Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/dwU042-fp4mL9c8U-T-5EmEdRQw.roa
File: dwU042-fp4mL9c8U-T-5EmEdRQw.roa (raw, json)
Hash identifier: v4wZhSdNkPrhUcws1qkwI+8Eqs0OxmzS/IJLgMmVUkY=
Subject key identifier: 77:05:34:E3:6F:9F:A7:89:8B:F5:CF:14:F9:3F:B9:12:61:1D:45:0C
Certificate issuer: /CN=297ae7592ca52491dc166a30fe1477d712bd465d
Certificate serial: 018CC492D680DFCEFEFF17B5733DC4B19888
Authority key identifier: 29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/dwU042-fp4mL9c8U-T-5EmEdRQw.roa
Signing time: Mon 01 Jan 2024 10:30:06 +0000
ROA not before: Mon 01 Jan 2024 10:30:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49531
IP address blocks: 91.214.204.0/22 maxlen: 22
185.42.108.0/22 maxlen: 22
94.159.96.0/20 maxlen: 20
94.159.92.0/24 maxlen: 24
94.159.108.0/22 maxlen: 22
94.159.107.0/24 maxlen: 24
94.159.112.0/21 maxlen: 21
94.159.124.0/22 maxlen: 22
94.159.120.0/22 maxlen: 22
93.92.32.0/24 maxlen: 24
93.92.32.0/21 maxlen: 21
93.92.36.0/23 maxlen: 23
93.92.33.0/24 maxlen: 24
93.92.34.0/23 maxlen: 23
93.92.38.0/23 maxlen: 23
94.159.42.0/23 maxlen: 23
94.159.40.0/23 maxlen: 23
94.159.44.0/23 maxlen: 23
94.159.38.0/23 maxlen: 23
94.159.46.0/23 maxlen: 23
94.159.50.0/23 maxlen: 23
94.159.48.0/23 maxlen: 23
94.159.52.0/23 maxlen: 23
94.159.56.0/23 maxlen: 23
94.159.54.0/23 maxlen: 23
94.159.58.0/23 maxlen: 23
94.159.60.0/23 maxlen: 23
93.186.48.0/20 maxlen: 20
93.186.50.0/23 maxlen: 23
94.159.64.0/23 maxlen: 23
93.186.48.0/23 maxlen: 23
94.159.62.0/23 maxlen: 23
94.159.64.0/19 maxlen: 19
94.159.70.0/23 maxlen: 23
94.159.68.0/23 maxlen: 23
93.186.56.0/23 maxlen: 23
93.186.58.0/23 maxlen: 23
93.186.54.0/23 maxlen: 23
93.186.52.0/23 maxlen: 23
94.159.66.0/23 maxlen: 23
93.186.60.0/23 maxlen: 23
94.159.74.0/23 maxlen: 23
94.159.72.0/23 maxlen: 23
94.159.78.0/23 maxlen: 23
93.186.62.0/23 maxlen: 23
94.159.76.0/23 maxlen: 23
94.159.84.0/23 maxlen: 23
94.159.85.0/24 maxlen: 24
94.159.82.0/23 maxlen: 23
94.159.80.0/23 maxlen: 23
94.159.88.0/22 maxlen: 22
94.159.86.0/23 maxlen: 23
94.159.88.0/21 maxlen: 21
94.159.0.0/23 maxlen: 23
94.159.0.0/18 maxlen: 18
94.159.4.0/23 maxlen: 23
94.159.2.0/23 maxlen: 23
94.159.8.0/23 maxlen: 23
94.159.6.0/23 maxlen: 23
94.159.10.0/23 maxlen: 23
94.159.14.0/23 maxlen: 23
94.159.16.0/23 maxlen: 23
94.159.12.0/23 maxlen: 23
94.159.18.0/23 maxlen: 23
94.159.22.0/23 maxlen: 23
94.159.20.0/23 maxlen: 23
94.159.24.0/23 maxlen: 23
94.159.28.0/23 maxlen: 23
94.159.30.0/23 maxlen: 23
94.159.26.0/23 maxlen: 23
94.159.32.0/23 maxlen: 23
94.159.36.0/23 maxlen: 23
94.159.34.0/23 maxlen: 23
2a04:8f00::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 19 Apr 2024 17:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:d6:80:df:ce:fe:ff:17:b5:73:3d:c4:b1:98:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297ae7592ca52491dc166a30fe1477d712bd465d
Validity
Not Before: Jan 1 10:30:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=770534e36f9fa7898bf5cf14f93fb912611d450c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:25:16:e3:69:ec:94:23:43:b6:be:1f:be:57:
6e:56:1d:ec:25:0f:55:92:c1:20:ac:3f:06:9b:2b:
71:1e:a0:0a:7a:64:8f:83:27:14:13:3a:94:da:6e:
71:4f:3d:b6:d8:55:8b:23:c4:67:72:af:d3:f7:46:
06:74:6a:d6:a3:71:0b:86:45:2b:dd:be:0e:77:be:
a8:13:22:1e:e5:12:58:c1:fe:ac:25:1e:71:e9:85:
f8:84:0b:1c:72:a6:8d:f5:a2:b6:24:cc:bc:72:a8:
71:54:59:85:06:44:cf:d1:c6:c8:38:15:7c:8c:24:
0a:28:a8:5c:0d:9c:c0:a6:b3:d5:94:b2:d3:5f:df:
39:eb:b6:46:6d:f5:55:94:36:2b:8f:4d:d1:1f:fb:
a0:cb:c9:4e:9d:80:a6:82:92:01:0f:87:39:c4:c7:
dc:72:c8:22:94:7c:c9:45:8f:35:dc:af:76:f3:01:
6b:47:1d:d3:e7:4a:25:6e:72:a5:6c:e2:d4:3e:35:
df:1c:bc:64:a7:4f:91:a8:0a:54:ec:6d:40:fa:ab:
c8:e1:02:e7:0d:e9:86:62:85:c0:f2:33:be:c6:60:
17:67:58:57:8f:d5:92:31:dd:6e:ce:e5:6b:da:09:
db:0b:7c:a0:93:d3:db:db:ba:57:ee:ed:62:43:90:
a4:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:05:34:E3:6F:9F:A7:89:8B:F5:CF:14:F9:3F:B9:12:61:1D:45:0C
X509v3 Authority Key Identifier:
keyid:29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/dwU042-fp4mL9c8U-T-5EmEdRQw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/KXrnWSylJJHcFmow_hR31xK9Rl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.214.204.0/22
93.92.32.0/21
93.186.48.0/20
94.159.0.0/17
185.42.108.0/22
IPv6:
2a04:8f00::/29
Signature Algorithm: sha256WithRSAEncryption
aa:a2:7d:d6:f1:09:e1:eb:72:b8:68:84:2e:19:da:8a:9c:89:
6f:98:98:7e:41:a1:dd:ba:2c:e0:a3:70:da:21:88:2d:2d:38:
e2:88:da:41:ae:f4:40:33:58:c9:73:a5:16:d7:8e:f9:6f:02:
6a:fe:82:26:0a:c5:98:db:62:75:93:67:41:c1:a7:6a:15:e9:
84:45:a6:d6:11:72:dd:15:d9:14:64:db:54:9e:23:ff:71:79:
bb:8b:49:af:81:a2:6a:70:f1:0d:db:c0:e4:51:df:02:04:92:
dd:42:20:92:c8:0c:c3:55:f7:99:f2:5b:2e:83:f3:1b:0c:a8:
1f:52:6b:ee:8f:83:39:0c:f8:59:c5:0a:92:81:97:05:ba:b8:
49:91:3f:a0:bc:88:f4:23:fd:38:ec:47:a5:02:2a:ab:e1:18:
11:49:c3:aa:45:90:96:0b:36:f6:f7:82:8b:95:63:17:2f:a6:
18:04:42:d1:8a:98:bc:82:22:9f:91:83:d5:63:07:a5:c0:70:
20:96:55:2f:bb:73:4f:a0:17:1b:6e:30:84:cc:00:86:4f:38:
ae:c9:27:d8:17:af:c9:22:ad:3b:d6:be:7c:b6:14:91:05:80:
0a:7e:d9:44:66:36:bb:0c:43:9a:9f:8f:ca:a7:dc:45:ef:e5:
42:bb:5e:18
-----BEGIN CERTIFICATE-----
MIIFJDCCBAygAwIBAgISAYzEktaA387+/xe1cz3EsZiIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5N2FlNzU5MmNhNTI0OTFkYzE2NmEzMGZlMTQ3N2Q3MTJi
ZDQ2NWQwHhcNMjQwMTAxMTAzMDA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NzA1MzRlMzZmOWZhNzg5OGJmNWNmMTRmOTNmYjkxMjYxMWQ0NTBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0iUW42nslCNDtr4fvlduVh3sJQ9V
ksEgrD8GmytxHqAKemSPgycUEzqU2m5xTz222FWLI8Rncq/T90YGdGrWo3ELhkUr
3b4Od76oEyIe5RJYwf6sJR5x6YX4hAsccqaN9aK2JMy8cqhxVFmFBkTP0cbIOBV8
jCQKKKhcDZzAprPVlLLTX98567ZGbfVVlDYrj03RH/ugy8lOnYCmgpIBD4c5xMfc
csgilHzJRY813K928wFrRx3T50olbnKlbOLUPjXfHLxkp0+RqApU7G1A+qvI4QLn
DemGYoXA8jO+xmAXZ1hXj9WSMd1uzuVr2gnbC3ygk9Pb27pX7u1iQ5CkoQIDAQAB
o4ICMDCCAiwwHQYDVR0OBBYEFHcFNONvn6eJi/XPFPk/uRJhHUUMMB8GA1UdIwQY
MBaAFCl651kspSSR3BZqMP4Ud9cSvUZdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1hybldTeWxKSkhjRm1vd19oUjMxeEs5UmwwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS80OGUxZTgtMzI4ZC00ZjgyLTkzOTgt
MzkxMGE1OWExMTIxLzEvZHdVMDQyLWZwNG1MOWM4VS1ULTVFbUVkUlF3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS80OGUxZTgtMzI4ZC00ZjgyLTkzOTgtMzkxMGE1OWExMTIx
LzEvS1hybldTeWxKSkhjRm1vd19oUjMxeEs5UmwwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQCW9bMAwQD
XVwgAwQEXbowAwQHXp8AAwQCuSpsMA0EAgACMAcDBQMqBI8AMA0GCSqGSIb3DQEB
CwUAA4IBAQCqon3W8Qnh63K4aIQuGdqKnIlvmJh+QaHduizgo3DaIYgtLTjiiNpB
rvRAM1jJc6UW1475bwJq/oImCsWY22J1k2dBwadqFemERabWEXLdFdkUZNtUniP/
cXm7i0mvgaJqcPEN28DkUd8CBJLdQiCSyAzDVfeZ8lsug/MbDKgfUmvuj4M5DPhZ
xQqSgZcFurhJkT+gvIj0I/047EelAiqr4RgRScOqRZCWCzb294KLlWMXL6YYBELR
ipi8giKfkYPVYwelwHAgllUvu3NPoBcbbjCEzACGTziuySfYF6/JIq071r58thSR
BYAKftlEZja7DEOan4/Kp9xF7+VCu14Y
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:25 2024 by rpki-client on console-fra.rpki-client.org