Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/ahOJ47cZdpKq2-_BPsbeSj7Ib-E.roa
File: ahOJ47cZdpKq2-_BPsbeSj7Ib-E.roa (raw, json)
Hash identifier: Q7jwtHXRk3kLavguJSaf4WiFEz2g3a18lDvvzXA3/I8=
Subject key identifier: 6A:13:89:E3:B7:19:76:92:AA:DB:EF:C1:3E:C6:DE:4A:3E:C8:6F:E1
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 01856CB845B34032789FEE8F5161CA7057B4
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/ahOJ47cZdpKq2-_BPsbeSj7Ib-E.roa
Signing time: Sun 01 Jan 2023 09:44:53 +0000
ROA not before: Sun 01 Jan 2023 09:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25454
IP address blocks: 92.181.67.0/24 maxlen: 24
92.181.66.0/24 maxlen: 24
92.181.70.0/23 maxlen: 23
92.181.69.0/24 maxlen: 24
92.181.65.0/24 maxlen: 24
92.181.68.0/24 maxlen: 24
92.181.75.0/24 maxlen: 24
92.181.74.0/24 maxlen: 24
92.181.78.0/23 maxlen: 23
92.181.76.0/23 maxlen: 23
92.181.72.0/23 maxlen: 23
92.181.82.0/23 maxlen: 23
92.181.84.0/23 maxlen: 23
92.181.80.0/23 maxlen: 23
92.181.86.0/23 maxlen: 23
92.181.90.0/23 maxlen: 23
92.181.89.0/24 maxlen: 24
92.181.88.0/24 maxlen: 24
92.181.96.0/23 maxlen: 23
92.181.92.0/23 maxlen: 23
92.181.98.0/23 maxlen: 23
92.181.94.0/23 maxlen: 23
92.181.100.0/23 maxlen: 23
92.181.14.0/23 maxlen: 23
92.181.16.0/23 maxlen: 23
92.181.12.0/23 maxlen: 23
92.181.23.0/24 maxlen: 24
92.181.18.0/23 maxlen: 23
92.181.22.0/24 maxlen: 24
92.181.24.0/23 maxlen: 23
92.181.20.0/23 maxlen: 23
92.181.30.0/23 maxlen: 23
92.181.26.0/23 maxlen: 23
92.181.28.0/23 maxlen: 23
92.181.38.0/24 maxlen: 24
92.181.34.0/23 maxlen: 23
92.181.32.0/23 maxlen: 23
92.181.36.0/23 maxlen: 23
92.181.39.0/24 maxlen: 24
92.181.42.0/24 maxlen: 24
92.181.40.0/23 maxlen: 23
92.181.50.0/23 maxlen: 23
92.181.48.0/23 maxlen: 23
92.181.58.0/23 maxlen: 23
92.181.54.0/23 maxlen: 23
92.181.56.0/23 maxlen: 23
92.181.52.0/23 maxlen: 23
92.181.62.0/23 maxlen: 23
92.181.64.0/24 maxlen: 24
92.181.60.0/23 maxlen: 23
92.181.2.0/23 maxlen: 23
92.181.1.0/24 maxlen: 24
92.181.4.0/23 maxlen: 23
92.181.0.0/24 maxlen: 24
92.181.6.0/23 maxlen: 23
92.181.10.0/23 maxlen: 23
92.181.8.0/23 maxlen: 23
2a01:c8c0::/28 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:45:b3:40:32:78:9f:ee:8f:51:61:ca:70:57:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 09:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a1389e3b7197692aadbefc13ec6de4a3ec86fe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:1b:f9:dd:ef:3b:c3:47:e2:0c:49:b4:09:56:
4b:84:aa:a8:00:f1:f1:4f:ed:56:0f:e0:f4:7f:b3:
17:95:03:49:0d:5f:1f:d2:bd:a5:74:e6:2d:55:fc:
47:9d:2a:84:07:fc:a9:b8:2e:4c:b3:a1:2c:7b:80:
75:bd:09:dd:ef:3a:60:c5:35:ec:43:fc:34:64:6f:
6d:0a:3e:39:b5:35:16:f9:07:57:c2:ef:a5:d5:56:
cc:18:b8:64:b5:f2:b6:53:dc:2c:34:20:84:80:3a:
90:e9:17:a6:29:55:76:26:94:44:2e:99:4c:82:14:
9d:22:6c:40:d5:d5:57:13:9f:13:2b:44:0b:de:a9:
06:68:fe:76:02:28:16:b1:00:81:5c:d9:12:2a:6e:
96:51:dc:4b:01:1e:41:d3:54:a3:b7:ce:86:c4:a4:
e0:0d:ba:c6:08:7e:1f:32:35:20:da:12:40:d6:5a:
c1:b8:95:43:cf:89:6b:33:79:fb:fa:b5:af:ca:65:
aa:50:05:8b:7d:06:15:e3:ee:b2:59:f6:d9:d4:6b:
9f:03:01:7c:3b:dc:2d:72:34:a8:d0:49:d1:20:8c:
91:06:d4:b5:55:05:be:6d:46:e4:51:4a:ba:29:3f:
19:0d:a5:f1:97:33:fc:70:4d:60:75:38:74:44:b6:
61:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:13:89:E3:B7:19:76:92:AA:DB:EF:C1:3E:C6:DE:4A:3E:C8:6F:E1
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/ahOJ47cZdpKq2-_BPsbeSj7Ib-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.181.0.0-92.181.42.255
92.181.48.0-92.181.101.255
IPv6:
2a01:c8c0::/28
Signature Algorithm: sha256WithRSAEncryption
18:5b:e4:df:8e:22:6a:2d:60:00:f7:08:f7:66:85:0f:cc:d8:
65:c9:78:68:65:af:83:85:54:21:88:9f:1c:e0:0b:47:50:4b:
dc:4a:35:15:fc:02:5b:bb:e8:c6:d6:52:06:9a:49:e0:48:01:
21:49:ef:77:10:cf:c5:9d:3a:5d:22:b2:40:69:00:bc:7a:05:
8d:c9:4c:bc:84:2f:69:53:67:37:7e:85:cb:6a:2f:d3:09:d5:
09:da:09:25:10:2f:de:33:30:ef:57:2f:25:44:20:b5:89:46:
b7:40:d6:96:14:aa:90:9b:3b:46:4e:87:ed:4c:37:6b:4f:1b:
ec:9c:a9:cf:b6:33:09:c3:88:88:dc:4e:b4:f6:10:c6:17:28:
4c:2a:23:1a:18:36:44:3a:48:0b:a4:4f:73:b9:92:fb:28:e7:
e1:66:98:4d:82:47:0b:7e:65:a6:8b:3b:60:e7:1e:e5:1d:be:
d6:0e:c6:0d:45:5f:4f:f3:da:95:f0:57:97:23:12:13:28:4f:
c2:c8:ce:4c:b7:c3:11:92:2f:98:28:79:d9:c6:84:f0:5f:e2:
aa:d4:c6:ad:5d:2a:5f:bb:21:18:16:88:09:82:54:39:03:c3:
e1:5b:ef:20:a3:44:6b:2d:e9:2b:81:6c:c7:8a:ac:61:aa:f7:
e5:88:8a:db
-----BEGIN CERTIFICATE-----
MIIFITCCBAmgAwIBAgISAYVsuEWzQDJ4n+6PUWHKcFe0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhZjA5YmEzM2I1YWU1ODFiMGQyOTMyMzI0OTMxNGY3NmFh
MTA1MTEwHhcNMjMwMTAxMDk0NDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YTEzODllM2I3MTk3NjkyYWFkYmVmYzEzZWM2ZGU0YTNlYzg2ZmUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlBv53e87w0fiDEm0CVZLhKqoAPHx
T+1WD+D0f7MXlQNJDV8f0r2ldOYtVfxHnSqEB/ypuC5Ms6Ese4B1vQnd7zpgxTXs
Q/w0ZG9tCj45tTUW+QdXwu+l1VbMGLhktfK2U9wsNCCEgDqQ6RemKVV2JpRELplM
ghSdImxA1dVXE58TK0QL3qkGaP52AigWsQCBXNkSKm6WUdxLAR5B01Sjt86GxKTg
DbrGCH4fMjUg2hJA1lrBuJVDz4lrM3n7+rWvymWqUAWLfQYV4+6yWfbZ1GufAwF8
O9wtcjSo0EnRIIyRBtS1VQW+bUbkUUq6KT8ZDaXxlzP8cE1gdTh0RLZhdwIDAQAB
o4ICLTCCAikwHQYDVR0OBBYEFGoTieO3GXaSqtvvwT7G3ko+yG/hMB8GA1UdIwQY
MBaAFDrwm6M7WuWBsNKTIySTFPdqoQURMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3ZDYm96dGE1WUd3MHBNakpKTVU5MnFoQlJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8zM2Q1ZDEtYzQ1MC00MTNiLWFmZTQt
NDU5MzVmNTA2YTEyLzEvYWhPSjQ3Y1pkcEtxMi1fQlBzYmVTajdJYi1FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yi8zM2Q1ZDEtYzQ1MC00MTNiLWFmZTQtNDU5MzVmNTA2YTEy
LzEvT3ZDYm96dGE1WUd3MHBNakpKTVU5MnFoQlJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAhBAIAATAbMAsDAwBctQME
AFy1KjAMAwQEXLUwAwQBXLVkMA0EAgACMAcDBQQqAcjAMA0GCSqGSIb3DQEBCwUA
A4IBAQAYW+TfjiJqLWAA9wj3ZoUPzNhlyXhoZa+DhVQhiJ8c4AtHUEvcSjUV/AJb
u+jG1lIGmkngSAEhSe93EM/FnTpdIrJAaQC8egWNyUy8hC9pU2c3foXLai/TCdUJ
2gklEC/eMzDvVy8lRCC1iUa3QNaWFKqQmztGToftTDdrTxvsnKnPtjMJw4iI3E60
9hDGFyhMKiMaGDZEOkgLpE9zuZL7KOfhZphNgkcLfmWmiztg5x7lHb7WDsYNRV9P
89qV8FeXIxITKE/CyM5Mt8MRki+YKHnZxoTwX+Kq1MatXSpfuyEYFogJglQ5A8Ph
W+8go0RrLekrgWzHiqxhqvfliIrb
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:51 2024 by rpki-client on console-fra.rpki-client.org