Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/4ahrCsQ8pGK51V3nub5x8RW7OyY.roa
File: 4ahrCsQ8pGK51V3nub5x8RW7OyY.roa (raw, json)
Hash identifier: AT91A7TL/uzg/esDoIvPhdYBXB8TlUXXzFrWLY4hHoo=
Subject key identifier: E1:A8:6B:0A:C4:3C:A4:62:B9:D5:5D:E7:B9:BE:71:F1:15:BB:3B:26
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 018F9A5F402E4229402E325D518129EE4871
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/4ahrCsQ8pGK51V3nub5x8RW7OyY.roa
Signing time: Tue 21 May 2024 08:58:04 +0000
ROA not before: Tue 21 May 2024 08:58:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39679
IP address blocks: 79.172.214.0/24 maxlen: 24
79.172.218.0/24 maxlen: 24
79.172.220.0/24 maxlen: 24
79.172.228.0/24 maxlen: 24
87.229.14.0/24 maxlen: 24
87.229.22.0/24 maxlen: 24
87.229.23.0/24 maxlen: 24
87.229.31.0/24 maxlen: 24
87.229.34.0/24 maxlen: 24
87.229.35.0/24 maxlen: 24
87.229.48.0/24 maxlen: 24
87.229.50.0/24 maxlen: 24
87.229.70.0/24 maxlen: 24
87.229.71.0/24 maxlen: 24
87.229.79.0/24 maxlen: 24
87.229.80.0/24 maxlen: 24
87.229.81.0/24 maxlen: 24
87.229.82.0/24 maxlen: 24
87.229.92.0/24 maxlen: 24
87.229.97.0/24 maxlen: 24
87.229.100.0/24 maxlen: 24
87.229.110.0/24 maxlen: 24
95.138.194.0/23 maxlen: 23
213.181.201.0/24 maxlen: 24
217.144.57.0/24 maxlen: 24
217.144.58.0/24 maxlen: 24
217.144.59.0/24 maxlen: 24
217.144.60.0/24 maxlen: 24
217.144.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Jun 2024 09:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:9a:5f:40:2e:42:29:40:2e:32:5d:51:81:29:ee:48:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: May 21 08:58:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e1a86b0ac43ca462b9d55de7b9be71f115bb3b26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:40:d6:12:0f:ad:af:86:54:ff:a2:60:fb:38:
ba:e0:0f:d9:2e:1d:30:8e:49:ea:a3:7d:0d:0f:02:
12:6b:b4:3c:83:f2:6c:9f:8f:4e:9a:b3:55:bc:db:
cc:e1:1c:e5:0e:d8:49:86:db:d1:84:a4:98:e9:fe:
13:69:da:5e:1d:7e:2b:af:d4:10:7c:38:88:e4:05:
59:8d:15:77:5f:d5:e4:7a:f1:30:65:cd:00:2d:a1:
c8:ca:d3:29:c1:dd:a8:c6:4b:5e:54:4b:f3:8b:41:
72:e5:d9:66:f7:c6:3b:3e:22:0b:e2:56:14:c4:18:
b7:22:c7:59:db:4d:b4:26:a4:e7:03:e6:b7:66:9c:
cb:f3:23:06:83:5e:cb:9b:02:00:d4:8c:f9:bd:fc:
cf:6c:0b:31:d1:5a:bd:f6:0a:a5:73:18:e1:30:49:
bc:7d:b0:45:89:38:26:77:8b:90:a3:b6:da:db:37:
58:db:d5:3d:06:b9:33:04:db:2b:3f:3e:b6:14:44:
71:7d:79:c3:7a:31:ef:39:c3:6c:5d:8f:6b:35:5c:
7e:49:f5:2b:ea:dd:cc:a8:79:cf:fb:77:d2:50:03:
41:5c:e3:18:4c:c7:dd:51:90:6e:0e:87:03:71:63:
1e:cf:5b:20:25:c5:67:32:c5:3d:ed:31:81:02:57:
59:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:A8:6B:0A:C4:3C:A4:62:B9:D5:5D:E7:B9:BE:71:F1:15:BB:3B:26
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/4ahrCsQ8pGK51V3nub5x8RW7OyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.214.0/24
79.172.218.0/24
79.172.220.0/24
79.172.228.0/24
87.229.14.0/24
87.229.22.0/23
87.229.31.0/24
87.229.34.0/23
87.229.48.0/24
87.229.50.0/24
87.229.70.0/23
87.229.79.0-87.229.82.255
87.229.92.0/24
87.229.97.0/24
87.229.100.0/24
87.229.110.0/24
95.138.194.0/23
213.181.201.0/24
217.144.57.0-217.144.60.255
217.144.62.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:ad:28:fd:58:9f:a1:80:55:93:4e:4d:2a:88:f2:8b:f3:48:
04:79:de:37:db:9b:49:20:af:d8:88:fe:c3:59:9f:33:c2:8e:
7f:c5:5b:77:91:5d:58:d0:e8:49:54:b8:6a:6b:34:5a:10:d6:
0d:23:18:17:ad:cb:03:b0:c8:71:ee:24:70:76:5d:0f:31:63:
39:8a:ec:1c:63:bf:89:e3:b4:c4:db:2f:11:0b:45:34:7d:60:
01:a5:c4:98:de:f4:83:48:45:ff:42:90:6d:91:04:d5:a0:b1:
12:68:a9:12:bb:91:5c:7b:d0:d7:7f:73:19:30:d7:87:6f:cf:
3f:28:ed:c9:d1:c3:a7:8a:68:4f:42:1e:45:aa:9c:13:e7:7a:
df:bd:2f:7c:3b:20:3e:22:15:8a:a3:8e:1d:82:40:52:5a:aa:
cc:f7:ec:8d:2e:79:f9:c2:61:22:16:9f:81:35:d8:7c:7c:4d:
c4:5f:ac:d4:df:4c:a2:de:01:3d:57:8e:07:c0:88:30:65:04:
99:b4:ba:93:3e:a1:1b:71:78:67:1e:7f:1b:cd:d2:ae:19:ad:
e4:a2:a3:29:3f:39:2f:fa:14:8d:87:d5:f8:ca:5e:90:ad:82:
99:04:58:e4:27:00:a4:b0:25:c3:d2:81:00:0c:9e:2e:77:80:
6a:ee:8d:83
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgISAY+aX0AuQilALjJdUYEp7khxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdiNWUzN2Y2ZTNiOWJkMWNmMzY4NGI5YzAzYzAzYWQxY2E2
NDI0OTcwHhcNMjQwNTIxMDg1ODA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMWE4NmIwYWM0M2NhNDYyYjlkNTVkZTdiOWJlNzFmMTE1YmIzYjI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7UDWEg+tr4ZU/6Jg+zi64A/ZLh0w
jknqo30NDwISa7Q8g/Jsn49OmrNVvNvM4RzlDthJhtvRhKSY6f4TadpeHX4rr9QQ
fDiI5AVZjRV3X9XkevEwZc0ALaHIytMpwd2oxkteVEvzi0Fy5dlm98Y7PiIL4lYU
xBi3IsdZ2020JqTnA+a3ZpzL8yMGg17LmwIA1Iz5vfzPbAsx0Vq99gqlcxjhMEm8
fbBFiTgmd4uQo7ba2zdY29U9BrkzBNsrPz62FERxfXnDejHvOcNsXY9rNVx+SfUr
6t3MqHnP+3fSUANBXOMYTMfdUZBuDocDcWMez1sgJcVnMsU97TGBAldZlwIDAQAB
o4ICkDCCAowwHQYDVR0OBBYEFOGoawrEPKRiudVd57m+cfEVuzsmMB8GA1UdIwQY
MBaAFHteN/bjub0c82hLnAPAOtHKZCSXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUt
OTU5M2E0ODhhZmNjLzEvNGFockNzUThwR0s1MVYzbnViNXg4Ulc3T3lZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUtOTU5M2E0ODhhZmNj
LzEvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGlBggrBgEFBQcBBwEB/wSBlTCBkjCBjwQCAAEwgYgDBABP
rNYDBABPrNoDBABPrNwDBABPrOQDBABX5Q4DBAFX5RYDBABX5R8DBAFX5SIDBABX
5TADBABX5TIDBAFX5UYwDAMEAFflTwMEAFflUgMEAFflXAMEAFflYQMEAFflZAME
AFflbgMEAV+KwgMEANW1yTAMAwQA2ZA5AwQA2ZA8AwQA2ZA+MA0GCSqGSIb3DQEB
CwUAA4IBAQBsrSj9WJ+hgFWTTk0qiPKL80gEed4325tJIK/YiP7DWZ8zwo5/xVt3
kV1Y0OhJVLhqazRaENYNIxgXrcsDsMhx7iRwdl0PMWM5iuwcY7+J47TE2y8RC0U0
fWABpcSY3vSDSEX/QpBtkQTVoLESaKkSu5Fce9DXf3MZMNeHb88/KO3J0cOnimhP
Qh5FqpwT53rfvS98OyA+IhWKo44dgkBSWqrM9+yNLnn5wmEiFp+BNdh8fE3EX6zU
30yi3gE9V44HwIgwZQSZtLqTPqEbcXhnHn8bzdKuGa3koqMpPzkv+hSNh9X4yl6Q
rYKZBFjkJwCksCXD0oEADJ4ud4Bq7o2D
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:38 2024 by rpki-client on console-ams.rpki-client.org