Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/Th5Xeh8nXiBsXc6Pfvmbe6eik-M.roa
File:                     Th5Xeh8nXiBsXc6Pfvmbe6eik-M.roa (raw, json)
Hash identifier:          1KG2ClcrCy5S6p473cJ50vtzpWj4KLcnjmsCA3I7WII=
Subject key identifier:   4E:1E:57:7A:1F:27:5E:20:6C:5D:CE:8F:7E:F9:9B:7B:A7:A2:93:E3
Certificate issuer:       /CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Certificate serial:       018F7EFCB866191F93A738B32A7EF8C83B37
Authority key identifier: FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/Th5Xeh8nXiBsXc6Pfvmbe6eik-M.roa
Signing time:             Thu 16 May 2024 01:20:42 +0000
ROA not before:           Thu 16 May 2024 01:20:42 +0000
ROA not after:            Tue 01 Jul 2025 00:00:00 +0000
asID:                     25369
IP address blocks:        5.226.136.0/21 maxlen: 21
                          31.14.102.0/24 maxlen: 24
                          31.14.254.0/24 maxlen: 24
                          37.10.113.0/24 maxlen: 24
                          37.10.114.0/24 maxlen: 24
                          46.102.155.0/24 maxlen: 24
                          46.247.142.0/23 maxlen: 24
                          46.247.143.0/24 maxlen: 24
                          64.239.236.0/22 maxlen: 22
                          77.81.124.0/22 maxlen: 22
                          77.81.191.0/24 maxlen: 24
                          79.139.84.0/22 maxlen: 22
                          80.240.108.0/23 maxlen: 23
                          81.19.208.0/20 maxlen: 20
                          81.19.208.0/23 maxlen: 23
                          81.19.211.0/24 maxlen: 24
                          81.19.215.0/24 maxlen: 24
                          81.19.216.0/24 maxlen: 24
                          82.97.192.0/23 maxlen: 23
                          84.247.0.0/24 maxlen: 24
                          84.247.40.0/23 maxlen: 24
                          84.247.42.0/23 maxlen: 24
                          85.204.70.0/24 maxlen: 24
                          86.104.20.0/22 maxlen: 22
                          86.104.20.0/23 maxlen: 24
                          86.104.22.0/23 maxlen: 24
                          86.104.248.0/22 maxlen: 22
                          86.104.248.0/24 maxlen: 24
                          86.104.249.0/24 maxlen: 24
                          86.106.89.0/24 maxlen: 24
                          86.106.112.0/24 maxlen: 24
                          86.106.135.0/24 maxlen: 24
                          86.106.157.0/24 maxlen: 24
                          86.106.158.0/24 maxlen: 24
                          86.107.241.0/24 maxlen: 24
                          89.21.64.0/22 maxlen: 22
                          89.21.64.0/24 maxlen: 24
                          89.21.66.0/24 maxlen: 24
                          89.21.67.0/24 maxlen: 24
                          89.32.127.0/24 maxlen: 24
                          89.34.96.0/22 maxlen: 22
                          89.34.96.0/24 maxlen: 24
                          89.34.97.0/24 maxlen: 24
                          89.35.25.0/24 maxlen: 24
                          89.35.28.0/22 maxlen: 22
                          89.37.64.0/22 maxlen: 22
                          89.37.172.0/22 maxlen: 22
                          89.37.173.0/24 maxlen: 24
                          89.38.68.0/23 maxlen: 23
                          89.40.212.0/24 maxlen: 24
                          89.46.222.0/23 maxlen: 23
                          89.46.223.0/24 maxlen: 24
                          89.46.248.0/22 maxlen: 22
                          93.114.83.0/24 maxlen: 24
                          93.114.129.0/24 maxlen: 24
                          93.118.40.0/22 maxlen: 22
                          94.177.17.0/24 maxlen: 24
                          109.69.104.0/21 maxlen: 21
                          109.69.110.0/24 maxlen: 24
                          109.70.144.0/21 maxlen: 21
                          109.70.145.0/24 maxlen: 24
                          109.70.148.0/24 maxlen: 24
                          109.70.149.0/24 maxlen: 24
                          109.230.203.0/24 maxlen: 24
                          109.230.209.0/24 maxlen: 24
                          109.230.215.0/24 maxlen: 24
                          109.230.218.0/24 maxlen: 24
                          109.230.220.0/24 maxlen: 24
                          128.127.148.0/22 maxlen: 22
                          134.255.243.0/24 maxlen: 24
                          176.223.172.0/22 maxlen: 22
                          176.223.172.0/23 maxlen: 24
                          176.223.174.0/23 maxlen: 24
                          178.239.160.0/20 maxlen: 20
                          178.239.165.0/24 maxlen: 24
                          178.239.167.0/24 maxlen: 24
                          178.239.173.0/24 maxlen: 24
                          185.3.236.0/22 maxlen: 22
                          185.16.204.0/22 maxlen: 22
                          185.38.148.0/22 maxlen: 22
                          185.44.76.0/22 maxlen: 22
                          185.61.156.0/22 maxlen: 22
                          185.61.156.0/24 maxlen: 24
                          185.61.157.0/24 maxlen: 24
                          185.114.224.0/24 maxlen: 24
                          185.121.136.0/22 maxlen: 22
                          185.125.204.0/22 maxlen: 22
                          185.134.20.0/22 maxlen: 22
                          185.137.36.0/22 maxlen: 22
                          185.137.36.0/24 maxlen: 24
                          185.158.240.0/22 maxlen: 24
                          185.158.241.0/24 maxlen: 24
                          185.158.242.0/24 maxlen: 24
                          185.200.204.0/22 maxlen: 22
                          185.216.144.0/22 maxlen: 22
                          185.223.232.0/22 maxlen: 22
                          185.223.235.0/24 maxlen: 24
                          188.212.154.0/24 maxlen: 24
                          188.240.56.0/21 maxlen: 21
                          188.240.56.0/24 maxlen: 24
                          188.240.57.0/24 maxlen: 24
                          188.240.58.0/24 maxlen: 24
                          188.240.60.0/24 maxlen: 24
                          188.240.71.0/24 maxlen: 24
                          188.241.120.0/24 maxlen: 24
                          188.241.144.0/24 maxlen: 24
                          188.241.156.0/23 maxlen: 23
                          188.241.157.0/24 maxlen: 24
                          188.241.246.0/24 maxlen: 24
                          193.32.208.0/22 maxlen: 22
                          193.32.208.0/24 maxlen: 24
                          193.176.28.0/22 maxlen: 22
                          193.176.31.0/24 maxlen: 24
                          194.50.234.0/23 maxlen: 23
                          195.20.108.0/23 maxlen: 23
                          195.20.108.0/24 maxlen: 24
                          195.140.212.0/22 maxlen: 22
                          195.206.165.0/24 maxlen: 24
                          195.206.166.0/23 maxlen: 23
                          195.206.169.0/24 maxlen: 24
                          195.206.170.0/23 maxlen: 23
                          195.206.180.0/22 maxlen: 22
                          195.234.124.0/23 maxlen: 24
                          195.234.124.0/24 maxlen: 24
                          195.234.127.0/24 maxlen: 24
                          212.237.224.0/22 maxlen: 22
                          213.166.84.0/22 maxlen: 24
                          217.146.80.0/20 maxlen: 20
                          217.146.87.0/24 maxlen: 24
                          217.146.92.0/24 maxlen: 24
                          2a00:1a30::/32 maxlen: 32
                          2a01:4020::/32 maxlen: 32
                          2a01:4020:2::/48 maxlen: 48
                          2a01:4020:3::/48 maxlen: 48
                          2a01:4020:30::/48 maxlen: 48
                          2a01:4020:32::/48 maxlen: 48
                          2a01:4020:33::/48 maxlen: 48
                          2a01:4020:34::/48 maxlen: 48
                          2a0b:b840::/29 maxlen: 29

Validation:               Failed, certificate revoked on Sun 23 Jun 2024 23:33:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:7e:fc:b8:66:19:1f:93:a7:38:b3:2a:7e:f8:c8:3b:37
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
        Validity
            Not Before: May 16 01:20:42 2024 GMT
            Not After : Jul  1 00:00:00 2025 GMT
        Subject: CN=4e1e577a1f275e206c5dce8f7ef99b7ba7a293e3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:08:5d:71:97:e5:81:6d:ce:c9:ac:e6:c6:95:
                    0f:72:3d:1b:59:d3:0c:88:0a:35:7c:1f:4d:e2:00:
                    b6:8f:22:79:18:9e:d2:64:cd:f6:2e:40:f8:c7:8c:
                    bf:79:19:b1:29:60:74:d0:c4:2e:e7:b8:a4:99:62:
                    8c:79:dc:7a:d0:4c:31:d9:33:7e:4d:c8:92:a9:c6:
                    53:e7:dd:32:f1:1c:e5:de:ce:8f:65:a5:56:66:e2:
                    19:50:eb:a9:d0:fa:87:d4:66:da:40:04:71:eb:fc:
                    e1:da:94:65:aa:ea:c7:c4:59:29:b6:ab:9e:b8:ad:
                    67:36:34:3d:71:e3:0e:54:06:32:a8:3d:94:51:98:
                    07:97:e3:07:4e:37:6e:35:57:5e:34:18:f8:55:fe:
                    c4:e3:da:e0:f4:55:ef:9b:7a:b2:50:50:55:54:84:
                    7e:d3:34:88:07:b4:1e:f8:3a:af:2f:3a:22:12:14:
                    01:83:77:99:1f:b9:43:87:03:1d:7b:dd:09:96:b5:
                    2c:68:d7:4e:3f:d4:0f:9a:1d:6a:15:ff:5b:ba:85:
                    c9:a5:f5:b0:b8:f6:1f:0e:0b:99:91:3d:70:7c:92:
                    1b:57:79:e5:c3:49:99:1d:f9:06:2f:db:88:c1:de:
                    83:a7:4f:39:1b:70:30:e6:49:48:31:ac:27:74:c0:
                    f3:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4E:1E:57:7A:1F:27:5E:20:6C:5D:CE:8F:7E:F9:9B:7B:A7:A2:93:E3
            X509v3 Authority Key Identifier:
                keyid:FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/Th5Xeh8nXiBsXc6Pfvmbe6eik-M.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  5.226.136.0/21
                  31.14.102.0/24
                  31.14.254.0/24
                  37.10.113.0-37.10.114.255
                  46.102.155.0/24
                  46.247.142.0/23
                  64.239.236.0/22
                  77.81.124.0/22
                  77.81.191.0/24
                  79.139.84.0/22
                  80.240.108.0/23
                  81.19.208.0/20
                  82.97.192.0/23
                  84.247.0.0/24
                  84.247.40.0/22
                  85.204.70.0/24
                  86.104.20.0/22
                  86.104.248.0/22
                  86.106.89.0/24
                  86.106.112.0/24
                  86.106.135.0/24
                  86.106.157.0-86.106.158.255
                  86.107.241.0/24
                  89.21.64.0/22
                  89.32.127.0/24
                  89.34.96.0/22
                  89.35.25.0/24
                  89.35.28.0/22
                  89.37.64.0/22
                  89.37.172.0/22
                  89.38.68.0/23
                  89.40.212.0/24
                  89.46.222.0/23
                  89.46.248.0/22
                  93.114.83.0/24
                  93.114.129.0/24
                  93.118.40.0/22
                  94.177.17.0/24
                  109.69.104.0/21
                  109.70.144.0/21
                  109.230.203.0/24
                  109.230.209.0/24
                  109.230.215.0/24
                  109.230.218.0/24
                  109.230.220.0/24
                  128.127.148.0/22
                  134.255.243.0/24
                  176.223.172.0/22
                  178.239.160.0/20
                  185.3.236.0/22
                  185.16.204.0/22
                  185.38.148.0/22
                  185.44.76.0/22
                  185.61.156.0/22
                  185.114.224.0/24
                  185.121.136.0/22
                  185.125.204.0/22
                  185.134.20.0/22
                  185.137.36.0/22
                  185.158.240.0/22
                  185.200.204.0/22
                  185.216.144.0/22
                  185.223.232.0/22
                  188.212.154.0/24
                  188.240.56.0/21
                  188.240.71.0/24
                  188.241.120.0/24
                  188.241.144.0/24
                  188.241.156.0/23
                  188.241.246.0/24
                  193.32.208.0/22
                  193.176.28.0/22
                  194.50.234.0/23
                  195.20.108.0/23
                  195.140.212.0/22
                  195.206.165.0-195.206.167.255
                  195.206.169.0-195.206.171.255
                  195.206.180.0/22
                  195.234.124.0/23
                  195.234.127.0/24
                  212.237.224.0/22
                  213.166.84.0/22
                  217.146.80.0/20
                IPv6:
                  2a00:1a30::/32
                  2a01:4020::/32
                  2a0b:b840::/29

    Signature Algorithm: sha256WithRSAEncryption
         6b:9a:d0:3b:2d:66:12:53:fb:24:91:e3:54:15:bb:b5:9e:be:
         27:d6:03:8e:44:90:d0:64:38:84:db:e5:c7:e5:00:d1:f3:3c:
         a2:09:40:97:b5:a1:1c:5b:cb:db:74:e0:e5:77:2b:11:8c:69:
         17:ed:8e:d4:c7:46:6f:b2:fb:01:4e:17:9d:0e:ed:63:35:ec:
         e4:e0:94:b9:ba:11:6b:a5:ee:fb:b0:5c:53:f5:d1:2c:0b:e5:
         fa:b6:4b:6a:f2:5f:7d:a3:d5:57:90:2e:e2:b9:c9:8a:ce:ae:
         e4:26:dc:ee:ab:39:ce:91:0d:66:c7:3c:f0:6c:7b:eb:f1:1f:
         16:20:ec:4d:7f:00:0f:69:9a:f5:85:a5:88:1e:14:e3:d0:05:
         0b:6d:d5:a8:87:47:d6:11:2e:01:81:bd:54:32:e9:2a:34:0b:
         65:12:75:88:3a:ea:72:9f:fd:ca:1b:de:f4:d3:a3:de:ed:72:
         60:6b:65:14:27:a1:f6:80:a8:66:3b:e5:bb:1c:48:41:b4:db:
         da:8a:3b:29:bb:14:cd:60:88:c4:4e:35:27:cb:1d:68:85:fd:
         0f:e4:11:67:33:7c:23:01:fb:4d:84:97:4b:e7:7e:10:d7:f6:
         5e:a5:2c:d9:44:aa:6f:a3:53:a6:4d:56:39:ae:2d:5f:0f:1d:
         79:19:0c:22
-----BEGIN CERTIFICATE-----
MIIHMDCCBhigAwIBAgISAY9+/LhmGR+TpzizKn74yDs3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZkMzdjYzhmMTZiM2M2Y2JkMzM0NmFhM2VkNjE3NzFmM2U4
M2FjOTcwHhcNMjQwNTE2MDEyMDQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZTFlNTc3YTFmMjc1ZTIwNmM1ZGNlOGY3ZWY5OWI3YmE3YTI5M2UzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnwhdcZflgW3OyazmxpUPcj0bWdMM
iAo1fB9N4gC2jyJ5GJ7SZM32LkD4x4y/eRmxKWB00MQu57ikmWKMedx60Ewx2TN+
TciSqcZT590y8Rzl3s6PZaVWZuIZUOup0PqH1GbaQARx6/zh2pRlqurHxFkptque
uK1nNjQ9ceMOVAYyqD2UUZgHl+MHTjduNVdeNBj4Vf7E49rg9FXvm3qyUFBVVIR+
0zSIB7Qe+DqvLzoiEhQBg3eZH7lDhwMde90JlrUsaNdOP9QPmh1qFf9buoXJpfWw
uPYfDguZkT1wfJIbV3nlw0mZHfkGL9uIwd6Dp085G3Aw5klIMawndMDzPQIDAQAB
o4IEPDCCBDgwHQYDVR0OBBYEFE4eV3ofJ14gbF3Oj375m3unopPjMB8GA1UdIwQY
MBaAFP03zI8Ws8bL0zRqo+1hdx8+g6yXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX1RmTWp4YXp4c3ZUTkdxajdXRjNIejZEckpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8wNWUxN2YtZDMxZi00MzFmLWE4YmMt
N2UwNWFiNDFiNmU0LzEvVGg1WGVoOG5YaUJzWGM2UGZ2bWJlNmVpay1NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS8wNWUxN2YtZDMxZi00MzFmLWE4YmMtN2UwNWFiNDFiNmU0
LzEvX1RmTWp4YXp4c3ZUTkdxajdXRjNIejZEckpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIICUAYIKwYBBQUHAQcBAf8EggI/MIICOzCCAhoEAgABMIIC
EgMEAwXiiAMEAB8OZgMEAB8O/jAMAwQAJQpxAwQAJQpyAwQALmabAwQBLveOAwQC
QO/sAwQCTVF8AwQATVG/AwQCT4tUAwQBUPBsAwQEURPQAwQBUmHAAwQAVPcAAwQC
VPcoAwQAVcxGAwQCVmgUAwQCVmj4AwQAVmpZAwQAVmpwAwQAVmqHMAwDBABWap0D
BABWap4DBABWa/EDBAJZFUADBABZIH8DBAJZImADBABZIxkDBAJZIxwDBAJZJUAD
BAJZJawDBAFZJkQDBABZKNQDBAFZLt4DBAJZLvgDBABdclMDBABdcoEDBAJddigD
BABesREDBANtRWgDBANtRpADBABt5ssDBABt5tEDBABt5tcDBABt5toDBABt5twD
BAKAf5QDBACG//MDBAKw36wDBASy76ADBAK5A+wDBAK5EMwDBAK5JpQDBAK5LEwD
BAK5PZwDBAC5cuADBAK5eYgDBAK5fcwDBAK5hhQDBAK5iSQDBAK5nvADBAK5yMwD
BAK52JADBAK53+gDBAC81JoDBAO88DgDBAC88EcDBAC88XgDBAC88ZADBAG88ZwD
BAC88fYDBALBINADBALBsBwDBAHCMuoDBAHDFGwDBALDjNQwDAMEAMPOpQMEA8PO
oDAMAwQAw86pAwQCw86oAwQCw860AwQBw+p8AwQAw+p/AwQC1O3gAwQC1aZUAwQE
2ZJQMBsEAgACMBUDBQAqABowAwUAKgFAIAMFAyoLuEAwDQYJKoZIhvcNAQELBQAD
ggEBAGua0DstZhJT+ySR41QVu7WevifWA45EkNBkOITb5cflANHzPKIJQJe1oRxb
y9t04OV3KxGMaRftjtTHRm+y+wFOF50O7WM17OTglLm6EWul7vuwXFP10SwL5fq2
S2ryX32j1VeQLuK5yYrOruQm3O6rOc6RDWbHPPBse+vxHxYg7E1/AA9pmvWFpYge
FOPQBQtt1aiHR9YRLgGBvVQy6So0C2USdYg66nKf/cob3vTTo97tcmBrZRQnofaA
qGY75bscSEG029qKOym7FM1giMRONSfLHWiF/Q/kEWczfCMB+02El0vnfhDX9l6l
LNlEqm+jU6ZNVjmuLV8PHXkZDCI=
-----END CERTIFICATE-----
Generated at Mon Jun 24 02:03:13 2024 by rpki-client on console-ams.rpki-client.org