Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/6oLBsOZDTNeq-i8hiV9VjJ3yjSE.roa
File: 6oLBsOZDTNeq-i8hiV9VjJ3yjSE.roa (raw, json)
Hash identifier: 6vTsUSvL5LLkPt2I4Xa11JIdKdVHl1ub8Ye+o9VfzGM=
Subject key identifier: EA:82:C1:B0:E6:43:4C:D7:AA:FA:2F:21:89:5F:55:8C:9D:F2:8D:21
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 018E2C8EF531C9AD0EE43DDA8629778E5BF5
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/6oLBsOZDTNeq-i8hiV9VjJ3yjSE.roa
Signing time: Mon 11 Mar 2024 08:09:10 +0000
ROA not before: Mon 11 Mar 2024 08:09:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207713
IP address blocks: 45.93.213.0/24 maxlen: 24
45.93.214.0/24 maxlen: 24
45.151.234.0/24 maxlen: 24
45.151.235.0/24 maxlen: 24
77.83.245.0/24 maxlen: 24
77.83.246.0/24 maxlen: 24
160.20.156.0/24 maxlen: 24
160.20.157.0/24 maxlen: 24
185.58.114.0/24 maxlen: 24
185.68.186.0/24 maxlen: 24
185.68.187.0/24 maxlen: 24
185.71.214.0/24 maxlen: 24
185.71.215.0/24 maxlen: 24
185.73.180.0/24 maxlen: 24
185.73.181.0/24 maxlen: 24
185.73.183.0/24 maxlen: 24
185.75.132.0/24 maxlen: 24
185.75.135.0/24 maxlen: 24
185.76.240.0/24 maxlen: 24
185.76.241.0/24 maxlen: 24
185.76.242.0/24 maxlen: 24
185.76.243.0/24 maxlen: 24
185.77.138.0/24 maxlen: 24
185.77.139.0/24 maxlen: 24
185.79.132.0/24 maxlen: 24
185.79.133.0/24 maxlen: 24
185.88.98.0/24 maxlen: 24
185.88.99.0/24 maxlen: 24
185.95.228.0/24 maxlen: 24
185.95.230.0/24 maxlen: 24
185.97.79.0/24 maxlen: 24
185.100.156.0/24 maxlen: 24
185.100.159.0/24 maxlen: 24
185.102.114.0/24 maxlen: 24
185.104.148.0/24 maxlen: 24
185.105.47.0/24 maxlen: 24
185.111.24.0/24 maxlen: 24
185.111.25.0/24 maxlen: 24
185.112.59.0/24 maxlen: 24
185.168.208.0/24 maxlen: 24
185.177.238.0/24 maxlen: 24
185.182.130.0/24 maxlen: 24
185.182.131.0/24 maxlen: 24
193.38.228.0/24 maxlen: 24
193.38.229.0/24 maxlen: 24
193.38.230.0/24 maxlen: 24
193.38.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Mar 2024 11:15:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:2c:8e:f5:31:c9:ad:0e:e4:3d:da:86:29:77:8e:5b:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Mar 11 08:09:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ea82c1b0e6434cd7aafa2f21895f558c9df28d21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:81:1d:7a:7f:00:3a:9f:e4:70:9a:0e:36:5f:
ee:22:f2:76:50:19:6c:b6:30:70:da:25:60:70:03:
8b:0e:75:db:a9:f9:fb:87:fc:7c:28:f7:92:04:63:
d4:08:0b:29:db:4e:6f:c6:b7:a4:2d:d7:fc:32:78:
ed:2c:e7:48:e0:9a:f6:4a:fc:07:a6:f5:56:cc:5c:
c2:d4:36:7b:ff:1d:12:fd:47:70:0d:fb:57:6a:58:
2d:21:a0:d9:b2:55:71:36:ed:ad:6f:88:f8:c6:a4:
33:0c:fa:e6:2d:6d:77:62:70:ba:a2:0c:d4:fa:2c:
88:73:20:b9:c2:16:d5:07:40:dc:91:8c:96:1a:bb:
a8:c4:ac:01:ba:32:d8:b4:4a:62:1a:7b:24:a9:7c:
6d:5e:48:f4:42:29:c9:51:33:ac:2b:ad:66:aa:e8:
8d:1c:88:e5:75:02:79:49:69:14:d0:e9:61:76:00:
b9:63:c0:a8:02:6f:38:2d:15:bb:5f:1f:61:ec:97:
1b:0a:62:5d:0d:a7:54:92:df:40:c7:b3:ea:06:28:
7a:d2:0b:c3:8c:ab:43:5e:00:34:f9:83:ef:5c:7c:
75:df:57:d2:37:1e:04:0e:89:9f:e9:94:51:a6:93:
1a:7d:c7:20:d5:7f:74:2f:0c:b2:5b:b1:9b:e2:ba:
43:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:82:C1:B0:E6:43:4C:D7:AA:FA:2F:21:89:5F:55:8C:9D:F2:8D:21
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/6oLBsOZDTNeq-i8hiV9VjJ3yjSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.213.0-45.93.214.255
45.151.234.0/23
77.83.245.0-77.83.246.255
160.20.156.0/23
185.58.114.0/24
185.68.186.0/23
185.71.214.0/23
185.73.180.0/23
185.73.183.0/24
185.75.132.0/24
185.75.135.0/24
185.76.240.0/22
185.77.138.0/23
185.79.132.0/23
185.88.98.0/23
185.95.228.0/24
185.95.230.0/24
185.97.79.0/24
185.100.156.0/24
185.100.159.0/24
185.102.114.0/24
185.104.148.0/24
185.105.47.0/24
185.111.24.0/23
185.112.59.0/24
185.168.208.0/24
185.177.238.0/24
185.182.130.0/23
193.38.228.0/22
Signature Algorithm: sha256WithRSAEncryption
64:9e:12:3e:ca:4b:75:c7:d0:75:28:d3:37:6b:41:44:c5:7f:
4e:7c:5e:41:41:15:ed:81:2f:78:21:29:c6:67:99:af:1a:7d:
f6:7a:d5:ea:ac:5a:46:0c:2d:5a:32:22:24:99:03:dc:1b:41:
d6:75:67:e5:5c:ff:96:f8:f8:8c:96:69:7b:06:07:95:46:13:
85:ac:c6:96:fa:b6:10:a8:cf:b0:4d:8d:ab:09:81:e2:ce:d6:
f5:b5:1a:5a:a0:de:f2:96:2d:df:88:fa:97:e6:df:22:ce:16:
82:9f:a9:f6:cb:3a:58:32:72:44:cb:9c:c1:90:6c:82:4a:f2:
4e:c5:a2:01:64:d8:09:b7:c7:5b:1b:e3:53:1d:a2:da:b3:a3:
60:c6:73:bb:86:0f:b1:12:16:ff:76:ad:d4:42:df:8a:16:df:
18:5d:c9:81:69:f1:4e:09:67:b3:81:34:fb:41:73:ca:8e:02:
59:2b:6d:37:72:4d:9e:f9:2e:92:f1:fa:55:f5:15:64:6a:6a:
12:2b:7a:24:65:1d:79:83:2d:93:d5:f8:bd:ed:12:9a:6e:c8:
2d:70:a8:4e:ca:14:3e:79:ee:8d:4b:a3:64:1c:b6:64:5a:ca:
88:e6:1b:63:89:51:0f:4f:40:99:01:ca:f8:10:b3:40:6b:a2:
29:96:ca:f4
-----BEGIN CERTIFICATE-----
MIIFujCCBKKgAwIBAgISAY4sjvUxya0O5D3ahil3jlv1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhZWUxNWMzM2RlMzU4OTM4ZDY5MDBhMWIzYzE0NDgwYTM4
OWU4NWIwHhcNMjQwMzExMDgwOTEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYTgyYzFiMGU2NDM0Y2Q3YWFmYTJmMjE4OTVmNTU4YzlkZjI4ZDIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg4Eden8AOp/kcJoONl/uIvJ2UBls
tjBw2iVgcAOLDnXbqfn7h/x8KPeSBGPUCAsp205vxrekLdf8MnjtLOdI4Jr2SvwH
pvVWzFzC1DZ7/x0S/UdwDftXalgtIaDZslVxNu2tb4j4xqQzDPrmLW13YnC6ogzU
+iyIcyC5whbVB0DckYyWGruoxKwBujLYtEpiGnskqXxtXkj0QinJUTOsK61mquiN
HIjldQJ5SWkU0OlhdgC5Y8CoAm84LRW7Xx9h7JcbCmJdDadUkt9Ax7PqBih60gvD
jKtDXgA0+YPvXHx131fSNx4EDomf6ZRRppMafccg1X90LwyyW7Gb4rpDlQIDAQAB
o4ICxjCCAsIwHQYDVR0OBBYEFOqCwbDmQ0zXqvovIYlfVYyd8o0hMB8GA1UdIwQY
MBaAFJruFcM941iTjWkAobPBRICjiehbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjIt
NmVlNTM0ZDkyZTUyLzEvNm9MQnNPWkRUTmVxLWk4aGlWOVZqSjN5alNFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjItNmVlNTM0ZDkyZTUy
LzEvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHbBggrBgEFBQcBBwEB/wSByzCByDCBxQQCAAEwgb4wDAME
AC1d1QMEAC1d1gMEAS2X6jAMAwQATVP1AwQATVP2AwQBoBScAwQAuTpyAwQBuUS6
AwQBuUfWAwQBuUm0AwQAuUm3AwQAuUuEAwQAuUuHAwQCuUzwAwQBuU2KAwQBuU+E
AwQBuVhiAwQAuV/kAwQAuV/mAwQAuWFPAwQAuWScAwQAuWSfAwQAuWZyAwQAuWiU
AwQAuWkvAwQBuW8YAwQAuXA7AwQAuajQAwQAubHuAwQBubaCAwQCwSbkMA0GCSqG
SIb3DQEBCwUAA4IBAQBknhI+ykt1x9B1KNM3a0FExX9OfF5BQRXtgS94ISnGZ5mv
Gn32etXqrFpGDC1aMiIkmQPcG0HWdWflXP+W+PiMlml7BgeVRhOFrMaW+rYQqM+w
TY2rCYHiztb1tRpaoN7yli3fiPqX5t8izhaCn6n2yzpYMnJEy5zBkGyCSvJOxaIB
ZNgJt8dbG+NTHaLas6NgxnO7hg+xEhb/dq3UQt+KFt8YXcmBafFOCWezgTT7QXPK
jgJZK203ck2e+S6S8fpV9RVkamoSK3okZR15gy2T1fi97RKabsgtcKhOyhQ+ee6N
S6NkHLZkWsqI5htjiVEPT0CZAcr4ELNAa6Iplsr0
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:17 2024 by rpki-client on console-ams.rpki-client.org