Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/7sCDV8NWEkvPODQWVGaorFwPTF8.roa
File: 7sCDV8NWEkvPODQWVGaorFwPTF8.roa (raw, json)
Hash identifier: IaPJbKT3IAcK4bEolGZQ1+225w1VZshsXdRVmbGF1+M=
Subject key identifier: EE:C0:83:57:C3:56:12:4B:CF:38:34:16:54:66:A8:AC:5C:0F:4C:5F
Certificate issuer: /CN=e69e45a4481456148e2e00349d87aa57c56b24a0
Certificate serial: 018CC7256F2595821C4E6A8D9F8D1E6448D1
Authority key identifier: E6:9E:45:A4:48:14:56:14:8E:2E:00:34:9D:87:AA:57:C5:6B:24:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5p5FpEgUVhSOLgA0nYeqV8VrJKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/7sCDV8NWEkvPODQWVGaorFwPTF8.roa
Signing time: Mon 01 Jan 2024 22:29:28 +0000
ROA not before: Mon 01 Jan 2024 22:29:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44894
IP address blocks: 91.203.60.0/24 maxlen: 24
91.203.63.0/24 maxlen: 24
91.203.62.0/24 maxlen: 24
91.203.62.0/23 maxlen: 23
91.203.61.0/24 maxlen: 24
91.203.60.0/22 maxlen: 22
91.203.60.0/23 maxlen: 23
194.107.231.0/24 maxlen: 24
194.107.230.0/23 maxlen: 23
194.107.230.0/24 maxlen: 24
91.193.130.0/23 maxlen: 23
91.193.130.0/24 maxlen: 24
91.193.129.0/24 maxlen: 24
91.193.128.0/24 maxlen: 24
91.193.128.0/23 maxlen: 23
91.193.128.0/22 maxlen: 22
91.193.131.0/24 maxlen: 24
194.150.105.0/24 maxlen: 24
194.150.104.0/23 maxlen: 23
194.150.104.0/24 maxlen: 24
194.110.2.0/23 maxlen: 23
2001:67c:2f2c::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 01 Feb 2024 15:45:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:25:6f:25:95:82:1c:4e:6a:8d:9f:8d:1e:64:48:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e69e45a4481456148e2e00349d87aa57c56b24a0
Validity
Not Before: Jan 1 22:29:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eec08357c356124bcf3834165466a8ac5c0f4c5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6d:9d:f8:19:0a:43:fa:d0:a9:88:e9:15:24:
fc:a5:d2:e3:d2:02:92:e2:33:c0:f5:c6:52:1f:53:
cd:da:5f:cc:b5:98:b6:3f:91:f2:fb:e3:6a:46:5c:
3a:b0:5f:0f:9b:5d:92:ee:95:95:48:34:64:b8:a3:
e1:76:1c:58:6d:2a:9c:7d:2c:bc:66:58:51:1d:5b:
a8:b2:8c:e3:5d:24:1a:f5:27:51:5c:09:6d:ac:bd:
27:7c:e3:68:10:37:b2:f1:82:72:6a:60:8b:af:01:
c7:9f:d4:78:1e:ed:fc:6f:5e:bb:80:e0:90:77:4a:
a8:96:e7:cd:85:1e:8c:37:aa:02:ac:36:99:c7:2f:
0f:ab:a3:75:15:6c:d7:2e:0d:f4:dd:5b:64:ac:17:
17:bc:f0:f9:01:c9:80:0b:9c:70:8e:5b:80:20:4c:
cd:cb:5e:36:6e:d2:a4:97:f8:2a:e3:0d:ef:9a:12:
ad:f9:fe:40:26:6a:95:67:e7:df:17:16:a8:ff:5a:
71:34:c1:f7:d7:89:65:90:82:cd:c2:c9:48:0c:ee:
83:45:32:3f:e6:35:c0:fc:06:e1:8b:c3:46:c7:e8:
33:e1:4a:a1:67:39:b0:4e:94:86:8a:42:3b:e1:ab:
d0:fb:23:89:40:1f:1b:04:48:11:a2:b2:0f:46:5c:
60:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:C0:83:57:C3:56:12:4B:CF:38:34:16:54:66:A8:AC:5C:0F:4C:5F
X509v3 Authority Key Identifier:
keyid:E6:9E:45:A4:48:14:56:14:8E:2E:00:34:9D:87:AA:57:C5:6B:24:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5p5FpEgUVhSOLgA0nYeqV8VrJKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/7sCDV8NWEkvPODQWVGaorFwPTF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/5p5FpEgUVhSOLgA0nYeqV8VrJKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.128.0/22
91.203.60.0/22
194.107.230.0/23
194.110.2.0/23
194.150.104.0/23
IPv6:
2001:67c:2f2c::/48
Signature Algorithm: sha256WithRSAEncryption
1c:6a:33:0f:b6:ee:a4:e0:80:5d:8c:45:be:69:d7:7f:b7:db:
8c:68:9c:18:c2:09:34:1e:c8:77:bc:20:e7:c2:13:f0:48:82:
15:7d:f9:05:93:8f:20:de:0b:93:ae:23:0e:8c:46:b2:43:2d:
f7:96:ba:fa:58:5a:44:98:29:98:35:f9:90:01:ba:65:c4:47:
91:b9:a4:19:88:e5:37:3c:dc:ea:95:16:ec:9d:3d:9d:14:47:
44:3b:74:b4:a6:95:26:db:02:14:2e:d4:a3:3f:e0:45:85:5f:
0d:a7:64:7a:7b:ac:ee:47:86:5b:78:7c:2d:47:f5:84:e6:01:
f6:66:4c:d4:05:f2:74:1e:f3:64:e1:49:7b:19:3f:04:85:0f:
bd:06:6b:1c:f4:dd:a0:d5:57:87:ec:0d:b5:0c:4c:69:33:b2:
bc:24:51:70:a6:0f:b6:4f:38:1a:d9:31:bb:dd:66:2b:6e:c0:
d9:44:e3:45:4c:22:b2:fe:36:53:07:30:e9:5e:30:12:d2:7a:
0f:dc:b8:e3:0d:33:29:8c:f0:65:8a:1e:c3:18:d5:3d:e5:b8:
29:09:19:c2:9a:0d:fa:15:67:17:6b:1a:38:0d:33:1e:08:71:
e9:f6:b4:57:da:fc:6d:c8:9b:08:ed:be:10:3c:61:4b:4d:ad:
b5:3c:f5:f2
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgISAYzHJW8llYIcTmqNn40eZEjRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU2OWU0NWE0NDgxNDU2MTQ4ZTJlMDAzNDlkODdhYTU3YzU2
YjI0YTAwHhcNMjQwMTAxMjIyOTI4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZWMwODM1N2MzNTYxMjRiY2YzODM0MTY1NDY2YThhYzVjMGY0YzVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqG2d+BkKQ/rQqYjpFST8pdLj0gKS
4jPA9cZSH1PN2l/MtZi2P5Hy++NqRlw6sF8Pm12S7pWVSDRkuKPhdhxYbSqcfSy8
ZlhRHVuosozjXSQa9SdRXAltrL0nfONoEDey8YJyamCLrwHHn9R4Hu38b167gOCQ
d0qolufNhR6MN6oCrDaZxy8Pq6N1FWzXLg303VtkrBcXvPD5AcmAC5xwjluAIEzN
y142btKkl/gq4w3vmhKt+f5AJmqVZ+ffFxao/1pxNMH314llkILNwslIDO6DRTI/
5jXA/Abhi8NGx+gz4UqhZzmwTpSGikI74avQ+yOJQB8bBEgRorIPRlxgnwIDAQAB
o4ICMjCCAi4wHQYDVR0OBBYEFO7Ag1fDVhJLzzg0FlRmqKxcD0xfMB8GA1UdIwQY
MBaAFOaeRaRIFFYUji4ANJ2HqlfFaySgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNXA1RnBFZ1VWaFNPTGdBMG5ZZXFWOFZySktBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi80NGQ1OWUtZGM3Yi00ZDJjLWJhNDUt
NGE5MWZhYmQ4YThlLzEvN3NDRFY4TldFa3ZQT0RRV1ZHYW9yRndQVEY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNi80NGQ1OWUtZGM3Yi00ZDJjLWJhNDUtNGE5MWZhYmQ4YThl
LzEvNXA1RnBFZ1VWaFNPTGdBMG5ZZXFWOFZySktBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEgGCCsGAQUFBwEHAQH/BDkwNzAkBAIAATAeAwQCW8GAAwQC
W8s8AwQBwmvmAwQBwm4CAwQBwpZoMA8EAgACMAkDBwAgAQZ8LywwDQYJKoZIhvcN
AQELBQADggEBABxqMw+27qTggF2MRb5p13+324xonBjCCTQeyHe8IOfCE/BIghV9
+QWTjyDeC5OuIw6MRrJDLfeWuvpYWkSYKZg1+ZABumXER5G5pBmI5Tc83OqVFuyd
PZ0UR0Q7dLSmlSbbAhQu1KM/4EWFXw2nZHp7rO5Hhlt4fC1H9YTmAfZmTNQF8nQe
82ThSXsZPwSFD70Gaxz03aDVV4fsDbUMTGkzsrwkUXCmD7ZPOBrZMbvdZituwNlE
40VMIrL+NlMHMOleMBLSeg/cuOMNMymM8GWKHsMY1T3luCkJGcKaDfoVZxdrGjgN
Mx4Icen2tFfa/G3ImwjtvhA8YUtNrbU89fI=
-----END CERTIFICATE-----
Generated at Thu Feb 1 19:04:41 2024 by rpki-client on console-fra.rpki-client.org