Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/6zIEtti5nLsCYP85-1ORv7uTzAA.roa
File: 6zIEtti5nLsCYP85-1ORv7uTzAA.roa (raw, json)
Hash identifier: vEUIMPw0BdFFPemU/ZBCubsuIww4ywHNrBkHnHl1Uzs=
Subject key identifier: EB:32:04:B6:D8:B9:9C:BB:02:60:FF:39:FB:53:91:BF:BB:93:CC:00
Certificate issuer: /CN=2ef957aba2ef00352850e202464c71d33ca81448
Certificate serial: 018A024709E53B62AE3C3DBB7CEC883E2BEA
Authority key identifier: 2E:F9:57:AB:A2:EF:00:35:28:50:E2:02:46:4C:71:D3:3C:A8:14:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LvlXq6LvADUoUOICRkxx0zyoFEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/6zIEtti5nLsCYP85-1ORv7uTzAA.roa
Signing time: Thu 17 Aug 2023 06:55:24 +0000
ROA not before: Thu 17 Aug 2023 06:55:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2200
IP address blocks: 195.220.0.0/16 maxlen: 16
195.83.163.0/24 maxlen: 24
195.83.164.0/24 maxlen: 24
195.83.165.0/24 maxlen: 24
193.48.80.0/24 maxlen: 24
193.48.81.0/24 maxlen: 24
195.98.224.0/19 maxlen: 19
193.48.91.0/24 maxlen: 24
193.48.104.0/24 maxlen: 24
193.48.101.0/24 maxlen: 24
193.48.0.0/14 maxlen: 14
194.167.190.0/24 maxlen: 24
193.52.0.0/24 maxlen: 24
193.52.1.0/24 maxlen: 24
193.52.0.0/16 maxlen: 16
193.48.179.0/24 maxlen: 24
193.48.106.0/24 maxlen: 24
195.221.235.0/24 maxlen: 24
195.221.234.0/24 maxlen: 24
195.83.225.0/24 maxlen: 24
195.83.226.0/24 maxlen: 24
194.254.0.0/16 maxlen: 16
194.57.0.0/16 maxlen: 16
194.254.139.0/24 maxlen: 24
194.57.138.0/24 maxlen: 24
194.199.0.0/16 maxlen: 16
194.167.0.0/16 maxlen: 16
81.194.0.0/16 maxlen: 16
193.54.67.0/24 maxlen: 24
195.221.0.0/16 maxlen: 16
193.52.68.0/24 maxlen: 24
194.214.0.0/16 maxlen: 16
193.54.0.0/15 maxlen: 15
193.52.216.0/24 maxlen: 24
193.52.217.0/24 maxlen: 24
193.54.149.0/24 maxlen: 24
193.51.56.0/24 maxlen: 24
194.167.41.0/24 maxlen: 24
194.57.177.0/24 maxlen: 24
194.57.176.0/24 maxlen: 24
195.83.0.0/16 maxlen: 16
193.49.96.0/24 maxlen: 24
194.57.216.0/24 maxlen: 24
194.57.215.0/24 maxlen: 24
2001:660::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:02:47:09:e5:3b:62:ae:3c:3d:bb:7c:ec:88:3e:2b:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ef957aba2ef00352850e202464c71d33ca81448
Validity
Not Before: Aug 17 06:55:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb3204b6d8b99cbb0260ff39fb5391bfbb93cc00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a1:04:b4:91:5a:7e:00:4e:e0:73:9a:ad:ee:
2f:fb:fa:b4:31:10:08:fc:fe:42:d8:a8:5b:13:d0:
b1:d4:a5:7b:7f:4c:19:af:69:55:bb:c9:e7:26:fb:
cc:62:94:be:c0:7c:67:f0:e8:6b:30:cd:1b:bb:c6:
c7:46:ad:ec:65:22:82:6d:c0:94:5f:35:50:87:0d:
23:5a:7c:bb:71:d0:0e:19:37:14:c6:2f:33:ab:63:
af:48:02:8b:29:d5:d2:6a:9d:de:df:a5:0d:1f:d5:
c0:39:05:f2:21:dc:46:41:13:a7:a3:9f:d6:00:0f:
5b:8a:07:14:42:9a:27:e5:fa:ff:10:dd:62:2a:4c:
36:2b:0b:e5:c8:40:20:9e:82:6b:81:b3:20:bb:a4:
86:99:01:eb:50:d0:cd:1f:dc:30:fc:4e:4b:7d:a8:
d7:2b:ac:ea:9f:c1:43:67:b5:fd:3d:bf:79:42:15:
5d:6a:4a:95:58:04:fc:00:52:d3:f9:3a:74:8f:3d:
70:9a:fb:7a:d9:eb:6c:b3:c5:5e:a9:3f:f6:8c:2d:
e3:44:90:c4:be:26:57:98:49:b3:f5:f3:35:c8:70:
2b:39:19:d4:a1:c3:33:f7:5c:21:8f:82:f6:ca:b1:
6e:0d:fd:47:6e:f4:51:f4:55:26:bc:4d:83:b7:75:
b6:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:32:04:B6:D8:B9:9C:BB:02:60:FF:39:FB:53:91:BF:BB:93:CC:00
X509v3 Authority Key Identifier:
keyid:2E:F9:57:AB:A2:EF:00:35:28:50:E2:02:46:4C:71:D3:3C:A8:14:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LvlXq6LvADUoUOICRkxx0zyoFEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/6zIEtti5nLsCYP85-1ORv7uTzAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/LvlXq6LvADUoUOICRkxx0zyoFEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.194.0.0/16
193.48.0.0-193.52.255.255
193.54.0.0/15
194.57.0.0/16
194.167.0.0/16
194.199.0.0/16
194.214.0.0/16
194.254.0.0/16
195.83.0.0/16
195.98.224.0/19
195.220.0.0/15
IPv6:
2001:660::/32
Signature Algorithm: sha256WithRSAEncryption
84:2a:59:86:61:e9:b7:7c:c7:8a:c7:fe:d2:43:97:58:86:76:
de:95:48:fb:b3:bc:23:39:2e:dd:b4:cc:46:ef:2f:68:f0:1f:
3f:b2:bc:01:bc:9d:49:4f:4f:31:ec:f4:5c:f7:ea:81:08:e3:
8f:d3:e2:45:cb:2d:ee:9e:9e:7a:90:bd:5d:7b:d0:b9:5a:f4:
69:ef:ff:e6:86:0c:2a:db:8e:2b:82:58:67:4d:e1:01:d1:15:
81:84:63:d3:ff:02:76:07:ec:54:65:41:f9:cb:dd:1d:d0:e4:
09:40:67:6c:e7:38:81:96:52:4d:31:71:64:a6:f3:8e:4f:f5:
df:43:05:df:0b:a8:90:bc:37:48:00:b5:09:c1:54:8f:4b:91:
35:e8:0e:45:8d:6c:2d:0b:96:c3:58:fd:50:1b:7a:1b:6b:c9:
07:fe:9a:fc:e0:b0:70:ca:8c:0a:2a:23:96:73:8b:d0:90:61:
9b:0b:55:72:61:3c:1e:1d:56:62:11:2b:10:08:f9:72:8b:9c:
ad:81:a1:4b:5c:e9:01:cd:47:16:d7:54:69:6e:00:63:48:fd:
bb:65:12:c0:4a:d1:f5:c9:00:77:6c:ea:50:88:a7:cd:12:2c:
88:8e:7a:94:f6:00:23:ef:b6:24:4b:a7:b6:f7:de:60:46:24:
e3:02:f3:2d
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgISAYoCRwnlO2KuPD27fOyIPivqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlZjk1N2FiYTJlZjAwMzUyODUwZTIwMjQ2NGM3MWQzM2Nh
ODE0NDgwHhcNMjMwODE3MDY1NTI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYjMyMDRiNmQ4Yjk5Y2JiMDI2MGZmMzlmYjUzOTFiZmJiOTNjYzAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmqEEtJFafgBO4HOare4v+/q0MRAI
/P5C2KhbE9Cx1KV7f0wZr2lVu8nnJvvMYpS+wHxn8OhrMM0bu8bHRq3sZSKCbcCU
XzVQhw0jWny7cdAOGTcUxi8zq2OvSAKLKdXSap3e36UNH9XAOQXyIdxGQROno5/W
AA9bigcUQpon5fr/EN1iKkw2KwvlyEAgnoJrgbMgu6SGmQHrUNDNH9ww/E5LfajX
K6zqn8FDZ7X9Pb95QhVdakqVWAT8AFLT+Tp0jz1wmvt62etss8VeqT/2jC3jRJDE
viZXmEmz9fM1yHArORnUocMz91whj4L2yrFuDf1HbvRR9FUmvE2Dt3W2yQIDAQAB
o4ICUTCCAk0wHQYDVR0OBBYEFOsyBLbYuZy7AmD/OftTkb+7k8wAMB8GA1UdIwQY
MBaAFC75V6ui7wA1KFDiAkZMcdM8qBRIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTHZsWHE2THZBRFVvVU9JQ1JreHgwenlvRkVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9hNTg0ZTQtY2NkNC00YzRmLTlkMTYt
MDRhMjdjNGQ1NDUzLzEvNnpJRXR0aTVuTHNDWVA4NS0xT1J2N3VUekFBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy9hNTg0ZTQtY2NkNC00YzRmLTlkMTYtMDRhMjdjNGQ1NDUz
LzEvTHZsWHE2THZBRFVvVU9JQ1JreHgwenlvRkVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGcGCCsGAQUFBwEHAQH/BFgwVjBFBAIAATA/AwMAUcIwCgMD
BMEwAwMAwTQDAwHBNgMDAMI5AwMAwqcDAwDCxwMDAMLWAwMAwv4DAwDDUwMEBcNi
4AMDAcPcMA0EAgACMAcDBQAgAQZgMA0GCSqGSIb3DQEBCwUAA4IBAQCEKlmGYem3
fMeKx/7SQ5dYhnbelUj7s7wjOS7dtMxG7y9o8B8/srwBvJ1JT08x7PRc9+qBCOOP
0+JFyy3unp56kL1de9C5WvRp7//mhgwq244rglhnTeEB0RWBhGPT/wJ2B+xUZUH5
y90d0OQJQGds5ziBllJNMXFkpvOOT/XfQwXfC6iQvDdIALUJwVSPS5E16A5FjWwt
C5bDWP1QG3oba8kH/pr84LBwyowKKiOWc4vQkGGbC1VyYTweHVZiESsQCPlyi5yt
gaFLXOkBzUcW11RpbgBjSP27ZRLAStH1yQB3bOpQiKfNEiyIjnqU9gAj77YkS6e2
995gRiTjAvMt
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:37 2024 by rpki-client on console-ams.rpki-client.org