Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/8HloMYIni7pwPkF-l21EJSdwOxM.roa
File: 8HloMYIni7pwPkF-l21EJSdwOxM.roa (raw, json)
Hash identifier: O+LU0A4PO7o8X1lKbSDbxVrFaogi9ijBf/ZYF2TdsrQ=
Subject key identifier: F0:79:68:31:82:27:8B:BA:70:3E:41:7E:97:6D:44:25:27:70:3B:13
Certificate issuer: /CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
Certificate serial: 018AB4BA37246794509E3A1613DCA4FFCE6C
Authority key identifier: E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/8HloMYIni7pwPkF-l21EJSdwOxM.roa
Signing time: Wed 20 Sep 2023 22:33:37 +0000
ROA not before: Wed 20 Sep 2023 22:33:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 151.186.190.0/24 maxlen: 24
151.186.189.0/24 maxlen: 24
151.186.188.0/24 maxlen: 24
151.186.192.0/24 maxlen: 24
151.186.191.0/24 maxlen: 24
151.186.187.0/24 maxlen: 24
151.186.192.0/20 maxlen: 24
151.186.194.0/24 maxlen: 24
151.186.193.0/24 maxlen: 24
151.186.197.0/24 maxlen: 24
151.186.196.0/24 maxlen: 24
151.186.195.0/24 maxlen: 24
151.186.199.0/24 maxlen: 24
151.186.198.0/24 maxlen: 24
151.186.204.0/24 maxlen: 24
151.186.203.0/24 maxlen: 24
151.186.202.0/24 maxlen: 24
151.186.206.0/24 maxlen: 24
151.186.205.0/24 maxlen: 24
151.186.201.0/24 maxlen: 24
151.186.200.0/24 maxlen: 24
151.186.207.0/24 maxlen: 24
151.186.172.0/22 maxlen: 24
151.186.172.0/24 maxlen: 24
151.186.176.0/24 maxlen: 24
151.186.175.0/24 maxlen: 24
151.186.174.0/24 maxlen: 24
151.186.179.0/24 maxlen: 24
151.186.178.0/24 maxlen: 24
151.186.177.0/24 maxlen: 24
151.186.173.0/24 maxlen: 24
151.186.176.0/20 maxlen: 24
151.186.180.0/24 maxlen: 24
151.186.183.0/24 maxlen: 24
151.186.182.0/24 maxlen: 24
151.186.181.0/24 maxlen: 24
151.186.186.0/24 maxlen: 24
151.186.185.0/24 maxlen: 24
151.186.184.0/24 maxlen: 24
2a04:e4c4:5::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b4:ba:37:24:67:94:50:9e:3a:16:13:dc:a4:ff:ce:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
Validity
Not Before: Sep 20 22:33:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f079683182278bba703e417e976d442527703b13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7d:d4:f3:45:4b:ee:66:76:39:81:d3:31:68:
76:d7:11:0d:fa:10:ef:f2:ba:72:84:72:74:5a:76:
b8:69:5f:16:79:f8:8b:3f:1a:be:7a:25:2b:1e:84:
fd:82:af:55:e3:d1:b9:f7:85:12:1e:d5:4e:e6:b1:
d0:d6:fa:c9:e9:a7:6e:61:7a:c3:43:4b:ad:2a:79:
98:76:ae:c8:e7:b5:03:19:75:ff:f8:6a:0d:2c:9a:
b7:aa:dc:58:1f:74:6e:ef:4b:5b:ee:eb:93:74:3e:
62:16:e7:51:5d:91:d9:9c:dc:00:10:6c:cf:40:63:
44:c2:a3:1f:f9:d9:9e:9f:86:38:c3:84:30:9d:1f:
c4:86:de:cc:e7:53:18:a7:0c:8d:6e:93:d0:6a:8f:
6c:95:94:1e:9c:62:41:34:d6:87:97:ca:51:0b:cd:
ad:f5:39:54:7e:16:44:74:72:4e:a4:40:a9:a7:37:
74:e8:9e:a0:e2:1e:9f:31:37:f4:99:5b:34:af:40:
65:e6:dd:ae:5f:5c:c5:e9:8d:c3:7b:d3:59:19:02:
0c:71:c1:2b:7d:3c:92:68:4e:01:c4:4f:b2:0c:d2:
7e:0d:1a:51:e4:32:60:61:26:ae:8b:87:eb:44:7b:
45:dc:a7:de:a3:45:fb:c9:de:2b:e9:f0:52:a9:e4:
88:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:79:68:31:82:27:8B:BA:70:3E:41:7E:97:6D:44:25:27:70:3B:13
X509v3 Authority Key Identifier:
keyid:E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/8HloMYIni7pwPkF-l21EJSdwOxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/5xM9yvKx6_Xa3lozqhsvuZ0mibo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.186.172.0-151.186.207.255
IPv6:
2a04:e4c4:5::/48
Signature Algorithm: sha256WithRSAEncryption
a5:62:a5:38:57:9d:b6:c7:c1:ff:a7:78:6b:b9:e0:0c:2c:93:
be:cc:4c:0f:eb:61:02:66:d5:13:5c:14:5a:4c:a0:6b:10:bb:
fa:91:6d:6f:c1:9a:28:d5:d9:fa:2c:e8:09:9d:10:23:2a:37:
33:26:2f:c1:8b:3e:ef:0b:17:c2:66:e6:f1:53:59:1b:3a:21:
91:90:ea:c5:70:14:55:db:7a:ac:76:f5:9f:17:98:7f:95:d4:
f0:01:0f:5f:cf:1d:c0:cc:30:c1:48:8b:65:b7:83:98:9a:d9:
ad:29:00:19:e7:dd:79:5d:e1:c5:b9:bb:1f:5e:5c:f6:53:45:
0f:bb:80:41:b3:c2:99:9f:5d:cb:b6:7b:8b:d1:3e:c4:74:cf:
a3:d8:e8:c6:e7:a1:ad:78:5a:ae:15:4d:f8:f2:1f:e4:af:4c:
a5:77:be:3b:c4:3d:d9:e1:40:e9:72:b1:8b:41:d5:38:bb:8e:
33:f7:9b:72:98:b4:c3:a0:f8:08:32:ec:40:dc:d6:ae:a4:39:
72:f8:45:f2:82:de:a9:75:c8:51:f4:89:9a:d0:1f:8c:49:70:
e0:01:75:74:9b:b0:68:75:e4:35:10:43:40:88:18:b7:8a:d8:
e0:63:be:f0:02:eb:74:9c:ab:db:6c:b6:ab:8a:d7:79:4d:44:
ee:a5:66:28
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAYq0ujckZ5RQnjoWE9yk/85sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3MTMzZGNhZjJiMWViZjVkYWRlNWEzM2FhMWIyZmI5OWQy
Njg5YmEwHhcNMjMwOTIwMjIzMzM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMDc5NjgzMTgyMjc4YmJhNzAzZTQxN2U5NzZkNDQyNTI3NzAzYjEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmX3U80VL7mZ2OYHTMWh21xEN+hDv
8rpyhHJ0Wna4aV8WefiLPxq+eiUrHoT9gq9V49G594USHtVO5rHQ1vrJ6aduYXrD
Q0utKnmYdq7I57UDGXX/+GoNLJq3qtxYH3Ru70tb7uuTdD5iFudRXZHZnNwAEGzP
QGNEwqMf+dmen4Y4w4QwnR/Eht7M51MYpwyNbpPQao9slZQenGJBNNaHl8pRC82t
9TlUfhZEdHJOpECppzd06J6g4h6fMTf0mVs0r0Bl5t2uX1zF6Y3De9NZGQIMccEr
fTySaE4BxE+yDNJ+DRpR5DJgYSaui4frRHtF3Kfeo0X7yd4r6fBSqeSIuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPB5aDGCJ4u6cD5BfpdtRCUncDsTMB8GA1UdIwQY
MBaAFOcTPcrysev12t5aM6obL7mdJom6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNXhNOXl2S3g2X1hhM2xvenFoc3Z1WjBtaWJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi81ZTRkZjgtYWU4Yy00NGE3LWJkNmUt
MTljZTQ2YTQyZmE0LzEvOEhsb01ZSW5pN3B3UGtGLWwyMUVKU2R3T3hNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi81ZTRkZjgtYWU4Yy00NGE3LWJkNmUtMTljZTQ2YTQyZmE0
LzEvNXhNOXl2S3g2X1hhM2xvenFoc3Z1WjBtaWJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDgGCCsGAQUFBwEHAQH/BCkwJzAUBAIAATAOMAwDBAKXuqwD
BASXusAwDwQCAAIwCQMHACoE5MQABTANBgkqhkiG9w0BAQsFAAOCAQEApWKlOFed
tsfB/6d4a7ngDCyTvsxMD+thAmbVE1wUWkygaxC7+pFtb8GaKNXZ+izoCZ0QIyo3
MyYvwYs+7wsXwmbm8VNZGzohkZDqxXAUVdt6rHb1nxeYf5XU8AEPX88dwMwwwUiL
ZbeDmJrZrSkAGefdeV3hxbm7H15c9lNFD7uAQbPCmZ9dy7Z7i9E+xHTPo9joxueh
rXharhVN+PIf5K9MpXe+O8Q92eFA6XKxi0HVOLuOM/ebcpi0w6D4CDLsQNzWrqQ5
cvhF8oLeqXXIUfSJmtAfjElw4AF1dJuwaHXkNRBDQIgYt4rY4GO+8ALrdJyr22y2
q4rXeU1E7qVmKA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:55 2024 by rpki-client on console-ams.rpki-client.org