Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/2BkNSCGmhjsnyBZcHUveQHUNAX4.roa
File: 2BkNSCGmhjsnyBZcHUveQHUNAX4.roa (raw, json)
Hash identifier: aTEXCYXa3vtlBfFZgc/IT1Ali2HJWTLaCAv9cpjo8ZA=
Subject key identifier: D8:19:0D:48:21:A6:86:3B:27:C8:16:5C:1D:4B:DE:40:75:0D:01:7E
Certificate issuer: /CN=1003cd25315330350d73f2a3579aa95e052b718d
Certificate serial: 0193054D22601CE6061F10ED403212CDCA52
Authority key identifier: 10:03:CD:25:31:53:30:35:0D:73:F2:A3:57:9A:A9:5E:05:2B:71:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EAPNJTFTMDUNc_KjV5qpXgUrcY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/2BkNSCGmhjsnyBZcHUveQHUNAX4.roa
Signing time: Thu 07 Nov 2024 06:26:01 +0000
ROA not before: Thu 07 Nov 2024 06:26:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16116
IP address blocks: 46.19.80.0/21 maxlen: 24
46.19.83.0/24 maxlen: 24
46.19.84.0/24 maxlen: 24
62.112.0.0/22 maxlen: 24
85.159.161.0/24 maxlen: 24
85.159.162.0/24 maxlen: 24
85.159.163.0/24 maxlen: 24
85.159.164.0/24 maxlen: 24
85.159.165.0/24 maxlen: 24
85.159.166.0/24 maxlen: 24
85.159.167.0/24 maxlen: 24
89.37.236.0/22 maxlen: 24
89.40.66.0/24 maxlen: 24
89.43.48.0/24 maxlen: 24
91.135.96.0/20 maxlen: 24
93.113.31.0/24 maxlen: 24
130.185.96.0/21 maxlen: 24
141.226.88.0/21 maxlen: 24
141.226.90.0/24 maxlen: 24
147.189.144.0/22 maxlen: 24
147.189.148.0/23 maxlen: 24
185.80.108.0/22 maxlen: 24
185.196.126.0/23 maxlen: 24
185.246.252.0/23 maxlen: 24
185.246.254.0/24 maxlen: 24
185.246.255.0/24 maxlen: 24
188.64.200.0/21 maxlen: 24
188.64.200.0/24 maxlen: 24
188.64.201.0/24 maxlen: 24
188.64.202.0/24 maxlen: 24
188.64.203.0/24 maxlen: 24
188.64.204.0/24 maxlen: 24
188.64.205.0/24 maxlen: 24
193.41.202.0/24 maxlen: 24
193.41.208.0/23 maxlen: 24
193.41.209.0/24 maxlen: 24
212.90.108.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 10 Nov 2024 07:04:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:05:4d:22:60:1c:e6:06:1f:10:ed:40:32:12:cd:ca:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1003cd25315330350d73f2a3579aa95e052b718d
Validity
Not Before: Nov 7 06:26:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d8190d4821a6863b27c8165c1d4bde40750d017e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:85:a0:fe:0f:9e:c4:bf:59:18:a7:33:d4:fa:
8e:66:aa:5f:b5:d4:43:85:40:a9:47:db:2f:79:2f:
d8:6a:6f:c6:17:7b:2c:a3:37:55:9c:02:39:ff:88:
68:de:33:e6:98:fd:83:a9:37:f0:4a:54:b3:90:93:
ee:2b:93:74:1f:ca:c4:52:61:f8:3c:26:d6:33:a2:
b3:e1:db:61:f2:0a:46:1a:c0:e6:cb:7e:e9:4b:fa:
9f:bc:19:b8:0f:27:a2:c9:f1:dc:fa:2e:a0:cf:0d:
9c:86:25:ec:19:8c:68:1a:b6:61:bf:a7:40:40:df:
f9:97:d7:d7:ff:99:a7:20:74:d0:8f:32:15:0e:53:
26:56:57:81:1c:41:5b:ba:2f:cd:84:fb:fb:6a:74:
50:71:81:44:a6:05:e1:f8:04:f2:2d:87:40:c8:c8:
d8:16:82:c2:77:da:99:4c:7b:43:39:9f:d5:cb:f9:
b6:01:57:cf:4d:5a:61:3c:15:97:6b:6e:45:40:b0:
8b:fe:47:c2:67:d1:98:e4:5c:52:82:fc:2c:68:22:
59:7b:3b:c6:a9:69:51:59:6b:a2:32:0e:0a:d4:3b:
86:b5:a9:3c:6f:7e:30:fd:b9:e6:00:a4:4c:88:f5:
1a:88:ba:f0:0c:8c:84:2f:bf:32:d5:85:55:5e:85:
bd:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:19:0D:48:21:A6:86:3B:27:C8:16:5C:1D:4B:DE:40:75:0D:01:7E
X509v3 Authority Key Identifier:
keyid:10:03:CD:25:31:53:30:35:0D:73:F2:A3:57:9A:A9:5E:05:2B:71:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EAPNJTFTMDUNc_KjV5qpXgUrcY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/2BkNSCGmhjsnyBZcHUveQHUNAX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/597232-f846-4fd7-bcc2-6afef5d0daa6/1/EAPNJTFTMDUNc_KjV5qpXgUrcY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.19.80.0/21
62.112.0.0/22
85.159.161.0-85.159.167.255
89.37.236.0/22
89.40.66.0/24
89.43.48.0/24
91.135.96.0/20
93.113.31.0/24
130.185.96.0/21
141.226.88.0/21
147.189.144.0-147.189.149.255
185.80.108.0/22
185.196.126.0/23
185.246.252.0/22
188.64.200.0/21
193.41.202.0/24
193.41.208.0/23
212.90.108.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:ba:fb:b9:21:62:bc:df:e6:65:93:93:2d:2f:80:11:1f:9f:
44:ca:00:ef:cf:e0:99:ed:5f:36:35:67:08:d4:b9:bc:91:b2:
62:24:84:e0:f3:51:8a:46:8c:27:f0:b3:aa:0b:ba:78:b3:16:
10:87:07:0a:df:de:af:ac:bc:f4:77:f5:fa:2e:ee:e3:9c:87:
78:6d:6a:d1:ab:2d:8f:85:62:b4:7d:f8:e5:be:08:d5:fa:56:
f8:d0:c8:a1:67:3f:e1:1b:c4:c9:f5:81:4e:6e:60:2d:f0:ec:
e7:38:6c:5b:e0:0d:62:63:e8:6c:6c:85:2e:06:e5:62:9e:98:
70:65:6d:4e:09:30:56:c0:45:33:65:4b:b7:5f:23:81:e4:ec:
d2:37:95:29:48:48:a7:d2:76:d9:2c:54:a9:ec:a4:8f:32:90:
bf:7d:b5:65:6e:4f:4e:87:e7:1b:c5:03:27:3b:98:13:92:6c:
d8:c3:ff:02:d4:4e:e5:bf:27:c8:54:7d:43:77:8a:d5:41:1c:
86:6b:cd:d2:d2:5e:21:e4:44:aa:10:dd:08:47:93:65:ab:67:
96:39:6d:1d:51:64:98:e9:bc:ef:64:e1:9d:36:86:83:26:e2:
fe:ac:f6:77:6a:3b:10:6b:ee:91:09:9d:af:ac:82:78:06:98:
75:17:40:ae
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgISAZMFTSJgHOYGHxDtQDISzcpSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEwMDNjZDI1MzE1MzMwMzUwZDczZjJhMzU3OWFhOTVlMDUy
YjcxOGQwHhcNMjQxMTA3MDYyNjAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkODE5MGQ0ODIxYTY4NjNiMjdjODE2NWMxZDRiZGU0MDc1MGQwMTdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwYWg/g+exL9ZGKcz1PqOZqpftdRD
hUCpR9sveS/Yam/GF3ssozdVnAI5/4ho3jPmmP2DqTfwSlSzkJPuK5N0H8rEUmH4
PCbWM6Kz4dth8gpGGsDmy37pS/qfvBm4DyeiyfHc+i6gzw2chiXsGYxoGrZhv6dA
QN/5l9fX/5mnIHTQjzIVDlMmVleBHEFbui/NhPv7anRQcYFEpgXh+ATyLYdAyMjY
FoLCd9qZTHtDOZ/Vy/m2AVfPTVphPBWXa25FQLCL/kfCZ9GY5FxSgvwsaCJZezvG
qWlRWWuiMg4K1DuGtak8b34w/bnmAKRMiPUaiLrwDIyEL78y1YVVXoW9FwIDAQAB
o4ICgzCCAn8wHQYDVR0OBBYEFNgZDUghpoY7J8gWXB1L3kB1DQF+MB8GA1UdIwQY
MBaAFBADzSUxUzA1DXPyo1eaqV4FK3GNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRUFQTkpURlRNRFVOY19LalY1cXBYZ1VyY1kwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC81OTcyMzItZjg0Ni00ZmQ3LWJjYzIt
NmFmZWY1ZDBkYWE2LzEvMkJrTlNDR21oanNueUJaY0hVdmVRSFVOQVg0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC81OTcyMzItZjg0Ni00ZmQ3LWJjYzItNmFmZWY1ZDBkYWE2
LzEvRUFQTkpURlRNRFVOY19LalY1cXBYZ1VyY1kwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGYBggrBgEFBQcBBwEB/wSBiDCBhTCBggQCAAEwfAMEAy4T
UAMEAj5wADAMAwQAVZ+hAwQDVZ+gAwQCWSXsAwQAWShCAwQAWSswAwQEW4dgAwQA
XXEfAwQDgrlgAwQDjeJYMAwDBASTvZADBAGTvZQDBAK5UGwDBAG5xH4DBAK59vwD
BAO8QMgDBADBKcoDBAHBKdADBALUWmwwDQYJKoZIhvcNAQELBQADggEBALm6+7kh
Yrzf5mWTky0vgBEfn0TKAO/P4JntXzY1ZwjUubyRsmIkhODzUYpGjCfws6oLuniz
FhCHBwrf3q+svPR39fou7uOch3htatGrLY+FYrR9+OW+CNX6VvjQyKFnP+EbxMn1
gU5uYC3w7Oc4bFvgDWJj6GxshS4G5WKemHBlbU4JMFbARTNlS7dfI4Hk7NI3lSlI
SKfSdtksVKnspI8ykL99tWVuT06H5xvFAyc7mBOSbNjD/wLUTuW/J8hUfUN3itVB
HIZrzdLSXiHkRKoQ3QhHk2WrZ5Y5bR1RZJjpvO9k4Z02hoMm4v6s9ndqOxBr7pEJ
na+sgngGmHUXQK4=
-----END CERTIFICATE-----
Generated at Sun Nov 10 09:36:25 2024 by rpki-client on console-fra.rpki-client.org