Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/pXwrgBEz6W0w-G0egksZ8Mw0ffc.roa
File: pXwrgBEz6W0w-G0egksZ8Mw0ffc.roa (raw, json)
Hash identifier: j0UQRLFVsyb+YmdWWNYFkgXjYEF0BSGb6+7ZeKX0KuI=
Subject key identifier: A5:7C:2B:80:11:33:E9:6D:30:F8:6D:1E:82:4B:19:F0:CC:34:7D:F7
Certificate issuer: /CN=49e44eeea26569d0ddbd0e8637f12cf505a4ede9
Certificate serial: 018A608EC7898B9ED74656CCA4B74774231A
Authority key identifier: 49:E4:4E:EE:A2:65:69:D0:DD:BD:0E:86:37:F1:2C:F5:05:A4:ED:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeRO7qJladDdvQ6GN_Es9QWk7ek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/pXwrgBEz6W0w-G0egksZ8Mw0ffc.roa
Signing time: Mon 04 Sep 2023 14:18:04 +0000
ROA not before: Mon 04 Sep 2023 14:18:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35676
IP address blocks: 194.5.88.0/24 maxlen: 24
194.5.88.0/23 maxlen: 23
194.5.89.0/24 maxlen: 24
195.234.36.0/24 maxlen: 24
178.213.66.0/23 maxlen: 23
178.213.66.0/24 maxlen: 24
178.213.67.0/24 maxlen: 24
178.213.65.0/24 maxlen: 24
178.213.70.0/24 maxlen: 24
178.213.71.0/24 maxlen: 24
178.213.68.0/22 maxlen: 22
178.213.68.0/24 maxlen: 24
178.213.69.0/24 maxlen: 24
178.213.64.0/24 maxlen: 24
178.213.64.0/23 maxlen: 23
178.213.64.0/22 maxlen: 22
193.105.186.0/24 maxlen: 24
185.16.253.0/24 maxlen: 24
185.16.252.0/23 maxlen: 23
185.16.252.0/24 maxlen: 24
185.16.252.0/22 maxlen: 22
185.16.255.0/24 maxlen: 24
185.16.254.0/24 maxlen: 24
185.16.254.0/23 maxlen: 23
2a03:6f82:100::/40 maxlen: 40
2a03:6f82:300::/40 maxlen: 40
2a03:6f82:200::/40 maxlen: 40
2a03:6f81:400::/40 maxlen: 40
2a03:6f81:100::/40 maxlen: 40
2a03:6f81:300::/40 maxlen: 40
2a03:6f81::/40 maxlen: 40
2a03:6f81:500::/40 maxlen: 40
2a03:6f81::/32 maxlen: 33
2a03:6f81:600::/40 maxlen: 40
2a03:6f81::/33 maxlen: 33
2a03:6f81:700::/40 maxlen: 40
2a03:6f81:200::/40 maxlen: 40
2a03:6f82::/32 maxlen: 32
2a03:6f80:100::/40 maxlen: 40
2a03:6f80:700::/40 maxlen: 40
2a03:6f80:900::/40 maxlen: 40
2a03:6f80::/33 maxlen: 33
2a03:6f80:800::/40 maxlen: 40
2a03:6f80:200::/40 maxlen: 40
2a03:6f80:300::/40 maxlen: 40
2a03:6f80:400::/40 maxlen: 40
2a03:6f80:500::/40 maxlen: 40
2a03:6f80::/32 maxlen: 33
2a03:6f80:600::/40 maxlen: 40
Validation: Failed, certificate revoked on Mon 04 Sep 2023 15:08:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:60:8e:c7:89:8b:9e:d7:46:56:cc:a4:b7:47:74:23:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e44eeea26569d0ddbd0e8637f12cf505a4ede9
Validity
Not Before: Sep 4 14:18:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a57c2b801133e96d30f86d1e824b19f0cc347df7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:23:d8:7d:cc:ee:a3:8c:ca:df:2f:78:91:8b:
98:2e:96:2e:dc:75:f6:c5:0c:6d:ae:0f:d0:25:e8:
ea:c6:a5:f7:cc:2e:e4:1f:e1:7d:1f:f9:2a:26:c8:
de:48:e6:98:d8:e3:a5:0a:d5:8e:77:8e:08:ee:da:
23:20:0e:da:47:76:48:21:bc:28:9d:56:83:85:d2:
4e:81:f1:0e:ab:d5:cd:35:99:ec:56:04:1b:a5:ca:
a2:4c:ab:9e:3e:36:f5:5f:94:d1:06:96:c7:4d:d8:
59:e0:70:e5:59:20:23:5c:fb:39:46:b3:6e:5f:a2:
93:55:3f:01:62:02:f7:5f:82:c5:eb:68:f9:a9:0a:
15:28:f6:ba:bc:74:c9:1d:33:c5:b5:07:55:0c:7c:
a7:8e:cf:94:99:3e:d5:d9:a7:24:e5:0e:9b:70:4e:
b5:9b:ab:d8:f7:8b:75:08:96:74:5d:1e:f0:24:9c:
95:58:24:69:16:43:f7:ae:83:64:a6:d2:43:0d:cc:
b3:d1:fd:fa:59:23:9b:4f:55:c8:69:0b:48:e1:a1:
8b:97:e3:60:d0:99:ff:03:70:e8:d4:90:d3:0e:42:
52:9a:3d:98:9c:c6:d7:a2:59:63:3d:0d:35:37:ba:
96:1e:95:44:b7:19:9d:b9:e6:ef:09:6d:33:54:5b:
a6:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:7C:2B:80:11:33:E9:6D:30:F8:6D:1E:82:4B:19:F0:CC:34:7D:F7
X509v3 Authority Key Identifier:
keyid:49:E4:4E:EE:A2:65:69:D0:DD:BD:0E:86:37:F1:2C:F5:05:A4:ED:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeRO7qJladDdvQ6GN_Es9QWk7ek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/pXwrgBEz6W0w-G0egksZ8Mw0ffc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/c3dc1b-d1ee-4ff2-a5aa-f0c4be8e240a/1/SeRO7qJladDdvQ6GN_Es9QWk7ek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.213.64.0/21
185.16.252.0/22
193.105.186.0/24
194.5.88.0/23
195.234.36.0/24
IPv6:
2a03:6f80::-2a03:6f82:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
03:3a:f3:03:e1:8c:a5:e4:db:ee:2e:48:af:ae:3c:8f:db:a5:
62:8c:fc:b2:96:6a:2d:b2:64:06:de:bc:3a:07:5a:d4:83:ce:
0d:4d:05:c4:db:3d:42:7d:d1:05:8c:37:a8:53:0c:3a:8b:22:
2c:58:85:22:26:5e:0f:1b:ee:d8:cc:f3:cf:95:9a:70:82:5d:
0f:a6:db:96:49:af:df:e5:3d:8f:dd:b0:07:eb:41:da:30:aa:
07:a9:fd:8d:52:0c:b4:65:95:f0:d0:d3:ea:56:01:b4:7e:91:
39:99:aa:2a:fc:2e:c6:93:dd:fa:1f:99:2a:03:c0:bd:e2:88:
47:d8:bf:fc:a1:8f:45:30:10:59:f0:c4:e7:cc:47:8c:58:d0:
f7:a0:ac:32:94:54:d2:61:ec:68:86:67:e0:4f:db:85:bb:3d:
de:b2:74:14:37:93:cd:d0:55:2d:16:fd:64:7e:de:50:88:9f:
8f:0d:9b:dd:87:ca:89:ed:30:58:da:f8:7d:fd:a5:0d:a5:00:
ed:2f:a9:04:fb:fe:da:02:2a:05:9c:8d:51:07:e6:34:e0:91:
90:a6:15:87:af:ba:6d:41:a8:79:2e:ff:c1:4d:b8:2d:8c:0d:
4c:de:1b:aa:10:f7:a8:12:58:51:42:af:ec:49:0f:59:ce:58:
23:da:5d:30
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgISAYpgjseJi57XRlbMpLdHdCMaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZTQ0ZWVlYTI2NTY5ZDBkZGJkMGU4NjM3ZjEyY2Y1MDVh
NGVkZTkwHhcNMjMwOTA0MTQxODA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNTdjMmI4MDExMzNlOTZkMzBmODZkMWU4MjRiMTlmMGNjMzQ3ZGY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxCPYfczuo4zK3y94kYuYLpYu3HX2
xQxtrg/QJejqxqX3zC7kH+F9H/kqJsjeSOaY2OOlCtWOd44I7tojIA7aR3ZIIbwo
nVaDhdJOgfEOq9XNNZnsVgQbpcqiTKuePjb1X5TRBpbHTdhZ4HDlWSAjXPs5RrNu
X6KTVT8BYgL3X4LF62j5qQoVKPa6vHTJHTPFtQdVDHynjs+UmT7V2ack5Q6bcE61
m6vY94t1CJZ0XR7wJJyVWCRpFkP3roNkptJDDcyz0f36WSObT1XIaQtI4aGLl+Ng
0Jn/A3Do1JDTDkJSmj2YnMbXolljPQ01N7qWHpVEtxmduebvCW0zVFumcwIDAQAB
o4ICOTCCAjUwHQYDVR0OBBYEFKV8K4ARM+ltMPhtHoJLGfDMNH33MB8GA1UdIwQY
MBaAFEnkTu6iZWnQ3b0OhjfxLPUFpO3pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2VSTzdxSmxhZERkdlE2R05fRXM5UVdrN2VrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS9jM2RjMWItZDFlZS00ZmYyLWE1YWEt
ZjBjNGJlOGUyNDBhLzEvcFh3cmdCRXo2VzB3LUcwZWdrc1o4TXcwZmZjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS9jM2RjMWItZDFlZS00ZmYyLWE1YWEtZjBjNGJlOGUyNDBh
LzEvU2VSTzdxSmxhZERkdlE2R05fRXM5UVdrN2VrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjAkBAIAATAeAwQDstVAAwQC
uRD8AwQAwWm6AwQBwgVYAwQAw+okMBYEAgACMBAwDgMFByoDb4ADBQAqA2+CMA0G
CSqGSIb3DQEBCwUAA4IBAQADOvMD4Yyl5NvuLkivrjyP26VijPyylmotsmQG3rw6
B1rUg84NTQXE2z1CfdEFjDeoUww6iyIsWIUiJl4PG+7YzPPPlZpwgl0PptuWSa/f
5T2P3bAH60HaMKoHqf2NUgy0ZZXw0NPqVgG0fpE5maoq/C7Gk936H5kqA8C94ohH
2L/8oY9FMBBZ8MTnzEeMWND3oKwylFTSYexohmfgT9uFuz3esnQUN5PN0FUtFv1k
ft5QiJ+PDZvdh8qJ7TBY2vh9/aUNpQDtL6kE+/7aAioFnI1RB+Y04JGQphWHr7pt
Qah5Lv/BTbgtjA1M3huqEPeoElhRQq/sSQ9Zzlgj2l0w
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:52 2024 by rpki-client on console-ams.rpki-client.org