Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/GIOe5RrQ-RvjreFJFBviXaGDNzo.roa
File: GIOe5RrQ-RvjreFJFBviXaGDNzo.roa (raw, json)
Hash identifier: /foCKMLveEGubWAasi8mpiOtqwcJ2f4LYDdF5auVQd4=
Subject key identifier: 18:83:9E:E5:1A:D0:F9:1B:E3:AD:E1:49:14:1B:E2:5D:A1:83:37:3A
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 018ECC54187BC6AF975B522790CDF01782B6
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/GIOe5RrQ-RvjreFJFBviXaGDNzo.roa
Signing time: Thu 11 Apr 2024 08:44:07 +0000
ROA not before: Thu 11 Apr 2024 08:44:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12668
IP address blocks: 5.141.234.0/23 maxlen: 23
31.192.171.0/24 maxlen: 24
31.192.180.0/24 maxlen: 24
46.229.96.0/20 maxlen: 20
90.157.5.0/24 maxlen: 24
90.157.16.0/24 maxlen: 24
90.157.30.0/24 maxlen: 24
90.157.58.0/24 maxlen: 24
90.157.68.0/23 maxlen: 23
90.157.80.0/23 maxlen: 23
90.157.109.0/24 maxlen: 24
90.157.115.0/24 maxlen: 24
92.54.69.0/24 maxlen: 24
92.54.90.0/24 maxlen: 24
92.54.117.0/24 maxlen: 24
94.31.134.0/24 maxlen: 24
94.31.135.0/24 maxlen: 24
94.31.136.0/24 maxlen: 24
94.31.147.0/24 maxlen: 24
94.31.158.0/24 maxlen: 24
94.31.159.0/24 maxlen: 24
94.31.176.0/24 maxlen: 24
94.31.193.0/24 maxlen: 24
94.31.194.0/24 maxlen: 24
94.31.195.0/24 maxlen: 24
94.31.196.0/24 maxlen: 24
94.31.202.0/24 maxlen: 24
94.31.206.0/23 maxlen: 23
94.31.207.0/24 maxlen: 24
94.31.210.0/24 maxlen: 24
94.31.221.0/24 maxlen: 24
94.31.229.0/24 maxlen: 24
94.31.240.0/24 maxlen: 24
94.31.241.0/24 maxlen: 24
94.31.243.0/24 maxlen: 24
94.31.246.0/23 maxlen: 23
94.31.250.0/24 maxlen: 24
94.31.253.0/24 maxlen: 24
94.31.255.0/24 maxlen: 24
188.17.116.0/23 maxlen: 23
188.18.112.0/24 maxlen: 24
188.18.113.0/24 maxlen: 24
188.18.116.0/24 maxlen: 24
188.73.139.0/24 maxlen: 24
188.73.141.0/24 maxlen: 24
188.73.144.0/23 maxlen: 23
188.73.144.0/24 maxlen: 24
188.73.147.0/24 maxlen: 24
188.73.151.0/24 maxlen: 24
188.73.154.0/24 maxlen: 24
188.73.158.0/24 maxlen: 24
188.73.168.0/24 maxlen: 24
188.73.170.0/23 maxlen: 23
188.73.183.0/24 maxlen: 24
213.142.34.0/24 maxlen: 24
213.142.40.0/24 maxlen: 24
213.142.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Apr 2024 00:59:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:cc:54:18:7b:c6:af:97:5b:52:27:90:cd:f0:17:82:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Apr 11 08:44:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=18839ee51ad0f91be3ade149141be25da183373a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:c0:e8:22:ef:1e:31:9f:c1:88:68:d9:99:ea:
32:52:97:24:50:fc:ff:75:07:0c:27:7e:37:19:1e:
a3:36:fb:56:b1:de:23:5d:23:04:91:0a:ac:95:df:
3a:c6:96:3d:91:1d:b1:bd:33:d5:58:86:7d:e4:f9:
46:01:e6:c8:af:2d:ec:f5:05:90:d3:49:6b:b5:f5:
16:63:4c:50:f0:ce:b7:e2:b9:68:2f:6b:9f:1e:8b:
0b:ed:00:20:50:b1:8b:fc:02:10:81:3b:67:f7:82:
a1:bf:5c:4d:d0:c5:b4:98:c5:d1:c8:0d:dd:e0:58:
78:77:bc:56:c5:1d:73:b4:0a:f1:97:44:f3:b9:56:
20:2d:7a:01:7e:87:ff:9b:0f:13:70:2e:e4:31:ee:
e6:ae:45:4f:5c:9c:c7:9e:6f:d2:dd:46:8f:7d:8e:
03:3f:19:23:6f:09:a8:63:0e:60:5d:41:df:c0:5c:
5b:a3:3d:45:64:eb:2b:08:47:16:2e:4b:a7:9a:ab:
f2:fa:65:2c:65:6e:5e:1d:05:e8:8d:49:c0:65:72:
2d:9c:12:90:aa:e3:5f:26:4c:1a:49:1d:1f:dc:fc:
9b:e5:2e:f6:e0:8c:c2:93:0e:4c:d5:bb:f4:49:b4:
90:16:e2:d0:c2:c5:a2:c1:c0:06:36:fd:7a:31:e4:
29:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:83:9E:E5:1A:D0:F9:1B:E3:AD:E1:49:14:1B:E2:5D:A1:83:37:3A
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/GIOe5RrQ-RvjreFJFBviXaGDNzo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.141.234.0/23
31.192.171.0/24
31.192.180.0/24
46.229.96.0/20
90.157.5.0/24
90.157.16.0/24
90.157.30.0/24
90.157.58.0/24
90.157.68.0/23
90.157.80.0/23
90.157.109.0/24
90.157.115.0/24
92.54.69.0/24
92.54.90.0/24
92.54.117.0/24
94.31.134.0-94.31.136.255
94.31.147.0/24
94.31.158.0/23
94.31.176.0/24
94.31.193.0-94.31.196.255
94.31.202.0/24
94.31.206.0/23
94.31.210.0/24
94.31.221.0/24
94.31.229.0/24
94.31.240.0/23
94.31.243.0/24
94.31.246.0/23
94.31.250.0/24
94.31.253.0/24
94.31.255.0/24
188.17.116.0/23
188.18.112.0/23
188.18.116.0/24
188.73.139.0/24
188.73.141.0/24
188.73.144.0/23
188.73.147.0/24
188.73.151.0/24
188.73.154.0/24
188.73.158.0/24
188.73.168.0/24
188.73.170.0/23
188.73.183.0/24
213.142.34.0/24
213.142.40.0/24
213.142.57.0/24
Signature Algorithm: sha256WithRSAEncryption
33:4b:f2:4e:75:15:0c:65:ac:3e:f1:fa:fe:4f:48:0b:ca:89:
15:86:7a:84:49:23:75:70:ed:10:2c:6a:7d:72:85:a0:4b:cf:
e9:69:21:23:20:13:ee:45:3e:f7:bc:c9:d8:7c:7a:cb:04:38:
88:5c:59:c8:46:7f:97:0f:89:cd:7f:25:69:92:a2:92:3f:f5:
39:fc:2d:d7:57:fa:46:08:a1:23:b2:fb:0e:b1:60:83:e2:58:
bb:2b:dd:71:84:e4:7d:b8:cd:dd:24:4c:6d:e0:e7:90:47:f9:
27:9e:ec:f2:6c:30:60:b9:bf:22:05:c9:d9:1e:6e:1a:c2:15:
9f:8e:c7:ed:0f:63:fa:9c:79:e8:cb:40:0a:e6:16:4b:ff:d9:
c1:44:b9:c3:53:ed:a9:b4:37:66:c9:43:ea:d7:d1:a6:13:06:
96:f3:2c:8a:35:7b:23:51:48:a1:44:3b:13:dd:0b:57:b1:c4:
8c:ec:a4:96:7e:f3:1f:a2:3b:81:53:1a:eb:1f:bd:7d:da:50:
fb:7e:eb:4f:9f:66:5d:c3:97:3e:da:77:f8:98:e5:17:d6:f0:
ee:af:69:fb:fa:30:61:6e:61:03:28:9d:0f:18:da:d3:b9:ad:
1a:e3:db:ef:b6:ee:ea:76:74:25:fc:92:c6:a3:48:74:d2:47:
fc:c0:83:8b
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgISAY7MVBh7xq+XW1InkM3wF4K2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlZTUzMWI5YWMyOTkwZDY5YThhNWMzMDIzZTcyZTZkODQx
ZTZjMDkwHhcNMjQwNDExMDg0NDA3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxODgzOWVlNTFhZDBmOTFiZTNhZGUxNDkxNDFiZTI1ZGExODMzNzNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgsDoIu8eMZ/BiGjZmeoyUpckUPz/
dQcMJ343GR6jNvtWsd4jXSMEkQqsld86xpY9kR2xvTPVWIZ95PlGAebIry3s9QWQ
00lrtfUWY0xQ8M634rloL2ufHosL7QAgULGL/AIQgTtn94Khv1xN0MW0mMXRyA3d
4Fh4d7xWxR1ztArxl0TzuVYgLXoBfof/mw8TcC7kMe7mrkVPXJzHnm/S3UaPfY4D
PxkjbwmoYw5gXUHfwFxboz1FZOsrCEcWLkunmqvy+mUsZW5eHQXojUnAZXItnBKQ
quNfJkwaSR0f3Pyb5S724IzCkw5M1bv0SbSQFuLQwsWiwcAGNv16MeQpHQIDAQAB
o4IDNzCCAzMwHQYDVR0OBBYEFBiDnuUa0Pkb463hSRQb4l2hgzc6MB8GA1UdIwQY
MBaAFF7lMbmsKZDWmopcMCPnLm2EHmwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQt
NWE4NmMyNzU3YzFlLzEvR0lPZTVSclEtUnZqcmVGSkZCdmlYYUdETnpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQtNWE4NmMyNzU3YzFl
LzEvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBSwYIKwYBBQUHAQcBAf8EggE6MIIBNjCCATIEAgABMIIB
KgMEAQWN6gMEAB/AqwMEAB/AtAMEBC7lYAMEAFqdBQMEAFqdEAMEAFqdHgMEAFqd
OgMEAVqdRAMEAVqdUAMEAFqdbQMEAFqdcwMEAFw2RQMEAFw2WgMEAFw2dTAMAwQB
Xh+GAwQAXh+IAwQAXh+TAwQBXh+eAwQAXh+wMAwDBABeH8EDBABeH8QDBABeH8oD
BAFeH84DBABeH9IDBABeH90DBABeH+UDBAFeH/ADBABeH/MDBAFeH/YDBABeH/oD
BABeH/0DBABeH/8DBAG8EXQDBAG8EnADBAC8EnQDBAC8SYsDBAC8SY0DBAG8SZAD
BAC8SZMDBAC8SZcDBAC8SZoDBAC8SZ4DBAC8SagDBAG8SaoDBAC8SbcDBADVjiID
BADVjigDBADVjjkwDQYJKoZIhvcNAQELBQADggEBADNL8k51FQxlrD7x+v5PSAvK
iRWGeoRJI3Vw7RAsan1yhaBLz+lpISMgE+5FPve8ydh8essEOIhcWchGf5cPic1/
JWmSopI/9Tn8LddX+kYIoSOy+w6xYIPiWLsr3XGE5H24zd0kTG3g55BH+See7PJs
MGC5vyIFydkebhrCFZ+Ox+0PY/qceejLQArmFkv/2cFEucNT7am0N2bJQ+rX0aYT
BpbzLIo1eyNRSKFEOxPdC1exxIzspJZ+8x+iO4FTGusfvX3aUPt+60+fZl3Dlz7a
d/iY5RfW8O6vafv6MGFuYQMonQ8Y2tO5rRrj2++27up2dCX8ksajSHTSR/zAg4s=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:55 2024 by rpki-client on console-fra.rpki-client.org