Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/465aae-2a2c-4200-8e5c-05f093385ac8/1/2GSgLqaemAs88Rv5P_ShRaW-3J4.roa
File: 2GSgLqaemAs88Rv5P_ShRaW-3J4.roa (raw, json)
Hash identifier: BxasppRupoKXQpfGo+O9Gw6IsqNL/aJch2E+18EQE/4=
Subject key identifier: D8:64:A0:2E:A6:9E:98:0B:3C:F1:1B:F9:3F:F4:A1:45:A5:BE:DC:9E
Certificate issuer: /CN=12a657f3424c8dd55215af853b93307c366c538a
Certificate serial: 0191928E92CA0546C513144D6D389BBF10E5
Authority key identifier: 12:A6:57:F3:42:4C:8D:D5:52:15:AF:85:3B:93:30:7C:36:6C:53:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EqZX80JMjdVSFa-FO5MwfDZsU4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/465aae-2a2c-4200-8e5c-05f093385ac8/1/2GSgLqaemAs88Rv5P_ShRaW-3J4.roa
Signing time: Tue 27 Aug 2024 06:38:22 +0000
ROA not before: Tue 27 Aug 2024 06:38:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211995
IP address blocks: 46.22.225.0/24 maxlen: 24
46.22.226.0/24 maxlen: 24
46.22.227.0/24 maxlen: 24
46.22.228.0/24 maxlen: 24
46.22.229.0/24 maxlen: 24
46.22.230.0/24 maxlen: 24
46.22.231.0/24 maxlen: 24
46.22.232.0/24 maxlen: 24
46.22.233.0/24 maxlen: 24
46.22.234.0/24 maxlen: 24
46.22.235.0/24 maxlen: 24
46.22.236.0/24 maxlen: 24
46.22.237.0/24 maxlen: 24
46.22.238.0/24 maxlen: 24
46.22.239.0/24 maxlen: 24
46.28.237.0/24 maxlen: 24
93.114.130.0/24 maxlen: 24
109.237.112.0/20 maxlen: 20
109.237.112.0/24 maxlen: 24
109.237.113.0/24 maxlen: 24
185.55.36.0/22 maxlen: 22
185.77.3.0/24 maxlen: 24
185.136.207.0/24 maxlen: 24
185.233.35.0/24 maxlen: 24
194.164.222.0/24 maxlen: 24
213.142.158.0/24 maxlen: 24
2a10:d880::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 28 Aug 2024 20:26:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:92:8e:92:ca:05:46:c5:13:14:4d:6d:38:9b:bf:10:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12a657f3424c8dd55215af853b93307c366c538a
Validity
Not Before: Aug 27 06:38:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d864a02ea69e980b3cf11bf93ff4a145a5bedc9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:2c:a2:36:c4:66:fc:9e:96:34:7c:c9:92:d0:
8b:fc:4e:a6:95:42:fe:ed:6a:5d:58:a6:43:00:01:
e2:df:7d:3b:0f:64:79:ba:30:02:18:b9:b9:21:45:
52:86:61:91:a0:18:8f:a7:49:58:d4:4c:92:21:d2:
20:e8:ae:dd:c4:60:35:f8:2f:d9:80:d3:9f:85:f2:
37:8a:89:a3:bb:6d:83:39:16:43:ca:42:e1:02:01:
25:19:06:e1:2a:fb:8c:5e:10:77:aa:54:01:d4:3d:
ee:ba:6d:1d:ba:74:dc:45:db:6e:a1:ea:d3:ec:97:
1a:8e:00:2c:f1:d9:40:3d:1a:c8:e3:57:1e:b7:a8:
be:43:e5:e5:aa:3b:af:72:ab:35:af:6a:23:2e:b9:
02:1c:b4:96:c6:da:f5:59:bb:5e:64:49:0a:c6:9f:
03:aa:de:cb:66:e2:f8:be:04:83:77:33:5e:5d:ae:
46:cf:8a:0d:09:32:11:25:16:27:34:08:81:f6:c2:
a4:a8:64:bb:4a:a1:3c:02:01:48:c5:a9:40:33:2e:
28:18:d9:ef:b9:c8:97:c4:a6:98:cc:18:79:8e:29:
d3:d5:2e:d9:f6:6f:58:bf:f8:69:71:37:72:a1:4a:
d6:94:44:c8:84:01:10:47:cd:27:24:84:f0:ca:3a:
e8:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:64:A0:2E:A6:9E:98:0B:3C:F1:1B:F9:3F:F4:A1:45:A5:BE:DC:9E
X509v3 Authority Key Identifier:
keyid:12:A6:57:F3:42:4C:8D:D5:52:15:AF:85:3B:93:30:7C:36:6C:53:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EqZX80JMjdVSFa-FO5MwfDZsU4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/465aae-2a2c-4200-8e5c-05f093385ac8/1/2GSgLqaemAs88Rv5P_ShRaW-3J4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/465aae-2a2c-4200-8e5c-05f093385ac8/1/EqZX80JMjdVSFa-FO5MwfDZsU4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.22.225.0-46.22.239.255
46.28.237.0/24
93.114.130.0/24
109.237.112.0/20
185.55.36.0/22
185.77.3.0/24
185.136.207.0/24
185.233.35.0/24
194.164.222.0/24
213.142.158.0/24
IPv6:
2a10:d880::/29
Signature Algorithm: sha256WithRSAEncryption
9c:09:ff:ab:18:0c:7c:28:82:ec:e1:2a:88:9e:d0:21:03:e8:
88:c6:fc:dd:c7:08:f0:4f:69:1b:fc:33:bd:b5:d7:55:7c:9c:
db:ec:7c:a6:f2:96:0b:27:42:1d:e7:e4:56:fc:f0:7c:50:ed:
29:9b:e6:4a:de:2c:d0:ee:8b:08:d1:ba:9a:db:85:27:21:22:
6b:99:1b:15:c3:b4:5b:b4:52:fe:38:12:0a:6a:be:d3:6d:03:
67:4f:8e:26:24:0f:9e:1c:49:6e:89:79:a8:a2:8d:a0:12:f2:
20:95:6c:19:93:6e:ac:ca:b7:bc:3e:73:2d:91:4c:2f:72:c1:
5a:bd:74:d9:73:c2:d5:3e:36:e7:16:54:a1:1e:bd:99:21:5a:
54:35:c4:6f:8d:ae:83:c3:1c:af:cc:27:92:4e:87:5f:d2:90:
0a:25:44:83:69:ab:b4:e5:27:e1:e0:51:24:c6:33:0a:be:a6:
97:2c:be:8a:a7:84:6d:47:4c:c6:20:68:b6:46:4d:22:bb:98:
30:36:bb:38:29:80:82:d4:ad:16:d4:2b:e0:76:69:37:dd:98:
df:04:6a:a6:68:b9:d6:92:c3:fc:46:6f:03:47:85:79:b6:63:
3d:ed:f4:dc:3f:bd:02:d8:13:bb:18:34:79:72:3a:6b:30:5c:
c3:93:d4:89
-----BEGIN CERTIFICATE-----
MIIFSjCCBDKgAwIBAgISAZGSjpLKBUbFExRNbTibvxDlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEyYTY1N2YzNDI0YzhkZDU1MjE1YWY4NTNiOTMzMDdjMzY2
YzUzOGEwHhcNMjQwODI3MDYzODIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkODY0YTAyZWE2OWU5ODBiM2NmMTFiZjkzZmY0YTE0NWE1YmVkYzllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6SyiNsRm/J6WNHzJktCL/E6mlUL+
7WpdWKZDAAHi3307D2R5ujACGLm5IUVShmGRoBiPp0lY1EySIdIg6K7dxGA1+C/Z
gNOfhfI3iomju22DORZDykLhAgElGQbhKvuMXhB3qlQB1D3uum0dunTcRdtuoerT
7JcajgAs8dlAPRrI41cet6i+Q+Xlqjuvcqs1r2ojLrkCHLSWxtr1WbteZEkKxp8D
qt7LZuL4vgSDdzNeXa5Gz4oNCTIRJRYnNAiB9sKkqGS7SqE8AgFIxalAMy4oGNnv
uciXxKaYzBh5jinT1S7Z9m9Yv/hpcTdyoUrWlETIhAEQR80nJITwyjro8wIDAQAB
o4ICVjCCAlIwHQYDVR0OBBYEFNhkoC6mnpgLPPEb+T/0oUWlvtyeMB8GA1UdIwQY
MBaAFBKmV/NCTI3VUhWvhTuTMHw2bFOKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXFaWDgwSk1qZFZTRmEtRk81TXdmRFpzVTRvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS80NjVhYWUtMmEyYy00MjAwLThlNWMt
MDVmMDkzMzg1YWM4LzEvMkdTZ0xxYWVtQXM4OFJ2NVBfU2hSYVctM0o0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS80NjVhYWUtMmEyYy00MjAwLThlNWMtMDVmMDkzMzg1YWM4
LzEvRXFaWDgwSk1qZFZTRmEtRk81TXdmRFpzVTRvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGwGCCsGAQUFBwEHAQH/BF0wWzBKBAIAATBEMAwDBAAuFuED
BAQuFuADBAAuHO0DBABdcoIDBARt7XADBAK5NyQDBAC5TQMDBAC5iM8DBAC56SMD
BADCpN4DBADVjp4wDQQCAAIwBwMFAyoQ2IAwDQYJKoZIhvcNAQELBQADggEBAJwJ
/6sYDHwoguzhKoie0CED6IjG/N3HCPBPaRv8M72111V8nNvsfKbylgsnQh3n5Fb8
8HxQ7Smb5kreLNDuiwjRuprbhSchImuZGxXDtFu0Uv44EgpqvtNtA2dPjiYkD54c
SW6JeaiijaAS8iCVbBmTbqzKt7w+cy2RTC9ywVq9dNlzwtU+NucWVKEevZkhWlQ1
xG+NroPDHK/MJ5JOh1/SkAolRINpq7TlJ+HgUSTGMwq+ppcsvoqnhG1HTMYgaLZG
TSK7mDA2uzgpgILUrRbUK+B2aTfdmN8EaqZoudaSw/xGbwNHhXm2Yz3t9Nw/vQLY
E7sYNHlyOmswXMOT1Ik=
-----END CERTIFICATE-----
Generated at Thu Mar 13 20:47:11 2025 by rpki-client