Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/xFAHPMQONeNKTY_yctxdY8zHPTo.roa
File: xFAHPMQONeNKTY_yctxdY8zHPTo.roa (raw, json)
Hash identifier: glAl2Yu7/7PxyUtQSw6VDqgiWFV1opHYQ92sxnIKqs4=
Subject key identifier: C4:50:07:3C:C4:0E:35:E3:4A:4D:8F:F2:72:DC:5D:63:CC:C7:3D:3A
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018FA1138962E97B952AA057642D646CC441
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/xFAHPMQONeNKTY_yctxdY8zHPTo.roa
Signing time: Wed 22 May 2024 16:12:43 +0000
ROA not before: Wed 22 May 2024 16:12:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212667
IP address blocks: 2.59.48.0/24 maxlen: 24
31.222.240.0/24 maxlen: 24
31.222.243.0/24 maxlen: 24
31.222.250.0/24 maxlen: 24
37.221.80.0/24 maxlen: 24
45.11.22.0/24 maxlen: 24
45.14.221.0/24 maxlen: 24
45.89.68.0/24 maxlen: 24
45.89.71.0/24 maxlen: 24
91.188.220.0/24 maxlen: 24
94.158.188.0/24 maxlen: 24
176.56.35.0/24 maxlen: 24
176.56.36.0/24 maxlen: 24
176.124.34.0/24 maxlen: 24
185.202.106.0/24 maxlen: 24
185.212.112.0/24 maxlen: 24
185.234.8.0/24 maxlen: 24
188.95.71.0/24 maxlen: 24
193.3.18.0/24 maxlen: 24
193.201.114.0/24 maxlen: 24
194.32.240.0/24 maxlen: 24
195.18.26.0/24 maxlen: 24
195.69.148.0/24 maxlen: 24
195.69.150.0/24 maxlen: 24
195.96.150.0/24 maxlen: 24
195.225.96.0/24 maxlen: 24
212.18.100.0/24 maxlen: 24
212.18.122.0/24 maxlen: 24
212.52.4.0/24 maxlen: 24
213.109.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 30 Aug 2024 10:46:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a1:13:89:62:e9:7b:95:2a:a0:57:64:2d:64:6c:c4:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: May 22 16:12:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c450073cc40e35e34a4d8ff272dc5d63ccc73d3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:11:2b:e5:28:db:0a:ad:ce:d2:25:49:e5:a4:
c1:e1:5b:f0:df:72:9c:9d:41:72:ec:18:5e:44:6f:
85:83:b7:a3:10:fb:ea:03:69:33:2c:58:2b:90:59:
c1:37:c3:ec:a7:6b:9a:85:ea:5b:34:78:fc:a7:89:
5a:3c:93:09:e9:54:a9:09:53:2f:d5:30:58:48:5e:
2e:76:c7:6c:23:f1:f6:73:49:25:64:32:51:fc:a9:
d6:21:ab:fb:da:4a:8c:a4:37:89:f1:50:3d:04:cc:
69:33:c8:8b:38:66:59:61:0f:a3:6e:48:e3:1d:2c:
ff:c7:4c:45:e8:89:ad:ce:d3:85:d7:2c:43:de:b1:
c8:de:48:65:e1:2a:2e:7d:2c:0b:6c:88:dc:b1:80:
2f:fd:e1:00:8b:76:93:46:64:97:75:0e:83:23:46:
8d:cd:17:2f:4b:1f:77:85:b0:95:89:45:97:5d:86:
d3:1e:d4:39:04:a1:ad:b6:af:4f:39:d6:04:8e:12:
5b:62:94:0b:e5:0d:0d:65:2b:5d:b7:49:9a:b3:ed:
b0:12:b2:0b:9b:13:e5:62:45:c1:96:26:82:ae:e1:
9f:f3:e2:4a:6b:6e:45:d3:24:da:8c:c8:1b:4a:b1:
ed:9a:80:8e:78:c4:29:d7:6e:15:ae:64:05:44:29:
12:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:50:07:3C:C4:0E:35:E3:4A:4D:8F:F2:72:DC:5D:63:CC:C7:3D:3A
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/xFAHPMQONeNKTY_yctxdY8zHPTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.48.0/24
31.222.240.0/24
31.222.243.0/24
31.222.250.0/24
37.221.80.0/24
45.11.22.0/24
45.14.221.0/24
45.89.68.0/24
45.89.71.0/24
91.188.220.0/24
94.158.188.0/24
176.56.35.0-176.56.36.255
176.124.34.0/24
185.202.106.0/24
185.212.112.0/24
185.234.8.0/24
188.95.71.0/24
193.3.18.0/24
193.201.114.0/24
194.32.240.0/24
195.18.26.0/24
195.69.148.0/24
195.69.150.0/24
195.96.150.0/24
195.225.96.0/24
212.18.100.0/24
212.18.122.0/24
212.52.4.0/24
213.109.206.0/24
Signature Algorithm: sha256WithRSAEncryption
96:e7:aa:a0:d7:c9:12:a8:ab:bf:c5:3e:37:b3:dd:b9:20:d5:
8e:ba:26:f9:f4:d6:76:db:46:25:71:e6:f2:99:7f:d9:e0:9c:
dc:b0:e8:0e:bf:d2:b7:b5:fd:23:d1:8a:27:cc:94:c2:e2:73:
d5:28:f1:91:ea:3d:32:a7:21:8b:bb:c5:83:2b:d5:6a:24:5c:
f1:5c:26:05:72:55:28:92:c6:03:17:a1:8e:bb:72:d3:06:dd:
11:2f:2b:34:47:28:b2:42:eb:2d:87:6f:66:74:5c:10:38:9b:
a1:55:67:52:c6:af:ea:d7:7c:04:fa:63:7b:d8:63:70:3b:87:
26:91:a7:e4:29:d9:6c:31:65:6c:93:aa:6f:54:82:8f:15:63:
32:1d:68:65:2f:2e:ac:44:8b:60:a2:3d:88:cf:71:26:1c:14:
58:bd:a1:63:8a:e3:80:d3:15:45:68:c9:4f:07:07:43:a9:0f:
31:0a:1c:39:79:41:59:b5:57:b3:1a:f5:53:c7:fe:46:c1:03:
32:3e:0a:7b:9c:da:38:5f:64:5c:53:77:4b:60:83:d0:44:a1:
77:71:44:82:9c:31:d4:96:ff:88:ba:34:62:ab:23:05:5c:97:
74:56:6a:58:e9:3d:58:9d:7e:ad:b6:32:67:7a:7c:b1:4a:21:
f0:80:be:e4
-----BEGIN CERTIFICATE-----
MIIFsjCCBJqgAwIBAgISAY+hE4li6XuVKqBXZC1kbMRBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NmJiNDhlOTNlOGEwMDU4YzVjNzJhODFhODc5OTQ1NTMw
N2VlNTYwHhcNMjQwNTIyMTYxMjQzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNDUwMDczY2M0MGUzNWUzNGE0ZDhmZjI3MmRjNWQ2M2NjYzczZDNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoREr5SjbCq3O0iVJ5aTB4Vvw33Kc
nUFy7BheRG+Fg7ejEPvqA2kzLFgrkFnBN8Psp2uahepbNHj8p4laPJMJ6VSpCVMv
1TBYSF4udsdsI/H2c0klZDJR/KnWIav72kqMpDeJ8VA9BMxpM8iLOGZZYQ+jbkjj
HSz/x0xF6ImtztOF1yxD3rHI3khl4SoufSwLbIjcsYAv/eEAi3aTRmSXdQ6DI0aN
zRcvSx93hbCViUWXXYbTHtQ5BKGttq9POdYEjhJbYpQL5Q0NZStdt0mas+2wErIL
mxPlYkXBliaCruGf8+JKa25F0yTajMgbSrHtmoCOeMQp124VrmQFRCkSVQIDAQAB
o4ICvjCCArowHQYDVR0OBBYEFMRQBzzEDjXjSk2P8nLcXWPMxz06MB8GA1UdIwQY
MBaAFNdrtI6T6KAFjFxyqBqHmUVTB+5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgt
OGJmYmRkNDVjYjYyLzEveEZBSFBNUU9OZU5LVFlfeWN0eGRZOHpIUFRvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgtOGJmYmRkNDVjYjYy
LzEvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHTBggrBgEFBQcBBwEB/wSBwzCBwDCBvQQCAAEwgbYDBAAC
OzADBAAf3vADBAAf3vMDBAAf3voDBAAl3VADBAAtCxYDBAAtDt0DBAAtWUQDBAAt
WUcDBABbvNwDBABenrwwDAMEALA4IwMEALA4JAMEALB8IgMEALnKagMEALnUcAME
ALnqCAMEALxfRwMEAMEDEgMEAMHJcgMEAMIg8AMEAMMSGgMEAMNFlAMEAMNFlgME
AMNglgMEAMPhYAMEANQSZAMEANQSegMEANQ0BAMEANVtzjANBgkqhkiG9w0BAQsF
AAOCAQEAlueqoNfJEqirv8U+N7PduSDVjrom+fTWdttGJXHm8pl/2eCc3LDoDr/S
t7X9I9GKJ8yUwuJz1Sjxkeo9Mqchi7vFgyvVaiRc8VwmBXJVKJLGAxehjrty0wbd
ES8rNEcoskLrLYdvZnRcEDiboVVnUsav6td8BPpje9hjcDuHJpGn5CnZbDFlbJOq
b1SCjxVjMh1oZS8urESLYKI9iM9xJhwUWL2hY4rjgNMVRWjJTwcHQ6kPMQocOXlB
WbVXsxr1U8f+RsEDMj4Ke5zaOF9kXFN3S2CD0EShd3FEgpwx1Jb/iLo0YqsjBVyX
dFZqWOk9WJ1+rbYyZ3p8sUoh8IC+5A==
-----END CERTIFICATE-----
Generated at Fri Aug 30 12:26:51 2024 by rpki-client on console-fra.rpki-client.org