Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/ETPOyxCsot7RnfjV7klOXFmvWC0.roa
File: ETPOyxCsot7RnfjV7klOXFmvWC0.roa (raw, json)
Hash identifier: 5eMh5NXLd6kICKPMyLmjjdqLBCgYCSd5vfMhfXBmvrc=
Subject key identifier: 11:33:CE:CB:10:AC:A2:DE:D1:9D:F8:D5:EE:49:4E:5C:59:AF:58:2D
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 018CC6B92433A6E21371B6E246943884F1DF
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/ETPOyxCsot7RnfjV7klOXFmvWC0.roa
Signing time: Mon 01 Jan 2024 20:31:11 +0000
ROA not before: Mon 01 Jan 2024 20:31:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211559
IP address blocks: 31.11.48.0/21 maxlen: 21
80.76.166.0/24 maxlen: 24
80.76.165.0/24 maxlen: 24
80.76.167.0/24 maxlen: 24
80.76.168.0/23 maxlen: 23
80.76.166.0/23 maxlen: 23
37.186.60.0/22 maxlen: 22
37.186.60.0/24 maxlen: 24
103.225.73.0/24 maxlen: 24
103.225.72.0/24 maxlen: 24
212.70.104.0/24 maxlen: 24
212.70.105.0/24 maxlen: 24
212.70.101.0/24 maxlen: 24
212.70.100.0/24 maxlen: 24
212.70.103.0/24 maxlen: 24
212.70.102.0/24 maxlen: 24
103.14.208.0/22 maxlen: 22
212.70.123.0/24 maxlen: 24
212.70.120.0/24 maxlen: 24
212.70.124.0/24 maxlen: 24
185.247.88.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 29 Jan 2024 07:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:24:33:a6:e2:13:71:b6:e2:46:94:38:84:f1:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Jan 1 20:31:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1133cecb10aca2ded19df8d5ee494e5c59af582d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b7:e5:af:88:4f:a3:42:cf:17:70:88:78:3b:
8b:10:ba:8e:57:59:02:ef:39:df:49:a3:3a:9e:b9:
9e:2b:b0:cb:65:58:e1:40:49:36:11:f5:26:20:bc:
e9:b2:f1:a6:e7:76:86:5b:cb:ca:38:07:78:d1:7a:
72:67:68:bb:ae:b7:0b:28:74:71:58:9b:74:c0:04:
2a:6a:b7:03:ef:a7:19:8a:6f:de:d3:32:d4:fe:28:
51:97:d5:b3:15:a6:29:3d:98:c2:84:47:0f:31:c7:
6f:65:c7:c7:0b:27:e3:d8:1d:b0:3b:94:75:a3:a8:
d5:6f:d9:5c:4b:46:df:9a:88:f5:5b:a5:2c:42:51:
fc:2c:d9:bd:61:b5:3d:7e:bc:c1:68:7a:ec:aa:dc:
41:9b:54:45:f2:74:b5:b8:58:f7:30:a1:67:c1:ce:
e9:10:64:8e:eb:cf:80:2c:5a:54:fd:55:f6:95:3e:
e8:cc:ee:4a:8b:7e:33:64:fb:f0:09:24:d7:d8:8b:
b0:8f:db:01:54:89:4c:9b:71:ed:52:e4:f3:13:03:
cd:55:dd:41:e6:17:7f:a5:d4:97:d1:07:63:d1:fd:
09:8c:3d:71:0c:d3:57:ff:7f:14:74:5e:44:b5:8d:
b2:62:da:ea:68:03:2f:3c:b6:a7:10:f6:c5:c1:9c:
c4:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:33:CE:CB:10:AC:A2:DE:D1:9D:F8:D5:EE:49:4E:5C:59:AF:58:2D
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/ETPOyxCsot7RnfjV7klOXFmvWC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.48.0/21
37.186.60.0/22
80.76.165.0-80.76.169.255
103.14.208.0/22
103.225.72.0/23
185.247.88.0/22
212.70.100.0-212.70.105.255
212.70.120.0/24
212.70.123.0-212.70.124.255
Signature Algorithm: sha256WithRSAEncryption
ba:b6:81:79:00:0a:98:8c:cd:78:d5:35:ab:10:40:9a:b0:dc:
9d:ca:08:2c:26:32:51:9c:c5:96:bf:a3:46:fc:6c:23:d2:aa:
76:25:4a:b4:2e:2d:22:15:db:66:16:45:a1:6b:ef:7c:d0:0a:
68:a9:ea:3d:88:c4:c7:4d:d3:36:d1:97:ae:14:f4:44:a1:9d:
d8:c3:ae:17:b9:96:c4:ba:14:50:50:95:f5:4b:e8:a3:55:ad:
26:b3:74:7e:1c:65:c3:c0:0d:64:81:4b:e8:e5:ec:29:a9:6d:
09:74:59:d1:7e:17:3b:71:56:1c:e1:f1:53:59:0f:ec:52:36:
fa:9e:3b:68:b7:87:30:c7:ae:6e:11:fd:fb:51:37:41:39:4e:
ec:13:51:28:59:80:23:08:05:fa:4f:e6:85:70:ea:8e:28:9d:
7e:4b:4c:85:42:21:e6:be:37:b7:f3:b6:d1:82:90:9b:25:58:
c9:4b:0f:96:9c:39:0c:b7:c1:1d:de:14:47:3f:c8:1a:ac:94:
91:1d:e2:20:21:21:2d:ed:2c:12:21:4b:d1:cd:3f:5a:3d:8e:
b6:00:ac:3e:16:f6:a0:4b:50:83:83:02:71:f8:fa:d9:5f:27:
3d:9f:ff:92:4c:05:bd:68:63:42:74:79:73:95:9c:4e:16:54:
74:0e:aa:c0
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgISAYzGuSQzpuITcbbiRpQ4hPHfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0YTkzMDg3NDJlN2ViNjY1MDYyMTlkODI5ZDg2MTg1ODk5
YTFlMzQwHhcNMjQwMTAxMjAzMTExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMTMzY2VjYjEwYWNhMmRlZDE5ZGY4ZDVlZTQ5NGU1YzU5YWY1ODJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmbflr4hPo0LPF3CIeDuLELqOV1kC
7znfSaM6nrmeK7DLZVjhQEk2EfUmILzpsvGm53aGW8vKOAd40XpyZ2i7rrcLKHRx
WJt0wAQqarcD76cZim/e0zLU/ihRl9WzFaYpPZjChEcPMcdvZcfHCyfj2B2wO5R1
o6jVb9lcS0bfmoj1W6UsQlH8LNm9YbU9frzBaHrsqtxBm1RF8nS1uFj3MKFnwc7p
EGSO68+ALFpU/VX2lT7ozO5Ki34zZPvwCSTX2Iuwj9sBVIlMm3HtUuTzEwPNVd1B
5hd/pdSX0Qdj0f0JjD1xDNNX/38UdF5EtY2yYtrqaAMvPLanEPbFwZzEKQIDAQAB
o4ICUTCCAk0wHQYDVR0OBBYEFBEzzssQrKLe0Z341e5JTlxZr1gtMB8GA1UdIwQY
MBaAFOSpMIdC5+tmUGIZ2CnYYYWJmh40MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUtrd2gwTG42MlpRWWhuWUtkaGhoWW1hSGpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy8xYzlkYmItMDUyYy00ZWVhLWFkZTYt
ZWM1Yjg4ZDAxMzhhLzEvRVRQT3l4Q3NvdDdSbmZqVjdrbE9YRm12V0MwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy8xYzlkYmItMDUyYy00ZWVhLWFkZTYtZWM1Yjg4ZDAxMzhh
LzEvNUtrd2gwTG42MlpRWWhuWUtkaGhoWW1hSGpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGcGCCsGAQUFBwEHAQH/BFgwVjBUBAIAATBOAwQDHwswAwQC
Jbo8MAwDBABQTKUDBAFQTKgDBAJnDtADBAFn4UgDBAK591gwDAMEAtRGZAMEAdRG
aAMEANRGeDAMAwQA1EZ7AwQA1EZ8MA0GCSqGSIb3DQEBCwUAA4IBAQC6toF5AAqY
jM141TWrEECasNydyggsJjJRnMWWv6NG/Gwj0qp2JUq0Li0iFdtmFkWha+980Apo
qeo9iMTHTdM20ZeuFPREoZ3Yw64XuZbEuhRQUJX1S+ijVa0ms3R+HGXDwA1kgUvo
5ewpqW0JdFnRfhc7cVYc4fFTWQ/sUjb6njtot4cwx65uEf37UTdBOU7sE1EoWYAj
CAX6T+aFcOqOKJ1+S0yFQiHmvje387bRgpCbJVjJSw+WnDkMt8Ed3hRHP8garJSR
HeIgISEt7SwSIUvRzT9aPY62AKw+FvagS1CDgwJx+PrZXyc9n/+STAW9aGNCdHlz
lZxOFlR0DqrA
-----END CERTIFICATE-----
Generated at Mon Jan 29 11:11:28 2024 by rpki-client on console-ams.rpki-client.org