Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/9W0ZSnknaXYXjorHFfhnMb_rf1U.roa
File: 9W0ZSnknaXYXjorHFfhnMb_rf1U.roa (raw, json)
Hash identifier: Ddady06DDFIDBsTTp3kWgQGoGT/stg0I8/hpbJmUqBQ=
Subject key identifier: F5:6D:19:4A:79:27:69:76:17:8E:8A:C7:15:F8:67:31:BF:EB:7F:55
Certificate issuer: /CN=a63bcc6d25f7476fbb3ec33f6dbc3e9eead92212
Certificate serial: 018776F4B7E35EB3E31CA093BD25DBF58198
Authority key identifier: A6:3B:CC:6D:25:F7:47:6F:BB:3E:C3:3F:6D:BC:3E:9E:EA:D9:22:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pjvMbSX3R2-7PsM_bbw-nurZIhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/9W0ZSnknaXYXjorHFfhnMb_rf1U.roa
Signing time: Wed 12 Apr 2023 19:32:41 +0000
ROA not before: Wed 12 Apr 2023 19:32:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35819
IP address blocks: 46.152.160.0/20 maxlen: 20
178.80.64.0/21 maxlen: 21
46.152.176.0/20 maxlen: 20
178.80.72.0/21 maxlen: 21
178.80.80.0/21 maxlen: 21
46.152.192.0/19 maxlen: 19
178.80.88.0/21 maxlen: 21
178.80.96.0/20 maxlen: 20
178.80.0.0/20 maxlen: 20
178.80.16.0/20 maxlen: 20
46.152.128.0/19 maxlen: 19
178.80.32.0/20 maxlen: 20
178.80.48.0/20 maxlen: 20
46.153.16.0/20 maxlen: 20
178.80.160.0/20 maxlen: 20
178.80.176.0/20 maxlen: 20
46.153.32.0/20 maxlen: 20
178.80.192.0/19 maxlen: 19
46.153.48.0/20 maxlen: 20
46.153.64.0/19 maxlen: 19
178.80.112.0/20 maxlen: 20
46.152.224.0/20 maxlen: 20
178.80.128.0/20 maxlen: 20
46.152.240.0/20 maxlen: 20
178.80.144.0/20 maxlen: 20
46.153.0.0/20 maxlen: 20
46.153.128.0/20 maxlen: 20
46.153.144.0/20 maxlen: 20
46.153.160.0/19 maxlen: 19
178.80.224.0/19 maxlen: 19
46.153.96.0/19 maxlen: 19
46.152.64.0/19 maxlen: 19
46.153.240.0/20 maxlen: 20
46.152.96.0/19 maxlen: 19
46.152.0.0/19 maxlen: 19
46.153.192.0/20 maxlen: 20
46.153.208.0/20 maxlen: 20
46.152.32.0/19 maxlen: 19
46.153.224.0/20 maxlen: 20
Validation: Failed, certificate revoked on Wed 12 Apr 2023 19:56:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:76:f4:b7:e3:5e:b3:e3:1c:a0:93:bd:25:db:f5:81:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a63bcc6d25f7476fbb3ec33f6dbc3e9eead92212
Validity
Not Before: Apr 12 19:32:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f56d194a79276976178e8ac715f86731bfeb7f55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:09:5c:c4:0e:a0:79:80:94:6e:e5:79:3c:0b:
7f:d6:e9:1c:0a:06:0b:0d:c4:32:20:26:85:ab:2e:
74:b6:ab:95:d5:22:e1:29:eb:47:de:91:64:6a:7a:
ef:fd:fd:2e:e9:75:c8:27:3c:78:85:d5:b0:1d:e1:
73:22:1d:c2:cf:19:e2:5c:61:61:8b:14:4e:e1:62:
4b:f0:91:e1:c0:88:ea:11:1f:9c:fe:da:43:58:5e:
98:11:b5:a5:0f:76:13:07:33:e2:0b:11:07:64:46:
31:80:8a:9c:ea:54:e7:17:ce:bb:5f:ba:31:77:0b:
88:53:ab:19:b7:48:93:e0:4c:36:b0:61:34:1f:88:
fc:78:fa:51:1b:c3:c8:3b:93:fe:6e:36:44:d8:ce:
43:5f:4d:78:41:3d:7c:7f:17:c8:3c:41:9d:75:6b:
fc:fc:90:3f:a3:94:bf:d3:79:e9:06:fc:d1:ae:19:
94:97:ff:6e:29:32:09:5a:26:51:66:b1:3e:df:34:
f8:b7:6a:e6:c6:16:89:9f:3c:f8:dd:52:f5:3c:78:
aa:84:fe:39:ea:30:25:ed:80:f6:c1:d3:ff:55:b6:
35:39:52:d9:c4:d2:ff:47:dd:2c:1f:c1:bc:55:0c:
76:34:4f:a6:2a:f6:cb:2b:0d:7d:38:cd:6c:6a:2a:
21:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:6D:19:4A:79:27:69:76:17:8E:8A:C7:15:F8:67:31:BF:EB:7F:55
X509v3 Authority Key Identifier:
keyid:A6:3B:CC:6D:25:F7:47:6F:BB:3E:C3:3F:6D:BC:3E:9E:EA:D9:22:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pjvMbSX3R2-7PsM_bbw-nurZIhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/9W0ZSnknaXYXjorHFfhnMb_rf1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/pjvMbSX3R2-7PsM_bbw-nurZIhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.152.0.0/15
178.80.0.0/16
Signature Algorithm: sha256WithRSAEncryption
0a:3e:81:7b:a2:72:62:d0:2e:b6:e3:f3:72:3d:46:e9:a6:f9:
ac:05:f4:33:a3:14:03:d3:d5:68:73:d6:dc:7c:63:66:31:64:
98:d3:3d:02:d7:51:7a:bf:1e:e4:bd:b7:d9:57:c5:80:4d:fb:
26:64:45:2e:1e:42:fb:52:cf:bf:9c:0f:1e:3b:88:a3:87:fb:
76:76:16:25:6d:d0:4e:23:f5:70:30:16:b2:d1:54:53:d3:c9:
39:1e:e6:9b:f0:67:c5:30:66:2e:e2:2c:00:63:f0:91:00:db:
00:6c:c1:2a:90:66:40:f5:a6:58:04:a8:6e:18:43:66:36:c1:
d4:02:26:3d:4d:1a:3c:c6:7c:cd:4e:ba:bf:27:8a:ed:73:47:
ea:33:00:3f:91:2e:5a:76:68:cc:27:00:13:30:d0:6e:95:b3:
84:24:da:8c:ba:d8:d8:98:ad:dd:6a:79:bf:74:1c:1d:d0:f9:
28:fb:ac:4e:78:f9:79:df:d3:ae:ee:c4:3c:1e:c0:cb:4b:71:
ac:92:9b:c4:10:1d:18:3a:fa:af:51:9e:f1:b6:74:16:72:a0:
ba:07:47:cc:19:05:ee:95:d6:c8:c7:8c:b2:b6:42:58:a6:2c:
16:04:df:9c:68:1f:bf:a0:c6:41:70:cf:b3:3c:4f:88:2a:66:
33:ab:6d:aa
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgISAYd29LfjXrPjHKCTvSXb9YGYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2M2JjYzZkMjVmNzQ3NmZiYjNlYzMzZjZkYmMzZTllZWFk
OTIyMTIwHhcNMjMwNDEyMTkzMjQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNTZkMTk0YTc5Mjc2OTc2MTc4ZThhYzcxNWY4NjczMWJmZWI3ZjU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAowlcxA6geYCUbuV5PAt/1ukcCgYL
DcQyICaFqy50tquV1SLhKetH3pFkanrv/f0u6XXIJzx4hdWwHeFzIh3CzxniXGFh
ixRO4WJL8JHhwIjqER+c/tpDWF6YEbWlD3YTBzPiCxEHZEYxgIqc6lTnF867X7ox
dwuIU6sZt0iT4Ew2sGE0H4j8ePpRG8PIO5P+bjZE2M5DX014QT18fxfIPEGddWv8
/JA/o5S/03npBvzRrhmUl/9uKTIJWiZRZrE+3zT4t2rmxhaJnzz43VL1PHiqhP45
6jAl7YD2wdP/VbY1OVLZxNL/R90sH8G8VQx2NE+mKvbLKw19OM1saiohGQIDAQAB
o4ICDTCCAgkwHQYDVR0OBBYEFPVtGUp5J2l2F46KxxX4ZzG/639VMB8GA1UdIwQY
MBaAFKY7zG0l90dvuz7DP228Pp7q2SISMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGp2TWJTWDNSMi03UHNNX2Jidy1udXJaSWhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS83NjhmZGItZDFiNS00YmVmLWJjYmQt
NDkyNGZhMDAwYjdjLzEvOVcwWlNua25hWFlYam9ySEZmaG5NYl9yZjFVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS83NjhmZGItZDFiNS00YmVmLWJjYmQtNDkyNGZhMDAwYjdj
LzEvcGp2TWJTWDNSMi03UHNNX2Jidy1udXJaSWhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCMGCCsGAQUFBwEHAQH/BBQwEjAQBAIAATAKAwMBLpgDAwCy
UDANBgkqhkiG9w0BAQsFAAOCAQEACj6Be6JyYtAutuPzcj1G6ab5rAX0M6MUA9PV
aHPW3HxjZjFkmNM9AtdRer8e5L232VfFgE37JmRFLh5C+1LPv5wPHjuIo4f7dnYW
JW3QTiP1cDAWstFUU9PJOR7mm/BnxTBmLuIsAGPwkQDbAGzBKpBmQPWmWASobhhD
ZjbB1AImPU0aPMZ8zU66vyeK7XNH6jMAP5EuWnZozCcAEzDQbpWzhCTajLrY2Jit
3Wp5v3QcHdD5KPusTnj5ed/Tru7EPB7Ay0txrJKbxBAdGDr6r1Ge8bZ0FnKgugdH
zBkF7pXWyMeMsrZCWKYsFgTfnGgfv6DGQXDPszxPiCpmM6ttqg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:05 2024 by rpki-client on console-ams.rpki-client.org