Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/zI527Pq45W5xnVfSVRa3gEXoV1k.roa
File: zI527Pq45W5xnVfSVRa3gEXoV1k.roa (raw, json)
Hash identifier: W/m0HMsZyQqCUW/F+keKeOhXNjaoUbfZyUODNu5D54Q=
Subject key identifier: CC:8E:76:EC:FA:B8:E5:6E:71:9D:57:D2:55:16:B7:80:45:E8:57:59
Certificate issuer: /CN=e84df52af460ca6fa8c923a49f5cb795ea6707f7
Certificate serial: 01922235DF24FD0E9CBD94ED1D36FDA06D98
Authority key identifier: E8:4D:F5:2A:F4:60:CA:6F:A8:C9:23:A4:9F:5C:B7:95:EA:67:07:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/zI527Pq45W5xnVfSVRa3gEXoV1k.roa
Signing time: Tue 24 Sep 2024 04:06:48 +0000
ROA not before: Tue 24 Sep 2024 04:06:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3356
IP address blocks: 45.94.14.0/24 maxlen: 24
45.94.15.0/24 maxlen: 24
91.229.52.0/22 maxlen: 22
212.26.6.0/23 maxlen: 24
212.26.7.0/24 maxlen: 24
212.26.8.0/22 maxlen: 24
212.26.16.0/24 maxlen: 24
212.26.17.0/24 maxlen: 24
212.26.18.0/24 maxlen: 24
212.26.19.0/24 maxlen: 24
212.26.20.0/24 maxlen: 24
212.26.21.0/24 maxlen: 24
212.26.22.0/24 maxlen: 24
212.26.23.0/24 maxlen: 24
212.26.24.0/21 maxlen: 24
212.26.32.0/24 maxlen: 24
212.26.36.0/24 maxlen: 25
212.26.37.0/24 maxlen: 25
212.26.38.0/24 maxlen: 24
212.26.39.0/24 maxlen: 24
212.26.40.0/24 maxlen: 24
212.26.41.0/24 maxlen: 24
212.26.42.0/24 maxlen: 24
212.26.43.0/24 maxlen: 24
212.26.44.0/24 maxlen: 24
212.26.45.0/24 maxlen: 24
212.26.46.0/23 maxlen: 24
212.26.48.0/24 maxlen: 24
212.26.50.0/23 maxlen: 24
212.26.52.0/24 maxlen: 24
212.26.53.0/24 maxlen: 24
212.26.54.0/24 maxlen: 24
212.26.56.0/24 maxlen: 24
212.26.58.0/24 maxlen: 24
212.26.60.0/24 maxlen: 24
212.26.63.0/24 maxlen: 24
212.26.64.0/24 maxlen: 24
212.26.65.0/24 maxlen: 24
212.26.68.0/23 maxlen: 24
212.26.71.0/24 maxlen: 24
212.26.72.0/24 maxlen: 25
212.26.74.0/24 maxlen: 25
212.26.76.0/24 maxlen: 24
212.26.78.0/24 maxlen: 24
212.138.41.0/24 maxlen: 24
212.138.42.0/24 maxlen: 25
212.138.43.0/24 maxlen: 24
212.138.52.0/22 maxlen: 24
212.138.56.0/21 maxlen: 24
212.138.64.0/22 maxlen: 24
212.138.70.0/24 maxlen: 24
212.138.71.0/24 maxlen: 24
212.138.72.0/22 maxlen: 24
212.138.76.0/22 maxlen: 24
212.138.80.0/23 maxlen: 23
212.138.82.0/24 maxlen: 24
212.138.83.0/24 maxlen: 24
212.138.84.0/23 maxlen: 24
212.138.86.0/24 maxlen: 24
212.138.88.0/24 maxlen: 25
212.138.92.0/24 maxlen: 24
212.138.94.0/24 maxlen: 24
212.138.96.0/21 maxlen: 24
212.138.97.0/24 maxlen: 24
212.138.98.0/23 maxlen: 23
212.138.104.0/24 maxlen: 24
212.138.108.0/24 maxlen: 24
212.138.115.0/24 maxlen: 24
212.138.116.0/24 maxlen: 24
212.138.117.0/24 maxlen: 24
212.138.118.0/24 maxlen: 24
212.138.119.0/24 maxlen: 24
212.138.120.0/24 maxlen: 24
212.138.121.0/24 maxlen: 24
212.138.125.0/24 maxlen: 25
212.138.126.0/24 maxlen: 25
212.138.127.0/24 maxlen: 25
212.138.128.0/24 maxlen: 24
212.138.130.0/24 maxlen: 24
212.138.132.0/24 maxlen: 24
212.138.134.0/24 maxlen: 24
212.138.139.0/24 maxlen: 24
212.138.140.0/24 maxlen: 24
212.138.147.0/24 maxlen: 24
212.138.150.0/24 maxlen: 24
212.138.153.0/24 maxlen: 24
212.138.155.0/24 maxlen: 25
212.138.157.0/24 maxlen: 24
212.138.160.0/24 maxlen: 24
212.138.162.0/24 maxlen: 24
212.138.164.0/24 maxlen: 25
212.138.166.0/24 maxlen: 24
212.138.168.0/24 maxlen: 24
212.138.170.0/24 maxlen: 25
212.138.172.0/24 maxlen: 24
212.138.175.0/24 maxlen: 25
212.138.176.0/24 maxlen: 24
212.138.177.0/24 maxlen: 24
212.138.180.0/24 maxlen: 24
212.138.181.0/24 maxlen: 25
212.138.183.0/24 maxlen: 25
212.138.185.0/24 maxlen: 24
212.138.187.0/24 maxlen: 24
212.138.188.0/24 maxlen: 25
212.138.190.0/24 maxlen: 24
212.138.192.0/24 maxlen: 24
212.138.194.0/24 maxlen: 24
212.138.196.0/24 maxlen: 24
212.138.201.0/24 maxlen: 24
212.138.202.0/24 maxlen: 24
212.138.203.0/24 maxlen: 24
212.138.206.0/24 maxlen: 24
212.138.207.0/24 maxlen: 24
212.138.250.0/24 maxlen: 24
2001:1490::/48 maxlen: 48
2001:1490:1::/48 maxlen: 48
2001:1490:103::/48 maxlen: 48
2001:1490:106::/48 maxlen: 48
2001:1490:107::/48 maxlen: 48
2001:1490:110::/48 maxlen: 49
2001:1490:110:8000::/49 maxlen: 49
2001:1490:111::/48 maxlen: 48
2001:1490:113::/48 maxlen: 48
2001:1490:114::/48 maxlen: 48
2001:1497:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 15 Oct 2024 10:38:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:22:35:df:24:fd:0e:9c:bd:94:ed:1d:36:fd:a0:6d:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e84df52af460ca6fa8c923a49f5cb795ea6707f7
Validity
Not Before: Sep 24 04:06:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cc8e76ecfab8e56e719d57d25516b78045e85759
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ff:e0:c1:50:d4:be:be:c3:36:3a:ca:f5:fb:
d1:99:c8:e1:af:a6:a8:30:ee:ad:33:41:12:4a:b7:
76:c0:5f:65:8d:ff:25:13:37:31:9b:e3:9c:e0:c6:
f2:35:2f:1a:cd:35:5e:dd:a9:ec:fd:a1:75:66:dd:
71:37:7c:0d:81:2b:d3:84:fd:18:a1:00:d8:b5:9d:
f7:45:80:b8:ae:ca:24:f3:b7:1c:bb:8a:a1:95:61:
64:48:ad:51:69:e2:8d:2a:1d:c2:dc:e6:34:2f:63:
ed:cb:78:cc:af:97:d7:6b:bb:14:fc:2c:c1:80:b5:
a4:27:5d:4e:01:ab:73:bc:a8:38:e5:08:0e:47:62:
92:cc:76:30:c9:af:b9:59:64:5c:26:59:67:54:69:
30:e3:0c:9e:44:51:3d:ba:13:dc:32:26:16:02:1b:
18:81:7d:98:21:3e:f3:1e:fc:cf:61:38:30:38:ef:
d3:eb:0f:8b:ad:c1:17:b7:fd:a9:ec:ac:4d:8a:ea:
ef:af:24:99:1a:3e:33:df:74:a8:dc:ce:e0:31:5d:
df:7c:f5:b5:d5:8b:c2:58:11:79:0c:88:00:1a:50:
9d:56:2e:8f:38:95:22:fb:47:3b:6e:75:67:af:18:
fd:76:5d:f1:5a:35:5a:6f:0a:23:36:14:46:72:ed:
78:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:8E:76:EC:FA:B8:E5:6E:71:9D:57:D2:55:16:B7:80:45:E8:57:59
X509v3 Authority Key Identifier:
keyid:E8:4D:F5:2A:F4:60:CA:6F:A8:C9:23:A4:9F:5C:B7:95:EA:67:07:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6E31KvRgym-oySOkn1y3lepnB_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/zI527Pq45W5xnVfSVRa3gEXoV1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be692b-7932-4554-8c15-94c2fda39ead/1/6E31KvRgym-oySOkn1y3lepnB_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.14.0/23
91.229.52.0/22
212.26.6.0-212.26.11.255
212.26.16.0-212.26.32.255
212.26.36.0-212.26.48.255
212.26.50.0-212.26.54.255
212.26.56.0/24
212.26.58.0/24
212.26.60.0/24
212.26.63.0-212.26.65.255
212.26.68.0/23
212.26.71.0-212.26.72.255
212.26.74.0/24
212.26.76.0/24
212.26.78.0/24
212.138.41.0-212.138.43.255
212.138.52.0-212.138.67.255
212.138.70.0-212.138.86.255
212.138.88.0/24
212.138.92.0/24
212.138.94.0/24
212.138.96.0-212.138.104.255
212.138.108.0/24
212.138.115.0-212.138.121.255
212.138.125.0-212.138.128.255
212.138.130.0/24
212.138.132.0/24
212.138.134.0/24
212.138.139.0-212.138.140.255
212.138.147.0/24
212.138.150.0/24
212.138.153.0/24
212.138.155.0/24
212.138.157.0/24
212.138.160.0/24
212.138.162.0/24
212.138.164.0/24
212.138.166.0/24
212.138.168.0/24
212.138.170.0/24
212.138.172.0/24
212.138.175.0-212.138.177.255
212.138.180.0/23
212.138.183.0/24
212.138.185.0/24
212.138.187.0-212.138.188.255
212.138.190.0/24
212.138.192.0/24
212.138.194.0/24
212.138.196.0/24
212.138.201.0-212.138.203.255
212.138.206.0/23
212.138.250.0/24
IPv6:
2001:1490::/47
2001:1490:103::/48
2001:1490:106::/47
2001:1490:110::/47
2001:1490:113::-2001:1490:114:ffff:ffff:ffff:ffff:ffff
2001:1497:2::/48
Signature Algorithm: sha256WithRSAEncryption
9a:98:03:b5:29:ea:e1:47:58:d9:78:f4:81:06:95:15:67:c0:
ad:eb:c4:dc:c7:1e:16:71:3e:2f:36:a5:f7:ab:e3:ec:5d:48:
c9:06:b8:b9:05:b4:11:bd:de:5f:5b:4e:bc:50:fa:7a:08:ed:
03:0e:1c:69:d2:ce:27:32:bc:0d:72:87:f2:54:56:dd:24:8d:
12:dc:6d:d9:ee:98:2f:df:59:94:5f:bc:b4:0a:16:60:df:5b:
8a:01:46:21:48:3a:fd:c8:32:c3:e5:7d:2a:0c:bd:4c:00:cb:
2c:3d:45:67:0a:fc:22:67:ea:8c:3d:1f:27:2d:6e:01:94:c6:
7a:1c:df:b0:90:84:39:ed:ed:02:de:03:ca:5b:76:87:44:80:
cb:b8:4b:dd:82:41:de:65:57:e6:a1:08:c9:b2:a5:4b:fe:7a:
2d:f4:f2:f5:f1:ed:ca:c4:15:42:81:c8:a7:0d:a7:65:82:93:
cd:64:c1:a7:78:0a:e2:17:83:2d:2f:80:a9:06:2c:c3:ec:57:
9c:ee:94:ec:2d:ed:b6:b1:fb:4b:c2:2e:5e:a4:2d:eb:5f:35:
9c:0b:d5:9d:f4:0b:43:0e:99:26:42:48:ee:11:9b:84:5d:c4:
df:62:5c:2c:72:68:78:8e:6c:3f:b9:2a:e2:48:b6:9f:1a:a0:
41:f0:8d:30
-----BEGIN CERTIFICATE-----
MIIHCDCCBfCgAwIBAgISAZIiNd8k/Q6cvZTtHTb9oG2YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU4NGRmNTJhZjQ2MGNhNmZhOGM5MjNhNDlmNWNiNzk1ZWE2
NzA3ZjcwHhcNMjQwOTI0MDQwNjQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYzhlNzZlY2ZhYjhlNTZlNzE5ZDU3ZDI1NTE2Yjc4MDQ1ZTg1NzU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiP/gwVDUvr7DNjrK9fvRmcjhr6ao
MO6tM0ESSrd2wF9ljf8lEzcxm+Oc4MbyNS8azTVe3ans/aF1Zt1xN3wNgSvThP0Y
oQDYtZ33RYC4rsok87ccu4qhlWFkSK1RaeKNKh3C3OY0L2Pty3jMr5fXa7sU/CzB
gLWkJ11OAatzvKg45QgOR2KSzHYwya+5WWRcJllnVGkw4wyeRFE9uhPcMiYWAhsY
gX2YIT7zHvzPYTgwOO/T6w+LrcEXt/2p7KxNiurvrySZGj4z33So3M7gMV3ffPW1
1YvCWBF5DIgAGlCdVi6POJUi+0c7bnVnrxj9dl3xWjVabwojNhRGcu14HQIDAQAB
o4IEFDCCBBAwHQYDVR0OBBYEFMyOduz6uOVucZ1X0lUWt4BF6FdZMB8GA1UdIwQY
MBaAFOhN9Sr0YMpvqMkjpJ9ct5XqZwf3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNkUzMUt2Umd5bS1veVNPa24xeTNsZXBuQl9jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9iZTY5MmItNzkzMi00NTU0LThjMTUt
OTRjMmZkYTM5ZWFkLzEvekk1MjdQcTQ1VzV4blZmU1ZSYTNnRVhvVjFrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi9iZTY5MmItNzkzMi00NTU0LThjMTUtOTRjMmZkYTM5ZWFk
LzEvNkUzMUt2Umd5bS1veVNPa24xeTNsZXBuQl9jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIICKAYIKwYBBQUHAQcBAf8EggIXMIICEzCCAcYEAgABMIIB
vgMEAS1eDgMEAlvlNDAMAwQB1BoGAwQC1BoIMAwDBATUGhADBADUGiAwDAMEAtQa
JAMEANQaMDAMAwQB1BoyAwQA1Bo2AwQA1Bo4AwQA1Bo6AwQA1Bo8MAwDBADUGj8D
BAHUGkADBAHUGkQwDAMEANQaRwMEANQaSAMEANQaSgMEANQaTAMEANQaTjAMAwQA
1IopAwQC1IooMAwDBALUijQDBALUikAwDAMEAdSKRgMEANSKVgMEANSKWAMEANSK
XAMEANSKXjAMAwQF1IpgAwQA1IpoAwQA1IpsMAwDBADUinMDBAHUingwDAMEANSK
fQMEANSKgAMEANSKggMEANSKhAMEANSKhjAMAwQA1IqLAwQA1IqMAwQA1IqTAwQA
1IqWAwQA1IqZAwQA1IqbAwQA1IqdAwQA1IqgAwQA1IqiAwQA1IqkAwQA1IqmAwQA
1IqoAwQA1IqqAwQA1IqsMAwDBADUiq8DBAHUirADBAHUirQDBADUircDBADUirkw
DAMEANSKuwMEANSKvAMEANSKvgMEANSKwAMEANSKwgMEANSKxDAMAwQA1IrJAwQC
1IrIAwQB1IrOAwQA1Ir6MEcEAgACMEEDBwEgARSQAAADBwAgARSQAQMDBwEgARSQ
AQYDBwEgARSQARAwEgMHACABFJABEwMHACABFJABFAMHACABFJcAAjANBgkqhkiG
9w0BAQsFAAOCAQEAmpgDtSnq4UdY2Xj0gQaVFWfArevE3MceFnE+Lzal96vj7F1I
yQa4uQW0Eb3eX1tOvFD6egjtAw4cadLOJzK8DXKH8lRW3SSNEtxt2e6YL99ZlF+8
tAoWYN9bigFGIUg6/cgyw+V9Kgy9TADLLD1FZwr8ImfqjD0fJy1uAZTGehzfsJCE
Oe3tAt4Dylt2h0SAy7hL3YJB3mVX5qEIybKlS/56LfTy9fHtysQVQoHIpw2nZYKT
zWTBp3gK4heDLS+AqQYsw+xXnO6U7C3ttrH7S8IuXqQt6181nAvVnfQLQw6ZJkJI
7hGbhF3E32JcLHJoeI5sP7kq4ki2nxqgQfCNMA==
-----END CERTIFICATE-----
Generated at Tue Oct 15 12:42:17 2024 by rpki-client on console-fra.rpki-client.org