Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/COylGvoE7MJX0vqqlSb-IK2OJXA.roa
File: COylGvoE7MJX0vqqlSb-IK2OJXA.roa (raw, json)
Hash identifier: anMblJAN9U6XC4KA0RE6Spn9ZJZZIUmn3tQd3WjtFHc=
Subject key identifier: 08:EC:A5:1A:FA:04:EC:C2:57:D2:FA:AA:95:26:FE:20:AD:8E:25:70
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 019111E9DDC376DFA23394F9794F73CBE09D
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/COylGvoE7MJX0vqqlSb-IK2OJXA.roa
Signing time: Fri 02 Aug 2024 07:07:04 +0000
ROA not before: Fri 02 Aug 2024 07:07:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207569
IP address blocks: 5.180.136.0/24 maxlen: 24
5.180.137.0/24 maxlen: 24
5.252.116.0/24 maxlen: 24
45.89.64.0/24 maxlen: 24
45.133.245.0/24 maxlen: 24
45.133.246.0/24 maxlen: 24
46.17.106.0/24 maxlen: 24
85.209.0.0/24 maxlen: 24
95.214.8.0/24 maxlen: 24
139.28.220.0/24 maxlen: 24
139.28.221.0/24 maxlen: 24
185.17.2.0/24 maxlen: 24
185.58.207.0/24 maxlen: 24
185.94.167.0/24 maxlen: 24
185.104.250.0/24 maxlen: 24
185.105.118.0/24 maxlen: 24
185.125.231.0/24 maxlen: 24
185.188.181.0/24 maxlen: 24
193.109.84.0/24 maxlen: 24
194.53.54.0/24 maxlen: 24
194.67.200.0/24 maxlen: 24
195.66.87.0/24 maxlen: 24
2a0a:9300::/32 maxlen: 32
2a0a:9300:1::/48 maxlen: 48
2a0a:9300:aaaa::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 05 Aug 2024 15:44:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:11:e9:dd:c3:76:df:a2:33:94:f9:79:4f:73:cb:e0:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Aug 2 07:07:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=08eca51afa04ecc257d2faaa9526fe20ad8e2570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a2:60:06:3e:d5:c7:eb:5c:8e:e5:27:b8:29:
22:1b:70:93:a5:75:c7:9f:5a:d8:18:3a:42:2f:46:
a5:dc:55:b9:64:96:8c:58:ee:52:26:c3:27:41:e0:
71:a5:0c:26:de:d7:c9:30:0e:aa:81:5b:b5:05:02:
47:49:88:f4:5c:26:ef:9c:69:63:ee:c8:9b:75:a8:
72:0b:96:b1:e4:eb:b3:3b:0d:33:38:b0:93:41:d4:
e7:b9:86:a3:99:70:71:79:8a:f4:66:f0:71:72:31:
99:7d:57:dd:21:c0:42:0c:cd:87:d8:48:f3:0f:55:
ee:5f:3f:56:d0:d2:b3:47:6a:90:aa:c6:63:49:16:
7c:9d:4d:90:03:fd:a0:bf:5e:3a:aa:5b:a1:5f:2b:
72:d0:d8:41:ca:7a:b3:bc:da:86:57:6d:72:b4:06:
8b:a2:69:a3:b7:4b:aa:c6:d0:2d:3a:85:ac:8b:f0:
3b:18:31:e1:70:ad:78:31:43:55:7d:02:f2:2f:7b:
d9:c1:4d:d7:c6:ac:a4:c8:fe:56:fa:47:ba:ab:69:
f4:4b:a4:f0:10:c0:95:38:6c:83:c2:dc:e5:20:66:
e1:3d:7c:9f:54:9d:ba:89:ce:3a:ba:f9:73:8a:dc:
b9:14:04:3b:8f:f1:a1:18:5c:ca:6e:6f:4b:73:d9:
5c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:EC:A5:1A:FA:04:EC:C2:57:D2:FA:AA:95:26:FE:20:AD:8E:25:70
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/COylGvoE7MJX0vqqlSb-IK2OJXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.136.0/23
5.252.116.0/24
45.89.64.0/24
45.133.245.0-45.133.246.255
46.17.106.0/24
85.209.0.0/24
95.214.8.0/24
139.28.220.0/23
185.17.2.0/24
185.58.207.0/24
185.94.167.0/24
185.104.250.0/24
185.105.118.0/24
185.125.231.0/24
185.188.181.0/24
193.109.84.0/24
194.53.54.0/24
194.67.200.0/24
195.66.87.0/24
IPv6:
2a0a:9300::/32
Signature Algorithm: sha256WithRSAEncryption
1a:26:c4:65:0b:73:66:17:05:17:f3:d9:e4:d8:a7:e6:c8:fa:
d2:4e:14:b4:39:18:04:89:76:1c:71:96:03:17:db:9c:54:91:
43:10:db:84:4f:40:f7:7d:20:15:19:ac:47:34:71:8c:4d:43:
28:5b:36:36:cd:e3:d5:d6:27:fa:91:e0:97:bc:7a:d3:7f:87:
fe:62:3c:d9:cb:07:be:1a:47:e9:00:06:96:9c:7a:36:40:1e:
7e:24:95:ee:33:bf:0c:1e:9a:b8:d7:bd:d8:58:87:82:e3:ac:
c4:6a:5a:e2:0f:23:70:3a:15:88:fc:de:b3:1e:8f:91:fe:98:
fe:f2:6a:2a:ca:ec:72:d6:ba:71:31:39:e4:2a:d6:76:41:0c:
d7:89:18:16:e5:34:f4:90:d6:90:68:76:48:04:65:ad:15:91:
21:f3:5e:ba:3e:73:8d:33:0c:a4:c5:b6:cd:3d:29:53:17:44:
e5:78:0d:50:78:b4:94:22:41:bf:c7:d7:d9:dd:9f:28:f0:e2:
30:46:8b:6d:18:2d:3b:72:d7:59:9e:6e:f6:2b:1a:ab:1a:b7:
34:44:66:53:6e:06:cb:db:f4:34:4b:54:c9:aa:2c:ab:8f:75:
ab:2c:60:aa:1d:14:97:2d:d1:a8:e4:e3:2c:81:b6:ce:5d:7f:
46:71:5e:1a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgISAZER6d3Ddt+iM5T5eU9zy+CdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0Zjk2MzQ1ZDNmMjJlZGIzOTVkMjQ3ZjdiODZkMmQ3M2U0
YTAwOTEwHhcNMjQwODAyMDcwNzA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOGVjYTUxYWZhMDRlY2MyNTdkMmZhYWE5NTI2ZmUyMGFkOGUyNTcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqqJgBj7Vx+tcjuUnuCkiG3CTpXXH
n1rYGDpCL0al3FW5ZJaMWO5SJsMnQeBxpQwm3tfJMA6qgVu1BQJHSYj0XCbvnGlj
7sibdahyC5ax5OuzOw0zOLCTQdTnuYajmXBxeYr0ZvBxcjGZfVfdIcBCDM2H2Ejz
D1XuXz9W0NKzR2qQqsZjSRZ8nU2QA/2gv146qluhXyty0NhBynqzvNqGV21ytAaL
ommjt0uqxtAtOoWsi/A7GDHhcK14MUNVfQLyL3vZwU3XxqykyP5W+ke6q2n0S6Tw
EMCVOGyDwtzlIGbhPXyfVJ26ic46uvlzity5FAQ7j/GhGFzKbm9Lc9lczwIDAQAB
o4ICkDCCAowwHQYDVR0OBBYEFAjspRr6BOzCV9L6qpUm/iCtjiVwMB8GA1UdIwQY
MBaAFLT5Y0XT8i7bOV0kf3uG0tc+SgCRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQt
NmZjMzQzZDc3Y2QyLzEvQ095bEd2b0U3TUpYMHZxcWxTYi1JSzJPSlhBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQtNmZjMzQzZDc3Y2Qy
LzEvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGlBggrBgEFBQcBBwEB/wSBlTCBkjCBgAQCAAEwegMEAQW0
iAMEAAX8dAMEAC1ZQDAMAwQALYX1AwQALYX2AwQALhFqAwQAVdEAAwQAX9YIAwQB
ixzcAwQAuRECAwQAuTrPAwQAuV6nAwQAuWj6AwQAuWl2AwQAuX3nAwQAuby1AwQA
wW1UAwQAwjU2AwQAwkPIAwQAw0JXMA0EAgACMAcDBQAqCpMAMA0GCSqGSIb3DQEB
CwUAA4IBAQAaJsRlC3NmFwUX89nk2KfmyPrSThS0ORgEiXYccZYDF9ucVJFDENuE
T0D3fSAVGaxHNHGMTUMoWzY2zePV1if6keCXvHrTf4f+YjzZywe+GkfpAAaWnHo2
QB5+JJXuM78MHpq4173YWIeC46zEalriDyNwOhWI/N6zHo+R/pj+8moqyuxy1rpx
MTnkKtZ2QQzXiRgW5TT0kNaQaHZIBGWtFZEh8166PnONMwykxbbNPSlTF0TleA1Q
eLSUIkG/x9fZ3Z8o8OIwRottGC07ctdZnm72KxqrGrc0RGZTbgbL2/Q0S1TJqiyr
j3WrLGCqHRSXLdGo5OMsgbbOXX9GcV4a
-----END CERTIFICATE-----
Generated at Mon Aug 5 18:29:35 2024 by rpki-client on console-ams.rpki-client.org