Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/v6K5TXCVsRUI5_4sCERIqwZtPfE.roa
File: v6K5TXCVsRUI5_4sCERIqwZtPfE.roa (raw, json)
Hash identifier: PDqzkY1jAdn289V0L8HtVF2kt1ZGOix2tgpe8qwesFM=
Subject key identifier: BF:A2:B9:4D:70:95:B1:15:08:E7:FE:2C:08:44:48:AB:06:6D:3D:F1
Certificate issuer: /CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Certificate serial: 018C5A0EC3E673EF1FBF807040A9B4A09735
Authority key identifier: 97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/v6K5TXCVsRUI5_4sCERIqwZtPfE.roa
Signing time: Mon 11 Dec 2023 18:06:06 +0000
ROA not before: Mon 11 Dec 2023 18:06:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47787
IP address blocks: 193.163.151.0/24 maxlen: 24
188.93.192.0/21 maxlen: 24
188.93.198.0/24 maxlen: 24
188.93.199.0/24 maxlen: 24
146.19.95.0/24 maxlen: 24
193.107.13.0/24 maxlen: 24
185.112.251.0/24 maxlen: 24
185.166.144.0/24 maxlen: 24
212.52.23.0/24 maxlen: 24
146.19.249.0/24 maxlen: 24
2a10:ee40::/29 maxlen: 29
2a0d:82c0::/29 maxlen: 48
2a11:c00::/29 maxlen: 48
2a0f:8900::/29 maxlen: 29
2a0d:82c7:9::/48 maxlen: 48
2a0e:5f00::/29 maxlen: 48
2a0b:e740::/29 maxlen: 29
2a0f:7700::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 11 Dec 2023 18:33:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5a:0e:c3:e6:73:ef:1f:bf:80:70:40:a9:b4:a0:97:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Validity
Not Before: Dec 11 18:06:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bfa2b94d7095b11508e7fe2c084448ab066d3df1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:17:d7:7c:cb:1d:d8:e9:d5:d9:91:c7:b6:35:
34:73:f3:38:0d:12:d8:a4:2f:cf:28:b3:4f:11:37:
b9:64:e5:4b:3d:0b:70:fd:96:50:82:58:17:65:81:
87:e9:2b:00:4e:b7:d2:a6:2f:bb:e8:f8:52:92:31:
ef:75:e9:38:77:25:aa:55:35:d8:8b:b1:a2:ed:d6:
8e:82:d5:94:b8:33:df:3d:d6:6b:95:ea:37:79:d0:
b4:d2:76:7d:43:52:e9:80:bb:c7:cf:90:af:88:ac:
1d:9b:9b:0f:61:b7:b7:e5:ca:60:71:47:9d:d9:2f:
7b:aa:f2:09:37:9a:b2:a6:3a:1a:33:c4:d4:25:a0:
3c:fe:41:49:66:8a:96:0b:23:40:a8:2e:ef:55:e0:
b3:42:62:fd:43:e9:68:db:6b:d2:c9:5d:e2:49:64:
77:c8:ad:d8:da:f0:71:67:c7:f9:99:26:b6:db:2c:
9b:30:df:c9:7e:90:81:8c:ac:24:1d:4c:24:30:56:
25:99:fd:ac:80:c7:04:e9:d5:13:84:49:47:19:af:
cb:7b:ea:68:35:3f:d1:27:d9:a7:ff:b6:08:c3:44:
08:8f:7a:b3:6c:bb:27:9a:56:b6:af:da:eb:e0:21:
59:4b:07:1b:55:3c:4d:56:78:e9:ff:5b:fe:00:3f:
5c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:A2:B9:4D:70:95:B1:15:08:E7:FE:2C:08:44:48:AB:06:6D:3D:F1
X509v3 Authority Key Identifier:
keyid:97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/v6K5TXCVsRUI5_4sCERIqwZtPfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/l59cqMM_E0w8FX1IucKuTpG2ML8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.95.0/24
146.19.249.0/24
185.112.251.0/24
185.166.144.0/24
188.93.192.0/21
193.107.13.0/24
193.163.151.0/24
212.52.23.0/24
IPv6:
2a0b:e740::/29
2a0d:82c0::/29
2a0e:5f00::/29
2a0f:7700::/29
2a0f:8900::/29
2a10:ee40::/29
2a11:c00::/29
Signature Algorithm: sha256WithRSAEncryption
3b:5f:26:79:f2:eb:e5:71:3f:e0:37:ca:93:ed:08:5a:4f:13:
ae:72:63:13:0a:1a:3e:c3:66:81:5d:39:3d:3d:e0:b7:d5:60:
34:7d:5a:c7:cf:ce:99:65:b9:a1:99:ee:51:53:2e:52:1f:43:
bc:12:73:a2:7e:c6:50:9c:dd:a2:73:f5:d7:2f:0c:29:f2:b6:
b2:8f:82:be:74:b8:c5:c0:3c:f2:76:ec:64:26:29:17:93:c8:
41:f0:b0:47:4c:5e:48:00:3c:26:2e:98:d4:12:20:31:44:5c:
a5:37:fb:ec:cb:61:f7:cc:a9:8a:b2:1a:93:78:8e:fd:ee:d4:
e5:1d:e3:df:91:63:d4:23:1b:0d:c7:0b:c3:3c:34:d6:b2:36:
01:5e:7b:03:bd:8b:33:8a:f5:1e:48:af:2d:b2:fa:48:0a:a8:
a5:fc:a4:39:eb:f9:5b:45:17:e2:55:57:74:21:15:75:d5:f9:
22:8a:7a:6d:21:a6:36:34:86:6d:90:4f:c4:49:77:92:23:73:
da:34:9e:bb:b1:e0:3a:3f:95:02:70:21:4e:86:2f:61:7f:55:
0f:88:5d:71:7e:6c:dc:e3:d1:fb:23:1b:1c:3c:21:3b:63:e1:
df:fe:c3:03:4a:d9:5a:66:d6:b2:dc:79:41:5b:78:cb:35:62:
f7:2d:9b:f6
-----BEGIN CERTIFICATE-----
MIIFYTCCBEmgAwIBAgISAYxaDsPmc+8fv4BwQKm0oJc1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3OWY1Y2E4YzMzZjEzNGMzYzE1N2Q0OGI5YzJhZTRlOTFi
NjMwYmYwHhcNMjMxMjExMTgwNjA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZmEyYjk0ZDcwOTViMTE1MDhlN2ZlMmMwODQ0NDhhYjA2NmQzZGYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtRfXfMsd2OnV2ZHHtjU0c/M4DRLY
pC/PKLNPETe5ZOVLPQtw/ZZQglgXZYGH6SsATrfSpi+76PhSkjHvdek4dyWqVTXY
i7Gi7daOgtWUuDPfPdZrleo3edC00nZ9Q1LpgLvHz5CviKwdm5sPYbe35cpgcUed
2S97qvIJN5qypjoaM8TUJaA8/kFJZoqWCyNAqC7vVeCzQmL9Q+lo22vSyV3iSWR3
yK3Y2vBxZ8f5mSa22yybMN/JfpCBjKwkHUwkMFYlmf2sgMcE6dUThElHGa/Le+po
NT/RJ9mn/7YIw0QIj3qzbLsnmla2r9rr4CFZSwcbVTxNVnjp/1v+AD9cqQIDAQAB
o4ICbTCCAmkwHQYDVR0OBBYEFL+iuU1wlbEVCOf+LAhESKsGbT3xMB8GA1UdIwQY
MBaAFJefXKjDPxNMPBV9SLnCrk6RtjC/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbDU5Y3FNTV9FMHc4RlgxSXVjS3VUcEcyTUw4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy9mNjU2MTAtNTlmNi00YWQ2LWE5ZDgt
MTQ3MGFjMzY0ZGQyLzEvdjZLNVRYQ1ZzUlVJNV80c0NFUklxd1p0UGZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy9mNjU2MTAtNTlmNi00YWQ2LWE5ZDgtMTQ3MGFjMzY0ZGQy
LzEvbDU5Y3FNTV9FMHc4RlgxSXVjS3VUcEcyTUw4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGCBggrBgEFBQcBBwEB/wRzMHEwNgQCAAEwMAMEAJITXwME
AJIT+QMEALlw+wMEALmmkAMEA7xdwAMEAMFrDQMEAMGjlwMEANQ0FzA3BAIAAjAx
AwUDKgvnQAMFAyoNgsADBQMqDl8AAwUDKg93AAMFAyoPiQADBQMqEO5AAwUDKhEM
ADANBgkqhkiG9w0BAQsFAAOCAQEAO18mefLr5XE/4DfKk+0IWk8TrnJjEwoaPsNm
gV05PT3gt9VgNH1ax8/OmWW5oZnuUVMuUh9DvBJzon7GUJzdonP11y8MKfK2so+C
vnS4xcA88nbsZCYpF5PIQfCwR0xeSAA8Ji6Y1BIgMURcpTf77Mth98ypirIak3iO
/e7U5R3j35Fj1CMbDccLwzw01rI2AV57A72LM4r1HkivLbL6SAqopfykOev5W0UX
4lVXdCEVddX5Iop6bSGmNjSGbZBPxEl3kiNz2jSeu7HgOj+VAnAhToYvYX9VD4hd
cX5s3OPR+yMbHDwhO2Ph3/7DA0rZWmbWstx5QVt4yzVi9y2b9g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:29 2024 by rpki-client on console-fra.rpki-client.org