Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/VeI57MlEFQmfDbnZGewOPnrFi-Y.roa
File: VeI57MlEFQmfDbnZGewOPnrFi-Y.roa (raw, json)
Hash identifier: YaeB8sE15d4pxizY7/PWH3c/Qq+lzWBg8eHv2SqASJY=
Subject key identifier: 55:E2:39:EC:C9:44:15:09:9F:0D:B9:D9:19:EC:0E:3E:7A:C5:8B:E6
Certificate issuer: /CN=691242c33bc2e2e9e45850a0fc64ab2c7506a4b8
Certificate serial: 019469ED998B6998A2334E19B46692CDD505
Authority key identifier: 69:12:42:C3:3B:C2:E2:E9:E4:58:50:A0:FC:64:AB:2C:75:06:A4:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aRJCwzvC4unkWFCg_GSrLHUGpLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/VeI57MlEFQmfDbnZGewOPnrFi-Y.roa
Signing time: Wed 15 Jan 2025 12:26:06 +0000
ROA not before: Wed 15 Jan 2025 12:26:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59711
IP address blocks: 5.149.248.0/23 maxlen: 23
5.149.254.0/23 maxlen: 23
77.83.196.0/24 maxlen: 24
77.83.197.0/24 maxlen: 24
77.83.198.0/24 maxlen: 24
79.141.164.0/23 maxlen: 23
79.141.174.0/23 maxlen: 23
85.158.108.0/24 maxlen: 24
85.158.109.0/24 maxlen: 24
89.150.40.0/24 maxlen: 24
89.150.45.0/24 maxlen: 24
89.150.48.0/24 maxlen: 24
89.150.57.0/24 maxlen: 24
91.193.18.0/24 maxlen: 24
185.40.86.0/24 maxlen: 24
185.80.52.0/23 maxlen: 23
185.80.54.0/23 maxlen: 23
185.81.114.0/23 maxlen: 23
185.81.114.0/24 maxlen: 24
185.81.115.0/24 maxlen: 24
185.104.192.0/24 maxlen: 24
185.104.193.0/24 maxlen: 24
185.104.194.0/24 maxlen: 24
185.117.88.0/23 maxlen: 23
185.117.90.0/23 maxlen: 23
185.123.102.0/24 maxlen: 24
185.174.133.0/24 maxlen: 24
185.174.135.0/24 maxlen: 24
185.235.137.0/24 maxlen: 24
185.235.138.0/24 maxlen: 24
185.253.116.0/24 maxlen: 24
185.253.117.0/24 maxlen: 24
185.253.118.0/24 maxlen: 24
193.42.36.0/24 maxlen: 24
193.42.39.0/24 maxlen: 24
193.111.208.0/24 maxlen: 24
195.95.155.0/24 maxlen: 24
2a01:8640::/48 maxlen: 48
2a01:8640:2::/48 maxlen: 48
2a01:8640:6::/48 maxlen: 48
2a01:8640:9::/48 maxlen: 48
2a01:8640:a::/48 maxlen: 48
2a01:8640:f::/48 maxlen: 48
2a01:8640:11::/48 maxlen: 48
2a01:8640:12::/48 maxlen: 48
2a01:8640:13::/48 maxlen: 48
2a01:8640:14::/48 maxlen: 48
2a01:8640:15::/48 maxlen: 48
2a01:8640:1a::/48 maxlen: 48
2a01:8640:1b::/48 maxlen: 48
2a01:8640:1c::/48 maxlen: 48
2a01:8640:1d::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 15 Feb 2025 10:58:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:69:ed:99:8b:69:98:a2:33:4e:19:b4:66:92:cd:d5:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=691242c33bc2e2e9e45850a0fc64ab2c7506a4b8
Validity
Not Before: Jan 15 12:26:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=55e239ecc94415099f0db9d919ec0e3e7ac58be6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:19:c8:53:2e:1f:b6:f9:93:24:e9:f2:8a:78:
7b:bd:91:91:65:e6:a4:4b:e3:2a:d7:ff:96:79:ba:
fd:32:26:39:ba:2c:d9:e1:7a:7c:e2:a9:2e:6a:6b:
73:c2:ff:88:c8:19:6e:88:01:7a:b4:a0:c3:7e:32:
cc:4b:23:01:15:2f:dd:aa:ae:2d:46:7f:77:7b:ba:
f8:d2:61:29:b9:d2:df:aa:a4:13:d5:21:66:37:62:
92:0a:07:c9:36:00:c3:fe:15:af:b1:39:0b:b1:1c:
aa:0e:e7:b6:8e:3d:ef:c4:05:e6:9a:9c:4e:83:b0:
12:25:61:c1:d9:27:e7:81:ce:01:85:72:78:4a:15:
d0:94:42:a6:9d:84:c7:58:a6:99:1f:a3:8a:f0:c8:
ba:d1:18:ac:8e:1f:e0:f9:51:ce:27:42:6b:02:3b:
ab:45:c3:05:13:3c:57:98:c2:95:07:16:23:96:0c:
ad:37:ca:fb:93:93:67:ee:b7:f2:4f:1b:94:99:2e:
ec:9f:f6:bf:22:9d:61:d3:dc:17:36:58:30:b0:39:
76:03:b9:02:54:3b:47:18:6a:52:16:eb:ba:21:63:
eb:4c:25:c0:08:b9:98:22:63:66:33:13:41:a5:6e:
fd:1f:86:26:f7:e1:d2:0b:95:30:29:32:c6:d2:69:
4e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:E2:39:EC:C9:44:15:09:9F:0D:B9:D9:19:EC:0E:3E:7A:C5:8B:E6
X509v3 Authority Key Identifier:
keyid:69:12:42:C3:3B:C2:E2:E9:E4:58:50:A0:FC:64:AB:2C:75:06:A4:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aRJCwzvC4unkWFCg_GSrLHUGpLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/VeI57MlEFQmfDbnZGewOPnrFi-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/aRJCwzvC4unkWFCg_GSrLHUGpLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.149.248.0/23
5.149.254.0/23
77.83.196.0-77.83.198.255
79.141.164.0/23
79.141.174.0/23
85.158.108.0/23
89.150.40.0/24
89.150.45.0/24
89.150.48.0/24
89.150.57.0/24
91.193.18.0/24
185.40.86.0/24
185.80.52.0/22
185.81.114.0/23
185.104.192.0-185.104.194.255
185.117.88.0/22
185.123.102.0/24
185.174.133.0/24
185.174.135.0/24
185.235.137.0-185.235.138.255
185.253.116.0-185.253.118.255
193.42.36.0/24
193.42.39.0/24
193.111.208.0/24
195.95.155.0/24
IPv6:
2a01:8640::/48
2a01:8640:2::/48
2a01:8640:6::/48
2a01:8640:9::-2a01:8640:a:ffff:ffff:ffff:ffff:ffff
2a01:8640:f::/48
2a01:8640:11::-2a01:8640:15:ffff:ffff:ffff:ffff:ffff
2a01:8640:1a::-2a01:8640:1d:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
1e:f4:53:e4:9c:ec:d9:95:90:6b:11:1e:a0:47:fd:f4:dd:05:
7d:20:ec:cb:f4:90:66:cd:c4:2a:4a:86:43:ce:52:c0:ac:b6:
10:cb:84:e4:f3:81:88:cf:2b:73:5b:37:65:a9:cd:d4:cf:ec:
23:81:89:9c:eb:87:61:d7:30:b8:25:6d:05:4d:62:20:58:c8:
11:df:1e:94:fe:3e:a5:6e:28:06:bc:4b:60:d0:03:a3:3b:db:
38:5d:91:dd:83:b2:16:c1:a7:3e:5b:ce:79:f7:e6:e3:cd:6c:
6b:16:25:18:21:bc:fe:84:6c:61:fa:7e:5b:b9:a3:80:26:1b:
9e:bf:f8:e9:3c:7e:9b:90:3b:b1:ec:cf:36:60:11:22:34:db:
90:47:2d:ab:26:4f:7a:c9:e0:b1:b3:d2:8f:65:79:83:ef:d7:
66:23:ca:fa:ba:84:47:8d:47:07:96:a6:75:09:0f:a7:68:9b:
51:23:2f:ff:31:d8:cf:8d:24:6e:33:fa:c4:1a:f8:bb:45:3c:
bf:03:69:fe:87:28:80:b5:e9:c2:08:ee:33:b5:81:85:be:70:
a5:cc:6b:0c:2f:3c:dc:f4:aa:61:73:d6:7a:73:d7:40:23:dd:
31:a6:11:fa:a5:61:60:0b:05:b4:71:94:00:44:4b:d5:03:ce:
7a:a8:e6:6f
-----BEGIN CERTIFICATE-----
MIIGHTCCBQWgAwIBAgISAZRp7ZmLaZiiM04ZtGaSzdUFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5MTI0MmMzM2JjMmUyZTllNDU4NTBhMGZjNjRhYjJjNzUw
NmE0YjgwHhcNMjUwMTE1MTIyNjA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NWUyMzllY2M5NDQxNTA5OWYwZGI5ZDkxOWVjMGUzZTdhYzU4YmU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1xnIUy4ftvmTJOnyinh7vZGRZeak
S+Mq1/+Webr9MiY5uizZ4Xp84qkuamtzwv+IyBluiAF6tKDDfjLMSyMBFS/dqq4t
Rn93e7r40mEpudLfqqQT1SFmN2KSCgfJNgDD/hWvsTkLsRyqDue2jj3vxAXmmpxO
g7ASJWHB2Sfngc4BhXJ4ShXQlEKmnYTHWKaZH6OK8Mi60Risjh/g+VHOJ0JrAjur
RcMFEzxXmMKVBxYjlgytN8r7k5Nn7rfyTxuUmS7sn/a/Ip1h09wXNlgwsDl2A7kC
VDtHGGpSFuu6IWPrTCXACLmYImNmMxNBpW79H4Ym9+HSC5UwKTLG0mlOcQIDAQAB
o4IDKTCCAyUwHQYDVR0OBBYEFFXiOezJRBUJnw252RnsDj56xYvmMB8GA1UdIwQY
MBaAFGkSQsM7wuLp5FhQoPxkqyx1BqS4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVJKQ3d6dkM0dW5rV0ZDZ19HU3JMSFVHcExnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy82MzU2YjktYzQ5Zi00YjRkLThlMjkt
MzYyZmZlOGVlMjcwLzEvVmVJNTdNbEVGUW1mRGJuWkdld09QbnJGaS1ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy82MzU2YjktYzQ5Zi00YjRkLThlMjktMzYyZmZlOGVlMjcw
LzEvYVJKQ3d6dkM0dW5rV0ZDZ19HU3JMSFVHcExnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBPQYIKwYBBQUHAQcBAf8EggEsMIIBKDCBvQQCAAEwgbYD
BAEFlfgDBAEFlf4wDAMEAk1TxAMEAE1TxgMEAU+NpAMEAU+NrgMEAVWebAMEAFmW
KAMEAFmWLQMEAFmWMAMEAFmWOQMEAFvBEgMEALkoVgMEArlQNAMEAblRcjAMAwQG
uWjAAwQAuWjCAwQCuXVYAwQAuXtmAwQAua6FAwQAua6HMAwDBAC564kDBAC564ow
DAMEArn9dAMEALn9dgMEAMEqJAMEAMEqJwMEAMFv0AMEAMNfmzBmBAIAAjBgAwcA
KgGGQAAAAwcAKgGGQAACAwcAKgGGQAAGMBIDBwAqAYZAAAkDBwAqAYZAAAoDBwAq
AYZAAA8wEgMHACoBhkAAEQMHASoBhkAAFDASAwcBKgGGQAAaAwcBKgGGQAAcMA0G
CSqGSIb3DQEBCwUAA4IBAQAe9FPknOzZlZBrER6gR/303QV9IOzL9JBmzcQqSoZD
zlLArLYQy4Tk84GIzytzWzdlqc3Uz+wjgYmc64dh1zC4JW0FTWIgWMgR3x6U/j6l
bigGvEtg0AOjO9s4XZHdg7IWwac+W8559+bjzWxrFiUYIbz+hGxh+n5buaOAJhue
v/jpPH6bkDux7M82YBEiNNuQRy2rJk96yeCxs9KPZXmD79dmI8r6uoRHjUcHlqZ1
CQ+naJtRIy//MdjPjSRuM/rEGvi7RTy/A2n+hyiAtenCCO4ztYGFvnClzGsMLzzc
9Kphc9Z6c9dAI90xphH6pWFgCwW0cZQAREvVA856qOZv
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:41:56 2025 by rpki-client