Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/bf8338-8752-4d55-9c31-0e1b8fea8913/1/uEkS5Y5wGbtl2Ady0NYV1gM-EAI.roa
File: uEkS5Y5wGbtl2Ady0NYV1gM-EAI.roa (raw, json)
Hash identifier: sUonMx7Ab/vJCT+0t0T7DwoYlzDW28omeDJYPYnO5lA=
Subject key identifier: B8:49:12:E5:8E:70:19:BB:65:D8:07:72:D0:D6:15:D6:03:3E:10:02
Certificate issuer: /CN=69507f066f2bb0389dd88436074e1426114f2d92
Certificate serial: 0189D4DB7125F8BE9D6C79199D9789D2778B
Authority key identifier: 69:50:7F:06:6F:2B:B0:38:9D:D8:84:36:07:4E:14:26:11:4F:2D:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVB_Bm8rsDid2IQ2B04UJhFPLZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/bf8338-8752-4d55-9c31-0e1b8fea8913/1/uEkS5Y5wGbtl2Ady0NYV1gM-EAI.roa
Signing time: Tue 08 Aug 2023 11:14:58 +0000
ROA not before: Tue 08 Aug 2023 11:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210079
IP address blocks: 178.208.64.0/24 maxlen: 24
178.208.68.0/24 maxlen: 24
178.208.67.0/24 maxlen: 24
178.208.66.0/24 maxlen: 24
178.208.71.0/24 maxlen: 24
178.208.70.0/24 maxlen: 24
178.208.69.0/24 maxlen: 24
178.208.65.0/24 maxlen: 24
178.208.72.0/24 maxlen: 24
178.208.75.0/24 maxlen: 24
178.208.74.0/24 maxlen: 24
178.208.73.0/24 maxlen: 24
178.208.78.0/24 maxlen: 24
178.208.77.0/24 maxlen: 24
178.208.76.0/24 maxlen: 24
178.208.82.0/24 maxlen: 24
178.208.81.0/24 maxlen: 24
178.208.80.0/24 maxlen: 24
178.208.85.0/24 maxlen: 24
178.208.84.0/24 maxlen: 24
178.208.83.0/24 maxlen: 24
178.208.79.0/24 maxlen: 24
178.208.89.0/24 maxlen: 24
178.208.88.0/24 maxlen: 24
178.208.91.0/24 maxlen: 24
178.208.90.0/24 maxlen: 24
178.208.86.0/24 maxlen: 24
178.208.95.0/24 maxlen: 24
178.208.94.0/24 maxlen: 24
178.208.93.0/24 maxlen: 24
178.208.92.0/24 maxlen: 24
109.234.32.0/24 maxlen: 24
2.56.90.0/24 maxlen: 24
2.56.88.0/24 maxlen: 24
185.105.108.0/24 maxlen: 24
185.105.111.0/24 maxlen: 24
185.105.110.0/24 maxlen: 24
185.105.109.0/24 maxlen: 24
95.142.38.0/24 maxlen: 24
95.142.37.0/24 maxlen: 24
95.142.36.0/24 maxlen: 24
95.142.35.0/24 maxlen: 24
95.142.32.0/24 maxlen: 24
95.142.43.0/24 maxlen: 24
95.142.42.0/24 maxlen: 24
95.142.40.0/24 maxlen: 24
95.142.39.0/24 maxlen: 24
2a09:c140:3::/48 maxlen: 48
2a09:c140:db::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 24 Oct 2023 06:13:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d4:db:71:25:f8:be:9d:6c:79:19:9d:97:89:d2:77:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69507f066f2bb0389dd88436074e1426114f2d92
Validity
Not Before: Aug 8 11:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b84912e58e7019bb65d80772d0d615d6033e1002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a4:1e:b7:89:ff:55:dc:7f:54:63:5e:93:98:
7f:08:89:2b:49:31:99:84:bc:a1:5d:b5:9f:5d:14:
d1:47:f4:60:e0:4e:ea:3d:b4:8d:2a:5e:db:22:e4:
02:ef:d1:ff:b4:4b:19:a6:dd:09:19:eb:cb:e9:7b:
21:f8:e5:f1:75:de:67:92:e2:3d:93:18:f7:39:ed:
8e:b7:45:25:65:f1:af:6d:c6:f9:01:76:41:04:80:
2e:0e:78:04:29:66:5d:76:24:12:9a:ed:d5:11:56:
69:cf:74:36:ea:23:82:17:45:75:09:f1:06:c6:ad:
20:3d:48:3e:a9:6c:36:a3:ea:de:f8:d6:d4:a2:5d:
8f:18:cd:48:38:a1:a7:49:4e:45:8e:67:48:97:02:
99:9c:cb:2c:5a:4f:84:1b:c6:8e:5e:13:7d:32:e3:
cf:2f:28:74:26:72:f3:8d:18:92:80:14:3d:ce:47:
15:22:77:26:b2:bd:f9:d0:f6:43:8a:79:61:5d:ee:
64:e9:2c:a5:ff:17:9f:97:4c:90:e6:83:90:b3:56:
05:25:e9:96:b9:d7:eb:64:2e:30:35:a7:f0:cf:68:
88:50:58:a2:76:58:77:e6:4d:fc:80:89:9d:9a:f4:
03:60:2c:59:88:e9:aa:0c:27:3f:43:91:d8:a1:b1:
b4:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:49:12:E5:8E:70:19:BB:65:D8:07:72:D0:D6:15:D6:03:3E:10:02
X509v3 Authority Key Identifier:
keyid:69:50:7F:06:6F:2B:B0:38:9D:D8:84:36:07:4E:14:26:11:4F:2D:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVB_Bm8rsDid2IQ2B04UJhFPLZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/bf8338-8752-4d55-9c31-0e1b8fea8913/1/uEkS5Y5wGbtl2Ady0NYV1gM-EAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/bf8338-8752-4d55-9c31-0e1b8fea8913/1/aVB_Bm8rsDid2IQ2B04UJhFPLZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.88.0/24
2.56.90.0/24
95.142.32.0/24
95.142.35.0-95.142.40.255
95.142.42.0/23
109.234.32.0/24
178.208.64.0-178.208.86.255
178.208.88.0/21
185.105.108.0/22
IPv6:
2a09:c140:3::/48
2a09:c140:db::/48
Signature Algorithm: sha256WithRSAEncryption
74:e7:2e:b8:e2:e7:e0:16:2b:bf:74:3e:73:44:2b:cd:e5:9e:
21:aa:68:df:1c:21:e6:8a:32:7d:31:e6:a3:20:27:88:84:a9:
12:18:6b:a6:cc:9d:75:33:6c:09:b5:fa:a7:97:71:65:f4:be:
85:43:ee:fb:03:49:44:bf:60:15:92:ca:09:ca:07:4f:fa:a7:
d6:3e:30:67:62:5c:80:05:6b:be:66:64:3b:24:8d:c0:a7:2a:
78:0d:55:9b:31:a1:11:84:bc:4b:0f:78:a3:62:a2:60:ec:2a:
a9:c5:68:36:04:0e:bc:8d:4f:57:04:ca:92:0f:27:c0:94:14:
71:b8:6e:53:cf:31:1b:43:f4:f7:f5:57:16:25:ae:f7:4d:76:
14:f0:e5:3e:dc:90:e5:63:90:92:85:42:a1:0c:63:74:db:b0:
eb:07:84:fe:6f:35:49:22:f0:32:8e:d0:15:b8:ad:d7:52:d6:
e8:dd:8b:ed:26:e4:2f:89:77:5d:4f:54:82:cb:35:6f:c4:e7:
56:46:9a:3b:1b:e0:5b:d2:f5:c8:35:b4:af:1a:14:53:1c:c8:
56:9a:be:4b:8d:d5:d8:b2:3f:84:f0:01:ba:02:60:80:6a:10:
ae:6d:7e:b9:1f:c7:2a:3f:5f:c7:3f:2b:b2:12:25:df:9b:eb:
b7:9d:8e:5b
-----BEGIN CERTIFICATE-----
MIIFVzCCBD+gAwIBAgISAYnU23El+L6dbHkZnZeJ0neLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5NTA3ZjA2NmYyYmIwMzg5ZGQ4ODQzNjA3NGUxNDI2MTE0
ZjJkOTIwHhcNMjMwODA4MTExNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiODQ5MTJlNThlNzAxOWJiNjVkODA3NzJkMGQ2MTVkNjAzM2UxMDAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqaQet4n/Vdx/VGNek5h/CIkrSTGZ
hLyhXbWfXRTRR/Rg4E7qPbSNKl7bIuQC79H/tEsZpt0JGevL6Xsh+OXxdd5nkuI9
kxj3Oe2Ot0UlZfGvbcb5AXZBBIAuDngEKWZddiQSmu3VEVZpz3Q26iOCF0V1CfEG
xq0gPUg+qWw2o+re+NbUol2PGM1IOKGnSU5FjmdIlwKZnMssWk+EG8aOXhN9MuPP
Lyh0JnLzjRiSgBQ9zkcVIncmsr350PZDinlhXe5k6Syl/xefl0yQ5oOQs1YFJemW
udfrZC4wNafwz2iIUFiidlh35k38gImdmvQDYCxZiOmqDCc/Q5HYobG0xwIDAQAB
o4ICYzCCAl8wHQYDVR0OBBYEFLhJEuWOcBm7ZdgHctDWFdYDPhACMB8GA1UdIwQY
MBaAFGlQfwZvK7A4ndiENgdOFCYRTy2SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVZCX0JtOHJzRGlkMklRMkIwNFVKaEZQTFpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9iZjgzMzgtODc1Mi00ZDU1LTljMzEt
MGUxYjhmZWE4OTEzLzEvdUVrUzVZNXdHYnRsMkFkeTBOWVYxZ00tRUFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy9iZjgzMzgtODc1Mi00ZDU1LTljMzEtMGUxYjhmZWE4OTEz
LzEvYVZCX0JtOHJzRGlkMklRMkIwNFVKaEZQTFpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHkGCCsGAQUFBwEHAQH/BGowaDBMBAIAATBGAwQAAjhYAwQA
AjhaAwQAX44gMAwDBABfjiMDBABfjigDBAFfjioDBABt6iAwDAMEBrLQQAMEALLQ
VgMEA7LQWAMEArlpbDAYBAIAAjASAwcAKgnBQAADAwcAKgnBQADbMA0GCSqGSIb3
DQEBCwUAA4IBAQB05y644ufgFiu/dD5zRCvN5Z4hqmjfHCHmijJ9MeajICeIhKkS
GGumzJ11M2wJtfqnl3Fl9L6FQ+77A0lEv2AVksoJygdP+qfWPjBnYlyABWu+ZmQ7
JI3Apyp4DVWbMaERhLxLD3ijYqJg7CqpxWg2BA68jU9XBMqSDyfAlBRxuG5TzzEb
Q/T39VcWJa73TXYU8OU+3JDlY5CShUKhDGN027DrB4T+bzVJIvAyjtAVuK3XUtbo
3YvtJuQviXddT1SCyzVvxOdWRpo7G+Bb0vXINbSvGhRTHMhWmr5LjdXYsj+E8AG6
AmCAahCubX65H8cqP1/HPyuyEiXfm+u3nY5b
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:20 2024 by rpki-client on console-fra.rpki-client.org