Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/x7M0HcuvtcmSUUBQdIiJfOw2XVo.roa
File: x7M0HcuvtcmSUUBQdIiJfOw2XVo.roa (raw, json)
Hash identifier: f9scHZHIOfThFiwxyUjTUuE7/1sB1AUsw4sOoccvx+g=
Subject key identifier: C7:B3:34:1D:CB:AF:B5:C9:92:51:40:50:74:88:89:7C:EC:36:5D:5A
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018BB5365075F0BA791589C0774A178B0F40
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/x7M0HcuvtcmSUUBQdIiJfOw2XVo.roa
Signing time: Thu 09 Nov 2023 17:51:57 +0000
ROA not before: Thu 09 Nov 2023 17:51:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30938
IP address blocks: 45.12.216.0/24 maxlen: 24
45.12.217.0/24 maxlen: 24
45.12.219.0/24 maxlen: 24
45.12.218.0/24 maxlen: 24
5.39.248.0/24 maxlen: 24
5.39.251.0/24 maxlen: 24
5.39.252.0/24 maxlen: 24
5.39.250.0/24 maxlen: 24
5.39.253.0/24 maxlen: 24
185.5.36.0/22 maxlen: 22
31.192.240.0/21 maxlen: 21
5.178.98.0/24 maxlen: 24
5.178.97.0/24 maxlen: 24
5.178.96.0/24 maxlen: 24
5.178.99.0/24 maxlen: 24
5.144.183.0/24 maxlen: 24
5.178.100.0/24 maxlen: 24
5.178.105.0/24 maxlen: 24
5.178.104.0/24 maxlen: 24
5.178.106.0/24 maxlen: 24
5.178.109.0/24 maxlen: 24
5.178.110.0/24 maxlen: 24
5.39.254.0/24 maxlen: 24
5.39.255.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b5:36:50:75:f0:ba:79:15:89:c0:77:4a:17:8b:0f:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Nov 9 17:51:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c7b3341dcbafb5c9925140507488897cec365d5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0d:56:24:c6:0b:fd:fa:bc:8c:37:a1:ae:50:
49:ac:b4:ed:2c:40:ee:34:33:dc:c4:02:e5:9f:62:
d5:67:08:a7:1e:08:fb:1e:ac:6e:e4:c1:64:34:c3:
0c:b9:d6:b1:70:bf:46:d8:b9:a9:27:59:a4:d4:11:
f0:2d:63:9e:f3:6b:89:66:85:dd:3f:0a:df:cb:1a:
99:4c:03:07:4b:f4:13:95:85:2f:b5:8a:fd:bc:c3:
62:a0:e0:8b:7c:fd:63:64:b2:32:b3:38:b7:cc:75:
1c:8d:82:83:18:a9:e0:df:49:10:7a:c7:03:17:1a:
0f:de:56:0c:dc:ae:8d:9d:a8:2a:a2:3e:e1:c0:97:
6e:ac:ca:e9:57:4c:ed:c3:27:02:08:74:b4:4c:1d:
6e:41:41:a7:5d:7a:98:e9:b3:a5:ba:8e:a8:09:ed:
59:76:bc:18:22:20:c4:9e:2f:74:8a:ce:c4:38:5c:
14:cb:a3:4f:93:4c:a4:19:d9:9c:12:4e:07:25:09:
26:d2:0d:06:1c:47:91:e0:0c:86:21:83:a2:61:4b:
ba:35:2b:d1:cb:9e:64:b6:c5:cb:67:8d:9b:3e:48:
d7:dc:0f:98:8f:92:78:d7:af:c7:c3:89:61:1e:7b:
11:d9:58:9e:02:26:7e:83:27:fd:f0:03:0f:4c:6e:
8d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:B3:34:1D:CB:AF:B5:C9:92:51:40:50:74:88:89:7C:EC:36:5D:5A
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/x7M0HcuvtcmSUUBQdIiJfOw2XVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.248.0/24
5.39.250.0-5.39.255.255
5.144.183.0/24
5.178.96.0-5.178.100.255
5.178.104.0-5.178.106.255
5.178.109.0-5.178.110.255
31.192.240.0/21
45.12.216.0/22
185.5.36.0/22
Signature Algorithm: sha256WithRSAEncryption
d4:07:4d:00:00:92:b6:7a:ba:d9:7a:5e:d2:98:8c:03:bc:ce:
02:83:00:92:fd:3f:3e:ab:55:63:88:b5:00:b2:4e:45:f2:eb:
ae:5d:4f:30:9d:b6:50:14:bb:e0:1e:3b:00:4d:57:e2:de:46:
94:21:f0:5c:db:d7:7a:2b:44:9d:4f:e6:07:55:1d:cd:78:5b:
d7:c3:cb:bc:31:02:4a:5b:c2:65:56:b0:5e:ef:d2:fb:27:d8:
d3:41:2a:5e:09:cd:6d:8a:7a:17:6b:89:c3:02:d8:47:59:73:
a5:e5:15:02:1b:30:ae:16:31:9e:d5:8e:60:ed:fb:2f:bb:be:
28:c7:39:1d:63:0e:3f:10:18:a0:97:d9:fa:6e:44:2e:05:ce:
d8:a7:c6:86:92:9b:a6:74:9e:66:15:43:68:af:44:8b:47:d2:
66:b4:f9:20:32:75:39:78:be:dc:8a:ad:96:ec:a1:94:5c:18:
e0:8e:1b:72:d5:f8:ff:a1:eb:0d:45:e6:1c:60:6c:d7:82:26:
e6:15:c3:a1:c7:a4:59:68:07:53:7a:b7:4b:b9:c0:57:1b:09:
51:f1:db:1d:de:42:45:af:5d:76:4f:53:8a:83:55:49:16:34:
5a:04:b4:40:48:39:c2:82:3e:50:47:d2:5e:57:2b:52:1d:bb:
c4:ae:80:59
-----BEGIN CERTIFICATE-----
MIIFTDCCBDSgAwIBAgISAYu1NlB18Lp5FYnAd0oXiw9AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEzMTg4MTczMmEzZTI0NWE5NTliYzY3OWUwNDU4YzM5Zjg5
M2U0NmIwHhcNMjMxMTA5MTc1MTU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjN2IzMzQxZGNiYWZiNWM5OTI1MTQwNTA3NDg4ODk3Y2VjMzY1ZDVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmw1WJMYL/fq8jDehrlBJrLTtLEDu
NDPcxALln2LVZwinHgj7Hqxu5MFkNMMMudaxcL9G2LmpJ1mk1BHwLWOe82uJZoXd
PwrfyxqZTAMHS/QTlYUvtYr9vMNioOCLfP1jZLIyszi3zHUcjYKDGKng30kQescD
FxoP3lYM3K6Nnagqoj7hwJdurMrpV0ztwycCCHS0TB1uQUGnXXqY6bOluo6oCe1Z
drwYIiDEni90is7EOFwUy6NPk0ykGdmcEk4HJQkm0g0GHEeR4AyGIYOiYUu6NSvR
y55ktsXLZ42bPkjX3A+Yj5J416/Hw4lhHnsR2VieAiZ+gyf98AMPTG6NfwIDAQAB
o4ICWDCCAlQwHQYDVR0OBBYEFMezNB3Lr7XJklFAUHSIiXzsNl1aMB8GA1UdIwQY
MBaAFBMYgXMqPiRalZvGeeBFjDn4k+RrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXhpQmN5by1KRnFWbThaNTRFV01PZmlUNUdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS84OWYwNzEtNTYzMS00NWRiLWE3ZTUt
Y2Q2MTUyMjYxYzZmLzEveDdNMEhjdXZ0Y21TVVVCUWRJaUpmT3cyWFZvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS84OWYwNzEtNTYzMS00NWRiLWE3ZTUtY2Q2MTUyMjYxYzZm
LzEvRXhpQmN5by1KRnFWbThaNTRFV01PZmlUNUdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG4GCCsGAQUFBwEHAQH/BF8wXTBbBAIAATBVAwQABSf4MAsD
BAEFJ/oDAwMFIAMEAAWQtzAMAwQFBbJgAwQABbJkMAwDBAMFsmgDBAAFsmowDAME
AAWybQMEAAWybgMEAx/A8AMEAi0M2AMEArkFJDANBgkqhkiG9w0BAQsFAAOCAQEA
1AdNAACStnq62Xpe0piMA7zOAoMAkv0/PqtVY4i1ALJORfLrrl1PMJ22UBS74B47
AE1X4t5GlCHwXNvXeitEnU/mB1UdzXhb18PLvDECSlvCZVawXu/S+yfY00EqXgnN
bYp6F2uJwwLYR1lzpeUVAhswrhYxntWOYO37L7u+KMc5HWMOPxAYoJfZ+m5ELgXO
2KfGhpKbpnSeZhVDaK9Ei0fSZrT5IDJ1OXi+3IqtluyhlFwY4I4bctX4/6HrDUXm
HGBs14Im5hXDocekWWgHU3q3S7nAVxsJUfHbHd5CRa9ddk9TioNVSRY0WgS0QEg5
woI+UEfSXlcrUh27xK6AWQ==
-----END CERTIFICATE-----
Generated at Sat Nov 11 23:55:10 2023 by rpki-client on console-fra.rpki-client.org