Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/zTW6HeJZXnJy0cGgOHwYj0_e5dU.roa
File: zTW6HeJZXnJy0cGgOHwYj0_e5dU.roa (raw, json)
Hash identifier: X7dYoFZXgKJBQSQaTfK2PhKsKxmQ2P2YiAThw6W7Yps=
Subject key identifier: CD:35:BA:1D:E2:59:5E:72:72:D1:C1:A0:38:7C:18:8F:4F:DE:E5:D5
Certificate issuer: /CN=59919584033c3911a009bdde3183f6c60b2afcca
Certificate serial: 01857139A733848951BF638EBA62F1116C0D
Authority key identifier: 59:91:95:84:03:3C:39:11:A0:09:BD:DE:31:83:F6:C6:0B:2A:FC:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WZGVhAM8ORGgCb3eMYP2xgsq_Mo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/zTW6HeJZXnJy0cGgOHwYj0_e5dU.roa
Signing time: Mon 02 Jan 2023 06:44:41 +0000
ROA not before: Mon 02 Jan 2023 06:44:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31115
IP address blocks: 178.19.152.0/21 maxlen: 21
178.19.156.0/24 maxlen: 24
62.97.32.0/19 maxlen: 19
62.97.32.0/20 maxlen: 20
62.97.45.0/24 maxlen: 24
62.97.48.0/20 maxlen: 20
130.255.144.0/21 maxlen: 21
130.255.144.0/22 maxlen: 22
130.255.144.0/24 maxlen: 24
91.187.201.0/24 maxlen: 24
91.187.208.0/20 maxlen: 20
91.187.217.0/24 maxlen: 24
178.19.144.0/20 maxlen: 20
178.19.144.0/21 maxlen: 21
94.126.56.0/21 maxlen: 21
94.126.56.0/22 maxlen: 22
94.126.60.0/22 maxlen: 22
185.11.192.0/22 maxlen: 22
195.134.176.0/22 maxlen: 22
195.134.176.0/21 maxlen: 21
195.134.182.0/24 maxlen: 24
195.134.180.0/22 maxlen: 22
130.255.150.0/24 maxlen: 24
130.255.148.0/22 maxlen: 22
130.255.149.0/24 maxlen: 24
31.171.136.0/21 maxlen: 21
31.171.136.0/22 maxlen: 22
31.171.140.0/24 maxlen: 24
31.171.140.0/22 maxlen: 22
91.187.192.0/20 maxlen: 20
91.187.192.0/19 maxlen: 19
91.187.199.0/24 maxlen: 24
5.172.64.0/19 maxlen: 19
2a01:9840::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 23 Mar 2023 07:57:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:a7:33:84:89:51:bf:63:8e:ba:62:f1:11:6c:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59919584033c3911a009bdde3183f6c60b2afcca
Validity
Not Before: Jan 2 06:44:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd35ba1de2595e7272d1c1a0387c188f4fdee5d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:3f:3e:7a:30:93:0e:d8:43:d4:c6:b7:db:a2:
05:b0:95:d2:d7:f4:9e:c4:5f:15:26:df:33:58:fa:
be:b8:80:8a:b4:e5:82:0a:5f:72:00:e5:23:37:3a:
9f:74:de:3a:58:43:0a:50:90:77:1a:dc:24:ee:2e:
c8:88:6c:4d:5b:3d:6c:9b:de:40:25:17:85:06:37:
da:04:6d:33:1d:3d:28:f5:bc:58:f0:90:5d:06:95:
1d:5e:1e:47:79:08:8c:7d:15:40:88:8a:72:df:21:
07:62:df:b9:af:fe:68:d1:f3:08:38:6d:50:14:62:
e9:78:58:81:69:a2:6d:a1:8d:e1:b0:c6:bf:ab:a5:
21:33:74:b1:4f:b7:ad:50:ba:17:51:ae:c2:37:df:
ae:28:be:ae:01:5d:5a:97:d9:aa:f5:7d:d5:39:2c:
8c:e1:74:c3:84:de:9d:53:c1:c1:f7:7b:54:c5:b0:
25:1a:54:d8:8e:f5:ba:3b:c4:0e:d8:51:ca:66:6b:
d0:29:60:50:7f:67:80:3e:7b:13:48:c3:1d:e5:9c:
18:7f:85:9b:db:94:f8:17:ae:41:28:77:e8:a8:7f:
d8:17:70:5e:b1:7a:63:8c:be:7c:d2:e7:c3:28:77:
47:87:6b:36:eb:20:37:27:f2:6b:c6:df:e0:44:1f:
a3:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:35:BA:1D:E2:59:5E:72:72:D1:C1:A0:38:7C:18:8F:4F:DE:E5:D5
X509v3 Authority Key Identifier:
keyid:59:91:95:84:03:3C:39:11:A0:09:BD:DE:31:83:F6:C6:0B:2A:FC:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WZGVhAM8ORGgCb3eMYP2xgsq_Mo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/zTW6HeJZXnJy0cGgOHwYj0_e5dU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2fea18-fb62-4b95-9feb-9cf811e9fa7a/1/WZGVhAM8ORGgCb3eMYP2xgsq_Mo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.64.0/19
31.171.136.0/21
62.97.32.0/19
91.187.192.0/19
94.126.56.0/21
130.255.144.0/21
178.19.144.0/20
185.11.192.0/22
195.134.176.0/21
IPv6:
2a01:9840::/32
Signature Algorithm: sha256WithRSAEncryption
58:5b:f7:48:f0:a6:38:4e:3a:12:20:0e:52:04:1c:2f:e6:74:
b5:36:03:69:f4:74:e1:08:1c:89:c1:2b:5b:26:2f:1c:35:5e:
98:7c:3e:c1:b3:7f:05:bb:c9:eb:ef:f4:e4:03:45:1a:48:bd:
18:0b:da:08:05:2b:64:3d:92:31:53:b5:44:fb:02:d0:ca:b3:
dd:ed:9a:38:ce:89:b6:b7:7d:4a:08:95:d2:47:02:dd:ba:bf:
2c:e6:50:dc:f8:6e:19:79:df:fc:20:64:77:6c:37:04:80:85:
fa:dd:dc:68:3a:80:1f:e7:d2:a8:e6:3a:42:9c:be:bc:af:a9:
d7:cb:d8:66:dd:8d:6a:68:83:e1:8d:2c:10:42:cc:75:b0:64:
ee:7b:dd:76:32:81:36:00:f7:4a:31:39:55:b6:0b:cf:ce:a3:
fc:12:d5:b9:2c:32:ee:fb:e7:cd:84:60:43:73:52:3b:e4:31:
67:40:e8:be:59:cc:57:c9:83:6f:41:d7:fb:d9:18:46:93:e4:
e4:ad:f6:25:8c:72:19:c1:f8:c1:2c:ee:49:f8:8b:16:3f:b7:
77:57:14:5f:69:99:23:e4:b2:f4:4c:c5:4b:cc:2c:32:3e:a6:
ac:42:d7:2a:61:c0:14:95:1d:90:b8:66:b4:f2:ca:bf:4c:a4:
05:c2:47:7c
-----BEGIN CERTIFICATE-----
MIIFPDCCBCSgAwIBAgISAYVxOaczhIlRv2OOumLxEWwNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU5OTE5NTg0MDMzYzM5MTFhMDA5YmRkZTMxODNmNmM2MGIy
YWZjY2EwHhcNMjMwMTAyMDY0NDQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZDM1YmExZGUyNTk1ZTcyNzJkMWMxYTAzODdjMTg4ZjRmZGVlNWQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAij8+ejCTDthD1Ma326IFsJXS1/Se
xF8VJt8zWPq+uICKtOWCCl9yAOUjNzqfdN46WEMKUJB3Gtwk7i7IiGxNWz1sm95A
JReFBjfaBG0zHT0o9bxY8JBdBpUdXh5HeQiMfRVAiIpy3yEHYt+5r/5o0fMIOG1Q
FGLpeFiBaaJtoY3hsMa/q6UhM3SxT7etULoXUa7CN9+uKL6uAV1al9mq9X3VOSyM
4XTDhN6dU8HB93tUxbAlGlTYjvW6O8QO2FHKZmvQKWBQf2eAPnsTSMMd5ZwYf4Wb
25T4F65BKHfoqH/YF3BesXpjjL580ufDKHdHh2s26yA3J/Jrxt/gRB+jbQIDAQAB
o4ICSDCCAkQwHQYDVR0OBBYEFM01uh3iWV5yctHBoDh8GI9P3uXVMB8GA1UdIwQY
MBaAFFmRlYQDPDkRoAm93jGD9sYLKvzKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV1pHVmhBTThPUkdnQ2IzZU1ZUDJ4Z3NxX01vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8yZmVhMTgtZmI2Mi00Yjk1LTlmZWIt
OWNmODExZTlmYTdhLzEvelRXNkhlSlpYbkp5MGNHZ09Id1lqMF9lNWRVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi8yZmVhMTgtZmI2Mi00Yjk1LTlmZWItOWNmODExZTlmYTdh
LzEvV1pHVmhBTThPUkdnQ2IzZU1ZUDJ4Z3NxX01vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMF4GCCsGAQUFBwEHAQH/BE8wTTA8BAIAATA2AwQFBaxAAwQD
H6uIAwQFPmEgAwQFW7vAAwQDXn44AwQDgv+QAwQEshOQAwQCuQvAAwQDw4awMA0E
AgACMAcDBQAqAZhAMA0GCSqGSIb3DQEBCwUAA4IBAQBYW/dI8KY4TjoSIA5SBBwv
5nS1NgNp9HThCByJwStbJi8cNV6YfD7Bs38Fu8nr7/TkA0UaSL0YC9oIBStkPZIx
U7VE+wLQyrPd7Zo4zom2t31KCJXSRwLdur8s5lDc+G4Zed/8IGR3bDcEgIX63dxo
OoAf59Ko5jpCnL68r6nXy9hm3Y1qaIPhjSwQQsx1sGTue912MoE2APdKMTlVtgvP
zqP8EtW5LDLu++fNhGBDc1I75DFnQOi+WcxXyYNvQdf72RhGk+TkrfYljHIZwfjB
LO5J+IsWP7d3VxRfaZkj5LL0TMVLzCwyPqasQtcqYcAUlR2QuGa08sq/TKQFwkd8
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:40 2024 by rpki-client on console-fra.rpki-client.org