Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/133b52-7a66-41ab-aeee-c9b470dc240b/1/S3YugZkH9kpZ0P-Lw4N8-HjLjKE.roa
File: S3YugZkH9kpZ0P-Lw4N8-HjLjKE.roa (raw, json)
Hash identifier: jtFki8mgxzx4Q/7EO7MbeEG6DspD+Jj/IrsOBipa/2s=
Subject key identifier: 4B:76:2E:81:99:07:F6:4A:59:D0:FF:8B:C3:83:7C:F8:78:CB:8C:A1
Certificate issuer: /CN=b466ac0a49255283cd53066971cd7b3dfe2a3ce8
Certificate serial: 018CC9BCF5FE00E2C8E129E56E5F22709058
Authority key identifier: B4:66:AC:0A:49:25:52:83:CD:53:06:69:71:CD:7B:3D:FE:2A:3C:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tGasCkklUoPNUwZpcc17Pf4qPOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/133b52-7a66-41ab-aeee-c9b470dc240b/1/S3YugZkH9kpZ0P-Lw4N8-HjLjKE.roa
Signing time: Tue 02 Jan 2024 10:34:13 +0000
ROA not before: Tue 02 Jan 2024 10:34:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48101
IP address blocks: 91.151.240.0/20 maxlen: 22
134.19.192.0/22 maxlen: 22
134.19.196.0/22 maxlen: 23
95.166.0.0/18 maxlen: 21
185.122.192.0/22 maxlen: 22
185.16.160.0/22 maxlen: 24
98.96.160.0/20 maxlen: 23
134.65.128.0/21 maxlen: 21
134.65.136.0/22 maxlen: 22
91.228.232.0/23 maxlen: 24
134.65.144.0/22 maxlen: 22
134.65.140.0/22 maxlen: 22
91.228.234.0/24 maxlen: 24
134.65.148.0/22 maxlen: 22
199.15.232.0/22 maxlen: 22
134.65.152.0/21 maxlen: 21
37.25.44.0/24 maxlen: 24
199.15.237.0/24 maxlen: 24
199.15.236.0/24 maxlen: 24
199.15.239.0/24 maxlen: 24
199.15.238.0/24 maxlen: 24
37.25.45.0/24 maxlen: 24
37.25.46.0/23 maxlen: 23
2a04:200::/29 maxlen: 48
Validation: Failed, certificate revoked on Fri 22 Mar 2024 14:35:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:f5:fe:00:e2:c8:e1:29:e5:6e:5f:22:70:90:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b466ac0a49255283cd53066971cd7b3dfe2a3ce8
Validity
Not Before: Jan 2 10:34:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4b762e819907f64a59d0ff8bc3837cf878cb8ca1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:5c:bc:3f:e0:bd:6b:ee:71:3b:17:56:af:c8:
da:39:f6:e0:63:04:6d:58:c2:fa:5f:ab:be:d2:d7:
64:50:82:58:6e:97:2d:7f:9a:db:bb:ba:94:e3:ba:
fe:04:eb:80:5b:36:5e:c9:a8:f4:73:81:ab:68:47:
c7:d4:a6:5c:54:51:9f:75:e3:c4:80:18:b7:95:fc:
d2:95:ac:ee:e5:0f:c8:56:14:61:ad:41:22:98:b7:
c5:7e:4d:85:31:a9:a1:a8:8c:98:ff:28:a7:f6:d7:
ae:0b:50:f9:7f:59:6c:1d:5a:b0:a0:1f:14:a9:39:
fe:72:e9:8d:3f:7d:b3:c9:85:9d:79:d4:96:98:94:
54:60:14:40:84:d3:26:37:4b:6d:e0:0b:81:d0:db:
44:5c:ab:7d:17:7f:42:e8:b9:70:ee:bc:ff:34:7f:
41:04:ee:46:ba:9a:ee:1d:0a:4a:36:eb:12:e7:09:
61:68:e0:b0:bb:01:1e:ff:d6:46:bf:43:32:68:62:
35:2b:58:aa:6a:2c:26:bc:5c:76:e3:af:44:85:d9:
3e:69:63:39:9a:95:af:4b:88:b8:fa:ac:91:a2:6c:
cf:3b:2f:2c:aa:3d:2b:55:77:70:93:b9:d4:29:51:
57:85:84:2b:cc:f7:42:d8:19:fe:2f:8c:b8:93:3a:
c8:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:76:2E:81:99:07:F6:4A:59:D0:FF:8B:C3:83:7C:F8:78:CB:8C:A1
X509v3 Authority Key Identifier:
keyid:B4:66:AC:0A:49:25:52:83:CD:53:06:69:71:CD:7B:3D:FE:2A:3C:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tGasCkklUoPNUwZpcc17Pf4qPOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/133b52-7a66-41ab-aeee-c9b470dc240b/1/S3YugZkH9kpZ0P-Lw4N8-HjLjKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/133b52-7a66-41ab-aeee-c9b470dc240b/1/tGasCkklUoPNUwZpcc17Pf4qPOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.25.44.0/22
91.151.240.0/20
91.228.232.0-91.228.234.255
95.166.0.0/18
98.96.160.0/20
134.19.192.0/21
134.65.128.0/19
185.16.160.0/22
185.122.192.0/22
199.15.232.0/21
IPv6:
2a04:200::/29
Signature Algorithm: sha256WithRSAEncryption
20:49:42:c1:7f:bc:89:5a:e3:1f:db:7e:a3:fb:2e:62:9a:2c:
31:14:8c:7e:5d:9c:02:44:64:91:8e:92:5b:17:1d:50:5d:70:
23:47:47:c7:68:1f:3c:be:5f:91:23:0d:2c:95:ea:31:7d:f9:
30:a8:c0:91:72:dc:61:ac:33:2c:2c:bd:c0:6c:76:d3:d7:cc:
57:62:08:c2:a6:60:51:b0:14:66:a2:ee:cb:d8:11:6b:03:17:
94:6d:c0:79:7b:2a:6e:ed:ae:f9:c3:34:17:52:67:23:fe:c6:
90:b5:e2:35:f5:14:2c:ad:b8:b4:99:04:35:ad:3c:37:ab:31:
58:c8:b6:32:dc:e1:4d:6c:da:b6:02:e9:7b:dd:19:0a:24:5d:
db:4e:10:f1:fe:4c:31:e2:2b:fb:e7:57:3d:fa:0e:14:82:41:
08:ba:83:77:cc:67:15:39:14:ee:b4:56:9e:58:da:90:35:f6:
77:17:e6:7e:4a:08:08:7c:b2:f6:58:59:c5:48:60:02:d4:ea:
14:92:e6:5a:4d:83:e4:21:8a:60:3a:51:66:7d:ee:14:64:fb:
8d:ee:4d:21:be:4d:b2:58:ad:4f:7f:26:88:9d:6c:c1:9f:9e:
88:06:e3:53:f3:c8:fd:35:82:67:1e:81:05:58:1d:e0:f8:88:
9f:1f:e6:c5
-----BEGIN CERTIFICATE-----
MIIFSjCCBDKgAwIBAgISAYzJvPX+AOLI4Snlbl8icJBYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0NjZhYzBhNDkyNTUyODNjZDUzMDY2OTcxY2Q3YjNkZmUy
YTNjZTgwHhcNMjQwMTAyMTAzNDEzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Yjc2MmU4MTk5MDdmNjRhNTlkMGZmOGJjMzgzN2NmODc4Y2I4Y2ExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm1y8P+C9a+5xOxdWr8jaOfbgYwRt
WML6X6u+0tdkUIJYbpctf5rbu7qU47r+BOuAWzZeyaj0c4GraEfH1KZcVFGfdePE
gBi3lfzSlazu5Q/IVhRhrUEimLfFfk2FMamhqIyY/yin9teuC1D5f1lsHVqwoB8U
qTn+cumNP32zyYWdedSWmJRUYBRAhNMmN0tt4AuB0NtEXKt9F39C6Llw7rz/NH9B
BO5GupruHQpKNusS5wlhaOCwuwEe/9ZGv0MyaGI1K1iqaiwmvFx2469Ehdk+aWM5
mpWvS4i4+qyRomzPOy8sqj0rVXdwk7nUKVFXhYQrzPdC2Bn+L4y4kzrIDQIDAQAB
o4ICVjCCAlIwHQYDVR0OBBYEFEt2LoGZB/ZKWdD/i8ODfPh4y4yhMB8GA1UdIwQY
MBaAFLRmrApJJVKDzVMGaXHNez3+KjzoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEdhc0Nra2xVb1BOVXdacGNjMTdQZjRxUE9nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy8xMzNiNTItN2E2Ni00MWFiLWFlZWUt
YzliNDcwZGMyNDBiLzEvUzNZdWdaa0g5a3BaMFAtTHc0TjgtSGpMaktFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy8xMzNiNTItN2E2Ni00MWFiLWFlZWUtYzliNDcwZGMyNDBi
LzEvdEdhc0Nra2xVb1BOVXdacGNjMTdQZjRxUE9nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGwGCCsGAQUFBwEHAQH/BF0wWzBKBAIAATBEAwQCJRksAwQE
W5fwMAwDBANb5OgDBABb5OoDBAZfpgADBARiYKADBAOGE8ADBAWGQYADBAK5EKAD
BAK5esADBAPHD+gwDQQCAAIwBwMFAyoEAgAwDQYJKoZIhvcNAQELBQADggEBACBJ
QsF/vIla4x/bfqP7LmKaLDEUjH5dnAJEZJGOklsXHVBdcCNHR8doHzy+X5EjDSyV
6jF9+TCowJFy3GGsMywsvcBsdtPXzFdiCMKmYFGwFGai7svYEWsDF5RtwHl7Km7t
rvnDNBdSZyP+xpC14jX1FCytuLSZBDWtPDerMVjItjLc4U1s2rYC6XvdGQokXdtO
EPH+TDHiK/vnVz36DhSCQQi6g3fMZxU5FO60Vp5Y2pA19ncX5n5KCAh8svZYWcVI
YALU6hSS5lpNg+QhimA6UWZ97hRk+43uTSG+TbJYrU9/JoidbMGfnogG41PzyP01
gmcegQVYHeD4iJ8f5sU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:36 2024 by rpki-client on console-ams.rpki-client.org