Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/hIR34zu0-qWyjsv3tlGY41Qx40E.roa
File: hIR34zu0-qWyjsv3tlGY41Qx40E.roa (raw, json)
Hash identifier: ZVLyGLGOHJba022SpowG+cpRgmoN7AW1GFaJp0vq6L4=
Subject key identifier: 84:84:77:E3:3B:B4:FA:A5:B2:8E:CB:F7:B6:51:98:E3:54:31:E3:41
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 018D41801D946B87BA93F2804FD35D57E252
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/hIR34zu0-qWyjsv3tlGY41Qx40E.roa
Signing time: Thu 25 Jan 2024 16:42:11 +0000
ROA not before: Thu 25 Jan 2024 16:42:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 5.157.136.0/24 maxlen: 24
5.157.139.0/24 maxlen: 24
37.35.36.0/24 maxlen: 24
37.35.37.0/24 maxlen: 24
37.35.39.0/24 maxlen: 24
62.216.92.0/24 maxlen: 24
62.216.93.0/24 maxlen: 24
91.225.15.0/24 maxlen: 24
146.66.208.0/24 maxlen: 24
146.66.209.0/24 maxlen: 24
146.66.220.0/24 maxlen: 24
146.66.221.0/24 maxlen: 24
146.66.222.0/24 maxlen: 24
146.66.223.0/24 maxlen: 24
178.157.76.0/24 maxlen: 24
178.157.94.0/24 maxlen: 24
178.157.108.0/24 maxlen: 24
178.157.124.0/24 maxlen: 24
178.157.126.0/24 maxlen: 24
188.74.128.0/24 maxlen: 24
188.74.152.0/24 maxlen: 24
188.74.155.0/24 maxlen: 24
188.74.171.0/24 maxlen: 24
188.74.181.0/24 maxlen: 24
188.74.190.0/24 maxlen: 24
188.74.208.0/24 maxlen: 24
188.74.209.0/24 maxlen: 24
188.74.245.0/24 maxlen: 24
188.119.165.0/24 maxlen: 24
188.119.166.0/24 maxlen: 24
188.119.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Apr 2024 16:19:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:41:80:1d:94:6b:87:ba:93:f2:80:4f:d3:5d:57:e2:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Jan 25 16:42:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=848477e33bb4faa5b28ecbf7b65198e35431e341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:61:88:84:b3:5c:37:86:82:dc:be:70:18:db:
06:68:7f:3f:db:b3:f1:38:86:29:73:e7:2a:f8:11:
09:bf:c7:55:c2:7d:e7:b4:ac:06:d3:9e:77:21:2a:
f9:d0:e5:f4:cb:b4:7b:84:f6:d8:09:1a:d5:95:a9:
13:e1:88:a5:aa:a0:8d:68:fe:1a:f6:47:5d:91:29:
9d:2e:1b:7f:1f:fe:f7:75:62:30:95:29:18:9f:9a:
97:0a:99:ca:ad:2f:25:aa:8d:2c:68:e8:21:15:f9:
f9:d8:35:4b:39:28:5c:5c:52:ed:23:96:15:bd:69:
35:8d:57:df:a7:70:57:d3:fd:45:5c:e4:31:d7:0c:
16:2f:7e:10:2e:96:0e:78:4c:7a:c7:92:6e:65:5b:
9c:21:f5:41:6d:df:b5:d0:70:23:ad:99:e0:94:7c:
30:e8:41:91:8c:0e:67:af:83:fe:47:91:34:22:52:
3d:76:ff:22:f5:f5:e2:85:6a:23:7c:ac:d7:ad:6c:
69:81:a5:51:8b:8a:ce:d4:d8:b0:3e:a9:d3:39:5e:
30:56:94:ec:e6:fc:06:1a:99:9c:8d:33:df:45:08:
60:72:51:37:ed:eb:fe:4f:29:ea:c6:1d:bc:c8:0f:
4f:8b:3f:27:5b:38:14:98:a8:a0:28:ed:60:5e:2e:
f9:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:84:77:E3:3B:B4:FA:A5:B2:8E:CB:F7:B6:51:98:E3:54:31:E3:41
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/hIR34zu0-qWyjsv3tlGY41Qx40E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.136.0/24
5.157.139.0/24
37.35.36.0/23
37.35.39.0/24
62.216.92.0/23
91.225.15.0/24
146.66.208.0/23
146.66.220.0/22
178.157.76.0/24
178.157.94.0/24
178.157.108.0/24
178.157.124.0/24
178.157.126.0/24
188.74.128.0/24
188.74.152.0/24
188.74.155.0/24
188.74.171.0/24
188.74.181.0/24
188.74.190.0/24
188.74.208.0/23
188.74.245.0/24
188.119.165.0-188.119.166.255
188.119.181.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:11:1c:6f:09:e7:42:ab:73:ae:40:1a:b0:62:7c:89:ce:fd:
f0:b8:19:0f:4b:ae:e9:f6:a6:b5:10:09:10:ed:ae:3c:b4:e3:
04:43:f7:de:41:55:42:24:84:77:cd:5d:e5:8d:40:68:5b:39:
dc:6b:4d:e2:35:97:4a:37:0b:72:41:73:66:1c:23:03:1b:e5:
96:53:fa:09:63:17:0b:3e:db:ea:0c:d8:d7:15:92:4f:9b:1e:
55:8d:23:84:3d:16:8d:02:cf:2e:44:da:27:2b:5e:ba:9c:c7:
e0:2d:b0:fa:e9:13:a4:fd:46:49:3e:3c:31:e9:66:b4:9e:65:
6c:29:66:3b:af:77:f2:cc:f8:d8:f8:35:cc:f3:a6:98:93:35:
a3:0d:22:4e:b6:60:7f:95:1a:6c:9d:8c:6e:6c:34:af:0b:36:
db:63:5f:3d:4d:18:a1:cd:9e:cf:37:e8:60:04:e8:27:f1:62:
f4:46:99:be:29:ab:e3:b1:dc:d7:1b:c7:8a:9c:fe:45:23:66:
bb:0b:20:d3:f9:7d:5f:11:65:87:62:72:23:b5:31:57:10:21:
95:59:f7:73:7b:5b:45:75:79:e2:a1:50:7b:eb:61:e3:c7:46:
89:60:39:3f:fd:c8:e3:3b:f6:3a:6c:d2:c1:ce:fc:82:94:2d:
bb:ab:60:63
-----BEGIN CERTIFICATE-----
MIIFjjCCBHagAwIBAgISAY1BgB2Ua4e6k/KAT9NdV+JSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiMjMzZDc1NTA4YjRlODVjY2NmNDQzNDlhN2NiNzAzMTk4
ZDFkMjYwHhcNMjQwMTI1MTY0MjExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NDg0NzdlMzNiYjRmYWE1YjI4ZWNiZjdiNjUxOThlMzU0MzFlMzQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwmGIhLNcN4aC3L5wGNsGaH8/27Px
OIYpc+cq+BEJv8dVwn3ntKwG0553ISr50OX0y7R7hPbYCRrVlakT4YilqqCNaP4a
9kddkSmdLht/H/73dWIwlSkYn5qXCpnKrS8lqo0saOghFfn52DVLOShcXFLtI5YV
vWk1jVffp3BX0/1FXOQx1wwWL34QLpYOeEx6x5JuZVucIfVBbd+10HAjrZnglHww
6EGRjA5nr4P+R5E0IlI9dv8i9fXihWojfKzXrWxpgaVRi4rO1NiwPqnTOV4wVpTs
5vwGGpmcjTPfRQhgclE37ev+Tynqxh28yA9Piz8nWzgUmKigKO1gXi754QIDAQAB
o4ICmjCCApYwHQYDVR0OBBYEFISEd+M7tPqlso7L97ZRmONUMeNBMB8GA1UdIwQY
MBaAFGsjPXVQi06FzM9ENJp8twMZjR0mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYXlNOWRWQ0xUb1hNejBRMG1ueTNBeG1OSFNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC85ZDkxOTItMjczYy00Y2E5LWIyYmEt
ZmE5Y2I1MWNkMGYxLzEvaElSMzR6dTAtcVd5anN2M3RsR1k0MVF4NDBFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC85ZDkxOTItMjczYy00Y2E5LWIyYmEtZmE5Y2I1MWNkMGYx
LzEvYXlNOWRWQ0xUb1hNejBRMG1ueTNBeG1OSFNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGvBggrBgEFBQcBBwEB/wSBnzCBnDCBmQQCAAEwgZIDBAAF
nYgDBAAFnYsDBAElIyQDBAAlIycDBAE+2FwDBABb4Q8DBAGSQtADBAKSQtwDBACy
nUwDBACynV4DBACynWwDBACynXwDBACynX4DBAC8SoADBAC8SpgDBAC8SpsDBAC8
SqsDBAC8SrUDBAC8Sr4DBAG8StADBAC8SvUwDAMEALx3pQMEALx3pgMEALx3tTAN
BgkqhkiG9w0BAQsFAAOCAQEAWhEcbwnnQqtzrkAasGJ8ic798LgZD0uu6famtRAJ
EO2uPLTjBEP33kFVQiSEd81d5Y1AaFs53GtN4jWXSjcLckFzZhwjAxvlllP6CWMX
Cz7b6gzY1xWST5seVY0jhD0WjQLPLkTaJyteupzH4C2w+ukTpP1GST48MelmtJ5l
bClmO6938sz42Pg1zPOmmJM1ow0iTrZgf5UabJ2Mbmw0rws222NfPU0Yoc2ezzfo
YAToJ/Fi9EaZvimr47Hc1xvHipz+RSNmuwsg0/l9XxFlh2JyI7UxVxAhlVn3c3tb
RXV54qFQe+th48dGiWA5P/3I4zv2OmzSwc78gpQtu6tgYw==
-----END CERTIFICATE-----
Generated at Mon Apr 8 19:28:54 2024 by rpki-client on console-ams.rpki-client.org