Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/n1uVS10sG7yJ08Uu_HLdYa5pZco.roa
File: n1uVS10sG7yJ08Uu_HLdYa5pZco.roa (raw, json)
Hash identifier: m1Dz2yPt7qZ6WIgT5P5me0Ol7p43tU/XgQx/6+ZqlW4=
Subject key identifier: 9F:5B:95:4B:5D:2C:1B:BC:89:D3:C5:2E:FC:72:DD:61:AE:69:65:CA
Certificate issuer: /CN=95b30111b0b720a209f788c8b90f60380b465c2e
Certificate serial: 0189686A58DD9418C9DFFE8075A27BFBF314
Authority key identifier: 95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/n1uVS10sG7yJ08Uu_HLdYa5pZco.roa
Signing time: Tue 18 Jul 2023 09:52:27 +0000
ROA not before: Tue 18 Jul 2023 09:52:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34471
IP address blocks: 185.228.124.0/22 maxlen: 24
185.176.104.0/22 maxlen: 24
185.10.248.0/22 maxlen: 24
109.235.16.0/21 maxlen: 24
185.83.132.0/22 maxlen: 24
185.153.16.0/22 maxlen: 24
185.70.152.0/22 maxlen: 24
89.40.84.0/22 maxlen: 24
37.122.219.0/24 maxlen: 24
185.5.84.0/22 maxlen: 24
46.28.160.0/21 maxlen: 24
91.242.148.0/22 maxlen: 24
176.56.64.0/19 maxlen: 24
193.246.154.0/23 maxlen: 24
193.246.156.0/23 maxlen: 24
185.4.32.0/22 maxlen: 24
31.25.176.0/21 maxlen: 24
185.239.160.0/22 maxlen: 24
185.205.253.0/24 maxlen: 24
185.205.254.0/24 maxlen: 24
2a09:eac0::/29 maxlen: 29
2a05:9b00::/29 maxlen: 29
2a0b:c40::/29 maxlen: 29
2a02:5fc0::/32 maxlen: 48
2a05:a800::/29 maxlen: 29
2a02:5dc0::/32 maxlen: 32
2a06:3c00::/29 maxlen: 29
2a03:440::/32 maxlen: 32
2a0a:1280::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 24 Oct 2023 08:23:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:68:6a:58:dd:94:18:c9:df:fe:80:75:a2:7b:fb:f3:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95b30111b0b720a209f788c8b90f60380b465c2e
Validity
Not Before: Jul 18 09:52:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f5b954b5d2c1bbc89d3c52efc72dd61ae6965ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:12:c1:76:bb:f2:5b:bd:fd:3f:18:87:1a:96:
17:87:29:08:7f:90:b7:63:5c:a7:63:39:9e:e3:4b:
7e:85:2e:c4:b9:cd:fc:a0:f1:5d:59:31:7a:f6:ec:
d3:98:66:3c:1e:fc:b4:2e:c9:93:15:4f:fe:e6:a1:
c8:89:c2:0d:e8:44:db:2f:7a:ae:03:ec:97:4e:44:
30:39:3f:0c:1c:3f:3e:5b:1d:45:2c:94:0c:a1:dc:
79:ae:2a:a8:d4:ff:7c:18:93:b7:7c:ab:fa:6b:4b:
e4:f9:51:aa:13:51:eb:2d:e3:24:1f:3f:59:4b:26:
de:94:15:f4:bf:1b:d0:47:40:91:e8:0b:bd:56:5f:
24:21:3f:55:39:24:e3:a4:35:53:7b:7c:74:4d:35:
02:8f:6e:6c:32:f6:b0:99:31:43:81:9f:5b:eb:49:
ae:87:9d:0b:0e:a8:c3:d0:00:ce:9d:24:94:5d:42:
39:69:94:56:bc:d8:6d:67:0d:08:d3:1a:01:24:14:
51:90:45:71:8b:03:e5:1b:be:67:5a:c5:75:61:7b:
fd:4b:7d:bd:52:10:85:a4:11:9d:a1:4f:1e:e0:58:
d9:f7:72:67:1d:2f:26:44:62:a1:c7:7c:1d:4d:1f:
38:3b:f3:0b:cd:0f:14:59:21:bd:f8:9e:73:9b:bc:
4f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:5B:95:4B:5D:2C:1B:BC:89:D3:C5:2E:FC:72:DD:61:AE:69:65:CA
X509v3 Authority Key Identifier:
keyid:95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/n1uVS10sG7yJ08Uu_HLdYa5pZco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.176.0/21
37.122.219.0/24
46.28.160.0/21
89.40.84.0/22
91.242.148.0/22
109.235.16.0/21
176.56.64.0/19
185.4.32.0/22
185.5.84.0/22
185.10.248.0/22
185.70.152.0/22
185.83.132.0/22
185.153.16.0/22
185.176.104.0/22
185.205.253.0-185.205.254.255
185.228.124.0/22
185.239.160.0/22
193.246.154.0-193.246.157.255
IPv6:
2a02:5dc0::/32
2a02:5fc0::/32
2a03:440::/32
2a05:9b00::/29
2a05:a800::/29
2a06:3c00::/29
2a09:eac0::/29
2a0a:1280::/29
2a0b:c40::/29
Signature Algorithm: sha256WithRSAEncryption
5e:75:c9:fb:b6:6f:63:b3:fe:da:b7:98:f4:b4:34:1b:c3:85:
9c:27:20:9f:1f:5d:7a:9d:00:56:07:4d:4e:02:37:01:d0:21:
c8:36:f9:c0:a5:d6:ad:d3:6c:90:4a:f9:db:07:6f:8d:b7:8a:
e4:ed:ec:0e:ce:cd:ff:67:04:0b:de:95:6b:60:53:e1:ea:95:
5b:e3:97:26:ea:e6:c9:46:9c:62:1f:3e:de:f2:18:80:66:7b:
aa:69:d1:ee:fc:e2:75:88:8e:6e:a7:7d:20:81:99:25:ae:f9:
00:0e:9e:c0:2a:49:0b:43:8c:6b:18:d4:46:c2:d4:00:c8:da:
d3:09:d4:cc:f6:b8:ed:23:2b:b5:de:32:82:8b:ba:14:a4:af:
d5:c0:1a:f1:82:ec:cf:fd:fd:cc:5c:eb:7f:74:6e:88:fe:50:
a2:41:eb:81:d3:60:61:27:db:e8:1c:6a:47:be:0d:0d:2b:23:
43:34:87:a7:e1:f1:75:7c:4b:9e:1b:95:82:2b:0a:a9:aa:a4:
82:1d:b1:5b:29:bc:66:25:f8:1b:a5:ca:ac:c6:a3:65:98:5b:
3c:16:e0:94:1c:ba:d6:4a:8a:9c:ab:42:f3:0c:d7:a6:96:ba:
c9:b1:ef:7f:e9:fa:c5:fb:d2:dc:8f:96:d8:06:1b:5d:2b:bd:
3d:eb:9f:fb
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgISAYloaljdlBjJ3/6AdaJ7+/MUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1YjMwMTExYjBiNzIwYTIwOWY3ODhjOGI5MGY2MDM4MGI0
NjVjMmUwHhcNMjMwNzE4MDk1MjI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZjViOTU0YjVkMmMxYmJjODlkM2M1MmVmYzcyZGQ2MWFlNjk2NWNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgBLBdrvyW739PxiHGpYXhykIf5C3
Y1ynYzme40t+hS7Euc38oPFdWTF69uzTmGY8Hvy0LsmTFU/+5qHIicIN6ETbL3qu
A+yXTkQwOT8MHD8+Wx1FLJQModx5riqo1P98GJO3fKv6a0vk+VGqE1HrLeMkHz9Z
SybelBX0vxvQR0CR6Au9Vl8kIT9VOSTjpDVTe3x0TTUCj25sMvawmTFDgZ9b60mu
h50LDqjD0ADOnSSUXUI5aZRWvNhtZw0I0xoBJBRRkEVxiwPlG75nWsV1YXv9S329
UhCFpBGdoU8e4FjZ93JnHS8mRGKhx3wdTR84O/MLzQ8UWSG9+J5zm7xPewIDAQAB
o4ICyjCCAsYwHQYDVR0OBBYEFJ9blUtdLBu8idPFLvxy3WGuaWXKMB8GA1UdIwQY
MBaAFJWzARGwtyCiCfeIyLkPYDgLRlwuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGJNQkViQzNJS0lKOTRqSXVROWdPQXRHWEM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS8wM2JmMjgtYzU1ZC00YzdhLTkxYmIt
OTE2NDZiZjAxNTNkLzEvbjF1VlMxMHNHN3lKMDhVdV9ITGRZYTVwWmNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS8wM2JmMjgtYzU1ZC00YzdhLTkxYmItOTE2NDZiZjAxNTNk
LzEvbGJNQkViQzNJS0lKOTRqSXVROWdPQXRHWEM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHfBggrBgEFBQcBBwEB/wSBzzCBzDCBggQCAAEwfAMEAx8Z
sAMEACV62wMEAy4coAMEAlkoVAMEAlvylAMEA23rEAMEBbA4QAMEArkEIAMEArkF
VAMEArkK+AMEArlGmAMEArlThAMEArmZEAMEArmwaDAMAwQAuc39AwQAuc3+AwQC
ueR8AwQCue+gMAwDBAHB9poDBAHB9pwwRQQCAAIwPwMFACoCXcADBQAqAl/AAwUA
KgMEQAMFAyoFmwADBQMqBagAAwUDKgY8AAMFAyoJ6sADBQMqChKAAwUDKgsMQDAN
BgkqhkiG9w0BAQsFAAOCAQEAXnXJ+7ZvY7P+2reY9LQ0G8OFnCcgnx9dep0AVgdN
TgI3AdAhyDb5wKXWrdNskEr52wdvjbeK5O3sDs7N/2cEC96Va2BT4eqVW+OXJurm
yUacYh8+3vIYgGZ7qmnR7vzidYiObqd9IIGZJa75AA6ewCpJC0OMaxjURsLUAMja
0wnUzPa47SMrtd4ygou6FKSv1cAa8YLsz/39zFzrf3RuiP5QokHrgdNgYSfb6Bxq
R74NDSsjQzSHp+HxdXxLnhuVgisKqaqkgh2xWym8ZiX4G6XKrMajZZhbPBbglBy6
1kqKnKtC8wzXppa6ybHvf+n6xfvS3I+W2AYbXSu9Peuf+w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:47 2024 by rpki-client on console-ams.rpki-client.org