Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/VWiXyzEDhdyvw3pyTgyIP9ALxvc.roa
File: VWiXyzEDhdyvw3pyTgyIP9ALxvc.roa (raw, json)
Hash identifier: yWtv+l3J7bL6ujnPB7mS16CQYLqpKp4liKOZYRImfjk=
Subject key identifier: 55:68:97:CB:31:03:85:DC:AF:C3:7A:72:4E:0C:88:3F:D0:0B:C6:F7
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 018F1A76D7B040B0F39EC1BD6EAA74BB4238
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/VWiXyzEDhdyvw3pyTgyIP9ALxvc.roa
Signing time: Fri 26 Apr 2024 12:52:27 +0000
ROA not before: Fri 26 Apr 2024 12:52:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207713
IP address blocks: 45.93.213.0/24 maxlen: 24
45.93.214.0/24 maxlen: 24
45.151.234.0/24 maxlen: 24
45.151.235.0/24 maxlen: 24
77.83.246.0/24 maxlen: 24
160.20.156.0/24 maxlen: 24
160.20.157.0/24 maxlen: 24
185.24.109.0/24 maxlen: 24
185.58.114.0/24 maxlen: 24
185.68.186.0/24 maxlen: 24
185.68.187.0/24 maxlen: 24
185.71.214.0/24 maxlen: 24
185.71.215.0/24 maxlen: 24
185.73.180.0/24 maxlen: 24
185.73.181.0/24 maxlen: 24
185.73.183.0/24 maxlen: 24
185.75.132.0/24 maxlen: 24
185.76.240.0/24 maxlen: 24
185.76.241.0/24 maxlen: 24
185.76.242.0/24 maxlen: 24
185.77.138.0/24 maxlen: 24
185.77.139.0/24 maxlen: 24
185.79.132.0/24 maxlen: 24
185.79.133.0/24 maxlen: 24
185.88.98.0/24 maxlen: 24
185.88.99.0/24 maxlen: 24
185.95.228.0/24 maxlen: 24
185.95.230.0/24 maxlen: 24
185.97.79.0/24 maxlen: 24
185.100.156.0/24 maxlen: 24
185.102.114.0/24 maxlen: 24
185.104.148.0/24 maxlen: 24
185.105.47.0/24 maxlen: 24
185.111.24.0/24 maxlen: 24
185.111.25.0/24 maxlen: 24
185.112.59.0/24 maxlen: 24
185.182.130.0/24 maxlen: 24
185.182.131.0/24 maxlen: 24
193.38.228.0/24 maxlen: 24
193.38.229.0/24 maxlen: 24
193.38.230.0/24 maxlen: 24
193.38.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 07:33:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:1a:76:d7:b0:40:b0:f3:9e:c1:bd:6e:aa:74:bb:42:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Apr 26 12:52:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=556897cb310385dcafc37a724e0c883fd00bc6f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:32:34:d6:84:d2:ea:e0:04:c8:a9:07:be:d3:
3a:1b:36:6a:36:66:75:2f:06:10:68:ee:bf:d5:50:
7d:c1:62:3c:01:0b:a3:57:d4:58:09:29:11:fe:b5:
17:0a:a1:41:0c:79:af:2f:8a:c3:2b:01:88:8d:de:
e4:79:c0:69:c4:b5:2b:73:c4:e7:2c:81:99:a5:e3:
98:66:00:5c:98:e7:e3:91:cc:09:04:d3:21:8d:e6:
bd:93:a1:85:8c:d8:82:01:d0:b8:38:3b:cb:b2:90:
ea:ed:89:c6:b4:46:7e:ba:67:0a:fb:ac:fa:e0:37:
da:4d:ae:da:a2:7a:ca:8a:93:fa:e8:f5:50:de:18:
64:78:88:df:27:6c:4b:a2:e1:89:9d:7f:34:37:4c:
bb:e2:35:69:e9:29:55:f3:91:33:53:1a:cc:23:d0:
36:73:23:c5:43:86:1f:d0:c4:17:54:cf:49:30:90:
16:29:2b:98:c1:ae:a9:bc:7e:32:0a:7b:c6:27:1f:
44:d1:e8:3d:e0:1f:9d:2f:be:e4:bd:8f:1d:ea:19:
ec:fa:fd:6e:10:c5:6a:1a:db:16:d1:06:a4:a6:b0:
b0:fb:46:bc:9b:14:b4:b0:99:b9:ea:9c:c6:df:b8:
51:2d:be:6a:10:af:82:67:ff:50:e5:60:bb:b8:88:
6b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:68:97:CB:31:03:85:DC:AF:C3:7A:72:4E:0C:88:3F:D0:0B:C6:F7
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/VWiXyzEDhdyvw3pyTgyIP9ALxvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.213.0-45.93.214.255
45.151.234.0/23
77.83.246.0/24
160.20.156.0/23
185.24.109.0/24
185.58.114.0/24
185.68.186.0/23
185.71.214.0/23
185.73.180.0/23
185.73.183.0/24
185.75.132.0/24
185.76.240.0-185.76.242.255
185.77.138.0/23
185.79.132.0/23
185.88.98.0/23
185.95.228.0/24
185.95.230.0/24
185.97.79.0/24
185.100.156.0/24
185.102.114.0/24
185.104.148.0/24
185.105.47.0/24
185.111.24.0/23
185.112.59.0/24
185.182.130.0/23
193.38.228.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:e6:da:62:d6:7f:41:cb:c9:2d:f1:28:87:79:9e:99:a3:80:
c9:a3:9b:7c:74:b7:d3:57:5e:cc:72:d3:5a:f4:a8:d0:0e:c9:
9f:af:49:88:ff:58:0f:18:24:52:12:32:2e:28:4c:46:2c:ef:
ae:52:7c:dd:a9:39:63:70:24:5b:20:67:84:29:01:4a:f9:5f:
cd:d1:f8:37:28:7d:e5:a8:d3:59:af:1f:53:b0:03:de:4e:47:
c9:88:53:78:34:bf:ab:b3:93:31:00:1b:9a:ea:89:57:87:e5:
54:e5:3d:69:3d:28:3c:bf:02:4b:94:52:77:fe:27:8b:6f:e6:
64:7c:1c:7a:41:21:19:a2:7a:7f:40:a9:f2:33:56:84:50:60:
90:9b:41:99:74:1e:26:24:ad:2c:d7:78:32:48:da:81:02:64:
d5:9b:e0:c4:02:4c:5c:34:df:68:8b:a0:ec:e6:f3:59:a4:dc:
38:ce:85:dd:b0:99:26:37:15:6d:e8:7d:91:16:41:30:1b:cb:
9d:81:10:2f:0c:ce:33:ba:d9:23:c4:66:54:f3:ef:32:c9:35:
9a:c9:2e:cf:8f:ec:21:71:eb:65:bb:b6:e2:46:01:c2:ab:50:
e2:a0:94:23:50:f6:8d:73:fc:fe:3f:a9:bd:8b:f6:32:5f:01:
db:42:cf:ea
-----BEGIN CERTIFICATE-----
MIIFqDCCBJCgAwIBAgISAY8adtewQLDznsG9bqp0u0I4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhZWUxNWMzM2RlMzU4OTM4ZDY5MDBhMWIzYzE0NDgwYTM4
OWU4NWIwHhcNMjQwNDI2MTI1MjI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NTY4OTdjYjMxMDM4NWRjYWZjMzdhNzI0ZTBjODgzZmQwMGJjNmY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiDI01oTS6uAEyKkHvtM6GzZqNmZ1
LwYQaO6/1VB9wWI8AQujV9RYCSkR/rUXCqFBDHmvL4rDKwGIjd7kecBpxLUrc8Tn
LIGZpeOYZgBcmOfjkcwJBNMhjea9k6GFjNiCAdC4ODvLspDq7YnGtEZ+umcK+6z6
4DfaTa7aonrKipP66PVQ3hhkeIjfJ2xLouGJnX80N0y74jVp6SlV85EzUxrMI9A2
cyPFQ4Yf0MQXVM9JMJAWKSuYwa6pvH4yCnvGJx9E0eg94B+dL77kvY8d6hns+v1u
EMVqGtsW0QakprCw+0a8mxS0sJm56pzG37hRLb5qEK+CZ/9Q5WC7uIhrkQIDAQAB
o4ICtDCCArAwHQYDVR0OBBYEFFVol8sxA4Xcr8N6ck4MiD/QC8b3MB8GA1UdIwQY
MBaAFJruFcM941iTjWkAobPBRICjiehbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjIt
NmVlNTM0ZDkyZTUyLzEvVldpWHl6RURoZHl2dzNweVRneUlQOUFMeHZjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjItNmVlNTM0ZDkyZTUy
LzEvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHJBggrBgEFBQcBBwEB/wSBuTCBtjCBswQCAAEwgawwDAME
AC1d1QMEAC1d1gMEAS2X6gMEAE1T9gMEAaAUnAMEALkYbQMEALk6cgMEAblEugME
AblH1gMEAblJtAMEALlJtwMEALlLhDAMAwQEuUzwAwQAuUzyAwQBuU2KAwQBuU+E
AwQBuVhiAwQAuV/kAwQAuV/mAwQAuWFPAwQAuWScAwQAuWZyAwQAuWiUAwQAuWkv
AwQBuW8YAwQAuXA7AwQBubaCAwQCwSbkMA0GCSqGSIb3DQEBCwUAA4IBAQBr5tpi
1n9By8kt8SiHeZ6Zo4DJo5t8dLfTV17MctNa9KjQDsmfr0mI/1gPGCRSEjIuKExG
LO+uUnzdqTljcCRbIGeEKQFK+V/N0fg3KH3lqNNZrx9TsAPeTkfJiFN4NL+rs5Mx
ABua6olXh+VU5T1pPSg8vwJLlFJ3/ieLb+ZkfBx6QSEZonp/QKnyM1aEUGCQm0GZ
dB4mJK0s13gySNqBAmTVm+DEAkxcNN9oi6Ds5vNZpNw4zoXdsJkmNxVt6H2RFkEw
G8udgRAvDM4zutkjxGZU8+8yyTWayS7Pj+whcetlu7biRgHCq1DioJQjUPaNc/z+
P6m9i/YyXwHbQs/q
-----END CERTIFICATE-----
Generated at Tue Apr 30 12:15:44 2024 by rpki-client on console-fra.rpki-client.org