Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/xu-mdhSXn3LQq463hzypZ4_w5ic.roa
File: xu-mdhSXn3LQq463hzypZ4_w5ic.roa (raw, json)
Hash identifier: 3b+Z4szIu73nrSi5ZyI9eZILP0Ua2tc/hAgqIyxvQQY=
Subject key identifier: C6:EF:A6:76:14:97:9F:72:D0:AB:8E:B7:87:3C:A9:67:8F:F0:E6:27
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 0187B812A2D644554562D6E83D338EED13E5
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/xu-mdhSXn3LQq463hzypZ4_w5ic.roa
Signing time: Tue 25 Apr 2023 11:00:41 +0000
ROA not before: Tue 25 Apr 2023 11:00:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 45.13.189.0/24 maxlen: 24
45.13.190.0/24 maxlen: 24
5.181.84.0/24 maxlen: 24
5.181.85.0/24 maxlen: 24
45.151.3.0/24 maxlen: 24
5.181.87.0/24 maxlen: 24
195.211.188.0/22 maxlen: 24
45.88.136.0/23 maxlen: 24
77.83.39.0/24 maxlen: 24
85.209.122.0/23 maxlen: 24
194.242.97.0/24 maxlen: 24
45.144.212.0/24 maxlen: 24
45.132.181.0/24 maxlen: 24
45.132.182.0/23 maxlen: 24
195.177.92.0/24 maxlen: 24
195.177.93.0/24 maxlen: 24
45.81.112.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Jun 2023 15:46:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b8:12:a2:d6:44:55:45:62:d6:e8:3d:33:8e:ed:13:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Apr 25 11:00:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c6efa67614979f72d0ab8eb7873ca9678ff0e627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:32:85:46:ad:43:bf:ce:18:9a:23:88:8d:9d:
5a:b4:53:54:fd:8b:e0:63:aa:8a:ef:13:9a:47:69:
3d:90:23:9a:cc:bd:f8:cc:fe:f4:8a:e2:2a:1d:fb:
d6:02:cb:a2:df:7a:c0:9c:5d:52:dc:f3:03:cc:91:
0c:fe:57:9a:46:ab:81:56:97:7e:de:f7:3f:ef:c0:
cd:cd:62:17:22:25:e0:be:db:64:da:4a:8b:4e:72:
aa:48:10:87:5f:94:fc:00:bb:4c:0a:08:9f:ca:2f:
5a:ef:95:b5:0c:59:bc:1e:98:9d:91:52:ed:8e:9a:
d6:95:59:37:75:4c:2e:3a:a8:c6:dc:af:c1:1c:eb:
e5:20:76:3e:f6:5c:c7:b5:3d:e1:c4:3e:0b:6f:dc:
df:f9:80:37:08:0c:6e:fe:35:76:80:3c:e2:e5:1e:
1b:bc:75:36:d9:b9:9a:a7:a3:2f:d2:b5:88:b6:ba:
8d:1a:c9:a6:b9:98:0a:8c:a4:4f:77:d3:1b:83:21:
19:7d:9c:a0:64:7d:63:19:ca:40:a7:93:e7:f0:37:
33:f0:c2:8e:62:70:ed:c3:6f:83:37:97:5b:84:6e:
48:31:ce:c4:e8:bb:9b:5e:0a:25:e8:34:c0:22:f3:
2d:9c:95:91:31:2e:c6:73:ac:ee:2d:fa:de:86:d9:
3d:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:EF:A6:76:14:97:9F:72:D0:AB:8E:B7:87:3C:A9:67:8F:F0:E6:27
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/xu-mdhSXn3LQq463hzypZ4_w5ic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.84.0/23
5.181.87.0/24
45.13.189.0-45.13.190.255
45.81.112.0/22
45.88.136.0/23
45.132.181.0-45.132.183.255
45.144.212.0/24
45.151.3.0/24
77.83.39.0/24
85.209.122.0/23
194.242.97.0/24
195.177.92.0/23
195.211.188.0/22
Signature Algorithm: sha256WithRSAEncryption
03:13:23:cf:e3:57:03:70:a8:08:8b:69:14:60:02:82:de:70:
6d:9c:e6:c9:82:a4:00:c0:c9:79:76:7b:c5:f5:d5:36:f0:6d:
8a:27:a9:61:a6:02:41:a5:c6:65:66:a7:02:aa:b5:33:17:7a:
93:73:1c:85:d6:66:bb:f5:55:5b:68:05:1e:93:de:10:f0:57:
8a:e8:1f:53:d8:fb:70:ce:57:36:b7:79:7c:c0:20:7d:09:52:
2b:1c:1e:a9:ce:88:14:3f:6b:99:8a:89:34:d3:78:67:0d:da:
bf:06:c5:d6:21:ac:70:a0:ce:f5:b1:b5:c2:c7:e6:af:5e:7e:
e6:56:6e:09:cb:d8:0c:9c:2d:d5:8d:3e:68:d5:c0:31:1e:42:
8e:5c:ba:b7:a4:a8:7d:94:59:26:f6:12:5c:2e:55:c5:88:b5:
5e:29:e6:ac:4d:7c:b3:91:40:b7:c9:68:a5:23:0f:8b:24:14:
55:b5:5f:43:cd:d3:21:2d:a7:2f:e6:28:d3:85:12:4b:f7:c1:
34:88:5b:9c:cd:fb:9d:4e:70:f4:77:35:41:82:db:8e:c5:7a:
3d:cc:b4:f4:ca:d2:49:e4:9b:15:ae:f8:3d:af:d1:6f:98:85:
58:a4:e9:78:c2:57:9a:6d:fa:3f:c0:fe:58:b9:2d:9e:55:e4:
4b:31:9b:14
-----BEGIN CERTIFICATE-----
MIIFVTCCBD2gAwIBAgISAYe4EqLWRFVFYtboPTOO7RPlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMmE0NzhiYjBiMDhlNjYxYjBiMmY5ZmJlODkzNWJjOWMy
YTI4YTEwHhcNMjMwNDI1MTEwMDQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNmVmYTY3NjE0OTc5ZjcyZDBhYjhlYjc4NzNjYTk2NzhmZjBlNjI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgTKFRq1Dv84YmiOIjZ1atFNU/Yvg
Y6qK7xOaR2k9kCOazL34zP70iuIqHfvWAsui33rAnF1S3PMDzJEM/leaRquBVpd+
3vc/78DNzWIXIiXgvttk2kqLTnKqSBCHX5T8ALtMCgifyi9a75W1DFm8HpidkVLt
jprWlVk3dUwuOqjG3K/BHOvlIHY+9lzHtT3hxD4Lb9zf+YA3CAxu/jV2gDzi5R4b
vHU22bmap6Mv0rWItrqNGsmmuZgKjKRPd9MbgyEZfZygZH1jGcpAp5Pn8Dcz8MKO
YnDtw2+DN5dbhG5IMc7E6LubXgol6DTAIvMtnJWRMS7Gc6zuLfrehtk9wQIDAQAB
o4ICYTCCAl0wHQYDVR0OBBYEFMbvpnYUl59y0KuOt4c8qWeP8OYnMB8GA1UdIwQY
MBaAFJ0qR4uwsI5mGwsvn76JNbycKiihMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMt
ZWVmMzUxMWY2YzYwLzEveHUtbWRoU1huM0xRcTQ2M2h6eXBaNF93NWljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMtZWVmMzUxMWY2YzYw
LzEvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHcGCCsGAQUFBwEHAQH/BGgwZjBkBAIAATBeAwQBBbVUAwQA
BbVXMAwDBAAtDb0DBAAtDb4DBAItUXADBAEtWIgwDAMEAC2EtQMEAy2EsAMEAC2Q
1AMEAC2XAwMEAE1TJwMEAVXRegMEAMLyYQMEAcOxXAMEAsPTvDANBgkqhkiG9w0B
AQsFAAOCAQEAAxMjz+NXA3CoCItpFGACgt5wbZzmyYKkAMDJeXZ7xfXVNvBtiiep
YaYCQaXGZWanAqq1Mxd6k3MchdZmu/VVW2gFHpPeEPBXiugfU9j7cM5XNrd5fMAg
fQlSKxweqc6IFD9rmYqJNNN4Zw3avwbF1iGscKDO9bG1wsfmr15+5lZuCcvYDJwt
1Y0+aNXAMR5Cjly6t6SofZRZJvYSXC5VxYi1XinmrE18s5FAt8lopSMPiyQUVbVf
Q83TIS2nL+Yo04USS/fBNIhbnM37nU5w9Hc1QYLbjsV6Pcy09MrSSeSbFa74Pa/R
b5iFWKTpeMJXmm36P8D+WLktnlXkSzGbFA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:20 2024 by rpki-client on console-ams.rpki-client.org