Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/po5uT4rgnC9iQ7nN3JfH55gnQ-Q.roa
File: po5uT4rgnC9iQ7nN3JfH55gnQ-Q.roa (raw, json)
Hash identifier: eL3axUccnCOEHmA1stqfnVDTDokAPWQABsan+/C7ohI=
Subject key identifier: A6:8E:6E:4F:8A:E0:9C:2F:62:43:B9:CD:DC:97:C7:E7:98:27:43:E4
Certificate issuer: /CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Certificate serial: 0191B20BCAB29FABAC1CF041FC67FCD98480
Authority key identifier: E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/po5uT4rgnC9iQ7nN3JfH55gnQ-Q.roa
Signing time: Mon 02 Sep 2024 09:23:22 +0000
ROA not before: Mon 02 Sep 2024 09:23:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41937
IP address blocks: 5.134.104.0/21 maxlen: 24
46.235.96.0/21 maxlen: 21
46.235.96.0/22 maxlen: 22
46.235.96.0/23 maxlen: 23
46.235.96.0/24 maxlen: 24
46.235.97.0/24 maxlen: 24
46.235.98.0/23 maxlen: 23
46.235.98.0/24 maxlen: 24
46.235.99.0/24 maxlen: 24
46.235.100.0/22 maxlen: 22
46.235.100.0/23 maxlen: 23
46.235.100.0/24 maxlen: 24
46.235.101.0/24 maxlen: 24
46.235.102.0/23 maxlen: 23
46.235.102.0/24 maxlen: 24
46.235.103.0/24 maxlen: 24
62.240.24.0/21 maxlen: 24
91.185.96.0/19 maxlen: 24
91.204.52.0/22 maxlen: 24
109.94.228.0/22 maxlen: 24
109.94.232.0/21 maxlen: 24
109.122.64.0/18 maxlen: 24
178.237.208.0/20 maxlen: 20
178.237.216.0/22 maxlen: 22
178.237.216.0/23 maxlen: 23
178.237.216.0/24 maxlen: 24
178.237.217.0/24 maxlen: 24
178.237.218.0/23 maxlen: 23
178.237.218.0/24 maxlen: 24
178.237.219.0/24 maxlen: 24
178.237.220.0/22 maxlen: 22
178.237.220.0/23 maxlen: 23
178.237.220.0/24 maxlen: 24
178.237.221.0/24 maxlen: 24
178.237.222.0/23 maxlen: 23
178.237.222.0/24 maxlen: 24
178.237.223.0/24 maxlen: 24
178.250.136.0/21 maxlen: 24
185.10.140.0/22 maxlen: 24
185.26.172.0/22 maxlen: 24
185.34.92.0/22 maxlen: 24
185.103.136.0/22 maxlen: 24
185.112.20.0/22 maxlen: 24
185.179.136.0/22 maxlen: 24
2a00:8720::/32 maxlen: 48
2a00:cf00::/32 maxlen: 48
2a01:b800::/32 maxlen: 48
2a02:61a0::/32 maxlen: 48
2a03:fc40::/32 maxlen: 48
2a04:1dc0::/29 maxlen: 48
2a06:63c0::/29 maxlen: 48
Validation: Failed, certificate revoked on Wed 02 Oct 2024 08:41:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b2:0b:ca:b2:9f:ab:ac:1c:f0:41:fc:67:fc:d9:84:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Validity
Not Before: Sep 2 09:23:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a68e6e4f8ae09c2f6243b9cddc97c7e7982743e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:99:7e:f2:86:c7:92:2d:44:b7:47:33:7d:4e:
73:b0:de:ef:fd:5d:7e:99:4e:b3:56:d8:92:fe:cb:
9d:52:b9:b4:76:42:b4:57:f0:2b:c7:8e:e0:99:78:
82:b5:08:62:f4:41:96:8d:66:a9:5d:a0:16:16:d2:
74:e7:77:d6:f2:79:b4:78:77:d9:b8:9f:c0:9e:3a:
10:c5:64:d7:39:ed:77:c9:b7:df:25:dc:f6:00:18:
35:b0:74:ae:11:cb:a9:99:d6:de:4d:79:cd:7f:d9:
0a:6d:16:a9:4b:87:39:16:8f:b9:82:65:5f:31:5e:
65:ca:13:22:bf:a9:a5:cb:2f:c3:22:30:d8:0e:2e:
cd:4b:66:e1:3c:a6:1f:5c:6a:fe:64:81:5e:88:d5:
f2:02:02:49:5f:5e:eb:f3:f6:cf:e5:10:ce:ca:8e:
ed:06:dc:9f:d1:54:21:18:c3:b3:b6:0f:7b:9d:ba:
0b:d4:f5:12:bb:ef:d4:ed:dc:81:cc:36:87:0f:7d:
99:29:04:54:87:db:5a:be:83:fd:5e:5d:f2:b5:22:
8d:e5:11:87:b1:0e:6b:61:e6:f0:f9:89:5d:fa:7a:
f7:18:9d:33:c9:bc:58:28:37:da:e8:ac:96:80:9d:
13:f5:06:c8:d2:7c:fc:05:04:7e:89:1f:6e:d4:15:
58:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:8E:6E:4F:8A:E0:9C:2F:62:43:B9:CD:DC:97:C7:E7:98:27:43:E4
X509v3 Authority Key Identifier:
keyid:E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/po5uT4rgnC9iQ7nN3JfH55gnQ-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/6bEyD7wk1vQ2bLZPz17S17G2vfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.104.0/21
46.235.96.0/21
62.240.24.0/21
91.185.96.0/19
91.204.52.0/22
109.94.228.0-109.94.239.255
109.122.64.0/18
178.237.208.0/20
178.250.136.0/21
185.10.140.0/22
185.26.172.0/22
185.34.92.0/22
185.103.136.0/22
185.112.20.0/22
185.179.136.0/22
IPv6:
2a00:8720::/32
2a00:cf00::/32
2a01:b800::/32
2a02:61a0::/32
2a03:fc40::/32
2a04:1dc0::/29
2a06:63c0::/29
Signature Algorithm: sha256WithRSAEncryption
5b:30:b0:81:f4:2f:12:9a:3a:76:c4:b4:3f:0f:83:eb:03:1e:
2a:2a:40:3d:c2:2b:18:3e:64:54:74:6d:a7:78:c3:88:75:f9:
f3:3c:8d:67:23:44:d9:e1:75:ef:f2:c2:df:4f:8e:fc:19:b8:
cd:c0:86:e4:9d:eb:2d:b5:06:d4:ab:6d:40:94:6a:a8:fe:3b:
c1:9c:a3:54:a5:0e:f8:a4:b3:63:1a:ab:91:35:8a:48:e9:4f:
3b:1b:d0:d2:9c:d1:14:98:93:99:e4:53:f1:cf:0f:4b:b0:cb:
c5:2e:26:25:d3:df:fb:d0:ae:0f:9e:db:67:f6:c6:80:74:8f:
07:b0:05:92:d5:03:87:3f:0d:bf:5a:d0:f5:57:6f:a9:74:f1:
b0:8d:43:79:35:8b:66:ca:7c:75:d7:81:3e:5d:10:f8:52:65:
e0:ea:9c:4f:01:95:bd:1a:5d:25:8f:c8:6a:b3:45:a8:26:a6:
34:22:66:8f:6d:00:42:11:a3:e3:2a:b0:76:7e:99:16:73:e0:
40:46:21:be:34:bb:df:ab:8b:f9:1d:7e:9c:58:b6:fb:cd:9e:
f5:36:a7:07:32:37:cf:56:d1:f8:4b:46:e5:d1:93:7a:36:a3:
b6:b2:50:6b:fa:18:53:14:42:3a:03:bc:9c:ec:22:8f:84:dc:
b8:31:80:10
-----BEGIN CERTIFICATE-----
MIIFlTCCBH2gAwIBAgISAZGyC8qyn6usHPBB/Gf82YSAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5YjEzMjBmYmMyNGQ2ZjQzNjZjYjY0ZmNmNWVkMmQ3YjFi
NmJkZjcwHhcNMjQwOTAyMDkyMzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNjhlNmU0ZjhhZTA5YzJmNjI0M2I5Y2RkYzk3YzdlNzk4Mjc0M2U0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5l+8obHki1Et0czfU5zsN7v/V1+
mU6zVtiS/sudUrm0dkK0V/Arx47gmXiCtQhi9EGWjWapXaAWFtJ053fW8nm0eHfZ
uJ/AnjoQxWTXOe13ybffJdz2ABg1sHSuEcupmdbeTXnNf9kKbRapS4c5Fo+5gmVf
MV5lyhMiv6mlyy/DIjDYDi7NS2bhPKYfXGr+ZIFeiNXyAgJJX17r8/bP5RDOyo7t
Btyf0VQhGMOztg97nboL1PUSu+/U7dyBzDaHD32ZKQRUh9tavoP9Xl3ytSKN5RGH
sQ5rYebw+Yld+nr3GJ0zybxYKDfa6KyWgJ0T9QbI0nz8BQR+iR9u1BVYVwIDAQAB
o4ICoTCCAp0wHQYDVR0OBBYEFKaObk+K4JwvYkO5zdyXx+eYJ0PkMB8GA1UdIwQY
MBaAFOmxMg+8JNb0Nmy2T89e0textr33MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNmJFeUQ3d2sxdlEyYkxaUHoxN1MxN0cydmZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9kZjFjYjUtNWY0OC00NmEwLWE3NmUt
ZDNlMjgwMGJkNjQwLzEvcG81dVQ0cmduQzlpUTduTjNKZkg1NWduUS1RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC9kZjFjYjUtNWY0OC00NmEwLWE3NmUtZDNlMjgwMGJkNjQw
LzEvNmJFeUQ3d2sxdlEyYkxaUHoxN1MxN0cydmZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG2BggrBgEFBQcBBwEB/wSBpjCBozBoBAIAATBiAwQDBYZo
AwQDLutgAwQDPvAYAwQFW7lgAwQCW8w0MAwDBAJtXuQDBARtXuADBAZtekADBASy
7dADBAOy+ogDBAK5CowDBAK5GqwDBAK5IlwDBAK5Z4gDBAK5cBQDBAK5s4gwNwQC
AAIwMQMFACoAhyADBQAqAM8AAwUAKgG4AAMFACoCYaADBQAqA/xAAwUDKgQdwAMF
AyoGY8AwDQYJKoZIhvcNAQELBQADggEBAFswsIH0LxKaOnbEtD8Pg+sDHioqQD3C
Kxg+ZFR0bad4w4h1+fM8jWcjRNnhde/ywt9PjvwZuM3AhuSd6y21BtSrbUCUaqj+
O8Gco1SlDviks2Maq5E1ikjpTzsb0NKc0RSYk5nkU/HPD0uwy8UuJiXT3/vQrg+e
22f2xoB0jwewBZLVA4c/Db9a0PVXb6l08bCNQ3k1i2bKfHXXgT5dEPhSZeDqnE8B
lb0aXSWPyGqzRagmpjQiZo9tAEIRo+MqsHZ+mRZz4EBGIb40u9+ri/kdfpxYtvvN
nvU2pwcyN89W0fhLRuXRk3o2o7ayUGv6GFMUQjoDvJzsIo+E3LgxgBA=
-----END CERTIFICATE-----
Generated at Wed Oct 2 10:29:21 2024 by rpki-client on console-fra.rpki-client.org