Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/1-uZ_VXuDfuw1cCCbZzUQwooEGgY.roa
File: 1-uZ_VXuDfuw1cCCbZzUQwooEGgY.roa (raw, json)
Hash identifier: 2n6WnbUGgP8v1BOO4I50IQA+NoFgsKt4j88UaJpOqqg=
Subject key identifier: FA:E6:7F:55:7B:83:7E:EC:35:70:20:9B:67:35:10:C2:8A:04:1A:06
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0187E18291908508FDED5F8ADA1AC8454F90
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/1-uZ_VXuDfuw1cCCbZzUQwooEGgY.roa
Signing time: Wed 03 May 2023 12:07:23 +0000
ROA not before: Wed 03 May 2023 12:07:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207569
IP address blocks: 139.28.221.0/24 maxlen: 24
139.28.220.0/24 maxlen: 24
5.180.136.0/24 maxlen: 24
5.180.137.0/24 maxlen: 24
185.94.167.0/24 maxlen: 24
45.133.245.0/24 maxlen: 24
185.188.181.0/24 maxlen: 24
95.214.8.0/24 maxlen: 24
185.17.2.0/24 maxlen: 24
194.53.54.0/24 maxlen: 24
85.209.0.0/24 maxlen: 24
195.66.87.0/24 maxlen: 24
5.252.116.0/24 maxlen: 24
193.109.84.0/24 maxlen: 24
45.89.64.0/24 maxlen: 24
185.104.250.0/24 maxlen: 24
46.17.106.0/24 maxlen: 24
2a0a:9300:1::/48 maxlen: 48
2a0a:9300:aaaa::/48 maxlen: 48
2a0a:9300::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 13 Jun 2023 21:06:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e1:82:91:90:85:08:fd:ed:5f:8a:da:1a:c8:45:4f:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: May 3 12:07:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fae67f557b837eec3570209b673510c28a041a06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:8c:d3:12:3b:54:55:c7:ee:61:4a:a6:16:c6:
f8:21:92:fd:78:46:21:c0:fa:d5:67:d9:e0:75:fc:
4c:ef:83:2e:a9:dd:ed:3b:17:01:1e:33:1d:d4:b2:
1c:1a:68:24:c4:d0:26:8b:22:43:01:4d:03:a0:8c:
7b:a3:d1:04:d2:82:96:c5:9b:05:4d:c1:a5:a9:5a:
7a:f0:3f:3a:07:ab:95:6a:16:68:56:72:66:91:6e:
ea:1b:87:e4:2a:dc:fd:17:21:a1:bc:2e:99:9a:e4:
66:c4:0e:9a:64:15:1b:58:0b:55:11:2d:9d:88:b3:
8a:0f:a5:98:ea:be:c7:47:92:4c:91:79:31:47:21:
f4:94:71:59:5f:a2:e0:4f:f2:3f:50:73:2e:a4:2b:
8a:f6:0c:f0:2a:27:78:01:e2:e3:61:59:ed:69:f6:
f1:55:a2:90:8a:fe:69:ce:4d:a2:97:01:a0:b6:6b:
66:2f:b9:2b:66:42:3a:83:7e:fb:94:fd:98:b5:73:
c2:b6:17:5b:2d:d2:04:9d:d6:f0:ff:2c:30:ca:60:
08:ad:be:be:02:9e:48:a7:aa:71:b9:df:70:80:87:
87:93:0e:50:7e:da:39:2b:60:d6:97:97:6b:6f:42:
17:c7:29:21:87:09:bc:a3:a4:6d:ed:60:f1:ce:27:
9e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:E6:7F:55:7B:83:7E:EC:35:70:20:9B:67:35:10:C2:8A:04:1A:06
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/1-uZ_VXuDfuw1cCCbZzUQwooEGgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.136.0/23
5.252.116.0/24
45.89.64.0/24
45.133.245.0/24
46.17.106.0/24
85.209.0.0/24
95.214.8.0/24
139.28.220.0/23
185.17.2.0/24
185.94.167.0/24
185.104.250.0/24
185.188.181.0/24
193.109.84.0/24
194.53.54.0/24
195.66.87.0/24
IPv6:
2a0a:9300::/32
Signature Algorithm: sha256WithRSAEncryption
9a:6e:a5:e5:4b:27:00:47:9b:33:d9:8f:6f:8c:06:6e:47:98:
f4:47:17:b7:a1:83:eb:a2:7c:99:fb:77:0b:10:fd:9f:60:8f:
17:16:b0:71:da:22:cf:78:40:4d:d7:21:5b:19:81:c7:6f:72:
34:ed:72:b3:1f:08:5c:6a:be:9c:0f:d8:71:b6:2b:08:cb:e9:
7f:ee:40:b4:8d:13:5f:41:85:a4:60:e7:d9:1f:66:90:d7:99:
16:3a:64:91:df:c6:c6:10:8e:a9:58:1a:07:8a:c3:35:23:6f:
dc:95:8e:0f:5a:e7:52:c5:a2:b3:30:24:41:b2:c5:e8:ad:d6:
2e:8e:6f:ae:18:7d:c9:64:ff:2a:38:1b:5d:df:13:2e:d5:8e:
89:7c:5c:ff:c7:6c:2d:7a:ad:bc:16:30:43:c2:0f:d5:75:53:
9d:1b:d2:b2:a3:9c:9e:8a:c1:7a:cf:b1:4a:4e:63:0a:83:3e:
65:0d:33:44:45:d3:4f:24:e3:1d:c6:f5:2c:83:92:a4:11:f0:
70:4a:b9:ac:74:aa:ff:51:41:33:5a:a0:38:61:db:74:b7:51:
c5:24:fb:b5:8b:39:8e:2f:c1:92:68:2d:06:c4:c0:d0:f0:69:
4e:26:ef:1f:98:66:10:90:ff:74:4b:c8:bf:16:3a:c5:01:83:
18:07:99:61
-----BEGIN CERTIFICATE-----
MIIFYjCCBEqgAwIBAgISAYfhgpGQhQj97V+K2hrIRU+QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0Zjk2MzQ1ZDNmMjJlZGIzOTVkMjQ3ZjdiODZkMmQ3M2U0
YTAwOTEwHhcNMjMwNTAzMTIwNzIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYWU2N2Y1NTdiODM3ZWVjMzU3MDIwOWI2NzM1MTBjMjhhMDQxYTA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8IzTEjtUVcfuYUqmFsb4IZL9eEYh
wPrVZ9ngdfxM74Muqd3tOxcBHjMd1LIcGmgkxNAmiyJDAU0DoIx7o9EE0oKWxZsF
TcGlqVp68D86B6uVahZoVnJmkW7qG4fkKtz9FyGhvC6ZmuRmxA6aZBUbWAtVES2d
iLOKD6WY6r7HR5JMkXkxRyH0lHFZX6LgT/I/UHMupCuK9gzwKid4AeLjYVntafbx
VaKQiv5pzk2ilwGgtmtmL7krZkI6g377lP2YtXPCthdbLdIEndbw/ywwymAIrb6+
Ap5Ip6pxud9wgIeHkw5Qfto5K2DWl5drb0IXxykhhwm8o6Rt7WDxzieeYwIDAQAB
o4ICbjCCAmowHQYDVR0OBBYEFPrmf1V7g37sNXAgm2c1EMKKBBoGMB8GA1UdIwQY
MBaAFLT5Y0XT8i7bOV0kf3uG0tc+SgCRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQt
NmZjMzQzZDc3Y2QyLzEvMS11Wl9WWHVEZnV3MWNDQ2JaelVRd29vRUdnWS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYzUvOGUxMjFkLTczYjMtNDM4YS04M2M0LTZmYzM0M2Q3N2Nk
Mi8xL3RQbGpSZFB5THRzNVhTUl9lNGJTMXo1S0FKRS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjCBggYIKwYBBQUHAQcBAf8EczBxMGAEAgABMFoDBAEFtIgD
BAAF/HQDBAAtWUADBAAthfUDBAAuEWoDBABV0QADBABf1ggDBAGLHNwDBAC5EQID
BAC5XqcDBAC5aPoDBAC5vLUDBADBbVQDBADCNTYDBADDQlcwDQQCAAIwBwMFACoK
kwAwDQYJKoZIhvcNAQELBQADggEBAJpupeVLJwBHmzPZj2+MBm5HmPRHF7ehg+ui
fJn7dwsQ/Z9gjxcWsHHaIs94QE3XIVsZgcdvcjTtcrMfCFxqvpwP2HG2KwjL6X/u
QLSNE19BhaRg59kfZpDXmRY6ZJHfxsYQjqlYGgeKwzUjb9yVjg9a51LForMwJEGy
xeit1i6Ob64Yfclk/yo4G13fEy7Vjol8XP/HbC16rbwWMEPCD9V1U50b0rKjnJ6K
wXrPsUpOYwqDPmUNM0RF008k4x3G9SyDkqQR8HBKuax0qv9RQTNaoDhh23S3UcUk
+7WLOY4vwZJoLQbEwNDwaU4m7x+YZhCQ/3RLyL8WOsUBgxgHmWE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org