Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/72MyR1PABl7_BtOoIMtJeIcFQeQ.roa
File: 72MyR1PABl7_BtOoIMtJeIcFQeQ.roa (raw, json)
Hash identifier: GTH0/PFxyIZBSrQ4oQTDGXkpcxBO7kDh3BcnERYmhxs=
Subject key identifier: EF:63:32:47:53:C0:06:5E:FF:06:D3:A8:20:CB:49:78:87:05:41:E4
Certificate issuer: /CN=5cf4501b755002d9143e8fa6736815e9f0f93695
Certificate serial: 0190069964830E9B19646067EC66F0C8BAEB
Authority key identifier: 5C:F4:50:1B:75:50:02:D9:14:3E:8F:A6:73:68:15:E9:F0:F9:36:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPRQG3VQAtkUPo-mc2gV6fD5NpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/72MyR1PABl7_BtOoIMtJeIcFQeQ.roa
Signing time: Tue 11 Jun 2024 09:20:34 +0000
ROA not before: Tue 11 Jun 2024 09:20:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13037
IP address blocks: 51.148.0.0/16 maxlen: 16
51.155.0.0/16 maxlen: 16
62.3.64.0/18 maxlen: 18
77.104.128.0/18 maxlen: 18
82.68.0.0/15 maxlen: 15
82.71.0.0/16 maxlen: 16
82.71.240.0/20 maxlen: 20
88.97.0.0/18 maxlen: 18
88.97.64.0/19 maxlen: 19
88.97.96.0/20 maxlen: 20
88.97.160.0/23 maxlen: 23
88.97.162.0/23 maxlen: 23
88.97.164.0/23 maxlen: 23
88.97.166.0/23 maxlen: 23
88.97.168.0/24 maxlen: 24
88.97.169.0/24 maxlen: 24
88.97.170.0/24 maxlen: 24
88.97.171.0/24 maxlen: 24
88.97.172.0/24 maxlen: 24
88.97.173.0/24 maxlen: 24
88.97.174.0/24 maxlen: 24
88.97.175.0/24 maxlen: 24
88.97.176.0/20 maxlen: 20
88.98.0.0/20 maxlen: 20
88.98.16.0/23 maxlen: 23
88.98.18.0/24 maxlen: 24
88.98.21.0/24 maxlen: 24
88.98.22.0/23 maxlen: 23
88.98.24.0/21 maxlen: 21
88.98.32.0/19 maxlen: 19
88.98.64.0/19 maxlen: 19
88.98.128.0/19 maxlen: 19
88.98.160.0/21 maxlen: 21
88.98.170.0/23 maxlen: 23
88.98.172.0/22 maxlen: 22
88.98.176.0/20 maxlen: 20
146.66.64.0/18 maxlen: 18
212.23.0.0/19 maxlen: 19
217.155.0.0/16 maxlen: 16
2a02:8010::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 19 Jun 2024 15:18:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:06:99:64:83:0e:9b:19:64:60:67:ec:66:f0:c8:ba:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf4501b755002d9143e8fa6736815e9f0f93695
Validity
Not Before: Jun 11 09:20:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef63324753c0065eff06d3a820cb4978870541e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:49:d0:00:98:c6:ea:db:10:71:9a:b6:d0:63:
85:f5:72:c9:22:ae:41:d7:5e:9b:ed:05:54:e4:24:
f2:33:7d:52:11:7a:60:e4:37:6f:24:a6:c1:0e:7e:
9c:1a:66:6c:55:aa:a5:cd:02:38:e3:d3:d6:97:e9:
e7:d6:4a:c4:07:60:20:98:be:bf:fe:68:f5:a2:9a:
04:6e:62:5a:4c:04:ff:76:2c:37:b4:0d:90:2a:8e:
dd:10:a1:61:5c:ef:7f:cf:f1:bb:00:8e:d3:97:bd:
62:03:b4:e6:ec:06:97:1a:77:5a:bd:38:66:f8:e0:
0f:09:39:03:56:b1:0b:db:02:74:80:fa:80:8b:19:
e4:2c:ea:a9:1f:9c:7c:cb:b5:cc:2d:eb:1b:3c:bd:
6a:3c:9d:23:b8:dc:7c:a4:42:93:4c:0e:11:35:5a:
e9:97:ec:e9:b8:ab:75:5a:4c:cd:6b:c1:43:a4:e6:
ef:cd:05:cb:e8:b5:42:17:6a:42:3e:3e:82:de:06:
00:03:af:ab:39:48:f2:b7:84:30:e7:09:08:32:4b:
54:7a:45:d5:1f:db:de:50:e2:8c:09:f7:09:df:b9:
35:40:d4:c4:f2:ca:d5:52:6b:66:27:64:c3:5e:28:
fe:c2:40:85:83:52:8c:b6:80:fb:dd:02:ba:6b:3c:
c2:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:63:32:47:53:C0:06:5E:FF:06:D3:A8:20:CB:49:78:87:05:41:E4
X509v3 Authority Key Identifier:
keyid:5C:F4:50:1B:75:50:02:D9:14:3E:8F:A6:73:68:15:E9:F0:F9:36:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPRQG3VQAtkUPo-mc2gV6fD5NpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/72MyR1PABl7_BtOoIMtJeIcFQeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/XPRQG3VQAtkUPo-mc2gV6fD5NpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.148.0.0/16
51.155.0.0/16
62.3.64.0/18
77.104.128.0/18
82.68.0.0/15
82.71.0.0/16
88.97.0.0-88.97.111.255
88.97.160.0/19
88.98.0.0-88.98.18.255
88.98.21.0-88.98.95.255
88.98.128.0-88.98.167.255
88.98.170.0-88.98.191.255
146.66.64.0/18
212.23.0.0/19
217.155.0.0/16
IPv6:
2a02:8010::/29
Signature Algorithm: sha256WithRSAEncryption
a1:c0:35:d2:80:b5:8c:02:94:76:fb:f2:36:fa:9a:56:35:4d:
4d:71:42:c7:fb:f0:6a:65:f1:ad:e8:83:38:b7:bb:ec:fd:a8:
36:28:62:5a:6f:ec:3c:52:f1:41:98:5f:6e:14:e9:42:7a:0a:
5b:de:6d:15:6e:b8:ab:69:3b:e7:1b:4d:9a:db:f6:83:b9:58:
76:76:c3:07:58:27:f0:c2:51:df:ee:fe:2b:bf:eb:61:be:d8:
d2:aa:1f:8e:a0:7c:22:bc:8e:d1:4d:8e:29:2c:8c:e8:65:5e:
70:76:61:a0:95:db:e5:4f:28:51:c5:e1:8c:aa:68:94:ba:94:
91:48:f2:08:ce:38:ce:c7:2e:9d:52:7e:9d:40:2c:14:91:97:
da:34:a8:66:ac:5d:28:21:aa:e6:c0:41:2e:97:5f:8d:a2:59:
a3:56:79:c5:8a:6f:69:ae:2f:db:b4:3f:c6:cc:99:43:36:6a:
d7:97:c0:4e:87:a3:1f:c6:dc:05:06:4d:19:91:be:7c:1b:ec:
78:b8:91:f1:69:38:8a:f5:65:8b:6e:48:32:17:e6:1f:40:c9:
09:db:45:e7:3e:1d:31:58:ee:bb:5b:14:ed:e7:95:25:86:bb:
4a:f6:d0:02:23:95:80:8f:77:d5:c8:7f:3c:21:a8:d4:77:6e:
15:aa:b8:52
-----BEGIN CERTIFICATE-----
MIIFhTCCBG2gAwIBAgISAZAGmWSDDpsZZGBn7GbwyLrrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjZjQ1MDFiNzU1MDAyZDkxNDNlOGZhNjczNjgxNWU5ZjBm
OTM2OTUwHhcNMjQwNjExMDkyMDM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjYzMzI0NzUzYzAwNjVlZmYwNmQzYTgyMGNiNDk3ODg3MDU0MWU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzUnQAJjG6tsQcZq20GOF9XLJIq5B
116b7QVU5CTyM31SEXpg5DdvJKbBDn6cGmZsVaqlzQI449PWl+nn1krEB2AgmL6/
/mj1opoEbmJaTAT/diw3tA2QKo7dEKFhXO9/z/G7AI7Tl71iA7Tm7AaXGndavThm
+OAPCTkDVrEL2wJ0gPqAixnkLOqpH5x8y7XMLesbPL1qPJ0juNx8pEKTTA4RNVrp
l+zpuKt1WkzNa8FDpObvzQXL6LVCF2pCPj6C3gYAA6+rOUjyt4Qw5wkIMktUekXV
H9veUOKMCfcJ37k1QNTE8srVUmtmJ2TDXij+wkCFg1KMtoD73QK6azzCvwIDAQAB
o4ICkTCCAo0wHQYDVR0OBBYEFO9jMkdTwAZe/wbTqCDLSXiHBUHkMB8GA1UdIwQY
MBaAFFz0UBt1UALZFD6PpnNoFenw+TaVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFBSUUczVlFBdGtVUG8tbWMyZ1Y2ZkQ1TnBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9jMWNhMDctOTY1OC00NDQ2LThjYjUt
NjBjZjlhYjFiMTNlLzEvNzJNeVIxUEFCbDdfQnRPb0lNdEplSWNGUWVRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi9jMWNhMDctOTY1OC00NDQ2LThjYjUtNjBjZjlhYjFiMTNl
LzEvWFBSUUczVlFBdGtVUG8tbWMyZ1Y2ZkQ1TnBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGmBggrBgEFBQcBBwEB/wSBljCBkzCBgQQCAAEwewMDADOU
AwMAM5sDBAY+A0ADBAZNaIADAwFSRAMDAFJHMAsDAwBYYQMEBFhhYAMEBVhhoDAL
AwMBWGIDBABYYhIwDAMEAFhiFQMEBVhiQDAMAwQHWGKAAwQDWGKgMAwDBAFYYqoD
BAZYYoADBAaSQkADBAXUFwADAwDZmzANBAIAAjAHAwUDKgKAEDANBgkqhkiG9w0B
AQsFAAOCAQEAocA10oC1jAKUdvvyNvqaVjVNTXFCx/vwamXxreiDOLe77P2oNihi
Wm/sPFLxQZhfbhTpQnoKW95tFW64q2k75xtNmtv2g7lYdnbDB1gn8MJR3+7+K7/r
Yb7Y0qofjqB8IryO0U2OKSyM6GVecHZhoJXb5U8oUcXhjKpolLqUkUjyCM44zscu
nVJ+nUAsFJGX2jSoZqxdKCGq5sBBLpdfjaJZo1Z5xYpvaa4v27Q/xsyZQzZq15fA
ToejH8bcBQZNGZG+fBvseLiR8Wk4ivVli25IMhfmH0DJCdtF5z4dMVjuu1sU7eeV
JYa7SvbQAiOVgI931ch/PCGo1HduFaq4Ug==
-----END CERTIFICATE-----
Generated at Wed Jun 19 18:14:32 2024 by rpki-client on console-fra.rpki-client.org