Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/98adc1-6ff8-4959-a344-db6ca6e4d4a3/1/tRu6cEYApBz48zn7e5NwNEk-iNY.roa
File: tRu6cEYApBz48zn7e5NwNEk-iNY.roa (raw, json)
Hash identifier: xKSCi+iJsA4akPyD10KGJfKqvzl8RfnIyVnBq4eAFok=
Subject key identifier: B5:1B:BA:70:46:00:A4:1C:F8:F3:39:FB:7B:93:70:34:49:3E:88:D6
Certificate issuer: /CN=5bb5f05f12b52076868eefcd14afcec192fe2cf2
Certificate serial: 01856E268A8F1539D7AC8ADF9E0586BA4243
Authority key identifier: 5B:B5:F0:5F:12:B5:20:76:86:8E:EF:CD:14:AF:CE:C1:92:FE:2C:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W7XwXxK1IHaGju_NFK_OwZL-LPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/98adc1-6ff8-4959-a344-db6ca6e4d4a3/1/tRu6cEYApBz48zn7e5NwNEk-iNY.roa
Signing time: Sun 01 Jan 2023 16:24:57 +0000
ROA not before: Sun 01 Jan 2023 16:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57869
IP address blocks: 185.36.70.0/23 maxlen: 23
185.36.68.0/23 maxlen: 23
185.36.68.0/22 maxlen: 22
5.154.228.0/23 maxlen: 23
5.154.168.0/23 maxlen: 23
5.154.250.0/23 maxlen: 23
5.154.248.0/23 maxlen: 23
5.154.248.0/22 maxlen: 22
82.118.0.0/20 maxlen: 20
82.118.0.0/22 maxlen: 22
82.118.4.0/22 maxlen: 22
82.118.3.0/24 maxlen: 24
82.118.2.0/24 maxlen: 24
82.118.11.0/24 maxlen: 24
82.118.10.0/24 maxlen: 24
82.118.9.0/24 maxlen: 24
82.118.8.0/24 maxlen: 24
82.118.7.0/24 maxlen: 24
82.118.8.0/22 maxlen: 22
82.118.6.0/24 maxlen: 24
82.118.5.0/24 maxlen: 24
82.118.14.0/23 maxlen: 23
82.118.12.0/23 maxlen: 23
213.91.96.0/22 maxlen: 22
213.91.104.0/22 maxlen: 22
213.91.100.0/22 maxlen: 22
213.91.108.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:8a:8f:15:39:d7:ac:8a:df:9e:05:86:ba:42:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bb5f05f12b52076868eefcd14afcec192fe2cf2
Validity
Not Before: Jan 1 16:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b51bba704600a41cf8f339fb7b937034493e88d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:2f:73:d5:6a:1f:1c:a8:01:6b:1f:84:b1:a9:
e1:23:c7:a9:5c:98:97:5e:c4:cc:92:c9:91:d4:c3:
e4:4b:49:ed:39:00:e1:ec:f2:41:2d:aa:07:4c:92:
53:03:a3:d9:b2:8c:30:a5:bc:8c:87:f3:2b:78:64:
ce:39:28:0c:1e:98:ed:d8:43:28:9a:20:7c:41:e4:
75:94:9c:47:b1:17:e6:2c:11:bc:23:b0:b8:ac:fb:
da:fe:dd:62:f1:66:28:23:ce:6b:51:a2:84:c3:cb:
38:40:6d:0b:1a:c2:59:5f:cc:f6:d7:cc:0c:7f:6b:
f4:bd:c3:09:9b:6a:c3:40:67:29:ce:ce:ec:0a:a0:
a0:ef:50:52:81:a5:9e:f3:77:40:37:cc:ca:9e:dc:
ef:4f:8a:13:27:c7:4b:16:1c:76:20:97:a3:24:50:
b3:48:df:52:de:fa:fa:7e:80:50:38:c5:57:1d:85:
b6:df:9e:65:1c:a6:2f:98:e6:07:9e:c8:eb:92:9f:
69:48:71:15:a8:ba:1b:58:c7:3b:7a:e5:13:8b:5e:
55:ba:63:fa:2c:4a:0c:2a:8a:0a:6b:88:41:a8:1b:
9a:4f:ca:4d:bf:64:0d:f2:c1:80:0f:d0:e3:aa:a2:
77:32:ed:03:70:5e:6d:37:e4:05:b2:b7:1d:86:8f:
af:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:1B:BA:70:46:00:A4:1C:F8:F3:39:FB:7B:93:70:34:49:3E:88:D6
X509v3 Authority Key Identifier:
keyid:5B:B5:F0:5F:12:B5:20:76:86:8E:EF:CD:14:AF:CE:C1:92:FE:2C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W7XwXxK1IHaGju_NFK_OwZL-LPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/98adc1-6ff8-4959-a344-db6ca6e4d4a3/1/tRu6cEYApBz48zn7e5NwNEk-iNY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/98adc1-6ff8-4959-a344-db6ca6e4d4a3/1/W7XwXxK1IHaGju_NFK_OwZL-LPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.154.168.0/23
5.154.228.0/23
5.154.248.0/22
82.118.0.0/20
185.36.68.0/22
213.91.96.0/20
Signature Algorithm: sha256WithRSAEncryption
54:77:ff:77:20:95:d1:94:df:80:b6:80:d8:f4:93:f0:3e:d9:
78:a3:91:13:9a:28:f2:92:c3:78:6d:78:ac:24:6d:30:5f:10:
af:cf:ef:97:4d:2e:68:33:fe:4e:85:f8:cd:eb:d0:09:6f:74:
8a:5d:ca:53:31:a2:2f:55:1d:22:78:85:fc:34:0e:0e:fe:88:
24:c4:d2:a6:95:3a:33:1e:e1:f2:16:00:46:9b:c4:4a:27:99:
d6:3b:07:69:e5:22:be:57:19:bd:b1:63:b5:6f:7b:35:a3:6a:
82:1e:f3:ac:91:01:23:65:97:1d:8f:1a:fa:59:2e:2e:e2:73:
6f:c1:f9:13:7a:09:3e:50:ba:ca:56:2d:09:db:ea:21:2e:17:
42:d5:a9:1e:60:df:db:29:8c:34:95:35:81:55:2d:e0:8f:10:
07:66:aa:d7:1e:5b:5e:ac:1d:d6:19:54:ee:8a:a5:b2:21:a8:
54:0f:28:30:19:22:3b:a4:54:03:18:81:da:03:fc:18:96:82:
63:c1:94:8f:ca:fd:db:5b:cc:7a:69:c2:0b:b3:b5:c0:43:c5:
cb:a3:50:13:4c:01:72:da:0d:7e:84:0a:67:b5:ee:cd:46:54:
03:d4:e9:67:55:81:aa:55:8e:cf:d1:2c:64:90:13:bb:d7:5f:
f5:52:08:3a
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAYVuJoqPFTnXrIrfngWGukJDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViYjVmMDVmMTJiNTIwNzY4NjhlZWZjZDE0YWZjZWMxOTJm
ZTJjZjIwHhcNMjMwMTAxMTYyNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNTFiYmE3MDQ2MDBhNDFjZjhmMzM5ZmI3YjkzNzAzNDQ5M2U4OGQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApS9z1WofHKgBax+EsanhI8epXJiX
XsTMksmR1MPkS0ntOQDh7PJBLaoHTJJTA6PZsowwpbyMh/MreGTOOSgMHpjt2EMo
miB8QeR1lJxHsRfmLBG8I7C4rPva/t1i8WYoI85rUaKEw8s4QG0LGsJZX8z218wM
f2v0vcMJm2rDQGcpzs7sCqCg71BSgaWe83dAN8zKntzvT4oTJ8dLFhx2IJejJFCz
SN9S3vr6foBQOMVXHYW2355lHKYvmOYHnsjrkp9pSHEVqLobWMc7euUTi15VumP6
LEoMKooKa4hBqBuaT8pNv2QN8sGAD9DjqqJ3Mu0DcF5tN+QFsrcdho+vzwIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFLUbunBGAKQc+PM5+3uTcDRJPojWMB8GA1UdIwQY
MBaAFFu18F8StSB2ho7vzRSvzsGS/izyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVzdYd1h4SzFJSGFHanVfTkZLX093WkwtTFBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS85OGFkYzEtNmZmOC00OTU5LWEzNDQt
ZGI2Y2E2ZTRkNGEzLzEvdFJ1NmNFWUFwQno0OHpuN2U1TndORWstaU5ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMS85OGFkYzEtNmZmOC00OTU5LWEzNDQtZGI2Y2E2ZTRkNGEz
LzEvVzdYd1h4SzFJSGFHanVfTkZLX093WkwtTFBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQBBZqoAwQB
BZrkAwQCBZr4AwQEUnYAAwQCuSREAwQE1VtgMA0GCSqGSIb3DQEBCwUAA4IBAQBU
d/93IJXRlN+AtoDY9JPwPtl4o5ETmijyksN4bXisJG0wXxCvz++XTS5oM/5OhfjN
69AJb3SKXcpTMaIvVR0ieIX8NA4O/ogkxNKmlTozHuHyFgBGm8RKJ5nWOwdp5SK+
Vxm9sWO1b3s1o2qCHvOskQEjZZcdjxr6WS4u4nNvwfkTegk+ULrKVi0J2+ohLhdC
1akeYN/bKYw0lTWBVS3gjxAHZqrXHlterB3WGVTuiqWyIahUDygwGSI7pFQDGIHa
A/wYloJjwZSPyv3bW8x6acILs7XAQ8XLo1ATTAFy2g1+hApnte7NRlQD1OlnVYGq
VY7P0SxkkBO711/1Ugg6
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:35 2024 by rpki-client on console-fra.rpki-client.org