Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/r5DNdueTMjZnP8uygLau9dNTtIg.roa
File: r5DNdueTMjZnP8uygLau9dNTtIg.roa (raw, json)
Hash identifier: VuovGoB8WbjOxCTP6fUYBlPWZvBJeuxDbFr5tm1zt20=
Subject key identifier: AF:90:CD:76:E7:93:32:36:67:3F:CB:B2:80:B6:AE:F5:D3:53:B4:88
Certificate issuer: /CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Certificate serial: 018B5D430862659E68DC1C759EA0F465D4EA
Authority key identifier: 0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/r5DNdueTMjZnP8uygLau9dNTtIg.roa
Signing time: Mon 23 Oct 2023 15:59:16 +0000
ROA not before: Mon 23 Oct 2023 15:59:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 37.252.3.0/24 maxlen: 24
37.252.14.0/23 maxlen: 23
37.252.13.0/24 maxlen: 24
213.142.146.0/23 maxlen: 23
185.238.170.0/23 maxlen: 23
185.238.168.0/23 maxlen: 23
5.45.72.0/22 maxlen: 22
5.45.76.0/22 maxlen: 22
5.45.84.0/22 maxlen: 22
188.116.24.0/24 maxlen: 24
188.116.23.0/24 maxlen: 24
188.116.21.0/24 maxlen: 24
5.45.88.0/22 maxlen: 22
188.116.26.0/24 maxlen: 24
5.45.92.0/22 maxlen: 22
188.116.25.0/24 maxlen: 24
188.116.27.0/24 maxlen: 24
176.97.79.0/24 maxlen: 24
46.102.106.0/24 maxlen: 24
5.45.64.0/21 maxlen: 21
45.136.48.0/22 maxlen: 22
37.1.200.0/21 maxlen: 21
62.197.48.0/23 maxlen: 23
37.1.216.0/21 maxlen: 21
5.61.48.0/22 maxlen: 22
5.61.56.0/22 maxlen: 22
5.61.52.0/22 maxlen: 22
2a02:c6c3::/32 maxlen: 32
2a02:c6c1:2::/48 maxlen: 48
2a02:c6c1:10::/48 maxlen: 48
2a02:c6c2::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5d:43:08:62:65:9e:68:dc:1c:75:9e:a0:f4:65:d4:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Validity
Not Before: Oct 23 15:59:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af90cd76e7933236673fcbb280b6aef5d353b488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a4:ee:9a:91:04:48:f6:a5:35:f2:33:af:4a:
be:fa:94:fb:4a:59:4f:ef:86:03:94:e5:ec:fb:2e:
76:a5:1c:02:63:f5:36:46:09:7a:92:77:f7:0d:bd:
35:ec:d2:31:7c:39:47:99:6c:18:f7:f1:ed:7f:cb:
e6:bb:f1:da:6b:2a:45:e2:1f:6e:ba:3c:28:cd:ab:
ed:9f:1a:84:59:15:eb:ef:f5:fc:f6:70:1b:d7:85:
d5:14:70:7d:52:78:ca:71:90:d9:a7:b3:ef:72:b6:
a9:87:ee:01:31:71:b3:b1:48:3f:69:2b:4a:4e:f9:
e6:4d:9d:18:19:17:c7:31:2f:92:e6:10:38:da:3a:
ce:53:01:63:e3:73:da:3b:42:eb:85:e7:f7:f6:5a:
07:09:4b:32:05:31:bb:1e:53:5b:02:d2:51:cb:d5:
a5:d4:78:a7:ad:ab:5f:a2:bd:f7:13:f5:8f:17:f7:
63:00:a9:18:d6:99:4b:eb:9b:62:27:fa:92:46:86:
13:0d:51:48:0b:6c:d4:0e:37:e4:da:36:65:6e:16:
7a:43:50:87:a3:57:84:1a:fd:dc:2f:9c:51:6b:4f:
43:eb:fe:42:32:24:cc:03:15:ee:ea:36:ab:66:ad:
59:9b:35:6c:c4:2a:44:bc:18:24:85:83:2a:c9:cc:
1c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:90:CD:76:E7:93:32:36:67:3F:CB:B2:80:B6:AE:F5:D3:53:B4:88
X509v3 Authority Key Identifier:
keyid:0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/r5DNdueTMjZnP8uygLau9dNTtIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.45.64.0/20
5.45.84.0-5.45.95.255
5.61.48.0-5.61.59.255
37.1.200.0/21
37.1.216.0/21
37.252.3.0/24
37.252.13.0-37.252.15.255
45.136.48.0/22
46.102.106.0/24
62.197.48.0/23
176.97.79.0/24
185.238.168.0/22
188.116.21.0/24
188.116.23.0-188.116.27.255
213.142.146.0/23
IPv6:
2a02:c6c1:2::/48
2a02:c6c1:10::/48
2a02:c6c2::/31
Signature Algorithm: sha256WithRSAEncryption
00:c7:3c:3e:0f:2a:67:40:33:b3:29:ec:34:11:98:9f:56:20:
50:3d:67:dc:a7:cf:32:7c:a8:0f:45:de:17:fb:b0:c0:a7:27:
40:ff:ae:fd:05:5f:3a:3b:bb:39:ea:5e:79:9b:2b:09:24:c8:
09:34:e6:96:4c:8c:37:75:b0:5f:3b:48:49:6b:da:ea:df:fe:
2e:b8:f3:93:8e:f6:54:0a:36:10:80:9e:68:af:39:79:51:e3:
7f:43:8d:86:63:16:2d:a4:d6:34:cd:e3:42:d3:0c:0d:0e:61:
90:f9:b7:2d:cd:dc:78:e2:a2:97:72:19:33:66:80:03:1b:09:
03:3f:49:21:be:0a:75:26:be:c5:b8:35:c3:fb:06:b0:09:cd:
67:61:2f:9d:bb:48:98:bc:e5:a2:4f:31:e2:7d:52:fc:94:f1:
a0:a7:e6:3c:19:6a:c4:ce:8a:6f:fe:59:14:4d:48:6b:77:f9:
7e:6f:33:82:25:86:6e:e2:3a:98:1e:9c:d9:89:20:fa:ef:8c:
5d:20:98:5d:db:54:1a:dd:14:b8:32:e0:11:18:f2:a3:46:ec:
76:9d:c7:6d:fc:bf:d8:3a:70:46:0c:fc:51:1e:fa:15:fe:3f:
80:4f:d1:06:f6:31:75:e4:91:4b:f4:89:49:4e:60:9f:ca:12:
6b:b4:5d:13
-----BEGIN CERTIFICATE-----
MIIFljCCBH6gAwIBAgISAYtdQwhiZZ5o3Bx1nqD0ZdTqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlZjVjYjJmNTkwZDA0MTY1NGY0ZGZkYjYwYTI4ZjlhMTU0
NGY0NDQwHhcNMjMxMDIzMTU1OTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZjkwY2Q3NmU3OTMzMjM2NjczZmNiYjI4MGI2YWVmNWQzNTNiNDg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtaTumpEESPalNfIzr0q++pT7SllP
74YDlOXs+y52pRwCY/U2Rgl6knf3Db017NIxfDlHmWwY9/Htf8vmu/HaaypF4h9u
ujwozavtnxqEWRXr7/X89nAb14XVFHB9UnjKcZDZp7Pvcraph+4BMXGzsUg/aStK
TvnmTZ0YGRfHMS+S5hA42jrOUwFj43PaO0Lrhef39loHCUsyBTG7HlNbAtJRy9Wl
1Hinratfor33E/WPF/djAKkY1plL65tiJ/qSRoYTDVFIC2zUDjfk2jZlbhZ6Q1CH
o1eEGv3cL5xRa09D6/5CMiTMAxXu6jarZq1ZmzVsxCpEvBgkhYMqycwccQIDAQAB
o4ICojCCAp4wHQYDVR0OBBYEFK+QzXbnkzI2Zz/LsoC2rvXTU7SIMB8GA1UdIwQY
MBaAFA71yy9ZDQQWVPTf22Cij5oVRPREMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRHZYTEwxa05CQlpVOU5fYllLS1BtaFZFOUVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny8yMjZmMDQtZjdkYi00OTFhLWJhZmIt
ZWU0MzVkM2NkNTg1LzEvcjVETmR1ZVRNalpuUDh1eWdMYXU5ZE5UdElnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny8yMjZmMDQtZjdkYi00OTFhLWJhZmItZWU0MzVkM2NkNTg1
LzEvRHZYTEwxa05CQlpVOU5fYllLS1BtaFZFOUVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG3BggrBgEFBQcBBwEB/wSBpzCBpDCBgAQCAAEwegMEBAUt
QDAMAwQCBS1UAwQFBS1AMAwDBAQFPTADBAIFPTgDBAMlAcgDBAMlAdgDBAAl/AMw
DAMEACX8DQMEBCX8AAMEAi2IMAMEAC5magMEAT7FMAMEALBhTwMEArnuqAMEALx0
FTAMAwQAvHQXAwQCvHQYAwQB1Y6SMB8EAgACMBkDBwAqAsbBAAIDBwAqAsbBABAD
BQEqAsbCMA0GCSqGSIb3DQEBCwUAA4IBAQAAxzw+DypnQDOzKew0EZifViBQPWfc
p88yfKgPRd4X+7DApydA/679BV86O7s56l55mysJJMgJNOaWTIw3dbBfO0hJa9rq
3/4uuPOTjvZUCjYQgJ5orzl5UeN/Q42GYxYtpNY0zeNC0wwNDmGQ+bctzdx44qKX
chkzZoADGwkDP0khvgp1Jr7FuDXD+wawCc1nYS+du0iYvOWiTzHifVL8lPGgp+Y8
GWrEzopv/lkUTUhrd/l+bzOCJYZu4jqYHpzZiSD674xdIJhd21Qa3RS4MuARGPKj
Rux2ncdt/L/YOnBGDPxRHvoV/j+AT9EG9jF15JFL9IlJTmCfyhJrtF0T
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:42 2024 by rpki-client on console-ams.rpki-client.org