Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/1-i9ZYLuDOIvaCoLCBb4VvblHmis.roa
File: 1-i9ZYLuDOIvaCoLCBb4VvblHmis.roa (raw, json)
Hash identifier: afzkNIod7Kl9tGAgObpUSL6slS+Mn/OgG97HapXjDQk=
Subject key identifier: FA:2F:59:60:BB:83:38:8B:DA:0A:82:C2:05:BE:15:BD:B9:47:9A:2B
Certificate issuer: /CN=5dd6f6d299bcdec73d13f2d842fc1df4bc1ee2d3
Certificate serial: 0190E4F204E9C425290FE566CFC44FCA0AFF
Authority key identifier: 5D:D6:F6:D2:99:BC:DE:C7:3D:13:F2:D8:42:FC:1D:F4:BC:1E:E2:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xdb20pm83sc9E_LYQvwd9Lwe4tM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/1-i9ZYLuDOIvaCoLCBb4VvblHmis.roa
Signing time: Wed 24 Jul 2024 13:33:04 +0000
ROA not before: Wed 24 Jul 2024 13:33:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43700
IP address blocks: 31.172.224.0/22 maxlen: 22
31.172.224.0/23 maxlen: 23
31.172.226.0/23 maxlen: 23
45.84.244.0/22 maxlen: 22
45.84.244.0/23 maxlen: 23
78.158.0.0/19 maxlen: 19
78.158.0.0/20 maxlen: 20
78.158.16.0/20 maxlen: 20
91.200.252.0/22 maxlen: 24
95.215.140.0/22 maxlen: 22
95.215.140.0/23 maxlen: 23
95.215.142.0/23 maxlen: 23
185.246.240.0/22 maxlen: 22
185.246.240.0/23 maxlen: 23
185.246.242.0/23 maxlen: 23
185.252.108.0/22 maxlen: 22
185.252.108.0/23 maxlen: 23
185.252.110.0/23 maxlen: 23
185.252.204.0/22 maxlen: 22
185.252.204.0/23 maxlen: 23
185.252.206.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 26 Jul 2024 07:57:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e4:f2:04:e9:c4:25:29:0f:e5:66:cf:c4:4f:ca:0a:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dd6f6d299bcdec73d13f2d842fc1df4bc1ee2d3
Validity
Not Before: Jul 24 13:33:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fa2f5960bb83388bda0a82c205be15bdb9479a2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:db:1f:a4:cc:f3:87:4c:0a:ba:64:f7:8f:d3:
d4:06:5a:a5:f6:90:5f:91:c7:46:58:6e:43:51:5f:
e7:e5:af:40:53:55:fd:4e:43:fc:6f:59:c5:2b:34:
75:9b:60:f0:df:ff:5d:55:fe:89:85:4f:28:fb:f0:
ea:c0:9e:62:ed:f8:29:a4:ab:4c:78:a0:93:cb:40:
3c:0d:5c:56:8a:8d:f4:20:92:54:00:7a:a3:9d:86:
c4:61:bf:fe:66:19:37:ca:d7:59:00:50:29:47:19:
16:6e:7b:92:e0:e1:a0:bb:76:02:e4:9c:37:5c:94:
a5:98:68:52:6f:e3:84:cf:6c:e8:09:d9:f3:cc:18:
c9:e4:c7:27:0d:7c:0f:f6:35:8b:94:39:08:12:cc:
8f:81:50:78:41:77:ac:4c:26:2e:ff:b8:d7:16:de:
90:6a:f5:89:40:8c:92:23:1c:2f:07:05:ef:2c:da:
ce:f3:6c:a0:2d:27:83:fb:70:b2:6c:5a:3e:36:cf:
c9:c4:e4:85:08:cf:fe:45:ec:ae:58:72:d5:a8:88:
f9:02:e5:fa:0d:67:8c:d7:78:a1:cd:1b:19:62:28:
9a:30:84:c9:f9:a1:34:e3:22:14:91:74:c1:c8:4a:
ad:40:bb:7d:de:21:69:66:fc:6a:15:d9:98:98:35:
08:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:2F:59:60:BB:83:38:8B:DA:0A:82:C2:05:BE:15:BD:B9:47:9A:2B
X509v3 Authority Key Identifier:
keyid:5D:D6:F6:D2:99:BC:DE:C7:3D:13:F2:D8:42:FC:1D:F4:BC:1E:E2:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xdb20pm83sc9E_LYQvwd9Lwe4tM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/1-i9ZYLuDOIvaCoLCBb4VvblHmis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/Xdb20pm83sc9E_LYQvwd9Lwe4tM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.224.0/22
45.84.244.0/22
78.158.0.0/19
91.200.252.0/22
95.215.140.0/22
185.246.240.0/22
185.252.108.0/22
185.252.204.0/22
Signature Algorithm: sha256WithRSAEncryption
37:cf:a9:4b:d5:35:38:32:dd:bc:d1:2c:45:96:3d:d8:69:53:
db:13:4c:84:72:17:2a:ab:14:69:5e:ce:77:80:e6:c8:e9:11:
5d:07:9e:7f:d0:0b:0c:5f:d6:bf:e3:d6:9e:cd:8f:36:38:1f:
7a:d0:1b:77:86:4d:50:dc:31:a4:91:f1:1a:d4:a0:2c:94:72:
2b:6c:3c:2c:89:d1:71:06:b8:8e:2b:58:c2:6b:52:d7:44:ab:
e7:42:28:b3:9e:b1:61:88:1d:59:39:7d:81:c2:07:44:79:e8:
d9:c5:be:1d:da:24:59:4e:0e:2e:9f:04:da:15:1e:e2:07:05:
59:af:93:67:66:83:29:e2:00:4e:96:90:e1:4d:f0:09:41:95:
18:f9:a9:17:d8:d3:58:52:b6:e6:1d:36:9f:08:0c:6d:ae:be:
10:72:f2:7e:0d:90:1e:c4:59:e6:cc:dc:62:0c:86:58:ce:3b:
83:9d:ba:ac:5b:30:48:c7:00:63:23:68:5f:4c:87:0b:db:ad:
a4:99:55:f8:fe:da:1e:41:f2:d3:b7:d3:1c:cb:4e:e7:59:1f:
7b:93:57:73:a3:ce:2e:3d:07:83:2f:ba:4b:43:26:89:fa:62:
e0:d4:10:3a:d4:2f:22:9f:dc:33:b2:40:b3:2e:b7:fb:39:c1:
6e:ac:ed:09
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgISAZDk8gTpxCUpD+Vmz8RPygr/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkZDZmNmQyOTliY2RlYzczZDEzZjJkODQyZmMxZGY0YmMx
ZWUyZDMwHhcNMjQwNzI0MTMzMzA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYTJmNTk2MGJiODMzODhiZGEwYTgyYzIwNWJlMTViZGI5NDc5YTJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxdsfpMzzh0wKumT3j9PUBlql9pBf
kcdGWG5DUV/n5a9AU1X9TkP8b1nFKzR1m2Dw3/9dVf6JhU8o+/DqwJ5i7fgppKtM
eKCTy0A8DVxWio30IJJUAHqjnYbEYb/+Zhk3ytdZAFApRxkWbnuS4OGgu3YC5Jw3
XJSlmGhSb+OEz2zoCdnzzBjJ5McnDXwP9jWLlDkIEsyPgVB4QXesTCYu/7jXFt6Q
avWJQIySIxwvBwXvLNrO82ygLSeD+3CybFo+Ns/JxOSFCM/+ReyuWHLVqIj5AuX6
DWeM13ihzRsZYiiaMITJ+aE04yIUkXTByEqtQLt93iFpZvxqFdmYmDUI6wIDAQAB
o4ICNDCCAjAwHQYDVR0OBBYEFPovWWC7gziL2gqCwgW+Fb25R5orMB8GA1UdIwQY
MBaAFF3W9tKZvN7HPRPy2EL8HfS8HuLTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGRiMjBwbTgzc2M5RV9MWVF2d2Q5THdlNHRNLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC9hNGI0NDYtYmI3Mi00NWJlLWJjNDYt
NTFmNWZmODFjMTE3LzEvMS1pOVpZTHVET0l2YUNvTENCYjRWdmJsSG1pcy5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZTQvYTRiNDQ2LWJiNzItNDViZS1iYzQ2LTUxZjVmZjgxYzEx
Ny8xL1hkYjIwcG04M3NjOUVfTFlRdndkOUx3ZTR0TS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjBJBggrBgEFBQcBBwEB/wQ6MDgwNgQCAAEwMAMEAh+s4AME
Ai1U9AMEBU6eAAMEAlvI/AMEAl/XjAMEArn28AMEArn8bAMEArn8zDANBgkqhkiG
9w0BAQsFAAOCAQEAN8+pS9U1ODLdvNEsRZY92GlT2xNMhHIXKqsUaV7Od4DmyOkR
XQeef9ALDF/Wv+PWns2PNjgfetAbd4ZNUNwxpJHxGtSgLJRyK2w8LInRcQa4jitY
wmtS10Sr50Ios56xYYgdWTl9gcIHRHno2cW+HdokWU4OLp8E2hUe4gcFWa+TZ2aD
KeIATpaQ4U3wCUGVGPmpF9jTWFK25h02nwgMba6+EHLyfg2QHsRZ5szcYgyGWM47
g526rFswSMcAYyNoX0yHC9utpJlV+P7aHkHy07fTHMtO51kfe5NXc6POLj0Hgy+6
S0Mmifpi4NQQOtQvIp/cM7JAsy63+znBbqztCQ==
-----END CERTIFICATE-----
Generated at Fri Jul 26 10:04:39 2024 by rpki-client on console-ams.rpki-client.org