Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/0e36fc-ba0b-4ce6-af6a-704463ebad36/1/geE6QyVNLz955UyWe7gTFa9tdtE.roa
File: geE6QyVNLz955UyWe7gTFa9tdtE.roa (raw, json)
Hash identifier: m7keG1qaF6mzYe0vJRoNCyXkp3xLC60JuiFt1q9Q5+4=
Subject key identifier: 81:E1:3A:43:25:4D:2F:3F:79:E5:4C:96:7B:B8:13:15:AF:6D:76:D1
Certificate issuer: /CN=28855852a4bcd1bf1ec813f3c13b0f1f372f3971
Certificate serial: 0193B592E1E5F9966F2C0F225D038D7CFD28
Authority key identifier: 28:85:58:52:A4:BC:D1:BF:1E:C8:13:F3:C1:3B:0F:1F:37:2F:39:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIVYUqS80b8eyBPzwTsPHzcvOXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/0e36fc-ba0b-4ce6-af6a-704463ebad36/1/geE6QyVNLz955UyWe7gTFa9tdtE.roa
Signing time: Wed 11 Dec 2024 11:55:22 +0000
ROA not before: Wed 11 Dec 2024 11:55:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202958
IP address blocks: 37.140.243.0/24 maxlen: 24
46.226.123.0/24 maxlen: 24
77.246.247.0/24 maxlen: 24
86.107.198.0/24 maxlen: 24
86.107.199.0/24 maxlen: 24
91.243.71.0/24 maxlen: 24
93.115.14.0/24 maxlen: 24
185.98.4.0/24 maxlen: 24
185.100.66.0/24 maxlen: 24
185.113.133.0/24 maxlen: 24
185.116.192.0/24 maxlen: 24
185.116.193.0/24 maxlen: 24
185.116.194.0/24 maxlen: 24
185.116.195.0/24 maxlen: 24
185.121.80.0/24 maxlen: 24
185.121.81.0/24 maxlen: 24
185.121.82.0/24 maxlen: 24
185.121.83.0/24 maxlen: 24
185.125.88.0/24 maxlen: 24
185.125.89.0/24 maxlen: 24
185.125.90.0/24 maxlen: 24
185.125.91.0/24 maxlen: 24
188.244.115.0/24 maxlen: 24
194.4.56.0/24 maxlen: 24
194.4.57.0/24 maxlen: 24
194.4.58.0/24 maxlen: 24
194.4.59.0/24 maxlen: 24
194.146.40.0/24 maxlen: 24
194.146.41.0/24 maxlen: 24
194.146.42.0/24 maxlen: 24
194.146.43.0/24 maxlen: 24
213.109.146.0/24 maxlen: 24
2a06:941::/48 maxlen: 48
2a06:941:1::/48 maxlen: 48
2a06:941:2::/48 maxlen: 48
2a06:941:3::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Jan 2025 23:48:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b5:92:e1:e5:f9:96:6f:2c:0f:22:5d:03:8d:7c:fd:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28855852a4bcd1bf1ec813f3c13b0f1f372f3971
Validity
Not Before: Dec 11 11:55:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=81e13a43254d2f3f79e54c967bb81315af6d76d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0c:77:a7:d4:91:66:15:31:66:27:92:ce:75:
1a:5e:ef:cf:c9:0e:0e:e1:8d:8e:af:95:25:2f:2c:
2d:a3:a2:16:aa:d6:7d:c8:9a:a5:fc:4b:2d:6b:34:
cd:0e:5c:7f:30:a0:20:fb:64:d0:d8:6a:66:2f:86:
5c:64:30:4a:04:1b:05:dc:2c:c3:16:25:8e:c4:e0:
87:dc:fb:a4:e9:2d:2d:ec:69:2b:be:db:55:19:e3:
55:a8:52:e3:66:58:e7:08:20:6f:5f:8f:e7:a2:86:
44:45:e2:97:f0:df:75:70:ee:40:df:0d:65:cc:44:
58:a2:67:87:fa:4c:a1:93:3d:5a:92:e4:6e:87:9c:
d4:24:c8:57:18:57:15:08:a7:27:bc:7f:24:b8:72:
a3:6a:38:ca:42:92:91:3c:7b:c7:ef:3d:ab:ce:6b:
65:fb:ec:b5:c4:ca:78:a1:58:a0:c4:da:56:9a:3e:
f0:93:78:55:4d:23:8f:b7:42:6a:3e:25:d2:e4:4a:
b9:53:1e:86:42:51:0d:43:29:80:8b:45:e4:ba:2f:
7d:e6:3c:b0:38:62:37:c1:cb:f3:a9:56:3a:a5:c1:
85:a0:4a:ce:0c:d5:35:1e:90:0e:0f:48:5b:cf:b5:
b0:50:6c:0f:a3:24:8b:97:2a:0b:15:d4:40:dd:6f:
9a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:E1:3A:43:25:4D:2F:3F:79:E5:4C:96:7B:B8:13:15:AF:6D:76:D1
X509v3 Authority Key Identifier:
keyid:28:85:58:52:A4:BC:D1:BF:1E:C8:13:F3:C1:3B:0F:1F:37:2F:39:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIVYUqS80b8eyBPzwTsPHzcvOXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0e36fc-ba0b-4ce6-af6a-704463ebad36/1/geE6QyVNLz955UyWe7gTFa9tdtE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0e36fc-ba0b-4ce6-af6a-704463ebad36/1/KIVYUqS80b8eyBPzwTsPHzcvOXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.243.0/24
46.226.123.0/24
77.246.247.0/24
86.107.198.0/23
91.243.71.0/24
93.115.14.0/24
185.98.4.0/24
185.100.66.0/24
185.113.133.0/24
185.116.192.0/22
185.121.80.0/22
185.125.88.0/22
188.244.115.0/24
194.4.56.0/22
194.146.40.0/22
213.109.146.0/24
IPv6:
2a06:941::/46
Signature Algorithm: sha256WithRSAEncryption
27:4f:22:e0:96:1e:1e:d0:b5:6a:23:8b:8b:9b:e7:5e:99:20:
7b:a1:c6:51:a2:7f:1b:45:55:f8:18:a6:d9:97:15:2f:85:83:
cd:93:0b:9d:37:d5:15:15:f4:91:75:d0:96:ba:ed:d1:ff:b5:
e3:39:f1:7a:67:ce:9b:c8:db:b8:48:43:3c:04:9a:04:97:55:
29:a0:fc:83:79:c5:03:01:fd:79:20:2c:3b:92:69:c9:f5:68:
4e:81:12:76:11:96:cf:eb:44:e3:fb:2d:df:ef:62:b6:5a:b0:
01:61:c4:88:7f:fa:2c:3d:1d:78:f0:b1:9d:04:f6:4f:43:e2:
ca:96:d9:d6:1b:05:f1:31:fd:28:25:12:ba:79:e5:9d:eb:3b:
05:b9:88:f4:a3:8e:b4:8e:f6:96:cf:90:c5:b1:e7:c5:0e:92:
59:79:7f:15:42:3e:ad:7c:0d:ce:65:e0:92:13:df:d3:92:f7:
0d:c8:89:64:02:74:21:23:1a:3d:85:54:95:47:7a:02:98:ac:
ec:13:36:a1:c5:f0:2b:6c:d5:39:0a:11:36:93:23:99:97:11:
76:b9:1e:d7:ce:9b:44:8e:2e:b8:be:66:af:48:76:42:e7:ae:
91:b9:f1:74:a8:c1:33:9c:fd:c8:b6:b7:19:84:5c:a6:b2:6e:
ec:41:89:06
-----BEGIN CERTIFICATE-----
MIIFaTCCBFGgAwIBAgISAZO1kuHl+ZZvLA8iXQONfP0oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4ODU1ODUyYTRiY2QxYmYxZWM4MTNmM2MxM2IwZjFmMzcy
ZjM5NzEwHhcNMjQxMjExMTE1NTIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MWUxM2E0MzI1NGQyZjNmNzllNTRjOTY3YmI4MTMxNWFmNmQ3NmQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsAx3p9SRZhUxZieSznUaXu/PyQ4O
4Y2Or5UlLywto6IWqtZ9yJql/EstazTNDlx/MKAg+2TQ2GpmL4ZcZDBKBBsF3CzD
FiWOxOCH3Puk6S0t7GkrvttVGeNVqFLjZljnCCBvX4/nooZEReKX8N91cO5A3w1l
zERYomeH+kyhkz1akuRuh5zUJMhXGFcVCKcnvH8kuHKjajjKQpKRPHvH7z2rzmtl
++y1xMp4oVigxNpWmj7wk3hVTSOPt0JqPiXS5Eq5Ux6GQlENQymAi0Xkui995jyw
OGI3wcvzqVY6pcGFoErODNU1HpAOD0hbz7WwUGwPoySLlyoLFdRA3W+a/QIDAQAB
o4ICdTCCAnEwHQYDVR0OBBYEFIHhOkMlTS8/eeVMlnu4ExWvbXbRMB8GA1UdIwQY
MBaAFCiFWFKkvNG/HsgT88E7Dx83LzlxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0lWWVVxUzgwYjhleUJQendUc1BIemN2T1hFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8wZTM2ZmMtYmEwYi00Y2U2LWFmNmEt
NzA0NDYzZWJhZDM2LzEvZ2VFNlF5Vk5Mejk1NVV5V2U3Z1RGYTl0ZHRFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC8wZTM2ZmMtYmEwYi00Y2U2LWFmNmEtNzA0NDYzZWJhZDM2
LzEvS0lWWVVxUzgwYjhleUJQendUc1BIemN2T1hFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGKBggrBgEFBQcBBwEB/wR7MHkwZgQCAAEwYAMEACWM8wME
AC7iewMEAE329wMEAVZrxgMEAFvzRwMEAF1zDgMEALliBAMEALlkQgMEALlxhQME
Arl0wAMEArl5UAMEArl9WAMEALz0cwMEAsIEOAMEAsKSKAMEANVtkjAPBAIAAjAJ
AwcCKgYJQQAAMA0GCSqGSIb3DQEBCwUAA4IBAQAnTyLglh4e0LVqI4uLm+demSB7
ocZRon8bRVX4GKbZlxUvhYPNkwudN9UVFfSRddCWuu3R/7XjOfF6Z86byNu4SEM8
BJoEl1UpoPyDecUDAf15ICw7kmnJ9WhOgRJ2EZbP60Tj+y3f72K2WrABYcSIf/os
PR148LGdBPZPQ+LKltnWGwXxMf0oJRK6eeWd6zsFuYj0o460jvaWz5DFsefFDpJZ
eX8VQj6tfA3OZeCSE9/TkvcNyIlkAnQhIxo9hVSVR3oCmKzsEzahxfArbNU5ChE2
kyOZlxF2uR7XzptEji64vmavSHZC566RufF0qMEznP3ItrcZhFymsm7sQYkG
-----END CERTIFICATE-----
Generated at Tue Apr 8 07:26:10 2025 by rpki-client