Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/d0edd5-6087-4be1-b36f-ab3dd5dc6709/1/J-5vOmUtnv6T-WzUNV0GRFZlCmU.roa
File: J-5vOmUtnv6T-WzUNV0GRFZlCmU.roa (raw, json)
Hash identifier: 5HGsdlrpFAo2gVIQYZFw66CZYPjPehoa4fJQLrFCjjA=
Subject key identifier: 27:EE:6F:3A:65:2D:9E:FE:93:F9:6C:D4:35:5D:06:44:56:65:0A:65
Certificate issuer: /CN=50f2d6b21660fad1f60e2df9d0bd7c6ccf95c311
Certificate serial: 0192432D33DB70B409172EC974C285FB885E
Authority key identifier: 50:F2:D6:B2:16:60:FA:D1:F6:0E:2D:F9:D0:BD:7C:6C:CF:95:C3:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UPLWshZg-tH2Di350L18bM-VwxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/d0edd5-6087-4be1-b36f-ab3dd5dc6709/1/J-5vOmUtnv6T-WzUNV0GRFZlCmU.roa
Signing time: Mon 30 Sep 2024 13:44:48 +0000
ROA not before: Mon 30 Sep 2024 13:44:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41722
IP address blocks: 91.142.80.0/24 maxlen: 24
91.142.81.0/24 maxlen: 24
91.142.82.0/24 maxlen: 24
91.142.83.0/24 maxlen: 24
91.142.84.0/24 maxlen: 24
91.142.85.0/24 maxlen: 24
91.142.86.0/24 maxlen: 24
91.142.87.0/24 maxlen: 24
91.142.88.0/24 maxlen: 24
91.142.89.0/24 maxlen: 24
91.142.90.0/24 maxlen: 24
91.142.91.0/24 maxlen: 24
91.142.92.0/24 maxlen: 24
91.142.93.0/24 maxlen: 24
91.142.94.0/24 maxlen: 24
91.142.95.0/24 maxlen: 24
178.249.68.0/24 maxlen: 24
178.249.69.0/24 maxlen: 24
178.249.70.0/24 maxlen: 24
178.249.71.0/24 maxlen: 24
178.250.152.0/24 maxlen: 24
178.250.153.0/24 maxlen: 24
178.250.154.0/24 maxlen: 24
178.250.155.0/24 maxlen: 24
185.53.20.0/24 maxlen: 24
185.53.21.0/24 maxlen: 24
185.53.22.0/24 maxlen: 24
185.53.23.0/24 maxlen: 24
185.73.212.0/24 maxlen: 24
185.73.213.0/24 maxlen: 24
185.73.214.0/24 maxlen: 24
185.73.215.0/24 maxlen: 24
185.147.80.0/24 maxlen: 24
185.147.81.0/24 maxlen: 24
185.147.82.0/24 maxlen: 24
185.147.83.0/24 maxlen: 24
185.162.92.0/24 maxlen: 24
185.162.93.0/24 maxlen: 24
185.162.94.0/24 maxlen: 24
185.162.95.0/24 maxlen: 24
185.174.164.0/24 maxlen: 24
2a03:21c0::/32 maxlen: 32
2a07:a500::/32 maxlen: 32
2a07:a501::/32 maxlen: 32
2a07:a502::/32 maxlen: 32
2a07:a503::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:49:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:43:2d:33:db:70:b4:09:17:2e:c9:74:c2:85:fb:88:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50f2d6b21660fad1f60e2df9d0bd7c6ccf95c311
Validity
Not Before: Sep 30 13:44:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=27ee6f3a652d9efe93f96cd4355d064456650a65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f5:11:9b:aa:9d:76:a7:04:86:19:bd:a2:91:
ce:e1:73:12:8f:97:2a:9d:91:b2:7f:c3:50:3c:65:
ed:b3:73:69:97:75:5f:00:34:a6:15:10:5f:2a:ac:
ad:13:0e:0e:80:65:48:2e:3a:06:72:77:20:83:79:
93:0e:12:b9:5e:9e:f5:e5:f1:d3:14:58:77:ea:72:
6a:4d:b5:5a:a9:5f:d5:46:a7:40:31:35:aa:97:9c:
45:74:65:b2:23:2d:f8:8e:01:08:43:18:89:34:01:
ec:5e:82:af:d8:41:12:0f:f8:3a:29:cc:86:be:f0:
0c:1f:49:4c:9c:fc:8c:d7:ac:0b:7b:e9:c7:95:cf:
69:0f:61:80:94:84:27:41:b6:43:87:97:af:ee:66:
ae:1b:77:56:42:2c:dc:79:d8:78:02:cf:a3:0e:eb:
f8:ab:8f:b4:3b:26:c0:7f:c1:34:28:22:62:d8:a6:
35:76:d0:19:1f:48:ab:82:f3:e2:83:bd:14:5b:6e:
8a:c4:55:da:8f:d1:76:72:ae:e9:62:d2:eb:88:1f:
59:97:ee:28:0b:47:7a:6b:ea:7b:4d:cb:42:f0:ab:
76:2d:43:a8:ec:23:c3:34:ce:a6:3c:d4:8f:f6:66:
81:0c:f0:5d:df:5a:a0:de:0e:b4:36:81:c8:49:49:
b7:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:EE:6F:3A:65:2D:9E:FE:93:F9:6C:D4:35:5D:06:44:56:65:0A:65
X509v3 Authority Key Identifier:
keyid:50:F2:D6:B2:16:60:FA:D1:F6:0E:2D:F9:D0:BD:7C:6C:CF:95:C3:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UPLWshZg-tH2Di350L18bM-VwxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d0edd5-6087-4be1-b36f-ab3dd5dc6709/1/J-5vOmUtnv6T-WzUNV0GRFZlCmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d0edd5-6087-4be1-b36f-ab3dd5dc6709/1/UPLWshZg-tH2Di350L18bM-VwxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.142.80.0/20
178.249.68.0/22
178.250.152.0/22
185.53.20.0/22
185.73.212.0/22
185.147.80.0/22
185.162.92.0/22
185.174.164.0/24
IPv6:
2a03:21c0::/32
2a07:a500::/30
Signature Algorithm: sha256WithRSAEncryption
7b:93:df:23:81:33:e4:19:b6:72:e2:49:0c:c8:4e:a0:b1:f2:
f7:55:37:ec:98:b1:30:5c:1c:cb:e5:bd:0b:16:ae:30:20:84:
d8:88:36:3a:c6:23:6f:ea:78:13:37:ec:7c:d3:93:bf:33:49:
64:47:89:89:c6:67:88:64:37:b7:f8:c5:38:26:ba:a9:1d:81:
d7:d0:ec:d1:5b:51:99:82:77:7d:33:ea:c0:71:03:33:65:4c:
f0:b9:ec:1b:bc:96:51:89:76:2c:11:fe:c4:0d:f3:e8:4f:0f:
b2:7c:02:ab:31:2a:55:51:5d:39:38:fe:33:a7:f7:26:73:2f:
39:5b:c5:aa:bb:d3:05:ee:6b:0e:ea:43:b9:99:b2:e0:de:5a:
74:ae:45:67:f2:69:9a:52:3d:a7:30:dc:f8:46:54:d7:32:7c:
9a:16:32:26:f9:8e:08:3b:e3:d8:5b:1c:e8:fb:81:c0:a2:49:
0d:79:c6:5f:fc:48:b3:61:7e:56:d3:c0:21:13:f4:41:cd:84:
f6:a6:66:60:e3:34:81:e9:6f:bb:0b:41:83:80:89:b2:ca:88:
8f:b0:45:c6:af:e0:fe:f9:0e:b9:a4:bd:06:b4:d3:7b:07:9c:
1c:d0:36:6f:81:4a:aa:10:ef:ec:d2:58:02:6c:d8:e3:31:1b:
d6:96:1f:98
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgISAZJDLTPbcLQJFy7JdMKF+4heMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwZjJkNmIyMTY2MGZhZDFmNjBlMmRmOWQwYmQ3YzZjY2Y5
NWMzMTEwHhcNMjQwOTMwMTM0NDQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyN2VlNmYzYTY1MmQ5ZWZlOTNmOTZjZDQzNTVkMDY0NDU2NjUwYTY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmPURm6qddqcEhhm9opHO4XMSj5cq
nZGyf8NQPGXts3Npl3VfADSmFRBfKqytEw4OgGVILjoGcncgg3mTDhK5Xp715fHT
FFh36nJqTbVaqV/VRqdAMTWql5xFdGWyIy34jgEIQxiJNAHsXoKv2EESD/g6KcyG
vvAMH0lMnPyM16wLe+nHlc9pD2GAlIQnQbZDh5ev7mauG3dWQizcedh4As+jDuv4
q4+0OybAf8E0KCJi2KY1dtAZH0irgvPig70UW26KxFXaj9F2cq7pYtLriB9Zl+4o
C0d6a+p7TctC8Kt2LUOo7CPDNM6mPNSP9maBDPBd31qg3g60NoHISUm35QIDAQAB
o4ICSTCCAkUwHQYDVR0OBBYEFCfubzplLZ7+k/ls1DVdBkRWZQplMB8GA1UdIwQY
MBaAFFDy1rIWYPrR9g4t+dC9fGzPlcMRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVBMV3NoWmctdEgyRGkzNTBMMThiTS1Wd3hFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9kMGVkZDUtNjA4Ny00YmUxLWIzNmYt
YWIzZGQ1ZGM2NzA5LzEvSi01dk9tVXRudjZULVd6VU5WMEdSRlpsQ21VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC9kMGVkZDUtNjA4Ny00YmUxLWIzNmYtYWIzZGQ1ZGM2NzA5
LzEvVVBMV3NoWmctdEgyRGkzNTBMMThiTS1Wd3hFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMF8GCCsGAQUFBwEHAQH/BFAwTjA2BAIAATAwAwQEW45QAwQC
svlEAwQCsvqYAwQCuTUUAwQCuUnUAwQCuZNQAwQCuaJcAwQAua6kMBQEAgACMA4D
BQAqAyHAAwUCKgelADANBgkqhkiG9w0BAQsFAAOCAQEAe5PfI4Ez5Bm2cuJJDMhO
oLHy91U37JixMFwcy+W9CxauMCCE2Ig2OsYjb+p4EzfsfNOTvzNJZEeJicZniGQ3
t/jFOCa6qR2B19Ds0VtRmYJ3fTPqwHEDM2VM8LnsG7yWUYl2LBH+xA3z6E8PsnwC
qzEqVVFdOTj+M6f3JnMvOVvFqrvTBe5rDupDuZmy4N5adK5FZ/JpmlI9pzDc+EZU
1zJ8mhYyJvmOCDvj2Fsc6PuBwKJJDXnGX/xIs2F+VtPAIRP0Qc2E9qZmYOM0gelv
uwtBg4CJssqIj7BFxq/g/vkOuaS9BrTTewecHNA2b4FKqhDv7NJYAmzY4zEb1pYf
mA==
-----END CERTIFICATE-----
Generated at Sat Apr 19 12:07:10 2025 by rpki-client