Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/RwkJ8ExWZdpdTS7u2nJQeeDnk5E.roa
File: RwkJ8ExWZdpdTS7u2nJQeeDnk5E.roa (raw, json)
Hash identifier: cOd3O//Kcm2glYgrTaCOAHdKUFuV3vUJ/OQqTRRRpTw=
Subject key identifier: 47:09:09:F0:4C:56:65:DA:5D:4D:2E:EE:DA:72:50:79:E0:E7:93:91
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 0189795C1A7A1CF5B459716DA35D99E43407
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/RwkJ8ExWZdpdTS7u2nJQeeDnk5E.roa
Signing time: Fri 21 Jul 2023 16:50:26 +0000
ROA not before: Fri 21 Jul 2023 16:50:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199552
IP address blocks: 37.35.55.0/24 maxlen: 24
146.66.219.0/24 maxlen: 24
146.66.218.0/24 maxlen: 24
178.157.92.0/24 maxlen: 24
178.157.111.0/24 maxlen: 24
178.157.110.0/24 maxlen: 24
188.119.144.0/22 maxlen: 22
178.157.125.0/24 maxlen: 24
5.157.240.0/21 maxlen: 21
188.119.162.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:79:5c:1a:7a:1c:f5:b4:59:71:6d:a3:5d:99:e4:34:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Jul 21 16:50:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=470909f04c5665da5d4d2eeeda725079e0e79391
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3c:5d:85:c8:e1:22:08:8c:3b:94:38:52:b7:
4c:38:2d:78:bd:ff:6a:83:2e:31:ea:3b:ab:74:84:
71:2a:96:ad:e7:7b:23:52:8c:ee:2c:9f:f0:7b:55:
81:14:90:61:69:4c:b7:28:40:ca:68:9a:00:89:4b:
19:ef:65:0a:62:2a:20:79:f5:39:98:65:4f:f9:e3:
d8:3e:9e:01:51:8f:b1:f2:2e:5a:53:f7:28:22:22:
40:c5:49:ce:f4:98:91:ba:56:39:5c:7f:11:95:c4:
60:76:f2:18:5e:2a:06:e7:96:e1:c4:bc:d9:c5:e5:
4f:79:88:ff:a6:c1:db:19:d0:5a:06:ac:28:c4:5a:
3d:49:b6:fc:51:eb:dc:83:1d:a7:0e:9e:74:c0:e5:
70:65:3c:db:80:f7:95:dc:d5:30:fc:48:7d:b6:1c:
1c:26:66:19:a9:12:60:2a:cb:89:46:ad:4c:18:d1:
4d:fb:aa:be:b8:df:f2:76:34:27:e5:22:6d:0e:50:
a9:80:66:74:8c:cc:36:83:2a:72:36:e3:4a:1a:2e:
d5:05:e7:25:10:41:02:3a:55:50:fd:76:ee:ac:ea:
39:4b:80:77:9b:ff:ea:5e:c3:cf:e7:43:ad:69:58:
bd:6f:1a:b0:7b:0c:c9:33:be:2d:66:53:a2:f0:be:
11:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:09:09:F0:4C:56:65:DA:5D:4D:2E:EE:DA:72:50:79:E0:E7:93:91
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/RwkJ8ExWZdpdTS7u2nJQeeDnk5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.240.0/21
37.35.55.0/24
146.66.218.0/23
178.157.92.0/24
178.157.110.0/23
178.157.125.0/24
188.119.144.0/22
188.119.162.0/24
Signature Algorithm: sha256WithRSAEncryption
37:e8:08:c0:ad:59:74:fd:6c:cd:d4:46:bb:92:f8:e4:50:43:
a3:21:f8:5c:6a:42:d7:33:1b:8d:9a:b6:c1:c3:d9:05:8e:51:
53:43:1c:7e:db:76:65:31:b8:6a:2e:4c:a0:82:d8:33:20:12:
bd:31:c3:ea:b7:ac:f2:b6:87:22:58:fd:a8:22:99:52:7d:e5:
5e:dd:c5:74:4e:92:56:0e:cd:ad:72:87:f3:01:7d:93:31:2e:
8a:b1:a6:68:9f:64:e2:7d:58:e2:ba:c8:1c:54:73:f4:ab:ab:
97:3a:38:91:df:1f:18:e2:17:e2:4c:26:b1:fe:b5:1d:9f:72:
77:22:ff:a2:2f:80:bd:11:13:16:4f:98:ed:32:a1:63:8c:1a:
3c:37:11:96:40:36:0a:fc:09:4a:c6:f3:75:16:09:16:c9:2c:
69:93:f9:0b:13:f7:16:5c:96:9f:61:5a:b0:26:5c:b0:51:e5:
89:71:70:4f:78:07:65:c7:82:3f:6a:17:fd:f2:92:9b:98:4a:
ba:ec:02:99:39:7c:4a:20:f5:68:98:9a:53:ca:c7:7d:21:04:
f2:56:72:4e:39:82:04:04:c0:f3:8d:63:fa:05:13:68:4f:ce:
c4:6e:ac:c5:70:99:f9:e9:7a:db:67:2a:f4:fd:42:0d:7b:5b:
df:3f:c6:3b
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgISAYl5XBp6HPW0WXFto12Z5DQHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiMjMzZDc1NTA4YjRlODVjY2NmNDQzNDlhN2NiNzAzMTk4
ZDFkMjYwHhcNMjMwNzIxMTY1MDI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NzA5MDlmMDRjNTY2NWRhNWQ0ZDJlZWVkYTcyNTA3OWUwZTc5MzkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmDxdhcjhIgiMO5Q4UrdMOC14vf9q
gy4x6jurdIRxKpat53sjUozuLJ/we1WBFJBhaUy3KEDKaJoAiUsZ72UKYiogefU5
mGVP+ePYPp4BUY+x8i5aU/coIiJAxUnO9JiRulY5XH8RlcRgdvIYXioG55bhxLzZ
xeVPeYj/psHbGdBaBqwoxFo9Sbb8Uevcgx2nDp50wOVwZTzbgPeV3NUw/Eh9thwc
JmYZqRJgKsuJRq1MGNFN+6q+uN/ydjQn5SJtDlCpgGZ0jMw2gypyNuNKGi7VBecl
EEECOlVQ/XburOo5S4B3m//qXsPP50OtaVi9bxqwewzJM74tZlOi8L4RmQIDAQAB
o4ICMzCCAi8wHQYDVR0OBBYEFEcJCfBMVmXaXU0u7tpyUHng55ORMB8GA1UdIwQY
MBaAFGsjPXVQi06FzM9ENJp8twMZjR0mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYXlNOWRWQ0xUb1hNejBRMG1ueTNBeG1OSFNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC85ZDkxOTItMjczYy00Y2E5LWIyYmEt
ZmE5Y2I1MWNkMGYxLzEvUndrSjhFeFdaZHBkVFM3dTJuSlFlZURuazVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC85ZDkxOTItMjczYy00Y2E5LWIyYmEtZmE5Y2I1MWNkMGYx
LzEvYXlNOWRWQ0xUb1hNejBRMG1ueTNBeG1OSFNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQDBZ3wAwQA
JSM3AwQBkkLaAwQAsp1cAwQBsp1uAwQAsp19AwQCvHeQAwQAvHeiMA0GCSqGSIb3
DQEBCwUAA4IBAQA36AjArVl0/WzN1Ea7kvjkUEOjIfhcakLXMxuNmrbBw9kFjlFT
Qxx+23ZlMbhqLkyggtgzIBK9McPqt6zytociWP2oIplSfeVe3cV0TpJWDs2tcofz
AX2TMS6KsaZon2TifVjiusgcVHP0q6uXOjiR3x8Y4hfiTCax/rUdn3J3Iv+iL4C9
ERMWT5jtMqFjjBo8NxGWQDYK/AlKxvN1FgkWySxpk/kLE/cWXJafYVqwJlywUeWJ
cXBPeAdlx4I/ahf98pKbmEq67AKZOXxKIPVomJpTysd9IQTyVnJOOYIEBMDzjWP6
BRNoT87EbqzFcJn56XrbZyr0/UINe1vfP8Y7
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:50 2024 by rpki-client on console-ams.rpki-client.org