Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/_oRSnFHKIRaMw1hxT3TY-X6-0_0.roa
File: _oRSnFHKIRaMw1hxT3TY-X6-0_0.roa (raw, json)
Hash identifier: nhlKHB46BTSgPLPdoF+bLt5biKT6VRTnSifzAeLuOPk=
Subject key identifier: FE:84:52:9C:51:CA:21:16:8C:C3:58:71:4F:74:D8:F9:7E:BE:D3:FD
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 019034BC9CD04CCA3AFB0C798C7828E43E86
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/_oRSnFHKIRaMw1hxT3TY-X6-0_0.roa
Signing time: Thu 20 Jun 2024 08:21:34 +0000
ROA not before: Thu 20 Jun 2024 08:21:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209737
IP address blocks: 5.180.107.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
45.131.1.0/24 maxlen: 24
45.136.5.0/24 maxlen: 24
45.141.148.0/24 maxlen: 24
45.147.44.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
77.83.203.0/24 maxlen: 24
194.116.228.0/24 maxlen: 24
194.116.236.0/24 maxlen: 24
194.116.237.0/24 maxlen: 24
194.146.26.0/24 maxlen: 24
194.146.36.0/24 maxlen: 24
194.146.47.0/24 maxlen: 24
2a09:8780::/29 maxlen: 29
2a0f:b700::/29 maxlen: 29
2a0f:e900::/29 maxlen: 29
2a0f:eb00::/29 maxlen: 29
2a0f:eb00::/32 maxlen: 32
2a0f:eb07::/32 maxlen: 32
2a0f:ed00::/29 maxlen: 29
2a0f:f900::/29 maxlen: 29
2a13:a440::/32 maxlen: 32
2a13:a441::/32 maxlen: 32
2a13:a445::/32 maxlen: 32
2a13:a447::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 21 Jun 2024 08:09:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:34:bc:9c:d0:4c:ca:3a:fb:0c:79:8c:78:28:e4:3e:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Jun 20 08:21:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fe84529c51ca21168cc358714f74d8f97ebed3fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8d:26:a1:05:ab:75:6a:1b:16:3e:c3:3b:ee:
47:ba:ca:ac:08:3f:10:03:fe:7a:c7:e7:c8:9f:da:
b0:a7:3c:26:99:a4:ce:34:0d:f5:26:66:51:67:1c:
89:54:17:2e:73:6c:e0:c5:63:d8:36:1f:fc:18:62:
df:e1:e4:53:ad:6c:62:d0:3c:03:c7:77:75:05:6c:
23:27:4b:1f:7b:dc:9f:ef:52:17:de:da:6b:06:79:
ea:09:bd:ca:61:19:63:29:f2:57:c4:ed:ae:80:5d:
06:5c:93:92:9c:46:b3:34:75:b4:95:94:1f:3d:9e:
04:29:8e:3d:25:f6:22:04:39:da:1e:85:49:6b:d2:
d9:ce:0e:87:58:64:36:02:0d:1b:b8:3c:0a:6a:ff:
3d:d6:f2:73:2d:f5:71:30:d2:0b:e4:97:72:66:98:
51:d3:e3:d2:d7:01:27:0b:18:57:ed:38:7c:e1:3c:
aa:57:03:bf:48:17:da:d7:a5:95:8f:35:55:51:35:
44:fa:c8:dc:09:7e:5c:bd:52:1a:75:6a:cb:8e:d3:
98:cb:10:f5:59:ed:9f:cb:4e:67:7b:59:79:f0:24:
93:d2:b8:d7:4d:00:68:74:3c:a1:cf:e0:65:4d:ee:
54:ca:64:b7:b9:67:b5:41:d0:d8:04:6d:90:bb:d7:
86:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:84:52:9C:51:CA:21:16:8C:C3:58:71:4F:74:D8:F9:7E:BE:D3:FD
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/_oRSnFHKIRaMw1hxT3TY-X6-0_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.107.0/24
45.131.0.0/23
45.136.5.0/24
45.141.148.0/24
45.147.44.0/24
77.83.200.0/22
194.116.228.0/24
194.116.236.0/23
194.146.26.0/24
194.146.36.0/24
194.146.47.0/24
IPv6:
2a09:8780::/29
2a0f:b700::/29
2a0f:e900::/29
2a0f:eb00::/29
2a0f:ed00::/29
2a0f:f900::/29
2a13:a440::/31
2a13:a445::/32
2a13:a447::/32
Signature Algorithm: sha256WithRSAEncryption
40:34:69:54:ba:ae:d3:28:98:8e:fd:d6:dd:7b:73:95:fa:b4:
a0:0c:7b:e9:84:1d:04:bd:73:90:1a:fb:24:9b:bf:a7:88:20:
50:58:21:01:d9:c1:12:88:81:42:a2:9a:0c:d5:4e:42:aa:08:
89:41:c0:ed:62:5c:af:cd:24:56:a9:29:75:26:19:6c:a6:33:
6e:1e:d0:ef:33:64:1e:0d:45:eb:a3:6e:ed:e8:0b:b8:9e:6d:
84:02:5d:6b:76:51:d5:c1:16:e3:f1:62:3e:c2:72:c4:e6:73:
81:97:de:eb:85:50:a7:48:92:e6:c0:38:53:ae:2f:a0:e9:35:
99:17:f3:fa:9f:2e:4f:1a:ab:1e:16:35:dd:94:3a:22:cb:6f:
b2:fc:fa:d8:ed:4d:50:c7:b9:c6:b6:40:77:85:f5:d0:c1:ed:
38:ae:2b:07:a4:2a:d5:5c:c5:7b:a0:e8:ee:b6:e8:38:e4:06:
dc:fb:c6:6b:49:b4:b0:8e:5c:59:a0:af:0b:50:ae:0c:70:6a:
eb:c8:c2:96:42:19:5d:9b:f0:06:70:f7:ea:5d:9a:a1:71:ec:
34:d6:51:67:69:79:a7:f3:04:26:b0:50:f7:3a:22:0c:5e:a0:
49:3c:0d:74:82:e4:cc:aa:cc:3b:0e:8d:a0:0e:6f:e9:c9:6e:
a6:fd:ae:25
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgISAZA0vJzQTMo6+wx5jHgo5D6GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ4MDVmMTdjMmQ3MTMzZDJkYWQzYThkZjdlMzUzMTVlMzdl
ZjVkYWYwHhcNMjQwNjIwMDgyMTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZTg0NTI5YzUxY2EyMTE2OGNjMzU4NzE0Zjc0ZDhmOTdlYmVkM2ZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApY0moQWrdWobFj7DO+5HusqsCD8Q
A/56x+fIn9qwpzwmmaTONA31JmZRZxyJVBcuc2zgxWPYNh/8GGLf4eRTrWxi0DwD
x3d1BWwjJ0sfe9yf71IX3tprBnnqCb3KYRljKfJXxO2ugF0GXJOSnEazNHW0lZQf
PZ4EKY49JfYiBDnaHoVJa9LZzg6HWGQ2Ag0buDwKav891vJzLfVxMNIL5JdyZphR
0+PS1wEnCxhX7Th84TyqVwO/SBfa16WVjzVVUTVE+sjcCX5cvVIadWrLjtOYyxD1
We2fy05ne1l58CST0rjXTQBodDyhz+BlTe5UymS3uWe1QdDYBG2Qu9eGCwIDAQAB
o4ICjzCCAoswHQYDVR0OBBYEFP6EUpxRyiEWjMNYcU902Pl+vtP9MB8GA1UdIwQY
MBaAFEgF8XwtcTPS2tOo3341MV43712vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUt
NWRkNmUyMmViYWIwLzEvX29SU25GSEtJUmFNdzFoeFQzVFktWDYtMF8wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUtNWRkNmUyMmViYWIw
LzEvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGkBggrBgEFBQcBBwEB/wSBlDCBkTBIBAIAATBCAwQABbRr
AwQBLYMAAwQALYgFAwQALY2UAwQALZMsAwQCTVPIAwQAwnTkAwQBwnTsAwQAwpIa
AwQAwpIkAwQAwpIvMEUEAgACMD8DBQMqCYeAAwUDKg+3AAMFAyoP6QADBQMqD+sA
AwUDKg/tAAMFAyoP+QADBQEqE6RAAwUAKhOkRQMFACoTpEcwDQYJKoZIhvcNAQEL
BQADggEBAEA0aVS6rtMomI791t17c5X6tKAMe+mEHQS9c5Aa+ySbv6eIIFBYIQHZ
wRKIgUKimgzVTkKqCIlBwO1iXK/NJFapKXUmGWymM24e0O8zZB4NReujbu3oC7ie
bYQCXWt2UdXBFuPxYj7CcsTmc4GX3uuFUKdIkubAOFOuL6DpNZkX8/qfLk8aqx4W
Nd2UOiLLb7L8+tjtTVDHuca2QHeF9dDB7TiuKwekKtVcxXug6O626DjkBtz7xmtJ
tLCOXFmgrwtQrgxwauvIwpZCGV2b8AZw9+pdmqFx7DTWUWdpeafzBCawUPc6Igxe
oEk8DXSC5MyqzDsOjaAOb+nJbqb9riU=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:30:14 2025 by rpki-client