Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/62b909-1e3e-4a1b-9e24-b01e0297b070/1/8j-F-JaVaO72LQcdud8GR9ZJb-E.roa
File: 8j-F-JaVaO72LQcdud8GR9ZJb-E.roa (raw, json)
Hash identifier: i/20gtWvDc9iFP1ac/dQxIaKIlH8h2/psRlPJgMpZ7o=
Subject key identifier: F2:3F:85:F8:96:95:68:EE:F6:2D:07:1D:B9:DF:06:47:D6:49:6F:E1
Certificate issuer: /CN=fdd2b36206439bbce15b363f09eeff1d738cecc7
Certificate serial: 018D632DB489ED5685FC827D156B40F0E6F7
Authority key identifier: FD:D2:B3:62:06:43:9B:BC:E1:5B:36:3F:09:EE:FF:1D:73:8C:EC:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_dKzYgZDm7zhWzY_Ce7_HXOM7Mc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/62b909-1e3e-4a1b-9e24-b01e0297b070/1/8j-F-JaVaO72LQcdud8GR9ZJb-E.roa
Signing time: Thu 01 Feb 2024 05:39:16 +0000
ROA not before: Thu 01 Feb 2024 05:39:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16010
IP address blocks: 5.178.128.0/17 maxlen: 18
46.49.0.0/17 maxlen: 18
62.168.160.0/19 maxlen: 19
77.74.40.0/21 maxlen: 21
80.241.240.0/22 maxlen: 22
80.241.248.0/22 maxlen: 22
80.241.253.0/24 maxlen: 24
80.241.254.0/23 maxlen: 23
82.211.128.0/18 maxlen: 19
85.114.224.0/19 maxlen: 19
89.232.32.0/19 maxlen: 19
93.177.128.0/18 maxlen: 19
94.137.160.0/19 maxlen: 19
94.240.192.0/18 maxlen: 19
95.104.0.0/17 maxlen: 18
109.172.128.0/17 maxlen: 18
134.19.224.0/19 maxlen: 19
185.115.4.0/22 maxlen: 22
185.115.4.0/24 maxlen: 24
188.121.192.0/19 maxlen: 19
188.129.128.0/17 maxlen: 18
212.58.96.0/19 maxlen: 24
212.72.128.0/23 maxlen: 23
212.72.131.0/24 maxlen: 24
212.72.132.0/22 maxlen: 22
212.72.136.0/21 maxlen: 21
212.72.144.0/21 maxlen: 21
212.72.152.0/23 maxlen: 23
212.72.154.0/24 maxlen: 24
212.72.156.0/22 maxlen: 22
213.157.192.0/19 maxlen: 24
213.200.0.0/19 maxlen: 19
2a0b:6200::/29 maxlen: 64
Validation: Failed, certificate revoked on Fri 02 Feb 2024 04:44:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:63:2d:b4:89:ed:56:85:fc:82:7d:15:6b:40:f0:e6:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdd2b36206439bbce15b363f09eeff1d738cecc7
Validity
Not Before: Feb 1 05:39:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f23f85f8969568eef62d071db9df0647d6496fe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ad:8c:85:27:20:37:e3:b1:5c:aa:f8:95:61:
16:22:b0:f1:f6:95:0f:d7:67:3f:ff:db:6d:d1:f3:
15:ee:5b:bb:72:76:62:65:0c:61:26:4f:39:11:58:
68:02:f2:d6:08:02:54:1c:bb:c2:49:98:8b:bf:0b:
1e:a6:50:36:ad:86:1d:ab:1b:9d:ab:60:88:d6:0e:
35:48:17:dc:50:85:5b:6c:f9:ac:47:d0:70:7a:01:
2a:92:7d:01:77:4c:71:0a:80:a1:bb:fd:e2:d2:34:
bd:70:c0:e2:60:0c:03:5e:db:3d:57:f0:6a:89:83:
b9:49:18:31:a1:d5:1b:fc:94:4d:a9:9b:da:6f:a5:
95:67:a4:2a:9b:55:61:ad:6c:08:f9:36:80:e1:01:
c8:fa:32:d5:99:23:5f:5a:0f:16:0f:20:8e:ee:76:
df:4c:9a:50:4d:03:8f:48:83:f1:c7:7b:56:dd:27:
17:c4:00:2c:0f:63:9f:84:ad:4c:81:c9:05:80:45:
e1:ac:91:b5:1f:3e:59:ce:86:68:1b:72:91:b0:eb:
8d:e4:4c:8a:81:87:7b:9a:b9:1f:93:f7:f5:39:e3:
b5:86:1a:be:30:bb:cf:e0:68:fd:43:af:46:e1:c3:
49:2a:6f:27:8a:16:1f:64:31:57:97:22:a0:7c:b6:
d4:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:3F:85:F8:96:95:68:EE:F6:2D:07:1D:B9:DF:06:47:D6:49:6F:E1
X509v3 Authority Key Identifier:
keyid:FD:D2:B3:62:06:43:9B:BC:E1:5B:36:3F:09:EE:FF:1D:73:8C:EC:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_dKzYgZDm7zhWzY_Ce7_HXOM7Mc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/62b909-1e3e-4a1b-9e24-b01e0297b070/1/8j-F-JaVaO72LQcdud8GR9ZJb-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/62b909-1e3e-4a1b-9e24-b01e0297b070/1/_dKzYgZDm7zhWzY_Ce7_HXOM7Mc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.128.0/17
46.49.0.0/17
62.168.160.0/19
77.74.40.0/21
80.241.240.0/22
80.241.248.0/22
80.241.253.0-80.241.255.255
82.211.128.0/18
85.114.224.0/19
89.232.32.0/19
93.177.128.0/18
94.137.160.0/19
94.240.192.0/18
95.104.0.0/17
109.172.128.0/17
134.19.224.0/19
185.115.4.0/22
188.121.192.0/19
188.129.128.0/17
212.58.96.0/19
212.72.128.0/23
212.72.131.0-212.72.154.255
212.72.156.0/22
213.157.192.0/19
213.200.0.0/19
IPv6:
2a0b:6200::/29
Signature Algorithm: sha256WithRSAEncryption
6c:6a:ff:cc:06:3f:8f:42:c3:63:57:32:15:dc:e5:85:70:d6:
37:62:52:73:82:79:0a:cf:5d:21:d0:ac:a8:cb:2d:76:17:85:
73:f5:84:f0:4e:8a:e3:8b:23:16:a3:b6:d9:60:23:40:fa:dc:
4d:06:62:7d:ac:e4:76:5c:32:b1:5d:17:46:88:1c:36:a7:ed:
a2:7b:cc:75:2b:3e:8f:b2:4c:93:05:63:ec:7b:14:af:65:c1:
84:9d:30:97:94:e5:60:f1:e0:91:ad:56:3b:0e:28:39:8b:6c:
d1:4a:52:44:e3:dd:b9:00:c3:c9:09:71:da:f2:3f:44:cf:e0:
52:44:44:29:bc:68:1d:d5:49:6a:c2:73:4c:d4:8b:c4:20:79:
0a:45:1d:e6:23:55:bb:08:e5:98:1f:12:18:cf:f4:14:a2:e2:
03:37:0f:9b:4d:6f:c1:85:60:ff:58:db:63:8d:e9:de:a5:be:
f6:38:c9:17:91:bb:b0:c6:2e:38:e7:05:cc:59:00:39:88:6a:
09:eb:36:50:c9:8e:b7:05:85:a5:2d:b0:17:21:a4:69:f0:3d:
fe:38:87:6d:ba:24:6b:ad:99:7f:39:56:71:5e:d3:81:cd:34:
0a:f9:14:ad:a9:28:9e:c5:61:29:b5:1c:cc:e6:3f:fb:89:4b:
6f:5b:a2:99
-----BEGIN CERTIFICATE-----
MIIFsDCCBJigAwIBAgISAY1jLbSJ7VaF/IJ9FWtA8Ob3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZkZDJiMzYyMDY0MzliYmNlMTViMzYzZjA5ZWVmZjFkNzM4
Y2VjYzcwHhcNMjQwMjAxMDUzOTE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMjNmODVmODk2OTU2OGVlZjYyZDA3MWRiOWRmMDY0N2Q2NDk2ZmUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlq2MhScgN+OxXKr4lWEWIrDx9pUP
12c//9tt0fMV7lu7cnZiZQxhJk85EVhoAvLWCAJUHLvCSZiLvwseplA2rYYdqxud
q2CI1g41SBfcUIVbbPmsR9BwegEqkn0Bd0xxCoChu/3i0jS9cMDiYAwDXts9V/Bq
iYO5SRgxodUb/JRNqZvab6WVZ6Qqm1VhrWwI+TaA4QHI+jLVmSNfWg8WDyCO7nbf
TJpQTQOPSIPxx3tW3ScXxAAsD2OfhK1MgckFgEXhrJG1Hz5ZzoZoG3KRsOuN5EyK
gYd7mrkfk/f1OeO1hhq+MLvP4Gj9Q69G4cNJKm8nihYfZDFXlyKgfLbUnwIDAQAB
o4ICvDCCArgwHQYDVR0OBBYEFPI/hfiWlWju9i0HHbnfBkfWSW/hMB8GA1UdIwQY
MBaAFP3Ss2IGQ5u84Vs2Pwnu/x1zjOzHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2RLellnWkRtN3poV3pZX0NlN19IWE9NN01jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS82MmI5MDktMWUzZS00YTFiLTllMjQt
YjAxZTAyOTdiMDcwLzEvOGotRi1KYVZhTzcyTFFjZHVkOEdSOVpKYi1FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS82MmI5MDktMWUzZS00YTFiLTllMjQtYjAxZTAyOTdiMDcw
LzEvX2RLellnWkRtN3poV3pZX0NlN19IWE9NN01jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHRBggrBgEFBQcBBwEB/wSBwTCBvjCBrAQCAAEwgaUDBAcF
soADBAcuMQADBAU+qKADBANNSigDBAJQ8fADBAJQ8fgwCwMEAFDx/QMDAVDwAwQG
UtOAAwQFVXLgAwQFWeggAwQGXbGAAwQFXomgAwQGXvDAAwQHX2gAAwQHbayAAwQF
hhPgAwQCuXMEAwQFvHnAAwQHvIGAAwQF1DpgAwQB1EiAMAwDBADUSIMDBADUSJoD
BALUSJwDBAXVncADBAXVyAAwDQQCAAIwBwMFAyoLYgAwDQYJKoZIhvcNAQELBQAD
ggEBAGxq/8wGP49Cw2NXMhXc5YVw1jdiUnOCeQrPXSHQrKjLLXYXhXP1hPBOiuOL
IxajttlgI0D63E0GYn2s5HZcMrFdF0aIHDan7aJ7zHUrPo+yTJMFY+x7FK9lwYSd
MJeU5WDx4JGtVjsOKDmLbNFKUkTj3bkAw8kJcdryP0TP4FJERCm8aB3VSWrCc0zU
i8QgeQpFHeYjVbsI5ZgfEhjP9BSi4gM3D5tNb8GFYP9Y22ON6d6lvvY4yReRu7DG
LjjnBcxZADmIagnrNlDJjrcFhaUtsBchpGnwPf44h226JGutmX85VnFe04HNNAr5
FK2pKJ7FYSm1HMzmP/uJS29bopk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:53 2024 by rpki-client on console-ams.rpki-client.org