Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/B_zovWm04hh2dy9cg6VQax-WrCo.roa
File: B_zovWm04hh2dy9cg6VQax-WrCo.roa (raw, json)
Hash identifier: GhoZZWCVXDMLsWlpUKjAIpSPbmRg+FFNtp9v2f0CNpE=
Subject key identifier: 07:FC:E8:BD:69:B4:E2:18:76:77:2F:5C:83:A5:50:6B:1F:96:AC:2A
Certificate issuer: /CN=bda96d02a822f46253c2aee680441d5ac27c3df5
Certificate serial: 018CC79587560F4F0DF26DC1836DE213B3EA
Authority key identifier: BD:A9:6D:02:A8:22:F4:62:53:C2:AE:E6:80:44:1D:5A:C2:7C:3D:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/valtAqgi9GJTwq7mgEQdWsJ8PfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/B_zovWm04hh2dy9cg6VQax-WrCo.roa
Signing time: Tue 02 Jan 2024 00:31:54 +0000
ROA not before: Tue 02 Jan 2024 00:31:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44574
IP address blocks: 95.172.224.0/19 maxlen: 24
37.252.32.0/19 maxlen: 24
31.13.0.0/21 maxlen: 24
212.105.160.0/19 maxlen: 24
5.153.96.0/21 maxlen: 24
185.196.80.0/22 maxlen: 24
141.138.224.0/19 maxlen: 24
159.20.32.0/19 maxlen: 24
5.153.192.0/19 maxlen: 24
91.199.78.0/24 maxlen: 24
31.12.96.0/19 maxlen: 24
151.249.0.0/18 maxlen: 24
93.121.0.0/17 maxlen: 24
2001:67c:2544::/48 maxlen: 48
2a00:10e8::/29 maxlen: 48
Validation: Failed, certificate revoked on Wed 21 Feb 2024 14:02:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:87:56:0f:4f:0d:f2:6d:c1:83:6d:e2:13:b3:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bda96d02a822f46253c2aee680441d5ac27c3df5
Validity
Not Before: Jan 2 00:31:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=07fce8bd69b4e21876772f5c83a5506b1f96ac2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:73:33:09:71:34:f5:c0:74:e2:5b:93:df:45:
52:75:42:12:d6:ea:ea:ee:24:6d:61:6c:ba:44:7f:
5e:f0:c1:21:69:d2:cb:16:e3:83:ea:03:7b:e9:77:
c2:39:86:bf:08:91:01:fc:d3:09:ed:5b:20:5d:17:
24:94:f3:1c:97:5d:55:22:93:c2:9e:fc:2b:9e:46:
df:91:3b:71:19:cb:7a:a5:60:4e:ff:09:e9:a1:23:
f3:f5:82:93:03:93:81:67:16:e6:59:de:84:00:cb:
c5:6a:b5:cb:90:45:11:d9:15:c2:a0:2b:09:4b:c2:
2f:5e:01:88:cb:cf:32:5f:b4:42:48:26:64:6a:6a:
91:72:6e:1a:3a:7d:2e:4c:3a:ba:f0:0b:28:f7:43:
54:98:ec:a3:22:bd:6e:e0:ba:dc:a7:f0:2f:c1:00:
87:93:43:93:60:97:a8:de:f3:b7:cd:0b:8e:bd:4b:
c8:05:01:0a:15:ae:9f:21:64:04:1a:d8:bf:66:fb:
ed:58:88:5b:f7:62:fd:6b:d9:dd:8b:a3:87:17:9b:
51:db:bb:e2:6e:8e:08:b2:ef:5c:36:b7:7f:26:83:
a5:98:cf:3b:7d:1e:fe:ea:a4:e4:bb:5b:5e:5e:80:
7d:22:38:dc:09:01:11:f0:ae:75:25:23:c8:9f:8c:
fa:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:FC:E8:BD:69:B4:E2:18:76:77:2F:5C:83:A5:50:6B:1F:96:AC:2A
X509v3 Authority Key Identifier:
keyid:BD:A9:6D:02:A8:22:F4:62:53:C2:AE:E6:80:44:1D:5A:C2:7C:3D:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/valtAqgi9GJTwq7mgEQdWsJ8PfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/B_zovWm04hh2dy9cg6VQax-WrCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/valtAqgi9GJTwq7mgEQdWsJ8PfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.153.96.0/21
5.153.192.0/19
31.12.96.0/19
31.13.0.0/21
37.252.32.0/19
91.199.78.0/24
93.121.0.0/17
95.172.224.0/19
141.138.224.0/19
151.249.0.0/18
159.20.32.0/19
185.196.80.0/22
212.105.160.0/19
IPv6:
2001:67c:2544::/48
2a00:10e8::/29
Signature Algorithm: sha256WithRSAEncryption
57:79:1e:62:e8:f4:a4:c8:d9:b3:da:b6:23:21:93:3a:c5:2d:
a4:36:68:7f:87:17:31:8e:88:fd:6f:7d:3c:01:7f:c7:bd:57:
ad:1e:29:cc:bc:95:23:9a:1d:b8:5d:e3:c1:73:99:8a:c0:57:
e1:ae:50:b2:3c:9b:82:95:f6:b7:e2:e7:14:d4:4e:f1:fd:a2:
bd:e8:31:4c:fe:d1:2a:f9:c4:71:70:42:98:c5:23:7b:d6:eb:
f4:0d:a4:8e:b2:aa:fc:ac:65:ed:6d:37:94:ed:a7:c3:c7:4c:
88:9a:42:95:8b:14:4a:f4:55:e6:e6:0f:d6:95:03:b5:7d:d7:
13:8f:5b:e2:54:a9:0d:10:ba:8f:13:61:44:85:31:e2:10:8d:
05:98:c1:e5:e6:93:97:16:a4:33:fe:22:ab:e7:b7:b4:80:b9:
df:5b:81:86:6d:16:af:9d:d0:cb:b2:e3:8b:94:40:15:e5:50:
77:5c:59:19:89:34:4a:90:5f:d4:ee:4c:d4:f1:1c:0e:11:74:
9a:d0:ae:ce:46:8f:dd:0a:0c:2a:05:23:b0:63:79:2d:44:47:
39:5a:79:9c:2a:5e:c7:16:a2:37:7d:4d:7a:a1:85:27:8c:92:
cb:9f:34:cc:0b:32:15:0a:d8:3d:14:bf:07:cb:8d:21:c1:81:
ce:c2:34:ea
-----BEGIN CERTIFICATE-----
MIIFXTCCBEWgAwIBAgISAYzHlYdWD08N8m3Bg23iE7PqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkYTk2ZDAyYTgyMmY0NjI1M2MyYWVlNjgwNDQxZDVhYzI3
YzNkZjUwHhcNMjQwMTAyMDAzMTU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwN2ZjZThiZDY5YjRlMjE4NzY3NzJmNWM4M2E1NTA2YjFmOTZhYzJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhHMzCXE09cB04luT30VSdUIS1urq
7iRtYWy6RH9e8MEhadLLFuOD6gN76XfCOYa/CJEB/NMJ7VsgXRcklPMcl11VIpPC
nvwrnkbfkTtxGct6pWBO/wnpoSPz9YKTA5OBZxbmWd6EAMvFarXLkEUR2RXCoCsJ
S8IvXgGIy88yX7RCSCZkamqRcm4aOn0uTDq68Aso90NUmOyjIr1u4Lrcp/AvwQCH
k0OTYJeo3vO3zQuOvUvIBQEKFa6fIWQEGti/ZvvtWIhb92L9a9ndi6OHF5tR27vi
bo4Isu9cNrd/JoOlmM87fR7+6qTku1teXoB9IjjcCQER8K51JSPIn4z6cQIDAQAB
o4ICaTCCAmUwHQYDVR0OBBYEFAf86L1ptOIYdncvXIOlUGsflqwqMB8GA1UdIwQY
MBaAFL2pbQKoIvRiU8Ku5oBEHVrCfD31MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmFsdEFxZ2k5R0pUd3E3bWdFUWRXc0o4UGZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi9hMjdiMzktODAxMS00MTQyLTg2YzIt
Y2Y4M2Q2ZTQwNTU4LzEvQl96b3ZXbTA0aGgyZHk5Y2c2VlFheC1XckNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi9hMjdiMzktODAxMS00MTQyLTg2YzItY2Y4M2Q2ZTQwNTU4
LzEvdmFsdEFxZ2k5R0pUd3E3bWdFUWRXc0o4UGZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH8GCCsGAQUFBwEHAQH/BHAwbjBUBAIAATBOAwQDBZlgAwQF
BZnAAwQFHwxgAwQDHw0AAwQFJfwgAwQAW8dOAwQHXXkAAwQFX6zgAwQFjYrgAwQG
l/kAAwQFnxQgAwQCucRQAwQF1GmgMBYEAgACMBADBwAgAQZ8JUQDBQMqABDoMA0G
CSqGSIb3DQEBCwUAA4IBAQBXeR5i6PSkyNmz2rYjIZM6xS2kNmh/hxcxjoj9b308
AX/HvVetHinMvJUjmh24XePBc5mKwFfhrlCyPJuClfa34ucU1E7x/aK96DFM/tEq
+cRxcEKYxSN71uv0DaSOsqr8rGXtbTeU7afDx0yImkKVixRK9FXm5g/WlQO1fdcT
j1viVKkNELqPE2FEhTHiEI0FmMHl5pOXFqQz/iKr57e0gLnfW4GGbRavndDLsuOL
lEAV5VB3XFkZiTRKkF/U7kzU8RwOEXSa0K7ORo/dCgwqBSOwY3ktREc5WnmcKl7H
FqI3fU16oYUnjJLLnzTMCzIVCtg9FL8Hy40hwYHOwjTq
-----END CERTIFICATE-----
Generated at Wed Feb 21 19:06:51 2024 by rpki-client on console-ams.rpki-client.org