Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/X5MwzhU50hk2fKK7c0ty-jZQs60.roa
File: X5MwzhU50hk2fKK7c0ty-jZQs60.roa (raw, json)
Hash identifier: +OgTRTm1cJoWILBgX54b94z2oXco35ClDVK1lnzSMsg=
Subject key identifier: 5F:93:30:CE:15:39:D2:19:36:7C:A2:BB:73:4B:72:FA:36:50:B3:AD
Certificate issuer: /CN=6bc5de7d7255b7d58260c65a120b164ef10ef903
Certificate serial: 018C62BAEB4A115C08CC3C88E28CB408B4DC
Authority key identifier: 6B:C5:DE:7D:72:55:B7:D5:82:60:C6:5A:12:0B:16:4E:F1:0E:F9:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a8XefXJVt9WCYMZaEgsWTvEO-QM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/X5MwzhU50hk2fKK7c0ty-jZQs60.roa
Signing time: Wed 13 Dec 2023 10:31:06 +0000
ROA not before: Wed 13 Dec 2023 10:31:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198193
IP address blocks: 5.181.96.0/23 maxlen: 23
5.61.208.0/23 maxlen: 23
84.247.19.0/24 maxlen: 24
185.88.202.0/23 maxlen: 23
185.88.200.0/23 maxlen: 23
85.204.170.0/23 maxlen: 23
85.204.168.0/23 maxlen: 23
46.253.139.0/24 maxlen: 24
185.86.208.0/23 maxlen: 23
185.75.22.0/23 maxlen: 23
185.66.172.0/24 maxlen: 24
185.66.174.0/24 maxlen: 24
185.206.121.0/24 maxlen: 24
46.251.250.0/24 maxlen: 24
185.225.8.0/24 maxlen: 24
158.255.239.0/24 maxlen: 24
217.61.240.0/24 maxlen: 24
37.252.98.0/24 maxlen: 24
37.252.100.0/24 maxlen: 24
37.252.101.0/24 maxlen: 24
89.32.64.0/24 maxlen: 24
89.32.65.0/24 maxlen: 24
89.32.66.0/24 maxlen: 24
89.32.67.0/24 maxlen: 24
89.44.36.0/22 maxlen: 22
89.44.35.0/24 maxlen: 24
162.33.204.0/22 maxlen: 22
162.33.200.0/22 maxlen: 22
95.156.203.0/24 maxlen: 24
5.187.35.0/24 maxlen: 24
5.187.36.0/23 maxlen: 23
31.214.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:62:ba:eb:4a:11:5c:08:cc:3c:88:e2:8c:b4:08:b4:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bc5de7d7255b7d58260c65a120b164ef10ef903
Validity
Not Before: Dec 13 10:31:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f9330ce1539d219367ca2bb734b72fa3650b3ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:d5:c2:b4:26:b4:3c:65:b2:0c:9b:f8:0f:30:
22:32:05:d9:02:b6:31:ec:0d:f0:1e:a3:26:74:99:
1b:68:72:e7:b8:47:49:7d:2c:ff:92:a8:12:7c:04:
ae:9d:93:dd:93:29:36:0d:8d:71:a9:f4:d4:fc:db:
87:3f:dd:2a:18:c3:a9:e8:f5:a8:3d:c7:6f:09:b2:
9f:64:bf:8d:05:0f:35:40:74:33:5f:2a:0e:fd:a1:
31:40:b1:ae:3e:81:48:5e:e2:7a:de:c5:d5:93:a7:
cd:4a:14:35:92:1b:83:5c:37:62:4d:12:f0:b9:98:
78:52:72:4d:28:ba:ee:bf:32:be:45:3d:4a:83:00:
f0:60:53:ba:a7:1a:30:5a:95:38:54:58:23:6a:de:
c5:b5:41:d2:8b:c5:54:13:6f:87:88:fd:d7:8c:fc:
aa:8a:4c:2b:c1:bc:cb:72:83:27:4f:4c:67:70:99:
0e:05:3d:32:89:45:42:e7:c6:5e:9e:79:92:0f:38:
03:1a:97:64:cf:18:13:ff:a2:47:39:80:c5:1a:d8:
74:20:9d:b4:e8:a7:d6:03:2f:15:d9:96:2c:d2:12:
ed:40:a3:6b:e4:cd:08:60:0d:15:34:e2:68:f2:39:
2d:a5:ff:65:b5:b8:de:68:4e:91:50:33:44:51:50:
92:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:93:30:CE:15:39:D2:19:36:7C:A2:BB:73:4B:72:FA:36:50:B3:AD
X509v3 Authority Key Identifier:
keyid:6B:C5:DE:7D:72:55:B7:D5:82:60:C6:5A:12:0B:16:4E:F1:0E:F9:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8XefXJVt9WCYMZaEgsWTvEO-QM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/X5MwzhU50hk2fKK7c0ty-jZQs60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/a8XefXJVt9WCYMZaEgsWTvEO-QM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.61.208.0/23
5.181.96.0/23
5.187.35.0-5.187.37.255
31.214.155.0/24
37.252.98.0/24
37.252.100.0/23
46.251.250.0/24
46.253.139.0/24
84.247.19.0/24
85.204.168.0/22
89.32.64.0/22
89.44.35.0-89.44.39.255
95.156.203.0/24
158.255.239.0/24
162.33.200.0/21
185.66.172.0/24
185.66.174.0/24
185.75.22.0/23
185.86.208.0/23
185.88.200.0/22
185.206.121.0/24
185.225.8.0/24
217.61.240.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:fc:2f:f3:2d:6d:8d:68:a6:54:9d:50:78:b9:ce:b3:19:9f:
ee:f4:39:09:1a:fd:d5:38:82:60:11:08:6a:55:79:1c:12:3e:
2b:67:52:10:d5:fc:5d:7c:3b:84:e8:52:86:bf:02:b2:49:69:
c4:88:af:ed:b8:88:6f:9d:b3:45:7c:97:33:04:ae:be:52:0b:
67:f8:9c:34:3d:a0:b0:ea:79:24:12:df:b3:7d:0f:6f:22:a2:
07:6f:ff:59:4c:a3:d8:a7:ba:94:43:aa:74:9a:26:71:40:1e:
06:f8:30:ff:fb:d7:ae:64:83:aa:74:73:dc:2b:f3:05:1d:ec:
b0:25:4f:dc:5d:78:52:95:2d:cc:f3:73:4f:78:17:50:a6:8f:
57:4c:ff:74:ce:ba:81:b6:f6:b3:96:a8:6b:bd:12:d9:7c:8c:
fc:b8:0f:8d:13:c3:c2:06:c0:e1:2e:9c:70:8e:a6:aa:11:b1:
ce:ac:50:65:f2:47:34:4f:5d:1c:8b:e8:e2:f6:11:e2:2d:bc:
01:bc:06:55:73:c7:f8:16:72:41:25:a4:e2:d0:04:d8:93:d2:
82:e9:77:b9:17:ee:e1:39:ac:42:ed:e8:69:01:5c:97:42:b4:
97:ef:44:10:c9:26:2a:2d:e6:b3:ed:19:64:85:b1:6e:21:74:
bc:dd:80:05
-----BEGIN CERTIFICATE-----
MIIFljCCBH6gAwIBAgISAYxiuutKEVwIzDyI4oy0CLTcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiYzVkZTdkNzI1NWI3ZDU4MjYwYzY1YTEyMGIxNjRlZjEw
ZWY5MDMwHhcNMjMxMjEzMTAzMTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZjkzMzBjZTE1MzlkMjE5MzY3Y2EyYmI3MzRiNzJmYTM2NTBiM2FkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj9XCtCa0PGWyDJv4DzAiMgXZArYx
7A3wHqMmdJkbaHLnuEdJfSz/kqgSfASunZPdkyk2DY1xqfTU/NuHP90qGMOp6PWo
PcdvCbKfZL+NBQ81QHQzXyoO/aExQLGuPoFIXuJ63sXVk6fNShQ1khuDXDdiTRLw
uZh4UnJNKLruvzK+RT1KgwDwYFO6pxowWpU4VFgjat7FtUHSi8VUE2+HiP3XjPyq
ikwrwbzLcoMnT0xncJkOBT0yiUVC58ZennmSDzgDGpdkzxgT/6JHOYDFGth0IJ20
6KfWAy8V2ZYs0hLtQKNr5M0IYA0VNOJo8jktpf9ltbjeaE6RUDNEUVCSPQIDAQAB
o4ICojCCAp4wHQYDVR0OBBYEFF+TMM4VOdIZNnyiu3NLcvo2ULOtMB8GA1UdIwQY
MBaAFGvF3n1yVbfVgmDGWhILFk7xDvkDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYThYZWZYSlZ0OVdDWU1aYUVnc1dUdkVPLVFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8zMjEwOWUtMjRjOS00Yzg4LWE4ZTgt
ZmRmNjYzOGQyYzA0LzEvWDVNd3poVTUwaGsyZktLN2MwdHktalpRczYwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYi8zMjEwOWUtMjRjOS00Yzg4LWE4ZTgtZmRmNjYzOGQyYzA0
LzEvYThYZWZYSlZ0OVdDWU1aYUVnc1dUdkVPLVFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG3BggrBgEFBQcBBwEB/wSBpzCBpDCBoQQCAAEwgZoDBAEF
PdADBAEFtWAwDAMEAAW7IwMEAQW7JAMEAB/WmwMEACX8YgMEASX8ZAMEAC77+gME
AC79iwMEAFT3EwMEAlXMqAMEAlkgQDAMAwQAWSwjAwQDWSwgAwQAX5zLAwQAnv/v
AwQDoiHIAwQAuUKsAwQAuUKuAwQBuUsWAwQBuVbQAwQCuVjIAwQAuc55AwQAueEI
AwQA2T3wMA0GCSqGSIb3DQEBCwUAA4IBAQA6/C/zLW2NaKZUnVB4uc6zGZ/u9DkJ
Gv3VOIJgEQhqVXkcEj4rZ1IQ1fxdfDuE6FKGvwKySWnEiK/tuIhvnbNFfJczBK6+
Ugtn+Jw0PaCw6nkkEt+zfQ9vIqIHb/9ZTKPYp7qUQ6p0miZxQB4G+DD/+9euZIOq
dHPcK/MFHeywJU/cXXhSlS3M83NPeBdQpo9XTP90zrqBtvazlqhrvRLZfIz8uA+N
E8PCBsDhLpxwjqaqEbHOrFBl8kc0T10ci+ji9hHiLbwBvAZVc8f4FnJBJaTi0ATY
k9KC6Xe5F+7hOaxC7ehpAVyXQrSX70QQySYqLeaz7RlkhbFuIXS83YAF
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:54 2024 by rpki-client on console-ams.rpki-client.org