Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/aPpo-Y8saMkl42_Aj2w6a9aNZ2w.roa
File: aPpo-Y8saMkl42_Aj2w6a9aNZ2w.roa (raw, json)
Hash identifier: cqYgYzJRAkC3DJyy0d1xMigm2t3WfECVc0i5IP5imhg=
Subject key identifier: 68:FA:68:F9:8F:2C:68:C9:25:E3:6F:C0:8F:6C:3A:6B:D6:8D:67:6C
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 0191D6CA50810D91D14D5E895649029AABC3
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/aPpo-Y8saMkl42_Aj2w6a9aNZ2w.roa
Signing time: Mon 09 Sep 2024 12:37:48 +0000
ROA not before: Mon 09 Sep 2024 12:37:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 136258
IP address blocks: 46.16.128.0/24 maxlen: 24
46.16.129.0/24 maxlen: 24
46.16.130.0/24 maxlen: 24
109.104.152.0/24 maxlen: 24
109.104.153.0/24 maxlen: 24
109.104.155.0/24 maxlen: 24
147.78.0.0/24 maxlen: 24
147.78.1.0/24 maxlen: 24
147.78.2.0/24 maxlen: 24
147.78.3.0/24 maxlen: 24
185.126.238.0/24 maxlen: 24
185.126.239.0/24 maxlen: 24
185.213.20.0/24 maxlen: 24
185.213.21.0/24 maxlen: 24
185.213.23.0/24 maxlen: 24
2a11:840:6::/48 maxlen: 48
2a11:840:7::/48 maxlen: 48
2a11:840:8::/48 maxlen: 48
2a11:840:10::/48 maxlen: 48
2a11:840:11::/48 maxlen: 48
2a11:840:12::/48 maxlen: 48
2a11:840:13::/48 maxlen: 48
2a11:840:14::/48 maxlen: 48
2a11:840:17::/48 maxlen: 48
2a11:840:18::/48 maxlen: 48
2a11:840:19::/48 maxlen: 48
2a11:840:20::/48 maxlen: 48
2a11:840:21::/48 maxlen: 48
2a11:840:22::/48 maxlen: 48
2a11:840:23::/48 maxlen: 48
2a11:840:24::/48 maxlen: 48
2a11:840:25::/48 maxlen: 48
2a11:840:26::/48 maxlen: 48
2a11:840:30::/48 maxlen: 48
2a11:840:33::/48 maxlen: 48
2a11:840:40::/48 maxlen: 48
2a11:840:41::/48 maxlen: 48
2a11:840:47::/48 maxlen: 48
2a11:840:48::/48 maxlen: 48
2a11:840:54::/48 maxlen: 48
2a11:840:60::/48 maxlen: 48
2a11:840:61::/48 maxlen: 48
2a11:840:62::/48 maxlen: 48
2a11:840:63::/48 maxlen: 48
2a11:840:64::/48 maxlen: 48
2a11:840:65::/48 maxlen: 48
2a11:840:66::/48 maxlen: 48
2a11:840:67::/48 maxlen: 48
2a11:840:68::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 09 Sep 2024 20:05:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d6:ca:50:81:0d:91:d1:4d:5e:89:56:49:02:9a:ab:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: Sep 9 12:37:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=68fa68f98f2c68c925e36fc08f6c3a6bd68d676c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:09:99:76:c4:c0:87:23:85:b0:2b:64:16:39:
3d:37:c3:66:72:70:85:f3:b4:9d:2d:11:cc:59:a0:
f9:cd:30:00:fa:24:a8:19:17:ce:87:86:8e:a1:49:
89:b1:b1:7d:2c:83:0c:ad:5e:8f:db:d8:d9:4d:b4:
f5:44:b3:56:f7:5f:a9:28:b9:f1:7a:ec:ed:ab:c2:
c7:de:bd:30:99:ca:6e:e7:71:e5:e8:e7:e1:04:5d:
6a:39:e6:ec:85:56:aa:38:d6:2b:99:94:42:4f:f0:
54:24:a5:b4:1d:23:a1:b7:1b:57:a8:0b:c8:18:d8:
e7:97:a6:fd:62:4d:ee:11:3e:19:d1:47:81:71:90:
4c:c2:70:6d:73:60:25:8a:62:4c:2f:62:fe:59:60:
6f:85:9f:3b:65:e0:5e:ee:98:d3:69:ac:26:d5:a8:
fa:59:bc:1d:39:78:4d:f0:84:98:b7:e6:d0:97:5f:
b5:47:1c:d4:5a:05:f3:7e:2f:bf:be:2a:64:d2:fc:
75:90:c8:e4:63:45:9c:88:0b:74:b8:8d:e9:f4:81:
2e:f2:61:5b:db:dc:a4:9c:dc:72:02:07:02:53:9a:
be:1c:c7:63:2a:20:16:99:e7:70:85:d7:28:96:ea:
d4:94:29:74:92:58:f1:0a:ff:6c:6f:e4:69:87:0f:
0c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:FA:68:F9:8F:2C:68:C9:25:E3:6F:C0:8F:6C:3A:6B:D6:8D:67:6C
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/aPpo-Y8saMkl42_Aj2w6a9aNZ2w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.16.128.0-46.16.130.255
109.104.152.0/23
109.104.155.0/24
147.78.0.0/22
185.126.238.0/23
185.213.20.0/23
185.213.23.0/24
IPv6:
2a11:840:6::-2a11:840:8:ffff:ffff:ffff:ffff:ffff
2a11:840:10::-2a11:840:14:ffff:ffff:ffff:ffff:ffff
2a11:840:17::-2a11:840:19:ffff:ffff:ffff:ffff:ffff
2a11:840:20::-2a11:840:26:ffff:ffff:ffff:ffff:ffff
2a11:840:30::/48
2a11:840:33::/48
2a11:840:40::/47
2a11:840:47::-2a11:840:48:ffff:ffff:ffff:ffff:ffff
2a11:840:54::/48
2a11:840:60::-2a11:840:68:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
91:ab:6f:9c:d2:1e:36:cb:fc:81:2a:7a:c8:e3:b9:4f:39:51:
6b:c4:85:07:ad:5d:c7:9c:4c:c3:b8:89:42:a3:8e:2d:20:b1:
5c:54:6d:20:78:ea:31:5d:dc:b5:c7:52:70:eb:ef:8a:22:a0:
55:96:5b:a6:39:16:a0:7c:d4:c0:44:07:e4:dc:0a:33:c5:15:
c4:f0:33:9d:7a:39:9d:f3:f5:84:5b:17:76:c7:ec:7e:b1:df:
ea:87:e0:38:fa:aa:de:d6:ee:f0:bf:86:6e:68:f7:93:db:65:
d7:6e:be:39:95:cc:a3:fb:4c:42:c7:52:3d:c5:b5:31:c7:e6:
b8:0e:dc:11:58:c8:aa:c1:ce:9c:c8:22:3c:da:4c:a7:33:2a:
53:50:4a:92:db:15:02:6c:c5:11:0a:98:fd:dd:26:b2:61:7a:
07:44:ca:a7:d2:ab:1c:14:4d:85:77:ec:62:11:f4:9e:64:e3:
0a:5b:9f:a4:61:22:7c:ca:30:b9:db:a9:9c:73:d6:ff:47:d3:
d2:f5:f1:ab:4b:d9:4a:47:4e:e8:6f:e4:15:3e:9d:e9:01:86:
9a:e4:f4:58:08:b6:48:ed:d3:38:9f:9a:a0:5c:37:cf:a7:31:
e2:7a:30:0e:48:7e:e8:25:8b:01:f8:71:e9:69:11:a3:6b:a4:
16:b0:8c:24
-----BEGIN CERTIFICATE-----
MIIF0jCCBLqgAwIBAgISAZHWylCBDZHRTV6JVkkCmqvDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5MDU2ZmE5NjI1YjZjODc0MDQyNjdjNmRjMjE5OTI0YWMx
NjAwNDUwHhcNMjQwOTA5MTIzNzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OGZhNjhmOThmMmM2OGM5MjVlMzZmYzA4ZjZjM2E2YmQ2OGQ2NzZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyQmZdsTAhyOFsCtkFjk9N8NmcnCF
87SdLRHMWaD5zTAA+iSoGRfOh4aOoUmJsbF9LIMMrV6P29jZTbT1RLNW91+pKLnx
euztq8LH3r0wmcpu53Hl6OfhBF1qOebshVaqONYrmZRCT/BUJKW0HSOhtxtXqAvI
GNjnl6b9Yk3uET4Z0UeBcZBMwnBtc2AlimJML2L+WWBvhZ87ZeBe7pjTaawm1aj6
WbwdOXhN8ISYt+bQl1+1RxzUWgXzfi+/vipk0vx1kMjkY0WciAt0uI3p9IEu8mFb
29yknNxyAgcCU5q+HMdjKiAWmedwhdcolurUlCl0kljxCv9sb+Rphw8M5QIDAQAB
o4IC3jCCAtowHQYDVR0OBBYEFGj6aPmPLGjJJeNvwI9sOmvWjWdsMB8GA1UdIwQY
MBaAFIkFb6liW2yHQEJnxtwhmSSsFgBFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVFWdnFXSmJiSWRBUW1mRzNDR1pKS3dXQUVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi85OWFlMmYtMzljYy00M2YzLTk0MWQt
NTE5MjAzNzMzNTNjLzEvYVBwby1ZOHNhTWtsNDJfQWoydzZhOWFOWjJ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi85OWFlMmYtMzljYy00M2YzLTk0MWQtNTE5MjAzNzMzNTNj
LzEvaVFWdnFXSmJiSWRBUW1mRzNDR1pKS3dXQUVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHzBggrBgEFBQcBBwEB/wSB4zCB4DA4BAIAATAyMAwDBAcu
EIADBAAuEIIDBAFtaJgDBABtaJsDBAKTTgADBAG5fu4DBAG51RQDBAC51RcwgaME
AgACMIGcMBIDBwEqEQhAAAYDBwAqEQhAAAgwEgMHBCoRCEAAEAMHACoRCEAAFDAS
AwcAKhEIQAAXAwcBKhEIQAAYMBIDBwUqEQhAACADBwAqEQhAACYDBwAqEQhAADAD
BwAqEQhAADMDBwEqEQhAAEAwEgMHACoRCEAARwMHACoRCEAASAMHACoRCEAAVDAS
AwcFKhEIQABgAwcAKhEIQABoMA0GCSqGSIb3DQEBCwUAA4IBAQCRq2+c0h42y/yB
KnrI47lPOVFrxIUHrV3HnEzDuIlCo44tILFcVG0geOoxXdy1x1Jw6++KIqBVllum
ORagfNTARAfk3AozxRXE8DOdejmd8/WEWxd2x+x+sd/qh+A4+qre1u7wv4ZuaPeT
22XXbr45lcyj+0xCx1I9xbUxx+a4DtwRWMiqwc6cyCI82kynMypTUEqS2xUCbMUR
Cpj93SayYXoHRMqn0qscFE2Fd+xiEfSeZOMKW5+kYSJ8yjC526mcc9b/R9PS9fGr
S9lKR07ob+QVPp3pAYaa5PRYCLZI7dM4n5qgXDfPpzHiejAOSH7oJYsB+HHpaRGj
a6QWsIwk
-----END CERTIFICATE-----
Generated at Mon Sep 9 23:00:19 2024 by rpki-client on console-ams.rpki-client.org