Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/JUAD7Whuj5BK-CvD8oII3i2M_D8.roa
File: JUAD7Whuj5BK-CvD8oII3i2M_D8.roa (raw, json)
Hash identifier: JSZHKiWGy8AqaH0Jp4jv7cZiAh2jVDYFt4jC7rBtMyM=
Subject key identifier: 25:40:03:ED:68:6E:8F:90:4A:F8:2B:C3:F2:82:08:DE:2D:8C:FC:3F
Certificate issuer: /CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Certificate serial: 018867E55C524CF1B6DA75C9A49E57366A19
Authority key identifier: C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/JUAD7Whuj5BK-CvD8oII3i2M_D8.roa
Signing time: Mon 29 May 2023 14:24:24 +0000
ROA not before: Mon 29 May 2023 14:24:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50926
IP address blocks: 188.95.112.0/21 maxlen: 24
185.176.9.0/24 maxlen: 24
185.176.8.0/24 maxlen: 24
185.176.11.0/24 maxlen: 24
185.176.10.0/24 maxlen: 24
84.246.208.0/21 maxlen: 24
109.68.80.0/21 maxlen: 24
91.213.46.0/24 maxlen: 24
31.24.152.0/21 maxlen: 24
185.70.92.0/22 maxlen: 24
91.142.208.0/20 maxlen: 24
188.164.192.0/21 maxlen: 24
185.23.68.0/22 maxlen: 24
94.127.186.0/24 maxlen: 24
94.127.185.0/24 maxlen: 24
94.127.184.0/24 maxlen: 24
94.127.188.0/24 maxlen: 24
94.127.187.0/24 maxlen: 24
94.127.191.0/24 maxlen: 24
94.127.190.0/24 maxlen: 24
185.222.156.0/22 maxlen: 24
185.129.248.0/22 maxlen: 24
149.62.168.0/21 maxlen: 24
195.5.116.0/23 maxlen: 24
5.175.40.0/21 maxlen: 24
91.200.140.0/22 maxlen: 24
185.101.224.0/22 maxlen: 24
31.24.40.0/21 maxlen: 24
2a01:4b80::/32 maxlen: 32
2a00:5ac0::/44 maxlen: 44
Validation: Failed, certificate revoked on Fri 07 Jul 2023 20:21:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:67:e5:5c:52:4c:f1:b6:da:75:c9:a4:9e:57:36:6a:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d2a234e224bf87996f2f0df559ead882f9e651
Validity
Not Before: May 29 14:24:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=254003ed686e8f904af82bc3f28208de2d8cfc3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8c:48:01:de:52:c9:d2:d5:d9:fc:c7:c0:07:
35:d9:2c:71:c1:6c:09:10:72:15:d6:f9:08:a8:75:
7e:4c:e9:95:53:34:9d:a5:7e:d5:0d:1b:31:1a:c0:
dc:ad:62:2e:52:ce:73:2c:89:d7:25:66:8c:33:0f:
92:bc:29:fe:cc:07:18:52:d6:42:7b:ea:c8:e3:70:
2c:ce:ab:65:59:d7:cc:27:1a:dd:af:7c:b0:af:78:
58:95:98:53:7a:a8:cb:d7:5e:a7:4e:f8:bd:d3:21:
b3:29:27:e4:07:ce:e8:fb:ea:66:b3:98:03:6c:45:
2d:33:0a:6c:4e:ad:c0:4f:f1:c9:26:88:42:ce:1c:
fa:fe:ea:30:ab:d4:26:3c:f6:eb:12:e4:f5:a2:d2:
24:3c:df:1c:31:9d:11:cf:1a:58:07:29:e2:8f:05:
3a:a1:69:d7:7c:18:65:33:58:f1:9f:65:ef:0b:74:
1c:91:18:c2:97:77:4b:da:13:8f:26:5a:e1:f3:b8:
2a:74:43:f1:16:a5:28:cc:72:ff:52:f8:32:73:9a:
c9:4a:ce:14:84:55:27:27:bc:0a:95:d4:6f:86:4b:
6a:ce:c2:89:16:26:15:9f:08:0b:2d:62:e9:b3:41:
2d:52:6d:4c:22:d4:e0:50:a3:64:03:09:67:a2:86:
2c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:40:03:ED:68:6E:8F:90:4A:F8:2B:C3:F2:82:08:DE:2D:8C:FC:3F
X509v3 Authority Key Identifier:
keyid:C2:D2:A2:34:E2:24:BF:87:99:6F:2F:0D:F5:59:EA:D8:82:F9:E6:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtKiNOIkv4eZby8N9Vnq2IL55lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/JUAD7Whuj5BK-CvD8oII3i2M_D8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1ee4b-e88a-4e41-a616-4b248da6c96c/1/wtKiNOIkv4eZby8N9Vnq2IL55lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.175.40.0/21
31.24.40.0/21
31.24.152.0/21
84.246.208.0/21
91.142.208.0/20
91.200.140.0/22
91.213.46.0/24
94.127.184.0-94.127.188.255
94.127.190.0/23
109.68.80.0/21
149.62.168.0/21
185.23.68.0/22
185.70.92.0/22
185.101.224.0/22
185.129.248.0/22
185.176.8.0/22
185.222.156.0/22
188.95.112.0/21
188.164.192.0/21
195.5.116.0/23
IPv6:
2a00:5ac0::/44
2a01:4b80::/32
Signature Algorithm: sha256WithRSAEncryption
52:49:73:07:a5:5d:4b:e1:6d:99:ee:51:e1:5d:a8:6b:02:16:
8a:6e:23:e6:3c:41:c4:ed:a5:05:ed:9a:79:e6:8d:c3:88:56:
71:0a:c3:f1:e1:e6:bf:fd:1f:0a:93:33:64:94:f3:25:e6:92:
1b:bc:ca:35:f4:c1:1e:89:55:d2:df:7a:bb:ff:bb:09:c4:98:
bf:5c:ca:96:b8:0a:2c:94:85:81:58:21:e6:0e:3d:dc:fe:1d:
1d:f2:9c:a0:0c:6a:d0:dc:c2:db:d9:cd:ea:7a:00:26:fb:18:
d2:ac:d8:2a:4c:93:d2:ef:b2:cf:14:5c:45:ec:dd:e9:dc:36:
53:ca:f7:76:f6:8d:f6:0a:3c:c3:ba:c1:77:67:a1:f4:d7:e7:
34:17:44:2b:d3:74:bc:45:6b:3f:8e:5a:86:dc:81:1d:d6:95:
e8:13:dd:68:0c:f9:c1:d6:16:f1:f5:b3:9b:26:ce:a1:7a:3f:
cc:c1:df:e2:5e:a4:db:22:31:03:90:e0:d0:71:28:f6:86:f4:
29:18:4f:f5:7d:2a:d4:05:7f:8a:cc:7a:39:89:04:31:47:6e:
90:d8:96:18:b3:4c:63:a0:0f:f1:2e:60:fc:55:c0:fb:d0:e9:
5c:42:26:ce:a0:00:6e:e8:e4:c8:0d:15:35:7a:b6:0f:18:8d:
c2:56:f1:b3
-----BEGIN CERTIFICATE-----
MIIFlDCCBHygAwIBAgISAYhn5VxSTPG22nXJpJ5XNmoZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyZDJhMjM0ZTIyNGJmODc5OTZmMmYwZGY1NTllYWQ4ODJm
OWU2NTEwHhcNMjMwNTI5MTQyNDI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNTQwMDNlZDY4NmU4ZjkwNGFmODJiYzNmMjgyMDhkZTJkOGNmYzNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq4xIAd5SydLV2fzHwAc12SxxwWwJ
EHIV1vkIqHV+TOmVUzSdpX7VDRsxGsDcrWIuUs5zLInXJWaMMw+SvCn+zAcYUtZC
e+rI43AszqtlWdfMJxrdr3ywr3hYlZhTeqjL116nTvi90yGzKSfkB87o++pms5gD
bEUtMwpsTq3AT/HJJohCzhz6/uowq9QmPPbrEuT1otIkPN8cMZ0RzxpYBynijwU6
oWnXfBhlM1jxn2XvC3QckRjCl3dL2hOPJlrh87gqdEPxFqUozHL/Uvgyc5rJSs4U
hFUnJ7wKldRvhktqzsKJFiYVnwgLLWLps0EtUm1MItTgUKNkAwlnooYsEwIDAQAB
o4ICoDCCApwwHQYDVR0OBBYEFCVAA+1obo+QSvgrw/KCCN4tjPw/MB8GA1UdIwQY
MBaAFMLSojTiJL+HmW8vDfVZ6tiC+eZRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd3RLaU5PSWt2NGVaYnk4TjlWbnEySUw1NWxFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS9kMWVlNGItZTg4YS00ZTQxLWE2MTYt
NGIyNDhkYTZjOTZjLzEvSlVBRDdXaHVqNUJLLUN2RDhvSUkzaTJNX0Q4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS9kMWVlNGItZTg4YS00ZTQxLWE2MTYtNGIyNDhkYTZjOTZj
LzEvd3RLaU5PSWt2NGVaYnk4TjlWbnEySUw1NWxFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG1BggrBgEFBQcBBwEB/wSBpTCBojCBhwQCAAEwgYADBAMF
rygDBAMfGCgDBAMfGJgDBANU9tADBARbjtADBAJbyIwDBABb1S4wDAMEA15/uAME
AF5/vAMEAV5/vgMEA21EUAMEA5U+qAMEArkXRAMEArlGXAMEArll4AMEArmB+AME
ArmwCAMEArnenAMEA7xfcAMEA7ykwAMEAcMFdDAWBAIAAjAQAwcEKgBawAAAAwUA
KgFLgDANBgkqhkiG9w0BAQsFAAOCAQEAUklzB6VdS+Ftme5R4V2oawIWim4j5jxB
xO2lBe2aeeaNw4hWcQrD8eHmv/0fCpMzZJTzJeaSG7zKNfTBHolV0t96u/+7CcSY
v1zKlrgKLJSFgVgh5g493P4dHfKcoAxq0NzC29nN6noAJvsY0qzYKkyT0u+yzxRc
Rezd6dw2U8r3dvaN9go8w7rBd2eh9NfnNBdEK9N0vEVrP45ahtyBHdaV6BPdaAz5
wdYW8fWzmybOoXo/zMHf4l6k2yIxA5Dg0HEo9ob0KRhP9X0q1AV/isx6OYkEMUdu
kNiWGLNMY6AP8S5g/FXA+9DpXEImzqAAbujkyA0VNXq2DxiNwlbxsw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:04 2024 by rpki-client on console-fra.rpki-client.org