Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0aa6e6-3054-4888-865e-265f2bd0f8f3/1/eLyBFWJ5yyKJuarKUYm09Jba_rI.roa
File: eLyBFWJ5yyKJuarKUYm09Jba_rI.roa (raw, json)
Hash identifier: VMM+2ruIWnL1mwG4S1FpSsDuUNzZI649Bvb2KzhxL/Q=
Subject key identifier: 78:BC:81:15:62:79:CB:22:89:B9:AA:CA:51:89:B4:F4:96:DA:FE:B2
Certificate issuer: /CN=8b69fc6128be591401acf82bc2461af636ebe8e6
Certificate serial: 0190A6AF2452FB7FA6B3DB55E03622E832CA
Authority key identifier: 8B:69:FC:61:28:BE:59:14:01:AC:F8:2B:C2:46:1A:F6:36:EB:E8:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2n8YSi-WRQBrPgrwkYa9jbr6OY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0aa6e6-3054-4888-865e-265f2bd0f8f3/1/eLyBFWJ5yyKJuarKUYm09Jba_rI.roa
Signing time: Fri 12 Jul 2024 11:23:34 +0000
ROA not before: Fri 12 Jul 2024 11:23:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51531
IP address blocks: 45.129.80.0/22 maxlen: 24
46.31.120.0/21 maxlen: 24
81.89.88.0/21 maxlen: 24
185.70.20.0/22 maxlen: 24
185.176.193.0/24 maxlen: 24
185.176.194.0/23 maxlen: 24
2a02:c50::/32 maxlen: 32
2a02:c50::/34 maxlen: 34
2a02:c50:6000::/35 maxlen: 35
2a02:c50:8000::/33 maxlen: 33
Validation: Failed, certificate revoked on Thu 29 Aug 2024 13:53:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a6:af:24:52:fb:7f:a6:b3:db:55:e0:36:22:e8:32:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b69fc6128be591401acf82bc2461af636ebe8e6
Validity
Not Before: Jul 12 11:23:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=78bc81156279cb2289b9aaca5189b4f496dafeb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b7:c8:a5:93:3f:2d:b1:3e:54:d4:e2:65:95:
f0:a0:4f:49:bc:54:2c:a0:5a:ff:6c:bd:dd:50:2d:
7d:45:45:be:2c:4a:33:e5:e4:c1:fc:1f:1d:05:4b:
16:45:bb:e7:8a:35:21:30:85:fe:7b:74:97:ea:e7:
aa:a7:f4:82:23:43:aa:73:30:39:c6:8d:a6:b1:0a:
00:c0:3b:f8:0c:b5:47:a3:f2:f1:c3:08:ee:58:5f:
af:73:42:0a:9e:b3:ed:49:db:12:0f:1d:d1:a6:6a:
7d:09:c8:75:0f:67:68:f0:05:44:89:12:4f:ce:0b:
c5:01:f7:38:9d:64:c8:75:02:36:16:1f:c6:83:f1:
22:7d:cd:59:21:9f:cb:f5:22:82:86:f1:8c:87:16:
3b:5c:07:9f:73:6f:fa:02:1b:d7:2f:b4:74:6f:bf:
5d:af:f6:20:22:0e:fb:67:0a:89:04:e9:57:f9:90:
8e:30:04:ed:a5:f9:59:6a:ce:bb:f3:d8:c1:a4:2b:
1b:aa:08:1d:f5:54:1d:53:96:43:2b:4e:68:2b:17:
bf:a4:3a:ec:dd:58:13:4b:c4:39:e3:fa:a6:05:8b:
13:5e:8a:ea:b4:6d:34:52:77:f8:47:b5:79:15:27:
0e:53:6c:15:8e:f8:83:56:79:32:a1:59:06:bb:dc:
62:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:BC:81:15:62:79:CB:22:89:B9:AA:CA:51:89:B4:F4:96:DA:FE:B2
X509v3 Authority Key Identifier:
keyid:8B:69:FC:61:28:BE:59:14:01:AC:F8:2B:C2:46:1A:F6:36:EB:E8:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2n8YSi-WRQBrPgrwkYa9jbr6OY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0aa6e6-3054-4888-865e-265f2bd0f8f3/1/eLyBFWJ5yyKJuarKUYm09Jba_rI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0aa6e6-3054-4888-865e-265f2bd0f8f3/1/i2n8YSi-WRQBrPgrwkYa9jbr6OY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.80.0/22
46.31.120.0/21
81.89.88.0/21
185.70.20.0/22
185.176.193.0-185.176.195.255
IPv6:
2a02:c50::/32
Signature Algorithm: sha256WithRSAEncryption
aa:6c:be:ee:68:ed:09:9b:1a:66:21:2a:a7:fa:4c:0e:29:b0:
b3:42:72:30:55:5e:a3:8a:05:ad:46:df:de:4e:a0:0e:14:9a:
3d:49:36:13:2d:e6:e4:19:43:f5:37:64:c6:78:e5:07:3f:16:
5b:f4:13:45:3c:25:ab:85:74:5d:67:33:0d:ef:f6:6d:59:4e:
62:c5:35:fe:3f:d4:59:2c:07:40:08:6d:99:2c:ef:e7:44:cd:
8b:84:2c:ab:e0:21:2e:a2:0c:2b:6b:56:61:21:0e:d5:81:89:
ef:0a:7f:86:3d:05:92:93:38:9d:e4:d8:b5:7f:ba:9c:cb:b9:
6e:81:93:ff:57:89:b7:ef:e5:45:0a:26:2e:83:f8:ea:c4:43:
6e:f6:10:ac:29:bb:8f:3c:1d:18:1c:01:30:04:10:09:9f:26:
56:46:40:f3:c3:2e:a2:fa:66:fa:f6:bd:d8:ea:1d:73:59:42:
d0:ba:32:79:c4:88:13:68:9a:13:14:10:29:f7:5c:57:76:53:
d0:01:f6:39:ba:ba:03:ae:cb:0c:c5:97:54:37:ca:7d:59:55:
98:95:1a:0a:87:fd:85:80:b9:59:02:24:bd:5a:19:48:79:cf:
96:4b:d9:9a:ac:f1:b0:55:36:46:20:48:6f:50:74:42:c2:46:
7d:18:af:72
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgISAZCmryRS+3+ms9tV4DYi6DLKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiNjlmYzYxMjhiZTU5MTQwMWFjZjgyYmMyNDYxYWY2MzZl
YmU4ZTYwHhcNMjQwNzEyMTEyMzM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OGJjODExNTYyNzljYjIyODliOWFhY2E1MTg5YjRmNDk2ZGFmZWIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu7fIpZM/LbE+VNTiZZXwoE9JvFQs
oFr/bL3dUC19RUW+LEoz5eTB/B8dBUsWRbvnijUhMIX+e3SX6ueqp/SCI0OqczA5
xo2msQoAwDv4DLVHo/LxwwjuWF+vc0IKnrPtSdsSDx3Rpmp9Cch1D2do8AVEiRJP
zgvFAfc4nWTIdQI2Fh/Gg/Eifc1ZIZ/L9SKChvGMhxY7XAefc2/6AhvXL7R0b79d
r/YgIg77ZwqJBOlX+ZCOMATtpflZas6789jBpCsbqggd9VQdU5ZDK05oKxe/pDrs
3VgTS8Q54/qmBYsTXorqtG00Unf4R7V5FScOU2wVjviDVnkyoVkGu9xiQQIDAQAB
o4ICODCCAjQwHQYDVR0OBBYEFHi8gRViecsiibmqylGJtPSW2v6yMB8GA1UdIwQY
MBaAFItp/GEovlkUAaz4K8JGGvY26+jmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTJuOFlTaS1XUlFCclBncndrWWE5amJyNk9ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8wYWE2ZTYtMzA1NC00ODg4LTg2NWUt
MjY1ZjJiZDBmOGYzLzEvZUx5QkZXSjV5eUtKdWFyS1VZbTA5SmJhX3JJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC8wYWE2ZTYtMzA1NC00ODg4LTg2NWUtMjY1ZjJiZDBmOGYz
LzEvaTJuOFlTaS1XUlFCclBncndrWWE5amJyNk9ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME4GCCsGAQUFBwEHAQH/BD8wPTAsBAIAATAmAwQCLYFQAwQD
Lh94AwQDUVlYAwQCuUYUMAwDBAC5sMEDBAK5sMAwDQQCAAIwBwMFACoCDFAwDQYJ
KoZIhvcNAQELBQADggEBAKpsvu5o7QmbGmYhKqf6TA4psLNCcjBVXqOKBa1G395O
oA4Umj1JNhMt5uQZQ/U3ZMZ45Qc/Flv0E0U8JauFdF1nMw3v9m1ZTmLFNf4/1Fks
B0AIbZks7+dEzYuELKvgIS6iDCtrVmEhDtWBie8Kf4Y9BZKTOJ3k2LV/upzLuW6B
k/9Xibfv5UUKJi6D+OrEQ272EKwpu488HRgcATAEEAmfJlZGQPPDLqL6Zvr2vdjq
HXNZQtC6MnnEiBNomhMUECn3XFd2U9AB9jm6ugOuywzFl1Q3yn1ZVZiVGgqH/YWA
uVkCJL1aGUh5z5ZL2Zqs8bBVNkYgSG9QdELCRn0Yr3I=
-----END CERTIFICATE-----
Generated at Thu Aug 29 16:57:24 2024 by rpki-client on console-fra.rpki-client.org