Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/6pMOEA_rtQnQQXuzBFYEpplwNkE.roa
File: 6pMOEA_rtQnQQXuzBFYEpplwNkE.roa (raw, json)
Hash identifier: B768S5FlK/SZlVk7a1jHBZdbeonVVuJvl2F1jkVkyS0=
Subject key identifier: EA:93:0E:10:0F:EB:B5:09:D0:41:7B:B3:04:56:04:A6:99:70:36:41
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 019146A2A043C675D67F3B95FD3666D0B1F5
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/6pMOEA_rtQnQQXuzBFYEpplwNkE.roa
Signing time: Mon 12 Aug 2024 12:49:08 +0000
ROA not before: Mon 12 Aug 2024 12:49:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57634
IP address blocks: 31.13.192.0/24 maxlen: 24
31.13.193.0/24 maxlen: 24
31.13.199.0/24 maxlen: 24
31.13.209.0/24 maxlen: 24
31.13.225.0/24 maxlen: 24
85.217.168.0/23 maxlen: 23
87.120.67.0/24 maxlen: 24
87.120.107.0/24 maxlen: 24
87.120.156.0/23 maxlen: 23
87.121.32.0/24 maxlen: 24
87.121.144.0/23 maxlen: 23
93.123.9.0/24 maxlen: 24
94.156.0.0/23 maxlen: 23
94.156.7.0/24 maxlen: 24
94.156.61.0/24 maxlen: 24
94.156.76.0/24 maxlen: 24
94.156.92.0/24 maxlen: 24
94.156.164.0/23 maxlen: 23
94.156.170.0/24 maxlen: 24
94.156.171.0/24 maxlen: 24
212.73.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Aug 2024 12:52:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:46:a2:a0:43:c6:75:d6:7f:3b:95:fd:36:66:d0:b1:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Aug 12 12:49:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ea930e100febb509d0417bb3045604a699703641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e1:ea:db:f5:9d:83:aa:dc:c2:c3:46:e3:d7:
e7:e0:e5:00:2e:7b:21:58:f8:0c:73:2e:b9:49:5c:
d9:0d:c1:89:6a:17:a2:51:a0:da:0e:9f:c2:ec:30:
df:19:d2:0f:70:10:a0:0b:03:1d:c1:1d:ac:43:b2:
52:e0:c9:70:5d:a0:49:d5:5f:26:b8:fb:77:e4:56:
7f:57:ea:60:36:f0:fb:86:37:ac:99:b6:3a:93:0b:
04:4d:b4:f0:fb:71:f4:fd:b9:9c:02:cc:2b:ea:dd:
28:58:c2:8f:c1:d1:c8:9e:3d:61:0f:9e:55:82:43:
d9:76:d0:d6:84:4f:2a:e2:37:32:7c:98:55:4d:8f:
53:06:8c:a2:4b:61:1f:da:68:e4:ff:ab:71:a2:66:
a4:4c:09:fc:15:63:79:32:0a:df:08:1b:e2:a3:c1:
b9:e5:66:df:76:71:11:55:c6:a4:22:04:79:e1:6b:
f5:65:72:f5:eb:af:a9:4e:6c:eb:b1:82:36:37:3a:
c9:5a:a0:39:ab:0e:a5:3d:37:72:aa:c4:d7:2a:78:
97:bd:20:54:ff:38:60:d0:26:e4:7d:43:13:29:d7:
39:c2:9d:89:39:6e:0b:fa:9c:08:e4:2d:d1:70:8f:
13:f3:c6:11:05:78:ce:e6:e7:f7:03:d4:57:f0:78:
78:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:93:0E:10:0F:EB:B5:09:D0:41:7B:B3:04:56:04:A6:99:70:36:41
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/6pMOEA_rtQnQQXuzBFYEpplwNkE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.192.0/23
31.13.199.0/24
31.13.209.0/24
31.13.225.0/24
85.217.168.0/23
87.120.67.0/24
87.120.107.0/24
87.120.156.0/23
87.121.32.0/24
87.121.144.0/23
93.123.9.0/24
94.156.0.0/23
94.156.7.0/24
94.156.61.0/24
94.156.76.0/24
94.156.92.0/24
94.156.164.0/23
94.156.170.0/23
212.73.151.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:e4:38:6a:40:40:79:1c:cf:a7:ae:ff:d8:4a:7e:e8:6b:72:
c4:b8:f7:f7:36:4e:84:ee:49:74:fd:6f:3d:52:47:8e:0e:dd:
70:c0:13:c1:60:54:f7:a2:3d:a7:1d:58:4e:e1:86:3d:8e:53:
d0:2a:a3:4d:d2:77:c7:83:31:f0:73:ce:1f:41:11:05:f0:51:
bb:43:c5:e8:9d:a4:e6:5b:f2:06:c3:25:07:8e:6e:f6:66:33:
49:37:25:81:43:61:00:b0:0a:13:3c:d6:e4:31:9d:ad:4e:03:
37:29:72:6c:a7:d0:34:8d:5f:13:cf:87:14:ba:9b:da:a8:bb:
fe:1e:64:ea:a5:e3:12:ed:77:6c:9e:8d:19:38:56:f3:3e:2b:
c6:c6:fe:97:0f:c7:e5:18:ed:11:e3:1e:c7:52:a5:a3:fd:a2:
d4:01:ed:a5:06:ba:11:da:15:a8:0d:2a:e7:9e:46:14:58:df:
dc:64:cb:78:e8:18:fb:43:6c:11:3c:01:47:a9:3e:f7:10:b3:
e0:46:c3:8a:f5:dd:e0:3a:ba:f1:9c:68:9b:a5:a7:47:0b:82:
49:85:20:c1:5d:e2:2c:8a:32:98:ca:07:35:a3:48:04:0a:75:
28:2d:bd:5d:83:a1:22:da:3e:42:07:54:03:c5:82:e9:be:86:
26:e5:da:61
-----BEGIN CERTIFICATE-----
MIIFajCCBFKgAwIBAgISAZFGoqBDxnXWfzuV/TZm0LH1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjQwODEyMTI0OTA4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYTkzMGUxMDBmZWJiNTA5ZDA0MTdiYjMwNDU2MDRhNjk5NzAzNjQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1OHq2/Wdg6rcwsNG49fn4OUALnsh
WPgMcy65SVzZDcGJaheiUaDaDp/C7DDfGdIPcBCgCwMdwR2sQ7JS4MlwXaBJ1V8m
uPt35FZ/V+pgNvD7hjesmbY6kwsETbTw+3H0/bmcAswr6t0oWMKPwdHInj1hD55V
gkPZdtDWhE8q4jcyfJhVTY9TBoyiS2Ef2mjk/6txomakTAn8FWN5MgrfCBvio8G5
5WbfdnERVcakIgR54Wv1ZXL166+pTmzrsYI2NzrJWqA5qw6lPTdyqsTXKniXvSBU
/zhg0CbkfUMTKdc5wp2JOW4L+pwI5C3RcI8T88YRBXjO5uf3A9RX8Hh4DQIDAQAB
o4ICdjCCAnIwHQYDVR0OBBYEFOqTDhAP67UJ0EF7swRWBKaZcDZBMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvNnBNT0VBX3J0UW5RUVh1ekJGWUVwcGx3TmtFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGLBggrBgEFBQcBBwEB/wR8MHoweAQCAAEwcgMEAR8NwAME
AB8NxwMEAB8N0QMEAB8N4QMEAVXZqAMEAFd4QwMEAFd4awMEAVd4nAMEAFd5IAME
AVd5kAMEAF17CQMEAV6cAAMEAF6cBwMEAF6cPQMEAF6cTAMEAF6cXAMEAV6cpAME
AV6cqgMEANRJlzANBgkqhkiG9w0BAQsFAAOCAQEAq+Q4akBAeRzPp67/2Ep+6Gty
xLj39zZOhO5JdP1vPVJHjg7dcMATwWBU96I9px1YTuGGPY5T0CqjTdJ3x4Mx8HPO
H0ERBfBRu0PF6J2k5lvyBsMlB45u9mYzSTclgUNhALAKEzzW5DGdrU4DNylybKfQ
NI1fE8+HFLqb2qi7/h5k6qXjEu13bJ6NGThW8z4rxsb+lw/H5RjtEeMex1Klo/2i
1AHtpQa6EdoVqA0q555GFFjf3GTLeOgY+0NsETwBR6k+9xCz4EbDivXd4Dq68Zxo
m6WnRwuCSYUgwV3iLIoymMoHNaNIBAp1KC29XYOhIto+QgdUA8WC6b6GJuXaYQ==
-----END CERTIFICATE-----
Generated at Mon Aug 12 16:29:13 2024 by rpki-client on console-fra.rpki-client.org