Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/4b6354-a7a3-4351-a7de-aeac5d9cdc7b/1/7By5vJYCfMtpU4i9zAaqN5DjRkE.roa
File: 7By5vJYCfMtpU4i9zAaqN5DjRkE.roa (raw, json)
Hash identifier: YPhcRaOW6wdib0+/ICKet4Y+rRy1zrUioR6LPrAUUGQ=
Subject key identifier: EC:1C:B9:BC:96:02:7C:CB:69:53:88:BD:CC:06:AA:37:90:E3:46:41
Certificate issuer: /CN=048eefb5b26483561711c990f20ff552ac4e2c9c
Certificate serial: 01857094DD8626FD312E8C5BDFB9BB0C473A
Authority key identifier: 04:8E:EF:B5:B2:64:83:56:17:11:C9:90:F2:0F:F5:52:AC:4E:2C:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BI7vtbJkg1YXEcmQ8g_1UqxOLJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/4b6354-a7a3-4351-a7de-aeac5d9cdc7b/1/7By5vJYCfMtpU4i9zAaqN5DjRkE.roa
Signing time: Mon 02 Jan 2023 03:44:42 +0000
ROA not before: Mon 02 Jan 2023 03:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35805
IP address blocks: 77.92.224.0/19 maxlen: 24
37.110.160.0/19 maxlen: 24
31.146.0.0/16 maxlen: 24
92.54.192.0/18 maxlen: 24
176.221.128.0/17 maxlen: 24
94.43.0.0/16 maxlen: 24
178.134.0.0/16 maxlen: 24
213.217.16.0/22 maxlen: 24
188.123.150.0/24 maxlen: 24
146.255.224.0/19 maxlen: 24
37.232.0.0/17 maxlen: 24
5.152.0.0/17 maxlen: 24
149.3.0.0/17 maxlen: 24
87.253.32.0/19 maxlen: 24
188.123.128.0/19 maxlen: 24
188.169.0.0/16 maxlen: 24
79.99.248.0/21 maxlen: 21
2a01:9c80::/29 maxlen: 48
Validation: Failed, certificate revoked on Wed 05 Jul 2023 13:48:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:94:dd:86:26:fd:31:2e:8c:5b:df:b9:bb:0c:47:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048eefb5b26483561711c990f20ff552ac4e2c9c
Validity
Not Before: Jan 2 03:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec1cb9bc96027ccb695388bdcc06aa3790e34641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:af:ff:0b:35:f6:02:1c:30:88:b7:95:08:c5:
f4:a9:97:67:c2:96:a1:dd:aa:04:a6:91:a2:47:42:
68:07:94:7f:fa:e5:2e:9f:6b:d0:7a:7a:c6:3f:e3:
fe:ba:da:08:1e:ec:06:82:5e:65:bb:37:b9:41:13:
2a:2c:f6:af:d3:be:3c:65:65:24:75:2c:9c:7f:63:
cd:87:0a:60:9a:62:e5:2e:d2:eb:32:ce:f6:56:2d:
50:1a:6c:ba:b4:11:33:46:22:e7:3a:ef:83:13:21:
79:3a:29:41:fd:b3:f1:e0:c9:a9:f9:43:10:a5:3a:
18:b7:c2:eb:8b:2a:d2:7a:32:74:2d:62:c7:49:73:
f8:98:c2:60:ed:c1:1c:b0:bd:cb:3e:67:8c:49:a4:
3d:a5:20:7e:df:8b:86:a9:57:67:04:80:7f:ba:5c:
21:3a:dc:88:a6:cd:49:38:9c:a1:64:08:f2:d5:51:
88:0e:2e:53:84:89:3f:59:38:f8:79:20:fb:31:7b:
4b:78:af:29:f3:c2:42:82:81:0c:bf:b6:c7:38:57:
46:83:39:c6:cf:a8:e6:b1:27:53:cd:ea:7a:23:f1:
22:d5:76:ea:d9:c8:20:78:34:be:59:e5:48:ff:d9:
42:3d:35:9e:62:a8:c1:0f:31:58:a5:fb:d3:8b:dd:
64:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:1C:B9:BC:96:02:7C:CB:69:53:88:BD:CC:06:AA:37:90:E3:46:41
X509v3 Authority Key Identifier:
keyid:04:8E:EF:B5:B2:64:83:56:17:11:C9:90:F2:0F:F5:52:AC:4E:2C:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BI7vtbJkg1YXEcmQ8g_1UqxOLJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4b6354-a7a3-4351-a7de-aeac5d9cdc7b/1/7By5vJYCfMtpU4i9zAaqN5DjRkE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4b6354-a7a3-4351-a7de-aeac5d9cdc7b/1/BI7vtbJkg1YXEcmQ8g_1UqxOLJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.152.0.0/17
31.146.0.0/16
37.110.160.0/19
37.232.0.0/17
77.92.224.0/19
79.99.248.0/21
87.253.32.0/19
92.54.192.0/18
94.43.0.0/16
146.255.224.0/19
149.3.0.0/17
176.221.128.0/17
178.134.0.0/16
188.123.128.0/19
188.169.0.0/16
213.217.16.0/22
IPv6:
2a01:9c80::/29
Signature Algorithm: sha256WithRSAEncryption
24:51:c2:cd:5f:e5:a3:87:18:19:5d:68:00:7a:9e:8b:11:3d:
10:92:12:63:84:c2:0d:7f:87:08:05:2f:1a:c3:49:b7:bb:bc:
58:8d:0a:a8:82:a4:19:8c:01:20:54:2a:58:74:76:c7:6a:4f:
70:f5:82:ca:5b:62:bc:01:fc:e4:59:0d:50:8e:f0:22:49:21:
21:f3:30:bd:06:f0:31:cf:17:39:52:1e:ec:b9:d7:dd:ff:0f:
17:26:d6:e2:8b:73:c2:20:d7:5c:70:b8:49:d2:9d:62:47:bf:
ac:c0:7b:7a:25:06:53:3b:98:e9:1e:95:d2:61:75:3d:91:66:
d1:4d:a1:1d:52:c0:f9:43:27:8d:5f:8a:15:06:b3:b5:e8:01:
7d:f4:89:98:52:74:62:f2:50:f3:be:5e:2a:3b:57:e5:63:ab:
07:b1:d8:61:be:e2:f4:9e:d5:3e:ed:c3:4f:98:e7:99:b0:14:
97:32:28:e1:8d:73:35:20:a8:31:14:2a:43:48:9d:5e:a7:ed:
a3:53:6e:57:78:59:48:fa:2c:ec:f7:a6:18:10:0a:a8:0c:c9:
f6:4d:ec:a2:aa:99:31:69:07:d4:45:a1:86:79:b7:00:2e:d5:
2e:71:bf:9b:b5:55:42:ff:d1:04:3d:d7:1c:f6:8d:fc:97:6b:
66:80:76:e8
-----BEGIN CERTIFICATE-----
MIIFYzCCBEugAwIBAgISAYVwlN2GJv0xLoxb37m7DEc6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0OGVlZmI1YjI2NDgzNTYxNzExYzk5MGYyMGZmNTUyYWM0
ZTJjOWMwHhcNMjMwMTAyMDM0NDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYzFjYjliYzk2MDI3Y2NiNjk1Mzg4YmRjYzA2YWEzNzkwZTM0NjQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnK//CzX2AhwwiLeVCMX0qZdnwpah
3aoEppGiR0JoB5R/+uUun2vQenrGP+P+utoIHuwGgl5luze5QRMqLPav0748ZWUk
dSycf2PNhwpgmmLlLtLrMs72Vi1QGmy6tBEzRiLnOu+DEyF5OilB/bPx4Mmp+UMQ
pToYt8LriyrSejJ0LWLHSXP4mMJg7cEcsL3LPmeMSaQ9pSB+34uGqVdnBIB/ulwh
OtyIps1JOJyhZAjy1VGIDi5ThIk/WTj4eSD7MXtLeK8p88JCgoEMv7bHOFdGgznG
z6jmsSdTzep6I/Ei1Xbq2cggeDS+WeVI/9lCPTWeYqjBDzFYpfvTi91kgQIDAQAB
o4ICbzCCAmswHQYDVR0OBBYEFOwcubyWAnzLaVOIvcwGqjeQ40ZBMB8GA1UdIwQY
MBaAFASO77WyZINWFxHJkPIP9VKsTiycMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQkk3dnRiSmtnMVlYRWNtUThnXzFVcXhPTEp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS80YjYzNTQtYTdhMy00MzUxLWE3ZGUt
YWVhYzVkOWNkYzdiLzEvN0J5NXZKWUNmTXRwVTRpOXpBYXFONURqUmtFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS80YjYzNTQtYTdhMy00MzUxLWE3ZGUtYWVhYzVkOWNkYzdi
LzEvQkk3dnRiSmtnMVlYRWNtUThnXzFVcXhPTEp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGEBggrBgEFBQcBBwEB/wR1MHMwYgQCAAEwXAMEBwWYAAMD
AB+SAwQFJW6gAwQHJegAAwQFTVzgAwQDT2P4AwQFV/0gAwQGXDbAAwMAXisDBAWS
/+ADBAeVAwADBAew3YADAwCyhgMEBbx7gAMDALypAwQC1dkQMA0EAgACMAcDBQMq
AZyAMA0GCSqGSIb3DQEBCwUAA4IBAQAkUcLNX+WjhxgZXWgAep6LET0QkhJjhMIN
f4cIBS8aw0m3u7xYjQqogqQZjAEgVCpYdHbHak9w9YLKW2K8AfzkWQ1QjvAiSSEh
8zC9BvAxzxc5Uh7sudfd/w8XJtbii3PCINdccLhJ0p1iR7+swHt6JQZTO5jpHpXS
YXU9kWbRTaEdUsD5QyeNX4oVBrO16AF99ImYUnRi8lDzvl4qO1flY6sHsdhhvuL0
ntU+7cNPmOeZsBSXMijhjXM1IKgxFCpDSJ1ep+2jU25XeFlI+izs96YYEAqoDMn2
TeyiqpkxaQfURaGGebcALtUucb+btVVC/9EEPdcc9o38l2tmgHbo
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:23 2024 by rpki-client on console-fra.rpki-client.org