35:54:03:57:a1:b6:b4:73:8f:
d1:55:1b:20:18:d0:7a:a1:bb:75:da:66:be:29:88:3c:55:4f:
c9:ef:41:ed:2c:a2:b4:25:22:ea:02:61:b5:ca:63:86:5a:00:
66:12:1b:4a:c9:d9:78:05:61:67:ac:06:7a:1d:23:5d:cc:59:
03:45:93:2c:be:88:14:f8:03:f9:39:01:27:c5:18:8e:b2:eb:
35:a9:78:f4:7a:6f:7a:81:6d:30:4d:cd:ed:86:d2:ce:39:36:
c2:2d:f9:be
-----BEGIN CERTIFICATE-----
MIIFTDCCBDSgAwIBAgISAY91a22J+mU5U4K1iVUkpRuAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU4NGRmNTJhZjQ2MGNhNmZhOGM5MjNhNDlmNWNiNzk1ZWE2
NzA3ZjcwHhcNMjQwNTE0MDQ0NTI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MjY4MGI0NWYzMGM1OGJlNWI1OGVlMjE1ODNkM2ExYjVmYjNmOThiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTyA3q9r6nxa4sFM4/U/F0ojEQw3
NHwvVwODcsBeA/oZiC+fp6srKVEVCFRXc4L56rAy5sAliOKbDQaWmOnSVFOJvwEI
WT6bnbNLBcRF7VERrPny9EZSbmvabGMEfDZxWYh37Lr94fxhfYHO1EzTFYp1b7xO
B9XB6tkA3VJTpDf4KTcO4M0WLv5OWPH+EownbNL0E90DHYxBlKR/qriqOyGstIe8
z6UaCM3rsT/PZnitgRcRzoH0dEuZJZOtDIipPWXVbN+lglw07NIEAeHbnJ+cEnI5
Q1+8Ox3WYCZWlDa6lxvBwAI5XX/xXUWtjDrAtGKqifCRwFNw7vDJ7YzQwwIDAQAB
o4ICWDCCAlQwHQYDVR0OBBYEFEJoC0XzDFi+W1juIVg9Ohtfs/mLMB8GA1UdIwQY
MBaAFOhN9Sr0YMpvqMkjpJ9ct5XqZwf3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNkUzMUt2Umd5bS1veVNPa24xeTNsZXBuQl9jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9iZTY5MmItNzkzMi00NTU0LThjMTUt
OTRjMmZkYTM5ZWFkLzEvUW1nTFJmTU1XTDViV080aFdEMDZHMS16LVlzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi9iZTY5MmItNzkzMi00NTU0LThjMTUtOTRjMmZkYTM5ZWFk
LzEvNkUzMUt2Umd5bS1veVNPa24xeTNsZXBuQl9jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG4GCCsGAQUFBwEHAQH/BF8wXTAdBAIAATAXAwQBLV4OAwQC
W+U0AwQH1BoAAwMA1IowPAQCAAIwNgMHASABFJAAAAMHACABFJABAwMHASABFJAB
BgMHASABFJABEAMHACABFJABEwMHACABFJcAAjANBgkqhkiG9w0BAQsFAAOCAQEA
TI2bDCoZ2LFEq4MOneXITKqBMKM3s950SR5oQbdEH9+DQXhSG1hMp3CS92hVNlC7
kxCmUGEh4iI6LlqOa1ac082yl16zpgcb6mKml3652OT/NglYqcni05Y9hW0fijwp
nfT8Gf1nsIjmswZgEYd+dE5JYu3Bhw/SkVZpxD1zK2TGC1CxwryBGMMoi4bjQ4h1
PvVwYtXffoMcNVQDV6G2tHOP0VUbIBjQeqG7ddpmvimIPFVPye9B7SyitCUi6gJh
tcpjhloAZhIbSsnZeAVhZ6wGeh0jXcxZA0WTLL6IFPgD+TkBJ8UYjrLrNal49Hpv
eoFtME3N7YbSzjk2wi35vg==
-----END CERTIFICATE-----
Generated at Thu May 23 09:27:14 2024 by rpki-client on console-ams.rpki-client.org