Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/vQ8hKrk9jTELIBZhXFC9Jj896jo.roa
File: vQ8hKrk9jTELIBZhXFC9Jj896jo.roa (raw, json)
Hash identifier: cWuT9sHeX2TVvAZO9wlVgC22Isyw980sUr1kLNHKfZM=
Subject key identifier: BD:0F:21:2A:B9:3D:8D:31:0B:20:16:61:5C:50:BD:26:3F:3D:EA:3A
Certificate issuer: /CN=7d149f62447853689c12fb288afeb6b681cfebc1
Certificate serial: 0185BE2FD9552210AB391707684338CCD43B
Authority key identifier: 7D:14:9F:62:44:78:53:68:9C:12:FB:28:8A:FE:B6:B6:81:CF:EB:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fRSfYkR4U2icEvsoiv62toHP68E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/vQ8hKrk9jTELIBZhXFC9Jj896jo.roa
Signing time: Tue 17 Jan 2023 05:24:44 +0000
ROA not before: Tue 17 Jan 2023 05:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6697
IP address blocks: 178.172.236.0/24 maxlen: 24
178.172.235.0/24 maxlen: 24
178.172.244.0/24 maxlen: 24
178.172.250.0/24 maxlen: 24
178.172.254.0/24 maxlen: 24
178.172.160.0/22 maxlen: 22
178.172.172.0/23 maxlen: 23
178.172.201.0/24 maxlen: 24
93.125.71.0/24 maxlen: 24
91.149.189.0/24 maxlen: 24
93.125.99.0/24 maxlen: 24
178.172.148.0/24 maxlen: 24
93.125.31.0/24 maxlen: 24
93.125.30.0/23 maxlen: 23
93.125.38.0/24 maxlen: 24
93.125.48.0/24 maxlen: 24
91.149.157.0/24 maxlen: 24
91.149.158.0/24 maxlen: 24
93.125.53.0/24 maxlen: 24
91.149.166.0/24 maxlen: 24
2a04:2e80:7::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:be:2f:d9:55:22:10:ab:39:17:07:68:43:38:cc:d4:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d149f62447853689c12fb288afeb6b681cfebc1
Validity
Not Before: Jan 17 05:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd0f212ab93d8d310b2016615c50bd263f3dea3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:ba:36:f9:9e:89:c9:f7:c8:43:2f:2d:9d:4d:
64:89:96:1b:cc:5c:c7:96:90:2f:13:1c:66:a3:9e:
a2:e4:ac:b1:fe:e1:6b:c3:38:ef:cb:02:b2:ce:81:
20:ed:9c:26:38:d8:56:99:27:9c:ba:5e:d3:3a:de:
e7:6c:57:89:36:d4:42:ab:51:59:8a:d8:97:d6:ba:
ba:ab:7a:33:ca:92:04:08:a8:8d:26:f9:f6:c0:89:
5f:e3:24:00:e6:96:3a:cb:f5:e3:57:d5:6c:47:23:
ec:e9:15:59:17:e1:ef:a3:42:e3:5e:33:7f:71:41:
a2:28:1a:6c:01:3c:94:3c:40:6e:0e:4f:5a:a0:03:
b2:79:17:c7:22:00:a4:b6:73:ae:d1:0c:c0:d0:0e:
29:58:d0:68:37:9b:ed:9f:a0:3e:83:c2:55:4f:ad:
45:e7:2a:4b:3d:db:2b:d2:83:9e:34:4f:23:01:17:
9f:1e:77:ed:8c:9a:74:6a:32:92:f5:a4:7d:c6:03:
8f:32:56:91:2d:0f:9d:48:7a:e4:2a:66:21:92:95:
e5:ad:17:8b:1d:d3:81:dd:7b:e2:90:8e:7d:e3:bc:
db:b2:c4:05:6d:b8:a8:4d:ba:e4:db:36:d9:ab:11:
5a:8d:14:9e:13:d5:58:6a:aa:99:7b:7f:a2:3f:be:
71:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:0F:21:2A:B9:3D:8D:31:0B:20:16:61:5C:50:BD:26:3F:3D:EA:3A
X509v3 Authority Key Identifier:
keyid:7D:14:9F:62:44:78:53:68:9C:12:FB:28:8A:FE:B6:B6:81:CF:EB:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fRSfYkR4U2icEvsoiv62toHP68E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/vQ8hKrk9jTELIBZhXFC9Jj896jo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/fRSfYkR4U2icEvsoiv62toHP68E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.149.157.0-91.149.158.255
91.149.166.0/24
91.149.189.0/24
93.125.30.0/23
93.125.38.0/24
93.125.48.0/24
93.125.53.0/24
93.125.71.0/24
93.125.99.0/24
178.172.148.0/24
178.172.160.0/22
178.172.172.0/23
178.172.201.0/24
178.172.235.0-178.172.236.255
178.172.244.0/24
178.172.250.0/24
178.172.254.0/24
IPv6:
2a04:2e80:7::/48
Signature Algorithm: sha256WithRSAEncryption
28:95:4e:2c:33:31:2c:a2:3f:d8:b1:99:4c:53:69:a8:b6:bc:
2f:34:50:c9:af:e4:6d:8b:4c:38:b3:9a:e9:1a:a5:bc:09:e0:
c1:90:98:69:95:a6:d6:33:66:25:f7:27:22:ec:e6:d2:d2:2b:
cf:d8:ed:20:40:8e:5e:16:20:70:7b:a8:9b:d2:33:29:2f:72:
a2:ad:2c:c5:70:08:95:b2:5e:6b:2c:4a:5a:f4:47:e8:46:a5:
da:f4:44:2d:4c:1f:a7:be:44:30:85:4b:a8:08:1b:91:85:6c:
06:e1:c9:19:e8:4a:5b:b4:54:01:bb:f6:f6:c7:1d:c3:5d:56:
49:12:96:de:41:4a:d9:98:c4:dd:cf:d1:ee:71:0a:b7:da:b4:
0c:07:dc:63:21:c3:2a:2f:51:8c:de:e4:2f:10:4f:73:b9:f4:
a9:be:29:ba:c9:39:9b:a7:61:6b:87:61:7f:92:f3:71:e3:0b:
ec:d3:12:7e:51:61:cd:a3:b3:4a:4e:6c:67:e7:cc:1b:f0:73:
c2:2b:14:4f:e6:5c:f7:16:a5:3f:22:83:d2:4a:91:60:72:cb:
9d:c6:13:ad:bf:42:94:57:ea:18:7a:a7:0c:dc:2d:19:38:5e:
d1:49:d2:49:c7:7a:61:5e:e9:a0:b3:52:4a:ed:4b:af:07:cb:
9a:e1:11:26
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgISAYW+L9lVIhCrORcHaEM4zNQ7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkMTQ5ZjYyNDQ3ODUzNjg5YzEyZmIyODhhZmViNmI2ODFj
ZmViYzEwHhcNMjMwMTE3MDUyNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZDBmMjEyYWI5M2Q4ZDMxMGIyMDE2NjE1YzUwYmQyNjNmM2RlYTNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhbo2+Z6JyffIQy8tnU1kiZYbzFzH
lpAvExxmo56i5Kyx/uFrwzjvywKyzoEg7ZwmONhWmSecul7TOt7nbFeJNtRCq1FZ
itiX1rq6q3ozypIECKiNJvn2wIlf4yQA5pY6y/XjV9VsRyPs6RVZF+Hvo0LjXjN/
cUGiKBpsATyUPEBuDk9aoAOyeRfHIgCktnOu0QzA0A4pWNBoN5vtn6A+g8JVT61F
5ypLPdsr0oOeNE8jARefHnftjJp0ajKS9aR9xgOPMlaRLQ+dSHrkKmYhkpXlrReL
HdOB3XvikI5947zbssQFbbioTbrk2zbZqxFajRSeE9VYaqqZe3+iP75xZwIDAQAB
o4ICjTCCAokwHQYDVR0OBBYEFL0PISq5PY0xCyAWYVxQvSY/Peo6MB8GA1UdIwQY
MBaAFH0Un2JEeFNonBL7KIr+traBz+vBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlJTZllrUjRVMmljRXZzb2l2NjJ0b0hQNjhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC82YTU0YmYtZjAwZi00NjdhLWJmNTct
YWFiMGU0MTRjYzYzLzEvdlE4aEtyazlqVEVMSUJaaFhGQzlKajg5NmpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC82YTU0YmYtZjAwZi00NjdhLWJmNTctYWFiMGU0MTRjYzYz
LzEvZlJTZllrUjRVMmljRXZzb2l2NjJ0b0hQNjhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGiBggrBgEFBQcBBwEB/wSBkjCBjzB8BAIAATB2MAwDBABb
lZ0DBABblZ4DBABblaYDBABblb0DBAFdfR4DBABdfSYDBABdfTADBABdfTUDBABd
fUcDBABdfWMDBACyrJQDBAKyrKADBAGyrKwDBACyrMkwDAMEALKs6wMEALKs7AME
ALKs9AMEALKs+gMEALKs/jAPBAIAAjAJAwcAKgQugAAHMA0GCSqGSIb3DQEBCwUA
A4IBAQAolU4sMzEsoj/YsZlMU2motrwvNFDJr+Rti0w4s5rpGqW8CeDBkJhplabW
M2Yl9yci7ObS0ivP2O0gQI5eFiBwe6ib0jMpL3KirSzFcAiVsl5rLEpa9EfoRqXa
9EQtTB+nvkQwhUuoCBuRhWwG4ckZ6EpbtFQBu/b2xx3DXVZJEpbeQUrZmMTdz9Hu
cQq32rQMB9xjIcMqL1GM3uQvEE9zufSpvim6yTmbp2Frh2F/kvNx4wvs0xJ+UWHN
o7NKTmxn58wb8HPCKxRP5lz3FqU/IoPSSpFgcsudxhOtv0KUV+oYeqcM3C0ZOF7R
SdJJx3phXumgs1JK7UuvB8ua4REm
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:22 2024 by rpki-client on console-fra.rpki-client.org