Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/81bc95-1444-408a-92f1-392e05a84277/1/5G-uYNtlC5uRrRBUtEPtTYr0YNk.roa
File: 5G-uYNtlC5uRrRBUtEPtTYr0YNk.roa (raw, json)
Hash identifier: hSTVaSDFh101Ha+R3/jqlFmgqikrLdKwBTgKYO/4elk=
Subject key identifier: E4:6F:AE:60:DB:65:0B:9B:91:AD:10:54:B4:43:ED:4D:8A:F4:60:D9
Certificate issuer: /CN=1f739d213a438f678b322a8f8f84e2d8c7814aca
Certificate serial: 018CC493179DDBE36032118C451AE4CA777F
Authority key identifier: 1F:73:9D:21:3A:43:8F:67:8B:32:2A:8F:8F:84:E2:D8:C7:81:4A:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H3OdITpDj2eLMiqPj4Ti2MeBSso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/81bc95-1444-408a-92f1-392e05a84277/1/5G-uYNtlC5uRrRBUtEPtTYr0YNk.roa
Signing time: Mon 01 Jan 2024 10:30:23 +0000
ROA not before: Mon 01 Jan 2024 10:30:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12350
IP address blocks: 83.228.128.0/17 maxlen: 17
213.162.0.0/19 maxlen: 19
194.38.64.0/19 maxlen: 19
185.133.28.0/22 maxlen: 22
212.232.128.0/17 maxlen: 17
194.148.96.0/19 maxlen: 19
194.148.4.0/22 maxlen: 22
194.148.8.0/21 maxlen: 21
195.15.0.0/17 maxlen: 17
194.148.16.0/20 maxlen: 20
212.28.128.0/19 maxlen: 19
194.38.160.0/19 maxlen: 19
194.148.32.0/19 maxlen: 19
212.147.79.0/24 maxlen: 24
212.40.0.0/19 maxlen: 19
212.147.0.0/17 maxlen: 17
213.5.152.0/21 maxlen: 21
212.254.0.0/16 maxlen: 16
212.109.64.0/19 maxlen: 19
2a03:a360::/32 maxlen: 32
2001:4c78::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 04 Mar 2024 10:55:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:17:9d:db:e3:60:32:11:8c:45:1a:e4:ca:77:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f739d213a438f678b322a8f8f84e2d8c7814aca
Validity
Not Before: Jan 1 10:30:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e46fae60db650b9b91ad1054b443ed4d8af460d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:2a:65:20:cd:fc:48:5d:82:45:41:ab:c3:5e:
91:d0:b6:0a:ab:82:f9:f2:60:45:7b:d3:73:32:99:
30:ae:20:a8:6a:69:4d:7a:97:d2:5e:80:6d:07:c0:
03:03:80:31:8a:11:eb:1f:73:4c:97:02:25:4b:41:
d4:33:16:9e:26:02:78:a0:26:2a:59:14:f7:f7:9c:
c8:fe:d9:e9:27:49:02:7c:b8:a6:e1:44:82:0c:7e:
26:38:c4:15:f8:51:51:c0:d8:08:b5:fb:71:8f:6c:
84:dc:27:85:d6:ac:8d:9e:84:62:cd:ce:b7:56:24:
48:ac:20:8b:69:e8:a6:14:4f:e8:5d:79:b0:d8:26:
a4:80:f9:b9:38:77:8b:b3:1e:4d:4a:36:9f:24:16:
d7:67:66:96:20:2e:33:ca:15:4c:b4:d9:a3:74:a2:
e0:9a:30:02:e4:eb:dc:ec:26:51:50:19:eb:ff:33:
3e:85:c2:8e:ed:79:9c:7b:b7:0f:83:85:11:e6:c0:
a5:ae:20:54:34:61:76:c9:6c:4b:be:45:bb:a9:55:
26:3a:ae:4d:1b:56:b6:db:6e:4c:7a:cd:37:09:c5:
2b:d7:ec:b2:ff:65:83:74:07:17:8c:66:23:1e:5e:
b0:c4:a4:ec:26:5e:1c:7b:e3:47:ec:27:bd:66:c1:
7e:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:6F:AE:60:DB:65:0B:9B:91:AD:10:54:B4:43:ED:4D:8A:F4:60:D9
X509v3 Authority Key Identifier:
keyid:1F:73:9D:21:3A:43:8F:67:8B:32:2A:8F:8F:84:E2:D8:C7:81:4A:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H3OdITpDj2eLMiqPj4Ti2MeBSso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/81bc95-1444-408a-92f1-392e05a84277/1/5G-uYNtlC5uRrRBUtEPtTYr0YNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/81bc95-1444-408a-92f1-392e05a84277/1/H3OdITpDj2eLMiqPj4Ti2MeBSso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.228.128.0/17
185.133.28.0/22
194.38.64.0/19
194.38.160.0/19
194.148.4.0-194.148.63.255
194.148.96.0/19
195.15.0.0/17
212.28.128.0/19
212.40.0.0/19
212.109.64.0/19
212.147.0.0/17
212.232.128.0/17
212.254.0.0/16
213.5.152.0/21
213.162.0.0/19
IPv6:
2001:4c78::/32
2a03:a360::/32
Signature Algorithm: sha256WithRSAEncryption
33:90:18:04:c4:4f:48:3c:73:a5:a0:87:f2:61:33:8a:4e:99:
39:e1:52:e0:ba:0c:65:0f:40:8d:14:1d:60:9f:50:f2:83:7e:
50:c9:73:1d:2e:91:59:ce:83:98:cc:5a:83:45:d8:ec:d8:18:
09:0e:6d:f9:d3:52:f6:47:f8:0d:14:c1:48:48:c3:51:48:32:
2e:ad:da:a2:6a:97:4d:93:b6:02:9f:21:26:b4:a6:16:5f:91:
c6:55:f6:e9:7c:d5:3b:87:c9:be:58:49:43:67:97:a5:e9:8f:
0c:c9:70:e6:16:ef:ca:7b:3f:00:27:d7:05:71:dc:ad:36:ca:
63:03:8a:75:70:7f:bb:c7:13:ab:a1:1b:ac:77:ed:c8:48:65:
6f:7b:31:94:a1:93:86:3f:4c:a3:f0:1f:7c:cf:30:bc:77:84:
52:c7:83:d6:21:0b:6a:6b:07:0d:08:3d:b4:f6:d2:02:70:4d:
41:20:6d:ae:98:4a:3a:36:c5:c0:55:2c:54:cd:6c:df:18:05:
ec:8e:00:87:14:59:7e:d2:6f:a6:e7:57:36:84:30:65:93:ae:
4d:14:c8:ed:bd:57:63:c8:e4:ff:b4:1e:a2:37:15:b1:9d:19:
4d:ef:d4:71:e2:14:44:57:2b:fd:ea:1d:b3:27:e5:8f:69:84:
72:1b:c7:3e
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgISAYzEkxed2+NgMhGMRRrkynd/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmNzM5ZDIxM2E0MzhmNjc4YjMyMmE4ZjhmODRlMmQ4Yzc4
MTRhY2EwHhcNMjQwMTAxMTAzMDIzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNDZmYWU2MGRiNjUwYjliOTFhZDEwNTRiNDQzZWQ0ZDhhZjQ2MGQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiCplIM38SF2CRUGrw16R0LYKq4L5
8mBFe9NzMpkwriCoamlNepfSXoBtB8ADA4AxihHrH3NMlwIlS0HUMxaeJgJ4oCYq
WRT395zI/tnpJ0kCfLim4USCDH4mOMQV+FFRwNgItftxj2yE3CeF1qyNnoRizc63
ViRIrCCLaeimFE/oXXmw2CakgPm5OHeLsx5NSjafJBbXZ2aWIC4zyhVMtNmjdKLg
mjAC5Ovc7CZRUBnr/zM+hcKO7Xmce7cPg4UR5sClriBUNGF2yWxLvkW7qVUmOq5N
G1a2225Mes03CcUr1+yy/2WDdAcXjGYjHl6wxKTsJl4ce+NH7Ce9ZsF+eQIDAQAB
o4ICfDCCAngwHQYDVR0OBBYEFORvrmDbZQubka0QVLRD7U2K9GDZMB8GA1UdIwQY
MBaAFB9znSE6Q49nizIqj4+E4tjHgUrKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDNPZElUcERqMmVMTWlxUGo0VGkyTWVCU3NvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni84MWJjOTUtMTQ0NC00MDhhLTkyZjEt
MzkyZTA1YTg0Mjc3LzEvNUctdVlOdGxDNXVSclJCVXRFUHRUWXIwWU5rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni84MWJjOTUtMTQ0NC00MDhhLTkyZjEtMzkyZTA1YTg0Mjc3
LzEvSDNPZElUcERqMmVMTWlxUGo0VGkyTWVCU3NvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGRBggrBgEFBQcBBwEB/wSBgTB/MGcEAgABMGEDBAdT5IAD
BAK5hRwDBAXCJkADBAXCJqAwDAMEAsKUBAMEBsKUAAMEBcKUYAMEB8MPAAMEBdQc
gAMEBdQoAAMEBdRtQAMEB9STAAMEB9TogAMDANT+AwQD1QWYAwQF1aIAMBQEAgAC
MA4DBQAgAUx4AwUAKgOjYDANBgkqhkiG9w0BAQsFAAOCAQEAM5AYBMRPSDxzpaCH
8mEzik6ZOeFS4LoMZQ9AjRQdYJ9Q8oN+UMlzHS6RWc6DmMxag0XY7NgYCQ5t+dNS
9kf4DRTBSEjDUUgyLq3aomqXTZO2Ap8hJrSmFl+RxlX26XzVO4fJvlhJQ2eXpemP
DMlw5hbvyns/ACfXBXHcrTbKYwOKdXB/u8cTq6EbrHftyEhlb3sxlKGThj9Mo/Af
fM8wvHeEUseD1iELamsHDQg9tPbSAnBNQSBtrphKOjbFwFUsVM1s3xgF7I4AhxRZ
ftJvpudXNoQwZZOuTRTI7b1XY8jk/7QeojcVsZ0ZTe/UceIURFcr/eodsyflj2mE
chvHPg==
-----END CERTIFICATE-----
Generated at Mon Mar 4 14:43:33 2024 by rpki-client on console-ams.rpki-client.org