Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/56d267-1c43-47c8-afb2-64d29c86bf3e/1/Egql8yLLgqjzbJHcwjUWfmBIiK4.roa
File: Egql8yLLgqjzbJHcwjUWfmBIiK4.roa (raw, json)
Hash identifier: mUPQxxFjpxEjwzTtp7HvTAshHorK3Ld5r0fzoQ/jTK0=
Subject key identifier: 12:0A:A5:F3:22:CB:82:A8:F3:6C:91:DC:C2:35:16:7E:60:48:88:AE
Certificate issuer: /CN=ac1f721b7b7e6d049fbfe520e1ca89c1ca256813
Certificate serial: 018FBDCFCB1FD603D0F7CDA990A59F28C0D3
Authority key identifier: AC:1F:72:1B:7B:7E:6D:04:9F:BF:E5:20:E1:CA:89:C1:CA:25:68:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rB9yG3t-bQSfv-Ug4cqJwcolaBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/56d267-1c43-47c8-afb2-64d29c86bf3e/1/Egql8yLLgqjzbJHcwjUWfmBIiK4.roa
Signing time: Tue 28 May 2024 06:07:42 +0000
ROA not before: Tue 28 May 2024 06:07:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39251
IP address blocks: 85.217.252.0/22 maxlen: 24
91.92.72.0/21 maxlen: 24
91.92.80.0/20 maxlen: 24
91.92.96.0/21 maxlen: 24
91.207.190.0/23 maxlen: 23
91.207.190.0/24 maxlen: 24
91.207.191.0/24 maxlen: 24
91.223.66.0/24 maxlen: 24
91.245.192.0/24 maxlen: 24
185.163.140.0/22 maxlen: 24
185.225.84.0/22 maxlen: 24
185.229.252.0/22 maxlen: 24
193.37.238.0/24 maxlen: 24
194.169.223.0/24 maxlen: 24
194.169.230.0/24 maxlen: 24
194.169.237.0/24 maxlen: 24
194.169.242.0/24 maxlen: 24
195.238.84.0/23 maxlen: 23
195.238.84.0/24 maxlen: 24
195.238.85.0/24 maxlen: 24
212.70.140.0/24 maxlen: 24
212.70.141.0/24 maxlen: 24
213.232.88.0/22 maxlen: 24
2a0b:f800::/32 maxlen: 48
Validation: Failed, certificate revoked on Wed 29 May 2024 05:13:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:bd:cf:cb:1f:d6:03:d0:f7:cd:a9:90:a5:9f:28:c0:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac1f721b7b7e6d049fbfe520e1ca89c1ca256813
Validity
Not Before: May 28 06:07:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=120aa5f322cb82a8f36c91dcc235167e604888ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:73:35:47:92:7d:38:5e:16:c9:9c:cc:b4:b9:
ba:16:fc:bd:4d:e9:1b:f1:3c:93:4a:b3:35:8d:fb:
c2:23:ca:17:93:29:5d:e7:73:2e:fa:c8:52:4e:97:
0e:1f:49:b2:30:29:38:e4:b4:e2:99:6f:26:d1:5f:
b3:ac:94:d8:54:16:f8:44:06:ce:97:cb:6a:ec:06:
17:cd:b6:c1:1a:1b:a6:9c:91:de:75:cb:d5:a4:ff:
7d:85:fc:64:1a:06:bc:9b:a3:2b:fc:2b:70:a2:73:
bc:f9:4f:5e:16:40:9f:9a:6b:46:9c:a1:ba:37:38:
6d:44:0e:56:1b:68:bd:52:77:7a:1b:e2:a2:5c:89:
d5:c0:03:0e:b0:3d:24:2c:a3:30:b8:29:65:43:60:
95:b8:48:9e:18:e9:ee:8f:35:1e:c4:cf:58:be:2e:
b6:41:80:e6:b9:e9:76:f7:8d:b1:32:cb:c1:c4:ae:
c0:f9:d2:80:29:50:f3:d5:63:b6:63:0d:49:c9:85:
d1:22:4c:20:d5:f8:cf:8c:6c:b9:81:bf:59:ea:9a:
c4:35:35:6b:57:71:0c:27:82:17:20:15:07:02:b3:
fc:26:1b:37:c7:04:51:9a:84:0f:54:e0:19:e5:51:
02:ae:bc:a4:a3:76:bc:12:86:4d:a7:f6:77:19:77:
e7:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:0A:A5:F3:22:CB:82:A8:F3:6C:91:DC:C2:35:16:7E:60:48:88:AE
X509v3 Authority Key Identifier:
keyid:AC:1F:72:1B:7B:7E:6D:04:9F:BF:E5:20:E1:CA:89:C1:CA:25:68:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rB9yG3t-bQSfv-Ug4cqJwcolaBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/56d267-1c43-47c8-afb2-64d29c86bf3e/1/Egql8yLLgqjzbJHcwjUWfmBIiK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/56d267-1c43-47c8-afb2-64d29c86bf3e/1/rB9yG3t-bQSfv-Ug4cqJwcolaBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.217.252.0/22
91.92.72.0-91.92.103.255
91.207.190.0/23
91.223.66.0/24
91.245.192.0/24
185.163.140.0/22
185.225.84.0/22
185.229.252.0/22
193.37.238.0/24
194.169.223.0/24
194.169.230.0/24
194.169.237.0/24
194.169.242.0/24
195.238.84.0/23
212.70.140.0/23
213.232.88.0/22
IPv6:
2a0b:f800::/32
Signature Algorithm: sha256WithRSAEncryption
66:11:fd:19:77:ce:68:c7:a9:66:7b:a2:e2:28:d0:fd:22:99:
8b:7a:4a:6f:af:45:5b:88:e0:18:f5:fa:da:91:39:69:70:ca:
4a:bd:84:e8:74:a4:87:6b:8b:f4:20:22:c8:b4:53:17:fb:bc:
5c:d2:c7:17:61:68:60:35:b7:10:4f:da:4d:ac:05:b5:67:0a:
76:bb:82:68:83:ba:da:af:fd:9f:4d:93:6d:c1:b3:1a:f1:b1:
7a:f4:27:e3:fa:66:49:bf:3f:d9:cd:66:59:61:92:84:09:5c:
98:c9:72:b1:0f:f6:1f:c0:59:0d:57:c8:e0:13:f2:9f:3e:8c:
b6:5e:42:dd:b7:b8:a0:43:dc:92:b7:a1:dd:47:e1:88:6b:a2:
0d:d3:2d:81:a5:e1:4d:23:f8:e6:fc:9c:ae:c0:07:a4:a4:e2:
74:4a:1e:fb:2f:e8:ad:0e:97:7d:10:ce:63:93:25:58:71:9b:
93:2e:52:47:70:ca:46:a4:76:34:7c:02:82:bd:d1:42:12:8a:
12:07:c5:34:e0:0c:f9:52:be:bf:34:f9:03:c8:0e:22:51:15:
0b:7b:38:c1:7f:62:ad:61:5f:47:e2:e6:9f:a9:c8:9f:70:5f:
3c:65:eb:d6:f3:fb:ff:ae:ca:70:7b:ac:60:59:f4:61:8e:b4:
6a:b6:e0:19
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgISAY+9z8sf1gPQ982pkKWfKMDTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjMWY3MjFiN2I3ZTZkMDQ5ZmJmZTUyMGUxY2E4OWMxY2Ey
NTY4MTMwHhcNMjQwNTI4MDYwNzQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMjBhYTVmMzIyY2I4MmE4ZjM2YzkxZGNjMjM1MTY3ZTYwNDg4OGFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHM1R5J9OF4WyZzMtLm6Fvy9Tekb
8TyTSrM1jfvCI8oXkyld53Mu+shSTpcOH0myMCk45LTimW8m0V+zrJTYVBb4RAbO
l8tq7AYXzbbBGhumnJHedcvVpP99hfxkGga8m6Mr/CtwonO8+U9eFkCfmmtGnKG6
NzhtRA5WG2i9Und6G+KiXInVwAMOsD0kLKMwuCllQ2CVuEieGOnujzUexM9Yvi62
QYDmuel2942xMsvBxK7A+dKAKVDz1WO2Yw1JyYXRIkwg1fjPjGy5gb9Z6prENTVr
V3EMJ4IXIBUHArP8Jhs3xwRRmoQPVOAZ5VECrryko3a8EoZNp/Z3GXfnUQIDAQAB
o4ICfDCCAngwHQYDVR0OBBYEFBIKpfMiy4Ko82yR3MI1Fn5gSIiuMB8GA1UdIwQY
MBaAFKwfcht7fm0En7/lIOHKicHKJWgTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvckI5eUczdC1iUVNmdi1VZzRjcUp3Y29sYUJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC81NmQyNjctMWM0My00N2M4LWFmYjIt
NjRkMjljODZiZjNlLzEvRWdxbDh5TExncWp6YkpIY3dqVVdmbUJJaUs0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC81NmQyNjctMWM0My00N2M4LWFmYjItNjRkMjljODZiZjNl
LzEvckI5eUczdC1iUVNmdi1VZzRjcUp3Y29sYUJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGRBggrBgEFBQcBBwEB/wSBgTB/MG4EAgABMGgDBAJV2fww
DAMEA1tcSAMEA1tcYAMEAVvPvgMEAFvfQgMEAFv1wAMEArmjjAMEArnhVAMEArnl
/AMEAMEl7gMEAMKp3wMEAMKp5gMEAMKp7QMEAMKp8gMEAcPuVAMEAdRGjAMEAtXo
WDANBAIAAjAHAwUAKgv4ADANBgkqhkiG9w0BAQsFAAOCAQEAZhH9GXfOaMepZnui
4ijQ/SKZi3pKb69FW4jgGPX62pE5aXDKSr2E6HSkh2uL9CAiyLRTF/u8XNLHF2Fo
YDW3EE/aTawFtWcKdruCaIO62q/9n02TbcGzGvGxevQn4/pmSb8/2c1mWWGShAlc
mMlysQ/2H8BZDVfI4BPynz6Mtl5C3be4oEPckreh3UfhiGuiDdMtgaXhTSP45vyc
rsAHpKTidEoe+y/orQ6XfRDOY5MlWHGbky5SR3DKRqR2NHwCgr3RQhKKEgfFNOAM
+VK+vzT5A8gOIlEVC3s4wX9irWFfR+Lmn6nIn3BfPGXr1vP7/67KcHusYFn0YY60
arbgGQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:12 2025 by rpki-client