Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/S4WQbC9dYVu9LQ6hzfhsTfc9pLw.roa
File: S4WQbC9dYVu9LQ6hzfhsTfc9pLw.roa (raw, json)
Hash identifier: E4mmWDPi2YathS5CZ51PqzwgUcEj/1sNBOhIJle7xsA=
Subject key identifier: 4B:85:90:6C:2F:5D:61:5B:BD:2D:0E:A1:CD:F8:6C:4D:F7:3D:A4:BC
Certificate issuer: /CN=5dd6f6d299bcdec73d13f2d842fc1df4bc1ee2d3
Certificate serial: 019270CC06129F35E4DBD7C88261A66CA145
Authority key identifier: 5D:D6:F6:D2:99:BC:DE:C7:3D:13:F2:D8:42:FC:1D:F4:BC:1E:E2:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xdb20pm83sc9E_LYQvwd9Lwe4tM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/S4WQbC9dYVu9LQ6hzfhsTfc9pLw.roa
Signing time: Wed 09 Oct 2024 10:21:11 +0000
ROA not before: Wed 09 Oct 2024 10:21:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43700
IP address blocks: 14.102.4.0/22 maxlen: 24
14.102.4.0/24 maxlen: 24
14.102.5.0/24 maxlen: 24
14.102.6.0/24 maxlen: 24
14.102.7.0/24 maxlen: 24
14.102.8.0/22 maxlen: 24
14.102.8.0/24 maxlen: 24
14.102.9.0/24 maxlen: 24
14.102.10.0/24 maxlen: 24
14.102.11.0/24 maxlen: 24
31.172.224.0/22 maxlen: 22
31.172.224.0/23 maxlen: 23
31.172.226.0/23 maxlen: 23
45.84.244.0/22 maxlen: 22
45.84.244.0/23 maxlen: 23
78.158.0.0/19 maxlen: 19
78.158.0.0/20 maxlen: 20
78.158.16.0/20 maxlen: 20
95.215.140.0/22 maxlen: 22
95.215.140.0/23 maxlen: 23
95.215.142.0/23 maxlen: 23
110.172.188.0/24 maxlen: 24
110.172.189.0/24 maxlen: 24
110.172.191.0/24 maxlen: 24
185.246.240.0/22 maxlen: 22
185.246.240.0/23 maxlen: 23
185.246.242.0/23 maxlen: 23
185.252.108.0/22 maxlen: 22
185.252.108.0/23 maxlen: 23
185.252.110.0/23 maxlen: 23
185.252.204.0/22 maxlen: 22
185.252.204.0/23 maxlen: 23
185.252.206.0/23 maxlen: 23
216.25.0.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 10 Oct 2024 06:14:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:70:cc:06:12:9f:35:e4:db:d7:c8:82:61:a6:6c:a1:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dd6f6d299bcdec73d13f2d842fc1df4bc1ee2d3
Validity
Not Before: Oct 9 10:21:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4b85906c2f5d615bbd2d0ea1cdf86c4df73da4bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a9:5b:0f:9a:ca:90:99:72:5d:16:72:7d:03:
b8:64:5a:ce:32:c2:b4:45:ae:27:c4:93:0d:e5:bd:
15:3c:1a:58:56:0c:f5:b8:e3:f8:30:c0:ff:21:6e:
c9:d1:1b:48:95:ef:2c:84:51:3e:c5:09:95:a3:a9:
a0:7f:fe:64:1f:dc:06:4d:8b:a0:3d:ab:a5:56:31:
99:f5:00:f8:a2:0e:e5:26:4e:cd:ac:2a:4d:ea:96:
02:33:53:d0:1b:2e:40:16:47:d5:51:f3:a9:a8:f9:
97:ca:5c:2b:79:26:86:d4:5b:e2:d5:ad:28:fa:b1:
0e:cd:14:45:8d:be:bd:c6:8b:ef:71:8c:f8:9d:5e:
60:18:09:9f:01:ae:c3:0a:bc:23:42:7d:81:16:11:
8a:4d:89:f0:fe:aa:8d:ef:b7:80:76:48:28:b4:17:
ce:f6:27:8f:65:8d:cf:1c:bb:d2:e5:a4:1f:6b:4e:
b7:45:fb:fd:48:8f:42:02:26:d8:01:3b:f6:3d:d3:
6d:ca:14:29:b0:c7:2e:fb:53:d7:8c:f9:36:cc:4d:
06:51:33:4e:08:79:d5:5b:03:ea:bf:ad:97:81:46:
7b:16:d2:22:eb:cf:29:bc:47:3f:d4:dd:c1:0c:7e:
86:84:0e:7b:98:ac:4a:41:1e:cb:d3:77:b4:a4:7c:
65:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:85:90:6C:2F:5D:61:5B:BD:2D:0E:A1:CD:F8:6C:4D:F7:3D:A4:BC
X509v3 Authority Key Identifier:
keyid:5D:D6:F6:D2:99:BC:DE:C7:3D:13:F2:D8:42:FC:1D:F4:BC:1E:E2:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xdb20pm83sc9E_LYQvwd9Lwe4tM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/S4WQbC9dYVu9LQ6hzfhsTfc9pLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/Xdb20pm83sc9E_LYQvwd9Lwe4tM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.4.0-14.102.11.255
31.172.224.0/22
45.84.244.0/22
78.158.0.0/19
95.215.140.0/22
110.172.188.0/23
110.172.191.0/24
185.246.240.0/22
185.252.108.0/22
185.252.204.0/22
216.25.0.0/22
Signature Algorithm: sha256WithRSAEncryption
27:50:e4:3d:4b:3c:42:d3:ea:d4:db:5b:74:72:ea:85:a7:e4:
e2:e7:16:ea:1d:1e:32:03:d3:39:20:f7:f4:a3:bd:9b:4f:f6:
af:4b:06:c0:a5:6c:b6:40:20:4a:54:89:7b:94:02:5a:2c:71:
29:9a:db:19:6f:d7:01:23:65:2d:3e:62:d2:62:14:94:5f:7b:
44:01:74:6f:cc:f2:6d:a0:05:fd:18:1d:19:dc:e6:da:32:57:
dd:95:5a:80:96:52:df:e9:91:98:26:b8:54:fa:5a:a8:a6:2d:
14:d6:d4:9f:42:a1:01:2b:f1:bd:b7:89:70:b0:b7:e7:bf:3a:
c3:aa:2e:d8:38:f6:bc:53:09:0f:ce:a6:03:44:f8:7f:46:4d:
96:2e:fb:19:33:e0:09:06:39:72:df:15:66:bd:9f:b5:65:d4:
e8:3f:27:bf:6d:39:22:d0:33:22:cc:7a:dd:75:7f:a6:fd:b8:
8d:63:a4:86:d3:d8:58:72:a9:22:6a:ae:3a:9c:11:9e:53:35:
44:b9:88:be:d6:6a:5f:60:76:38:31:a5:ba:73:4b:c8:11:0f:
ad:a5:a4:2c:9d:d5:9c:cf:7d:96:83:08:c8:fc:1f:f3:f3:27:
f1:a2:ae:d2:46:14:88:fb:ca:41:0f:81:80:9e:65:b8:21:84:
ac:b2:4b:64
-----BEGIN CERTIFICATE-----
MIIFQTCCBCmgAwIBAgISAZJwzAYSnzXk29fIgmGmbKFFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkZDZmNmQyOTliY2RlYzczZDEzZjJkODQyZmMxZGY0YmMx
ZWUyZDMwHhcNMjQxMDA5MTAyMTExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Yjg1OTA2YzJmNWQ2MTViYmQyZDBlYTFjZGY4NmM0ZGY3M2RhNGJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApalbD5rKkJlyXRZyfQO4ZFrOMsK0
Ra4nxJMN5b0VPBpYVgz1uOP4MMD/IW7J0RtIle8shFE+xQmVo6mgf/5kH9wGTYug
PaulVjGZ9QD4og7lJk7NrCpN6pYCM1PQGy5AFkfVUfOpqPmXylwreSaG1Fvi1a0o
+rEOzRRFjb69xovvcYz4nV5gGAmfAa7DCrwjQn2BFhGKTYnw/qqN77eAdkgotBfO
9iePZY3PHLvS5aQfa063Rfv9SI9CAibYATv2PdNtyhQpsMcu+1PXjPk2zE0GUTNO
CHnVWwPqv62XgUZ7FtIi688pvEc/1N3BDH6GhA57mKxKQR7L03e0pHxlLwIDAQAB
o4ICTTCCAkkwHQYDVR0OBBYEFEuFkGwvXWFbvS0Ooc34bE33PaS8MB8GA1UdIwQY
MBaAFF3W9tKZvN7HPRPy2EL8HfS8HuLTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGRiMjBwbTgzc2M5RV9MWVF2d2Q5THdlNHRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC9hNGI0NDYtYmI3Mi00NWJlLWJjNDYt
NTFmNWZmODFjMTE3LzEvUzRXUWJDOWRZVnU5TFE2aHpmaHNUZmM5cEx3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC9hNGI0NDYtYmI3Mi00NWJlLWJjNDYtNTFmNWZmODFjMTE3
LzEvWGRiMjBwbTgzc2M5RV9MWVF2d2Q5THdlNHRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGMGCCsGAQUFBwEHAQH/BFQwUjBQBAIAATBKMAwDBAIOZgQD
BAIOZggDBAIfrOADBAItVPQDBAVOngADBAJf14wDBAFurLwDBABurL8DBAK59vAD
BAK5/GwDBAK5/MwDBALYGQAwDQYJKoZIhvcNAQELBQADggEBACdQ5D1LPELT6tTb
W3Ry6oWn5OLnFuodHjID0zkg9/SjvZtP9q9LBsClbLZAIEpUiXuUAloscSma2xlv
1wEjZS0+YtJiFJRfe0QBdG/M8m2gBf0YHRnc5toyV92VWoCWUt/pkZgmuFT6Wqim
LRTW1J9CoQEr8b23iXCwt+e/OsOqLtg49rxTCQ/OpgNE+H9GTZYu+xkz4AkGOXLf
FWa9n7Vl1Og/J79tOSLQMyLMet11f6b9uI1jpIbT2FhyqSJqrjqcEZ5TNUS5iL7W
al9gdjgxpbpzS8gRD62lpCyd1ZzPfZaDCMj8H/PzJ/GirtJGFIj7ykEPgYCeZbgh
hKyyS2Q=
-----END CERTIFICATE-----
Generated at Thu Oct 10 08:31:19 2024 by rpki-client on console-ams.rpki-client.org