Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/a8KP5ZCMomsytCuv9TWpeX77mPY.roa
File: a8KP5ZCMomsytCuv9TWpeX77mPY.roa (raw, json)
Hash identifier: 9qq/CuRXrJNT4uOWEXpnrFMx2EHCH/dphsvlEPMuwQQ=
Subject key identifier: 6B:C2:8F:E5:90:8C:A2:6B:32:B4:2B:AF:F5:35:A9:79:7E:FB:98:F6
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01904A6A89D769E90FF6D2267450FF120748
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/a8KP5ZCMomsytCuv9TWpeX77mPY.roa
Signing time: Mon 24 Jun 2024 13:23:34 +0000
ROA not before: Mon 24 Jun 2024 13:23:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12586
IP address blocks: 5.83.128.0/20 maxlen: 32
5.83.151.0/24 maxlen: 32
5.83.157.0/24 maxlen: 24
5.175.128.0/17 maxlen: 32
5.175.255.0/24 maxlen: 32
5.230.0.0/15 maxlen: 32
5.230.6.0/24 maxlen: 32
5.230.11.0/24 maxlen: 32
5.230.102.0/24 maxlen: 32
5.230.224.0/24 maxlen: 32
5.231.233.0/24 maxlen: 32
77.90.0.0/18 maxlen: 32
83.243.80.0/21 maxlen: 32
85.93.0.0/19 maxlen: 32
85.93.20.0/24 maxlen: 32
85.118.160.0/21 maxlen: 32
87.239.128.0/21 maxlen: 32
89.106.64.0/19 maxlen: 32
89.144.0.0/18 maxlen: 32
94.103.160.0/20 maxlen: 32
94.249.128.0/17 maxlen: 32
95.215.32.0/22 maxlen: 32
178.18.144.0/20 maxlen: 32
178.18.151.0/24 maxlen: 32
185.13.156.0/22 maxlen: 32
185.47.140.0/24 maxlen: 32
185.47.141.0/24 maxlen: 32
185.121.71.0/24 maxlen: 32
193.28.251.0/24 maxlen: 32
195.110.14.0/23 maxlen: 32
217.69.160.0/20 maxlen: 32
2a00:12d8::/29 maxlen: 128
2a00:19d0::/29 maxlen: 128
2a00:cdc0::/32 maxlen: 128
2a01:bd40::/29 maxlen: 128
2a02:7a0::/29 maxlen: 128
2a02:2fc0::/29 maxlen: 128
Validation: Failed, certificate revoked on Thu 04 Jul 2024 09:17:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4a:6a:89:d7:69:e9:0f:f6:d2:26:74:50:ff:12:07:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jun 24 13:23:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6bc28fe5908ca26b32b42baff535a9797efb98f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:27:19:a9:c9:cc:46:98:5c:99:2b:f4:d7:34:
45:34:9a:6d:b7:8a:5b:76:16:fd:2e:4d:b8:ba:fa:
00:42:16:78:8d:1c:32:37:6e:7e:15:13:9e:a3:22:
5b:93:f5:f4:32:f0:e1:b5:83:eb:e5:cf:5a:20:60:
b3:5d:5f:6f:cf:ed:64:1d:9b:25:68:05:eb:65:04:
d8:01:d3:86:d2:bf:31:b7:f0:bb:e7:a8:24:41:29:
c3:f8:e4:dc:83:bf:ad:52:4c:fc:da:6e:6d:48:84:
09:34:4c:d6:49:3d:0b:cf:23:1a:a1:74:a4:e7:12:
e1:a1:f7:ff:ed:2a:50:b1:d5:af:35:ef:cd:a5:83:
99:8a:a4:7d:9a:89:19:8a:b2:ac:e1:94:16:07:a6:
b7:8a:15:55:26:8a:0c:f8:fa:f1:e7:9d:95:3e:ac:
ac:db:55:9a:5b:cc:d3:1c:79:44:d9:b9:08:00:96:
b7:88:81:bb:bc:a1:74:0b:81:8c:9b:2a:e0:e9:83:
65:10:cb:6c:44:75:12:36:1a:68:c9:f3:65:13:cf:
7e:44:e1:75:e1:6c:01:43:a1:e0:e4:a9:b3:83:21:
1e:9f:54:d8:4a:c4:17:33:10:cb:c8:e9:97:8f:8f:
69:8a:29:1a:82:54:ce:f3:93:10:e5:c8:b7:94:b0:
51:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:C2:8F:E5:90:8C:A2:6B:32:B4:2B:AF:F5:35:A9:79:7E:FB:98:F6
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/a8KP5ZCMomsytCuv9TWpeX77mPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.128.0/20
5.83.151.0/24
5.83.157.0/24
5.175.128.0/17
5.230.0.0/15
77.90.0.0/18
83.243.80.0/21
85.93.0.0/19
85.118.160.0/21
87.239.128.0/21
89.106.64.0/19
89.144.0.0/18
94.103.160.0/20
94.249.128.0/17
95.215.32.0/22
178.18.144.0/20
185.13.156.0/22
185.47.140.0/23
185.121.71.0/24
193.28.251.0/24
195.110.14.0/23
217.69.160.0/20
IPv6:
2a00:12d8::/29
2a00:19d0::/29
2a00:cdc0::/32
2a01:bd40::/29
2a02:7a0::/29
2a02:2fc0::/29
Signature Algorithm: sha256WithRSAEncryption
47:87:a9:3e:ca:5a:44:c9:36:af:74:81:56:fc:0d:f9:29:61:
f6:fa:88:b2:41:fb:b6:bd:97:96:f2:0d:7b:95:e9:49:69:d8:
45:35:c1:bd:64:58:9b:01:f3:b4:e3:ab:2f:04:ad:71:8a:81:
e4:e0:2e:6b:16:52:d8:5f:cf:5a:00:b4:7c:2b:56:37:af:48:
46:e8:40:a5:2c:c0:d7:a8:fb:44:8e:e5:b7:5e:3a:99:7a:c0:
30:d9:1d:0c:ad:14:72:0b:13:d4:3b:21:6c:b1:4a:6f:3d:f4:
88:55:52:ff:2a:f5:44:63:d0:6e:fd:68:0b:87:45:aa:bd:d0:
d2:c7:b2:d4:57:2f:cf:80:68:a0:c2:84:e8:e2:c0:46:3f:c2:
2d:bb:0b:5a:2f:ec:ab:48:a4:10:27:5c:88:70:da:68:0f:39:
9a:91:d2:7c:08:54:40:a0:e1:15:d1:08:32:7b:ad:7b:06:7c:
3b:78:4c:d9:3a:7f:85:2f:75:0f:83:5e:9f:bb:0b:b1:f0:dd:
3f:77:c8:3d:3f:96:b5:78:22:ca:55:d3:bf:4e:bd:52:37:03:
0b:cd:fa:47:ed:db:a6:4d:bb:8e:70:25:40:27:23:5b:f5:4f:
6c:fe:80:9b:8c:1a:17:0b:27:6c:9b:1a:00:7a:9f:8c:1c:80:
b8:9d:72:29
-----BEGIN CERTIFICATE-----
MIIFsTCCBJmgAwIBAgISAZBKaonXaekP9tImdFD/EgdIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjQwNjI0MTMyMzM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YmMyOGZlNTkwOGNhMjZiMzJiNDJiYWZmNTM1YTk3OTdlZmI5OGY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4CcZqcnMRphcmSv01zRFNJptt4pb
dhb9Lk24uvoAQhZ4jRwyN25+FROeoyJbk/X0MvDhtYPr5c9aIGCzXV9vz+1kHZsl
aAXrZQTYAdOG0r8xt/C756gkQSnD+OTcg7+tUkz82m5tSIQJNEzWST0LzyMaoXSk
5xLhoff/7SpQsdWvNe/NpYOZiqR9mokZirKs4ZQWB6a3ihVVJooM+Prx552VPqys
21WaW8zTHHlE2bkIAJa3iIG7vKF0C4GMmyrg6YNlEMtsRHUSNhpoyfNlE89+ROF1
4WwBQ6Hg5KmzgyEen1TYSsQXMxDLyOmXj49piikaglTO85MQ5ci3lLBRnQIDAQAB
o4ICvTCCArkwHQYDVR0OBBYEFGvCj+WQjKJrMrQrr/U1qXl++5j2MB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvYThLUDVaQ01vbXN5dEN1djlUV3BlWDc3bVBZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHSBggrBgEFBQcBBwEB/wSBwjCBvzCBigQCAAEwgYMDBAQF
U4ADBAAFU5cDBAAFU50DBAcFr4ADAwEF5gMEBk1aAAMEA1PzUAMEBVVdAAMEA1V2
oAMEA1fvgAMEBVlqQAMEBlmQAAMEBF5noAMEB175gAMEAl/XIAMEBLISkAMEArkN
nAMEAbkvjAMEALl5RwMEAMEc+wMEAcNuDgMEBNlFoDAwBAIAAjAqAwUDKgAS2AMF
AyoAGdADBQAqAM3AAwUDKgG9QAMFAyoCB6ADBQMqAi/AMA0GCSqGSIb3DQEBCwUA
A4IBAQBHh6k+ylpEyTavdIFW/A35KWH2+oiyQfu2vZeW8g17lelJadhFNcG9ZFib
AfO046svBK1xioHk4C5rFlLYX89aALR8K1Y3r0hG6EClLMDXqPtEjuW3XjqZesAw
2R0MrRRyCxPUOyFssUpvPfSIVVL/KvVEY9Bu/WgLh0WqvdDSx7LUVy/PgGigwoTo
4sBGP8ItuwtaL+yrSKQQJ1yIcNpoDzmakdJ8CFRAoOEV0Qgye617Bnw7eEzZOn+F
L3UPg16fuwux8N0/d8g9P5a1eCLKVdO/Tr1SNwMLzfpH7dumTbuOcCVAJyNb9U9s
/oCbjBoXCydsmxoAep+MHIC4nXIp
-----END CERTIFICATE-----
Generated at Thu Jul 4 11:18:42 2024 by rpki-client on console-fra.rpki-client.org