Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/GHdPTaNe_TkPJuV939sbbvp7QGM.roa
File: GHdPTaNe_TkPJuV939sbbvp7QGM.roa (raw, json)
Hash identifier: IRl0MogvAHlVf+6fHdLY1wO5KSgxt/SVXiYYfCKQhtU=
Subject key identifier: 18:77:4F:4D:A3:5E:FD:39:0F:26:E5:7D:DF:DB:1B:6E:FA:7B:40:63
Certificate issuer: /CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
Certificate serial: 01900C76DBCD3F51E536667F3D4DF5F44B45
Authority key identifier: E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/GHdPTaNe_TkPJuV939sbbvp7QGM.roa
Signing time: Wed 12 Jun 2024 12:40:34 +0000
ROA not before: Wed 12 Jun 2024 12:40:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 151.186.144.0/20 maxlen: 24
151.186.160.0/21 maxlen: 24
151.186.160.0/24 maxlen: 24
151.186.161.0/24 maxlen: 24
151.186.162.0/24 maxlen: 24
151.186.163.0/24 maxlen: 24
151.186.164.0/24 maxlen: 24
151.186.165.0/24 maxlen: 24
151.186.166.0/24 maxlen: 24
151.186.167.0/24 maxlen: 24
151.186.168.0/22 maxlen: 24
151.186.168.0/24 maxlen: 24
151.186.169.0/24 maxlen: 24
151.186.170.0/24 maxlen: 24
151.186.171.0/24 maxlen: 24
151.186.172.0/22 maxlen: 24
151.186.172.0/24 maxlen: 24
151.186.173.0/24 maxlen: 24
151.186.174.0/24 maxlen: 24
151.186.175.0/24 maxlen: 24
151.186.176.0/20 maxlen: 24
151.186.176.0/24 maxlen: 24
151.186.177.0/24 maxlen: 24
151.186.178.0/24 maxlen: 24
151.186.179.0/24 maxlen: 24
151.186.180.0/24 maxlen: 24
151.186.181.0/24 maxlen: 24
151.186.182.0/24 maxlen: 24
151.186.183.0/24 maxlen: 24
151.186.184.0/24 maxlen: 24
151.186.185.0/24 maxlen: 24
151.186.186.0/24 maxlen: 24
151.186.187.0/24 maxlen: 24
151.186.188.0/24 maxlen: 24
151.186.189.0/24 maxlen: 24
151.186.190.0/24 maxlen: 24
151.186.191.0/24 maxlen: 24
151.186.192.0/20 maxlen: 24
151.186.192.0/24 maxlen: 24
151.186.193.0/24 maxlen: 24
151.186.194.0/24 maxlen: 24
151.186.195.0/24 maxlen: 24
151.186.196.0/24 maxlen: 24
151.186.197.0/24 maxlen: 24
151.186.198.0/24 maxlen: 24
151.186.199.0/24 maxlen: 24
151.186.200.0/24 maxlen: 24
151.186.201.0/24 maxlen: 24
151.186.202.0/24 maxlen: 24
151.186.203.0/24 maxlen: 24
151.186.204.0/24 maxlen: 24
151.186.205.0/24 maxlen: 24
151.186.206.0/24 maxlen: 24
151.186.207.0/24 maxlen: 24
2a04:e4c4:5::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 12 Jun 2024 13:52:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:0c:76:db:cd:3f:51:e5:36:66:7f:3d:4d:f5:f4:4b:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
Validity
Not Before: Jun 12 12:40:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=18774f4da35efd390f26e57ddfdb1b6efa7b4063
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:fe:20:8f:33:09:1e:27:5d:bf:57:b3:ea:4e:
be:73:88:27:f7:5f:f5:cb:95:e0:9f:b1:cd:d4:2b:
96:e1:02:7e:b3:4f:f9:5e:c9:03:5d:43:b7:ed:39:
63:b7:65:cb:6f:9e:ce:ac:f3:18:f9:de:60:8c:cd:
5f:a5:6f:ae:da:b9:04:df:1f:76:92:af:2e:4f:77:
f7:dd:bc:4e:af:63:ae:68:13:11:4d:9d:51:33:e0:
82:7e:59:7f:74:a1:cf:02:2f:47:3b:67:c2:3d:6a:
76:2f:ad:b8:52:1f:48:9a:5f:46:c0:bf:3a:f6:ff:
54:85:54:0c:d9:ab:52:72:14:6f:96:64:88:6d:77:
68:be:a2:45:8a:5a:7d:28:dc:9d:df:7c:ac:21:ff:
95:19:68:35:4b:70:06:22:be:d6:25:a8:db:5b:53:
fa:e9:67:4d:93:8c:e4:b9:1c:4c:fd:57:0b:24:01:
3a:a3:e0:63:1d:ec:4b:06:65:20:b9:a0:15:75:c2:
d5:e6:ba:e1:36:e0:dd:85:0c:2c:a1:76:c9:33:e3:
fd:11:c7:6b:e0:b5:19:0e:b4:02:b4:82:c6:d0:cb:
20:e2:c8:c5:02:f2:2d:e8:54:58:c1:c3:ee:3b:2a:
54:48:69:fd:b8:ce:a2:a1:8d:65:7a:e7:0b:95:4a:
24:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:77:4F:4D:A3:5E:FD:39:0F:26:E5:7D:DF:DB:1B:6E:FA:7B:40:63
X509v3 Authority Key Identifier:
keyid:E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/GHdPTaNe_TkPJuV939sbbvp7QGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/5xM9yvKx6_Xa3lozqhsvuZ0mibo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.186.144.0-151.186.207.255
IPv6:
2a04:e4c4:5::/48
Signature Algorithm: sha256WithRSAEncryption
21:c3:c4:38:de:c0:8d:9b:24:15:00:f5:79:5e:97:22:40:96:
cd:36:56:b2:5f:aa:4b:3e:76:a3:20:cb:61:82:94:b1:cd:f1:
59:c8:0b:58:16:ed:32:10:7c:63:78:75:ca:16:e1:3e:05:b4:
f0:50:66:1e:9b:61:19:57:63:81:b7:be:d8:66:dc:38:5a:bd:
35:e7:7f:40:d1:fd:e8:de:d6:e7:4c:0a:ab:d7:cc:f3:3a:79:
6a:2a:0d:e4:4d:88:dc:ff:45:b3:a9:6d:5b:cb:82:ed:97:8f:
5d:0f:a1:db:01:49:ee:2d:4c:c5:e7:6b:23:ce:5f:69:37:93:
f0:f4:9a:83:80:32:4a:ee:db:9c:21:ed:9d:0e:9c:3d:57:8f:
e0:61:21:63:70:1f:d8:a0:da:3f:8d:ae:d4:73:af:02:d9:41:
05:1c:a4:e7:a3:4d:fe:55:a9:6a:7e:1b:47:35:f6:38:b9:35:
d9:62:1c:75:3a:8f:e3:29:94:90:38:60:d2:20:7c:e9:97:00:
2a:5c:6b:68:ad:04:5e:a3:e1:84:90:c3:00:43:23:2f:fe:66:
dc:1c:37:18:0e:3a:84:af:71:1d:85:fa:46:79:3b:63:cd:50:
5d:b7:99:3c:7f:86:70:f4:c0:dd:62:a7:72:98:cb:12:a5:8f:
65:cb:8f:f6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAMdtvNP1HlNmZ/PU319EtFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3MTMzZGNhZjJiMWViZjVkYWRlNWEzM2FhMWIyZmI5OWQy
Njg5YmEwHhcNMjQwNjEyMTI0MDM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxODc3NGY0ZGEzNWVmZDM5MGYyNmU1N2RkZmRiMWI2ZWZhN2I0MDYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh/4gjzMJHiddv1ez6k6+c4gn91/1
y5Xgn7HN1CuW4QJ+s0/5XskDXUO37Tljt2XLb57OrPMY+d5gjM1fpW+u2rkE3x92
kq8uT3f33bxOr2OuaBMRTZ1RM+CCfll/dKHPAi9HO2fCPWp2L624Uh9Iml9GwL86
9v9UhVQM2atSchRvlmSIbXdovqJFilp9KNyd33ysIf+VGWg1S3AGIr7WJajbW1P6
6WdNk4zkuRxM/VcLJAE6o+BjHexLBmUguaAVdcLV5rrhNuDdhQwsoXbJM+P9Ecdr
4LUZDrQCtILG0Msg4sjFAvIt6FRYwcPuOypUSGn9uM6ioY1leucLlUok8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBh3T02jXv05Dyblfd/bG276e0BjMB8GA1UdIwQY
MBaAFOcTPcrysev12t5aM6obL7mdJom6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNXhNOXl2S3g2X1hhM2xvenFoc3Z1WjBtaWJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi81ZTRkZjgtYWU4Yy00NGE3LWJkNmUt
MTljZTQ2YTQyZmE0LzEvR0hkUFRhTmVfVGtQSnVWOTM5c2JidnA3UUdNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi81ZTRkZjgtYWU4Yy00NGE3LWJkNmUtMTljZTQ2YTQyZmE0
LzEvNXhNOXl2S3g2X1hhM2xvenFoc3Z1WjBtaWJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDgGCCsGAQUFBwEHAQH/BCkwJzAUBAIAATAOMAwDBASXupAD
BASXusAwDwQCAAIwCQMHACoE5MQABTANBgkqhkiG9w0BAQsFAAOCAQEAIcPEON7A
jZskFQD1eV6XIkCWzTZWsl+qSz52oyDLYYKUsc3xWcgLWBbtMhB8Y3h1yhbhPgW0
8FBmHpthGVdjgbe+2GbcOFq9Ned/QNH96N7W50wKq9fM8zp5aioN5E2I3P9Fs6lt
W8uC7ZePXQ+h2wFJ7i1MxedrI85faTeT8PSag4AySu7bnCHtnQ6cPVeP4GEhY3Af
2KDaP42u1HOvAtlBBRyk56NN/lWpan4bRzX2OLk12WIcdTqP4ymUkDhg0iB86ZcA
KlxraK0EXqPhhJDDAEMjL/5m3Bw3GA46hK9xHYX6Rnk7Y81QXbeZPH+GcPTA3WKn
cpjLEqWPZcuP9g==
-----END CERTIFICATE-----
Generated at Wed Jun 12 18:05:58 2024 by rpki-client on console-fra.rpki-client.org