Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/Z7PPDBdPrQGLQyBQPjUjW0w8IiA.roa
File: Z7PPDBdPrQGLQyBQPjUjW0w8IiA.roa (raw, json)
Hash identifier: gY6zLeGavvGfuG42dx8uMqVfZ1SbP0jJMg/7ClImHAY=
Subject key identifier: 67:B3:CF:0C:17:4F:AD:01:8B:43:20:50:3E:35:23:5B:4C:3C:22:20
Certificate issuer: /CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Certificate serial: 018FB611ACA87F6D13D5009EE435B336A727
Authority key identifier: 7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/Z7PPDBdPrQGLQyBQPjUjW0w8IiA.roa
Signing time: Sun 26 May 2024 18:02:42 +0000
ROA not before: Sun 26 May 2024 18:02:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211381
IP address blocks: 5.8.248.0/24 maxlen: 24
62.233.53.0/24 maxlen: 24
109.107.157.0/24 maxlen: 24
185.229.251.0/24 maxlen: 24
185.237.165.0/24 maxlen: 24
185.241.61.0/24 maxlen: 24
185.251.25.0/24 maxlen: 24
193.3.168.0/24 maxlen: 24
193.169.105.0/24 maxlen: 24
194.15.46.0/24 maxlen: 24
194.26.232.0/24 maxlen: 24
194.62.105.0/24 maxlen: 24
212.86.114.0/24 maxlen: 24
212.86.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jun 2024 11:28:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b6:11:ac:a8:7f:6d:13:d5:00:9e:e4:35:b3:36:a7:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Validity
Not Before: May 26 18:02:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=67b3cf0c174fad018b4320503e35235b4c3c2220
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a8:ed:ce:8e:0e:21:26:6d:43:7f:3b:c4:aa:
33:f5:1a:74:97:2d:05:ef:87:db:06:ae:92:76:a6:
87:c7:c9:cd:f5:64:01:4c:45:83:ab:c2:62:92:99:
c6:d0:bc:ff:99:6a:76:37:c4:ab:9f:86:44:f3:b6:
a7:6e:4d:70:7a:7a:15:4b:d0:f8:ba:a0:17:d4:36:
97:94:72:99:87:d0:2d:b6:b7:cc:af:15:5b:f5:f0:
bf:c5:2b:a5:69:5b:8d:2f:aa:28:80:aa:77:10:8b:
a6:fa:90:3d:e4:7d:f1:ad:eb:00:9f:51:bd:14:34:
8b:4f:13:88:c3:d7:2a:ed:81:83:cc:c2:19:ef:82:
63:bb:1e:8c:30:b6:57:ac:4b:77:71:01:02:87:84:
3d:88:ce:24:8a:f8:af:89:f5:8b:d6:13:c9:ce:52:
5a:e0:ed:1e:d8:30:81:e4:ce:cf:8b:fa:9a:42:13:
95:bc:08:3a:ce:bf:ba:85:cf:ab:08:99:09:51:f5:
5f:7e:e0:e2:4b:25:20:e0:18:73:f1:1b:fc:e8:eb:
5d:0d:b7:ba:c5:ce:7a:6b:76:18:6c:4d:1f:41:bf:
c2:d1:20:bb:6a:35:d5:68:81:24:25:db:e0:cc:0f:
3a:a7:e0:a2:9b:5f:de:ea:85:4c:82:7e:e9:15:37:
a1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:B3:CF:0C:17:4F:AD:01:8B:43:20:50:3E:35:23:5B:4C:3C:22:20
X509v3 Authority Key Identifier:
keyid:7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/Z7PPDBdPrQGLQyBQPjUjW0w8IiA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/f8rYnfG_maNvKQzD7w8ee00CdTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.248.0/24
62.233.53.0/24
109.107.157.0/24
185.229.251.0/24
185.237.165.0/24
185.241.61.0/24
185.251.25.0/24
193.3.168.0/24
193.169.105.0/24
194.15.46.0/24
194.26.232.0/24
194.62.105.0/24
212.86.114.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:b0:bb:7f:c1:37:43:d6:18:21:52:bc:63:6b:d2:54:0a:75:
74:bc:55:29:83:b0:e3:44:fc:bf:7d:35:18:49:b4:86:24:c9:
31:96:bf:7b:b3:03:61:91:a4:7c:00:ab:7b:41:29:b5:18:aa:
6f:ce:68:ac:26:c9:9f:b6:51:7c:7b:fb:ba:10:a2:55:0e:14:
44:0c:c8:70:bc:99:63:60:29:df:4b:94:ef:b5:42:b1:a6:8b:
cb:85:11:78:b8:fc:a6:08:0e:90:d3:76:35:d5:34:ce:03:a9:
4d:07:ba:2e:e4:4c:8c:15:a1:46:0e:94:4b:08:6a:44:0c:6e:
30:1d:f3:c6:e5:40:7f:2b:ae:1e:2a:3b:ec:2c:a6:d0:3f:38:
e0:45:eb:4d:82:14:b1:4b:8e:b4:3f:64:6f:43:65:01:6a:06:
2f:7c:a2:5e:5c:1f:3d:2a:67:88:ef:60:02:28:46:17:d1:ec:
df:f2:17:05:f2:eb:cb:ad:f0:fa:71:19:a8:2f:bd:31:d1:d3:
7a:ee:4f:58:46:36:b0:ed:4c:c5:c7:d4:86:3d:0f:ab:a0:68:
39:3c:5d:01:11:7a:7a:73:c8:76:62:f0:57:96:53:62:ba:66:
36:84:a0:31:20:39:0b:3d:7d:7c:f8:02:95:0b:2d:0b:87:16:
45:40:8a:7d
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgISAY+2Eayof20T1QCe5DWzNqcnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdmY2FkODlkZjFiZjk5YTM2ZjI5MGNjM2VmMGYxZTdiNGQw
Mjc1MzMwHhcNMjQwNTI2MTgwMjQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2N2IzY2YwYzE3NGZhZDAxOGI0MzIwNTAzZTM1MjM1YjRjM2MyMjIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuajtzo4OISZtQ387xKoz9Rp0ly0F
74fbBq6SdqaHx8nN9WQBTEWDq8JikpnG0Lz/mWp2N8Srn4ZE87anbk1wenoVS9D4
uqAX1DaXlHKZh9AttrfMrxVb9fC/xSulaVuNL6oogKp3EIum+pA95H3xresAn1G9
FDSLTxOIw9cq7YGDzMIZ74Jjux6MMLZXrEt3cQECh4Q9iM4kivivifWL1hPJzlJa
4O0e2DCB5M7Pi/qaQhOVvAg6zr+6hc+rCJkJUfVffuDiSyUg4Bhz8Rv86OtdDbe6
xc56a3YYbE0fQb/C0SC7ajXVaIEkJdvgzA86p+Cim1/e6oVMgn7pFTehwQIDAQAB
o4ICUTCCAk0wHQYDVR0OBBYEFGezzwwXT60Bi0MgUD41I1tMPCIgMB8GA1UdIwQY
MBaAFH/K2J3xv5mjbykMw+8PHntNAnUzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZjhyWW5mR19tYU52S1F6RDd3OGVlMDBDZFRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS85ZjhiMTYtMjg0Zi00NTEyLWIzZGMt
MDE1ZDlmMWI0YjUwLzEvWjdQUERCZFByUUdMUXlCUVBqVWpXMHc4SWlBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS85ZjhiMTYtMjg0Zi00NTEyLWIzZGMtMDE1ZDlmMWI0YjUw
LzEvZjhyWW5mR19tYU52S1F6RDd3OGVlMDBDZFRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGcGCCsGAQUFBwEHAQH/BFgwVjBUBAIAATBOAwQABQj4AwQA
Puk1AwQAbWudAwQAueX7AwQAue2lAwQAufE9AwQAufsZAwQAwQOoAwQAwalpAwQA
wg8uAwQAwhroAwQAwj5pAwQB1FZyMA0GCSqGSIb3DQEBCwUAA4IBAQCgsLt/wTdD
1hghUrxja9JUCnV0vFUpg7DjRPy/fTUYSbSGJMkxlr97swNhkaR8AKt7QSm1GKpv
zmisJsmftlF8e/u6EKJVDhREDMhwvJljYCnfS5TvtUKxpovLhRF4uPymCA6Q03Y1
1TTOA6lNB7ou5EyMFaFGDpRLCGpEDG4wHfPG5UB/K64eKjvsLKbQPzjgRetNghSx
S460P2RvQ2UBagYvfKJeXB89KmeI72ACKEYX0ezf8hcF8uvLrfD6cRmoL70x0dN6
7k9YRjaw7UzFx9SGPQ+roGg5PF0BEXp6c8h2YvBXllNiumY2hKAxIDkLPX18+AKV
Cy0LhxZFQIp9
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:20 2024 by rpki-client on console-ams.rpki-client.org