Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/n2wRmpTK5rGEhzjGLQNij8so_as.roa
File: n2wRmpTK5rGEhzjGLQNij8so_as.roa (raw, json)
Hash identifier: QA/C9gvDJ5znrAw2WCmEUI/bhOIeMI2C4txjbzCpaTs=
Subject key identifier: 9F:6C:11:9A:94:CA:E6:B1:84:87:38:C6:2D:03:62:8F:CB:28:FD:AB
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 019422FC06FC3D4C28379D30B5307527645D
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/n2wRmpTK5rGEhzjGLQNij8so_as.roa
Signing time: Wed 01 Jan 2025 17:48:49 +0000
ROA not before: Wed 01 Jan 2025 17:48:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 7018
IP address blocks: 5.182.28.0/22 maxlen: 22
45.67.117.0/24 maxlen: 24
45.150.168.0/22 maxlen: 22
45.151.196.0/22 maxlen: 22
89.40.161.0/24 maxlen: 24
91.239.59.0/24 maxlen: 24
91.242.70.0/24 maxlen: 24
91.242.71.0/24 maxlen: 24
91.242.72.0/23 maxlen: 24
91.242.73.0/24 maxlen: 24
91.242.75.0/24 maxlen: 24
91.242.105.0/24 maxlen: 24
91.242.123.0/24 maxlen: 24
91.242.124.0/24 maxlen: 24
91.242.125.0/24 maxlen: 24
91.242.126.0/24 maxlen: 24
91.242.127.0/24 maxlen: 24
185.40.105.0/24 maxlen: 24
185.180.145.0/24 maxlen: 24
193.31.104.0/22 maxlen: 22
194.50.200.0/24 maxlen: 24
194.50.201.0/24 maxlen: 24
194.180.238.0/24 maxlen: 24
195.138.103.0/24 maxlen: 24
195.138.104.0/22 maxlen: 24
195.138.104.0/24 maxlen: 24
195.138.107.0/24 maxlen: 24
195.138.109.0/24 maxlen: 24
195.138.110.0/24 maxlen: 24
195.138.111.0/24 maxlen: 24
195.138.113.0/24 maxlen: 24
195.138.114.0/24 maxlen: 24
195.138.115.0/24 maxlen: 24
195.138.116.0/24 maxlen: 24
195.138.118.0/24 maxlen: 24
195.138.120.0/24 maxlen: 24
195.138.124.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 07 Jan 2025 10:41:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:06:fc:3d:4c:28:37:9d:30:b5:30:75:27:64:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 1 17:48:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9f6c119a94cae6b1848738c62d03628fcb28fdab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:a0:74:bb:4e:88:87:6d:67:59:2c:a5:b4:65:
cd:d9:79:37:a9:33:f3:83:d4:c2:f9:0b:a2:cb:82:
2a:e8:bd:f9:b6:5b:0a:7e:9d:ad:0b:cb:56:b3:04:
15:b7:00:76:95:28:4c:33:b4:3b:ad:bc:fb:91:b4:
5c:01:9e:6f:69:4b:18:3c:4b:8a:36:83:a7:57:2b:
14:4d:09:45:10:ce:fb:2c:30:d3:bd:c6:54:fb:c6:
59:73:67:83:85:79:45:eb:b6:24:a7:d5:7e:5a:4b:
4c:e4:69:be:47:05:99:c3:c5:bf:1f:5e:6b:11:94:
c1:89:8e:b5:ca:93:76:72:c0:2c:a4:f0:4d:f2:e7:
5e:ec:e9:eb:f9:4b:a5:81:61:04:13:e6:67:b3:24:
43:75:6e:3e:59:c7:24:6c:97:4d:87:2a:59:88:c3:
f6:20:8c:b3:ea:ae:ad:29:78:90:46:f6:d0:7a:f4:
6d:5b:9f:ad:1c:6b:af:aa:19:0b:2f:5c:92:2e:c8:
36:4f:49:d2:83:47:1c:b1:a5:d4:e2:e6:41:e3:ed:
84:73:5d:d0:bd:0b:df:39:3c:fa:6d:48:ce:74:a6:
fe:59:1c:52:b5:fb:87:a9:3a:a7:71:ac:52:89:b0:
53:d5:b6:3d:59:fa:af:96:a1:c0:17:dd:d9:0b:5d:
00:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:6C:11:9A:94:CA:E6:B1:84:87:38:C6:2D:03:62:8F:CB:28:FD:AB
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/n2wRmpTK5rGEhzjGLQNij8so_as.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.28.0/22
45.67.117.0/24
45.150.168.0/22
45.151.196.0/22
89.40.161.0/24
91.239.59.0/24
91.242.70.0-91.242.73.255
91.242.75.0/24
91.242.105.0/24
91.242.123.0-91.242.127.255
185.40.105.0/24
185.180.145.0/24
193.31.104.0/22
194.50.200.0/23
194.180.238.0/24
195.138.103.0-195.138.107.255
195.138.109.0-195.138.111.255
195.138.113.0-195.138.116.255
195.138.118.0/24
195.138.120.0/24
195.138.124.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:b1:38:89:7f:5d:1f:37:b3:38:50:89:8a:8d:fe:cb:38:78:
2e:21:f4:87:0a:f4:65:8e:0d:e3:0d:91:9d:9a:f7:a1:40:bb:
7c:e1:a0:e4:bf:ba:3d:46:b1:33:84:e5:96:92:68:51:05:3a:
c5:86:a6:05:26:cd:16:35:6a:af:17:89:c6:6f:b5:42:77:63:
ec:88:b5:6e:49:45:23:42:b4:36:e1:0e:04:f6:5a:29:52:25:
46:30:71:b8:5b:3f:62:9a:de:07:2a:07:d7:49:91:fd:38:ec:
87:8e:a3:b3:a2:42:60:0a:c6:9d:9c:0c:09:5a:76:e9:eb:34:
96:da:64:78:47:3c:da:a4:4f:ce:79:4b:c4:31:31:3f:1f:97:
08:fc:cb:fc:54:bd:3b:27:2f:40:e0:d3:b0:87:42:ca:e9:a7:
1b:4f:83:e6:ce:b5:5a:d8:c7:60:49:06:e9:98:e7:c1:80:1b:
f0:44:47:91:40:60:f0:e6:bf:71:58:10:55:1c:1d:7d:31:19:
df:2b:66:a0:75:2a:4d:a2:89:8d:f9:95:3f:f3:39:05:66:70:
77:52:eb:2f:ba:0c:68:02:84:6c:17:97:4c:59:c6:5e:be:37:
30:33:8f:1a:c4:5d:cb:ce:0c:d5:66:60:a1:a3:dd:8a:e9:3f:
a8:5c:73:d5
-----BEGIN CERTIFICATE-----
MIIFojCCBIqgAwIBAgISAZQi/Ab8PUwoN50wtTB1J2RdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiYWIzMDY4Mzg1OWVjN2UwMjA2ZmU5MjY1MzYzZThlMzk3
MWE5YTgwHhcNMjUwMTAxMTc0ODQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZjZjMTE5YTk0Y2FlNmIxODQ4NzM4YzYyZDAzNjI4ZmNiMjhmZGFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3aB0u06Ih21nWSyltGXN2Xk3qTPz
g9TC+Quiy4Iq6L35tlsKfp2tC8tWswQVtwB2lShMM7Q7rbz7kbRcAZ5vaUsYPEuK
NoOnVysUTQlFEM77LDDTvcZU+8ZZc2eDhXlF67Ykp9V+WktM5Gm+RwWZw8W/H15r
EZTBiY61ypN2csAspPBN8ude7Onr+UulgWEEE+ZnsyRDdW4+WcckbJdNhypZiMP2
IIyz6q6tKXiQRvbQevRtW5+tHGuvqhkLL1ySLsg2T0nSg0ccsaXU4uZB4+2Ec13Q
vQvfOTz6bUjOdKb+WRxStfuHqTqncaxSibBT1bY9WfqvlqHAF93ZC10AywIDAQAB
o4ICrjCCAqowHQYDVR0OBBYEFJ9sEZqUyuaxhIc4xi0DYo/LKP2rMB8GA1UdIwQY
MBaAFIurMGg4Wex+Agb+kmU2Po45camoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTZzd2FEaFo3SDRDQnY2U1pUWS1qamx4cWFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi84MWZkMWEtNDdhNy00NWQ4LWJlNzQt
M2FjOWU1NmMzMDg5LzEvbjJ3Um1wVEs1ckdFaHpqR0xRTmlqOHNvX2FzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi84MWZkMWEtNDdhNy00NWQ4LWJlNzQtM2FjOWU1NmMzMDg5
LzEvaTZzd2FEaFo3SDRDQnY2U1pUWS1qamx4cWFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHDBggrBgEFBQcBBwEB/wSBszCBsDCBrQQCAAEwgaYDBAIF
thwDBAAtQ3UDBAItlqgDBAItl8QDBABZKKEDBABb7zswDAMEAVvyRgMEAVvySAME
AFvySwMEAFvyaTAMAwQAW/J7AwQHW/IAAwQAuShpAwQAubSRAwQCwR9oAwQBwjLI
AwQAwrTuMAwDBADDimcDBALDimgwDAMEAMOKbQMEBMOKYDAMAwQAw4pxAwQAw4p0
AwQAw4p2AwQAw4p4AwQCw4p8MA0GCSqGSIb3DQEBCwUAA4IBAQBNsTiJf10fN7M4
UImKjf7LOHguIfSHCvRljg3jDZGdmvehQLt84aDkv7o9RrEzhOWWkmhRBTrFhqYF
Js0WNWqvF4nGb7VCd2PsiLVuSUUjQrQ24Q4E9lopUiVGMHG4Wz9imt4HKgfXSZH9
OOyHjqOzokJgCsadnAwJWnbp6zSW2mR4RzzapE/OeUvEMTE/H5cI/Mv8VL07Jy9A
4NOwh0LK6acbT4PmzrVa2MdgSQbpmOfBgBvwREeRQGDw5r9xWBBVHB19MRnfK2ag
dSpNoomN+ZU/8zkFZnB3UusvugxoAoRsF5dMWcZevjcwM48axF3LzgzVZmCho92K
6T+oXHPV
-----END CERTIFICATE-----
Generated at Sun Apr 6 06:05:22 2025 by rpki-client