Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/v6DRkru_tup8ZY3jP2G0Dx1MyZA.roa
File: v6DRkru_tup8ZY3jP2G0Dx1MyZA.roa (raw, json)
Hash identifier: amxHxNFiI2QwL+KP0RzcdOPya32ER1sTfvn0bPLKnPM=
Subject key identifier: BF:A0:D1:92:BB:BF:B6:EA:7C:65:8D:E3:3F:61:B4:0F:1D:4C:C9:90
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 018D3FE7CA751351577AB384035A5B9D82E4
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/v6DRkru_tup8ZY3jP2G0Dx1MyZA.roa
Signing time: Thu 25 Jan 2024 09:16:11 +0000
ROA not before: Thu 25 Jan 2024 09:16:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3352
IP address blocks: 2.136.0.0/16 maxlen: 16
2.137.0.0/16 maxlen: 16
2.138.0.0/16 maxlen: 16
79.144.0.0/16 maxlen: 16
79.145.0.0/16 maxlen: 16
79.146.0.0/16 maxlen: 16
79.147.0.0/16 maxlen: 16
80.30.0.0/16 maxlen: 16
80.31.0.0/16 maxlen: 16
81.32.0.0/16 maxlen: 16
81.34.0.0/16 maxlen: 16
81.35.0.0/16 maxlen: 16
81.36.0.0/16 maxlen: 16
81.37.0.0/16 maxlen: 16
81.38.0.0/16 maxlen: 16
81.39.0.0/16 maxlen: 16
81.40.0.0/16 maxlen: 16
81.41.0.0/16 maxlen: 16
81.42.0.0/16 maxlen: 16
81.43.0.0/16 maxlen: 16
83.32.0.0/16 maxlen: 16
83.33.0.0/16 maxlen: 16
83.34.0.0/16 maxlen: 16
83.35.0.0/16 maxlen: 16
83.37.0.0/16 maxlen: 16
83.38.0.0/16 maxlen: 16
83.39.0.0/16 maxlen: 16
83.47.0.0/16 maxlen: 16
83.52.0.0/16 maxlen: 16
83.53.0.0/16 maxlen: 16
83.54.0.0/16 maxlen: 16
83.55.0.0/16 maxlen: 16
83.57.0.0/16 maxlen: 16
83.58.0.0/16 maxlen: 16
83.59.0.0/16 maxlen: 16
83.60.0.0/16 maxlen: 16
83.63.0.0/16 maxlen: 16
88.0.0.0/16 maxlen: 16
88.1.0.0/16 maxlen: 16
88.8.0.0/16 maxlen: 16
88.9.0.0/16 maxlen: 16
88.10.0.0/16 maxlen: 16
88.11.0.0/16 maxlen: 16
88.13.0.0/16 maxlen: 16
88.14.0.0/16 maxlen: 16
88.15.0.0/16 maxlen: 16
88.16.0.0/16 maxlen: 16
88.24.0.0/16 maxlen: 16
88.25.0.0/16 maxlen: 16
88.30.0.0/16 maxlen: 16
192.101.1.0/24 maxlen: 24
194.179.112.0/24 maxlen: 24
195.53.0.0/16 maxlen: 16
195.53.193.0/24 maxlen: 24
195.53.218.0/23 maxlen: 23
195.55.110.0/24 maxlen: 24
213.99.44.0/24 maxlen: 24
213.99.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 Jan 2024 12:02:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:3f:e7:ca:75:13:51:57:7a:b3:84:03:5a:5b:9d:82:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Jan 25 09:16:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bfa0d192bbbfb6ea7c658de33f61b40f1d4cc990
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7e:df:5b:9f:e8:79:ed:a2:72:8b:93:2f:fe:
b8:e4:a8:0a:89:49:7d:47:25:da:04:cc:04:58:eb:
2c:08:8c:ff:32:a3:3f:f9:30:f1:bc:25:ec:50:7a:
6c:2f:28:84:5f:ea:67:ab:aa:22:67:e6:d7:98:aa:
c2:4c:0a:fa:ba:f6:a0:4f:94:8e:05:6a:5d:75:86:
e8:a3:74:29:f5:0a:9b:43:38:0a:f8:6c:84:5f:40:
2b:72:55:a1:5d:cc:9a:13:d5:15:78:61:78:b1:ca:
b0:52:c5:ff:15:55:d0:3c:bf:42:3d:12:45:76:21:
d2:d2:84:f2:e9:d3:ed:de:51:b7:13:3d:45:c0:aa:
7b:6c:ac:94:e7:24:b6:ea:f2:19:2c:64:f2:cb:6b:
80:49:e8:17:a6:8d:e8:2b:1b:dd:02:9a:51:ec:8a:
40:4b:83:21:b7:6e:0d:62:1d:24:80:7a:75:e1:58:
fb:1b:0d:ea:c1:86:02:16:5b:0f:dc:95:08:d7:4d:
65:d2:41:2e:ef:a5:d0:bd:b6:94:96:96:7e:c6:08:
1d:b1:b9:8b:a3:9a:1b:b8:cd:36:50:b9:cd:b5:6c:
12:40:60:3a:25:3a:b9:5a:87:c1:e4:28:db:53:05:
22:94:88:c3:e8:5e:37:11:82:30:22:18:0a:68:34:
a5:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:A0:D1:92:BB:BF:B6:EA:7C:65:8D:E3:3F:61:B4:0F:1D:4C:C9:90
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/v6DRkru_tup8ZY3jP2G0Dx1MyZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.136.0.0-2.138.255.255
79.144.0.0/14
80.30.0.0/15
81.32.0.0/16
81.34.0.0-81.43.255.255
83.32.0.0/14
83.37.0.0-83.39.255.255
83.47.0.0/16
83.52.0.0/14
83.57.0.0-83.60.255.255
83.63.0.0/16
88.0.0.0/15
88.8.0.0/14
88.13.0.0-88.16.255.255
88.24.0.0/15
88.30.0.0/16
192.101.1.0/24
194.179.112.0/24
195.53.0.0/16
195.55.110.0/24
213.99.44.0/24
213.99.59.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:ab:5b:59:72:7b:5c:71:3a:25:53:61:93:45:69:5b:84:9c:
1b:dc:04:53:97:3c:c7:e8:f7:41:6d:6a:70:25:17:dc:cb:15:
22:77:c6:83:b4:e8:d1:60:2e:83:7a:7d:5a:42:4e:87:76:da:
7c:30:cc:12:b8:d6:48:72:8f:66:79:15:5a:39:21:55:d0:05:
0e:eb:fe:de:fc:d5:5e:50:19:e5:58:e4:3e:3f:44:eb:9d:d4:
3d:6f:db:5c:3e:a7:ba:ff:17:3f:00:c8:4f:f1:68:32:4b:ea:
0f:66:88:e9:95:7b:e7:54:cb:c1:36:21:c2:ae:88:26:4b:7e:
f1:16:97:ef:bc:a1:f7:e8:c8:30:ed:41:11:0c:4c:d5:54:fb:
15:08:10:99:f4:70:be:1a:28:19:31:5d:b5:6e:5f:b0:25:40:
34:41:19:52:2d:2d:1d:91:cc:97:f2:eb:37:13:35:0a:df:57:
ca:58:b5:fc:ec:a0:82:ee:57:3a:ee:a0:76:82:19:bb:ca:22:
37:e7:e2:60:47:55:4f:f6:e3:ac:98:be:e8:9d:e3:a2:c1:a9:
16:ef:d3:95:01:74:98:ce:02:9c:8a:a2:e6:64:1d:3a:e0:d8:
ff:06:a7:78:9a:0a:e5:17:b8:20:db:48:26:41:a9:9b:f2:aa:
ce:cb:82:35
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgISAY0/58p1E1FXerOEA1pbnYLkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwN2Y1ZmUyNzQwYTJiNmRlNGMzNzA5ZDI5NjQxMTViM2M5
NjdkYTEwHhcNMjQwMTI1MDkxNjExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZmEwZDE5MmJiYmZiNmVhN2M2NThkZTMzZjYxYjQwZjFkNGNjOTkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt37fW5/oee2icouTL/645KgKiUl9
RyXaBMwEWOssCIz/MqM/+TDxvCXsUHpsLyiEX+pnq6oiZ+bXmKrCTAr6uvagT5SO
BWpddYboo3Qp9QqbQzgK+GyEX0ArclWhXcyaE9UVeGF4scqwUsX/FVXQPL9CPRJF
diHS0oTy6dPt3lG3Ez1FwKp7bKyU5yS26vIZLGTyy2uASegXpo3oKxvdAppR7IpA
S4Mht24NYh0kgHp14Vj7Gw3qwYYCFlsP3JUI101l0kEu76XQvbaUlpZ+xggdsbmL
o5obuM02ULnNtWwSQGA6JTq5WofB5CjbUwUilIjD6F43EYIwIhgKaDSlqQIDAQAB
o4ICnjCCApowHQYDVR0OBBYEFL+g0ZK7v7bqfGWN4z9htA8dTMmQMB8GA1UdIwQY
MBaAFDB/X+J0Citt5MNwnSlkEVs8ln2hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQt
NGJhMmY4ZjFmODNiLzEvdjZEUmtydV90dXA4WlkzalAyRzBEeDFNeVpBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQtNGJhMmY4ZjFmODNi
LzEvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGzBggrBgEFBQcBBwEB/wSBozCBoDCBnQQCAAEwgZYwCgMD
AwKIAwMAAooDAwJPkAMDAVAeAwMAUSAwCgMDAVEiAwMCUSgDAwJTIDAKAwMAUyUD
AwNTIAMDAFMvAwMCUzQwCgMDAFM5AwMAUzwDAwBTPwMDAVgAAwMCWAgwCgMDAFgN
AwMAWBADAwFYGAMDAFgeAwQAwGUBAwQAwrNwAwMAwzUDBADDN24DBADVYywDBADV
YzswDQYJKoZIhvcNAQELBQADggEBAG2rW1lye1xxOiVTYZNFaVuEnBvcBFOXPMfo
90FtanAlF9zLFSJ3xoO06NFgLoN6fVpCTod22nwwzBK41khyj2Z5FVo5IVXQBQ7r
/t781V5QGeVY5D4/ROud1D1v21w+p7r/Fz8AyE/xaDJL6g9miOmVe+dUy8E2IcKu
iCZLfvEWl++8offoyDDtQREMTNVU+xUIEJn0cL4aKBkxXbVuX7AlQDRBGVItLR2R
zJfy6zcTNQrfV8pYtfzsoILuVzruoHaCGbvKIjfn4mBHVU/246yYvuid46LBqRbv
05UBdJjOApyKouZkHTrg2P8Gp3iaCuUXuCDbSCZBqZvyqs7LgjU=
-----END CERTIFICATE-----
Generated at Thu Jan 25 14:57:32 2024 by rpki-client on console-fra.rpki-client.org