Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/eS50kLqL8iYiUc0vgYxFJvxXWY8.roa
File: eS50kLqL8iYiUc0vgYxFJvxXWY8.roa (raw, json)
Hash identifier: tZj7xKiTFYHCW3CpvwMwE/Ua/BTtwCtxaQBgpcjs2hU=
Subject key identifier: 79:2E:74:90:BA:8B:F2:26:22:51:CD:2F:81:8C:45:26:FC:57:59:8F
Certificate issuer: /CN=5ccdeca171e422c79c938c2732a90d48a8c53c06
Certificate serial: 019130FBF7AE8F22230B8EC227504DFABCE7
Authority key identifier: 5C:CD:EC:A1:71:E4:22:C7:9C:93:8C:27:32:A9:0D:48:A8:C5:3C:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/eS50kLqL8iYiUc0vgYxFJvxXWY8.roa
Signing time: Thu 08 Aug 2024 07:55:04 +0000
ROA not before: Thu 08 Aug 2024 07:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34397
IP address blocks: 79.172.128.0/18 maxlen: 18
85.129.128.0/17 maxlen: 17
85.129.164.0/22 maxlen: 22
88.213.0.0/18 maxlen: 18
88.213.6.0/24 maxlen: 24
88.213.64.0/18 maxlen: 18
88.213.72.0/21 maxlen: 21
88.213.78.0/24 maxlen: 24
88.213.126.0/23 maxlen: 23
89.4.0.0/15 maxlen: 15
89.5.220.0/23 maxlen: 23
89.5.220.0/24 maxlen: 24
93.98.0.0/16 maxlen: 16
93.98.127.0/24 maxlen: 24
212.71.32.0/19 maxlen: 19
212.71.32.0/24 maxlen: 24
212.71.33.0/24 maxlen: 24
212.71.35.0/24 maxlen: 24
212.71.37.0/24 maxlen: 24
212.71.41.0/24 maxlen: 24
212.71.42.0/24 maxlen: 24
212.71.51.0/24 maxlen: 24
212.71.53.0/24 maxlen: 24
212.107.96.0/19 maxlen: 19
212.107.97.0/24 maxlen: 24
212.107.99.0/24 maxlen: 24
212.107.103.0/24 maxlen: 24
212.107.105.0/24 maxlen: 24
212.107.106.0/24 maxlen: 24
212.118.96.0/19 maxlen: 19
212.118.100.0/24 maxlen: 24
212.118.102.0/24 maxlen: 24
212.118.106.0/24 maxlen: 24
212.118.107.0/24 maxlen: 24
212.118.108.0/22 maxlen: 22
212.118.115.0/24 maxlen: 24
212.118.117.0/24 maxlen: 24
212.118.119.0/24 maxlen: 24
212.118.122.0/24 maxlen: 24
212.118.124.0/24 maxlen: 24
212.119.64.0/20 maxlen: 20
212.119.64.0/24 maxlen: 24
212.119.69.0/24 maxlen: 24
212.119.74.0/24 maxlen: 24
212.119.80.0/21 maxlen: 21
212.119.81.0/24 maxlen: 24
212.119.82.0/24 maxlen: 24
212.119.88.0/22 maxlen: 22
212.119.92.0/23 maxlen: 23
212.119.92.0/24 maxlen: 24
212.119.93.0/24 maxlen: 24
213.181.160.0/19 maxlen: 19
213.181.190.0/24 maxlen: 24
213.210.192.0/18 maxlen: 18
213.210.195.0/24 maxlen: 24
213.210.196.0/24 maxlen: 24
213.210.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 11 Aug 2024 06:53:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:30:fb:f7:ae:8f:22:23:0b:8e:c2:27:50:4d:fa:bc:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ccdeca171e422c79c938c2732a90d48a8c53c06
Validity
Not Before: Aug 8 07:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=792e7490ba8bf2262251cd2f818c4526fc57598f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ec:9b:7a:f1:23:cd:8f:7e:3f:63:61:9a:fa:
46:6f:88:44:cd:c1:5f:70:00:c3:4f:61:0b:a8:17:
30:db:de:a2:19:25:f4:a4:e0:c8:cf:0d:e0:d3:7f:
fe:e9:dd:d7:61:1e:6e:1f:42:06:63:11:08:09:5f:
71:d7:c2:4b:03:93:3d:6f:81:de:15:8f:7b:00:7c:
13:61:ad:3c:5e:28:eb:81:64:8b:81:f7:04:bf:e5:
88:19:2a:39:da:f8:a8:98:6d:24:d8:14:ab:9d:a5:
1a:f9:6f:b9:07:4c:8a:90:9e:ef:f9:cc:f2:e2:5e:
54:4b:82:2f:e7:08:6f:93:16:d3:8f:da:83:49:b6:
d1:80:56:84:7f:4a:27:f5:cb:15:ce:55:fc:97:3b:
62:9b:2a:6c:7c:af:81:a5:b8:c2:51:36:4a:24:43:
27:fa:98:b3:67:77:4e:c3:a5:08:d6:d8:56:bc:73:
5e:ce:4f:e8:04:d8:b2:a2:92:3d:74:d7:db:82:90:
03:99:bc:54:a6:9e:cd:88:74:48:94:a3:1c:c3:df:
e1:f7:de:1b:c2:87:f2:44:4a:4a:62:20:c8:4b:11:
ca:75:3f:5a:af:9e:39:3f:46:2b:15:50:2d:6c:cf:
17:1d:6a:44:76:17:3c:e4:e2:85:99:00:35:44:1b:
f5:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:2E:74:90:BA:8B:F2:26:22:51:CD:2F:81:8C:45:26:FC:57:59:8F
X509v3 Authority Key Identifier:
keyid:5C:CD:EC:A1:71:E4:22:C7:9C:93:8C:27:32:A9:0D:48:A8:C5:3C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/eS50kLqL8iYiUc0vgYxFJvxXWY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.128.0/18
85.129.128.0/17
88.213.0.0/17
89.4.0.0/15
93.98.0.0/16
212.71.32.0/19
212.107.96.0/19
212.118.96.0/19
212.119.64.0-212.119.93.255
213.181.160.0/19
213.210.192.0/18
Signature Algorithm: sha256WithRSAEncryption
56:f8:0e:eb:f0:34:1c:70:65:56:69:1a:3a:2f:54:36:9c:31:
76:70:70:ab:bf:27:14:15:b7:21:2a:82:eb:58:27:c2:74:71:
9b:97:a8:d0:34:9c:6c:5a:0c:7e:09:a4:bb:93:dc:c4:80:f5:
cc:81:20:3d:96:83:5e:d2:7c:dd:cb:15:3e:b8:5b:33:32:a3:
c5:55:2e:9e:81:be:89:3b:47:86:51:c0:b8:a2:72:9e:67:c3:
d7:43:09:57:de:38:5e:19:31:0f:99:d4:d7:5c:7c:0f:23:41:
bc:f4:22:82:d6:1c:f8:b6:5a:68:1f:90:1d:ee:2b:d9:4a:bf:
d4:27:8a:c1:6f:4c:d7:e2:b9:2a:cc:da:9f:3f:08:b0:9f:cf:
bc:5f:3f:27:48:f3:c7:5a:3f:49:9f:06:ba:8c:fd:76:ad:fa:
eb:54:06:6b:47:31:94:79:5a:2a:0c:fd:92:f1:21:71:7f:67:
ff:52:b6:45:f5:d6:1e:37:d8:fb:2e:a9:5a:94:e7:f0:7c:2b:
f7:c2:45:65:90:16:36:53:88:fc:55:d1:e8:25:d2:b5:9d:f5:
e6:c6:f5:2c:68:7d:2e:b1:e3:1d:6e:e2:b3:aa:77:30:0a:23:
ba:c1:5f:b3:28:fe:9f:5a:05:d9:03:ce:a1:4e:bf:3f:85:70:
30:91:2b:26
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgISAZEw+/eujyIjC47CJ1BN+rznMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjY2RlY2ExNzFlNDIyYzc5YzkzOGMyNzMyYTkwZDQ4YThj
NTNjMDYwHhcNMjQwODA4MDc1NTA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OTJlNzQ5MGJhOGJmMjI2MjI1MWNkMmY4MThjNDUyNmZjNTc1OThmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2OybevEjzY9+P2NhmvpGb4hEzcFf
cADDT2ELqBcw296iGSX0pODIzw3g03/+6d3XYR5uH0IGYxEICV9x18JLA5M9b4He
FY97AHwTYa08XijrgWSLgfcEv+WIGSo52viomG0k2BSrnaUa+W+5B0yKkJ7v+czy
4l5US4Iv5whvkxbTj9qDSbbRgFaEf0on9csVzlX8lztimypsfK+BpbjCUTZKJEMn
+pizZ3dOw6UI1thWvHNezk/oBNiyopI9dNfbgpADmbxUpp7NiHRIlKMcw9/h994b
wofyREpKYiDISxHKdT9ar545P0YrFVAtbM8XHWpEdhc85OKFmQA1RBv12wIDAQAB
o4ICSzCCAkcwHQYDVR0OBBYEFHkudJC6i/ImIlHNL4GMRSb8V1mPMB8GA1UdIwQY
MBaAFFzN7KFx5CLHnJOMJzKpDUioxTwGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWE0zc29YSGtJc2VjazR3bk1xa05TS2pGUEFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9iOGY1ZTYtYzk1MS00ZGRiLWI0ZjUt
YTg4MWVjODIyOGI1LzEvZVM1MGtMcUw4aVlpVWMwdmdZeEZKdnhYV1k4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi9iOGY1ZTYtYzk1MS00ZGRiLWI0ZjUtYTg4MWVjODIyOGI1
LzEvWE0zc29YSGtJc2VjazR3bk1xa05TS2pGUEFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGEGCCsGAQUFBwEHAQH/BFIwUDBOBAIAATBIAwQGT6yAAwQH
VYGAAwQHWNUAAwMBWQQDAwBdYgMEBdRHIAMEBdRrYAMEBdR2YDAMAwQG1HdAAwQB
1HdcAwQF1bWgAwQG1dLAMA0GCSqGSIb3DQEBCwUAA4IBAQBW+A7r8DQccGVWaRo6
L1Q2nDF2cHCrvycUFbchKoLrWCfCdHGbl6jQNJxsWgx+CaS7k9zEgPXMgSA9loNe
0nzdyxU+uFszMqPFVS6egb6JO0eGUcC4onKeZ8PXQwlX3jheGTEPmdTXXHwPI0G8
9CKC1hz4tlpoH5Ad7ivZSr/UJ4rBb0zX4rkqzNqfPwiwn8+8Xz8nSPPHWj9Jnwa6
jP12rfrrVAZrRzGUeVoqDP2S8SFxf2f/UrZF9dYeN9j7LqlalOfwfCv3wkVlkBY2
U4j8VdHoJdK1nfXmxvUsaH0useMdbuKzqncwCiO6wV+zKP6fWgXZA86hTr8/hXAw
kSsm
-----END CERTIFICATE-----
Generated at Sun Aug 11 10:00:56 2024 by rpki-client on console-ams.rpki-client.org