Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/55e138-56da-4492-a1f2-db04f21390a0/1/bNs5AFIqPJYIlwSgycTvIEzFz0Y.roa
File: bNs5AFIqPJYIlwSgycTvIEzFz0Y.roa (raw, json)
Hash identifier: oRG0w+4eJHsHm8h1C1ibXN3WZ182q/f50vBhEyAY/wE=
Subject key identifier: 6C:DB:39:00:52:2A:3C:96:08:97:04:A0:C9:C4:EF:20:4C:C5:CF:46
Certificate issuer: /CN=48171672d53fdf8b2537764f537e365a5927bdaf
Certificate serial: 01856ED4B090524026DAB3A10B441E211908
Authority key identifier: 48:17:16:72:D5:3F:DF:8B:25:37:76:4F:53:7E:36:5A:59:27:BD:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SBcWctU_34slN3ZPU342Wlknva8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/55e138-56da-4492-a1f2-db04f21390a0/1/bNs5AFIqPJYIlwSgycTvIEzFz0Y.roa
Signing time: Sun 01 Jan 2023 19:35:10 +0000
ROA not before: Sun 01 Jan 2023 19:35:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21056
IP address blocks: 185.241.20.0/22 maxlen: 32
185.224.60.0/22 maxlen: 32
87.247.232.0/21 maxlen: 32
45.151.12.0/22 maxlen: 32
213.182.64.0/19 maxlen: 32
45.84.140.0/22 maxlen: 32
185.224.104.0/22 maxlen: 32
79.135.32.0/19 maxlen: 32
185.230.192.0/22 maxlen: 32
80.93.128.0/20 maxlen: 32
185.170.36.0/22 maxlen: 32
185.231.160.0/22 maxlen: 32
46.44.192.0/18 maxlen: 32
185.158.116.0/22 maxlen: 32
185.230.232.0/22 maxlen: 32
144.48.192.0/22 maxlen: 32
78.152.96.0/19 maxlen: 32
45.143.36.0/22 maxlen: 32
185.230.92.0/22 maxlen: 32
45.151.64.0/22 maxlen: 32
185.234.164.0/22 maxlen: 32
94.138.160.0/19 maxlen: 32
91.143.192.0/20 maxlen: 32
2a00:14f8::/32 maxlen: 64
Validation: Failed, certificate revoked on Thu 16 Feb 2023 11:04:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:b0:90:52:40:26:da:b3:a1:0b:44:1e:21:19:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48171672d53fdf8b2537764f537e365a5927bdaf
Validity
Not Before: Jan 1 19:35:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6cdb3900522a3c96089704a0c9c4ef204cc5cf46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:2c:d2:7d:a2:80:f0:26:4b:65:c1:11:69:4e:
e0:c2:ce:ba:f1:1b:93:09:d2:fd:e4:36:86:81:0c:
ef:a0:d9:da:ae:f9:85:50:10:ea:e5:c2:74:2d:50:
3a:e6:67:21:ee:2b:fa:a6:9d:b1:56:55:e6:5d:7d:
6f:a4:b5:40:a2:90:d7:27:f9:64:8e:f3:35:62:8c:
82:d6:bc:d4:56:6f:38:68:60:e2:7d:6e:6f:44:9d:
32:38:03:0b:ee:be:88:78:ae:94:b8:b4:5a:26:ce:
9b:03:be:90:f8:fc:f9:52:a7:59:94:34:da:dc:2f:
dc:15:34:db:78:9c:fc:05:a0:80:5b:bf:bf:10:75:
f5:2d:ff:97:c4:2f:3b:97:b6:d4:a8:e4:91:87:ea:
eb:48:fc:cb:9f:68:f9:32:0b:fc:1a:7e:b6:ef:bd:
8d:ae:b7:5a:42:c1:83:88:fb:9b:be:bd:eb:a6:a9:
9d:06:94:59:19:4f:24:68:ee:7a:e1:3b:82:d1:fd:
81:5b:16:7a:87:2e:8c:c2:d4:9d:0f:35:6a:6a:b1:
79:1a:30:36:ed:d2:0c:68:ee:5c:d8:bd:93:46:a1:
01:75:e0:5a:15:df:06:02:32:92:d0:a5:55:60:40:
67:1f:cf:9a:8a:a5:6c:e5:91:08:4a:f7:ba:01:7b:
63:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:DB:39:00:52:2A:3C:96:08:97:04:A0:C9:C4:EF:20:4C:C5:CF:46
X509v3 Authority Key Identifier:
keyid:48:17:16:72:D5:3F:DF:8B:25:37:76:4F:53:7E:36:5A:59:27:BD:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SBcWctU_34slN3ZPU342Wlknva8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/55e138-56da-4492-a1f2-db04f21390a0/1/bNs5AFIqPJYIlwSgycTvIEzFz0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/55e138-56da-4492-a1f2-db04f21390a0/1/SBcWctU_34slN3ZPU342Wlknva8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.140.0/22
45.143.36.0/22
45.151.12.0/22
45.151.64.0/22
46.44.192.0/18
78.152.96.0/19
79.135.32.0/19
80.93.128.0/20
87.247.232.0/21
91.143.192.0/20
94.138.160.0/19
144.48.192.0/22
185.158.116.0/22
185.170.36.0/22
185.224.60.0/22
185.224.104.0/22
185.230.92.0/22
185.230.192.0/22
185.230.232.0/22
185.231.160.0/22
185.234.164.0/22
185.241.20.0/22
213.182.64.0/19
IPv6:
2a00:14f8::/32
Signature Algorithm: sha256WithRSAEncryption
10:19:97:6c:90:58:60:53:b7:58:cf:ed:82:1a:e5:90:ba:db:
30:c2:06:6b:8f:07:71:c6:36:9d:92:9d:c0:cd:f8:d4:6f:ab:
71:32:6e:3f:ae:60:5e:4e:4d:07:ae:54:5c:f2:9d:e5:c6:e9:
8b:e1:a3:c3:75:17:61:0f:68:5d:6d:61:41:f0:1d:1f:46:a3:
08:3e:96:6b:8d:1d:aa:fb:27:0b:33:85:ec:2c:fa:93:7f:d4:
20:54:1f:68:58:4b:1f:72:5b:10:4a:14:6d:0c:a9:57:5f:a6:
55:09:0d:27:30:46:3f:59:cb:da:93:eb:bc:d8:24:22:6a:f3:
be:96:3d:5b:e4:0e:10:66:c6:46:ea:15:2b:50:7b:4f:10:76:
5c:52:60:95:78:66:36:46:c1:87:e8:8d:6e:c0:2a:b2:99:76:
41:b8:ee:db:c3:1f:20:eb:20:8d:5a:7c:80:01:15:c6:2e:b1:
7d:af:eb:15:2d:aa:bb:18:1d:5c:6f:52:40:f7:e5:01:c8:5b:
a7:c8:25:b3:bf:86:24:e7:85:6f:3c:8a:61:72:a0:db:86:c3:
89:01:4f:29:24:81:e3:b1:70:d0:bb:01:1d:98:de:df:8e:f7:
51:c3:28:78:4d:2a:be:fd:43:cb:18:c1:44:2c:8c:9d:6f:48:
27:09:b8:1b
-----BEGIN CERTIFICATE-----
MIIFlTCCBH2gAwIBAgISAYVu1LCQUkAm2rOhC0QeIRkIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ4MTcxNjcyZDUzZmRmOGIyNTM3NzY0ZjUzN2UzNjVhNTky
N2JkYWYwHhcNMjMwMTAxMTkzNTEwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Y2RiMzkwMDUyMmEzYzk2MDg5NzA0YTBjOWM0ZWYyMDRjYzVjZjQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsyzSfaKA8CZLZcERaU7gws668RuT
CdL95DaGgQzvoNnarvmFUBDq5cJ0LVA65mch7iv6pp2xVlXmXX1vpLVAopDXJ/lk
jvM1YoyC1rzUVm84aGDifW5vRJ0yOAML7r6IeK6UuLRaJs6bA76Q+Pz5UqdZlDTa
3C/cFTTbeJz8BaCAW7+/EHX1Lf+XxC87l7bUqOSRh+rrSPzLn2j5Mgv8Gn62772N
rrdaQsGDiPubvr3rpqmdBpRZGU8kaO564TuC0f2BWxZ6hy6MwtSdDzVqarF5GjA2
7dIMaO5c2L2TRqEBdeBaFd8GAjKS0KVVYEBnH8+aiqVs5ZEISve6AXtjnQIDAQAB
o4ICoTCCAp0wHQYDVR0OBBYEFGzbOQBSKjyWCJcEoMnE7yBMxc9GMB8GA1UdIwQY
MBaAFEgXFnLVP9+LJTd2T1N+NlpZJ72vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU0JjV2N0VV8zNHNsTjNaUFUzNDJXbGtudmE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS81NWUxMzgtNTZkYS00NDkyLWExZjIt
ZGIwNGYyMTM5MGEwLzEvYk5zNUFGSXFQSllJbHdTZ3ljVHZJRXpGejBZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS81NWUxMzgtNTZkYS00NDkyLWExZjItZGIwNGYyMTM5MGEw
LzEvU0JjV2N0VV8zNHNsTjNaUFUzNDJXbGtudmE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG2BggrBgEFBQcBBwEB/wSBpjCBozCBkQQCAAEwgYoDBAIt
VIwDBAItjyQDBAItlwwDBAItl0ADBAYuLMADBAVOmGADBAVPhyADBARQXYADBANX
9+gDBARbj8ADBAVeiqADBAKQMMADBAK5nnQDBAK5qiQDBAK54DwDBAK54GgDBAK5
5lwDBAK55sADBAK55ugDBAK556ADBAK56qQDBAK58RQDBAXVtkAwDQQCAAIwBwMF
ACoAFPgwDQYJKoZIhvcNAQELBQADggEBABAZl2yQWGBTt1jP7YIa5ZC62zDCBmuP
B3HGNp2SncDN+NRvq3Eybj+uYF5OTQeuVFzyneXG6Yvho8N1F2EPaF1tYUHwHR9G
owg+lmuNHar7Jwszhews+pN/1CBUH2hYSx9yWxBKFG0MqVdfplUJDScwRj9Zy9qT
67zYJCJq876WPVvkDhBmxkbqFStQe08QdlxSYJV4ZjZGwYfojW7AKrKZdkG47tvD
HyDrII1afIABFcYusX2v6xUtqrsYHVxvUkD35QHIW6fIJbO/hiTnhW88imFyoNuG
w4kBTykkgeOxcNC7AR2Y3t+O91HDKHhNKr79Q8sYwUQsjJ1vSCcJuBs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:43 2024 by rpki-client on console-fra.rpki-client.org