Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/9BR_v2zHhIrbg2Jf7SrYsQIYayE.roa
File: 9BR_v2zHhIrbg2Jf7SrYsQIYayE.roa (raw, json)
Hash identifier: wmcq5vX1cgwM3k5ceFnGVBpAGWUpAEwx6TqXu1UMhWo=
Subject key identifier: F4:14:7F:BF:6C:C7:84:8A:DB:83:62:5F:ED:2A:D8:B1:02:18:6B:21
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018F81D4EBA122E3F19D901B015070274CC1
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/9BR_v2zHhIrbg2Jf7SrYsQIYayE.roa
Signing time: Thu 16 May 2024 14:36:05 +0000
ROA not before: Thu 16 May 2024 14:36:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202656
IP address blocks: 45.15.239.0/24 maxlen: 24
45.129.1.0/24 maxlen: 24
45.132.39.0/24 maxlen: 24
45.135.35.0/24 maxlen: 24
45.138.7.0/24 maxlen: 24
45.138.156.0/24 maxlen: 24
45.138.212.0/24 maxlen: 24
45.138.215.0/24 maxlen: 24
45.140.65.0/24 maxlen: 24
45.149.130.0/24 maxlen: 24
45.149.131.0/24 maxlen: 24
45.152.118.0/24 maxlen: 24
45.152.119.0/24 maxlen: 24
83.138.51.0/24 maxlen: 24
83.138.52.0/24 maxlen: 24
84.246.82.0/24 maxlen: 24
91.206.69.0/24 maxlen: 24
91.237.104.0/24 maxlen: 24
91.237.105.0/24 maxlen: 24
176.116.5.0/24 maxlen: 24
176.116.9.0/24 maxlen: 24
176.116.20.0/24 maxlen: 24
176.116.23.0/24 maxlen: 24
176.126.109.0/24 maxlen: 24
176.126.112.0/24 maxlen: 24
176.126.115.0/24 maxlen: 24
193.0.245.0/24 maxlen: 24
193.0.246.0/24 maxlen: 24
193.5.1.0/24 maxlen: 24
193.58.171.0/24 maxlen: 24
193.58.178.0/24 maxlen: 24
194.107.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 May 2024 16:53:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:81:d4:eb:a1:22:e3:f1:9d:90:1b:01:50:70:27:4c:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: May 16 14:36:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f4147fbf6cc7848adb83625fed2ad8b102186b21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:33:9f:7a:d6:f6:37:50:d4:a5:8f:6f:4b:41:
6d:f6:1f:54:03:d5:6a:e4:1c:ad:46:67:c1:de:ea:
a2:73:24:c5:bc:64:e1:7f:87:1a:3c:be:71:45:53:
b1:d6:2f:b3:64:7f:6d:90:87:92:0f:60:b0:b2:75:
11:48:73:8a:62:69:59:d2:ff:6d:97:8e:fc:f4:fb:
e0:c4:e8:0f:28:68:09:6b:ed:80:78:75:98:65:07:
2f:ae:c8:53:34:4a:22:2d:ac:61:97:28:f7:51:bd:
b5:f5:ff:68:a0:ec:d9:35:81:62:35:31:44:32:18:
1e:fd:40:85:6b:b7:cb:e2:6a:5f:e0:29:14:54:e3:
b8:69:ec:7c:25:b9:af:e2:04:92:c5:7a:fa:4a:31:
50:b6:7d:18:13:f6:3c:6d:18:3b:21:ce:9a:f3:ac:
f2:79:06:26:3b:9d:40:ef:33:ad:f9:a9:39:16:c0:
1f:dc:90:f5:e2:01:48:21:94:52:f0:2c:70:69:ad:
c3:27:9a:4c:2c:59:bf:b3:14:7c:00:30:0f:c4:86:
d8:c1:30:55:54:40:75:41:17:59:33:45:cb:af:92:
52:e5:f8:cc:0c:aa:73:88:9b:4a:86:e6:5e:50:90:
66:68:69:a6:3c:b6:4b:ae:07:5a:b3:d6:31:17:cc:
4f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:14:7F:BF:6C:C7:84:8A:DB:83:62:5F:ED:2A:D8:B1:02:18:6B:21
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/9BR_v2zHhIrbg2Jf7SrYsQIYayE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.239.0/24
45.129.1.0/24
45.132.39.0/24
45.135.35.0/24
45.138.7.0/24
45.138.156.0/24
45.138.212.0/24
45.138.215.0/24
45.140.65.0/24
45.149.130.0/23
45.152.118.0/23
83.138.51.0-83.138.52.255
84.246.82.0/24
91.206.69.0/24
91.237.104.0/23
176.116.5.0/24
176.116.9.0/24
176.116.20.0/24
176.116.23.0/24
176.126.109.0/24
176.126.112.0/24
176.126.115.0/24
193.0.245.0-193.0.246.255
193.5.1.0/24
193.58.171.0/24
193.58.178.0/24
194.107.200.0/24
Signature Algorithm: sha256WithRSAEncryption
15:e5:35:85:a6:32:e2:c0:76:2b:02:4c:e7:fd:92:0a:60:3f:
81:d8:c6:a4:77:28:95:48:69:98:d6:78:0c:21:d1:90:87:38:
44:be:8b:07:40:a0:fb:03:60:15:80:ef:2f:e3:62:e8:c8:2b:
af:b1:c1:15:53:7d:a3:78:e0:a6:05:06:47:79:95:58:89:2c:
14:12:bd:e8:1a:14:ff:68:4c:9e:05:72:6c:e3:1f:1a:01:13:
31:33:ea:5d:fe:4b:18:c5:3d:ef:1f:ad:b7:ad:6b:81:5a:5a:
ab:e9:95:22:40:9a:a3:a3:b5:c5:a4:c6:8e:34:66:48:2c:4c:
96:62:5d:b2:3a:77:be:da:ec:2b:96:47:be:a4:b2:16:97:22:
c3:63:c3:a5:f1:e7:39:45:3e:a8:17:55:42:05:c8:a7:5c:e1:
c9:90:3c:c4:12:75:e2:af:7a:86:39:5f:73:93:80:db:ac:27:
0d:70:bb:9c:df:db:a1:d4:5b:52:4e:86:79:0a:89:cf:8c:bb:
f4:5e:b3:10:d3:59:f9:62:bc:66:96:59:ef:38:a6:c4:07:bb:
d1:42:a9:ed:bd:68:ad:26:82:1a:78:3f:b0:a9:96:f6:33:b6:
18:d2:46:38:cc:99:1f:cc:7e:01:ad:8f:e7:98:e3:30:ea:cc:
c6:e7:4c:00
-----BEGIN CERTIFICATE-----
MIIFrjCCBJagAwIBAgISAY+B1OuhIuPxnZAbAVBwJ0zBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NmJiNDhlOTNlOGEwMDU4YzVjNzJhODFhODc5OTQ1NTMw
N2VlNTYwHhcNMjQwNTE2MTQzNjA1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNDE0N2ZiZjZjYzc4NDhhZGI4MzYyNWZlZDJhZDhiMTAyMTg2YjIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6zOfetb2N1DUpY9vS0Ft9h9UA9Vq
5BytRmfB3uqicyTFvGThf4caPL5xRVOx1i+zZH9tkIeSD2CwsnURSHOKYmlZ0v9t
l4789PvgxOgPKGgJa+2AeHWYZQcvrshTNEoiLaxhlyj3Ub219f9ooOzZNYFiNTFE
Mhge/UCFa7fL4mpf4CkUVOO4aex8Jbmv4gSSxXr6SjFQtn0YE/Y8bRg7Ic6a86zy
eQYmO51A7zOt+ak5FsAf3JD14gFIIZRS8Cxwaa3DJ5pMLFm/sxR8ADAPxIbYwTBV
VEB1QRdZM0XLr5JS5fjMDKpziJtKhuZeUJBmaGmmPLZLrgdas9YxF8xPiwIDAQAB
o4ICujCCArYwHQYDVR0OBBYEFPQUf79sx4SK24NiX+0q2LECGGshMB8GA1UdIwQY
MBaAFNdrtI6T6KAFjFxyqBqHmUVTB+5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgt
OGJmYmRkNDVjYjYyLzEvOUJSX3YyekhoSXJiZzJKZjdTcllzUUlZYXlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgtOGJmYmRkNDVjYjYy
LzEvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHPBggrBgEFBQcBBwEB/wSBvzCBvDCBuQQCAAEwgbIDBAAt
D+8DBAAtgQEDBAAthCcDBAAthyMDBAAtigcDBAAtipwDBAAtitQDBAAtitcDBAAt
jEEDBAEtlYIDBAEtmHYwDAMEAFOKMwMEAFOKNAMEAFT2UgMEAFvORQMEAVvtaAME
ALB0BQMEALB0CQMEALB0FAMEALB0FwMEALB+bQMEALB+cAMEALB+czAMAwQAwQD1
AwQAwQD2AwQAwQUBAwQAwTqrAwQAwTqyAwQAwmvIMA0GCSqGSIb3DQEBCwUAA4IB
AQAV5TWFpjLiwHYrAkzn/ZIKYD+B2MakdyiVSGmY1ngMIdGQhzhEvosHQKD7A2AV
gO8v42LoyCuvscEVU32jeOCmBQZHeZVYiSwUEr3oGhT/aEyeBXJs4x8aARMxM+pd
/ksYxT3vH623rWuBWlqr6ZUiQJqjo7XFpMaONGZILEyWYl2yOne+2uwrlke+pLIW
lyLDY8Ol8ec5RT6oF1VCBcinXOHJkDzEEnXir3qGOV9zk4DbrCcNcLuc39uh1FtS
ToZ5ConPjLv0XrMQ01n5YrxmllnvOKbEB7vRQqntvWitJoIaeD+wqZb2M7YY0kY4
zJkfzH4BrY/nmOMw6szG50wA
-----END CERTIFICATE-----
Generated at Mon May 27 20:56:43 2024 by rpki-client on console-fra.rpki-client.org