Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/OrMjlRE6Xm_kCiyTpvE-u5nZgaU.roa
File: OrMjlRE6Xm_kCiyTpvE-u5nZgaU.roa (raw, json)
Hash identifier: KitUb9ewdOzxbI7SsgX6ppWjrZ0MkNguqKWguWodGf0=
Subject key identifier: 3A:B3:23:95:11:3A:5E:6F:E4:0A:2C:93:A6:F1:3E:BB:99:D9:81:A5
Certificate issuer: /CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Certificate serial: 019324A7B2CCF53EE696819A5D6BD8E9A128
Authority key identifier: E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/OrMjlRE6Xm_kCiyTpvE-u5nZgaU.roa
Signing time: Wed 13 Nov 2024 08:33:10 +0000
ROA not before: Wed 13 Nov 2024 08:33:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41937
IP address blocks: 5.134.104.0/21 maxlen: 24
91.185.96.0/19 maxlen: 24
91.204.52.0/22 maxlen: 24
178.237.216.0/22 maxlen: 22
178.237.216.0/23 maxlen: 23
178.237.216.0/24 maxlen: 24
178.237.217.0/24 maxlen: 24
178.237.218.0/23 maxlen: 23
178.237.218.0/24 maxlen: 24
178.237.219.0/24 maxlen: 24
178.237.220.0/22 maxlen: 22
178.237.220.0/23 maxlen: 23
178.237.220.0/24 maxlen: 24
178.237.221.0/24 maxlen: 24
178.237.222.0/23 maxlen: 23
178.237.222.0/24 maxlen: 24
178.237.223.0/24 maxlen: 24
2a00:8720::/32 maxlen: 48
2a00:cf00::/32 maxlen: 48
2a01:b800::/32 maxlen: 48
2a02:61a0::/32 maxlen: 48
2a03:fc40::/32 maxlen: 48
2a04:1dc0::/29 maxlen: 48
2a06:63c0::/29 maxlen: 48
Validation: Failed, certificate revoked on Wed 13 Nov 2024 09:40:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:24:a7:b2:cc:f5:3e:e6:96:81:9a:5d:6b:d8:e9:a1:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Validity
Not Before: Nov 13 08:33:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3ab32395113a5e6fe40a2c93a6f13ebb99d981a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:eb:dc:98:f6:b9:2e:a8:ab:38:b7:f9:d5:3e:
47:9e:30:99:b4:7b:ac:34:ba:89:5a:40:a6:97:30:
69:85:c4:9c:16:ef:00:a3:c6:27:2a:fc:3d:1e:31:
30:ae:94:74:1d:ab:b2:71:5c:52:df:5e:0d:e1:62:
a4:05:3b:a5:51:2a:f8:0c:99:26:fa:9c:55:8a:a6:
81:63:b2:89:8f:c4:83:ea:36:4e:29:a9:d7:c5:63:
35:b1:9f:29:e3:4c:b1:f8:6f:27:d8:6a:a7:32:55:
20:b7:17:2f:b1:f7:5e:87:31:53:1b:5f:8e:d3:45:
7a:82:25:c9:0f:ea:27:e1:d6:65:0a:4b:d8:ad:f0:
e9:c9:76:6e:3d:f7:4e:9a:b9:48:95:4e:a8:f9:65:
d9:f0:8a:9d:ec:3b:7f:37:2b:16:52:6a:38:c6:e2:
e9:76:93:28:b1:47:24:fa:24:88:63:8c:9f:6f:cd:
d7:48:f1:66:62:54:79:31:ec:d4:36:d8:3b:05:4b:
b2:f4:90:81:2e:e4:20:04:87:3f:0d:c8:4f:0e:63:
a2:7f:33:30:51:c0:54:e7:2b:f8:8a:b0:f0:42:5a:
6a:a4:4c:47:1b:00:38:35:78:0d:8e:6d:fe:f2:72:
75:82:61:52:d3:8a:05:24:52:3c:6d:57:1e:1c:aa:
30:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:B3:23:95:11:3A:5E:6F:E4:0A:2C:93:A6:F1:3E:BB:99:D9:81:A5
X509v3 Authority Key Identifier:
keyid:E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/OrMjlRE6Xm_kCiyTpvE-u5nZgaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/6bEyD7wk1vQ2bLZPz17S17G2vfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.104.0/21
91.185.96.0/19
91.204.52.0/22
178.237.216.0/21
IPv6:
2a00:8720::/32
2a00:cf00::/32
2a01:b800::/32
2a02:61a0::/32
2a03:fc40::/32
2a04:1dc0::/29
2a06:63c0::/29
Signature Algorithm: sha256WithRSAEncryption
a3:7a:18:7e:fd:ba:ab:e3:b4:ed:d1:81:16:a9:1a:fe:1f:4b:
3f:03:c8:bd:6c:a6:d1:83:5d:76:53:21:c4:04:b1:cf:49:45:
82:e3:cf:72:54:ea:a2:3d:27:c6:16:ea:53:82:5f:cb:94:36:
ac:34:51:23:a2:ee:b3:b7:ee:80:0b:91:7f:68:fd:71:d2:1f:
48:32:8b:e3:e2:2a:ad:f3:f5:55:a5:31:58:5c:11:08:99:79:
29:3f:06:49:9a:ec:22:4e:a4:70:4a:41:54:bd:2a:70:d9:17:
66:22:72:a8:69:c8:8a:28:57:55:c8:71:07:7e:4b:60:a0:82:
7a:51:7a:ea:88:c1:45:c7:57:e8:01:22:f5:bf:52:5f:ad:01:
3a:bc:2d:35:8a:4b:7e:d5:b6:12:72:90:96:78:e2:d9:28:45:
9e:c1:44:69:9e:a0:9a:8a:44:8d:0b:e6:d3:3b:d8:0c:a0:da:
0b:30:04:83:ce:ca:83:53:b4:11:2d:a6:6f:1b:b7:c9:38:f2:
b0:0e:2c:d5:f9:73:bb:07:24:4d:91:94:4a:35:1c:4c:8f:1e:
ad:20:6d:f5:17:5a:95:4a:6b:f5:1b:30:24:42:31:95:89:1f:
61:c7:f4:08:dd:72:67:48:34:50:96:8c:10:9e:5a:11:38:b0:
a7:3c:d1:1d
-----BEGIN CERTIFICATE-----
MIIFSDCCBDCgAwIBAgISAZMkp7LM9T7mloGaXWvY6aEoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5YjEzMjBmYmMyNGQ2ZjQzNjZjYjY0ZmNmNWVkMmQ3YjFi
NmJkZjcwHhcNMjQxMTEzMDgzMzEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYWIzMjM5NTExM2E1ZTZmZTQwYTJjOTNhNmYxM2ViYjk5ZDk4MWE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8uvcmPa5LqirOLf51T5HnjCZtHus
NLqJWkCmlzBphcScFu8Ao8YnKvw9HjEwrpR0HauycVxS314N4WKkBTulUSr4DJkm
+pxViqaBY7KJj8SD6jZOKanXxWM1sZ8p40yx+G8n2GqnMlUgtxcvsfdehzFTG1+O
00V6giXJD+on4dZlCkvYrfDpyXZuPfdOmrlIlU6o+WXZ8Iqd7Dt/NysWUmo4xuLp
dpMosUck+iSIY4yfb83XSPFmYlR5MezUNtg7BUuy9JCBLuQgBIc/DchPDmOifzMw
UcBU5yv4irDwQlpqpExHGwA4NXgNjm3+8nJ1gmFS04oFJFI8bVceHKowwQIDAQAB
o4ICVDCCAlAwHQYDVR0OBBYEFDqzI5UROl5v5Aosk6bxPruZ2YGlMB8GA1UdIwQY
MBaAFOmxMg+8JNb0Nmy2T89e0textr33MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNmJFeUQ3d2sxdlEyYkxaUHoxN1MxN0cydmZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9kZjFjYjUtNWY0OC00NmEwLWE3NmUt
ZDNlMjgwMGJkNjQwLzEvT3JNamxSRTZYbV9rQ2l5VHB2RS11NW5aZ2FVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC9kZjFjYjUtNWY0OC00NmEwLWE3NmUtZDNlMjgwMGJkNjQw
LzEvNmJFeUQ3d2sxdlEyYkxaUHoxN1MxN0cydmZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGoGCCsGAQUFBwEHAQH/BFswWTAeBAIAATAYAwQDBYZoAwQF
W7lgAwQCW8w0AwQDsu3YMDcEAgACMDEDBQAqAIcgAwUAKgDPAAMFACoBuAADBQAq
AmGgAwUAKgP8QAMFAyoEHcADBQMqBmPAMA0GCSqGSIb3DQEBCwUAA4IBAQCjehh+
/bqr47Tt0YEWqRr+H0s/A8i9bKbRg112UyHEBLHPSUWC489yVOqiPSfGFupTgl/L
lDasNFEjou6zt+6AC5F/aP1x0h9IMovj4iqt8/VVpTFYXBEImXkpPwZJmuwiTqRw
SkFUvSpw2RdmInKoaciKKFdVyHEHfktgoIJ6UXrqiMFFx1foASL1v1JfrQE6vC01
ikt+1bYScpCWeOLZKEWewURpnqCaikSNC+bTO9gMoNoLMASDzsqDU7QRLaZvG7fJ
OPKwDizV+XO7ByRNkZRKNRxMjx6tIG31F1qVSmv1GzAkQjGViR9hx/QI3XJnSDRQ
lowQnloROLCnPNEd
-----END CERTIFICATE-----
Generated at Wed Nov 13 14:06:17 2024 by rpki-client on console-ams.rpki-client.org