Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/rtqI9DTGhYVXJW5_GJ7ZslfUbvU.roa
File: rtqI9DTGhYVXJW5_GJ7ZslfUbvU.roa (raw, json)
Hash identifier: uXL/oXhBBfrBvjTT7RMGvdPMPd0y3mXXenY0NfREEWA=
Subject key identifier: AE:DA:88:F4:34:C6:85:85:57:25:6E:7F:18:9E:D9:B2:57:D4:6E:F5
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0191376B4D65A987C6DF63DBEE82464F2303
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/rtqI9DTGhYVXJW5_GJ7ZslfUbvU.roa
Signing time: Fri 09 Aug 2024 13:54:24 +0000
ROA not before: Fri 09 Aug 2024 13:54:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207569
IP address blocks: 5.180.136.0/24 maxlen: 24
5.180.137.0/24 maxlen: 24
5.252.116.0/24 maxlen: 24
45.89.64.0/24 maxlen: 24
45.133.245.0/24 maxlen: 24
45.133.246.0/24 maxlen: 24
46.17.106.0/24 maxlen: 24
85.209.0.0/24 maxlen: 24
95.214.8.0/24 maxlen: 24
139.28.220.0/24 maxlen: 24
139.28.221.0/24 maxlen: 24
185.17.2.0/24 maxlen: 24
185.58.207.0/24 maxlen: 24
185.94.167.0/24 maxlen: 24
185.104.250.0/24 maxlen: 24
185.105.118.0/24 maxlen: 24
185.125.228.0/24 maxlen: 24
185.125.231.0/24 maxlen: 24
185.188.181.0/24 maxlen: 24
193.109.84.0/24 maxlen: 24
193.124.180.0/24 maxlen: 24
193.124.181.0/24 maxlen: 24
194.53.54.0/24 maxlen: 24
194.67.200.0/24 maxlen: 24
195.66.87.0/24 maxlen: 24
2a0a:9300::/32 maxlen: 32
2a0a:9300:1::/48 maxlen: 48
2a0a:9300:aaaa::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 23 Oct 2024 16:41:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:37:6b:4d:65:a9:87:c6:df:63:db:ee:82:46:4f:23:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Aug 9 13:54:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aeda88f434c6858557256e7f189ed9b257d46ef5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5e:07:ca:b9:e9:a2:f7:ff:b2:10:8d:7f:ff:
d6:9d:d3:26:64:34:84:79:23:35:aa:c7:23:22:dd:
f4:5b:ea:c0:94:0d:88:c8:79:6b:68:bb:21:ca:3f:
4c:06:ba:75:68:48:4c:5e:43:29:9e:a1:65:dc:44:
f2:dd:88:85:41:84:e6:4f:d7:9b:b4:e1:67:3a:4a:
f8:4a:0f:c7:8b:a5:bf:d8:99:de:7d:df:a3:38:81:
23:30:bb:7a:54:8a:e8:85:ec:16:75:4c:be:a7:46:
87:77:3b:e9:cc:4c:72:fa:9e:84:9b:19:27:ce:b3:
a6:67:bb:1e:98:3c:89:a3:d3:67:02:40:90:da:d1:
02:87:16:d2:b5:03:78:ff:09:ed:60:f9:fb:03:c6:
fb:c6:4d:18:7e:99:39:a4:f5:f6:e2:ea:82:8f:51:
64:e7:63:60:d5:86:22:67:10:f2:be:5d:b5:33:79:
6b:04:1d:5f:b8:e5:ce:fc:1d:9e:55:02:7d:7b:80:
a4:3b:4a:2c:7d:4f:74:23:f7:39:fc:b3:22:97:4b:
fc:07:eb:04:42:11:b3:c0:58:d7:c0:8e:36:df:f9:
b5:fa:17:31:e1:a7:48:ab:75:7b:11:1e:2e:d6:48:
40:ae:22:d2:0d:03:10:87:54:bb:7e:ea:2a:b5:3e:
35:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:DA:88:F4:34:C6:85:85:57:25:6E:7F:18:9E:D9:B2:57:D4:6E:F5
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/rtqI9DTGhYVXJW5_GJ7ZslfUbvU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.136.0/23
5.252.116.0/24
45.89.64.0/24
45.133.245.0-45.133.246.255
46.17.106.0/24
85.209.0.0/24
95.214.8.0/24
139.28.220.0/23
185.17.2.0/24
185.58.207.0/24
185.94.167.0/24
185.104.250.0/24
185.105.118.0/24
185.125.228.0/24
185.125.231.0/24
185.188.181.0/24
193.109.84.0/24
193.124.180.0/23
194.53.54.0/24
194.67.200.0/24
195.66.87.0/24
IPv6:
2a0a:9300::/32
Signature Algorithm: sha256WithRSAEncryption
66:37:0d:72:7f:0e:cd:84:c8:e2:fc:87:40:58:fa:09:6a:92:
47:59:b4:57:e5:46:b5:36:59:55:ba:80:90:ec:1f:3b:c4:b1:
82:10:07:69:5d:10:e1:d3:61:67:7d:70:de:95:c4:85:b8:17:
75:53:ea:25:c1:25:26:8f:81:73:d4:2a:65:fd:bf:99:7e:70:
67:9a:7f:89:05:ce:10:07:a2:7a:80:87:54:f7:3d:7a:dd:3f:
a0:0c:07:c0:4e:e3:11:cb:1e:03:b0:61:d1:8c:f0:28:ec:d0:
f9:78:99:a2:84:92:43:dc:cf:84:b8:f9:72:2d:ec:38:6e:c9:
06:31:74:9f:39:fe:a9:9b:1f:14:ca:de:89:02:b0:26:6f:fd:
df:c7:9c:b4:0f:2b:f2:b5:6a:c0:3e:cd:5f:10:c7:ba:c8:79:
fc:51:e2:77:18:29:04:b2:99:85:31:30:02:bf:77:ce:13:0e:
cf:0f:7d:c8:c0:6c:e4:38:f6:58:1b:bc:7a:78:15:1b:dc:a4:
80:8e:e9:b0:d8:a6:ea:58:58:12:a0:93:24:e1:d3:cf:fb:e6:
33:a1:61:ef:63:61:f9:10:db:a2:58:29:99:53:bc:df:60:c8:
8e:b7:e2:66:6a:4b:7c:17:42:98:2f:4b:b7:19:98:b5:bb:7e:
18:62:5a:01
-----BEGIN CERTIFICATE-----
MIIFkTCCBHmgAwIBAgISAZE3a01lqYfG32Pb7oJGTyMDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0Zjk2MzQ1ZDNmMjJlZGIzOTVkMjQ3ZjdiODZkMmQ3M2U0
YTAwOTEwHhcNMjQwODA5MTM1NDI0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZWRhODhmNDM0YzY4NTg1NTcyNTZlN2YxODllZDliMjU3ZDQ2ZWY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp14Hyrnpovf/shCNf//WndMmZDSE
eSM1qscjIt30W+rAlA2IyHlraLshyj9MBrp1aEhMXkMpnqFl3ETy3YiFQYTmT9eb
tOFnOkr4Sg/Hi6W/2Jnefd+jOIEjMLt6VIrohewWdUy+p0aHdzvpzExy+p6Emxkn
zrOmZ7semDyJo9NnAkCQ2tEChxbStQN4/wntYPn7A8b7xk0Yfpk5pPX24uqCj1Fk
52Ng1YYiZxDyvl21M3lrBB1fuOXO/B2eVQJ9e4CkO0osfU90I/c5/LMil0v8B+sE
QhGzwFjXwI423/m1+hcx4adIq3V7ER4u1khAriLSDQMQh1S7fuoqtT41DwIDAQAB
o4ICnTCCApkwHQYDVR0OBBYEFK7aiPQ0xoWFVyVufxie2bJX1G71MB8GA1UdIwQY
MBaAFLT5Y0XT8i7bOV0kf3uG0tc+SgCRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQt
NmZjMzQzZDc3Y2QyLzEvcnRxSTlEVEdoWVZYSlc1X0dKN1pzbGZVYnZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQtNmZjMzQzZDc3Y2Qy
LzEvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGyBggrBgEFBQcBBwEB/wSBojCBnzCBjQQCAAEwgYYDBAEF
tIgDBAAF/HQDBAAtWUAwDAMEAC2F9QMEAC2F9gMEAC4RagMEAFXRAAMEAF/WCAME
AYsc3AMEALkRAgMEALk6zwMEALlepwMEALlo+gMEALlpdgMEALl95AMEALl95wME
ALm8tQMEAMFtVAMEAcF8tAMEAMI1NgMEAMJDyAMEAMNCVzANBAIAAjAHAwUAKgqT
ADANBgkqhkiG9w0BAQsFAAOCAQEAZjcNcn8OzYTI4vyHQFj6CWqSR1m0V+VGtTZZ
VbqAkOwfO8SxghAHaV0Q4dNhZ31w3pXEhbgXdVPqJcElJo+Bc9QqZf2/mX5wZ5p/
iQXOEAeieoCHVPc9et0/oAwHwE7jEcseA7Bh0YzwKOzQ+XiZooSSQ9zPhLj5ci3s
OG7JBjF0nzn+qZsfFMreiQKwJm/938ectA8r8rVqwD7NXxDHush5/FHidxgpBLKZ
hTEwAr93zhMOzw99yMBs5Dj2WBu8engVG9ykgI7psNim6lhYEqCTJOHTz/vmM6Fh
72Nh+RDbolgpmVO832DIjrfiZmpLfBdCmC9LtxmYtbt+GGJaAQ==
-----END CERTIFICATE-----
Generated at Wed Oct 23 18:06:43 2024 by rpki-client on console-fra.rpki-client.org