Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/bt1QRUyRHutlol88aO7cEZdakcw.roa
File: bt1QRUyRHutlol88aO7cEZdakcw.roa (raw, json)
Hash identifier: l4SKrPHxN6Wqwo120EOsDe7WCbSlBTyWHqeLq2ulXXM=
Subject key identifier: 6E:DD:50:45:4C:91:1E:EB:65:A2:5F:3C:68:EE:DC:11:97:5A:91:CC
Certificate issuer: /CN=a7e2ce3109480aee7b3fd2846ec8f8646885cdba
Certificate serial: 018925558BCF176AD0F4927254C73F79719F
Authority key identifier: A7:E2:CE:31:09:48:0A:EE:7B:3F:D2:84:6E:C8:F8:64:68:85:CD:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p-LOMQlICu57P9KEbsj4ZGiFzbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/bt1QRUyRHutlol88aO7cEZdakcw.roa
Signing time: Wed 05 Jul 2023 09:15:10 +0000
ROA not before: Wed 05 Jul 2023 09:15:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50796
IP address blocks: 37.32.56.0/21 maxlen: 24
194.180.116.0/22 maxlen: 24
185.3.196.0/22 maxlen: 24
192.166.204.0/22 maxlen: 24
178.22.0.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:25:55:8b:cf:17:6a:d0:f4:92:72:54:c7:3f:79:71:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7e2ce3109480aee7b3fd2846ec8f8646885cdba
Validity
Not Before: Jul 5 09:15:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6edd50454c911eeb65a25f3c68eedc11975a91cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:d1:f0:93:80:0e:5d:2b:0e:ad:1d:97:82:67:
46:d6:a9:10:95:9d:b1:5c:8c:e1:f9:96:a0:4f:93:
50:a7:ab:b2:f5:14:52:38:79:02:ed:83:1d:ea:b9:
20:03:ee:72:b6:18:52:e6:11:3b:15:98:f7:3d:cb:
97:67:9b:51:21:3c:4e:e7:93:5a:e9:63:84:92:96:
a5:67:37:45:c5:c6:ab:61:35:4d:fd:41:7a:08:4c:
fd:ab:cb:24:b4:cf:ea:d9:e4:7f:37:19:1b:c5:b4:
1c:9c:cb:eb:7a:f6:5e:24:99:21:c9:e3:c1:cc:55:
f2:00:0e:d1:d8:c2:6c:01:11:80:63:9d:ab:1d:b3:
13:27:e6:3b:b6:d7:ed:ab:25:1a:f0:6c:f9:6b:8b:
ad:b4:65:4d:83:33:b3:74:58:2d:dc:ee:e1:1c:9e:
ee:83:59:aa:17:90:cf:42:69:bf:d1:f3:c5:fa:00:
1e:31:98:95:c4:ff:6c:19:12:2f:7a:cc:14:9d:ff:
e0:6a:98:f0:71:2b:50:e4:96:be:44:7a:48:b1:d0:
a7:40:41:50:4f:49:98:25:08:7f:10:2e:04:bc:3e:
f9:0d:f0:1b:04:14:e0:2d:c1:72:22:44:cd:76:41:
71:5f:78:51:10:e3:f3:8e:0a:1c:5b:d4:8b:88:af:
11:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:DD:50:45:4C:91:1E:EB:65:A2:5F:3C:68:EE:DC:11:97:5A:91:CC
X509v3 Authority Key Identifier:
keyid:A7:E2:CE:31:09:48:0A:EE:7B:3F:D2:84:6E:C8:F8:64:68:85:CD:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p-LOMQlICu57P9KEbsj4ZGiFzbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/bt1QRUyRHutlol88aO7cEZdakcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/p-LOMQlICu57P9KEbsj4ZGiFzbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.56.0/21
178.22.0.0/21
185.3.196.0/22
192.166.204.0/22
194.180.116.0/22
Signature Algorithm: sha256WithRSAEncryption
90:b5:21:cd:02:91:92:96:15:03:61:33:64:31:70:68:80:a5:
22:d8:1b:d0:43:99:3c:cc:7d:25:6a:38:a0:f3:94:5f:95:25:
8d:69:8d:de:96:9a:09:b1:5b:a7:7a:72:ef:fd:25:4a:69:ea:
69:93:46:14:81:97:e4:d4:12:d6:23:e9:d6:2c:77:2f:b3:c2:
e6:15:3f:2d:61:da:6e:9c:24:9c:9d:3d:23:26:ea:67:e9:0d:
71:d9:3e:1c:e5:7e:16:24:8b:0f:4c:4e:cb:53:7f:61:ce:9f:
bb:7d:71:f3:75:95:3d:e4:97:1f:1b:24:72:e2:39:bb:39:f7:
87:0f:c5:a6:2e:df:a1:24:c0:ea:ba:e4:c9:95:72:45:8f:46:
92:a3:a7:36:87:2d:0d:e2:89:ad:0e:1c:e8:b3:54:ff:f7:9b:
c1:bb:9f:07:41:f9:a4:2b:a8:c8:26:8b:d0:47:cb:83:88:bc:
d2:33:c5:3e:0b:2e:29:4a:5e:e1:e3:63:28:52:dd:83:45:17:
d0:98:a2:49:87:71:83:30:80:0d:d1:a4:eb:ff:52:3b:7b:7a:
e2:96:46:37:6b:e6:06:84:bb:a6:c6:ad:4d:8c:e6:42:02:a7:
e1:92:ec:73:11:ed:3f:9e:e7:bf:46:10:70:a9:27:bf:ec:a4:
e3:08:1c:b4
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAYklVYvPF2rQ9JJyVMc/eXGfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3ZTJjZTMxMDk0ODBhZWU3YjNmZDI4NDZlYzhmODY0Njg4
NWNkYmEwHhcNMjMwNzA1MDkxNTEwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZWRkNTA0NTRjOTExZWViNjVhMjVmM2M2OGVlZGMxMTk3NWE5MWNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi9Hwk4AOXSsOrR2XgmdG1qkQlZ2x
XIzh+ZagT5NQp6uy9RRSOHkC7YMd6rkgA+5ythhS5hE7FZj3PcuXZ5tRITxO55Na
6WOEkpalZzdFxcarYTVN/UF6CEz9q8sktM/q2eR/NxkbxbQcnMvrevZeJJkhyePB
zFXyAA7R2MJsARGAY52rHbMTJ+Y7ttftqyUa8Gz5a4uttGVNgzOzdFgt3O7hHJ7u
g1mqF5DPQmm/0fPF+gAeMZiVxP9sGRIveswUnf/gapjwcStQ5Ja+RHpIsdCnQEFQ
T0mYJQh/EC4EvD75DfAbBBTgLcFyIkTNdkFxX3hREOPzjgocW9SLiK8RrwIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFG7dUEVMkR7rZaJfPGju3BGXWpHMMB8GA1UdIwQY
MBaAFKfizjEJSAruez/ShG7I+GRohc26MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcC1MT01RbElDdTU3UDlLRWJzajRaR2lGemJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9iNjFhZGQtMzJmMC00MmY0LWEzMDEt
NzgxOGE4OTQ1NmNiLzEvYnQxUVJVeVJIdXRsb2w4OGFPN2NFWmRha2N3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi9iNjFhZGQtMzJmMC00MmY0LWEzMDEtNzgxOGE4OTQ1NmNi
LzEvcC1MT01RbElDdTU3UDlLRWJzajRaR2lGemJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQDJSA4AwQD
shYAAwQCuQPEAwQCwKbMAwQCwrR0MA0GCSqGSIb3DQEBCwUAA4IBAQCQtSHNApGS
lhUDYTNkMXBogKUi2BvQQ5k8zH0lajig85RflSWNaY3elpoJsVunenLv/SVKaepp
k0YUgZfk1BLWI+nWLHcvs8LmFT8tYdpunCScnT0jJupn6Q1x2T4c5X4WJIsPTE7L
U39hzp+7fXHzdZU95JcfGyRy4jm7OfeHD8WmLt+hJMDquuTJlXJFj0aSo6c2hy0N
4omtDhzos1T/95vBu58HQfmkK6jIJovQR8uDiLzSM8U+Cy4pSl7h42MoUt2DRRfQ
mKJJh3GDMIAN0aTr/1I7e3rilkY3a+YGhLumxq1NjOZCAqfhkuxzEe0/nue/RhBw
qSe/7KTjCBy0
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:23 2024 by rpki-client on console-ams.rpki-client.org