Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/0BTHpI3X9UxpvghGK6BPqw5GnP4.roa
File: 0BTHpI3X9UxpvghGK6BPqw5GnP4.roa (raw, json)
Hash identifier: UHNR96ZIqUNKhb/+WFFJNUMtbhL9q+ArV7dtjkFXLjc=
Subject key identifier: D0:14:C7:A4:8D:D7:F5:4C:69:BE:08:46:2B:A0:4F:AB:0E:46:9C:FE
Certificate issuer: /CN=2f6a434c4b5d239c4e6e41b7e585c8d58f8995ab
Certificate serial: 018A1CCEF61F5B7543182B1819D2BDD7488F
Authority key identifier: 2F:6A:43:4C:4B:5D:23:9C:4E:6E:41:B7:E5:85:C8:D5:8F:89:95:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L2pDTEtdI5xObkG35YXI1Y-Jlas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/0BTHpI3X9UxpvghGK6BPqw5GnP4.roa
Signing time: Tue 22 Aug 2023 10:34:00 +0000
ROA not before: Tue 22 Aug 2023 10:34:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50810
IP address blocks: 5.201.128.0/21 maxlen: 21
5.201.128.0/18 maxlen: 18
5.201.142.0/23 maxlen: 23
5.201.144.0/21 maxlen: 21
5.201.152.0/22 maxlen: 22
5.201.156.0/22 maxlen: 22
5.201.160.0/23 maxlen: 23
92.114.16.0/20 maxlen: 24
92.114.21.0/24 maxlen: 24
5.201.168.0/22 maxlen: 22
92.114.22.0/23 maxlen: 23
92.114.20.0/23 maxlen: 23
92.114.20.0/24 maxlen: 24
92.114.24.0/21 maxlen: 21
89.43.0.0/21 maxlen: 21
89.43.4.0/22 maxlen: 22
89.43.10.0/23 maxlen: 23
89.43.8.0/22 maxlen: 22
89.43.12.0/23 maxlen: 23
89.37.0.0/20 maxlen: 20
89.37.0.0/24 maxlen: 24
89.37.8.0/24 maxlen: 24
89.37.8.0/22 maxlen: 22
92.114.28.0/22 maxlen: 22
92.114.25.0/24 maxlen: 24
5.201.174.0/24 maxlen: 24
185.22.30.0/23 maxlen: 23
185.103.84.0/24 maxlen: 24
185.103.84.0/22 maxlen: 22
185.103.85.0/24 maxlen: 24
188.213.74.0/24 maxlen: 24
188.213.75.0/24 maxlen: 24
188.213.72.0/24 maxlen: 24
188.213.73.0/24 maxlen: 24
188.213.76.0/22 maxlen: 22
37.156.16.0/21 maxlen: 21
37.156.24.0/22 maxlen: 22
185.135.228.0/22 maxlen: 22
37.156.31.0/24 maxlen: 24
37.156.30.0/23 maxlen: 23
185.182.221.0/24 maxlen: 24
185.182.220.0/22 maxlen: 22
185.182.222.0/23 maxlen: 23
185.182.220.0/24 maxlen: 24
185.176.32.0/22 maxlen: 22
188.213.64.0/20 maxlen: 21
185.136.100.0/22 maxlen: 22
89.37.15.0/24 maxlen: 24
89.37.14.0/24 maxlen: 24
185.175.76.0/23 maxlen: 23
185.175.78.0/23 maxlen: 23
94.101.128.0/21 maxlen: 21
94.101.128.0/20 maxlen: 24
185.162.40.0/22 maxlen: 22
94.101.136.0/22 maxlen: 22
94.101.139.0/24 maxlen: 24
94.101.140.0/23 maxlen: 23
94.101.142.0/23 maxlen: 23
94.101.142.0/24 maxlen: 24
2a00:5ca0::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 10 Sep 2023 10:08:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1c:ce:f6:1f:5b:75:43:18:2b:18:19:d2:bd:d7:48:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f6a434c4b5d239c4e6e41b7e585c8d58f8995ab
Validity
Not Before: Aug 22 10:34:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d014c7a48dd7f54c69be08462ba04fab0e469cfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:29:bc:47:8b:d5:92:be:42:f4:ff:54:e2:63:
0e:c8:94:1e:d3:60:aa:e9:b2:b4:ec:45:77:eb:04:
f0:bb:36:3d:d9:9f:c6:d0:c5:72:74:ff:2b:39:b3:
40:f2:39:f9:c8:35:18:aa:f5:3f:c7:a5:66:84:35:
95:70:c5:b9:d3:85:d2:e8:e0:0e:67:f8:1c:03:cd:
46:32:11:5d:c7:f7:6b:7a:ab:42:96:14:f0:4e:91:
20:8c:a9:90:4d:07:66:14:75:b0:69:d9:92:a8:a6:
79:b0:71:09:e9:b2:f1:db:5d:2f:f7:81:d0:f6:53:
19:bb:43:87:6f:25:f0:da:1c:99:fa:6a:a8:fb:c5:
43:4a:85:d1:03:60:6e:e1:22:1a:16:f0:1f:c6:8e:
0a:a6:52:21:a9:82:6e:d0:86:be:ab:65:03:fb:10:
7e:92:d0:a7:73:51:ff:0b:7d:de:56:91:f8:f1:77:
78:2e:93:1d:60:7b:ef:cd:8c:d0:f6:ff:ae:29:c3:
2a:db:4a:eb:3d:52:39:ca:3c:9b:de:bf:fe:36:22:
cc:e5:a7:c9:e0:5c:77:31:09:fd:28:f9:f0:5b:2d:
22:77:00:d8:d0:5b:0d:41:76:96:29:0c:a2:62:99:
11:49:5e:ed:d5:13:2b:4a:f5:ad:f3:2f:7f:c1:56:
30:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:14:C7:A4:8D:D7:F5:4C:69:BE:08:46:2B:A0:4F:AB:0E:46:9C:FE
X509v3 Authority Key Identifier:
keyid:2F:6A:43:4C:4B:5D:23:9C:4E:6E:41:B7:E5:85:C8:D5:8F:89:95:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L2pDTEtdI5xObkG35YXI1Y-Jlas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/0BTHpI3X9UxpvghGK6BPqw5GnP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/L2pDTEtdI5xObkG35YXI1Y-Jlas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.201.128.0/18
37.156.16.0-37.156.27.255
37.156.30.0/23
89.37.0.0/20
89.43.0.0-89.43.13.255
92.114.16.0/20
94.101.128.0/20
185.22.30.0/23
185.103.84.0/22
185.135.228.0/22
185.136.100.0/22
185.162.40.0/22
185.175.76.0/22
185.176.32.0/22
185.182.220.0/22
188.213.64.0/20
IPv6:
2a00:5ca0::/32
Signature Algorithm: sha256WithRSAEncryption
16:6c:4e:e3:5e:56:d0:b4:16:d2:cb:0a:79:8e:08:6a:88:48:
a3:c6:90:9a:d3:5a:c5:4a:70:92:8b:02:7c:52:4a:6c:66:37:
ed:c3:f7:ac:ce:dc:9d:48:24:7f:f0:76:fd:42:f9:b5:fc:83:
a4:08:fc:f8:12:c3:9f:f5:fa:42:c6:78:12:7b:ff:4e:58:ae:
6f:40:bb:d4:6a:71:fe:6f:f5:ab:0d:fb:47:a5:1e:15:5c:29:
7c:ab:52:6c:99:a5:49:7c:dc:1d:32:0e:ae:ca:2d:ff:4b:0a:
3e:75:c4:42:4d:90:c9:27:2c:b0:05:b5:4d:8c:26:db:4e:01:
95:25:e4:9f:31:8b:9a:6f:0a:f3:f3:46:09:36:e2:7a:4a:77:
f9:80:0c:15:c9:bb:19:57:e3:6a:7a:ff:88:8b:f1:fe:1b:77:
4b:5a:b3:24:78:e8:27:2a:f6:61:64:44:79:3a:49:30:f7:52:
86:79:27:51:98:2e:c2:52:10:f8:3c:60:57:f7:13:9c:1a:9c:
53:1b:58:44:95:8a:45:7b:ba:39:8a:5b:d6:e1:0c:e6:8d:38:
2a:00:70:84:01:dd:39:03:04:02:c6:d2:ed:31:87:ca:05:d6:
d5:d4:0c:4f:c8:7c:c0:ba:5d:f2:a4:4d:9f:40:df:76:7f:ec:
44:3a:4f:55
-----BEGIN CERTIFICATE-----
MIIFeDCCBGCgAwIBAgISAYoczvYfW3VDGCsYGdK910iPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmNmE0MzRjNGI1ZDIzOWM0ZTZlNDFiN2U1ODVjOGQ1OGY4
OTk1YWIwHhcNMjMwODIyMTAzNDAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMDE0YzdhNDhkZDdmNTRjNjliZTA4NDYyYmEwNGZhYjBlNDY5Y2ZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhSm8R4vVkr5C9P9U4mMOyJQe02Cq
6bK07EV36wTwuzY92Z/G0MVydP8rObNA8jn5yDUYqvU/x6VmhDWVcMW504XS6OAO
Z/gcA81GMhFdx/dreqtClhTwTpEgjKmQTQdmFHWwadmSqKZ5sHEJ6bLx210v94HQ
9lMZu0OHbyXw2hyZ+mqo+8VDSoXRA2Bu4SIaFvAfxo4KplIhqYJu0Ia+q2UD+xB+
ktCnc1H/C33eVpH48Xd4LpMdYHvvzYzQ9v+uKcMq20rrPVI5yjyb3r/+NiLM5afJ
4Fx3MQn9KPnwWy0idwDY0FsNQXaWKQyiYpkRSV7t1RMrSvWt8y9/wVYwLQIDAQAB
o4IChDCCAoAwHQYDVR0OBBYEFNAUx6SN1/VMab4IRiugT6sORpz+MB8GA1UdIwQY
MBaAFC9qQ0xLXSOcTm5Bt+WFyNWPiZWrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDJwRFRFdGRJNXhPYmtHMzVZWEkxWS1KbGFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS85OGFiZTUtYmQwMS00NjRmLTk2YWIt
NDBiNmQ2N2ZjZDk0LzEvMEJUSHBJM1g5VXhwdmdoR0s2QlBxdzVHblA0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS85OGFiZTUtYmQwMS00NjRmLTk2YWItNDBiNmQ2N2ZjZDk0
LzEvTDJwRFRFdGRJNXhPYmtHMzVZWEkxWS1KbGFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGZBggrBgEFBQcBBwEB/wSBiTCBhjB1BAIAATBvAwQGBcmA
MAwDBAQlnBADBAIlnBgDBAElnB4DBARZJQAwCwMDAFkrAwQBWSsMAwQEXHIQAwQE
XmWAAwQBuRYeAwQCuWdUAwQCuYfkAwQCuYhkAwQCuaIoAwQCua9MAwQCubAgAwQC
ubbcAwQEvNVAMA0EAgACMAcDBQAqAFygMA0GCSqGSIb3DQEBCwUAA4IBAQAWbE7j
XlbQtBbSywp5jghqiEijxpCa01rFSnCSiwJ8UkpsZjftw/esztydSCR/8Hb9Qvm1
/IOkCPz4EsOf9fpCxngSe/9OWK5vQLvUanH+b/WrDftHpR4VXCl8q1JsmaVJfNwd
Mg6uyi3/Swo+dcRCTZDJJyywBbVNjCbbTgGVJeSfMYuabwrz80YJNuJ6Snf5gAwV
ybsZV+Nqev+Ii/H+G3dLWrMkeOgnKvZhZER5Okkw91KGeSdRmC7CUhD4PGBX9xOc
GpxTG1hElYpFe7o5ilvW4QzmjTgqAHCEAd05AwQCxtLtMYfKBdbV1AxPyHzAul3y
pE2fQN92f+xEOk9V
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:19 2024 by rpki-client on console-ams.rpki-client.org