Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/y3P7Raj7fC1pUU6ITKfmHhWsjwk.roa
File: y3P7Raj7fC1pUU6ITKfmHhWsjwk.roa (raw, json)
Hash identifier: K6HYKdjHSMQTy1l2YU5gIyMrKweAWO51ldEg7dgeH6g=
Subject key identifier: CB:73:FB:45:A8:FB:7C:2D:69:51:4E:88:4C:A7:E6:1E:15:AC:8F:09
Certificate issuer: /CN=71949b47df313cbab9452da98fcc637608a909bd
Certificate serial: 018E0F13369EE183C4702304F67A0F1F197B
Authority key identifier: 71:94:9B:47:DF:31:3C:BA:B9:45:2D:A9:8F:CC:63:76:08:A9:09:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZSbR98xPLq5RS2pj8xjdgipCb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/y3P7Raj7fC1pUU6ITKfmHhWsjwk.roa
Signing time: Tue 05 Mar 2024 14:45:01 +0000
ROA not before: Tue 05 Mar 2024 14:45:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34758
IP address blocks: 31.6.80.0/20 maxlen: 20
31.6.80.0/24 maxlen: 24
31.6.81.0/24 maxlen: 24
31.6.82.0/24 maxlen: 24
31.6.83.0/24 maxlen: 24
31.6.84.0/24 maxlen: 24
31.6.85.0/24 maxlen: 24
31.6.86.0/24 maxlen: 24
31.6.87.0/24 maxlen: 24
31.6.88.0/24 maxlen: 24
31.6.89.0/24 maxlen: 24
31.6.90.0/24 maxlen: 24
31.6.91.0/24 maxlen: 24
31.6.92.0/24 maxlen: 24
31.6.93.0/24 maxlen: 24
31.6.94.0/24 maxlen: 24
31.6.95.0/24 maxlen: 24
45.13.88.0/22 maxlen: 22
45.13.88.0/24 maxlen: 24
45.13.89.0/24 maxlen: 24
45.13.90.0/24 maxlen: 24
45.13.91.0/24 maxlen: 24
45.93.36.0/22 maxlen: 22
45.93.36.0/24 maxlen: 24
45.93.37.0/24 maxlen: 24
45.93.38.0/24 maxlen: 24
45.93.39.0/24 maxlen: 24
92.246.96.0/21 maxlen: 21
92.246.96.0/24 maxlen: 24
92.246.97.0/24 maxlen: 24
92.246.98.0/24 maxlen: 24
92.246.99.0/24 maxlen: 24
92.246.100.0/24 maxlen: 24
92.246.101.0/24 maxlen: 24
92.246.102.0/24 maxlen: 24
92.246.103.0/24 maxlen: 24
92.246.112.0/20 maxlen: 20
92.246.112.0/24 maxlen: 24
92.246.113.0/24 maxlen: 24
92.246.114.0/24 maxlen: 24
92.246.115.0/24 maxlen: 24
92.246.116.0/24 maxlen: 24
92.246.117.0/24 maxlen: 24
92.246.118.0/24 maxlen: 24
92.246.119.0/24 maxlen: 24
92.246.120.0/24 maxlen: 24
92.246.121.0/24 maxlen: 24
92.246.122.0/24 maxlen: 24
92.246.123.0/24 maxlen: 24
92.246.124.0/24 maxlen: 24
92.246.125.0/24 maxlen: 24
92.246.126.0/24 maxlen: 24
92.246.127.0/24 maxlen: 24
93.93.16.0/21 maxlen: 21
93.93.18.0/24 maxlen: 24
93.93.19.0/24 maxlen: 24
93.93.20.0/24 maxlen: 24
93.93.21.0/24 maxlen: 24
93.93.22.0/24 maxlen: 24
93.93.23.0/24 maxlen: 24
109.234.136.0/21 maxlen: 21
109.234.136.0/24 maxlen: 24
109.234.137.0/24 maxlen: 24
109.234.138.0/24 maxlen: 24
109.234.139.0/24 maxlen: 24
109.234.140.0/24 maxlen: 24
109.234.141.0/24 maxlen: 24
109.234.142.0/24 maxlen: 24
109.234.143.0/24 maxlen: 24
146.255.160.0/21 maxlen: 21
146.255.160.0/24 maxlen: 24
146.255.161.0/24 maxlen: 24
146.255.162.0/24 maxlen: 24
146.255.163.0/24 maxlen: 24
146.255.164.0/24 maxlen: 24
146.255.165.0/24 maxlen: 24
146.255.166.0/24 maxlen: 24
146.255.167.0/24 maxlen: 24
159.255.156.0/22 maxlen: 22
159.255.156.0/24 maxlen: 24
159.255.157.0/24 maxlen: 24
159.255.158.0/24 maxlen: 24
159.255.159.0/24 maxlen: 24
185.23.84.0/22 maxlen: 22
185.23.84.0/24 maxlen: 24
185.23.85.0/24 maxlen: 24
185.23.86.0/24 maxlen: 24
185.23.87.0/24 maxlen: 24
185.103.80.0/22 maxlen: 22
185.103.80.0/24 maxlen: 24
185.103.81.0/24 maxlen: 24
185.103.82.0/24 maxlen: 24
185.103.83.0/24 maxlen: 24
185.126.140.0/22 maxlen: 22
185.126.140.0/24 maxlen: 24
185.126.141.0/24 maxlen: 24
185.126.142.0/24 maxlen: 24
185.126.143.0/24 maxlen: 24
185.158.30.0/23 maxlen: 23
185.158.30.0/24 maxlen: 24
185.158.31.0/24 maxlen: 24
185.171.36.0/22 maxlen: 22
185.171.36.0/24 maxlen: 24
185.171.37.0/24 maxlen: 24
185.171.38.0/24 maxlen: 24
185.171.39.0/24 maxlen: 24
193.238.136.0/22 maxlen: 22
193.238.136.0/24 maxlen: 24
193.238.137.0/24 maxlen: 24
193.238.138.0/24 maxlen: 24
193.238.139.0/24 maxlen: 24
195.225.224.0/22 maxlen: 22
195.225.224.0/24 maxlen: 24
195.225.225.0/24 maxlen: 24
195.225.226.0/24 maxlen: 24
195.225.227.0/24 maxlen: 24
217.72.32.0/21 maxlen: 21
217.72.32.0/24 maxlen: 24
217.72.33.0/24 maxlen: 24
217.72.34.0/24 maxlen: 24
217.72.35.0/24 maxlen: 24
217.72.36.0/24 maxlen: 24
217.72.37.0/24 maxlen: 24
217.72.38.0/24 maxlen: 24
217.72.39.0/24 maxlen: 24
2a04:2080::/29 maxlen: 48
2a06:c2c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 27 Mar 2024 16:30:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0f:13:36:9e:e1:83:c4:70:23:04:f6:7a:0f:1f:19:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71949b47df313cbab9452da98fcc637608a909bd
Validity
Not Before: Mar 5 14:45:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cb73fb45a8fb7c2d69514e884ca7e61e15ac8f09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:65:7c:7e:ca:12:46:68:b5:05:01:1b:01:05:
6a:e5:90:3b:50:56:c2:6f:32:37:9d:90:11:eb:09:
de:ac:0a:01:2d:8e:aa:0b:3d:06:91:7d:d5:dd:26:
7b:e1:52:de:f4:a6:12:d1:a9:9c:e3:85:c7:87:01:
42:65:6f:93:e2:f8:47:02:f5:b8:36:55:98:50:fe:
8c:32:81:22:bf:95:b8:cc:f7:bd:c6:2d:c7:a2:80:
12:9f:5e:f9:5b:fb:ac:dd:7b:e5:08:93:3e:cc:11:
2f:cd:ff:de:9e:bf:6a:ab:e2:89:39:16:b4:2c:4b:
2f:71:93:3e:de:4c:08:2b:43:ba:07:a5:af:11:13:
68:69:d7:d1:25:5d:25:73:2d:7b:36:20:dc:56:61:
68:3d:fc:bd:ca:7e:16:fb:8d:d8:ec:43:ad:97:90:
f7:83:c4:2b:45:93:57:2e:dc:fe:c1:b7:6a:36:85:
51:9f:b7:59:96:ae:65:55:70:a7:e8:35:f1:60:4b:
a5:94:aa:b5:08:07:bd:48:8d:b7:ef:85:7b:02:93:
02:85:b3:07:53:73:1e:a7:4b:dc:2f:9f:53:88:86:
11:89:0e:d9:e2:9e:60:5e:d8:b8:db:69:8f:e4:63:
db:de:cf:c3:ad:cc:02:e5:24:aa:b0:76:15:3d:75:
da:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:73:FB:45:A8:FB:7C:2D:69:51:4E:88:4C:A7:E6:1E:15:AC:8F:09
X509v3 Authority Key Identifier:
keyid:71:94:9B:47:DF:31:3C:BA:B9:45:2D:A9:8F:CC:63:76:08:A9:09:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZSbR98xPLq5RS2pj8xjdgipCb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/y3P7Raj7fC1pUU6ITKfmHhWsjwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b33a78-a51e-46e4-8648-0066f541faea/1/cZSbR98xPLq5RS2pj8xjdgipCb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.80.0/20
45.13.88.0/22
45.93.36.0/22
92.246.96.0/21
92.246.112.0/20
93.93.16.0/21
109.234.136.0/21
146.255.160.0/21
159.255.156.0/22
185.23.84.0/22
185.103.80.0/22
185.126.140.0/22
185.158.30.0/23
185.171.36.0/22
193.238.136.0/22
195.225.224.0/22
217.72.32.0/21
IPv6:
2a04:2080::/29
2a06:c2c0::/29
Signature Algorithm: sha256WithRSAEncryption
8c:67:5d:d3:6b:86:38:fa:cd:96:10:1f:57:f4:80:18:6a:7e:
35:ec:93:19:94:37:6d:a8:58:15:00:56:7e:7c:bd:62:6b:0b:
0c:1b:75:e7:78:53:15:a4:e2:60:89:6f:41:80:90:e2:35:ed:
d1:2a:16:2f:f2:b4:91:18:2b:66:b7:66:fb:6a:7d:ab:67:be:
1b:81:a2:7f:92:b8:cb:07:e4:de:2b:a0:61:47:1f:2e:89:18:
5b:fc:88:49:31:b8:ac:97:2b:11:4f:61:9c:3d:7a:80:da:42:
b7:b4:90:b8:ab:1d:08:a7:e5:b7:e8:40:e0:67:4e:6b:c9:6e:
c0:98:7c:3d:0d:9f:2e:ea:ba:b4:13:9e:9d:4e:97:52:a4:77:
8d:9f:90:6f:7f:62:9c:65:f3:db:bb:ce:e7:a6:0a:17:46:b6:
23:df:f5:c2:c9:b6:c8:1e:48:c7:d5:41:1d:f8:b2:50:4b:ca:
d5:95:a0:73:64:7f:4b:f2:4d:56:68:ff:07:52:f2:2f:82:96:
f3:94:c5:64:5e:c8:3d:59:67:2e:22:01:7f:d8:d4:af:9f:71:
89:e3:aa:18:76:2e:2b:a4:08:b9:92:73:0d:9e:fe:c1:db:5f:
5e:db:b4:e0:2f:b0:59:76:f9:01:61:0c:24:e4:a1:3b:c0:0d:
fc:62:e7:c7
-----BEGIN CERTIFICATE-----
MIIFdjCCBF6gAwIBAgISAY4PEzae4YPEcCME9noPHxl7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxOTQ5YjQ3ZGYzMTNjYmFiOTQ1MmRhOThmY2M2Mzc2MDhh
OTA5YmQwHhcNMjQwMzA1MTQ0NTAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYjczZmI0NWE4ZmI3YzJkNjk1MTRlODg0Y2E3ZTYxZTE1YWM4ZjA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu2V8fsoSRmi1BQEbAQVq5ZA7UFbC
bzI3nZAR6wnerAoBLY6qCz0GkX3V3SZ74VLe9KYS0amc44XHhwFCZW+T4vhHAvW4
NlWYUP6MMoEiv5W4zPe9xi3HooASn175W/us3XvlCJM+zBEvzf/enr9qq+KJORa0
LEsvcZM+3kwIK0O6B6WvERNoadfRJV0lcy17NiDcVmFoPfy9yn4W+43Y7EOtl5D3
g8QrRZNXLtz+wbdqNoVRn7dZlq5lVXCn6DXxYEullKq1CAe9SI2374V7ApMChbMH
U3Mep0vcL59TiIYRiQ7Z4p5gXti422mP5GPb3s/DrcwC5SSqsHYVPXXa2QIDAQAB
o4ICgjCCAn4wHQYDVR0OBBYEFMtz+0Wo+3wtaVFOiEyn5h4VrI8JMB8GA1UdIwQY
MBaAFHGUm0ffMTy6uUUtqY/MY3YIqQm9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY1pTYlI5OHhQTHE1UlMycGo4eGpkZ2lwQ2IwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS9iMzNhNzgtYTUxZS00NmU0LTg2NDgt
MDA2NmY1NDFmYWVhLzEveTNQN1JhajdmQzFwVVU2SVRLZm1IaFdzandrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS9iMzNhNzgtYTUxZS00NmU0LTg2NDgtMDA2NmY1NDFmYWVh
LzEvY1pTYlI5OHhQTHE1UlMycGo4eGpkZ2lwQ2IwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGXBggrBgEFBQcBBwEB/wSBhzCBhDBsBAIAATBmAwQEHwZQ
AwQCLQ1YAwQCLV0kAwQDXPZgAwQEXPZwAwQDXV0QAwQDbeqIAwQDkv+gAwQCn/+c
AwQCuRdUAwQCuWdQAwQCuX6MAwQBuZ4eAwQCuaskAwQCwe6IAwQCw+HgAwQD2Ugg
MBQEAgACMA4DBQMqBCCAAwUDKgbCwDANBgkqhkiG9w0BAQsFAAOCAQEAjGdd02uG
OPrNlhAfV/SAGGp+NeyTGZQ3bahYFQBWfny9YmsLDBt153hTFaTiYIlvQYCQ4jXt
0SoWL/K0kRgrZrdm+2p9q2e+G4Gif5K4ywfk3iugYUcfLokYW/yISTG4rJcrEU9h
nD16gNpCt7SQuKsdCKflt+hA4GdOa8luwJh8PQ2fLuq6tBOenU6XUqR3jZ+Qb39i
nGXz27vO56YKF0a2I9/1wsm2yB5Ix9VBHfiyUEvK1ZWgc2R/S/JNVmj/B1LyL4KW
85TFZF7IPVlnLiIBf9jUr59xieOqGHYuK6QIuZJzDZ7+wdtfXtu04C+wWXb5AWEM
JOShO8AN/GLnxw==
-----END CERTIFICATE-----
Generated at Wed Mar 27 20:51:09 2024 by rpki-client on console-fra.rpki-client.org