Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/E5jdihwoRqUCBflarnbEKIjLtmA.roa
File: E5jdihwoRqUCBflarnbEKIjLtmA.roa (raw, json)
Hash identifier: T1HD/sB44VlwqxaDPLGMA/V4ci0vXsY2UHWRCEyvPJo=
Subject key identifier: 13:98:DD:8A:1C:28:46:A5:02:05:F9:5A:AE:76:C4:28:88:CB:B6:60
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018E76BC71464E4FAC9C80E3B0E323D6E540
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/E5jdihwoRqUCBflarnbEKIjLtmA.roa
Signing time: Mon 25 Mar 2024 17:50:45 +0000
ROA not before: Mon 25 Mar 2024 17:50:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208258
IP address blocks: 45.144.244.0/23 maxlen: 24
45.144.246.0/24 maxlen: 24
45.151.156.0/23 maxlen: 24
45.151.158.0/24 maxlen: 24
45.152.58.0/24 maxlen: 24
185.208.208.0/24 maxlen: 24
185.208.209.0/24 maxlen: 24
185.208.210.0/24 maxlen: 24
185.208.211.0/24 maxlen: 24
185.227.82.0/24 maxlen: 24
185.228.83.0/24 maxlen: 24
185.243.112.0/24 maxlen: 24
185.243.113.0/24 maxlen: 24
193.109.137.0/24 maxlen: 24
194.146.48.0/24 maxlen: 24
195.26.6.0/24 maxlen: 24
195.26.7.0/24 maxlen: 24
195.88.226.0/24 maxlen: 24
195.88.227.0/24 maxlen: 24
2a0b:3c40:1::/48 maxlen: 48
2a0b:3c40:9::/48 maxlen: 48
2a0b:3c40:11::/48 maxlen: 48
2a0b:3c40:12::/48 maxlen: 48
2a0b:3c40:15::/48 maxlen: 48
2a0b:3c40:16::/48 maxlen: 48
2a0b:3c40:17::/48 maxlen: 48
2a0b:3c40:20::/48 maxlen: 48
2a0b:3c40:21::/48 maxlen: 48
2a0b:3c40:25::/48 maxlen: 48
2a0b:3c40:fca6::/48 maxlen: 48
2a0e:5540::/48 maxlen: 48
2a0e:5540:10::/48 maxlen: 48
2a0e:5540:11::/48 maxlen: 48
2a0e:5540:12::/48 maxlen: 48
2a0e:5540:100::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 26 Mar 2024 09:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:76:bc:71:46:4e:4f:ac:9c:80:e3:b0:e3:23:d6:e5:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Mar 25 17:50:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1398dd8a1c2846a50205f95aae76c42888cbb660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8d:e1:80:14:10:08:7b:87:f0:95:fd:88:c2:
50:f2:1f:ef:ae:3c:90:8f:1c:e8:75:b2:22:16:29:
cf:10:a6:e4:5f:82:15:67:69:5f:6e:6d:02:6d:b6:
ff:06:ac:39:c4:f8:14:f4:ab:d6:6f:e0:ae:fc:3f:
2e:35:39:78:2e:ed:59:de:cd:06:3a:e5:20:b6:fa:
e6:9c:c9:cd:ac:5b:9f:50:ce:08:ba:ab:fa:dd:de:
a1:bb:44:6f:4b:3c:e2:f4:36:cf:55:e3:0f:50:2f:
52:0e:80:bf:ae:e8:c6:04:80:c3:a7:10:7a:47:88:
44:fa:f8:35:e8:b3:01:21:4c:ca:5d:b1:c9:0f:f8:
9f:39:bf:81:b6:44:e0:d3:96:4b:65:4a:82:e7:d0:
a0:0d:7a:3d:1d:ca:dc:1b:31:dc:7d:b2:94:26:c4:
2b:43:30:aa:cb:8c:e8:e9:e5:28:9b:27:19:c5:55:
6b:f3:bc:00:ec:0f:d7:04:f3:b6:c3:34:ca:e4:5c:
97:f2:9a:de:cf:ef:f0:92:ce:af:cc:de:50:ad:ed:
a3:e7:57:59:9d:2e:63:0a:40:da:bd:f2:a9:2e:3b:
b0:4a:17:3b:3a:a4:00:17:07:33:7f:60:7b:19:51:
c4:49:68:01:59:c4:b8:35:b8:5f:9c:76:97:a9:d9:
c7:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:98:DD:8A:1C:28:46:A5:02:05:F9:5A:AE:76:C4:28:88:CB:B6:60
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/E5jdihwoRqUCBflarnbEKIjLtmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.244.0-45.144.246.255
45.151.156.0-45.151.158.255
45.152.58.0/24
185.208.208.0/22
185.227.82.0/24
185.228.83.0/24
185.243.112.0/23
193.109.137.0/24
194.146.48.0/24
195.26.6.0/23
195.88.226.0/23
IPv6:
2a0b:3c40:1::/48
2a0b:3c40:9::/48
2a0b:3c40:11::-2a0b:3c40:12:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:15::-2a0b:3c40:17:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:20::/47
2a0b:3c40:25::/48
2a0b:3c40:fca6::/48
2a0e:5540::/48
2a0e:5540:10::-2a0e:5540:12:ffff:ffff:ffff:ffff:ffff
2a0e:5540:100::/48
Signature Algorithm: sha256WithRSAEncryption
82:d7:3b:97:9e:d8:4e:94:7c:d0:77:df:ba:81:4e:88:59:d7:
fa:13:32:9e:50:65:db:6e:4f:19:ce:20:37:b3:21:90:98:f8:
9c:d3:b0:da:91:38:e0:8b:3c:81:bb:74:ae:b6:f1:cf:56:b4:
6a:bd:6e:8e:f1:58:c3:12:6f:d9:b3:b2:22:0b:89:ed:51:a6:
88:bf:34:7c:ba:ab:97:d5:31:c5:45:7c:c6:b4:b4:67:62:24:
e7:54:57:c9:86:93:8e:b8:bc:ab:cd:6c:e1:4d:64:1e:d4:56:
49:b8:b9:7e:6e:6b:60:33:77:84:5c:e1:ac:43:d2:6c:59:7f:
0d:5e:4a:a2:c6:e8:27:03:19:54:e6:75:ab:58:04:ff:ed:82:
c4:db:c3:e2:39:df:ce:f2:7a:14:7f:4c:b5:d5:75:80:d3:b4:
d6:42:8d:e3:67:78:8e:59:63:72:6b:35:60:89:ad:7e:eb:0a:
fc:f1:70:df:50:b8:b3:3f:c6:ca:2c:0e:32:ec:22:f3:dd:2a:
2b:38:d4:d2:46:69:f4:34:b2:a8:bf:d3:72:77:12:72:fc:a2:
cc:dc:d5:fb:d3:2c:3e:d9:0c:e6:f6:51:47:3b:d7:b0:ed:63:
65:35:fc:5b:fb:fe:a0:72:2c:31:aa:6e:da:99:b9:61:44:bc:
d6:00:84:46
-----BEGIN CERTIFICATE-----
MIIF0DCCBLigAwIBAgISAY52vHFGTk+snIDjsOMj1uVAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw
MTRiOGQwHhcNMjQwMzI1MTc1MDQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMzk4ZGQ4YTFjMjg0NmE1MDIwNWY5NWFhZTc2YzQyODg4Y2JiNjYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq43hgBQQCHuH8JX9iMJQ8h/vrjyQ
jxzodbIiFinPEKbkX4IVZ2lfbm0Cbbb/Bqw5xPgU9KvWb+Cu/D8uNTl4Lu1Z3s0G
OuUgtvrmnMnNrFufUM4Iuqv63d6hu0RvSzzi9DbPVeMPUC9SDoC/rujGBIDDpxB6
R4hE+vg16LMBIUzKXbHJD/ifOb+BtkTg05ZLZUqC59CgDXo9HcrcGzHcfbKUJsQr
QzCqy4zo6eUomycZxVVr87wA7A/XBPO2wzTK5FyX8prez+/wks6vzN5Qre2j51dZ
nS5jCkDavfKpLjuwShc7OqQAFwczf2B7GVHESWgBWcS4NbhfnHaXqdnHFQIDAQAB
o4IC3DCCAtgwHQYDVR0OBBYEFBOY3YocKEalAgX5Wq52xCiIy7ZgMB8GA1UdIwQY
MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt
NmJjNzU1NzhiNGMzLzEvRTVqZGlod29ScVVDQmZsYXJuYkVLSWpMdG1BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz
LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHxBggrBgEFBQcBBwEB/wSB4TCB3jBYBAIAATBSMAwDBAIt
kPQDBAAtkPYwDAMEAi2XnAMEAC2XngMEAC2YOgMEArnQ0AMEALnjUgMEALnkUwME
AbnzcAMEAMFtiQMEAMKSMAMEAcMaBgMEAcNY4jCBgQQCAAIwewMHACoLPEAAAQMH
ACoLPEAACTASAwcAKgs8QAARAwcAKgs8QAASMBIDBwAqCzxAABUDBwMqCzxAABAD
BwEqCzxAACADBwAqCzxAACUDBwAqCzxA/KYDBwAqDlVAAAAwEgMHBCoOVUAAEAMH
ACoOVUAAEgMHACoOVUABADANBgkqhkiG9w0BAQsFAAOCAQEAgtc7l57YTpR80Hff
uoFOiFnX+hMynlBl225PGc4gN7MhkJj4nNOw2pE44Is8gbt0rrbxz1a0ar1ujvFY
wxJv2bOyIguJ7VGmiL80fLqrl9UxxUV8xrS0Z2Ik51RXyYaTjri8q81s4U1kHtRW
Sbi5fm5rYDN3hFzhrEPSbFl/DV5KosboJwMZVOZ1q1gE/+2CxNvD4jnfzvJ6FH9M
tdV1gNO01kKN42d4jlljcms1YImtfusK/PFw31C4sz/GyiwOMuwi890qKzjU0kZp
9DSyqL/TcncScvyizNzV+9MsPtkM5vZRRzvXsO1jZTX8W/v+oHIsMapu2pm5YUS8
1gCERg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org