Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Egr-us9oiVAmqgi0Up2iJfHb0xk.roa
File: Egr-us9oiVAmqgi0Up2iJfHb0xk.roa (raw, json)
Hash identifier: UcJ1ygiHAEPB7doCWDaFZ8UU9J0jtnh/wmeWuucvYMY=
Subject key identifier: 12:0A:FE:BA:CF:68:89:50:26:AA:08:B4:52:9D:A2:25:F1:DB:D3:19
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 0190A69B009B9118E0AAF08359104D733DF5
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Egr-us9oiVAmqgi0Up2iJfHb0xk.roa
Signing time: Fri 12 Jul 2024 11:01:34 +0000
ROA not before: Fri 12 Jul 2024 11:01:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 5.181.84.0/24 maxlen: 24
5.181.85.0/24 maxlen: 24
45.94.170.0/24 maxlen: 24
91.223.110.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Jul 2024 12:15:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a6:9b:00:9b:91:18:e0:aa:f0:83:59:10:4d:73:3d:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jul 12 11:01:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=120afebacf68895026aa08b4529da225f1dbd319
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:4b:85:bf:87:b7:54:a2:4a:fe:19:33:25:66:
19:f6:8a:9b:18:be:72:d0:7c:37:72:d3:0f:cc:22:
13:eb:3c:a4:cf:2a:1f:e7:b8:b0:1c:6b:c5:f3:da:
7a:5d:ca:a3:72:5a:91:fc:de:9a:cc:5f:28:0f:11:
c1:3c:73:ca:0a:ff:c1:0c:b1:99:1a:2b:a8:fc:81:
5f:af:8d:83:c2:68:c4:9c:6d:7f:66:c2:1c:41:90:
6e:17:78:b9:1b:e7:67:1c:be:ab:16:ca:2f:85:72:
c9:b7:68:ca:38:82:2c:16:93:45:c6:f3:e6:aa:59:
14:a6:c0:2e:aa:e7:c9:f7:bd:07:80:e7:f5:e4:ca:
1f:48:10:72:d0:bb:8b:a5:01:6b:ed:46:71:ff:78:
92:32:b4:86:85:65:cf:2d:f6:b8:e4:ae:89:79:9f:
33:41:c2:0b:3f:40:35:bf:19:bf:be:0d:12:c2:f2:
48:5a:c9:38:72:bb:eb:13:15:c0:3a:4b:b9:4d:69:
84:f8:48:3d:7b:00:04:e7:23:5c:93:cd:c0:24:94:
38:3e:49:37:a3:64:08:d3:68:14:f5:d8:91:37:54:
5b:82:7e:16:00:f9:ce:c4:2d:80:bb:d0:04:9d:ee:
54:28:91:f9:87:53:c3:c3:e9:be:08:7b:ce:2e:b7:
29:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:0A:FE:BA:CF:68:89:50:26:AA:08:B4:52:9D:A2:25:F1:DB:D3:19
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Egr-us9oiVAmqgi0Up2iJfHb0xk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.84.0/23
45.94.170.0/24
91.223.110.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:9d:53:7d:6a:1a:fc:79:bb:ca:62:cd:cc:be:37:29:ef:52:
ce:9e:45:6b:1b:4a:f9:d7:a2:14:a3:94:66:0b:8c:de:e5:62:
e9:46:f8:3d:98:56:24:bb:33:91:a7:42:24:54:bc:17:56:41:
4a:6a:d8:37:2d:6c:58:5f:14:27:78:b5:89:bb:15:34:4a:d7:
e4:88:8f:2b:55:ab:b2:e6:a8:54:cd:ff:50:79:cc:c1:83:1b:
3d:14:88:d3:51:8d:33:d8:2e:4f:8d:52:0f:5d:95:90:5b:25:
f6:46:1e:43:1f:35:5f:85:06:bc:4e:ee:ad:f3:00:61:d6:82:
28:6e:b3:be:5d:62:21:4c:07:14:f4:6f:8a:23:97:0c:fe:83:
d0:72:a5:78:b1:82:50:4b:cc:e9:23:d7:d8:74:64:79:05:9e:
9d:1a:6d:6c:13:07:8d:20:16:be:b0:a6:e4:29:32:67:3a:eb:
5e:1e:f5:e7:7d:d8:20:cf:74:ef:b7:3e:23:fe:66:a9:e7:58:
ec:72:be:08:ca:e3:de:51:6e:de:35:0d:6c:29:bc:e6:8c:a6:
eb:a8:6e:ba:2a:c0:d6:63:d1:59:fd:ee:83:a3:b3:99:73:1d:
31:ed:ff:df:6b:93:b7:06:12:34:1f:ab:fa:2b:1c:de:4c:61:
54:1c:27:b5
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZCmmwCbkRjgqvCDWRBNcz31MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMmE0NzhiYjBiMDhlNjYxYjBiMmY5ZmJlODkzNWJjOWMy
YTI4YTEwHhcNMjQwNzEyMTEwMTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMjBhZmViYWNmNjg4OTUwMjZhYTA4YjQ1MjlkYTIyNWYxZGJkMzE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl0uFv4e3VKJK/hkzJWYZ9oqbGL5y
0Hw3ctMPzCIT6zykzyof57iwHGvF89p6XcqjclqR/N6azF8oDxHBPHPKCv/BDLGZ
Giuo/IFfr42DwmjEnG1/ZsIcQZBuF3i5G+dnHL6rFsovhXLJt2jKOIIsFpNFxvPm
qlkUpsAuqufJ970HgOf15MofSBBy0LuLpQFr7UZx/3iSMrSGhWXPLfa45K6JeZ8z
QcILP0A1vxm/vg0SwvJIWsk4crvrExXAOku5TWmE+Eg9ewAE5yNck83AJJQ4Pkk3
o2QI02gU9diRN1Rbgn4WAPnOxC2Au9AEne5UKJH5h1PDw+m+CHvOLrcpowIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFBIK/rrPaIlQJqoItFKdoiXx29MZMB8GA1UdIwQY
MBaAFJ0qR4uwsI5mGwsvn76JNbycKiihMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMt
ZWVmMzUxMWY2YzYwLzEvRWdyLXVzOW9pVkFtcWdpMFVwMmlKZkhiMHhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMtZWVmMzUxMWY2YzYw
LzEvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBBbVUAwQA
LV6qAwQAW99uMA0GCSqGSIb3DQEBCwUAA4IBAQC7nVN9ahr8ebvKYs3Mvjcp71LO
nkVrG0r516IUo5RmC4ze5WLpRvg9mFYkuzORp0IkVLwXVkFKatg3LWxYXxQneLWJ
uxU0StfkiI8rVauy5qhUzf9QeczBgxs9FIjTUY0z2C5PjVIPXZWQWyX2Rh5DHzVf
hQa8Tu6t8wBh1oIobrO+XWIhTAcU9G+KI5cM/oPQcqV4sYJQS8zpI9fYdGR5BZ6d
Gm1sEweNIBa+sKbkKTJnOuteHvXnfdggz3Tvtz4j/map51jscr4IyuPeUW7eNQ1s
KbzmjKbrqG66KsDWY9FZ/e6Do7OZcx0x7f/fa5O3BhI0H6v6KxzeTGFUHCe1
-----END CERTIFICATE-----
Generated at Tue Jul 23 14:46:33 2024 by rpki-client on console-ams.rpki-client.org