Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/v53XLewgn36FZEYDvkLizoEfWqI.roa
File: v53XLewgn36FZEYDvkLizoEfWqI.roa (raw, json)
Hash identifier: NbKPqFVeAVNIZ2euCYmxWAxoP35fU4fExpnhzOJWuqs=
Subject key identifier: BF:9D:D7:2D:EC:20:9F:7E:85:64:46:03:BE:42:E2:CE:81:1F:5A:A2
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 018C730689B48FEB38661A2F39F53449E117
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/v53XLewgn36FZEYDvkLizoEfWqI.roa
Signing time: Sat 16 Dec 2023 14:27:37 +0000
ROA not before: Sat 16 Dec 2023 14:27:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207569
IP address blocks: 139.28.221.0/24 maxlen: 24
139.28.220.0/24 maxlen: 24
5.180.136.0/24 maxlen: 24
5.180.137.0/24 maxlen: 24
185.94.167.0/24 maxlen: 24
45.133.245.0/24 maxlen: 24
185.188.181.0/24 maxlen: 24
95.214.8.0/24 maxlen: 24
185.17.2.0/24 maxlen: 24
194.53.54.0/24 maxlen: 24
85.209.0.0/24 maxlen: 24
185.105.118.0/24 maxlen: 24
195.66.87.0/24 maxlen: 24
5.252.116.0/24 maxlen: 24
193.109.84.0/24 maxlen: 24
45.89.64.0/24 maxlen: 24
194.67.200.0/24 maxlen: 24
185.104.250.0/24 maxlen: 24
46.17.106.0/24 maxlen: 24
2a0a:9300:1::/48 maxlen: 48
2a0a:9300:aaaa::/48 maxlen: 48
2a0a:9300::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:73:06:89:b4:8f:eb:38:66:1a:2f:39:f5:34:49:e1:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Dec 16 14:27:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf9dd72dec209f7e85644603be42e2ce811f5aa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a1:b6:ef:0f:cb:f1:2b:85:5a:d8:f3:e8:72:
f8:68:f3:c3:38:21:4d:b2:c2:9d:4a:74:f2:44:de:
58:40:5f:94:e4:1e:4a:90:c5:36:29:70:af:06:4e:
41:b5:21:79:dc:eb:a2:88:23:90:b5:07:9c:12:60:
26:5e:b0:f5:06:d9:a0:ca:45:43:dd:c2:14:ac:07:
c8:cd:36:69:da:9a:2b:71:ef:a2:69:34:0d:fa:d5:
ad:cc:f6:3d:cd:6c:dc:c5:8e:ce:72:95:6a:2e:4c:
de:3b:52:16:57:e2:a1:3c:25:3a:81:82:27:71:95:
12:9b:b9:30:1e:1c:9e:c3:22:60:a2:4f:82:34:6f:
f7:bb:ac:9e:8b:47:cc:50:80:c6:b5:b3:86:2b:fe:
88:6b:ca:95:ae:9c:42:11:02:d1:ad:97:af:f8:f6:
f8:76:ff:5d:7e:7c:9a:8f:0d:74:a9:e8:cf:94:8a:
3a:2d:44:f6:b4:f3:f2:68:f2:94:e6:55:30:2d:02:
6e:17:0e:43:a9:eb:e3:05:72:c8:c9:a6:ad:1c:64:
ca:ca:62:dc:3d:84:39:12:1f:fb:9f:01:91:4c:a3:
f8:28:f2:74:b5:6d:bb:ad:77:1b:fb:2c:44:81:17:
b5:03:d9:93:0c:9f:c8:f9:e7:fd:24:42:76:a0:64:
7f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:9D:D7:2D:EC:20:9F:7E:85:64:46:03:BE:42:E2:CE:81:1F:5A:A2
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/v53XLewgn36FZEYDvkLizoEfWqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.136.0/23
5.252.116.0/24
45.89.64.0/24
45.133.245.0/24
46.17.106.0/24
85.209.0.0/24
95.214.8.0/24
139.28.220.0/23
185.17.2.0/24
185.94.167.0/24
185.104.250.0/24
185.105.118.0/24
185.188.181.0/24
193.109.84.0/24
194.53.54.0/24
194.67.200.0/24
195.66.87.0/24
IPv6:
2a0a:9300::/32
Signature Algorithm: sha256WithRSAEncryption
11:1c:97:c0:82:57:d6:5a:f6:cb:0a:76:b3:99:0a:19:98:c0:
e9:4b:4f:6f:e5:b6:1b:b4:9b:7b:80:3d:d9:69:8d:66:73:23:
e8:90:4c:b2:bd:ff:53:14:29:62:68:e2:9a:2b:da:e6:ea:86:
e2:91:dc:ae:12:53:41:85:c4:f4:c9:a1:61:2f:ee:c5:c2:c5:
9a:ab:3c:a0:5a:51:62:49:d0:38:e2:e2:75:9f:8f:9a:2c:38:
8e:95:e9:b5:89:91:99:c8:07:97:3d:35:5e:74:ac:37:ae:7c:
fa:5e:6b:03:0d:1b:f3:1a:e2:f8:82:89:28:73:dd:fc:15:3e:
d2:7b:d6:88:76:55:f4:0b:82:bf:70:d9:6b:bb:49:94:be:8f:
d6:f4:df:c7:43:65:95:fd:c3:38:97:a3:5c:28:84:fc:29:3e:
7c:cb:d4:eb:ec:7c:e0:57:f5:3a:0f:4d:65:37:37:0b:d1:78:
d9:74:bc:2c:a4:b8:1b:d7:3b:54:2d:99:44:7a:bb:ac:c5:99:
3e:b7:6f:1d:33:3a:0f:07:d6:d9:b1:61:ce:c2:65:bb:bf:eb:
21:19:b3:79:5c:c7:ac:bb:14:72:d7:5b:f5:15:fa:08:5a:92:
48:d9:98:0d:a2:81:c9:e1:75:a8:5e:63:a2:46:c9:75:3c:c7:
0e:75:c1:51
-----BEGIN CERTIFICATE-----
MIIFbTCCBFWgAwIBAgISAYxzBom0j+s4ZhovOfU0SeEXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0Zjk2MzQ1ZDNmMjJlZGIzOTVkMjQ3ZjdiODZkMmQ3M2U0
YTAwOTEwHhcNMjMxMjE2MTQyNzM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZjlkZDcyZGVjMjA5ZjdlODU2NDQ2MDNiZTQyZTJjZTgxMWY1YWEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv6G27w/L8SuFWtjz6HL4aPPDOCFN
ssKdSnTyRN5YQF+U5B5KkMU2KXCvBk5BtSF53OuiiCOQtQecEmAmXrD1BtmgykVD
3cIUrAfIzTZp2porce+iaTQN+tWtzPY9zWzcxY7OcpVqLkzeO1IWV+KhPCU6gYIn
cZUSm7kwHhyewyJgok+CNG/3u6yei0fMUIDGtbOGK/6Ia8qVrpxCEQLRrZev+Pb4
dv9dfnyajw10qejPlIo6LUT2tPPyaPKU5lUwLQJuFw5DqevjBXLIyaatHGTKymLc
PYQ5Eh/7nwGRTKP4KPJ0tW27rXcb+yxEgRe1A9mTDJ/I+ef9JEJ2oGR/zQIDAQAB
o4ICeTCCAnUwHQYDVR0OBBYEFL+d1y3sIJ9+hWRGA75C4s6BH1qiMB8GA1UdIwQY
MBaAFLT5Y0XT8i7bOV0kf3uG0tc+SgCRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQt
NmZjMzQzZDc3Y2QyLzEvdjUzWExld2duMzZGWkVZRHZrTGl6b0VmV3FJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQtNmZjMzQzZDc3Y2Qy
LzEvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGOBggrBgEFBQcBBwEB/wR/MH0wbAQCAAEwZgMEAQW0iAME
AAX8dAMEAC1ZQAMEAC2F9QMEAC4RagMEAFXRAAMEAF/WCAMEAYsc3AMEALkRAgME
ALlepwMEALlo+gMEALlpdgMEALm8tQMEAMFtVAMEAMI1NgMEAMJDyAMEAMNCVzAN
BAIAAjAHAwUAKgqTADANBgkqhkiG9w0BAQsFAAOCAQEAERyXwIJX1lr2ywp2s5kK
GZjA6UtPb+W2G7Sbe4A92WmNZnMj6JBMsr3/UxQpYmjimiva5uqG4pHcrhJTQYXE
9MmhYS/uxcLFmqs8oFpRYknQOOLidZ+Pmiw4jpXptYmRmcgHlz01XnSsN658+l5r
Aw0b8xri+IKJKHPd/BU+0nvWiHZV9AuCv3DZa7tJlL6P1vTfx0Nllf3DOJejXCiE
/Ck+fMvU6+x84Ff1Og9NZTc3C9F42XS8LKS4G9c7VC2ZRHq7rMWZPrdvHTM6DwfW
2bFhzsJlu7/rIRmzeVzHrLsUctdb9RX6CFqSSNmYDaKByeF1qF5jokbJdTzHDnXB
UQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:11 2024 by rpki-client on console-ams.rpki-client.org