Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/piS3YClS5UBtNdJgnI5NJbL5g-o.roa
File: piS3YClS5UBtNdJgnI5NJbL5g-o.roa (raw, json)
Hash identifier: 3vXWxnhA5Y1SWEu2Uu+xxiO37CyDJ2bB5kd+CJwBRa0=
Subject key identifier: A6:24:B7:60:29:52:E5:40:6D:35:D2:60:9C:8E:4D:25:B2:F9:83:EA
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018D7A931589A271DAB0952C0F635AF1E0CC
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/piS3YClS5UBtNdJgnI5NJbL5g-o.roa
Signing time: Mon 05 Feb 2024 18:41:16 +0000
ROA not before: Mon 05 Feb 2024 18:41:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49505
IP address blocks: 2.59.49.0/24 maxlen: 24
45.10.64.0/22 maxlen: 22
45.10.80.0/22 maxlen: 22
45.132.128.0/24 maxlen: 24
45.132.129.0/24 maxlen: 24
45.138.213.0/24 maxlen: 24
45.138.214.0/24 maxlen: 24
45.139.52.0/24 maxlen: 24
45.139.53.0/24 maxlen: 24
45.139.55.0/24 maxlen: 24
45.140.72.0/22 maxlen: 22
45.146.24.0/24 maxlen: 24
45.146.25.0/24 maxlen: 24
45.146.27.0/24 maxlen: 24
45.147.12.0/24 maxlen: 24
45.147.13.0/24 maxlen: 24
45.147.14.0/24 maxlen: 24
45.147.15.0/24 maxlen: 24
45.149.129.0/24 maxlen: 24
45.152.116.0/24 maxlen: 24
45.152.117.0/24 maxlen: 24
45.159.84.0/24 maxlen: 24
45.159.87.0/24 maxlen: 24
91.206.68.0/24 maxlen: 24
91.236.121.0/24 maxlen: 24
176.222.56.0/24 maxlen: 24
176.222.57.0/24 maxlen: 24
176.222.59.0/24 maxlen: 24
185.188.41.0/24 maxlen: 24
195.216.132.0/22 maxlen: 22
213.166.64.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 07 Feb 2024 18:11:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7a:93:15:89:a2:71:da:b0:95:2c:0f:63:5a:f1:e0:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 5 18:41:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a624b7602952e5406d35d2609c8e4d25b2f983ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f2:cd:d1:c0:b0:32:db:69:26:df:23:ac:c2:
f3:70:ed:0b:46:fb:6f:d1:4a:5e:b6:63:d9:de:ea:
ce:39:0b:f0:82:8e:0d:91:b7:a6:cf:81:a3:3b:ae:
91:58:28:d5:37:22:6e:65:b7:84:3b:ce:6a:68:6c:
81:e6:84:08:ed:8a:55:60:ee:62:e9:52:a4:ae:52:
c0:d6:5d:05:8c:7b:62:1f:48:b9:5b:21:18:37:4b:
b7:f0:c4:3a:e6:ce:40:a1:4d:17:6e:ad:70:6d:7a:
90:99:ef:63:57:c7:6d:b7:fd:10:08:8b:89:5c:f5:
4d:f6:ac:80:d5:13:e0:71:63:ed:b4:11:86:f8:72:
83:da:86:63:ae:f8:eb:00:8b:e9:62:78:7a:24:17:
4b:3b:a2:1e:44:03:6e:b4:16:a7:f5:03:eb:a7:a7:
01:e2:96:46:d0:48:b3:ab:3b:a4:26:d9:77:7b:a5:
8e:89:d7:cb:99:8d:70:72:c3:e3:6a:9e:8b:ca:a6:
f6:c0:d9:fa:5e:bd:e7:85:8b:50:2d:35:5a:3a:3b:
44:e0:d7:77:d9:5d:94:e0:86:00:56:52:1c:bc:b0:
10:a8:2e:c7:55:f4:17:ed:53:ae:79:30:82:dc:12:
e7:97:ae:95:59:44:d5:65:75:05:89:1e:cb:e0:58:
5f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:24:B7:60:29:52:E5:40:6D:35:D2:60:9C:8E:4D:25:B2:F9:83:EA
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/piS3YClS5UBtNdJgnI5NJbL5g-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.49.0/24
45.10.64.0/22
45.10.80.0/22
45.132.128.0/23
45.138.213.0-45.138.214.255
45.139.52.0/23
45.139.55.0/24
45.140.72.0/22
45.146.24.0/23
45.146.27.0/24
45.147.12.0/22
45.149.129.0/24
45.152.116.0/23
45.159.84.0/24
45.159.87.0/24
91.206.68.0/24
91.236.121.0/24
176.222.56.0/23
176.222.59.0/24
185.188.41.0/24
195.216.132.0/22
213.166.64.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:6b:83:87:61:3a:89:ca:5a:de:53:46:fb:62:2f:58:be:ef:
df:d8:b5:67:ac:70:45:cf:06:9b:02:2a:2d:ce:77:49:8a:f5:
9d:e0:36:55:46:b1:d3:49:0f:07:8c:98:57:47:53:7d:7f:cb:
be:44:6e:6e:23:85:6a:e8:29:f2:e9:66:f4:a5:33:0f:75:49:
66:d8:7f:50:a5:6a:fe:a0:1a:c3:25:e7:54:07:dc:79:b0:b1:
f1:db:84:49:4f:01:4b:bb:a0:bc:08:97:0d:d6:cb:83:7c:0e:
41:8e:48:2e:b7:0a:e7:b2:1c:9c:19:cd:fb:a9:96:af:2e:82:
e0:02:6d:cb:28:62:ec:5b:52:31:f4:88:e5:b3:fa:5c:07:15:
65:81:43:78:e0:28:d9:78:2e:d4:ae:f2:f8:65:8f:c8:f6:c8:
89:5e:0e:ed:9b:8a:1c:07:2d:d7:6e:14:81:ba:9f:c2:27:d3:
2a:f9:6f:b6:22:24:aa:b4:74:8a:5b:d8:5c:1a:cd:38:dc:96:
0d:0a:91:4f:60:d3:9a:71:34:87:1a:98:6b:0a:0d:54:46:01:
6e:d4:90:bf:53:36:e7:ba:4c:85:ff:57:70:95:5c:c5:a0:6c:
58:f1:25:1d:a1:dc:9d:31:7f:e4:3e:af:a7:c9:cb:5f:41:47:
cd:a7:65:04
-----BEGIN CERTIFICATE-----
MIIFiDCCBHCgAwIBAgISAY16kxWJonHasJUsD2Na8eDMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NmJiNDhlOTNlOGEwMDU4YzVjNzJhODFhODc5OTQ1NTMw
N2VlNTYwHhcNMjQwMjA1MTg0MTE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNjI0Yjc2MDI5NTJlNTQwNmQzNWQyNjA5YzhlNGQyNWIyZjk4M2VhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqfLN0cCwMttpJt8jrMLzcO0LRvtv
0UpetmPZ3urOOQvwgo4Nkbemz4GjO66RWCjVNyJuZbeEO85qaGyB5oQI7YpVYO5i
6VKkrlLA1l0FjHtiH0i5WyEYN0u38MQ65s5AoU0Xbq1wbXqQme9jV8dtt/0QCIuJ
XPVN9qyA1RPgcWPttBGG+HKD2oZjrvjrAIvpYnh6JBdLO6IeRANutBan9QPrp6cB
4pZG0EizqzukJtl3e6WOidfLmY1wcsPjap6Lyqb2wNn6Xr3nhYtQLTVaOjtE4Nd3
2V2U4IYAVlIcvLAQqC7HVfQX7VOueTCC3BLnl66VWUTVZXUFiR7L4Fhf8wIDAQAB
o4IClDCCApAwHQYDVR0OBBYEFKYkt2ApUuVAbTXSYJyOTSWy+YPqMB8GA1UdIwQY
MBaAFNdrtI6T6KAFjFxyqBqHmUVTB+5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgt
OGJmYmRkNDVjYjYyLzEvcGlTM1lDbFM1VUJ0TmRKZ25JNU5KYkw1Zy1vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgtOGJmYmRkNDVjYjYy
LzEvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGpBggrBgEFBQcBBwEB/wSBmTCBljCBkwQCAAEwgYwDBAAC
OzEDBAItCkADBAItClADBAEthIAwDAMEAC2K1QMEAC2K1gMEAS2LNAMEAC2LNwME
Ai2MSAMEAS2SGAMEAC2SGwMEAi2TDAMEAC2VgQMEAS2YdAMEAC2fVAMEAC2fVwME
AFvORAMEAFvseQMEAbDeOAMEALDeOwMEALm8KQMEAsPYhAMEAtWmQDANBgkqhkiG
9w0BAQsFAAOCAQEAH2uDh2E6icpa3lNG+2IvWL7v39i1Z6xwRc8GmwIqLc53SYr1
neA2VUax00kPB4yYV0dTfX/LvkRubiOFaugp8ulm9KUzD3VJZth/UKVq/qAawyXn
VAfcebCx8duESU8BS7ugvAiXDdbLg3wOQY5ILrcK57IcnBnN+6mWry6C4AJtyyhi
7FtSMfSI5bP6XAcVZYFDeOAo2Xgu1K7y+GWPyPbIiV4O7ZuKHAct124UgbqfwifT
KvlvtiIkqrR0ilvYXBrNONyWDQqRT2DTmnE0hxqYawoNVEYBbtSQv1M257pMhf9X
cJVcxaBsWPElHaHcnTF/5D6vp8nLX0FHzadlBA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:00 2024 by rpki-client on console-ams.rpki-client.org