Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/_95hRMWSlZa3HqUr4Nh07HzIROg.roa
File: _95hRMWSlZa3HqUr4Nh07HzIROg.roa (raw, json)
Hash identifier: eIXgo2z/sc9FCbJURLTIalyI0xRbqRcAzae2OeC2XBs=
Subject key identifier: FF:DE:61:44:C5:92:95:96:B7:1E:A5:2B:E0:D8:74:EC:7C:C8:44:E8
Certificate issuer: /CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Certificate serial: 01904F0C2546C626AD4937D71814F2B9AFAB
Authority key identifier: 49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/_95hRMWSlZa3HqUr4Nh07HzIROg.roa
Signing time: Tue 25 Jun 2024 10:58:34 +0000
ROA not before: Tue 25 Jun 2024 10:58:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51684
IP address blocks: 5.181.196.0/24 maxlen: 24
5.181.197.0/24 maxlen: 24
5.181.198.0/24 maxlen: 24
82.199.208.0/23 maxlen: 23
82.199.208.0/24 maxlen: 24
82.199.209.0/24 maxlen: 24
82.199.210.0/24 maxlen: 24
82.199.211.0/24 maxlen: 24
82.199.212.0/23 maxlen: 23
82.199.212.0/24 maxlen: 24
82.199.213.0/24 maxlen: 24
82.199.214.0/23 maxlen: 23
82.199.214.0/24 maxlen: 24
82.199.215.0/24 maxlen: 24
82.199.216.0/23 maxlen: 23
82.199.216.0/24 maxlen: 24
82.199.217.0/24 maxlen: 24
82.199.218.0/23 maxlen: 23
82.199.218.0/24 maxlen: 24
82.199.219.0/24 maxlen: 24
82.199.220.0/23 maxlen: 23
82.199.220.0/24 maxlen: 24
82.199.221.0/24 maxlen: 24
82.199.222.0/23 maxlen: 23
82.199.222.0/24 maxlen: 24
82.199.223.0/24 maxlen: 24
89.46.200.0/23 maxlen: 23
89.46.200.0/24 maxlen: 24
89.46.201.0/24 maxlen: 24
89.46.202.0/23 maxlen: 23
89.46.202.0/24 maxlen: 24
89.46.203.0/24 maxlen: 24
89.46.204.0/23 maxlen: 23
89.46.204.0/24 maxlen: 24
89.46.205.0/24 maxlen: 24
89.46.206.0/23 maxlen: 23
89.46.206.0/24 maxlen: 24
89.46.207.0/24 maxlen: 24
91.213.191.0/24 maxlen: 24
91.217.185.0/24 maxlen: 24
185.16.26.0/23 maxlen: 23
185.16.26.0/24 maxlen: 24
185.95.204.0/23 maxlen: 23
185.95.204.0/24 maxlen: 24
185.95.205.0/24 maxlen: 24
185.95.206.0/23 maxlen: 23
185.95.206.0/24 maxlen: 24
185.95.207.0/24 maxlen: 24
185.247.36.0/23 maxlen: 23
185.247.36.0/24 maxlen: 24
185.247.37.0/24 maxlen: 24
185.247.38.0/23 maxlen: 23
185.247.38.0/24 maxlen: 24
185.247.39.0/24 maxlen: 24
185.254.200.0/23 maxlen: 23
185.254.200.0/24 maxlen: 24
185.254.201.0/24 maxlen: 24
185.254.203.0/24 maxlen: 24
212.95.128.0/24 maxlen: 24
212.95.129.0/24 maxlen: 24
212.95.130.0/24 maxlen: 24
212.95.131.0/24 maxlen: 24
212.95.132.0/24 maxlen: 24
212.95.133.0/24 maxlen: 24
212.95.134.0/24 maxlen: 24
212.95.135.0/24 maxlen: 24
212.95.136.0/24 maxlen: 24
212.95.137.0/24 maxlen: 24
212.95.138.0/24 maxlen: 24
212.95.139.0/24 maxlen: 24
212.95.140.0/24 maxlen: 24
212.95.141.0/24 maxlen: 24
212.95.142.0/24 maxlen: 24
212.95.143.0/24 maxlen: 24
212.95.144.0/24 maxlen: 24
212.95.145.0/24 maxlen: 24
223.25.120.0/24 maxlen: 24
223.25.121.0/24 maxlen: 24
223.25.122.0/24 maxlen: 24
223.25.123.0/24 maxlen: 24
223.25.124.0/24 maxlen: 24
223.25.125.0/24 maxlen: 24
223.25.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Jul 2024 09:50:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4f:0c:25:46:c6:26:ad:49:37:d7:18:14:f2:b9:af:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Validity
Not Before: Jun 25 10:58:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ffde6144c5929596b71ea52be0d874ec7cc844e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:67:59:41:6d:d0:da:81:9e:b5:14:ff:1e:8f:
dc:44:28:f3:69:34:84:43:70:6f:e0:d4:1b:c9:be:
b6:db:b2:a7:3d:c7:f4:28:b2:4a:fe:14:99:ed:e3:
cd:b8:cd:bd:cb:93:b9:b9:30:dd:fd:5c:97:2a:c6:
4e:f6:07:1e:08:8b:9f:0c:b6:27:bc:32:35:34:82:
54:eb:82:5d:fe:b8:fe:8c:4b:5b:c1:8b:0a:e7:c0:
f1:b1:25:4b:d7:68:c0:9f:db:e3:7b:6f:a9:3b:e8:
60:31:00:19:c4:bc:38:46:1e:34:47:b7:9f:30:88:
ac:56:34:ba:58:23:8a:cd:d9:59:18:eb:63:f3:8f:
d7:8d:5e:00:5a:77:df:c6:79:1a:73:ef:46:40:ee:
f4:69:ad:8d:0e:8e:11:f8:78:86:70:90:2b:57:b9:
d6:37:8b:0e:c4:ec:6c:a2:4e:f6:23:5a:4a:ed:e6:
f1:63:4b:46:b5:24:3e:08:63:3f:ad:1b:5f:3e:e6:
76:a8:20:76:31:9a:df:30:b0:31:60:de:aa:41:63:
33:cd:0d:d4:9a:74:08:ed:30:cf:a8:ed:36:22:80:
67:b0:41:be:03:6d:14:96:3b:35:5b:76:0a:54:ab:
02:7d:fc:ef:1e:00:2b:9c:fd:d0:01:4d:2b:6c:36:
d1:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:DE:61:44:C5:92:95:96:B7:1E:A5:2B:E0:D8:74:EC:7C:C8:44:E8
X509v3 Authority Key Identifier:
keyid:49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/_95hRMWSlZa3HqUr4Nh07HzIROg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/Sd2PGmKl1_gCEt4PPv51svozj_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.196.0-5.181.198.255
82.199.208.0/20
89.46.200.0/21
91.213.191.0/24
91.217.185.0/24
185.16.26.0/23
185.95.204.0/22
185.247.36.0/22
185.254.200.0/23
185.254.203.0/24
212.95.128.0-212.95.145.255
223.25.120.0-223.25.126.255
Signature Algorithm: sha256WithRSAEncryption
58:4f:3d:71:99:33:9d:5c:28:ac:83:48:05:c9:26:e1:c2:b8:
8e:08:38:b7:cc:48:74:0c:c1:e9:57:a4:b6:a1:0a:cd:fc:2b:
70:f5:2c:11:67:19:ed:dd:82:f6:43:89:2c:78:d1:0a:0b:02:
6c:b5:03:fa:9e:05:2b:db:27:69:bd:57:72:28:bd:96:3d:df:
34:43:02:9a:50:92:cf:5e:24:58:7f:ac:a7:16:29:35:85:f2:
0b:82:46:45:fa:8f:a7:f6:fd:3e:8f:62:48:84:ce:22:80:04:
13:63:9f:b7:ae:a3:69:7e:aa:b1:b1:8c:75:c5:8c:89:a3:ab:
95:15:f4:e8:dc:21:dd:bf:19:41:e9:8a:c4:be:14:60:03:f1:
5a:23:a3:b1:86:cc:b3:85:6c:cb:57:fa:c5:71:3c:e2:c8:45:
68:53:66:de:af:da:19:bd:5b:4c:32:57:78:1d:97:40:ab:f2:
0b:e5:26:06:d3:86:2f:2a:97:71:7f:a7:cb:71:dd:e0:db:7f:
80:0e:ce:d7:f5:d3:26:9b:18:54:cf:5a:96:b8:57:88:52:25:
1d:e4:29:36:ad:31:26:bd:20:9d:43:ea:0f:14:45:ec:f1:9d:
8d:00:22:cb:b3:26:90:0e:38:1d:34:74:0c:07:56:1c:de:60:
bb:34:39:6e
-----BEGIN CERTIFICATE-----
MIIFVzCCBD+gAwIBAgISAZBPDCVGxiatSTfXGBTyua+rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZGQ4ZjFhNjJhNWQ3ZjgwMjEyZGUwZjNlZmU3NWIyZmEz
MzhmZmUwHhcNMjQwNjI1MTA1ODM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZmRlNjE0NGM1OTI5NTk2YjcxZWE1MmJlMGQ4NzRlYzdjYzg0NGU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtWdZQW3Q2oGetRT/Ho/cRCjzaTSE
Q3Bv4NQbyb6227KnPcf0KLJK/hSZ7ePNuM29y5O5uTDd/VyXKsZO9gceCIufDLYn
vDI1NIJU64Jd/rj+jEtbwYsK58DxsSVL12jAn9vje2+pO+hgMQAZxLw4Rh40R7ef
MIisVjS6WCOKzdlZGOtj84/XjV4AWnffxnkac+9GQO70aa2NDo4R+HiGcJArV7nW
N4sOxOxsok72I1pK7ebxY0tGtSQ+CGM/rRtfPuZ2qCB2MZrfMLAxYN6qQWMzzQ3U
mnQI7TDPqO02IoBnsEG+A20Uljs1W3YKVKsCffzvHgArnP3QAU0rbDbRsQIDAQAB
o4ICYzCCAl8wHQYDVR0OBBYEFP/eYUTFkpWWtx6lK+DYdOx8yEToMB8GA1UdIwQY
MBaAFEndjxpipdf4AhLeDz7+dbL6M4/+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2QyUEdtS2wxX2dDRXQ0UFB2NTFzdm96al80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi8wMWIxZWYtMjMzYi00ZDZmLThkY2Yt
Y2VlYzQ5MTI0YzBmLzEvXzk1aFJNV1NsWmEzSHFVcjROaDA3SHpJUk9nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi8wMWIxZWYtMjMzYi00ZDZmLThkY2YtY2VlYzQ5MTI0YzBm
LzEvU2QyUEdtS2wxX2dDRXQ0UFB2NTFzdm96al80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHkGCCsGAQUFBwEHAQH/BGowaDBmBAIAATBgMAwDBAIFtcQD
BAAFtcYDBARSx9ADBANZLsgDBABb1b8DBABb2bkDBAG5EBoDBAK5X8wDBAK59yQD
BAG5/sgDBAC5/sswDAMEB9RfgAMEAdRfkDAMAwQD3xl4AwQA3xl+MA0GCSqGSIb3
DQEBCwUAA4IBAQBYTz1xmTOdXCisg0gFySbhwriOCDi3zEh0DMHpV6S2oQrN/Ctw
9SwRZxnt3YL2Q4kseNEKCwJstQP6ngUr2ydpvVdyKL2WPd80QwKaUJLPXiRYf6yn
Fik1hfILgkZF+o+n9v0+j2JIhM4igAQTY5+3rqNpfqqxsYx1xYyJo6uVFfTo3CHd
vxlB6YrEvhRgA/FaI6OxhsyzhWzLV/rFcTziyEVoU2ber9oZvVtMMld4HZdAq/IL
5SYG04YvKpdxf6fLcd3g23+ADs7X9dMmmxhUz1qWuFeIUiUd5Ck2rTEmvSCdQ+oP
FEXs8Z2NACLLsyaQDjgdNHQMB1Yc3mC7NDlu
-----END CERTIFICATE-----
Generated at Thu Jul 4 11:18:42 2024 by rpki-client on console-fra.rpki-client.org