Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/RbL_5R6x3GevwrI_mb2hQKD35RY.roa
File: RbL_5R6x3GevwrI_mb2hQKD35RY.roa (raw, json)
Hash identifier: uGLYFcu+ZCaP2ITfWycXjn0Hu4lJJicTm6S2VYwDVOI=
Subject key identifier: 45:B2:FF:E5:1E:B1:DC:67:AF:C2:B2:3F:99:BD:A1:40:A0:F7:E5:16
Certificate issuer: /CN=e138ec242a43e9c9d4ceb25dc90e5453373d3f46
Certificate serial: 0188DE4C37FDE90AEF0A01905417A751015F
Authority key identifier: E1:38:EC:24:2A:43:E9:C9:D4:CE:B2:5D:C9:0E:54:53:37:3D:3F:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/RbL_5R6x3GevwrI_mb2hQKD35RY.roa
Signing time: Wed 21 Jun 2023 14:11:56 +0000
ROA not before: Wed 21 Jun 2023 14:11:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43350
IP address blocks: 185.107.44.0/22 maxlen: 22
109.201.128.0/19 maxlen: 19
185.107.45.0/24 maxlen: 24
185.107.56.0/22 maxlen: 22
185.107.68.0/22 maxlen: 22
185.107.80.0/22 maxlen: 22
185.107.37.0/24 maxlen: 24
185.107.36.0/24 maxlen: 24
185.107.38.0/24 maxlen: 24
212.92.112.0/21 maxlen: 21
212.92.120.0/22 maxlen: 22
212.92.124.0/23 maxlen: 23
92.114.100.0/24 maxlen: 24
92.114.100.0/22 maxlen: 22
89.38.160.0/22 maxlen: 22
85.159.232.0/21 maxlen: 24
46.166.176.0/20 maxlen: 24
37.143.32.0/21 maxlen: 24
185.107.92.0/22 maxlen: 22
185.107.100.0/22 maxlen: 24
185.107.116.0/22 maxlen: 24
46.166.128.0/19 maxlen: 24
212.92.104.0/21 maxlen: 21
185.11.144.0/24 maxlen: 24
37.156.228.0/24 maxlen: 24
188.209.57.0/24 maxlen: 24
188.209.56.0/24 maxlen: 24
188.209.55.0/24 maxlen: 24
37.153.168.0/22 maxlen: 22
77.247.176.0/24 maxlen: 24
77.247.176.0/21 maxlen: 21
5.104.136.0/21 maxlen: 24
185.7.76.0/22 maxlen: 24
176.126.232.0/24 maxlen: 24
176.126.233.0/24 maxlen: 24
2a00:1768::/32 maxlen: 36
Validation: Failed, certificate revoked on Wed 08 Nov 2023 21:02:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:de:4c:37:fd:e9:0a:ef:0a:01:90:54:17:a7:51:01:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e138ec242a43e9c9d4ceb25dc90e5453373d3f46
Validity
Not Before: Jun 21 14:11:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=45b2ffe51eb1dc67afc2b23f99bda140a0f7e516
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f6:38:21:ce:cc:23:84:be:cc:48:0c:f1:8a:
cc:18:3b:48:d7:08:60:61:32:ed:d7:d7:28:31:c7:
df:eb:49:b4:ce:45:3a:73:4f:ea:19:15:5e:66:7c:
b9:8a:dc:0e:8f:c8:56:b0:f5:cc:4b:8a:96:a5:e4:
68:ad:d8:10:a1:25:4e:32:37:ef:d0:71:6c:0e:82:
db:2f:45:1e:c7:8c:71:fd:a4:00:cc:a5:26:2d:3d:
c1:24:38:90:87:fd:b5:9c:e3:6b:3b:40:39:fa:5f:
11:1f:34:78:7c:7b:de:9e:35:d7:94:98:4f:bf:c2:
d9:0f:b0:39:5b:76:65:c3:8a:89:04:5d:83:f4:3a:
0e:4c:1f:32:00:7b:c9:7a:d7:dd:f2:e8:fb:af:ee:
11:c6:d7:ba:ec:a6:c8:8d:0d:5c:d3:f1:b3:6b:5d:
6c:64:22:29:4b:7f:1c:2c:37:c1:43:06:61:40:4e:
5d:04:13:52:1b:31:e6:b4:77:0f:ab:79:46:02:6e:
b8:bc:62:7b:5b:cc:31:4a:ba:14:e8:18:63:99:92:
89:d6:ae:fa:8b:d5:47:06:03:77:3e:29:f8:49:7e:
4b:b0:e3:00:22:d2:7a:f3:10:3a:c1:2f:2f:ce:06:
20:04:14:5d:1c:0e:aa:70:51:18:4f:e3:d1:4e:4e:
d6:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:B2:FF:E5:1E:B1:DC:67:AF:C2:B2:3F:99:BD:A1:40:A0:F7:E5:16
X509v3 Authority Key Identifier:
keyid:E1:38:EC:24:2A:43:E9:C9:D4:CE:B2:5D:C9:0E:54:53:37:3D:3F:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/RbL_5R6x3GevwrI_mb2hQKD35RY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.136.0/21
37.143.32.0/21
37.153.168.0/22
37.156.228.0/24
46.166.128.0/19
46.166.176.0/20
77.247.176.0/21
85.159.232.0/21
89.38.160.0/22
92.114.100.0/22
109.201.128.0/19
176.126.232.0/23
185.7.76.0/22
185.11.144.0/24
185.107.36.0-185.107.38.255
185.107.44.0/22
185.107.56.0/22
185.107.68.0/22
185.107.80.0/22
185.107.92.0/22
185.107.100.0/22
185.107.116.0/22
188.209.55.0-188.209.57.255
212.92.104.0-212.92.125.255
IPv6:
2a00:1768::/32
Signature Algorithm: sha256WithRSAEncryption
92:ac:79:20:b0:d8:ac:aa:a7:8f:13:48:fc:c9:17:5d:41:29:
ab:94:7d:8f:1d:0c:e3:02:77:02:ba:f2:db:7a:bc:b8:53:e8:
91:81:60:cd:26:89:61:8d:3b:c8:96:af:da:d3:90:07:a4:93:
36:95:79:51:9f:69:85:1a:b9:bb:35:11:50:d7:e5:6b:0a:bc:
9b:54:71:4d:e7:2a:5c:77:ec:24:0c:a2:8c:2f:19:66:96:f0:
cd:cd:10:df:1e:14:7c:d8:ea:80:b7:5c:6e:3c:9c:ef:cc:c8:
8e:01:0b:e0:f8:81:16:1d:52:cc:c3:37:9b:1e:ff:95:4e:5d:
3c:ea:c1:c7:86:75:af:b2:1e:47:e3:6b:e2:f2:a1:7b:2e:1b:
d6:4b:d9:09:86:66:ed:27:44:30:cc:aa:b9:1b:ed:75:d6:83:
2f:5c:7f:6f:01:5f:b0:11:a6:3a:a5:a6:5d:5b:59:08:5d:26:
80:f9:ff:34:4b:d5:9a:de:8d:6a:9e:67:2f:d6:80:3b:79:43:
d8:23:75:1b:24:70:5a:23:68:a3:7f:7f:a7:59:65:b0:30:9b:
ab:34:e7:4b:47:bc:69:37:d5:3f:e9:6f:e7:99:a2:1f:ce:9f:
bb:38:01:7f:27:66:8f:da:65:18:7c:4f:5a:b8:56:5a:ec:19:
a2:61:b5:cc
-----BEGIN CERTIFICATE-----
MIIFszCCBJugAwIBAgISAYjeTDf96QrvCgGQVBenUQFfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxMzhlYzI0MmE0M2U5YzlkNGNlYjI1ZGM5MGU1NDUzMzcz
ZDNmNDYwHhcNMjMwNjIxMTQxMTU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NWIyZmZlNTFlYjFkYzY3YWZjMmIyM2Y5OWJkYTE0MGEwZjdlNTE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkPY4Ic7MI4S+zEgM8YrMGDtI1whg
YTLt19coMcff60m0zkU6c0/qGRVeZny5itwOj8hWsPXMS4qWpeRordgQoSVOMjfv
0HFsDoLbL0Uex4xx/aQAzKUmLT3BJDiQh/21nONrO0A5+l8RHzR4fHvenjXXlJhP
v8LZD7A5W3Zlw4qJBF2D9DoOTB8yAHvJetfd8uj7r+4Rxte67KbIjQ1c0/Gza11s
ZCIpS38cLDfBQwZhQE5dBBNSGzHmtHcPq3lGAm64vGJ7W8wxSroU6BhjmZKJ1q76
i9VHBgN3Pin4SX5LsOMAItJ68xA6wS8vzgYgBBRdHA6qcFEYT+PRTk7WcQIDAQAB
o4ICvzCCArswHQYDVR0OBBYEFEWy/+Uesdxnr8KyP5m9oUCg9+UWMB8GA1UdIwQY
MBaAFOE47CQqQ+nJ1M6yXckOVFM3PT9GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNFRqc0pDcEQ2Y25VenJKZHlRNVVVemM5UDBZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8wYjdmZDMtOTBmMC00NWQxLThhNTgt
Njc4NWNkNDU2ODcxLzEvUmJMXzVSNngzR2V2d3JJX21iMmhRS0QzNVJZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi8wYjdmZDMtOTBmMC00NWQxLThhNTgtNjc4NWNkNDU2ODcx
LzEvNFRqc0pDcEQ2Y25VenJKZHlRNVVVemM5UDBZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHUBggrBgEFBQcBBwEB/wSBxDCBwTCBrwQCAAEwgagDBAMF
aIgDBAMljyADBAIlmagDBAAlnOQDBAUupoADBAQuprADBANN97ADBANVn+gDBAJZ
JqADBAJccmQDBAVtyYADBAGwfugDBAK5B0wDBAC5C5AwDAMEArlrJAMEALlrJgME
ArlrLAMEArlrOAMEArlrRAMEArlrUAMEArlrXAMEArlrZAMEArlrdDAMAwQAvNE3
AwQBvNE4MAwDBAPUXGgDBAHUXHwwDQQCAAIwBwMFACoAF2gwDQYJKoZIhvcNAQEL
BQADggEBAJKseSCw2Kyqp48TSPzJF11BKauUfY8dDOMCdwK68tt6vLhT6JGBYM0m
iWGNO8iWr9rTkAekkzaVeVGfaYUaubs1EVDX5WsKvJtUcU3nKlx37CQMoowvGWaW
8M3NEN8eFHzY6oC3XG48nO/MyI4BC+D4gRYdUszDN5se/5VOXTzqwceGda+yHkfj
a+LyoXsuG9ZL2QmGZu0nRDDMqrkb7XXWgy9cf28BX7ARpjqlpl1bWQhdJoD5/zRL
1ZrejWqeZy/WgDt5Q9gjdRskcFojaKN/f6dZZbAwm6s050tHvGk31T/pb+eZoh/O
n7s4AX8nZo/aZRh8T1q4VlrsGaJhtcw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:58 2024 by rpki-client on console-fra.rpki-client.org