Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/CNe_JpZTIl-aoSym2e8pkywn2TY.roa
File: CNe_JpZTIl-aoSym2e8pkywn2TY.roa (raw, json)
Hash identifier: gfPrP1WeU5dsN8D+12O+qeaNrHzK15Y37nIQ+UU9CIg=
Subject key identifier: 08:D7:BF:26:96:53:22:5F:9A:A1:2C:A6:D9:EF:29:93:2C:27:D9:36
Certificate issuer: /CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Certificate serial: 019190A3D846C284BDD5E3E9DEE02F268585
Authority key identifier: E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/CNe_JpZTIl-aoSym2e8pkywn2TY.roa
Signing time: Mon 26 Aug 2024 21:42:22 +0000
ROA not before: Mon 26 Aug 2024 21:42:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41937
IP address blocks: 5.134.104.0/21 maxlen: 24
46.235.96.0/21 maxlen: 24
62.240.24.0/21 maxlen: 24
87.250.32.0/19 maxlen: 24
91.185.96.0/19 maxlen: 24
91.204.52.0/22 maxlen: 24
109.72.48.0/20 maxlen: 24
109.94.228.0/22 maxlen: 24
109.94.232.0/21 maxlen: 24
109.122.64.0/18 maxlen: 24
109.198.0.0/19 maxlen: 24
178.79.0.0/18 maxlen: 24
178.237.208.0/20 maxlen: 24
178.250.136.0/21 maxlen: 24
185.10.140.0/22 maxlen: 24
185.26.172.0/22 maxlen: 24
185.34.92.0/22 maxlen: 24
185.103.136.0/22 maxlen: 24
185.112.20.0/22 maxlen: 24
185.179.136.0/22 maxlen: 24
2a00:8720::/32 maxlen: 48
2a00:cf00::/32 maxlen: 48
2a01:b800::/32 maxlen: 48
2a02:61a0::/32 maxlen: 48
2a03:fc40::/32 maxlen: 48
2a04:1dc0::/29 maxlen: 48
2a06:5b00::/29 maxlen: 48
2a06:63c0::/29 maxlen: 48
Validation: Failed, certificate revoked on Thu 29 Aug 2024 08:33:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:90:a3:d8:46:c2:84:bd:d5:e3:e9:de:e0:2f:26:85:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Validity
Not Before: Aug 26 21:42:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=08d7bf269653225f9aa12ca6d9ef29932c27d936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2c:19:43:67:0e:3a:ee:a6:bf:34:a8:9e:7e:
71:e3:e2:fa:aa:6c:67:6b:0d:7f:0f:db:bf:8d:b4:
f4:d1:42:40:49:a0:04:17:77:6a:a9:dd:be:26:14:
a2:21:1a:63:51:51:e3:45:13:7c:bf:c9:44:81:8f:
f9:6e:8d:7c:f5:7c:30:36:eb:43:d7:60:7b:42:7e:
17:78:2a:11:0d:94:5f:1e:ab:c6:40:74:54:fc:77:
0c:a2:ce:d5:be:a7:96:0b:a8:8b:f2:25:cc:38:9e:
3a:c5:db:01:0e:57:fc:20:c8:7a:f3:6f:07:36:d8:
27:85:a7:b0:20:4b:23:6f:fc:42:cb:47:c9:90:22:
97:90:e6:02:d8:16:69:23:b0:f2:e8:83:7e:76:0f:
53:30:ba:ab:a2:ba:f4:02:83:ca:c0:22:58:e4:10:
12:76:f7:f4:55:ed:09:f8:54:97:86:bc:28:68:44:
6c:4e:87:d5:6b:e9:e9:28:2e:62:85:91:e2:c0:87:
68:ab:d0:c3:3e:be:22:90:08:fc:85:ac:9e:04:87:
61:d2:2d:4b:a7:3c:37:5b:e7:b9:c4:75:c1:14:a3:
75:13:4c:c2:5f:43:fe:43:4c:09:bb:43:f6:25:98:
2e:cc:ee:4f:d1:58:a3:9b:8e:fd:ad:2f:c7:2d:cf:
f7:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:D7:BF:26:96:53:22:5F:9A:A1:2C:A6:D9:EF:29:93:2C:27:D9:36
X509v3 Authority Key Identifier:
keyid:E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/CNe_JpZTIl-aoSym2e8pkywn2TY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/6bEyD7wk1vQ2bLZPz17S17G2vfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.104.0/21
46.235.96.0/21
62.240.24.0/21
87.250.32.0/19
91.185.96.0/19
91.204.52.0/22
109.72.48.0/20
109.94.228.0-109.94.239.255
109.122.64.0/18
109.198.0.0/19
178.79.0.0/18
178.237.208.0/20
178.250.136.0/21
185.10.140.0/22
185.26.172.0/22
185.34.92.0/22
185.103.136.0/22
185.112.20.0/22
185.179.136.0/22
IPv6:
2a00:8720::/32
2a00:cf00::/32
2a01:b800::/32
2a02:61a0::/32
2a03:fc40::/32
2a04:1dc0::/29
2a06:5b00::/29
2a06:63c0::/29
Signature Algorithm: sha256WithRSAEncryption
a8:96:41:4f:0c:0d:15:5f:c7:d7:8f:a3:a7:6f:10:dc:53:68:
fe:e9:2a:89:10:cc:64:cb:c0:9c:f6:3b:5d:87:dd:f1:19:35:
fe:28:a5:ad:7a:2c:ff:e8:af:ec:f9:5b:bf:2a:11:e1:5c:8b:
96:95:a6:a5:60:1a:dc:1d:0a:4e:a4:fc:49:a6:af:05:5f:57:
91:06:23:88:56:84:96:97:41:39:d4:a5:ea:b9:97:f2:33:cb:
77:85:88:d1:f8:91:de:a6:ba:3c:0a:a7:26:88:82:b3:9a:39:
3c:e1:d2:d8:61:a3:f0:fd:64:c6:9d:2c:dd:c2:00:e2:91:c8:
94:a2:66:f9:08:8b:4a:6a:97:a4:34:69:81:3c:a4:41:a6:74:
15:48:12:e6:a1:3d:1d:03:73:23:79:e5:10:f5:94:0b:82:e8:
08:4a:99:aa:22:1e:be:7a:b6:a6:d9:ed:7a:92:b0:5f:9e:bb:
52:32:3d:56:34:34:8a:1c:30:f4:9e:b2:7c:c7:e7:a5:8e:58:
f6:f1:f4:6e:70:8b:05:f4:1e:17:02:2e:a6:57:5f:87:fd:9c:
4f:5f:00:66:4c:cd:a1:40:45:3c:10:5c:ee:1a:b4:b7:f0:d5:
2e:4d:cc:64:1a:a4:53:6f:b1:7e:52:86:13:11:18:f6:60:7f:
b3:5f:93:ef
-----BEGIN CERTIFICATE-----
MIIFtTCCBJ2gAwIBAgISAZGQo9hGwoS91ePp3uAvJoWFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5YjEzMjBmYmMyNGQ2ZjQzNjZjYjY0ZmNmNWVkMmQ3YjFi
NmJkZjcwHhcNMjQwODI2MjE0MjIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOGQ3YmYyNjk2NTMyMjVmOWFhMTJjYTZkOWVmMjk5MzJjMjdkOTM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqSwZQ2cOOu6mvzSonn5x4+L6qmxn
aw1/D9u/jbT00UJASaAEF3dqqd2+JhSiIRpjUVHjRRN8v8lEgY/5bo189XwwNutD
12B7Qn4XeCoRDZRfHqvGQHRU/HcMos7VvqeWC6iL8iXMOJ46xdsBDlf8IMh6828H
NtgnhaewIEsjb/xCy0fJkCKXkOYC2BZpI7Dy6IN+dg9TMLqrorr0AoPKwCJY5BAS
dvf0Ve0J+FSXhrwoaERsTofVa+npKC5ihZHiwIdoq9DDPr4ikAj8hayeBIdh0i1L
pzw3W+e5xHXBFKN1E0zCX0P+Q0wJu0P2JZguzO5P0Vijm479rS/HLc/3+wIDAQAB
o4ICwTCCAr0wHQYDVR0OBBYEFAjXvyaWUyJfmqEsptnvKZMsJ9k2MB8GA1UdIwQY
MBaAFOmxMg+8JNb0Nmy2T89e0textr33MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNmJFeUQ3d2sxdlEyYkxaUHoxN1MxN0cydmZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9kZjFjYjUtNWY0OC00NmEwLWE3NmUt
ZDNlMjgwMGJkNjQwLzEvQ05lX0pwWlRJbC1hb1N5bTJlOHBreXduMlRZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC9kZjFjYjUtNWY0OC00NmEwLWE3NmUtZDNlMjgwMGJkNjQw
LzEvNmJFeUQ3d2sxdlEyYkxaUHoxN1MxN0cydmZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHWBggrBgEFBQcBBwEB/wSBxjCBwzCBgAQCAAEwegMEAwWG
aAMEAy7rYAMEAz7wGAMEBVf6IAMEBVu5YAMEAlvMNAMEBG1IMDAMAwQCbV7kAwQE
bV7gAwQGbXpAAwQFbcYAAwQGsk8AAwQEsu3QAwQDsvqIAwQCuQqMAwQCuRqsAwQC
uSJcAwQCuWeIAwQCuXAUAwQCubOIMD4EAgACMDgDBQAqAIcgAwUAKgDPAAMFACoB
uAADBQAqAmGgAwUAKgP8QAMFAyoEHcADBQMqBlsAAwUDKgZjwDANBgkqhkiG9w0B
AQsFAAOCAQEAqJZBTwwNFV/H14+jp28Q3FNo/ukqiRDMZMvAnPY7XYfd8Rk1/iil
rXos/+iv7PlbvyoR4VyLlpWmpWAa3B0KTqT8SaavBV9XkQYjiFaElpdBOdSl6rmX
8jPLd4WI0fiR3qa6PAqnJoiCs5o5POHS2GGj8P1kxp0s3cIA4pHIlKJm+QiLSmqX
pDRpgTykQaZ0FUgS5qE9HQNzI3nlEPWUC4LoCEqZqiIevnq2ptntepKwX567UjI9
VjQ0ihww9J6yfMfnpY5Y9vH0bnCLBfQeFwIupldfh/2cT18AZkzNoUBFPBBc7hq0
t/DVLk3MZBqkU2+xflKGExEY9mB/s1+T7w==
-----END CERTIFICATE-----
Generated at Thu Aug 29 10:18:12 2024 by rpki-client on console-ams.rpki-client.org