Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/FmVpddUH7MUFHI5ZuaUzQtdwj6U.roa
File: FmVpddUH7MUFHI5ZuaUzQtdwj6U.roa (raw, json)
Hash identifier: mxHurLfpi0S+XErNwCE91ltrANEUOyN0NFsvEd46IQU=
Subject key identifier: 16:65:69:75:D5:07:EC:C5:05:1C:8E:59:B9:A5:33:42:D7:70:8F:A5
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 018AD0AA292BABF6E375216407A041321572
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/FmVpddUH7MUFHI5ZuaUzQtdwj6U.roa
Signing time: Tue 26 Sep 2023 08:45:27 +0000
ROA not before: Tue 26 Sep 2023 08:45:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 5.157.192.0/22 maxlen: 22
5.157.196.0/22 maxlen: 22
5.157.200.0/21 maxlen: 21
5.157.208.0/21 maxlen: 21
5.157.216.0/22 maxlen: 24
5.157.220.0/22 maxlen: 24
178.157.120.0/22 maxlen: 22
5.157.132.0/22 maxlen: 22
5.157.152.0/21 maxlen: 21
5.157.168.0/22 maxlen: 24
5.157.172.0/22 maxlen: 24
5.157.232.0/21 maxlen: 21
5.157.228.0/22 maxlen: 22
5.157.248.0/21 maxlen: 21
188.119.168.0/21 maxlen: 21
188.119.184.0/22 maxlen: 22
188.119.180.0/24 maxlen: 24
188.119.188.0/22 maxlen: 24
178.157.68.0/22 maxlen: 22
178.157.94.0/24 maxlen: 24
178.157.100.0/24 maxlen: 24
178.157.101.0/24 maxlen: 24
178.157.112.0/21 maxlen: 21
188.74.248.0/21 maxlen: 21
37.35.48.0/22 maxlen: 22
37.35.52.0/24 maxlen: 24
188.119.128.0/20 maxlen: 24
188.74.192.0/21 maxlen: 21
188.74.200.0/21 maxlen: 21
62.216.72.0/24 maxlen: 24
62.216.73.0/24 maxlen: 24
62.216.74.0/24 maxlen: 24
62.216.75.0/24 maxlen: 24
62.216.72.0/22 maxlen: 22
62.216.80.0/24 maxlen: 24
62.216.81.0/24 maxlen: 24
62.216.82.0/24 maxlen: 24
62.216.83.0/24 maxlen: 24
188.74.216.0/21 maxlen: 21
62.216.80.0/22 maxlen: 22
188.74.224.0/21 maxlen: 21
188.74.232.0/21 maxlen: 21
62.216.92.0/24 maxlen: 24
62.216.93.0/24 maxlen: 24
62.216.94.0/24 maxlen: 24
62.216.95.0/24 maxlen: 24
188.74.144.0/22 maxlen: 22
188.74.148.0/22 maxlen: 22
188.74.160.0/21 maxlen: 21
188.74.184.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 05 Oct 2023 12:21:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d0:aa:29:2b:ab:f6:e3:75:21:64:07:a0:41:32:15:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Sep 26 08:45:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16656975d507ecc5051c8e59b9a53342d7708fa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:aa:39:57:84:63:ea:94:2c:b6:af:12:85:86:
fe:de:03:02:6b:97:65:0b:ed:f3:cf:45:d9:cb:54:
43:9b:53:11:1b:07:31:a7:34:cf:8d:56:b5:68:a3:
97:1e:5a:07:19:57:ed:68:2d:fb:0e:2a:45:56:e3:
9e:39:9a:11:d6:98:45:af:19:16:48:f3:40:2a:06:
b6:12:9e:58:83:ae:e5:7a:be:cf:82:de:05:4a:e1:
2e:85:a7:3e:a1:2c:7a:a8:1f:02:5e:51:19:82:fe:
1d:a0:da:75:57:7f:b7:a5:8b:3f:9f:48:b8:56:bd:
fe:6b:26:3f:62:08:d9:42:0f:86:39:8b:86:58:b7:
75:1c:22:2b:52:7e:42:20:b9:c4:d0:dc:b5:25:c4:
ed:3a:0a:8a:40:91:30:58:e7:a9:b0:aa:cc:81:55:
f2:98:4b:b3:25:35:e0:96:bb:b9:5c:93:61:ac:03:
0a:10:75:24:65:cc:08:83:16:71:a8:02:cd:dc:13:
82:fd:fc:08:c0:b3:d7:49:69:f5:1a:19:4b:9c:9f:
04:8b:b6:67:49:8f:8b:26:f2:25:93:1d:11:3a:4d:
44:66:0e:40:66:a4:a0:f9:4b:1a:d1:59:7c:4c:58:
c0:f2:37:06:28:57:e6:93:13:12:b1:42:fe:78:5f:
f6:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:65:69:75:D5:07:EC:C5:05:1C:8E:59:B9:A5:33:42:D7:70:8F:A5
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/FmVpddUH7MUFHI5ZuaUzQtdwj6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.132.0/22
5.157.152.0/21
5.157.168.0/21
5.157.192.0/19
5.157.228.0-5.157.239.255
5.157.248.0/21
37.35.48.0-37.35.52.255
62.216.72.0/22
62.216.80.0/22
62.216.92.0/22
178.157.68.0/22
178.157.94.0/24
178.157.100.0/23
178.157.112.0-178.157.123.255
188.74.144.0/21
188.74.160.0/21
188.74.184.0/22
188.74.192.0/20
188.74.216.0-188.74.239.255
188.74.248.0/21
188.119.128.0/20
188.119.168.0/21
188.119.180.0/24
188.119.184.0/21
Signature Algorithm: sha256WithRSAEncryption
3c:de:ee:94:5f:f5:fb:06:d3:c0:cf:9b:fe:8e:3b:2a:3c:dc:
04:82:0d:4b:1f:5b:91:77:62:70:7a:e8:c1:11:68:01:44:91:
4c:ec:0f:95:6a:f0:ce:54:f2:57:3c:53:2b:6b:16:11:36:03:
b0:95:71:1a:1f:42:66:00:da:54:5e:9b:8b:56:bd:da:55:c0:
66:3d:cd:d6:00:56:d6:51:e5:e0:14:58:27:09:49:39:e3:f9:
93:5f:79:b2:ca:05:8e:f5:f1:b4:98:6f:b7:ce:56:5f:fa:0d:
d8:1c:26:cd:76:58:d1:0d:8a:43:43:c8:f2:4c:44:6e:3e:07:
be:df:6e:cd:a4:18:f4:0a:ea:02:25:79:76:6c:c5:0d:f6:f6:
cf:6d:13:ec:b6:b3:3a:75:66:51:b5:12:c1:d8:30:a2:7d:45:
2b:50:f8:9d:54:6f:64:2a:e5:ae:55:35:05:43:81:98:f8:42:
fb:dc:04:b1:49:37:e0:a0:c9:f2:d1:1f:9b:e0:a9:49:22:d2:
b5:04:db:23:25:88:bd:3d:1b:0b:07:f6:be:56:56:e3:47:cf:
37:09:83:27:f9:3a:1f:1d:d6:ef:7d:13:9f:19:5d:f2:f7:60:
a3:18:a1:fc:d3:f2:4a:59:0a:31:92:31:0b:42:e1:e3:fe:8e:
92:8e:14:76
-----BEGIN CERTIFICATE-----
MIIFrDCCBJSgAwIBAgISAYrQqikrq/bjdSFkB6BBMhVyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiMjMzZDc1NTA4YjRlODVjY2NmNDQzNDlhN2NiNzAzMTk4
ZDFkMjYwHhcNMjMwOTI2MDg0NTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNjY1Njk3NWQ1MDdlY2M1MDUxYzhlNTliOWE1MzM0MmQ3NzA4ZmE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA26o5V4Rj6pQstq8ShYb+3gMCa5dl
C+3zz0XZy1RDm1MRGwcxpzTPjVa1aKOXHloHGVftaC37DipFVuOeOZoR1phFrxkW
SPNAKga2Ep5Yg67ler7Pgt4FSuEuhac+oSx6qB8CXlEZgv4doNp1V3+3pYs/n0i4
Vr3+ayY/YgjZQg+GOYuGWLd1HCIrUn5CILnE0Ny1JcTtOgqKQJEwWOepsKrMgVXy
mEuzJTXglru5XJNhrAMKEHUkZcwIgxZxqALN3BOC/fwIwLPXSWn1GhlLnJ8Ei7Zn
SY+LJvIlkx0ROk1EZg5AZqSg+Usa0Vl8TFjA8jcGKFfmkxMSsUL+eF/2LQIDAQAB
o4ICuDCCArQwHQYDVR0OBBYEFBZlaXXVB+zFBRyOWbmlM0LXcI+lMB8GA1UdIwQY
MBaAFGsjPXVQi06FzM9ENJp8twMZjR0mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYXlNOWRWQ0xUb1hNejBRMG1ueTNBeG1OSFNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC85ZDkxOTItMjczYy00Y2E5LWIyYmEt
ZmE5Y2I1MWNkMGYxLzEvRm1WcGRkVUg3TVVGSEk1WnVhVXpRdGR3ajZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC85ZDkxOTItMjczYy00Y2E5LWIyYmEtZmE5Y2I1MWNkMGYx
LzEvYXlNOWRWQ0xUb1hNejBRMG1ueTNBeG1OSFNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHNBggrBgEFBQcBBwEB/wSBvTCBujCBtwQCAAEwgbADBAIF
nYQDBAMFnZgDBAMFnagDBAUFncAwDAMEAgWd5AMEBAWd4AMEAwWd+DAMAwQEJSMw
AwQAJSM0AwQCPthIAwQCPthQAwQCPthcAwQCsp1EAwQAsp1eAwQBsp1kMAwDBASy
nXADBAKynXgDBAO8SpADBAO8SqADBAK8SrgDBAS8SsAwDAMEA7xK2AMEBLxK4AME
A7xK+AMEBLx3gAMEA7x3qAMEALx3tAMEA7x3uDANBgkqhkiG9w0BAQsFAAOCAQEA
PN7ulF/1+wbTwM+b/o47KjzcBIINSx9bkXdicHrowRFoAUSRTOwPlWrwzlTyVzxT
K2sWETYDsJVxGh9CZgDaVF6bi1a92lXAZj3N1gBW1lHl4BRYJwlJOeP5k195ssoF
jvXxtJhvt85WX/oN2BwmzXZY0Q2KQ0PI8kxEbj4Hvt9uzaQY9ArqAiV5dmzFDfb2
z20T7LazOnVmUbUSwdgwon1FK1D4nVRvZCrlrlU1BUOBmPhC+9wEsUk34KDJ8tEf
m+CpSSLStQTbIyWIvT0bCwf2vlZW40fPNwmDJ/k6Hx3W730Tnxld8vdgoxih/NPy
SlkKMZIxC0Lh4/6Oko4Udg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:16 2024 by rpki-client on console-fra.rpki-client.org