Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/DVMg9AW5GI5rqZnArrq03OOZTpw.roa
File: DVMg9AW5GI5rqZnArrq03OOZTpw.roa (raw, json)
Hash identifier: PUpBMFp7hXPQ0QQ1zY4P1FJ2HLHNjvKhi7pWR7fIddA=
Subject key identifier: 0D:53:20:F4:05:B9:18:8E:6B:A9:99:C0:AE:BA:B4:DC:E3:99:4E:9C
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 019151B7B5A8217AF3AB567925D81E2690D9
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/DVMg9AW5GI5rqZnArrq03OOZTpw.roa
Signing time: Wed 14 Aug 2024 16:27:59 +0000
ROA not before: Wed 14 Aug 2024 16:27:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7489
IP address blocks: 2.56.164.0/22 maxlen: 24
45.81.20.0/22 maxlen: 24
45.90.144.0/22 maxlen: 24
45.140.220.0/22 maxlen: 24
45.154.196.0/22 maxlen: 24
77.83.240.0/22 maxlen: 24
77.83.243.0/24 maxlen: 24
78.108.216.0/22 maxlen: 24
78.108.217.0/24 maxlen: 24
83.143.116.0/22 maxlen: 24
83.143.116.0/24 maxlen: 24
85.202.160.0/22 maxlen: 24
89.190.156.0/22 maxlen: 24
178.218.144.0/22 maxlen: 24
185.185.40.0/22 maxlen: 24
185.186.64.0/22 maxlen: 24
185.227.68.0/22 maxlen: 24
185.227.71.0/24 maxlen: 24
185.234.72.0/22 maxlen: 24
185.242.224.0/22 maxlen: 24
185.242.225.0/24 maxlen: 24
193.31.28.0/22 maxlen: 24
193.31.30.0/24 maxlen: 24
193.34.76.0/22 maxlen: 24
193.34.77.0/24 maxlen: 24
193.105.184.0/24 maxlen: 24
193.105.207.0/24 maxlen: 24
193.221.192.0/22 maxlen: 24
194.31.141.0/24 maxlen: 24
194.50.16.0/22 maxlen: 24
194.56.224.0/22 maxlen: 24
194.56.226.0/24 maxlen: 24
212.107.12.0/22 maxlen: 24
212.107.14.0/24 maxlen: 24
2a0b:b82::/44 maxlen: 44
2a0b:b84::/32 maxlen: 32
2a0b:b85::/32 maxlen: 32
2a0b:b86::/40 maxlen: 48
2a0b:b87:ff12::/48 maxlen: 48
2a0b:b87:ffb4::/48 maxlen: 48
2a0b:b87:ffda::/48 maxlen: 48
2a0b:b87:ffec::/48 maxlen: 48
2a0b:b87:fff0::/44 maxlen: 44
2a0b:7080:10::/44 maxlen: 44
2a0b:7080:10::/45 maxlen: 45
2a0b:7080:10::/48 maxlen: 48
2a0b:7080:20::/44 maxlen: 48
2a0b:7080:20::/48 maxlen: 48
2a0b:7080:30::/44 maxlen: 48
2a0d:77c0::/29 maxlen: 32
Validation: Failed, certificate revoked on Mon 02 Sep 2024 13:37:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:51:b7:b5:a8:21:7a:f3:ab:56:79:25:d8:1e:26:90:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Aug 14 16:27:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0d5320f405b9188e6ba999c0aebab4dce3994e9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:0b:b1:ef:1b:08:8c:8b:c9:36:e3:ab:e6:5c:
0b:91:f2:38:30:ae:24:58:92:ad:43:1e:49:d0:3d:
18:61:d7:34:3d:e6:19:3d:4c:6c:54:aa:12:c0:3e:
4c:c7:21:fb:b1:39:00:8e:0f:e0:9c:c2:25:5c:ea:
eb:bc:19:3b:8f:b0:2c:84:c5:10:ae:52:24:0c:fa:
98:33:45:ce:55:11:90:c7:cb:2a:4d:88:fb:64:f3:
b8:16:ef:5b:60:c9:c8:6d:2f:81:a4:9f:ae:83:3e:
d0:79:29:f4:4b:f5:93:4d:31:c4:12:76:1c:91:69:
80:01:8d:e9:ca:fb:2b:ef:02:b8:ce:a1:77:f0:a8:
74:db:34:e7:d9:9e:90:66:3d:f9:1e:f2:76:b0:4f:
38:57:bd:a3:e6:bd:fb:80:b6:99:a8:3e:79:65:0d:
60:36:de:3d:27:a2:e3:ab:df:6d:ee:f1:3d:35:f6:
22:3a:a5:3b:58:19:89:d9:66:9f:1c:03:56:6b:a9:
df:1d:2b:87:00:e5:9a:28:8e:67:ee:ca:57:29:15:
ef:b2:ab:b6:78:8a:8d:0f:8c:1f:e9:2f:0d:41:40:
87:e0:32:41:1b:c4:c0:5f:4f:55:dc:bd:91:42:25:
02:a6:08:e0:9a:bc:f9:2f:e0:f4:02:6f:6a:66:59:
c3:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:53:20:F4:05:B9:18:8E:6B:A9:99:C0:AE:BA:B4:DC:E3:99:4E:9C
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/DVMg9AW5GI5rqZnArrq03OOZTpw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.164.0/22
45.81.20.0/22
45.90.144.0/22
45.140.220.0/22
45.154.196.0/22
77.83.240.0/22
78.108.216.0/22
83.143.116.0/22
85.202.160.0/22
89.190.156.0/22
178.218.144.0/22
185.185.40.0/22
185.186.64.0/22
185.227.68.0/22
185.234.72.0/22
185.242.224.0/22
193.31.28.0/22
193.34.76.0/22
193.105.184.0/24
193.105.207.0/24
193.221.192.0/22
194.31.141.0/24
194.50.16.0/22
194.56.224.0/22
212.107.12.0/22
IPv6:
2a0b:b82::/44
2a0b:b84::-2a0b:b86:ff:ffff:ffff:ffff:ffff:ffff
2a0b:b87:ff12::/48
2a0b:b87:ffb4::/48
2a0b:b87:ffda::/48
2a0b:b87:ffec::/48
2a0b:b87:fff0::/44
2a0b:7080:10::-2a0b:7080:3f:ffff:ffff:ffff:ffff:ffff
2a0d:77c0::/29
Signature Algorithm: sha256WithRSAEncryption
9e:67:49:5a:11:ef:8c:34:ee:fd:3c:c5:00:65:20:f4:c5:fd:
7b:bb:60:21:21:56:72:46:b5:44:01:c0:c8:66:e7:55:75:61:
a3:8e:d3:e4:5f:a6:76:c0:13:c1:37:fa:81:64:67:9b:04:bf:
db:a0:32:41:3f:66:a5:0d:99:3c:45:49:36:c0:69:5d:62:e4:
ef:fd:98:98:34:46:76:ba:08:fc:27:eb:d4:e6:03:af:82:a4:
80:28:4d:ec:e3:8d:ea:02:e6:4f:eb:d9:8a:bb:91:4e:7a:5d:
bd:1c:a8:7c:1a:48:d7:7f:be:c6:52:36:43:c4:cf:dc:c0:ab:
d0:7d:6a:2e:28:ce:8a:70:80:a2:55:89:e4:fe:88:54:a7:5b:
ca:68:5b:ad:74:d3:00:03:46:fc:74:20:a0:59:52:6e:6a:a2:
05:55:97:93:56:6f:45:20:c9:c6:2e:23:0e:f0:d7:47:5c:6b:
e8:80:fa:13:32:3a:6c:87:82:6a:86:dc:9f:9c:94:0a:8c:e4:
cb:dd:0b:04:d1:7c:c8:12:a6:5c:3a:f2:3b:c9:33:e8:9d:29:
40:ee:1c:80:22:c9:db:23:63:f6:73:20:32:7b:d6:50:e0:b9:
d7:e6:4d:7b:8c:1c:af:37:9b:7c:b4:0b:69:a5:db:86:b7:e8:
9c:44:a4:0d
-----BEGIN CERTIFICATE-----
MIIF/zCCBOegAwIBAgISAZFRt7WoIXrzq1Z5JdgeJpDZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz
YjUwMzQwHhcNMjQwODE0MTYyNzU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZDUzMjBmNDA1YjkxODhlNmJhOTk5YzBhZWJhYjRkY2UzOTk0ZTljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4gux7xsIjIvJNuOr5lwLkfI4MK4k
WJKtQx5J0D0YYdc0PeYZPUxsVKoSwD5MxyH7sTkAjg/gnMIlXOrrvBk7j7AshMUQ
rlIkDPqYM0XOVRGQx8sqTYj7ZPO4Fu9bYMnIbS+BpJ+ugz7QeSn0S/WTTTHEEnYc
kWmAAY3pyvsr7wK4zqF38Kh02zTn2Z6QZj35HvJ2sE84V72j5r37gLaZqD55ZQ1g
Nt49J6Ljq99t7vE9NfYiOqU7WBmJ2WafHANWa6nfHSuHAOWaKI5n7spXKRXvsqu2
eIqND4wf6S8NQUCH4DJBG8TAX09V3L2RQiUCpgjgmrz5L+D0Am9qZlnDkQIDAQAB
o4IDCzCCAwcwHQYDVR0OBBYEFA1TIPQFuRiOa6mZwK66tNzjmU6cMB8GA1UdIwQY
MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It
Mzk0YWNkMjFmMzliLzEvRFZNZzlBVzVHSTVycVpuQXJycTAzT09aVHB3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli
LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBHwYIKwYBBQUHAQcBAf8EggEOMIIBCjCBnQQCAAEwgZYD
BAICOKQDBAItURQDBAItWpADBAItjNwDBAItmsQDBAJNU/ADBAJObNgDBAJTj3QD
BAJVyqADBAJZvpwDBAKy2pADBAK5uSgDBAK5ukADBAK540QDBAK56kgDBAK58uAD
BALBHxwDBALBIkwDBADBabgDBADBac8DBALB3cADBADCH40DBALCMhADBALCOOAD
BALUawwwaAQCAAIwYgMHBCoLC4IAADAPAwUCKgsLhAMGACoLC4YAAwcAKgsLh/8S
AwcAKgsLh/+0AwcAKgsLh//aAwcAKgsLh//sAwcEKgsLh//wMBIDBwQqC3CAABAD
BwYqC3CAAAADBQMqDXfAMA0GCSqGSIb3DQEBCwUAA4IBAQCeZ0laEe+MNO79PMUA
ZSD0xf17u2AhIVZyRrVEAcDIZudVdWGjjtPkX6Z2wBPBN/qBZGebBL/boDJBP2al
DZk8RUk2wGldYuTv/ZiYNEZ2ugj8J+vU5gOvgqSAKE3s443qAuZP69mKu5FOel29
HKh8GkjXf77GUjZDxM/cwKvQfWouKM6KcICiVYnk/ohUp1vKaFutdNMAA0b8dCCg
WVJuaqIFVZeTVm9FIMnGLiMO8NdHXGvogPoTMjpsh4JqhtyfnJQKjOTL3QsE0XzI
EqZcOvI7yTPonSlA7hyAIsnbI2P2cyAye9ZQ4LnX5k17jByvN5t8tAtppduGt+ic
RKQN
-----END CERTIFICATE-----
Generated at Mon Sep 2 17:08:25 2024 by rpki-client on console-fra.rpki-client.org