Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/WE0LlXMpbzKK4oH2B6ZyOw19YRk.roa
File: WE0LlXMpbzKK4oH2B6ZyOw19YRk.roa (raw, json)
Hash identifier: rGmitdc9byDeBfKiW9evnfsgGNuN+Ikp26A+knMa9tQ=
Subject key identifier: 58:4D:0B:95:73:29:6F:32:8A:E2:81:F6:07:A6:72:3B:0D:7D:61:19
Certificate issuer: /CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Certificate serial: 01919D550DAAC53301DA14A5A6D46A778C32
Authority key identifier: E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/WE0LlXMpbzKK4oH2B6ZyOw19YRk.roa
Signing time: Thu 29 Aug 2024 08:51:22 +0000
ROA not before: Thu 29 Aug 2024 08:51:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41937
IP address blocks: 5.134.104.0/21 maxlen: 24
46.235.96.0/21 maxlen: 21
62.240.24.0/21 maxlen: 24
87.250.32.0/19 maxlen: 24
91.185.96.0/19 maxlen: 24
91.204.52.0/22 maxlen: 24
109.94.228.0/22 maxlen: 24
109.94.232.0/21 maxlen: 24
109.122.64.0/18 maxlen: 24
109.198.0.0/19 maxlen: 24
178.79.0.0/18 maxlen: 24
178.237.208.0/20 maxlen: 20
178.250.136.0/21 maxlen: 24
185.10.140.0/22 maxlen: 24
185.26.172.0/22 maxlen: 24
185.34.92.0/22 maxlen: 24
185.103.136.0/22 maxlen: 24
185.112.20.0/22 maxlen: 24
185.179.136.0/22 maxlen: 24
2a00:8720::/32 maxlen: 48
2a00:cf00::/32 maxlen: 48
2a01:b800::/32 maxlen: 48
2a02:61a0::/32 maxlen: 48
2a03:fc40::/32 maxlen: 48
2a04:1dc0::/29 maxlen: 48
2a06:5b00::/29 maxlen: 48
2a06:63c0::/29 maxlen: 48
Validation: Failed, certificate revoked on Thu 29 Aug 2024 09:22:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9d:55:0d:aa:c5:33:01:da:14:a5:a6:d4:6a:77:8c:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Validity
Not Before: Aug 29 08:51:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=584d0b9573296f328ae281f607a6723b0d7d6119
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e9:ba:89:2d:69:41:40:c0:e4:27:69:07:5e:
90:b1:65:00:f5:1f:d6:26:c7:18:ac:34:73:5e:70:
fd:bd:94:fc:95:b2:9b:18:35:0d:06:f2:94:71:aa:
d7:6b:7b:0b:0c:10:e3:b6:62:49:f8:88:89:a0:2e:
2d:15:e5:23:f0:fa:22:ad:3b:3f:c2:21:e0:52:dd:
e9:c0:9e:e0:9c:34:5c:85:24:a0:96:44:31:c5:5c:
ef:84:60:20:be:9a:58:80:9b:10:c2:01:bc:3e:95:
b2:ff:c6:d2:80:83:c4:23:0f:f3:96:73:72:4c:2d:
a7:93:ad:b0:1e:1a:7a:6b:2a:f7:ed:f8:b7:d1:c5:
3d:ec:65:e8:e8:0c:0f:b7:45:c8:27:bd:0e:2a:08:
43:5f:b2:ea:27:78:6e:26:f0:7f:ca:9f:07:14:fb:
25:14:85:05:0c:b2:38:13:38:9d:7b:33:5c:8c:f6:
e6:16:ad:c0:5b:f6:54:f8:a8:b5:6a:64:eb:8c:73:
c3:0f:5d:b1:d7:0e:0d:c1:00:56:2f:bb:05:a1:c2:
eb:96:98:10:5a:c9:10:62:10:d9:12:29:cd:e6:31:
da:74:5d:e9:38:c9:2e:ae:30:e9:fb:e4:4e:58:16:
d0:35:a1:c5:9a:c5:aa:f1:e6:c2:3c:82:24:97:85:
61:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:4D:0B:95:73:29:6F:32:8A:E2:81:F6:07:A6:72:3B:0D:7D:61:19
X509v3 Authority Key Identifier:
keyid:E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/WE0LlXMpbzKK4oH2B6ZyOw19YRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/6bEyD7wk1vQ2bLZPz17S17G2vfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.104.0/21
46.235.96.0/21
62.240.24.0/21
87.250.32.0/19
91.185.96.0/19
91.204.52.0/22
109.94.228.0-109.94.239.255
109.122.64.0/18
109.198.0.0/19
178.79.0.0/18
178.237.208.0/20
178.250.136.0/21
185.10.140.0/22
185.26.172.0/22
185.34.92.0/22
185.103.136.0/22
185.112.20.0/22
185.179.136.0/22
IPv6:
2a00:8720::/32
2a00:cf00::/32
2a01:b800::/32
2a02:61a0::/32
2a03:fc40::/32
2a04:1dc0::/29
2a06:5b00::/29
2a06:63c0::/29
Signature Algorithm: sha256WithRSAEncryption
84:b3:fd:0a:08:fa:2a:24:2b:5f:8e:4c:1f:65:8b:db:ca:07:
a7:1d:94:9f:d9:46:7f:17:0a:ae:f5:1f:be:25:30:e4:41:b2:
03:c0:11:49:58:54:17:73:91:85:b3:f1:10:13:d8:a2:15:51:
1a:e6:7f:8f:25:49:99:3d:86:78:e3:86:19:e2:45:b3:28:c2:
e1:12:2a:89:eb:0e:37:2f:ce:3d:de:3c:cd:58:95:10:55:0f:
29:b6:0b:9e:dd:3d:2e:cc:75:f1:93:c7:8a:5e:56:60:b0:5e:
4e:4f:6f:0f:e4:c1:03:62:a0:53:eb:9c:8a:c8:d2:d3:a4:6c:
3a:61:8f:53:e2:d2:b7:cc:33:91:26:6d:62:f6:02:31:18:88:
69:2e:7e:30:9a:cd:58:60:bb:60:8f:4c:6f:65:3c:76:10:49:
17:57:6a:98:13:7f:1b:1f:22:b1:bb:34:93:63:6a:ba:cd:43:
20:26:97:b7:53:12:62:e6:5e:7d:27:15:be:76:80:f4:ce:4d:
11:84:5e:1e:0c:58:44:d4:2d:45:46:4a:14:b8:fd:63:b1:f4:
ce:75:e3:75:44:37:18:57:f7:30:89:6d:69:91:7f:6d:d0:cd:
f9:f8:53:b4:58:5c:ec:80:e3:bc:13:27:98:46:4e:9f:83:82:
f5:bb:7c:8f
-----BEGIN CERTIFICATE-----
MIIFrjCCBJagAwIBAgISAZGdVQ2qxTMB2hSlptRqd4wyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5YjEzMjBmYmMyNGQ2ZjQzNjZjYjY0ZmNmNWVkMmQ3YjFi
NmJkZjcwHhcNMjQwODI5MDg1MTIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ODRkMGI5NTczMjk2ZjMyOGFlMjgxZjYwN2E2NzIzYjBkN2Q2MTE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzOm6iS1pQUDA5CdpB16QsWUA9R/W
JscYrDRzXnD9vZT8lbKbGDUNBvKUcarXa3sLDBDjtmJJ+IiJoC4tFeUj8PoirTs/
wiHgUt3pwJ7gnDRchSSglkQxxVzvhGAgvppYgJsQwgG8PpWy/8bSgIPEIw/zlnNy
TC2nk62wHhp6ayr37fi30cU97GXo6AwPt0XIJ70OKghDX7LqJ3huJvB/yp8HFPsl
FIUFDLI4EzidezNcjPbmFq3AW/ZU+Ki1amTrjHPDD12x1w4NwQBWL7sFocLrlpgQ
WskQYhDZEinN5jHadF3pOMkurjDp++ROWBbQNaHFmsWq8ebCPIIkl4VhgwIDAQAB
o4ICujCCArYwHQYDVR0OBBYEFFhNC5VzKW8yiuKB9gemcjsNfWEZMB8GA1UdIwQY
MBaAFOmxMg+8JNb0Nmy2T89e0textr33MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNmJFeUQ3d2sxdlEyYkxaUHoxN1MxN0cydmZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9kZjFjYjUtNWY0OC00NmEwLWE3NmUt
ZDNlMjgwMGJkNjQwLzEvV0UwTGxYTXBiektLNG9IMkI2WnlPdzE5WVJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC9kZjFjYjUtNWY0OC00NmEwLWE3NmUtZDNlMjgwMGJkNjQw
LzEvNmJFeUQ3d2sxdlEyYkxaUHoxN1MxN0cydmZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHPBggrBgEFBQcBBwEB/wSBvzCBvDB6BAIAATB0AwQDBYZo
AwQDLutgAwQDPvAYAwQFV/ogAwQFW7lgAwQCW8w0MAwDBAJtXuQDBARtXuADBAZt
ekADBAVtxgADBAayTwADBASy7dADBAOy+ogDBAK5CowDBAK5GqwDBAK5IlwDBAK5
Z4gDBAK5cBQDBAK5s4gwPgQCAAIwOAMFACoAhyADBQAqAM8AAwUAKgG4AAMFACoC
YaADBQAqA/xAAwUDKgQdwAMFAyoGWwADBQMqBmPAMA0GCSqGSIb3DQEBCwUAA4IB
AQCEs/0KCPoqJCtfjkwfZYvbygenHZSf2UZ/Fwqu9R++JTDkQbIDwBFJWFQXc5GF
s/EQE9iiFVEa5n+PJUmZPYZ444YZ4kWzKMLhEiqJ6w43L8493jzNWJUQVQ8ptgue
3T0uzHXxk8eKXlZgsF5OT28P5MEDYqBT65yKyNLTpGw6YY9T4tK3zDORJm1i9gIx
GIhpLn4wms1YYLtgj0xvZTx2EEkXV2qYE38bHyKxuzSTY2q6zUMgJpe3UxJi5l59
JxW+doD0zk0RhF4eDFhE1C1FRkoUuP1jsfTOdeN1RDcYV/cwiW1pkX9t0M35+FO0
WFzsgOO8EyeYRk6fg4L1u3yP
-----END CERTIFICATE-----
Generated at Thu Aug 29 12:34:24 2024 by rpki-client on console-ams.rpki-client.org