Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/sR-DwNtCjGC7WBJCxPO7pdBP7IA.roa
File: sR-DwNtCjGC7WBJCxPO7pdBP7IA.roa (raw, json)
Hash identifier: PzW9FKPAA2B1foLNyZkrqeOYqQb7aMyI7XQEGevaCts=
Subject key identifier: B1:1F:83:C0:DB:42:8C:60:BB:58:12:42:C4:F3:BB:A5:D0:4F:EC:80
Certificate issuer: /CN=115dbc00433e29f2adeb038fea2fbd7048fb632f
Certificate serial: 01902B31FCF43A8EC6BE98B15BC1F5BEEE05
Authority key identifier: 11:5D:BC:00:43:3E:29:F2:AD:EB:03:8F:EA:2F:BD:70:48:FB:63:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EV28AEM-KfKt6wOP6i-9cEj7Yy8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/sR-DwNtCjGC7WBJCxPO7pdBP7IA.roa
Signing time: Tue 18 Jun 2024 11:53:34 +0000
ROA not before: Tue 18 Jun 2024 11:53:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6730
IP address blocks: 31.164.0.0/15 maxlen: 16
62.167.0.0/16 maxlen: 16
62.167.0.0/17 maxlen: 17
62.167.128.0/17 maxlen: 17
84.226.0.0/15 maxlen: 16
89.217.0.0/16 maxlen: 16
178.38.0.0/15 maxlen: 16
188.154.0.0/15 maxlen: 16
193.192.224.0/19 maxlen: 19
194.158.224.0/19 maxlen: 19
194.230.0.0/16 maxlen: 16
194.230.0.0/17 maxlen: 17
194.230.128.0/17 maxlen: 17
194.230.144.0/20 maxlen: 20
195.112.64.0/19 maxlen: 19
195.141.0.0/16 maxlen: 16
212.35.32.0/19 maxlen: 19
212.98.32.0/19 maxlen: 19
212.161.128.0/17 maxlen: 17
2001:1700::/27 maxlen: 27
2001:1700::/28 maxlen: 28
2001:1710::/28 maxlen: 28
Validation: Failed, certificate revoked on Tue 06 Aug 2024 07:40:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:2b:31:fc:f4:3a:8e:c6:be:98:b1:5b:c1:f5:be:ee:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=115dbc00433e29f2adeb038fea2fbd7048fb632f
Validity
Not Before: Jun 18 11:53:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b11f83c0db428c60bb581242c4f3bba5d04fec80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2f:17:15:09:5a:a0:d2:74:9f:8a:e4:43:33:
a4:ea:da:4d:7b:73:22:f3:b6:44:aa:9b:43:dc:4a:
29:69:b7:3c:42:20:c1:c8:ce:ff:bd:28:bd:75:3c:
d7:fc:70:9d:31:dc:0c:d4:99:0b:36:81:ac:bc:c1:
e1:5c:e1:94:1e:fc:3f:78:82:9e:f0:0c:7e:06:ad:
7f:13:ac:41:74:c1:e2:50:f1:29:48:b3:12:d2:73:
8f:b7:ac:d4:85:c1:9a:34:28:10:e6:2f:e9:00:b1:
cf:e2:14:01:c4:4b:af:0f:af:10:c7:48:56:10:7c:
37:32:3e:8c:0a:f9:8e:82:5d:bf:d2:8a:51:f3:ce:
bb:7d:a2:bb:27:94:09:99:52:56:9e:6d:5f:13:76:
18:6c:b7:5a:51:9a:84:60:81:4e:5f:d8:45:8f:bf:
18:2f:5c:dd:ae:ce:57:9a:bd:6d:56:71:f3:b8:d6:
79:6c:b0:b5:cd:ad:98:d6:75:7b:b9:2e:73:db:81:
47:80:b5:e4:ea:c2:d2:38:8e:9e:4e:d8:9c:5b:da:
a6:f9:4c:73:38:55:32:3d:e2:9b:ee:70:6f:32:c8:
24:39:b5:b9:7e:c7:1f:2d:01:97:8d:64:2b:90:73:
74:8d:a7:f5:72:2e:68:c1:63:2e:39:0c:93:26:a4:
1c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:1F:83:C0:DB:42:8C:60:BB:58:12:42:C4:F3:BB:A5:D0:4F:EC:80
X509v3 Authority Key Identifier:
keyid:11:5D:BC:00:43:3E:29:F2:AD:EB:03:8F:EA:2F:BD:70:48:FB:63:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EV28AEM-KfKt6wOP6i-9cEj7Yy8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/sR-DwNtCjGC7WBJCxPO7pdBP7IA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/EV28AEM-KfKt6wOP6i-9cEj7Yy8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.164.0.0/15
62.167.0.0/16
84.226.0.0/15
89.217.0.0/16
178.38.0.0/15
188.154.0.0/15
193.192.224.0/19
194.158.224.0/19
194.230.0.0/16
195.112.64.0/19
195.141.0.0/16
212.35.32.0/19
212.98.32.0/19
212.161.128.0/17
IPv6:
2001:1700::/27
Signature Algorithm: sha256WithRSAEncryption
bf:e3:a4:95:53:66:25:6f:9e:e3:67:c3:bf:24:55:be:24:a6:
16:fc:49:a6:d9:d3:0a:e6:b8:8c:82:95:f3:40:ca:9e:8c:69:
48:dd:fd:7e:18:ae:7a:98:a4:64:e2:69:9c:ec:15:55:0d:94:
51:e3:95:03:4f:81:c1:40:d2:0f:7b:58:15:32:8f:97:e3:f8:
1c:30:9d:ed:89:bc:c7:bb:a0:3b:f1:59:8a:33:60:51:03:38:
e5:af:28:f9:2e:b9:9f:5a:b8:15:a6:69:cf:59:44:96:d9:1e:
76:cc:f4:3c:8d:15:a2:b6:7f:21:03:78:66:24:60:f2:61:2f:
60:3c:21:91:b7:a8:ae:4b:8e:1a:8e:8e:ca:f3:44:d5:56:01:
1a:fc:7b:d6:70:98:5f:05:d0:fe:97:bb:b8:f4:59:5f:94:f0:
34:4c:54:f5:f9:39:1d:92:5f:cc:24:f8:4e:6b:00:a1:d6:ab:
50:6d:7b:8c:6c:68:32:f2:ee:c5:f4:3d:5a:89:8c:dd:bd:f3:
cd:7e:0d:e8:6c:13:bd:1a:2f:30:6c:cd:2a:81:ee:49:b5:9e:
71:88:f0:a8:74:9b:77:38:93:2b:53:08:15:0d:3a:3e:80:ae:
97:5f:79:4b:01:48:c0:bf:c3:03:bc:92:cc:24:77:19:59:24:
ed:3f:f2:95
-----BEGIN CERTIFICATE-----
MIIFUjCCBDqgAwIBAgISAZArMfz0Oo7GvpixW8H1vu4FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDExNWRiYzAwNDMzZTI5ZjJhZGViMDM4ZmVhMmZiZDcwNDhm
YjYzMmYwHhcNMjQwNjE4MTE1MzM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMTFmODNjMGRiNDI4YzYwYmI1ODEyNDJjNGYzYmJhNWQwNGZlYzgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsi8XFQlaoNJ0n4rkQzOk6tpNe3Mi
87ZEqptD3Eopabc8QiDByM7/vSi9dTzX/HCdMdwM1JkLNoGsvMHhXOGUHvw/eIKe
8Ax+Bq1/E6xBdMHiUPEpSLMS0nOPt6zUhcGaNCgQ5i/pALHP4hQBxEuvD68Qx0hW
EHw3Mj6MCvmOgl2/0opR8867faK7J5QJmVJWnm1fE3YYbLdaUZqEYIFOX9hFj78Y
L1zdrs5Xmr1tVnHzuNZ5bLC1za2Y1nV7uS5z24FHgLXk6sLSOI6eTticW9qm+Uxz
OFUyPeKb7nBvMsgkObW5fscfLQGXjWQrkHN0jaf1ci5owWMuOQyTJqQcOQIDAQAB
o4ICXjCCAlowHQYDVR0OBBYEFLEfg8DbQoxgu1gSQsTzu6XQT+yAMB8GA1UdIwQY
MBaAFBFdvABDPinyresDj+ovvXBI+2MvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRVYyOEFFTS1LZkt0NndPUDZpLTljRWo3WXk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC82NWE3MWQtMDIzNi00NGQ1LThjZTkt
MjI5YjRhZTc0MmRlLzEvc1ItRHdOdENqR0M3V0JKQ3hQTzdwZEJQN0lBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC82NWE3MWQtMDIzNi00NGQ1LThjZTktMjI5YjRhZTc0MmRl
LzEvRVYyOEFFTS1LZkt0NndPUDZpLTljRWo3WXk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHQGCCsGAQUFBwEHAQH/BGUwYzBSBAIAATBMAwMBH6QDAwA+
pwMDAVTiAwMAWdkDAwGyJgMDAbyaAwQFwcDgAwQFwp7gAwMAwuYDBAXDcEADAwDD
jQMEBdQjIAMEBdRiIAMEB9ShgDANBAIAAjAHAwUFIAEXADANBgkqhkiG9w0BAQsF
AAOCAQEAv+OklVNmJW+e42fDvyRVviSmFvxJptnTCua4jIKV80DKnoxpSN39fhiu
epikZOJpnOwVVQ2UUeOVA0+BwUDSD3tYFTKPl+P4HDCd7Ym8x7ugO/FZijNgUQM4
5a8o+S65n1q4FaZpz1lEltkedsz0PI0VorZ/IQN4ZiRg8mEvYDwhkbeorkuOGo6O
yvNE1VYBGvx71nCYXwXQ/pe7uPRZX5TwNExU9fk5HZJfzCT4TmsAodarUG17jGxo
MvLuxfQ9WomM3b3zzX4N6GwTvRovMGzNKoHuSbWecYjwqHSbdziTK1MIFQ06PoCu
l195SwFIwL/DA7ySzCR3GVkk7T/ylQ==
-----END CERTIFICATE-----
Generated at Tue Aug 6 09:30:04 2024 by rpki-client on console-ams.rpki-client.org