Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/48c9f6-5b5f-41d4-8e56-08e4b79387c0/1/N_tmiseh5XnwbD2qvp4ya2TcS_k.roa
File: N_tmiseh5XnwbD2qvp4ya2TcS_k.roa (raw, json)
Hash identifier: uYyRlTuvOBoXeo3wPMXqQrQnBtqCXAxcU36vr2AO7Dw=
Subject key identifier: 37:FB:66:8A:C7:A1:E5:79:F0:6C:3D:AA:BE:9E:32:6B:64:DC:4B:F9
Certificate issuer: /CN=4ee1713e16b4fd8f3301887de6a111980449b29e
Certificate serial: 018BDCD977DDC37D13FAB15367B483F267EC
Authority key identifier: 4E:E1:71:3E:16:B4:FD:8F:33:01:88:7D:E6:A1:11:98:04:49:B2:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuFxPha0_Y8zAYh95qERmARJsp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/48c9f6-5b5f-41d4-8e56-08e4b79387c0/1/N_tmiseh5XnwbD2qvp4ya2TcS_k.roa
Signing time: Fri 17 Nov 2023 10:35:21 +0000
ROA not before: Fri 17 Nov 2023 10:35:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58321
IP address blocks: 185.73.88.0/22 maxlen: 22
185.80.212.0/22 maxlen: 22
91.232.44.0/23 maxlen: 24
109.199.0.0/19 maxlen: 24
176.227.160.0/21 maxlen: 24
109.207.48.0/20 maxlen: 24
81.161.192.0/24 maxlen: 24
81.161.192.0/21 maxlen: 21
81.161.192.0/20 maxlen: 20
81.161.193.0/24 maxlen: 24
81.161.194.0/24 maxlen: 24
81.161.195.0/24 maxlen: 24
81.161.196.0/24 maxlen: 24
178.249.88.0/21 maxlen: 24
81.161.197.0/24 maxlen: 24
81.161.198.0/24 maxlen: 24
81.161.199.0/24 maxlen: 24
81.161.203.0/24 maxlen: 24
81.161.204.0/24 maxlen: 24
81.161.200.0/21 maxlen: 21
81.161.205.0/24 maxlen: 24
81.161.206.0/24 maxlen: 24
81.161.200.0/24 maxlen: 24
81.161.201.0/24 maxlen: 24
81.161.202.0/24 maxlen: 24
193.242.169.0/24 maxlen: 24
193.242.168.0/24 maxlen: 24
193.242.168.0/23 maxlen: 23
195.3.232.0/22 maxlen: 22
5.104.248.0/21 maxlen: 24
185.34.76.0/22 maxlen: 24
2a04:4c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:dc:d9:77:dd:c3:7d:13:fa:b1:53:67:b4:83:f2:67:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ee1713e16b4fd8f3301887de6a111980449b29e
Validity
Not Before: Nov 17 10:35:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37fb668ac7a1e579f06c3daabe9e326b64dc4bf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e3:64:37:e7:d0:b7:6b:97:75:f7:02:05:15:
f8:5d:6e:19:07:58:b2:ee:fe:2a:dc:55:3a:9b:7b:
58:e4:71:13:7f:bd:ef:14:ef:82:d9:c8:65:cd:be:
a2:98:6b:50:f2:bf:22:d1:d4:2f:ef:e9:41:d7:38:
8f:f8:5b:3f:9a:b5:b8:a7:51:f8:09:df:1f:68:27:
ff:74:f4:54:a8:15:d3:71:f6:2e:20:40:a8:07:63:
f7:4c:34:e0:4e:61:ba:93:ce:96:47:dc:f2:74:57:
fa:64:1e:5c:40:90:7c:3b:1f:c7:73:f3:64:7e:9b:
76:91:c9:60:ef:cc:19:0a:5f:d8:6f:62:b0:ef:8d:
82:33:c0:30:6f:5d:a0:4a:dc:9f:00:68:27:55:97:
a4:87:c7:d8:27:6b:95:30:d0:89:55:17:d5:e9:e5:
56:6a:13:93:9a:08:98:cf:1d:37:fa:72:65:e9:10:
52:56:d1:55:45:e7:d7:da:33:5f:d5:3f:f4:32:01:
2a:f7:88:d6:45:b1:1d:fd:2d:8a:09:c7:38:ba:3b:
01:81:4b:50:c6:98:ef:d8:a8:7e:5f:a2:21:c4:1f:
8c:98:c2:7c:30:df:23:89:05:34:ce:67:ef:70:6b:
a4:59:c5:63:94:64:9a:39:28:c7:36:ab:a3:9f:8e:
54:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:FB:66:8A:C7:A1:E5:79:F0:6C:3D:AA:BE:9E:32:6B:64:DC:4B:F9
X509v3 Authority Key Identifier:
keyid:4E:E1:71:3E:16:B4:FD:8F:33:01:88:7D:E6:A1:11:98:04:49:B2:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuFxPha0_Y8zAYh95qERmARJsp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/48c9f6-5b5f-41d4-8e56-08e4b79387c0/1/N_tmiseh5XnwbD2qvp4ya2TcS_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/48c9f6-5b5f-41d4-8e56-08e4b79387c0/1/TuFxPha0_Y8zAYh95qERmARJsp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.248.0/21
81.161.192.0/20
91.232.44.0/23
109.199.0.0/19
109.207.48.0/20
176.227.160.0/21
178.249.88.0/21
185.34.76.0/22
185.73.88.0/22
185.80.212.0/22
193.242.168.0/23
195.3.232.0/22
IPv6:
2a04:4c0::/29
Signature Algorithm: sha256WithRSAEncryption
0c:29:df:ba:99:32:f0:b0:eb:2d:77:d3:24:d8:df:e7:bd:74:
6e:c4:d4:3b:75:d4:38:5b:2a:90:6b:12:2e:40:f3:7b:7d:bc:
65:d5:e9:da:ee:b5:e5:a2:7b:30:6b:77:c5:3e:57:c8:05:85:
69:0e:65:39:40:29:48:de:1a:64:39:f7:54:b1:38:a9:60:09:
a2:f7:b6:98:6e:99:7d:29:fc:fc:30:18:24:94:e9:a3:99:dc:
2c:aa:78:1a:b3:c0:c6:a7:f0:05:ed:af:60:c5:f8:d5:3d:df:
54:e9:0e:45:6d:13:9d:70:7b:a7:c7:b6:b9:b0:d7:1b:29:0d:
cf:49:e1:bd:19:73:50:cc:23:48:8f:cd:e0:a3:bc:a1:5d:76:
7d:13:fd:95:9e:56:c1:0c:1d:90:35:16:61:8c:bc:84:83:dd:
69:e8:12:8a:98:51:ec:a4:81:59:ee:da:ed:54:fc:73:49:91:
7e:4e:ec:b6:97:18:c0:26:b5:88:d1:32:16:98:c4:73:17:b4:
07:71:47:6d:b2:06:a9:11:01:36:72:cb:be:68:c8:ec:bd:7e:
1a:02:e8:2b:c7:de:33:49:cb:a7:8c:f5:fe:bf:54:db:96:4f:
13:6a:2d:d1:ae:e3:20:69:1c:00:47:1b:e4:6f:0a:dc:db:8e:
19:b3:1e:29
-----BEGIN CERTIFICATE-----
MIIFTjCCBDagAwIBAgISAYvc2Xfdw30T+rFTZ7SD8mfsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlZTE3MTNlMTZiNGZkOGYzMzAxODg3ZGU2YTExMTk4MDQ0
OWIyOWUwHhcNMjMxMTE3MTAzNTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzN2ZiNjY4YWM3YTFlNTc5ZjA2YzNkYWFiZTllMzI2YjY0ZGM0YmY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw+NkN+fQt2uXdfcCBRX4XW4ZB1iy
7v4q3FU6m3tY5HETf73vFO+C2chlzb6imGtQ8r8i0dQv7+lB1ziP+Fs/mrW4p1H4
Cd8faCf/dPRUqBXTcfYuIECoB2P3TDTgTmG6k86WR9zydFf6ZB5cQJB8Ox/Hc/Nk
fpt2kclg78wZCl/Yb2Kw742CM8Awb12gStyfAGgnVZekh8fYJ2uVMNCJVRfV6eVW
ahOTmgiYzx03+nJl6RBSVtFVRefX2jNf1T/0MgEq94jWRbEd/S2KCcc4ujsBgUtQ
xpjv2Kh+X6IhxB+MmMJ8MN8jiQU0zmfvcGukWcVjlGSaOSjHNqujn45UnQIDAQAB
o4ICWjCCAlYwHQYDVR0OBBYEFDf7ZorHoeV58Gw9qr6eMmtk3Ev5MB8GA1UdIwQY
MBaAFE7hcT4WtP2PMwGIfeahEZgESbKeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHVGeFBoYTBfWTh6QVloOTVxRVJtQVJKc3A0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC80OGM5ZjYtNWI1Zi00MWQ0LThlNTYt
MDhlNGI3OTM4N2MwLzEvTl90bWlzZWg1WG53YkQycXZwNHlhMlRjU19rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC80OGM5ZjYtNWI1Zi00MWQ0LThlNTYtMDhlNGI3OTM4N2Mw
LzEvVHVGeFBoYTBfWTh6QVloOTVxRVJtQVJKc3A0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHAGCCsGAQUFBwEHAQH/BGEwXzBOBAIAATBIAwQDBWj4AwQE
UaHAAwQBW+gsAwQFbccAAwQEbc8wAwQDsOOgAwQDsvlYAwQCuSJMAwQCuUlYAwQC
uVDUAwQBwfKoAwQCwwPoMA0EAgACMAcDBQMqBATAMA0GCSqGSIb3DQEBCwUAA4IB
AQAMKd+6mTLwsOstd9Mk2N/nvXRuxNQ7ddQ4WyqQaxIuQPN7fbxl1ena7rXlonsw
a3fFPlfIBYVpDmU5QClI3hpkOfdUsTipYAmi97aYbpl9Kfz8MBgklOmjmdwsqnga
s8DGp/AF7a9gxfjVPd9U6Q5FbROdcHunx7a5sNcbKQ3PSeG9GXNQzCNIj83go7yh
XXZ9E/2VnlbBDB2QNRZhjLyEg91p6BKKmFHspIFZ7trtVPxzSZF+Tuy2lxjAJrWI
0TIWmMRzF7QHcUdtsgapEQE2csu+aMjsvX4aAugrx94zScunjPX+v1Tblk8Tai3R
ruMgaRwARxvkbwrc244Zsx4p
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:43 2024 by rpki-client on console-ams.rpki-client.org