Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/56d267-1c43-47c8-afb2-64d29c86bf3e/1/Rbpv-dBPsLGqldhAPCVFZqZE5kg.roa
File: Rbpv-dBPsLGqldhAPCVFZqZE5kg.roa (raw, json)
Hash identifier: tIMO08pb9w6v8o/kzck9Y1J3mCwvPsiAH2jS878vEMM=
Subject key identifier: 45:BA:6F:F9:D0:4F:B0:B1:AA:95:D8:40:3C:25:45:66:A6:44:E6:48
Certificate issuer: /CN=ac1f721b7b7e6d049fbfe520e1ca89c1ca256813
Certificate serial: 018CC4938FBC6E8D1E1434C484FA384943FA
Authority key identifier: AC:1F:72:1B:7B:7E:6D:04:9F:BF:E5:20:E1:CA:89:C1:CA:25:68:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rB9yG3t-bQSfv-Ug4cqJwcolaBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/56d267-1c43-47c8-afb2-64d29c86bf3e/1/Rbpv-dBPsLGqldhAPCVFZqZE5kg.roa
Signing time: Mon 01 Jan 2024 10:30:54 +0000
ROA not before: Mon 01 Jan 2024 10:30:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39251
IP address blocks: 193.37.238.0/24 maxlen: 24
185.229.252.0/22 maxlen: 24
91.223.66.0/24 maxlen: 24
185.163.140.0/22 maxlen: 24
194.169.230.0/24 maxlen: 24
194.169.237.0/24 maxlen: 24
91.245.192.0/24 maxlen: 24
194.169.242.0/24 maxlen: 24
85.217.252.0/22 maxlen: 24
213.232.88.0/22 maxlen: 24
185.225.84.0/22 maxlen: 24
91.92.72.0/21 maxlen: 24
91.92.80.0/20 maxlen: 24
91.92.96.0/21 maxlen: 24
194.169.223.0/24 maxlen: 24
2a0b:f800::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 28 May 2024 06:07:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:8f:bc:6e:8d:1e:14:34:c4:84:fa:38:49:43:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac1f721b7b7e6d049fbfe520e1ca89c1ca256813
Validity
Not Before: Jan 1 10:30:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=45ba6ff9d04fb0b1aa95d8403c254566a644e648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:1b:8b:c9:4c:cb:5a:4b:7f:be:d8:b4:1e:84:
b9:ca:c9:78:bd:8f:b3:69:52:07:25:5a:cf:66:e2:
62:8a:91:38:3b:d9:9a:c5:00:8d:c5:2b:14:f9:5b:
dc:b1:96:01:7c:df:47:8b:84:21:b3:4b:33:1d:73:
81:9c:07:e2:87:13:1e:50:4f:59:1d:f5:77:7a:1f:
5e:53:92:e0:2e:51:f3:01:25:77:b5:b4:ce:b8:9d:
1c:57:33:d6:f2:80:84:89:39:e8:92:1b:dd:ef:40:
1c:22:71:85:9c:45:ff:33:10:07:a7:2f:61:51:42:
89:13:27:24:52:e3:1e:bf:9f:50:47:c0:81:49:eb:
1b:38:b0:b9:56:b7:50:bc:84:92:70:ee:49:4d:8a:
26:44:f4:7f:4a:1e:81:0b:3e:4e:e5:4a:a2:0b:52:
90:ba:74:d0:f1:4b:7b:55:ec:d5:04:23:e1:e6:37:
92:47:26:ba:eb:06:bd:d3:81:d6:a3:ba:bd:e0:92:
e5:6c:19:77:ec:7e:94:9b:27:1c:d8:f7:e6:23:37:
03:da:09:10:d7:e9:7b:c6:91:db:d9:85:8a:8c:c7:
08:10:34:b5:5c:36:be:6f:ce:1a:0b:0d:46:ec:3c:
7d:0d:86:ac:18:0c:b9:12:92:f5:c6:b5:63:73:66:
22:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:BA:6F:F9:D0:4F:B0:B1:AA:95:D8:40:3C:25:45:66:A6:44:E6:48
X509v3 Authority Key Identifier:
keyid:AC:1F:72:1B:7B:7E:6D:04:9F:BF:E5:20:E1:CA:89:C1:CA:25:68:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rB9yG3t-bQSfv-Ug4cqJwcolaBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/56d267-1c43-47c8-afb2-64d29c86bf3e/1/Rbpv-dBPsLGqldhAPCVFZqZE5kg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/56d267-1c43-47c8-afb2-64d29c86bf3e/1/rB9yG3t-bQSfv-Ug4cqJwcolaBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.217.252.0/22
91.92.72.0-91.92.103.255
91.223.66.0/24
91.245.192.0/24
185.163.140.0/22
185.225.84.0/22
185.229.252.0/22
193.37.238.0/24
194.169.223.0/24
194.169.230.0/24
194.169.237.0/24
194.169.242.0/24
213.232.88.0/22
IPv6:
2a0b:f800::/32
Signature Algorithm: sha256WithRSAEncryption
a3:2d:90:7a:51:c5:1d:f9:01:3f:3b:d3:57:f4:24:06:e3:d4:
a4:33:5d:4a:1c:57:b7:ab:2f:69:ae:59:4b:2b:24:0c:90:ba:
6f:8e:53:01:a2:db:ff:54:b2:26:a5:8f:dd:49:48:0b:fe:0f:
02:5c:ab:f4:db:33:51:6b:a1:c0:f2:da:d4:22:f5:a8:b0:4e:
41:c1:7f:48:77:49:44:29:6c:d8:2c:5a:c3:89:a4:d8:c5:01:
da:97:eb:07:71:9e:e7:f4:22:e5:10:fc:0b:27:ed:7f:11:b5:
d9:84:6d:30:2a:12:5e:8b:fd:62:94:87:66:1c:2f:c3:c7:41:
13:67:34:5e:f3:14:58:b2:3c:ff:51:1c:0b:df:09:33:60:a0:
67:98:c4:61:74:52:82:9e:21:8f:8e:87:0e:e8:87:a5:b5:0b:
48:41:1d:6b:cd:2c:5b:d5:ec:ae:66:ae:6f:f7:bf:06:b7:62:
87:a5:e4:b8:aa:27:76:ce:39:13:ec:9c:36:b2:c0:65:29:01:
8a:13:01:ea:57:b3:4e:cf:0b:e7:fa:15:4e:4f:fc:f0:a7:b0:
58:0d:af:4b:1e:ef:bf:e9:5b:78:a0:c5:dc:81:a7:89:f5:7b:
04:0f:c7:29:c7:f3:41:33:9b:f1:9a:f1:de:9c:0b:44:7e:4d:
de:78:28:fb
-----BEGIN CERTIFICATE-----
MIIFXDCCBESgAwIBAgISAYzEk4+8bo0eFDTEhPo4SUP6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjMWY3MjFiN2I3ZTZkMDQ5ZmJmZTUyMGUxY2E4OWMxY2Ey
NTY4MTMwHhcNMjQwMTAxMTAzMDU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NWJhNmZmOWQwNGZiMGIxYWE5NWQ4NDAzYzI1NDU2NmE2NDRlNjQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhhuLyUzLWkt/vti0HoS5ysl4vY+z
aVIHJVrPZuJiipE4O9maxQCNxSsU+VvcsZYBfN9Hi4Qhs0szHXOBnAfihxMeUE9Z
HfV3eh9eU5LgLlHzASV3tbTOuJ0cVzPW8oCEiTnokhvd70AcInGFnEX/MxAHpy9h
UUKJEyckUuMev59QR8CBSesbOLC5VrdQvISScO5JTYomRPR/Sh6BCz5O5UqiC1KQ
unTQ8Ut7VezVBCPh5jeSRya66wa904HWo7q94JLlbBl37H6Umycc2PfmIzcD2gkQ
1+l7xpHb2YWKjMcIEDS1XDa+b84aCw1G7Dx9DYasGAy5EpL1xrVjc2YiwQIDAQAB
o4ICaDCCAmQwHQYDVR0OBBYEFEW6b/nQT7CxqpXYQDwlRWamROZIMB8GA1UdIwQY
MBaAFKwfcht7fm0En7/lIOHKicHKJWgTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvckI5eUczdC1iUVNmdi1VZzRjcUp3Y29sYUJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC81NmQyNjctMWM0My00N2M4LWFmYjIt
NjRkMjljODZiZjNlLzEvUmJwdi1kQlBzTEdxbGRoQVBDVkZacVpFNWtnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC81NmQyNjctMWM0My00N2M4LWFmYjItNjRkMjljODZiZjNl
LzEvckI5eUczdC1iUVNmdi1VZzRjcUp3Y29sYUJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH4GCCsGAQUFBwEHAQH/BG8wbTBcBAIAATBWAwQCVdn8MAwD
BANbXEgDBANbXGADBABb30IDBABb9cADBAK5o4wDBAK54VQDBAK55fwDBADBJe4D
BADCqd8DBADCqeYDBADCqe0DBADCqfIDBALV6FgwDQQCAAIwBwMFACoL+AAwDQYJ
KoZIhvcNAQELBQADggEBAKMtkHpRxR35AT8701f0JAbj1KQzXUocV7erL2muWUsr
JAyQum+OUwGi2/9Usialj91JSAv+DwJcq/TbM1FrocDy2tQi9aiwTkHBf0h3SUQp
bNgsWsOJpNjFAdqX6wdxnuf0IuUQ/Asn7X8RtdmEbTAqEl6L/WKUh2YcL8PHQRNn
NF7zFFiyPP9RHAvfCTNgoGeYxGF0UoKeIY+Ohw7oh6W1C0hBHWvNLFvV7K5mrm/3
vwa3Yoel5LiqJ3bOORPsnDaywGUpAYoTAepXs07PC+f6FU5P/PCnsFgNr0se77/p
W3igxdyBp4n1ewQPxynH80Ezm/Ga8d6cC0R+Td54KPs=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:55 2025 by rpki-client