Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/iLwvhKbIAjtXupu74Zbkgq8OL1w.roa
File: iLwvhKbIAjtXupu74Zbkgq8OL1w.roa (raw, json)
Hash identifier: 70qrtjnvawyeQ2Zk1fDKBkU+RKp+6xgi1IPXhOjY0LY=
Subject key identifier: 88:BC:2F:84:A6:C8:02:3B:57:BA:9B:BB:E1:96:E4:82:AF:0E:2F:5C
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018CC94E4317872B5AF503B56C1338A9CC10
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/iLwvhKbIAjtXupu74Zbkgq8OL1w.roa
Signing time: Tue 02 Jan 2024 08:33:18 +0000
ROA not before: Tue 02 Jan 2024 08:33:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213250
IP address blocks: 45.89.124.0/23 maxlen: 23
45.89.126.0/23 maxlen: 23
212.87.212.0/23 maxlen: 23
45.133.74.0/24 maxlen: 24
45.13.224.0/23 maxlen: 23
109.71.252.0/24 maxlen: 24
5.182.206.0/23 maxlen: 23
5.182.204.0/23 maxlen: 23
45.11.229.0/24 maxlen: 24
45.131.64.0/24 maxlen: 24
45.86.155.0/24 maxlen: 24
45.131.66.0/23 maxlen: 23
37.221.93.0/24 maxlen: 24
194.15.36.0/24 maxlen: 24
5.253.247.0/24 maxlen: 24
2.56.245.0/24 maxlen: 24
5.252.103.0/24 maxlen: 24
5.252.100.0/22 maxlen: 22
5.252.100.0/24 maxlen: 24
5.252.101.0/24 maxlen: 24
5.252.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Aug 2024 07:58:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:43:17:87:2b:5a:f5:03:b5:6c:13:38:a9:cc:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 2 08:33:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=88bc2f84a6c8023b57ba9bbbe196e482af0e2f5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d3:72:1a:3e:b5:f5:87:ba:ea:4e:e8:ef:ad:
66:5a:81:75:1b:80:4b:f9:9e:0c:87:2f:37:99:8a:
08:44:1a:ee:fb:c8:b3:ee:fc:60:c8:ea:ad:e6:7b:
9c:f2:d4:92:76:cc:0e:05:41:84:d9:46:f8:c6:10:
1d:50:ae:a2:1f:c1:8c:83:a5:63:18:71:87:94:8c:
91:71:09:e0:13:19:f5:ad:1e:b4:c2:25:17:71:6e:
f3:e7:94:8f:96:f8:80:31:1a:73:b9:9d:09:2f:c9:
25:1f:91:22:2a:e7:d2:b4:f6:17:f1:1d:1c:56:ab:
f2:43:a2:60:f5:ed:fa:6e:39:f1:2c:98:5d:91:14:
e0:9c:39:d2:b0:ab:4b:37:9e:6d:6e:9e:d3:aa:e5:
ac:b6:66:5c:b9:26:c0:7b:27:e9:2d:40:a3:20:1b:
d9:24:4f:c5:ce:d1:99:5d:e6:99:24:5e:69:ad:79:
62:5e:ff:de:88:2d:fc:00:6b:88:74:3c:fe:d1:70:
24:c4:a2:c1:92:9c:a5:c6:cb:65:ba:0c:94:68:bb:
6d:ad:dc:26:c5:69:95:2b:bf:34:66:dc:d2:23:dd:
7c:78:cd:7a:14:c8:76:fb:56:cb:ba:0d:c1:a4:62:
fa:94:08:23:5b:59:72:8a:a8:4f:9a:74:f3:7e:fd:
67:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:BC:2F:84:A6:C8:02:3B:57:BA:9B:BB:E1:96:E4:82:AF:0E:2F:5C
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/iLwvhKbIAjtXupu74Zbkgq8OL1w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.245.0/24
5.182.204.0/22
5.252.100.0/22
5.253.247.0/24
37.221.93.0/24
45.11.229.0/24
45.13.224.0/23
45.86.155.0/24
45.89.124.0/22
45.131.64.0/24
45.131.66.0/23
45.133.74.0/24
109.71.252.0/24
194.15.36.0/24
212.87.212.0/23
Signature Algorithm: sha256WithRSAEncryption
01:2b:95:3b:cf:e7:3c:f1:81:29:18:79:b1:85:0a:65:80:76:
d0:6b:dd:bb:cc:8f:e5:7d:ff:54:a2:b9:59:86:59:5b:a9:4d:
f2:93:2c:19:7f:78:06:8d:f3:a9:26:8b:26:79:5c:eb:fe:f2:
ab:49:0c:67:67:db:41:99:3e:97:cf:ec:ee:88:d4:3a:85:4c:
63:64:cf:22:06:b2:71:7b:c7:a7:e7:0c:a2:21:3b:bf:e8:82:
a4:5c:57:2a:51:ce:a7:4a:af:f6:a5:86:19:df:e5:48:52:36:
97:a1:d3:46:55:be:99:40:86:95:46:33:69:b6:84:eb:7d:e5:
cc:c4:1e:53:3c:9e:48:8c:e9:eb:0d:ff:27:52:1a:3b:76:de:
6d:55:43:ca:a0:7a:07:3e:aa:bd:d0:a9:89:3f:9b:3b:0e:da:
6c:65:02:f0:73:7b:30:32:be:dc:88:d1:0b:f1:4d:b8:03:46:
70:f9:ba:a8:a5:c6:80:d7:4e:e6:be:f4:f5:1a:bb:e8:72:5d:
31:a2:3c:07:40:3e:04:ac:1c:46:5b:3d:e0:74:ee:fa:ed:d7:
70:be:7f:59:12:7d:71:2d:9b:77:9b:12:d2:10:9e:21:8f:d5:
14:8e:fc:57:b8:39:9c:56:73:82:12:fb:65:2e:67:84:58:67:
cb:4c:ab:6e
-----BEGIN CERTIFICATE-----
MIIFUTCCBDmgAwIBAgISAYzJTkMXhyta9QO1bBM4qcwQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3
NTJmZGUwHhcNMjQwMTAyMDgzMzE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OGJjMmY4NGE2YzgwMjNiNTdiYTliYmJlMTk2ZTQ4MmFmMGUyZjVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl9NyGj619Ye66k7o761mWoF1G4BL
+Z4Mhy83mYoIRBru+8iz7vxgyOqt5nuc8tSSdswOBUGE2Ub4xhAdUK6iH8GMg6Vj
GHGHlIyRcQngExn1rR60wiUXcW7z55SPlviAMRpzuZ0JL8klH5EiKufStPYX8R0c
VqvyQ6Jg9e36bjnxLJhdkRTgnDnSsKtLN55tbp7TquWstmZcuSbAeyfpLUCjIBvZ
JE/FztGZXeaZJF5prXliXv/eiC38AGuIdDz+0XAkxKLBkpylxstlugyUaLttrdwm
xWmVK780ZtzSI918eM16FMh2+1bLug3BpGL6lAgjW1lyiqhPmnTzfv1nEQIDAQAB
o4ICXTCCAlkwHQYDVR0OBBYEFIi8L4SmyAI7V7qbu+GW5IKvDi9cMB8GA1UdIwQY
MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt
YTNjYTBkYjgzMjU0LzEvaUx3dmhLYklBanRYdXB1NzRaYmtncThPTDF3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0
LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHMGCCsGAQUFBwEHAQH/BGQwYjBgBAIAATBaAwQAAjj1AwQC
BbbMAwQCBfxkAwQABf33AwQAJd1dAwQALQvlAwQBLQ3gAwQALVabAwQCLVl8AwQA
LYNAAwQBLYNCAwQALYVKAwQAbUf8AwQAwg8kAwQB1FfUMA0GCSqGSIb3DQEBCwUA
A4IBAQABK5U7z+c88YEpGHmxhQplgHbQa927zI/lff9UorlZhllbqU3ykywZf3gG
jfOpJosmeVzr/vKrSQxnZ9tBmT6Xz+zuiNQ6hUxjZM8iBrJxe8en5wyiITu/6IKk
XFcqUc6nSq/2pYYZ3+VIUjaXodNGVb6ZQIaVRjNptoTrfeXMxB5TPJ5IjOnrDf8n
Uho7dt5tVUPKoHoHPqq90KmJP5s7DtpsZQLwc3swMr7ciNEL8U24A0Zw+bqopcaA
107mvvT1Grvocl0xojwHQD4ErBxGWz3gdO767ddwvn9ZEn1xLZt3mxLSEJ4hj9UU
jvxXuDmcVnOCEvtlLmeEWGfLTKtu
-----END CERTIFICATE-----
Generated at Fri Aug 23 12:55:03 2024 by rpki-client on console-ams.rpki-client.org