Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/MBmE2LMK6hUpQSKJ2kRTYsPvh_Y.roa
File: MBmE2LMK6hUpQSKJ2kRTYsPvh_Y.roa (raw, json)
Hash identifier: XR1Aa1dl19D9CUkqt335gTLQCLvuJlhg4q8wsU8DZNU=
Subject key identifier: 30:19:84:D8:B3:0A:EA:15:29:41:22:89:DA:44:53:62:C3:EF:87:F6
Certificate issuer: /CN=caece41cbc2c30626ef2a28d1839f2d6c4757f3f
Certificate serial: 018ECBD215F11EABCA61FD0E862F4071A8D8
Authority key identifier: CA:EC:E4:1C:BC:2C:30:62:6E:F2:A2:8D:18:39:F2:D6:C4:75:7F:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yuzkHLwsMGJu8qKNGDny1sR1fz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/MBmE2LMK6hUpQSKJ2kRTYsPvh_Y.roa
Signing time: Thu 11 Apr 2024 06:22:06 +0000
ROA not before: Thu 11 Apr 2024 06:22:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15625
IP address blocks: 145.221.0.0/16 maxlen: 16
145.221.0.0/17 maxlen: 17
145.221.36.0/24 maxlen: 24
145.221.37.0/24 maxlen: 24
145.221.38.0/24 maxlen: 24
145.221.39.0/24 maxlen: 24
145.221.40.0/24 maxlen: 24
145.221.41.0/24 maxlen: 24
145.221.42.0/24 maxlen: 24
145.221.43.0/24 maxlen: 24
145.221.92.0/24 maxlen: 24
145.221.99.0/24 maxlen: 24
145.221.128.0/17 maxlen: 17
145.221.176.0/24 maxlen: 24
145.221.177.0/24 maxlen: 24
145.221.178.0/24 maxlen: 24
145.221.179.0/24 maxlen: 24
145.221.180.0/24 maxlen: 24
145.221.181.0/24 maxlen: 24
145.221.182.0/24 maxlen: 24
145.221.183.0/24 maxlen: 24
145.221.184.0/24 maxlen: 24
145.221.185.0/24 maxlen: 24
145.221.186.0/24 maxlen: 24
145.221.188.0/24 maxlen: 24
145.221.189.0/24 maxlen: 24
145.221.190.0/24 maxlen: 24
145.221.193.0/24 maxlen: 24
145.221.208.0/24 maxlen: 24
145.221.209.0/24 maxlen: 24
145.221.210.0/24 maxlen: 24
145.221.211.0/24 maxlen: 24
145.221.212.0/24 maxlen: 24
145.221.213.0/24 maxlen: 24
145.221.214.0/24 maxlen: 24
145.221.215.0/24 maxlen: 24
145.221.216.0/24 maxlen: 24
145.221.217.0/24 maxlen: 24
145.221.219.0/24 maxlen: 24
145.221.220.0/24 maxlen: 24
145.221.221.0/24 maxlen: 24
145.221.222.0/24 maxlen: 24
145.221.252.0/24 maxlen: 24
145.221.253.0/24 maxlen: 24
145.221.254.0/24 maxlen: 24
145.221.255.0/24 maxlen: 24
156.114.128.0/18 maxlen: 18
156.114.128.0/19 maxlen: 19
156.114.128.0/24 maxlen: 24
156.114.129.0/24 maxlen: 24
156.114.130.0/24 maxlen: 24
156.114.131.0/24 maxlen: 24
156.114.132.0/24 maxlen: 24
156.114.133.0/24 maxlen: 24
156.114.155.0/24 maxlen: 24
156.114.160.0/19 maxlen: 19
156.114.160.0/24 maxlen: 24
156.114.161.0/24 maxlen: 24
156.114.162.0/24 maxlen: 24
156.114.163.0/24 maxlen: 24
156.114.164.0/24 maxlen: 24
156.114.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Jul 2024 10:26:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:cb:d2:15:f1:1e:ab:ca:61:fd:0e:86:2f:40:71:a8:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caece41cbc2c30626ef2a28d1839f2d6c4757f3f
Validity
Not Before: Apr 11 06:22:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=301984d8b30aea1529412289da445362c3ef87f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:65:e1:27:24:62:6b:df:7f:9b:f9:d0:5f:09:
fa:da:9c:3b:e4:30:b9:6b:53:20:23:9c:ba:a6:49:
b9:cd:c1:74:8a:0a:10:60:fb:4b:47:66:8c:69:f9:
7c:8b:5b:a2:2c:08:4b:34:16:42:4f:d8:06:b2:0f:
00:24:ba:5a:36:00:75:8b:20:ca:af:93:9e:6b:d0:
fd:38:11:27:2b:ac:6e:f7:1a:3d:b4:4a:ac:c7:a2:
a5:a2:68:08:97:67:e4:f7:7d:5a:d3:1c:27:d9:23:
c9:15:76:37:28:bc:d6:6b:e9:7e:43:01:18:3e:61:
e0:af:53:44:d4:cb:56:14:c5:a2:3d:88:2a:6b:82:
13:f7:65:67:39:86:5d:5b:eb:96:f1:54:54:56:4b:
73:f1:0b:ce:de:07:d6:50:28:7b:cf:48:af:84:d6:
03:27:ca:b9:97:b3:d9:5c:bd:13:42:cd:b1:97:be:
d2:91:78:aa:cb:2e:22:a4:05:aa:45:9c:34:e4:d9:
70:23:3a:cf:0b:a4:eb:88:21:c9:74:ec:bf:8f:84:
23:9c:15:4d:00:c2:02:b0:29:da:d4:df:5d:72:76:
20:1f:89:0b:90:a2:7b:b2:df:f1:cf:23:01:32:17:
e4:e4:7b:e9:61:8a:f5:4d:d3:4a:bf:5f:79:aa:c7:
19:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:19:84:D8:B3:0A:EA:15:29:41:22:89:DA:44:53:62:C3:EF:87:F6
X509v3 Authority Key Identifier:
keyid:CA:EC:E4:1C:BC:2C:30:62:6E:F2:A2:8D:18:39:F2:D6:C4:75:7F:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yuzkHLwsMGJu8qKNGDny1sR1fz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/MBmE2LMK6hUpQSKJ2kRTYsPvh_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/yuzkHLwsMGJu8qKNGDny1sR1fz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.221.0.0/16
156.114.128.0/18
Signature Algorithm: sha256WithRSAEncryption
52:d5:77:a3:66:70:9c:40:35:ae:a9:cc:ff:49:6d:51:91:e8:
c0:b4:34:12:e8:e0:f3:1a:ee:87:8a:2b:0f:44:10:37:f1:cb:
d7:43:99:f9:ab:11:80:60:8c:83:91:46:9b:2d:77:2b:ad:7b:
e3:ba:fe:8d:31:be:b1:b7:1e:4c:e4:57:ec:4e:f1:64:bd:81:
07:11:f2:38:ec:63:a1:19:b6:de:7f:5a:58:5c:2d:3e:7e:5c:
16:8c:31:07:4e:23:20:fe:2d:12:aa:2b:a9:e9:cd:19:df:ef:
8a:bf:b6:16:49:25:e2:95:d5:3d:9a:32:80:88:d6:17:06:eb:
1f:ff:3e:f8:cb:f8:6c:9f:d5:e5:84:46:e0:c8:d4:a2:22:30:
6e:2d:e8:37:3b:1e:4e:eb:15:28:61:6a:d7:d0:32:2e:ae:d7:
c9:ba:63:a3:24:15:43:58:cc:4b:15:f1:56:c4:fd:0f:bb:24:
1e:3b:0f:40:bf:c2:8d:0e:df:2f:d6:ff:ab:57:ad:b3:35:3f:
eb:0d:7e:93:04:85:ba:45:9e:9e:56:96:84:7e:8b:13:a8:4d:
09:26:2d:f1:6d:3b:6c:d6:a1:26:a1:b0:7f:70:22:23:b9:80:
ed:29:92:a0:bb:f5:b8:54:bd:ee:8d:c9:18:a9:cd:45:02:f2:
93:0d:26:18
-----BEGIN CERTIFICATE-----
MIIFAjCCA+qgAwIBAgISAY7L0hXxHqvKYf0Ohi9AcajYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhZWNlNDFjYmMyYzMwNjI2ZWYyYTI4ZDE4MzlmMmQ2YzQ3
NTdmM2YwHhcNMjQwNDExMDYyMjA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMDE5ODRkOGIzMGFlYTE1Mjk0MTIyODlkYTQ0NTM2MmMzZWY4N2Y2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2XhJyRia99/m/nQXwn62pw75DC5
a1MgI5y6pkm5zcF0igoQYPtLR2aMafl8i1uiLAhLNBZCT9gGsg8AJLpaNgB1iyDK
r5Oea9D9OBEnK6xu9xo9tEqsx6KlomgIl2fk931a0xwn2SPJFXY3KLzWa+l+QwEY
PmHgr1NE1MtWFMWiPYgqa4IT92VnOYZdW+uW8VRUVktz8QvO3gfWUCh7z0ivhNYD
J8q5l7PZXL0TQs2xl77SkXiqyy4ipAWqRZw05NlwIzrPC6TriCHJdOy/j4QjnBVN
AMICsCna1N9dcnYgH4kLkKJ7st/xzyMBMhfk5HvpYYr1TdNKv195qscZRQIDAQAB
o4ICDjCCAgowHQYDVR0OBBYEFDAZhNizCuoVKUEiidpEU2LD74f2MB8GA1UdIwQY
MBaAFMrs5By8LDBibvKijRg58tbEdX8/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveXV6a0hMd3NNR0p1OHFLTkdEbnkxc1IxZno4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC82MzBjYmUtY2UwMS00NjRkLTgyZWIt
ZDg1MWU0MGQ1N2JmLzEvTUJtRTJMTUs2aFVwUVNLSjJrUlRZc1B2aF9ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC82MzBjYmUtY2UwMS00NjRkLTgyZWItZDg1MWU0MGQ1N2Jm
LzEveXV6a0hMd3NNR0p1OHFLTkdEbnkxc1IxZno4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCQGCCsGAQUFBwEHAQH/BBUwEzARBAIAATALAwMAkd0DBAac
coAwDQYJKoZIhvcNAQELBQADggEBAFLVd6NmcJxANa6pzP9JbVGR6MC0NBLo4PMa
7oeKKw9EEDfxy9dDmfmrEYBgjIORRpstdyute+O6/o0xvrG3HkzkV+xO8WS9gQcR
8jjsY6EZtt5/WlhcLT5+XBaMMQdOIyD+LRKqK6npzRnf74q/thZJJeKV1T2aMoCI
1hcG6x//PvjL+Gyf1eWERuDI1KIiMG4t6Dc7Hk7rFShhatfQMi6u18m6Y6MkFUNY
zEsV8VbE/Q+7JB47D0C/wo0O3y/W/6tXrbM1P+sNfpMEhbpFnp5WloR+ixOoTQkm
LfFtO2zWoSahsH9wIiO5gO0pkqC79bhUve6NyRipzUUC8pMNJhg=
-----END CERTIFICATE-----
Generated at Thu Jul 4 12:18:41 2024 by rpki-client on console-ams.rpki-client.org