Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/k859AJ2vdWi-JVy6rWhXdjpejSI.roa
File: k859AJ2vdWi-JVy6rWhXdjpejSI.roa (raw, json)
Hash identifier: DQk+JFSHMdysJweuF9hJdg5Q/jMUqCK6ycCAnrvSenA=
Subject key identifier: 93:CE:7D:00:9D:AF:75:68:BE:25:5C:BA:AD:68:57:76:3A:5E:8D:22
Certificate issuer: /CN=b0c20ae1dacca31815b274702927c1a5a9dbc7b3
Certificate serial: 018B001EDE2D1AF9214017EC2E771810653C
Authority key identifier: B0:C2:0A:E1:DA:CC:A3:18:15:B2:74:70:29:27:C1:A5:A9:DB:C7:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sMIK4drMoxgVsnRwKSfBpanbx7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/k859AJ2vdWi-JVy6rWhXdjpejSI.roa
Signing time: Thu 05 Oct 2023 13:55:04 +0000
ROA not before: Thu 05 Oct 2023 13:55:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6718
IP address blocks: 91.208.75.0/24 maxlen: 24
195.206.164.0/24 maxlen: 24
193.93.142.0/23 maxlen: 23
128.0.34.0/24 maxlen: 24
128.0.36.0/24 maxlen: 24
91.239.230.0/24 maxlen: 24
185.36.252.0/24 maxlen: 24
5.154.224.0/24 maxlen: 24
5.154.171.0/24 maxlen: 24
2a05:1c04::/32 maxlen: 32
2a05:1c00::/32 maxlen: 32
2a05:1c02::/32 maxlen: 32
2a00:ece0::/32 maxlen: 32
2a05:1c03::/32 maxlen: 32
2a04:6c80::/48 maxlen: 48
2a05:1c01::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:00:1e:de:2d:1a:f9:21:40:17:ec:2e:77:18:10:65:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0c20ae1dacca31815b274702927c1a5a9dbc7b3
Validity
Not Before: Oct 5 13:55:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=93ce7d009daf7568be255cbaad6857763a5e8d22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:85:06:92:21:80:89:52:e1:8a:72:46:38:57:
33:20:1f:60:19:27:b3:0b:d4:9a:30:ad:33:f7:fe:
be:c6:e7:db:6d:a4:6b:2b:b6:bd:73:20:5a:05:f1:
60:27:fc:63:5c:6c:12:cc:e0:7e:48:a9:a0:ca:fc:
4b:c4:b0:74:5c:1d:21:90:af:bd:e0:ae:b3:1d:bb:
35:de:e0:58:14:27:f5:56:69:55:95:7d:de:65:93:
9e:1e:ee:e9:a3:22:87:2a:d2:7e:60:83:da:6d:6d:
e0:67:de:de:d8:79:ba:dd:a5:59:47:3e:97:44:e1:
ec:42:3a:d4:b6:67:56:fb:aa:dd:6f:9f:1a:db:39:
ec:f0:ba:0a:d0:08:db:5f:bd:72:de:e1:e3:ec:9a:
05:f5:d9:06:24:85:49:bb:c9:97:ed:1b:57:b9:6b:
d4:d4:71:37:d4:ed:cb:95:cd:a4:33:c7:cb:ca:df:
7b:91:9e:47:00:62:09:08:d8:46:0a:dc:a0:c0:a0:
da:a0:fd:8d:e7:24:ae:b1:2c:24:f3:36:d6:0f:13:
9f:6d:b9:e8:2e:8e:da:52:12:9f:b0:83:c2:59:bf:
fb:b8:e3:e4:2a:18:ad:bc:6a:6c:1d:6e:2f:25:b4:
5c:90:a0:c1:05:76:a8:32:fb:15:3f:6e:0f:2d:1b:
ce:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:CE:7D:00:9D:AF:75:68:BE:25:5C:BA:AD:68:57:76:3A:5E:8D:22
X509v3 Authority Key Identifier:
keyid:B0:C2:0A:E1:DA:CC:A3:18:15:B2:74:70:29:27:C1:A5:A9:DB:C7:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sMIK4drMoxgVsnRwKSfBpanbx7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/k859AJ2vdWi-JVy6rWhXdjpejSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/sMIK4drMoxgVsnRwKSfBpanbx7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.154.171.0/24
5.154.224.0/24
91.208.75.0/24
91.239.230.0/24
128.0.34.0/24
128.0.36.0/24
185.36.252.0/24
193.93.142.0/23
195.206.164.0/24
IPv6:
2a00:ece0::/32
2a04:6c80::/48
2a05:1c00::-2a05:1c04:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
51:8f:c9:71:47:02:b6:92:ab:20:58:c5:ad:5c:02:c6:e6:65:
3a:bd:1b:fc:86:6e:ea:27:6e:cf:76:df:e0:3e:9e:8e:64:e0:
fb:02:9d:b5:b6:df:c7:58:94:1f:6d:92:d1:04:c6:78:54:93:
34:40:ca:a9:be:be:f3:c1:a6:f5:7c:89:a6:f0:5f:12:2f:2f:
e0:d8:d8:64:f8:ce:db:05:74:92:5c:22:a7:6e:9f:97:47:d1:
e9:bf:c9:98:b8:b6:f3:5d:7c:7f:b4:0e:c3:7c:9c:8e:45:07:
1c:47:2a:e0:e2:76:fd:2a:68:ed:f8:1d:80:14:8a:f7:a9:68:
01:64:ea:09:ed:5c:94:21:14:c8:04:4e:2a:52:82:7a:b4:4d:
ba:68:c8:e9:3a:5a:c1:60:a1:24:19:df:6d:ba:53:93:ba:2a:
4e:0e:d6:02:c8:80:f8:38:51:56:0d:da:43:1f:f1:43:e8:b8:
dc:23:87:ef:82:5d:92:53:ca:9e:dd:4e:1f:9e:b0:1e:ca:2f:
1a:dd:25:9f:2b:dd:e6:a0:0b:9c:23:0c:ca:6e:e0:9e:40:49:
ab:40:73:3c:3a:e2:e2:cb:c3:d4:5d:81:fb:b3:f9:8c:cd:68:
08:18:b2:06:fc:26:2d:25:b7:0a:8e:c4:6d:5b:aa:75:9c:2d:
34:01:3d:5a
-----BEGIN CERTIFICATE-----
MIIFVDCCBDygAwIBAgISAYsAHt4tGvkhQBfsLncYEGU8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwYzIwYWUxZGFjY2EzMTgxNWIyNzQ3MDI5MjdjMWE1YTlk
YmM3YjMwHhcNMjMxMDA1MTM1NTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5M2NlN2QwMDlkYWY3NTY4YmUyNTVjYmFhZDY4NTc3NjNhNWU4ZDIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArIUGkiGAiVLhinJGOFczIB9gGSez
C9SaMK0z9/6+xufbbaRrK7a9cyBaBfFgJ/xjXGwSzOB+SKmgyvxLxLB0XB0hkK+9
4K6zHbs13uBYFCf1VmlVlX3eZZOeHu7poyKHKtJ+YIPabW3gZ97e2Hm63aVZRz6X
ROHsQjrUtmdW+6rdb58a2zns8LoK0AjbX71y3uHj7JoF9dkGJIVJu8mX7RtXuWvU
1HE31O3Llc2kM8fLyt97kZ5HAGIJCNhGCtygwKDaoP2N5ySusSwk8zbWDxOfbbno
Lo7aUhKfsIPCWb/7uOPkKhitvGpsHW4vJbRckKDBBXaoMvsVP24PLRvOFwIDAQAB
o4ICYDCCAlwwHQYDVR0OBBYEFJPOfQCdr3VoviVcuq1oV3Y6Xo0iMB8GA1UdIwQY
MBaAFLDCCuHazKMYFbJ0cCknwaWp28ezMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc01JSzRkck1veGdWc25Sd0tTZkJwYW5ieDdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS84ODg4NjktN2E2NS00MTViLWI2OGYt
NTQ4NDQwMmNlYjdhLzEvazg1OUFKMnZkV2ktSlZ5NnJXaFhkanBlalNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS84ODg4NjktN2E2NS00MTViLWI2OGYtNTQ4NDQwMmNlYjdh
LzEvc01JSzRkck1veGdWc25Sd0tTZkJwYW5ieDdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHYGCCsGAQUFBwEHAQH/BGcwZTA8BAIAATA2AwQABZqrAwQA
BZrgAwQAW9BLAwQAW+/mAwQAgAAiAwQAgAAkAwQAuST8AwQBwV2OAwQAw86kMCUE
AgACMB8DBQAqAOzgAwcAKgRsgAAAMA0DBAIqBRwDBQAqBRwEMA0GCSqGSIb3DQEB
CwUAA4IBAQBRj8lxRwK2kqsgWMWtXALG5mU6vRv8hm7qJ27Pdt/gPp6OZOD7Ap21
tt/HWJQfbZLRBMZ4VJM0QMqpvr7zwab1fImm8F8SLy/g2Nhk+M7bBXSSXCKnbp+X
R9Hpv8mYuLbzXXx/tA7DfJyORQccRyrg4nb9Kmjt+B2AFIr3qWgBZOoJ7VyUIRTI
BE4qUoJ6tE26aMjpOlrBYKEkGd9tulOTuipODtYCyID4OFFWDdpDH/FD6LjcI4fv
gl2SU8qe3U4fnrAeyi8a3SWfK93moAucIwzKbuCeQEmrQHM8OuLiy8PUXYH7s/mM
zWgIGLIG/CYtJbcKjsRtW6p1nC00AT1a
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org