Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/bP-1gdKoq0U7gOswElbJbBq8n6c.roa
File: bP-1gdKoq0U7gOswElbJbBq8n6c.roa (raw, json)
Hash identifier: QUWEQH42fsLpLBJuQ83AubJzFiaw1KGz0TTzNB/yR6k=
Subject key identifier: 6C:FF:B5:81:D2:A8:AB:45:3B:80:EB:30:12:56:C9:6C:1A:BC:9F:A7
Certificate issuer: /CN=f71d4a4374df222ac3235b9602206d96bf1dac82
Certificate serial: 01882BF1E877A0E4572922262DFF3DACD770
Authority key identifier: F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/bP-1gdKoq0U7gOswElbJbBq8n6c.roa
Signing time: Wed 17 May 2023 23:00:53 +0000
ROA not before: Wed 17 May 2023 23:00:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5607
IP address blocks: 93.96.224.0/19 maxlen: 19
87.80.0.0/15 maxlen: 15
51.198.0.0/16 maxlen: 16
51.198.0.0/15 maxlen: 15
176.255.240.0/24 maxlen: 24
176.255.242.0/24 maxlen: 24
176.255.241.0/24 maxlen: 24
151.224.0.0/13 maxlen: 13
51.194.0.0/16 maxlen: 16
93.96.0.0/17 maxlen: 17
78.86.0.0/16 maxlen: 16
149.241.0.0/16 maxlen: 16
51.241.0.0/16 maxlen: 16
176.248.0.0/13 maxlen: 13
2.120.0.0/13 maxlen: 13
93.96.128.0/18 maxlen: 18
51.19.0.0/16 maxlen: 16
51.199.224.0/20 maxlen: 20
188.220.0.0/14 maxlen: 14
51.146.0.0/16 maxlen: 16
51.199.240.0/21 maxlen: 21
51.199.248.0/22 maxlen: 22
90.192.0.0/11 maxlen: 11
51.199.192.0/19 maxlen: 19
51.190.0.0/15 maxlen: 15
5.64.0.0/13 maxlen: 13
51.199.0.0/17 maxlen: 17
46.64.0.0/15 maxlen: 15
94.192.0.0/14 maxlen: 14
51.182.0.0/15 maxlen: 15
2.216.0.0/13 maxlen: 13
51.199.128.0/18 maxlen: 18
51.186.0.0/15 maxlen: 15
94.0.0.0/12 maxlen: 12
176.24.0.0/14 maxlen: 14
78.105.0.0/16 maxlen: 16
2a06:5902::/31 maxlen: 31
2a06:5904::/31 maxlen: 31
2a02:c7e::/33 maxlen: 33
2a02:c7e:8000::/33 maxlen: 33
2a06:5901::/33 maxlen: 33
2a02:c78::/29 maxlen: 29
2a02:c7b::/32 maxlen: 32
2a02:c7a::/32 maxlen: 32
2a02:c7d::/33 maxlen: 33
2a02:c7d:8000::/33 maxlen: 33
2a06:5906::/31 maxlen: 31
2a02:c7c::/30 maxlen: 30
2a02:c7f::/33 maxlen: 33
2a02:c7f:8000::/33 maxlen: 33
2a06:5900::/32 maxlen: 32
2a02:c7c::/33 maxlen: 33
2a02:c7c:8000::/33 maxlen: 33
Validation: Failed, certificate revoked on Fri 01 Dec 2023 12:49:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2b:f1:e8:77:a0:e4:57:29:22:26:2d:ff:3d:ac:d7:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f71d4a4374df222ac3235b9602206d96bf1dac82
Validity
Not Before: May 17 23:00:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6cffb581d2a8ab453b80eb301256c96c1abc9fa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:da:b2:15:2c:98:42:94:71:92:48:0e:65:60:
97:ca:12:a1:3a:4e:df:61:e1:1b:56:92:75:27:d6:
7a:3d:76:41:2b:d2:f6:fb:14:fb:89:f8:c3:51:77:
aa:ae:a3:73:5e:10:9f:97:ad:bc:c2:a8:ba:9f:17:
c7:26:60:4c:d0:7e:64:6e:98:fa:cf:d8:4c:d7:d5:
19:89:cd:c6:ad:57:dc:0c:0b:80:12:2c:2d:00:25:
d7:29:5d:c1:b2:4e:5d:d4:38:d0:d1:71:5f:de:80:
33:a0:85:ff:f7:41:24:e4:34:9a:ec:d4:7b:df:b7:
96:52:fc:ad:6d:0e:f7:c1:44:2e:83:bf:eb:b5:bc:
09:c3:b3:18:10:4b:65:36:ed:f4:e1:b8:bd:57:ed:
8d:99:65:83:8f:3f:81:2e:76:d3:3a:82:4e:7f:cd:
47:9b:8e:30:13:90:0f:a8:36:83:50:f9:29:77:68:
66:89:b1:eb:78:df:46:06:67:15:cf:df:42:da:b5:
68:84:67:33:c9:55:fa:93:cf:5b:95:29:c7:a1:8f:
86:7d:d2:66:42:91:9a:90:3e:80:1c:a9:94:a7:97:
96:e7:90:c4:e6:d4:d2:e5:a4:17:61:10:ce:6c:75:
dd:f0:5c:5a:59:b4:4c:1d:c2:d5:3e:ee:fd:1e:ba:
c0:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:FF:B5:81:D2:A8:AB:45:3B:80:EB:30:12:56:C9:6C:1A:BC:9F:A7
X509v3 Authority Key Identifier:
keyid:F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/bP-1gdKoq0U7gOswElbJbBq8n6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/9x1KQ3TfIirDI1uWAiBtlr8drII.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.120.0.0/13
2.216.0.0/13
5.64.0.0/13
46.64.0.0/15
51.19.0.0/16
51.146.0.0/16
51.182.0.0/15
51.186.0.0/15
51.190.0.0/15
51.194.0.0/16
51.198.0.0/15
51.241.0.0/16
78.86.0.0/16
78.105.0.0/16
87.80.0.0/15
90.192.0.0/11
93.96.0.0-93.96.191.255
93.96.224.0/19
94.0.0.0/12
94.192.0.0/14
149.241.0.0/16
151.224.0.0/13
176.24.0.0/14
176.248.0.0/13
188.220.0.0/14
IPv6:
2a02:c78::/29
2a06:5900::-2a06:5901:7fff:ffff:ffff:ffff:ffff:ffff
2a06:5902::-2a06:5907:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
03:45:87:e3:7b:0a:84:cd:f0:33:ff:5a:27:bf:d5:f6:8d:89:
fa:9d:c4:32:d2:6b:66:0b:1f:83:17:a9:80:ae:57:32:f6:a0:
63:38:7b:09:60:c7:84:53:8c:d4:59:45:13:4d:66:73:54:ef:
b2:00:87:56:f8:db:f4:2b:5e:31:d2:83:a3:04:6a:7b:16:4f:
09:19:b4:8f:ef:95:32:64:9e:1f:af:44:a2:e5:f0:08:b3:d5:
fb:0e:ba:88:93:c7:a8:75:5b:27:24:42:6d:75:05:05:63:c4:
42:1c:2a:00:b8:28:02:5a:51:a1:5d:ab:80:01:c2:fe:38:bf:
1c:fb:c4:a6:c6:83:9b:42:c3:e2:d5:c7:14:9f:9d:3c:6b:63:
c2:b8:31:96:f4:fd:0a:26:75:a3:01:a9:9b:c9:24:1b:39:4f:
80:01:18:ff:29:fe:03:fc:22:2d:ee:7a:a1:d8:b6:a4:72:b8:
85:76:89:35:3c:42:2b:0d:c7:58:c9:7d:22:f0:6f:d5:2d:c8:
6c:c5:e6:c8:53:fd:07:4a:e5:8e:8f:d8:ad:1a:d1:6a:1f:ef:
7f:bc:72:e3:77:21:94:9f:8b:bd:f7:0c:51:47:a6:20:db:f4:
e3:54:b0:7b:4f:f8:74:79:e5:a9:07:d8:08:3e:19:2e:4d:7b:
67:8a:aa:57
-----BEGIN CERTIFICATE-----
MIIFsTCCBJmgAwIBAgISAYgr8eh3oORXKSImLf89rNdwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3MWQ0YTQzNzRkZjIyMmFjMzIzNWI5NjAyMjA2ZDk2YmYx
ZGFjODIwHhcNMjMwNTE3MjMwMDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Y2ZmYjU4MWQyYThhYjQ1M2I4MGViMzAxMjU2Yzk2YzFhYmM5ZmE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1tqyFSyYQpRxkkgOZWCXyhKhOk7f
YeEbVpJ1J9Z6PXZBK9L2+xT7ifjDUXeqrqNzXhCfl628wqi6nxfHJmBM0H5kbpj6
z9hM19UZic3GrVfcDAuAEiwtACXXKV3Bsk5d1DjQ0XFf3oAzoIX/90Ek5DSa7NR7
37eWUvytbQ73wUQug7/rtbwJw7MYEEtlNu304bi9V+2NmWWDjz+BLnbTOoJOf81H
m44wE5APqDaDUPkpd2hmibHreN9GBmcVz99C2rVohGczyVX6k89blSnHoY+GfdJm
QpGakD6AHKmUp5eW55DE5tTS5aQXYRDObHXd8FxaWbRMHcLVPu79HrrAKwIDAQAB
o4ICvTCCArkwHQYDVR0OBBYEFGz/tYHSqKtFO4DrMBJWyWwavJ+nMB8GA1UdIwQY
MBaAFPcdSkN03yIqwyNblgIgbZa/HayCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOXgxS1EzVGZJaXJESTF1V0FpQnRscjhkcklJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83NzM5ZGMtMTEzMi00ODM3LTliODUt
ZTlhYzJiMDAzMTZhLzEvYlAtMWdkS29xMFU3Z09zd0VsYkpiQnE4bjZjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83NzM5ZGMtMTEzMi00ODM3LTliODUtZTlhYzJiMDAzMTZh
LzEvOXgxS1EzVGZJaXJESTF1V0FpQnRscjhkcklJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHSBggrBgEFBQcBBwEB/wSBwjCBvzCBjQQCAAEwgYYDAwMC
eAMDAwLYAwMDBUADAwEuQAMDADMTAwMAM5IDAwEztgMDATO6AwMBM74DAwAzwgMD
ATPGAwMAM/EDAwBOVgMDAE5pAwMBV1ADAwVawDALAwMFXWADBAZdYIADBAVdYOAD
AwReAAMDAl7AAwMAlfEDAwOX4AMDArAYAwMDsPgDAwK83DAtBAIAAjAnAwUDKgIM
eDAOAwQAKgZZAwYHKgZZAQAwDgMFASoGWQIDBQMqBlkAMA0GCSqGSIb3DQEBCwUA
A4IBAQADRYfjewqEzfAz/1onv9X2jYn6ncQy0mtmCx+DF6mArlcy9qBjOHsJYMeE
U4zUWUUTTWZzVO+yAIdW+Nv0K14x0oOjBGp7Fk8JGbSP75UyZJ4fr0Si5fAIs9X7
DrqIk8eodVsnJEJtdQUFY8RCHCoAuCgCWlGhXauAAcL+OL8c+8SmxoObQsPi1ccU
n508a2PCuDGW9P0KJnWjAambySQbOU+AARj/Kf4D/CIt7nqh2LakcriFdok1PEIr
DcdYyX0i8G/VLchsxebIU/0HSuWOj9itGtFqH+9/vHLjdyGUn4u99wxRR6Yg2/Tj
VLB7T/h0eeWpB9gIPhkuTXtniqpX
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:23 2024 by rpki-client on console-fra.rpki-client.org