Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/9f5b81-ae4d-46a4-bb82-7655c89f14d6/1/mBwDD4Xg-EN51Sz-4E5giIZbOZI.roa
File: mBwDD4Xg-EN51Sz-4E5giIZbOZI.roa (raw, json)
Hash identifier: +FhCO0D2kHdKcTpAf2udyAVcefTdUZ+bkPF4zfxunDk=
Subject key identifier: 98:1C:03:0F:85:E0:F8:43:79:D5:2C:FE:E0:4E:60:88:86:5B:39:92
Certificate issuer: /CN=c0cac8d524a5fec7fc83a23830fbf9226a7601ae
Certificate serial: 01891B872AA0B06638A2B49718517B042956
Authority key identifier: C0:CA:C8:D5:24:A5:FE:C7:FC:83:A2:38:30:FB:F9:22:6A:76:01:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wMrI1SSl_sf8g6I4MPv5Imp2Aa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/9f5b81-ae4d-46a4-bb82-7655c89f14d6/1/mBwDD4Xg-EN51Sz-4E5giIZbOZI.roa
Signing time: Mon 03 Jul 2023 11:33:10 +0000
ROA not before: Mon 03 Jul 2023 11:33:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35575
IP address blocks: 88.211.96.0/21 maxlen: 21
88.211.104.0/21 maxlen: 21
46.149.240.0/20 maxlen: 20
88.211.112.0/21 maxlen: 21
188.127.64.0/19 maxlen: 19
88.211.120.0/22 maxlen: 22
88.211.124.0/23 maxlen: 23
88.211.126.0/23 maxlen: 23
84.19.40.0/21 maxlen: 21
84.19.48.0/21 maxlen: 21
185.25.236.0/22 maxlen: 22
84.19.56.0/21 maxlen: 21
88.211.64.0/21 maxlen: 21
88.211.64.0/18 maxlen: 18
209.42.0.0/19 maxlen: 19
88.211.72.0/21 maxlen: 21
88.211.80.0/20 maxlen: 20
185.152.216.0/22 maxlen: 22
185.219.92.0/22 maxlen: 22
84.19.32.0/21 maxlen: 21
84.19.32.0/19 maxlen: 19
2a02:29d0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1b:87:2a:a0:b0:66:38:a2:b4:97:18:51:7b:04:29:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0cac8d524a5fec7fc83a23830fbf9226a7601ae
Validity
Not Before: Jul 3 11:33:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=981c030f85e0f84379d52cfee04e6088865b3992
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:6e:e0:7e:bc:37:c2:6b:4c:71:9a:fd:ee:80:
29:2e:91:d7:73:11:49:5c:e5:a8:dd:aa:8e:2f:82:
ca:3f:d6:82:e1:2e:19:fe:f6:08:7a:d7:d1:fe:b7:
64:93:8b:06:b6:da:71:26:1f:18:97:7f:06:07:cd:
7b:12:80:64:a2:2a:d6:f9:55:f2:87:4a:c4:3f:87:
23:33:40:ee:b9:d9:cd:4d:ba:17:69:87:26:0a:cb:
17:44:33:14:d8:c5:e9:c5:49:db:5d:b5:b0:9c:53:
1c:94:20:bd:fe:8c:72:ec:b3:7b:43:7d:4d:e2:07:
23:e2:c8:f7:1a:5e:5f:2b:5f:99:45:32:88:9d:7d:
77:79:b5:19:ca:80:25:5a:e6:df:84:c1:6f:30:8f:
9f:e4:c2:1a:45:10:97:7e:db:1d:21:c1:d7:3e:64:
df:b4:ca:d2:5a:c3:88:18:29:ca:18:e0:e1:28:e4:
e3:3a:18:90:87:24:23:6b:b9:75:58:00:68:79:f2:
5e:bf:5c:9b:8c:a1:92:42:4f:28:c8:d2:3a:45:28:
6f:82:3b:14:08:55:9e:6e:52:af:6d:0b:55:40:fa:
48:8d:cd:1d:22:a9:86:d3:7c:dc:27:0a:c3:f7:19:
d5:33:a5:a5:97:a9:44:32:5f:ca:18:74:59:af:fc:
d0:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:1C:03:0F:85:E0:F8:43:79:D5:2C:FE:E0:4E:60:88:86:5B:39:92
X509v3 Authority Key Identifier:
keyid:C0:CA:C8:D5:24:A5:FE:C7:FC:83:A2:38:30:FB:F9:22:6A:76:01:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wMrI1SSl_sf8g6I4MPv5Imp2Aa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9f5b81-ae4d-46a4-bb82-7655c89f14d6/1/mBwDD4Xg-EN51Sz-4E5giIZbOZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9f5b81-ae4d-46a4-bb82-7655c89f14d6/1/wMrI1SSl_sf8g6I4MPv5Imp2Aa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.149.240.0/20
84.19.32.0/19
88.211.64.0/18
185.25.236.0/22
185.152.216.0/22
185.219.92.0/22
188.127.64.0/19
209.42.0.0/19
IPv6:
2a02:29d0::/32
Signature Algorithm: sha256WithRSAEncryption
5d:40:bc:d7:8d:45:69:2c:6d:04:42:a2:ff:ac:6e:5a:65:b0:
21:15:55:f9:29:b0:b1:6e:b5:f5:26:c0:96:5a:2d:30:0d:0d:
da:40:b6:d4:12:c7:69:0d:23:f1:a3:fb:d7:e8:93:1c:fa:ed:
94:c2:15:cf:cc:ae:fe:8b:42:d4:61:78:ba:25:28:fc:b1:f4:
d0:c6:af:1c:c2:0e:b3:c0:cc:f2:11:31:99:07:02:0f:e7:23:
ca:39:1d:70:7f:5f:8a:ed:3d:60:fd:92:18:f2:3f:5e:91:0a:
94:b1:44:f4:de:93:ff:fc:11:6e:30:f4:53:f9:13:37:84:d7:
4f:c8:fb:23:f5:39:48:10:32:4c:6a:ea:8b:b1:65:15:2c:d6:
a7:bc:0c:de:03:9e:89:ae:e2:1f:cb:c8:35:4f:7d:9d:01:00:
d5:97:ad:f0:05:58:af:98:74:02:4a:23:89:05:2a:b5:17:61:
61:13:73:51:55:37:ac:ed:e6:9e:20:5d:8a:1b:96:a0:18:6b:
93:e9:bb:82:a1:e3:34:f6:ee:73:c1:2a:13:55:e1:5d:7e:76:
e9:b6:f8:49:5b:87:fa:23:af:9c:00:b3:7f:0d:ad:6f:98:62:
a9:11:29:96:e1:03:91:49:b8:14:59:cf:69:7a:45:36:e8:59:
5c:63:a1:aa
-----BEGIN CERTIFICATE-----
MIIFNjCCBB6gAwIBAgISAYkbhyqgsGY4orSXGFF7BClWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMwY2FjOGQ1MjRhNWZlYzdmYzgzYTIzODMwZmJmOTIyNmE3
NjAxYWUwHhcNMjMwNzAzMTEzMzEwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ODFjMDMwZjg1ZTBmODQzNzlkNTJjZmVlMDRlNjA4ODg2NWIzOTkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlG7gfrw3wmtMcZr97oApLpHXcxFJ
XOWo3aqOL4LKP9aC4S4Z/vYIetfR/rdkk4sGttpxJh8Yl38GB817EoBkoirW+VXy
h0rEP4cjM0DuudnNTboXaYcmCssXRDMU2MXpxUnbXbWwnFMclCC9/oxy7LN7Q31N
4gcj4sj3Gl5fK1+ZRTKInX13ebUZyoAlWubfhMFvMI+f5MIaRRCXftsdIcHXPmTf
tMrSWsOIGCnKGODhKOTjOhiQhyQja7l1WABoefJev1ybjKGSQk8oyNI6RShvgjsU
CFWeblKvbQtVQPpIjc0dIqmG03zcJwrD9xnVM6Wll6lEMl/KGHRZr/zQ3wIDAQAB
o4ICQjCCAj4wHQYDVR0OBBYEFJgcAw+F4PhDedUs/uBOYIiGWzmSMB8GA1UdIwQY
MBaAFMDKyNUkpf7H/IOiODD7+SJqdgGuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd01ySTFTU2xfc2Y4ZzZJNE1QdjVJbXAyQWE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS85ZjViODEtYWU0ZC00NmE0LWJiODIt
NzY1NWM4OWYxNGQ2LzEvbUJ3REQ0WGctRU41MVN6LTRFNWdpSVpiT1pJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS85ZjViODEtYWU0ZC00NmE0LWJiODItNzY1NWM4OWYxNGQ2
LzEvd01ySTFTU2xfc2Y4ZzZJNE1QdjVJbXAyQWE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFgGCCsGAQUFBwEHAQH/BEkwRzA2BAIAATAwAwQELpXwAwQF
VBMgAwQGWNNAAwQCuRnsAwQCuZjYAwQCudtcAwQFvH9AAwQF0SoAMA0EAgACMAcD
BQAqAinQMA0GCSqGSIb3DQEBCwUAA4IBAQBdQLzXjUVpLG0EQqL/rG5aZbAhFVX5
KbCxbrX1JsCWWi0wDQ3aQLbUEsdpDSPxo/vX6JMc+u2UwhXPzK7+i0LUYXi6JSj8
sfTQxq8cwg6zwMzyETGZBwIP5yPKOR1wf1+K7T1g/ZIY8j9ekQqUsUT03pP//BFu
MPRT+RM3hNdPyPsj9TlIEDJMauqLsWUVLNanvAzeA56JruIfy8g1T32dAQDVl63w
BVivmHQCSiOJBSq1F2FhE3NRVTes7eaeIF2KG5agGGuT6buCoeM09u5zwSoTVeFd
fnbptvhJW4f6I6+cALN/Da1vmGKpESmW4QORSbgUWc9pekU26FlcY6Gq
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:35 2024 by rpki-client on console-fra.rpki-client.org