Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/cVgVtvucbcMJJxfaxgZrxm-fs5E.roa
File: cVgVtvucbcMJJxfaxgZrxm-fs5E.roa (raw, json)
Hash identifier: B3xX4rlaCwMDTAmpcp5L5PzohPCRLO6YMikZuYBaB68=
Subject key identifier: 71:58:15:B6:FB:9C:6D:C3:09:27:17:DA:C6:06:6B:C6:6F:9F:B3:91
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018E386D3A07A9D0F135D7341DE59F7DDD21
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/cVgVtvucbcMJJxfaxgZrxm-fs5E.roa
Signing time: Wed 13 Mar 2024 15:27:46 +0000
ROA not before: Wed 13 Mar 2024 15:27:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202656
IP address blocks: 45.15.239.0/24 maxlen: 24
45.129.1.0/24 maxlen: 24
45.132.39.0/24 maxlen: 24
45.135.35.0/24 maxlen: 24
45.138.7.0/24 maxlen: 24
45.138.156.0/24 maxlen: 24
45.138.212.0/24 maxlen: 24
45.138.215.0/24 maxlen: 24
45.140.65.0/24 maxlen: 24
45.149.130.0/24 maxlen: 24
45.149.131.0/24 maxlen: 24
45.152.118.0/24 maxlen: 24
45.152.119.0/24 maxlen: 24
83.138.52.0/24 maxlen: 24
84.246.82.0/24 maxlen: 24
91.206.69.0/24 maxlen: 24
91.237.104.0/24 maxlen: 24
91.237.105.0/24 maxlen: 24
176.116.5.0/24 maxlen: 24
176.116.20.0/24 maxlen: 24
176.116.23.0/24 maxlen: 24
176.126.109.0/24 maxlen: 24
176.126.112.0/24 maxlen: 24
176.126.115.0/24 maxlen: 24
193.0.245.0/24 maxlen: 24
193.0.246.0/24 maxlen: 24
193.5.1.0/24 maxlen: 24
193.58.171.0/24 maxlen: 24
193.58.178.0/24 maxlen: 24
194.107.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 May 2024 17:10:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:38:6d:3a:07:a9:d0:f1:35:d7:34:1d:e5:9f:7d:dd:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Mar 13 15:27:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=715815b6fb9c6dc3092717dac6066bc66f9fb391
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:52:1d:82:c0:54:bc:62:88:25:c0:76:31:85:
58:c5:e0:6e:fe:09:51:ac:70:9d:10:b3:cc:d0:84:
27:35:9b:3f:7c:3d:ee:34:67:aa:7f:6f:1e:14:55:
ae:77:17:b3:9a:49:2a:b4:74:a2:bd:d3:45:c3:81:
63:4c:d8:31:1c:1c:fa:01:2a:d6:13:58:a0:26:32:
6d:e2:b3:f1:c0:e7:7e:83:08:d9:ca:e6:6c:fa:d4:
36:9c:61:fb:e5:33:db:81:99:4b:be:49:9a:d0:7a:
ed:28:98:c6:b0:79:fc:4a:74:c6:c5:30:18:2b:b5:
70:41:f8:a6:66:fb:dd:f5:ef:f7:c6:00:c7:c5:46:
dc:6d:16:64:bf:5f:d7:43:cc:ee:43:fb:e0:a6:a0:
86:25:89:3a:50:9c:c3:22:70:90:d6:ff:b4:8e:60:
84:8c:16:64:f0:a5:d1:cf:1b:da:70:e3:ea:1a:e0:
8f:74:4e:ec:71:9d:67:a1:d4:a4:c9:84:f1:be:4e:
2d:19:fa:38:01:70:cf:4d:20:fa:44:a6:df:90:fd:
95:77:5a:04:1c:fd:57:33:b1:f5:d0:24:d5:93:d6:
e9:d2:e4:99:f3:31:4f:be:f5:5c:dd:a8:36:6e:48:
f6:49:04:57:85:e4:39:f7:94:e0:8e:10:95:ba:5a:
61:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:58:15:B6:FB:9C:6D:C3:09:27:17:DA:C6:06:6B:C6:6F:9F:B3:91
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/cVgVtvucbcMJJxfaxgZrxm-fs5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.239.0/24
45.129.1.0/24
45.132.39.0/24
45.135.35.0/24
45.138.7.0/24
45.138.156.0/24
45.138.212.0/24
45.138.215.0/24
45.140.65.0/24
45.149.130.0/23
45.152.118.0/23
83.138.52.0/24
84.246.82.0/24
91.206.69.0/24
91.237.104.0/23
176.116.5.0/24
176.116.20.0/24
176.116.23.0/24
176.126.109.0/24
176.126.112.0/24
176.126.115.0/24
193.0.245.0-193.0.246.255
193.5.1.0/24
193.58.171.0/24
193.58.178.0/24
194.107.200.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:79:72:9b:a1:e5:d3:93:48:07:76:04:47:85:59:21:39:6e:
97:db:6d:1c:8c:d4:7a:2d:e8:fa:55:77:ab:15:2b:f4:97:4a:
9f:8a:e4:37:5c:92:1a:a1:e2:41:10:90:6e:4e:a9:37:c6:1a:
79:30:13:5a:5b:5f:94:0f:9e:67:89:c6:ac:1f:d6:1e:0e:c3:
02:e5:ea:9e:6a:f1:a3:bc:9a:be:a1:b3:64:ed:b0:0f:f8:8a:
37:a3:23:b4:04:5a:18:f3:3f:d3:c3:3b:4d:fd:7a:22:dc:2d:
ba:ea:69:c5:d8:85:e8:9f:c5:79:15:1b:08:7d:0d:f9:d5:1e:
c6:94:b7:13:24:d9:57:6c:2f:eb:33:78:15:6d:12:0e:94:6d:
27:91:ef:be:d8:1d:92:80:2a:d6:d7:ef:e0:0e:11:68:b0:03:
e6:99:27:1c:6a:1d:ac:64:9e:22:f6:1b:02:e5:58:f8:ec:ae:
eb:44:13:fa:33:7d:27:31:26:cb:fe:7d:32:2e:f9:c7:88:74:
dc:ec:32:38:7d:6c:77:99:9d:82:bc:d3:21:6b:95:e5:93:0a:
0a:2d:6e:81:4c:8b:92:33:e9:b7:4d:79:42:5f:a3:aa:d6:d9:
64:d4:e9:de:5f:9b:bf:9e:3d:f8:a7:24:dc:b8:ff:73:8a:33:
05:84:a6:db
-----BEGIN CERTIFICATE-----
MIIFoDCCBIigAwIBAgISAY44bToHqdDxNdc0HeWffd0hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NmJiNDhlOTNlOGEwMDU4YzVjNzJhODFhODc5OTQ1NTMw
N2VlNTYwHhcNMjQwMzEzMTUyNzQ2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MTU4MTViNmZiOWM2ZGMzMDkyNzE3ZGFjNjA2NmJjNjZmOWZiMzkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv1IdgsBUvGKIJcB2MYVYxeBu/glR
rHCdELPM0IQnNZs/fD3uNGeqf28eFFWudxezmkkqtHSivdNFw4FjTNgxHBz6ASrW
E1igJjJt4rPxwOd+gwjZyuZs+tQ2nGH75TPbgZlLvkma0HrtKJjGsHn8SnTGxTAY
K7VwQfimZvvd9e/3xgDHxUbcbRZkv1/XQ8zuQ/vgpqCGJYk6UJzDInCQ1v+0jmCE
jBZk8KXRzxvacOPqGuCPdE7scZ1nodSkyYTxvk4tGfo4AXDPTSD6RKbfkP2Vd1oE
HP1XM7H10CTVk9bp0uSZ8zFPvvVc3ag2bkj2SQRXheQ595TgjhCVulph4wIDAQAB
o4ICrDCCAqgwHQYDVR0OBBYEFHFYFbb7nG3DCScX2sYGa8Zvn7ORMB8GA1UdIwQY
MBaAFNdrtI6T6KAFjFxyqBqHmUVTB+5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgt
OGJmYmRkNDVjYjYyLzEvY1ZnVnR2dWNiY01KSnhmYXhnWnJ4bS1mczVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgtOGJmYmRkNDVjYjYy
LzEvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHBBggrBgEFBQcBBwEB/wSBsTCBrjCBqwQCAAEwgaQDBAAt
D+8DBAAtgQEDBAAthCcDBAAthyMDBAAtigcDBAAtipwDBAAtitQDBAAtitcDBAAt
jEEDBAEtlYIDBAEtmHYDBABTijQDBABU9lIDBABbzkUDBAFb7WgDBACwdAUDBACw
dBQDBACwdBcDBACwfm0DBACwfnADBACwfnMwDAMEAMEA9QMEAMEA9gMEAMEFAQME
AME6qwMEAME6sgMEAMJryDANBgkqhkiG9w0BAQsFAAOCAQEAP3lym6Hl05NIB3YE
R4VZITlul9ttHIzUei3o+lV3qxUr9JdKn4rkN1ySGqHiQRCQbk6pN8YaeTATWltf
lA+eZ4nGrB/WHg7DAuXqnmrxo7yavqGzZO2wD/iKN6MjtARaGPM/08M7Tf16Itwt
uuppxdiF6J/FeRUbCH0N+dUexpS3EyTZV2wv6zN4FW0SDpRtJ5HvvtgdkoAq1tfv
4A4RaLAD5pknHGodrGSeIvYbAuVY+Oyu60QT+jN9JzEmy/59Mi75x4h03OwyOH1s
d5mdgrzTIWuV5ZMKCi1ugUyLkjPpt015Ql+jqtbZZNTp3l+bv549+Kck3Lj/c4oz
BYSm2w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org