Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/RR5d6vBWxSYYwt8wA5nFwwsODqw.roa
File: RR5d6vBWxSYYwt8wA5nFwwsODqw.roa (raw, json)
Hash identifier: wccRukZCv2iPwINkEfVJYRoNIynUPuVGCg/D81Dhc9w=
Subject key identifier: 45:1E:5D:EA:F0:56:C5:26:18:C2:DF:30:03:99:C5:C3:0B:0E:0E:AC
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018F62EEA25E7EB311B5342EC549B5341AB5
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/RR5d6vBWxSYYwt8wA5nFwwsODqw.roa
Signing time: Fri 10 May 2024 14:35:57 +0000
ROA not before: Fri 10 May 2024 14:35:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5511
IP address blocks: 37.46.149.0/24 maxlen: 24
45.83.29.0/24 maxlen: 24
45.88.20.0/24 maxlen: 24
45.88.22.0/24 maxlen: 24
45.89.36.0/24 maxlen: 24
45.89.38.0/24 maxlen: 24
45.92.2.0/24 maxlen: 24
45.134.138.0/24 maxlen: 24
45.143.54.0/24 maxlen: 24
45.145.46.0/24 maxlen: 24
45.146.187.0/24 maxlen: 24
87.247.148.0/22 maxlen: 24
89.31.216.0/24 maxlen: 24
91.190.96.0/24 maxlen: 24
91.190.99.0/24 maxlen: 24
91.190.104.0/24 maxlen: 24
91.217.236.0/24 maxlen: 24
91.217.250.0/24 maxlen: 24
185.184.135.0/24 maxlen: 24
185.205.189.0/24 maxlen: 24
185.239.241.0/24 maxlen: 24
185.244.137.0/24 maxlen: 24
185.245.5.0/24 maxlen: 24
185.245.7.0/24 maxlen: 24
188.240.75.0/24 maxlen: 24
193.84.132.0/24 maxlen: 24
193.218.32.0/24 maxlen: 24
217.74.16.0/24 maxlen: 24
2a0b:64c1::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 01 Jun 2024 14:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:62:ee:a2:5e:7e:b3:11:b5:34:2e:c5:49:b5:34:1a:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: May 10 14:35:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=451e5deaf056c52618c2df300399c5c30b0e0eac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:5c:10:36:2a:16:57:a2:4b:a5:2a:9b:47:48:
af:a9:49:a7:99:18:ad:71:d1:ef:6e:ef:c3:d9:c9:
7c:bf:43:55:fe:1f:50:4e:d6:47:91:70:68:14:d2:
85:b3:7e:1c:e5:31:44:b7:c6:8f:08:07:ae:9f:91:
9d:07:39:7c:3c:8c:e6:13:2f:a9:6e:7a:30:07:8f:
7b:f8:37:7b:a4:89:f0:89:75:09:86:4f:69:04:f4:
70:fe:eb:70:3a:47:50:f9:36:b4:b6:3d:0a:d4:80:
fd:20:29:6e:0a:48:5a:8f:c2:78:02:2e:d1:40:bd:
31:c3:be:ed:5f:59:1a:7d:dc:cc:ce:a9:3a:68:58:
d8:f9:80:24:69:dc:4a:9e:32:58:12:7f:88:78:87:
4d:85:37:e5:78:45:59:20:01:91:04:13:6f:bb:d7:
b6:2b:44:00:69:bc:18:e2:52:e4:20:cf:94:da:e3:
6b:5c:1f:49:f1:7b:c0:a6:73:a7:f3:4f:a2:12:03:
03:b4:f1:df:83:03:8c:e6:32:8e:b1:e4:0d:10:da:
2e:ba:51:42:61:76:55:01:86:5d:11:e1:07:1b:1e:
1d:8c:ca:b9:24:13:9e:4c:e7:c5:7a:c6:b8:f0:29:
23:ba:0f:c1:1f:c4:8b:26:e5:d0:59:ce:af:c7:48:
dc:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:1E:5D:EA:F0:56:C5:26:18:C2:DF:30:03:99:C5:C3:0B:0E:0E:AC
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/RR5d6vBWxSYYwt8wA5nFwwsODqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.46.149.0/24
45.83.29.0/24
45.88.20.0/24
45.88.22.0/24
45.89.36.0/24
45.89.38.0/24
45.92.2.0/24
45.134.138.0/24
45.143.54.0/24
45.145.46.0/24
45.146.187.0/24
87.247.148.0/22
89.31.216.0/24
91.190.96.0/24
91.190.99.0/24
91.190.104.0/24
91.217.236.0/24
91.217.250.0/24
185.184.135.0/24
185.205.189.0/24
185.239.241.0/24
185.244.137.0/24
185.245.5.0/24
185.245.7.0/24
188.240.75.0/24
193.84.132.0/24
193.218.32.0/24
217.74.16.0/24
IPv6:
2a0b:64c1::/32
Signature Algorithm: sha256WithRSAEncryption
3f:42:66:47:d8:a7:78:de:65:82:f4:0e:ea:da:44:db:39:68:
04:1b:d0:d6:18:9a:f3:67:6d:b4:66:58:cf:0f:ed:b7:5a:86:
95:4c:12:0f:3e:96:b6:3c:52:b7:e0:f7:eb:d3:e8:4f:74:b3:
b9:36:ab:6f:b7:f0:1a:09:d9:5f:16:57:b5:fc:ad:1a:fb:3d:
2a:77:fd:2c:30:41:af:53:13:a4:ac:11:0a:ee:27:1d:b1:c1:
45:8b:90:86:50:97:cf:a6:82:43:21:54:d8:07:6c:58:93:6c:
53:99:76:b4:9e:a3:ef:55:60:f1:10:f7:b5:3f:92:1f:f9:0f:
fa:e7:ae:e7:c2:84:c0:24:96:52:95:86:31:c8:ff:c1:7c:37:
9d:2c:e6:7e:60:dd:e0:a2:9b:13:6c:6b:f4:1e:95:c6:26:d7:
53:4f:86:b0:a7:d1:a6:ac:2c:f5:48:4b:82:16:16:38:e3:0a:
b3:2c:2c:d3:8b:21:a5:2a:8c:a3:4a:cb:f2:36:16:fa:42:0b:
8d:d8:0f:fa:2d:bd:44:60:d8:ce:33:13:e0:25:e5:4e:c8:6c:
db:73:04:ba:2b:68:8d:8e:2f:19:6d:0f:73:5d:da:3a:62:27:
d0:ae:d4:b8:09:8c:81:b9:a7:9e:e6:e6:d9:f6:db:a3:59:dd:
0f:32:94:47
-----BEGIN CERTIFICATE-----
MIIFszCCBJugAwIBAgISAY9i7qJefrMRtTQuxUm1NBq1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2YzJhNGI3ZDVkNzNjNWI1NzA0NjIyM2JmMzBlYjY1MzAw
NWIwZTIwHhcNMjQwNTEwMTQzNTU3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NTFlNWRlYWYwNTZjNTI2MThjMmRmMzAwMzk5YzVjMzBiMGUwZWFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoFwQNioWV6JLpSqbR0ivqUmnmRit
cdHvbu/D2cl8v0NV/h9QTtZHkXBoFNKFs34c5TFEt8aPCAeun5GdBzl8PIzmEy+p
bnowB497+Dd7pInwiXUJhk9pBPRw/utwOkdQ+Ta0tj0K1ID9ICluCkhaj8J4Ai7R
QL0xw77tX1kafdzMzqk6aFjY+YAkadxKnjJYEn+IeIdNhTfleEVZIAGRBBNvu9e2
K0QAabwY4lLkIM+U2uNrXB9J8XvApnOn80+iEgMDtPHfgwOM5jKOseQNENouulFC
YXZVAYZdEeEHGx4djMq5JBOeTOfFesa48Ckjug/BH8SLJuXQWc6vx0jczwIDAQAB
o4ICvzCCArswHQYDVR0OBBYEFEUeXerwVsUmGMLfMAOZxcMLDg6sMB8GA1UdIwQY
MBaAFDbCpLfV1zxbVwRiI78w62UwBbDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGIt
MmNjZWRiOTY2YTU4LzEvUlI1ZDZ2Qld4U1lZd3Q4d0E1bkZ3d3NPRHF3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGItMmNjZWRiOTY2YTU4
LzEvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHUBggrBgEFBQcBBwEB/wSBxDCBwTCBrwQCAAEwgagDBAAl
LpUDBAAtUx0DBAAtWBQDBAAtWBYDBAAtWSQDBAAtWSYDBAAtXAIDBAAthooDBAAt
jzYDBAAtkS4DBAAtkrsDBAJX95QDBABZH9gDBABbvmADBABbvmMDBABbvmgDBABb
2ewDBABb2foDBAC5uIcDBAC5zb0DBAC57/EDBAC59IkDBAC59QUDBAC59QcDBAC8
8EsDBADBVIQDBADB2iADBADZShAwDQQCAAIwBwMFACoLZMEwDQYJKoZIhvcNAQEL
BQADggEBAD9CZkfYp3jeZYL0DuraRNs5aAQb0NYYmvNnbbRmWM8P7bdahpVMEg8+
lrY8Urfg9+vT6E90s7k2q2+38BoJ2V8WV7X8rRr7PSp3/SwwQa9TE6SsEQruJx2x
wUWLkIZQl8+mgkMhVNgHbFiTbFOZdrSeo+9VYPEQ97U/kh/5D/rnrufChMAkllKV
hjHI/8F8N50s5n5g3eCimxNsa/QelcYm11NPhrCn0aasLPVIS4IWFjjjCrMsLNOL
IaUqjKNKy/I2FvpCC43YD/otvURg2M4zE+Al5U7IbNtzBLoraI2OLxltD3Nd2jpi
J9Cu1LgJjIG5p57m5tn226NZ3Q8ylEc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:46 2024 by rpki-client on console-fra.rpki-client.org