Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/5_91QZ_g_UjWOk9QOko5Zs_KNFo.roa
File: 5_91QZ_g_UjWOk9QOko5Zs_KNFo.roa (raw, json)
Hash identifier: McAMNoYzl53OeAlyc/TlxLnuDR8IzYzMzw57aq/NkVI=
Subject key identifier: E7:FF:75:41:9F:E0:FD:48:D6:3A:4F:50:3A:4A:39:66:CF:CA:34:5A
Certificate issuer: /CN=adf491488a7cd8448a420945871c0b99672dc66e
Certificate serial: 018C62C153FD6226B3B2F4558D9859FA022A
Authority key identifier: AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/5_91QZ_g_UjWOk9QOko5Zs_KNFo.roa
Signing time: Wed 13 Dec 2023 10:38:06 +0000
ROA not before: Wed 13 Dec 2023 10:38:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205647
IP address blocks: 151.242.0.0/21 maxlen: 21
151.242.8.0/22 maxlen: 22
31.56.116.0/24 maxlen: 24
151.241.224.0/21 maxlen: 21
151.247.216.0/21 maxlen: 21
151.247.214.0/23 maxlen: 23
151.247.224.0/22 maxlen: 22
151.247.232.0/22 maxlen: 22
151.247.228.0/22 maxlen: 22
151.247.237.0/24 maxlen: 24
151.247.238.0/23 maxlen: 23
151.247.240.0/24 maxlen: 24
151.247.236.0/24 maxlen: 24
151.247.241.0/24 maxlen: 24
151.247.248.0/22 maxlen: 22
31.58.240.0/20 maxlen: 20
151.244.56.0/21 maxlen: 21
151.244.52.0/22 maxlen: 22
85.15.49.0/24 maxlen: 24
85.15.48.0/24 maxlen: 24
151.244.64.0/21 maxlen: 21
151.244.76.0/22 maxlen: 22
151.244.72.0/22 maxlen: 22
151.244.80.0/21 maxlen: 21
151.240.240.0/21 maxlen: 21
31.59.12.0/22 maxlen: 22
151.244.88.0/21 maxlen: 21
94.183.192.0/18 maxlen: 18
31.56.64.0/19 maxlen: 19
31.56.96.0/20 maxlen: 20
31.56.0.0/18 maxlen: 18
94.182.244.0/23 maxlen: 23
94.182.248.0/23 maxlen: 23
94.183.0.0/18 maxlen: 18
151.240.80.0/21 maxlen: 21
94.182.192.0/18 maxlen: 18
94.182.206.0/24 maxlen: 24
94.182.204.0/24 maxlen: 24
94.182.204.0/22 maxlen: 22
94.182.205.0/24 maxlen: 24
94.182.207.0/24 maxlen: 24
94.182.217.0/24 maxlen: 24
94.182.226.0/24 maxlen: 24
94.182.222.0/23 maxlen: 23
94.182.232.0/23 maxlen: 23
94.182.228.0/22 maxlen: 22
94.182.240.0/23 maxlen: 23
94.182.234.0/23 maxlen: 23
151.240.168.0/22 maxlen: 22
151.240.192.0/21 maxlen: 21
94.183.128.0/18 maxlen: 18
31.58.236.0/22 maxlen: 22
151.244.48.0/22 maxlen: 22
94.183.64.0/18 maxlen: 18
94.182.41.0/24 maxlen: 24
94.182.56.0/22 maxlen: 22
94.182.60.0/22 maxlen: 22
94.182.64.0/18 maxlen: 18
94.182.72.0/21 maxlen: 21
94.182.97.192/28 maxlen: 28
94.182.0.0/18 maxlen: 18
94.182.8.0/23 maxlen: 23
94.182.12.0/23 maxlen: 23
94.182.82.0/24 maxlen: 24
94.182.116.0/22 maxlen: 22
94.182.114.0/23 maxlen: 23
94.182.120.0/21 maxlen: 21
94.182.128.0/18 maxlen: 18
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:62:c1:53:fd:62:26:b3:b2:f4:55:8d:98:59:fa:02:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf491488a7cd8448a420945871c0b99672dc66e
Validity
Not Before: Dec 13 10:38:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7ff75419fe0fd48d63a4f503a4a3966cfca345a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:65:40:51:21:a8:45:79:30:4d:15:5a:9c:a2:
e5:43:ac:07:dc:1f:07:d5:15:b7:41:82:6f:37:18:
c2:8e:4a:9f:82:c4:6b:17:21:ed:a5:20:eb:fa:0d:
74:59:af:88:05:b0:42:62:c2:35:82:c2:8a:d0:b5:
6c:a9:7b:43:39:c4:7e:d7:14:2b:d5:c9:52:1e:ed:
c1:32:12:e6:77:75:dc:5c:c7:0c:09:be:b7:0c:dd:
0a:f5:e3:1a:22:30:fd:87:c0:4a:ff:72:50:1a:db:
d4:2a:8b:47:a6:dc:c0:fb:ac:a9:9b:9b:2c:c3:65:
77:b7:ea:9f:eb:c8:b9:29:18:cd:7c:82:04:ac:27:
61:0d:9b:24:06:e1:57:67:9c:e0:cc:bf:15:d5:bb:
32:27:82:5b:2d:a1:c5:5a:89:d1:16:40:aa:55:4b:
73:0e:a6:26:ea:e8:75:a6:b2:d3:94:7f:4b:25:24:
6b:ea:b3:7d:e7:23:52:33:31:72:71:48:9a:6c:ec:
0e:9c:7a:e0:a0:d0:2b:ad:4e:8d:06:30:ea:b0:ad:
ca:40:c0:52:12:30:63:a4:b9:4a:38:2f:d9:42:ba:
bd:d9:2d:01:54:d6:83:50:17:4d:72:35:fb:6d:93:
f8:7f:22:20:16:3b:82:5b:df:87:3e:b9:d4:59:e2:
2e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:FF:75:41:9F:E0:FD:48:D6:3A:4F:50:3A:4A:39:66:CF:CA:34:5A
X509v3 Authority Key Identifier:
keyid:AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/5_91QZ_g_UjWOk9QOko5Zs_KNFo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/rfSRSIp82ESKQglFhxwLmWctxm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.0.0-31.56.111.255
31.56.116.0/24
31.58.236.0-31.58.255.255
31.59.12.0/22
85.15.48.0/23
94.182.0.0/15
151.240.80.0/21
151.240.168.0/22
151.240.192.0/21
151.240.240.0/21
151.241.224.0/21
151.242.0.0-151.242.11.255
151.244.48.0-151.244.95.255
151.247.214.0-151.247.241.255
151.247.248.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:97:aa:92:ef:c1:9f:cb:cf:7a:bb:7e:97:92:a7:1f:45:d1:
a8:38:a9:a8:69:c3:15:2b:35:4c:d2:a5:69:8c:c4:a9:44:3b:
a0:bf:37:4e:af:5c:cb:d5:38:3f:01:67:85:e3:1c:7e:30:c3:
06:65:07:06:dd:3b:4b:1b:e9:5f:a3:6f:b2:0a:c0:53:c2:9a:
af:9b:e0:ec:20:80:25:8f:25:56:86:db:c4:ea:dd:ec:50:b0:
78:61:5b:74:cd:31:4d:6e:ad:14:b4:9c:11:c1:35:3d:00:4e:
af:4f:80:3a:28:ba:da:09:8d:9f:6c:a3:c5:7e:d2:35:80:cb:
60:1a:22:52:27:92:21:e6:fe:67:6b:e0:25:57:fa:4f:3b:65:
f0:83:b0:4e:13:9b:4b:cb:51:30:c5:07:e9:56:f4:b3:c0:37:
f7:2d:6d:a5:8f:a2:09:46:7f:49:63:85:64:70:eb:a3:82:29:
e7:28:c9:07:00:7e:6b:83:d3:c0:9b:0a:ae:ca:79:b2:33:91:
38:8d:30:a7:64:b4:70:b8:f1:e2:7a:b1:d9:98:a1:97:2a:69:
aa:1d:ec:ea:50:a6:cd:dd:86:6e:f8:0e:79:e3:00:5f:d4:74:
0d:13:c9:e8:ac:fa:57:5e:b9:bd:ca:ba:47:73:d7:f0:a4:3e:
07:ea:79:1a
-----BEGIN CERTIFICATE-----
MIIFeTCCBGGgAwIBAgISAYxiwVP9YiazsvRVjZhZ+gIqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkZjQ5MTQ4OGE3Y2Q4NDQ4YTQyMDk0NTg3MWMwYjk5Njcy
ZGM2NmUwHhcNMjMxMjEzMTAzODA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlN2ZmNzU0MTlmZTBmZDQ4ZDYzYTRmNTAzYTRhMzk2NmNmY2EzNDVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq2VAUSGoRXkwTRVanKLlQ6wH3B8H
1RW3QYJvNxjCjkqfgsRrFyHtpSDr+g10Wa+IBbBCYsI1gsKK0LVsqXtDOcR+1xQr
1clSHu3BMhLmd3XcXMcMCb63DN0K9eMaIjD9h8BK/3JQGtvUKotHptzA+6ypm5ss
w2V3t+qf68i5KRjNfIIErCdhDZskBuFXZ5zgzL8V1bsyJ4JbLaHFWonRFkCqVUtz
DqYm6uh1prLTlH9LJSRr6rN95yNSMzFycUiabOwOnHrgoNArrU6NBjDqsK3KQMBS
EjBjpLlKOC/ZQrq92S0BVNaDUBdNcjX7bZP4fyIgFjuCW9+HPrnUWeIutwIDAQAB
o4IChTCCAoEwHQYDVR0OBBYEFOf/dUGf4P1I1jpPUDpKOWbPyjRaMB8GA1UdIwQY
MBaAFK30kUiKfNhEikIJRYccC5lnLcZuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmZTUlNJcDgyRVNLUWdsRmh4d0xtV2N0eG00LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi83MTVkMTUtMjgxMC00ODI3LThkYmQt
MGJlZTA2MTI2YjFhLzEvNV85MVFaX2dfVWpXT2s5UU9rbzVac19LTkZvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi83MTVkMTUtMjgxMC00ODI3LThkYmQtMGJlZTA2MTI2YjFh
LzEvcmZTUlNJcDgyRVNLUWdsRmh4d0xtV2N0eG00LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGaBggrBgEFBQcBBwEB/wSBijCBhzCBhAQCAAEwfjALAwMD
HzgDBAQfOGADBAAfOHQwCwMEAh867AMDAB86AwQCHzsMAwQBVQ8wAwMBXrYDBAOX
8FADBAKX8KgDBAOX8MADBAOX8PADBAOX8eAwCwMDAZfyAwQCl/IIMAwDBASX9DAD
BAWX9EAwDAMEAZf31gMEAZf38AMEApf3+DANBgkqhkiG9w0BAQsFAAOCAQEAtZeq
ku/Bn8vPert+l5KnH0XRqDipqGnDFSs1TNKlaYzEqUQ7oL83Tq9cy9U4PwFnheMc
fjDDBmUHBt07SxvpX6NvsgrAU8Kar5vg7CCAJY8lVobbxOrd7FCweGFbdM0xTW6t
FLScEcE1PQBOr0+AOii62gmNn2yjxX7SNYDLYBoiUieSIeb+Z2vgJVf6Tztl8IOw
ThObS8tRMMUH6Vb0s8A39y1tpY+iCUZ/SWOFZHDro4Ip5yjJBwB+a4PTwJsKrsp5
sjOROI0wp2S0cLjx4nqx2Zihlyppqh3s6lCmzd2GbvgOeeMAX9R0DRPJ6Kz6V165
vcq6R3PX8KQ+B+p5Gg==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:36 2023 by rpki-client on console.sobornost.net