Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/6_a57liuPtcAoTuOT8u4fZhQkGI.roa
File: 6_a57liuPtcAoTuOT8u4fZhQkGI.roa (raw, json)
Hash identifier: wjW7bHaCi/0sceYaLZ6yx+nsOMcSaAcQpjtsOYT1YPA=
Subject key identifier: EB:F6:B9:EE:58:AE:3E:D7:00:A1:3B:8E:4F:CB:B8:7D:98:50:90:62
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 018F384C9FC3A39CECF65A84B41053242C33
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/6_a57liuPtcAoTuOT8u4fZhQkGI.roa
Signing time: Thu 02 May 2024 07:54:56 +0000
ROA not before: Thu 02 May 2024 07:54:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 81.168.126.0/24 maxlen: 24
82.152.176.0/23 maxlen: 23
82.153.136.0/22 maxlen: 22
82.153.245.0/24 maxlen: 24
89.213.133.0/24 maxlen: 24
89.213.148.0/22 maxlen: 24
89.213.152.0/22 maxlen: 24
89.213.156.0/22 maxlen: 24
89.213.172.0/22 maxlen: 24
89.213.180.0/24 maxlen: 24
109.176.16.0/21 maxlen: 24
185.49.126.0/23 maxlen: 24
194.105.80.0/20 maxlen: 20
213.130.149.0/24 maxlen: 24
213.210.39.0/24 maxlen: 24
213.218.210.0/24 maxlen: 24
213.218.211.0/24 maxlen: 24
213.218.213.0/24 maxlen: 24
213.218.234.0/24 maxlen: 24
213.218.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 May 2024 08:52:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:38:4c:9f:c3:a3:9c:ec:f6:5a:84:b4:10:53:24:2c:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: May 2 07:54:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ebf6b9ee58ae3ed700a13b8e4fcbb87d98509062
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5e:8d:5b:a8:75:d3:27:e1:bf:99:01:4a:da:
78:1c:c1:1e:b7:98:0f:36:d2:45:0f:8b:7a:af:4b:
5b:4e:c2:cb:86:81:f9:08:47:a6:b9:ee:27:aa:7d:
02:fb:2f:c8:72:3b:00:a2:4f:da:2f:18:14:11:df:
04:fb:fe:93:32:0d:a8:29:b7:f5:60:08:c5:55:c5:
17:9f:b5:33:d4:78:b9:fb:d5:60:c7:19:ce:5d:20:
68:5c:c2:df:1c:58:43:ba:d6:8f:d6:16:68:d6:d4:
cd:02:1b:ac:f5:44:3d:64:c6:03:ed:aa:cc:c4:93:
cf:6e:cb:3c:3e:06:99:f1:ae:ee:bf:88:76:5b:ba:
07:96:9f:80:f6:dd:cb:3e:bd:ae:9a:fb:83:91:a8:
3f:71:b9:ea:30:e7:b6:1d:a9:87:e8:39:4f:4e:a2:
4f:0f:68:5a:61:2e:5d:8c:df:01:89:fa:25:09:fb:
14:84:f3:ca:17:87:42:6c:b4:b4:6b:7e:e3:0e:75:
3b:3f:90:07:69:01:d0:c9:15:74:97:d5:91:14:6a:
5f:9b:55:ca:74:73:36:a0:9d:07:a9:fa:81:22:66:
9a:5e:20:8b:2c:24:6d:52:aa:6d:46:f8:17:af:75:
01:33:8f:be:b7:4a:76:85:0f:33:7e:77:16:63:59:
61:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:F6:B9:EE:58:AE:3E:D7:00:A1:3B:8E:4F:CB:B8:7D:98:50:90:62
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/6_a57liuPtcAoTuOT8u4fZhQkGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.168.126.0/24
82.152.176.0/23
82.153.136.0/22
82.153.245.0/24
89.213.133.0/24
89.213.148.0-89.213.159.255
89.213.172.0/22
89.213.180.0/24
109.176.16.0/21
185.49.126.0/23
194.105.80.0/20
213.130.149.0/24
213.210.39.0/24
213.218.210.0/23
213.218.213.0/24
213.218.234.0/24
213.218.236.0/24
Signature Algorithm: sha256WithRSAEncryption
44:39:06:20:18:36:44:91:98:6b:a9:95:92:67:75:dc:33:bd:
4c:4a:60:c1:f6:86:99:73:ee:ce:41:06:b7:c1:0e:09:bb:15:
61:ed:a6:6d:3a:2d:1a:d4:e9:4b:1e:15:ad:04:95:40:6d:63:
9c:de:19:46:60:e9:22:0a:4b:f5:f3:a4:0e:08:cc:14:9b:d0:
e2:c0:5f:08:5f:11:98:48:17:af:2f:bb:ea:99:48:02:5b:06:
b7:b2:12:b6:77:08:c7:f0:1c:8b:2c:cf:7a:ae:d9:76:21:ab:
74:95:08:dc:4e:e1:8c:65:6d:07:c5:b4:6a:7f:21:60:87:ea:
a9:11:82:c0:f8:fb:65:0c:9c:73:db:fa:e6:c2:0f:e9:ce:65:
4c:2b:3e:04:df:dd:5a:88:27:7c:3a:e6:7a:6b:60:00:bf:52:
83:dd:54:57:79:79:35:53:6f:d0:56:1f:08:06:0a:84:42:2a:
a0:33:5c:74:a3:77:8c:64:38:09:56:f2:b5:f4:d6:67:96:62:
9a:2f:aa:2c:1d:bb:a7:79:9e:e6:f7:ce:b4:be:a4:db:b1:a1:
a0:58:d2:99:71:94:ac:b0:2e:76:bc:ed:99:d0:de:ce:77:fc:
cc:90:2a:55:e7:ff:de:64:99:90:ae:6a:5e:c4:a7:6c:2d:8c:
1c:93:50:eb
-----BEGIN CERTIFICATE-----
MIIFZjCCBE6gAwIBAgISAY84TJ/Do5zs9lqEtBBTJCwzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNmZDMwZDhhN2UxMmZjN2JmNjJlMGMxMjFlN2NjMjI2ZGVh
NTNiOWIwHhcNMjQwNTAyMDc1NDU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYmY2YjllZTU4YWUzZWQ3MDBhMTNiOGU0ZmNiYjg3ZDk4NTA5MDYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx16NW6h10yfhv5kBStp4HMEet5gP
NtJFD4t6r0tbTsLLhoH5CEemue4nqn0C+y/IcjsAok/aLxgUEd8E+/6TMg2oKbf1
YAjFVcUXn7Uz1Hi5+9VgxxnOXSBoXMLfHFhDutaP1hZo1tTNAhus9UQ9ZMYD7arM
xJPPbss8PgaZ8a7uv4h2W7oHlp+A9t3LPr2umvuDkag/cbnqMOe2HamH6DlPTqJP
D2haYS5djN8BifolCfsUhPPKF4dCbLS0a37jDnU7P5AHaQHQyRV0l9WRFGpfm1XK
dHM2oJ0HqfqBImaaXiCLLCRtUqptRvgXr3UBM4++t0p2hQ8zfncWY1lhiQIDAQAB
o4ICcjCCAm4wHQYDVR0OBBYEFOv2ue5Yrj7XAKE7jk/LuH2YUJBiMB8GA1UdIwQY
MBaAFD/TDYp+Evx79i4MEh58wibepTubMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzkt
NDEyMjhlMzlmZjdjLzEvNl9hNTdsaXVQdGNBb1R1T1Q4dTRmWmhRa0dJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzktNDEyMjhlMzlmZjdj
LzEvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGHBggrBgEFBQcBBwEB/wR4MHYwdAQCAAEwbgMEAFGofgME
AVKYsAMEAlKZiAMEAFKZ9QMEAFnVhTAMAwQCWdWUAwQFWdWAAwQCWdWsAwQAWdW0
AwQDbbAQAwQBuTF+AwQEwmlQAwQA1YKVAwQA1dInAwQB1drSAwQA1drVAwQA1drq
AwQA1drsMA0GCSqGSIb3DQEBCwUAA4IBAQBEOQYgGDZEkZhrqZWSZ3XcM71MSmDB
9oaZc+7OQQa3wQ4JuxVh7aZtOi0a1OlLHhWtBJVAbWOc3hlGYOkiCkv186QOCMwU
m9DiwF8IXxGYSBevL7vqmUgCWwa3shK2dwjH8ByLLM96rtl2Iat0lQjcTuGMZW0H
xbRqfyFgh+qpEYLA+PtlDJxz2/rmwg/pzmVMKz4E391aiCd8OuZ6a2AAv1KD3VRX
eXk1U2/QVh8IBgqEQiqgM1x0o3eMZDgJVvK19NZnlmKaL6osHbuneZ7m9860vqTb
saGgWNKZcZSssC52vO2Z0N7Od/zMkCpV5//eZJmQrmpexKdsLYwck1Dr
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:14 2024 by rpki-client on console-fra.rpki-client.org