Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/8e4e68-bd2a-4dc2-aae6-a0560ac82ba7/1/TpVhu7fYpAU3wJgqQ2m7izAudLc.roa
File: TpVhu7fYpAU3wJgqQ2m7izAudLc.roa (raw, json)
Hash identifier: tVDyq5nCQacjzyUk1yj4C7KRJw+Sq30ioXyaFX8p9o8=
Subject key identifier: 4E:95:61:BB:B7:D8:A4:05:37:C0:98:2A:43:69:BB:8B:30:2E:74:B7
Certificate issuer: /CN=1c6c48cccce321ec18702957b396381a1f1a0410
Certificate serial: 018B041601973D3440A68A0319769589414D
Authority key identifier: 1C:6C:48:CC:CC:E3:21:EC:18:70:29:57:B3:96:38:1A:1F:1A:04:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HGxIzMzjIewYcClXs5Y4Gh8aBBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/8e4e68-bd2a-4dc2-aae6-a0560ac82ba7/1/TpVhu7fYpAU3wJgqQ2m7izAudLc.roa
Signing time: Fri 06 Oct 2023 08:23:52 +0000
ROA not before: Fri 06 Oct 2023 08:23:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48642
IP address blocks: 185.214.252.0/22 maxlen: 22
93.90.96.0/20 maxlen: 20
185.162.204.0/22 maxlen: 22
134.255.128.0/19 maxlen: 19
91.108.168.0/21 maxlen: 21
185.201.88.0/22 maxlen: 22
82.112.32.0/19 maxlen: 19
5.199.192.0/19 maxlen: 19
193.46.244.0/22 maxlen: 22
91.227.50.0/23 maxlen: 23
94.230.142.0/23 maxlen: 23
45.131.56.0/22 maxlen: 22
88.218.212.0/22 maxlen: 22
5.43.128.0/19 maxlen: 19
94.230.128.0/20 maxlen: 20
193.168.176.0/22 maxlen: 22
185.252.228.0/22 maxlen: 22
185.59.56.0/22 maxlen: 22
217.151.224.0/22 maxlen: 22
217.151.232.0/21 maxlen: 21
185.60.212.0/22 maxlen: 22
46.36.0.0/19 maxlen: 19
185.229.192.0/22 maxlen: 22
185.2.104.0/22 maxlen: 22
185.132.28.0/22 maxlen: 22
194.169.56.0/22 maxlen: 22
185.204.156.0/22 maxlen: 22
195.69.136.0/22 maxlen: 22
109.74.160.0/20 maxlen: 20
2a0a:f940::/32 maxlen: 32
2a0d:b600::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:04:16:01:97:3d:34:40:a6:8a:03:19:76:95:89:41:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c6c48cccce321ec18702957b396381a1f1a0410
Validity
Not Before: Oct 6 08:23:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e9561bbb7d8a40537c0982a4369bb8b302e74b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:72:01:cf:a9:f9:9a:1c:a5:b5:95:a3:45:d3:
a6:c4:ef:39:a0:a0:5d:bb:43:db:79:0f:fa:cb:fb:
1c:a0:da:84:c4:04:44:e5:30:89:ab:fc:92:9d:c6:
2f:05:06:5a:14:f0:47:2f:74:65:bd:19:15:e0:b0:
2e:ab:c2:1c:4d:25:60:2e:8d:9c:36:93:17:b0:ed:
75:30:69:da:c7:a2:df:d7:f4:0a:90:c1:08:61:b6:
0a:7f:dd:2a:a4:88:ee:f3:4f:03:b1:15:8e:2a:ff:
2f:6a:b6:74:38:37:37:d1:7a:5f:75:c5:70:8c:22:
f6:fe:b8:f3:57:be:80:49:cd:1d:e9:ff:21:8b:a7:
53:19:17:71:a2:a3:1d:9b:79:9e:a2:b1:8b:01:1b:
4d:23:4d:e6:98:76:db:95:e6:97:40:cb:7f:dc:56:
81:60:6e:cb:d0:16:54:fb:b7:4a:53:39:bd:79:18:
f6:79:1e:f2:f1:b0:b5:f2:34:62:64:d3:81:fa:c9:
a2:5f:af:a3:ca:2f:2c:9c:a2:64:78:a4:8c:d3:9e:
26:aa:37:f4:01:b3:ed:e1:b9:7b:04:9c:31:3b:a8:
6c:18:85:da:fe:0a:a2:89:38:61:8e:b1:a4:54:1f:
df:9d:0d:9a:4b:31:b7:d7:8a:72:ee:03:fb:a6:3e:
57:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:95:61:BB:B7:D8:A4:05:37:C0:98:2A:43:69:BB:8B:30:2E:74:B7
X509v3 Authority Key Identifier:
keyid:1C:6C:48:CC:CC:E3:21:EC:18:70:29:57:B3:96:38:1A:1F:1A:04:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HGxIzMzjIewYcClXs5Y4Gh8aBBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/8e4e68-bd2a-4dc2-aae6-a0560ac82ba7/1/TpVhu7fYpAU3wJgqQ2m7izAudLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/8e4e68-bd2a-4dc2-aae6-a0560ac82ba7/1/HGxIzMzjIewYcClXs5Y4Gh8aBBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.43.128.0/19
5.199.192.0/19
45.131.56.0/22
46.36.0.0/19
82.112.32.0/19
88.218.212.0/22
91.108.168.0/21
91.227.50.0/23
93.90.96.0/20
94.230.128.0/20
109.74.160.0/20
134.255.128.0/19
185.2.104.0/22
185.59.56.0/22
185.60.212.0/22
185.132.28.0/22
185.162.204.0/22
185.201.88.0/22
185.204.156.0/22
185.214.252.0/22
185.229.192.0/22
185.252.228.0/22
193.46.244.0/22
193.168.176.0/22
194.169.56.0/22
195.69.136.0/22
217.151.224.0/22
217.151.232.0/21
IPv6:
2a0a:f940::/32
2a0d:b600::/29
Signature Algorithm: sha256WithRSAEncryption
24:14:7c:7e:46:fc:74:64:5f:1e:ab:da:9a:5f:34:ab:15:bf:
46:41:81:fd:b5:d3:7f:ed:e9:df:96:d5:a6:29:b5:9e:e7:c4:
dd:6e:48:70:1b:89:04:15:b3:f0:b2:d0:fe:47:ee:b0:c8:ef:
0f:24:03:a7:1b:ce:8f:79:0a:a6:a5:20:6c:5b:6c:e6:88:3a:
61:bd:77:dc:3b:df:24:16:7f:75:37:fe:85:3a:c2:4d:4d:ae:
50:c9:41:15:ca:e9:52:5e:48:a5:79:c2:ca:eb:04:16:2a:4a:
fd:c1:24:5d:6d:74:7c:84:58:1f:a1:96:20:dd:b6:e2:74:e1:
6a:9a:b1:ae:61:1c:46:55:61:4f:44:b5:ec:7f:08:e2:0c:9c:
73:c9:19:dd:c2:fe:24:b3:7c:d3:62:8e:17:9e:0d:67:89:59:
c8:74:dc:b8:66:b6:94:35:56:c9:1f:5d:89:15:c6:10:f1:4b:
da:f6:21:f1:39:b2:3c:e8:ba:69:49:57:f1:3c:e9:76:c2:38:
52:ca:9e:87:5e:5e:3c:0b:0e:e7:bd:81:20:7b:36:38:26:2c:
ad:33:0f:ea:60:d3:5e:ae:c6:c9:81:f7:74:1f:46:bf:d1:5b:
15:02:c8:2c:02:53:1b:c2:f5:ae:bb:32:14:7c:ec:7a:6a:99:
70:fc:8d:6d
-----BEGIN CERTIFICATE-----
MIIFujCCBKKgAwIBAgISAYsEFgGXPTRApooDGXaViUFNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjNmM0OGNjY2NlMzIxZWMxODcwMjk1N2IzOTYzODFhMWYx
YTA0MTAwHhcNMjMxMDA2MDgyMzUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZTk1NjFiYmI3ZDhhNDA1MzdjMDk4MmE0MzY5YmI4YjMwMmU3NGI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0XIBz6n5mhyltZWjRdOmxO85oKBd
u0PbeQ/6y/scoNqExARE5TCJq/ySncYvBQZaFPBHL3RlvRkV4LAuq8IcTSVgLo2c
NpMXsO11MGnax6Lf1/QKkMEIYbYKf90qpIju808DsRWOKv8varZ0ODc30XpfdcVw
jCL2/rjzV76ASc0d6f8hi6dTGRdxoqMdm3meorGLARtNI03mmHbbleaXQMt/3FaB
YG7L0BZU+7dKUzm9eRj2eR7y8bC18jRiZNOB+smiX6+jyi8snKJkeKSM054mqjf0
AbPt4bl7BJwxO6hsGIXa/gqiiThhjrGkVB/fnQ2aSzG314py7gP7pj5XywIDAQAB
o4ICxjCCAsIwHQYDVR0OBBYEFE6VYbu32KQFN8CYKkNpu4swLnS3MB8GA1UdIwQY
MBaAFBxsSMzM4yHsGHApV7OWOBofGgQQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSEd4SXpNempJZXdZY0NsWHM1WTRHaDhhQkJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS84ZTRlNjgtYmQyYS00ZGMyLWFhZTYt
YTA1NjBhYzgyYmE3LzEvVHBWaHU3ZllwQVUzd0pncVEybTdpekF1ZExjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS84ZTRlNjgtYmQyYS00ZGMyLWFhZTYtYTA1NjBhYzgyYmE3
LzEvSEd4SXpNempJZXdZY0NsWHM1WTRHaDhhQkJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHbBggrBgEFBQcBBwEB/wSByzCByDCBrwQCAAEwgagDBAUF
K4ADBAUFx8ADBAItgzgDBAUuJAADBAVScCADBAJY2tQDBANbbKgDBAFb4zIDBARd
WmADBARe5oADBARtSqADBAWG/4ADBAK5AmgDBAK5OzgDBAK5PNQDBAK5hBwDBAK5
oswDBAK5yVgDBAK5zJwDBAK51vwDBAK55cADBAK5/OQDBALBLvQDBALBqLADBALC
qTgDBALDRYgDBALZl+ADBAPZl+gwFAQCAAIwDgMFACoK+UADBQMqDbYAMA0GCSqG
SIb3DQEBCwUAA4IBAQAkFHx+Rvx0ZF8eq9qaXzSrFb9GQYH9tdN/7enfltWmKbWe
58TdbkhwG4kEFbPwstD+R+6wyO8PJAOnG86PeQqmpSBsW2zmiDphvXfcO98kFn91
N/6FOsJNTa5QyUEVyulSXkilecLK6wQWKkr9wSRdbXR8hFgfoZYg3bbidOFqmrGu
YRxGVWFPRLXsfwjiDJxzyRndwv4ks3zTYo4Xng1niVnIdNy4ZraUNVbJH12JFcYQ
8Uva9iHxObI86LppSVfxPOl2wjhSyp6HXl48Cw7nvYEgezY4JiytMw/qYNNersbJ
gfd0H0a/0VsVAsgsAlMbwvWuuzIUfOx6aplw/I1t
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:55 2024 by rpki-client on console-fra.rpki-client.org