Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/776681-b5ee-430f-8693-101abd7391a6/1/6Zzrz7W5Lp8g4FeCOXEv54eaGU8.roa
File: 6Zzrz7W5Lp8g4FeCOXEv54eaGU8.roa (raw, json)
Hash identifier: 2ONB9+6KbjoUsen78JhR4JJ04DV/632upsiGq7UEVvY=
Subject key identifier: E9:9C:EB:CF:B5:B9:2E:9F:20:E0:57:82:39:71:2F:E7:87:9A:19:4F
Certificate issuer: /CN=8bb1308c6a977d5cb903bf25a96308b0e8ce3b46
Certificate serial: 018A26F624B4281A5539F552F0458F2AAD35
Authority key identifier: 8B:B1:30:8C:6A:97:7D:5C:B9:03:BF:25:A9:63:08:B0:E8:CE:3B:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i7EwjGqXfVy5A78lqWMIsOjOO0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/776681-b5ee-430f-8693-101abd7391a6/1/6Zzrz7W5Lp8g4FeCOXEv54eaGU8.roa
Signing time: Thu 24 Aug 2023 09:53:00 +0000
ROA not before: Thu 24 Aug 2023 09:53:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41155
IP address blocks: 45.158.139.0/24 maxlen: 24
45.158.136.0/24 maxlen: 24
45.158.137.0/24 maxlen: 24
45.158.138.0/24 maxlen: 24
194.0.221.0/24 maxlen: 24
194.0.223.0/24 maxlen: 24
194.0.193.0/24 maxlen: 24
45.156.74.0/24 maxlen: 24
45.156.75.0/24 maxlen: 24
45.156.72.0/24 maxlen: 24
45.156.73.0/24 maxlen: 24
2a0d:8e80:8e80::/48 maxlen: 48
2a0d:8e80:8080::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 12 Sep 2023 18:44:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:26:f6:24:b4:28:1a:55:39:f5:52:f0:45:8f:2a:ad:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bb1308c6a977d5cb903bf25a96308b0e8ce3b46
Validity
Not Before: Aug 24 09:53:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e99cebcfb5b92e9f20e0578239712fe7879a194f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:31:c8:e0:7b:e8:64:06:cf:96:43:1d:12:68:
b1:4d:53:6c:95:50:8c:7c:0a:d5:be:a5:d0:f9:de:
94:ac:96:9d:01:54:17:28:8a:9b:0d:e6:ab:ab:f4:
0d:59:68:ea:18:5e:70:00:f2:93:73:b5:12:0b:bb:
51:60:35:cc:96:41:ed:75:59:67:b5:e4:8b:fc:7b:
7a:a8:01:70:c2:32:f2:96:6a:b2:0e:f3:4c:6c:62:
99:8f:63:0c:ae:da:e0:6f:9d:a4:09:14:d8:69:95:
c2:df:e3:31:ba:29:b2:13:cf:f9:c2:7c:bf:6f:88:
ab:d1:83:dd:4a:61:2b:50:09:91:47:2b:b8:1c:af:
1e:e4:1c:25:e0:53:41:3f:7d:b3:f6:40:5c:3e:97:
2c:0b:b7:ce:c5:81:2a:78:ff:f3:09:8d:83:80:da:
8e:a8:9f:5a:89:40:2d:23:a8:0f:00:0d:fe:50:c3:
ad:12:10:ee:ca:d5:46:2c:e2:62:3c:2c:77:f7:57:
b8:b2:8f:95:64:ab:27:c1:6b:5a:1c:bb:84:7d:e0:
96:0a:9c:24:8f:b6:01:0f:1a:ae:30:18:24:24:d7:
4e:dc:d0:a7:50:21:b7:43:8e:07:4d:83:a1:e9:0b:
ab:d7:6d:5b:c8:f6:bd:14:cc:7b:bd:db:35:ec:02:
7a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:9C:EB:CF:B5:B9:2E:9F:20:E0:57:82:39:71:2F:E7:87:9A:19:4F
X509v3 Authority Key Identifier:
keyid:8B:B1:30:8C:6A:97:7D:5C:B9:03:BF:25:A9:63:08:B0:E8:CE:3B:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i7EwjGqXfVy5A78lqWMIsOjOO0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/776681-b5ee-430f-8693-101abd7391a6/1/6Zzrz7W5Lp8g4FeCOXEv54eaGU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/776681-b5ee-430f-8693-101abd7391a6/1/i7EwjGqXfVy5A78lqWMIsOjOO0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.72.0/22
45.158.136.0/22
194.0.193.0/24
194.0.221.0/24
194.0.223.0/24
IPv6:
2a0d:8e80:8080::/48
2a0d:8e80:8e80::/48
Signature Algorithm: sha256WithRSAEncryption
90:a3:96:17:ca:63:2d:2d:ff:c2:6b:05:20:0e:00:d2:a7:84:
d2:a2:65:08:a9:40:c9:53:01:cd:a7:f6:cd:50:7c:8f:9d:55:
df:7d:43:ef:7d:85:23:41:b9:0b:54:9e:ea:15:76:b2:01:b2:
6a:37:bc:e5:5a:f7:31:73:8c:5d:9a:d9:6a:63:78:cd:ce:c5:
1f:c0:cc:1d:bc:7c:a3:60:85:64:11:16:b7:48:55:62:8f:af:
26:37:e2:72:7d:61:70:40:22:1c:61:8f:84:9c:f6:67:f6:32:
b5:2d:ec:4d:99:96:d4:f5:c3:d3:6a:a1:f9:e4:30:77:8d:91:
8c:04:80:77:44:43:c3:79:2d:79:cb:14:19:20:b3:fe:ce:fe:
68:ad:2f:10:4c:ff:3b:53:02:ee:4a:85:fb:f6:37:19:94:6f:
68:73:43:09:8f:f3:42:b7:11:0c:9c:f7:66:f5:e2:92:a4:ad:
0a:a5:aa:dd:1d:18:e0:89:1c:0d:4b:c0:50:fd:e6:d5:44:ab:
a6:3c:02:75:6f:bd:46:b5:9a:cb:4c:eb:dd:f5:6a:2e:5b:90:
b4:3a:15:8b:68:ba:a7:99:c0:ef:b0:db:49:ea:e8:ad:dc:8b:
bd:06:69:12:f7:cb:bc:ad:da:39:86:3d:e4:af:5e:b8:34:2d:
f2:13:9d:03
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgISAYom9iS0KBpVOfVS8EWPKq01MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiYjEzMDhjNmE5NzdkNWNiOTAzYmYyNWE5NjMwOGIwZThj
ZTNiNDYwHhcNMjMwODI0MDk1MzAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOTljZWJjZmI1YjkyZTlmMjBlMDU3ODIzOTcxMmZlNzg3OWExOTRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgjHI4HvoZAbPlkMdEmixTVNslVCM
fArVvqXQ+d6UrJadAVQXKIqbDearq/QNWWjqGF5wAPKTc7USC7tRYDXMlkHtdVln
teSL/Ht6qAFwwjLylmqyDvNMbGKZj2MMrtrgb52kCRTYaZXC3+MxuimyE8/5wny/
b4ir0YPdSmErUAmRRyu4HK8e5Bwl4FNBP32z9kBcPpcsC7fOxYEqeP/zCY2DgNqO
qJ9aiUAtI6gPAA3+UMOtEhDuytVGLOJiPCx391e4so+VZKsnwWtaHLuEfeCWCpwk
j7YBDxquMBgkJNdO3NCnUCG3Q44HTYOh6Qur121byPa9FMx7vds17AJ6sQIDAQAB
o4ICOzCCAjcwHQYDVR0OBBYEFOmc68+1uS6fIOBXgjlxL+eHmhlPMB8GA1UdIwQY
MBaAFIuxMIxql31cuQO/JaljCLDozjtGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTdFd2pHcVhmVnk1QTc4bHFXTUlzT2pPTzBZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy83NzY2ODEtYjVlZS00MzBmLTg2OTMt
MTAxYWJkNzM5MWE2LzEvNlp6cno3VzVMcDhnNEZlQ09YRXY1NGVhR1U4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy83NzY2ODEtYjVlZS00MzBmLTg2OTMtMTAxYWJkNzM5MWE2
LzEvaTdFd2pHcVhmVnk1QTc4bHFXTUlzT2pPTzBZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFEGCCsGAQUFBwEHAQH/BEIwQDAkBAIAATAeAwQCLZxIAwQC
LZ6IAwQAwgDBAwQAwgDdAwQAwgDfMBgEAgACMBIDBwAqDY6AgIADBwAqDY6AjoAw
DQYJKoZIhvcNAQELBQADggEBAJCjlhfKYy0t/8JrBSAOANKnhNKiZQipQMlTAc2n
9s1QfI+dVd99Q+99hSNBuQtUnuoVdrIBsmo3vOVa9zFzjF2a2WpjeM3OxR/AzB28
fKNghWQRFrdIVWKPryY34nJ9YXBAIhxhj4Sc9mf2MrUt7E2ZltT1w9NqofnkMHeN
kYwEgHdEQ8N5LXnLFBkgs/7O/mitLxBM/ztTAu5Khfv2NxmUb2hzQwmP80K3EQyc
92b14pKkrQqlqt0dGOCJHA1LwFD95tVEq6Y8AnVvvUa1mstM6931ai5bkLQ6FYto
uqeZwO+w20nq6K3ci70GaRL3y7yt2jmGPeSvXrg0LfITnQM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:51 2024 by rpki-client on console-fra.rpki-client.org