Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/Chej4d20wrbZ6aCgAcpuTFeySkg.roa
File: Chej4d20wrbZ6aCgAcpuTFeySkg.roa (raw, json)
Hash identifier: VgMOkdDkZKKJUk97cqbSJUaeH9MvZ4k615EtupWbjg4=
Subject key identifier: 0A:17:A3:E1:DD:B4:C2:B6:D9:E9:A0:A0:01:CA:6E:4C:57:B2:4A:48
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 0190BBE6F85B2ACFFB3F02F9D8E170826EC0
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/Chej4d20wrbZ6aCgAcpuTFeySkg.roa
Signing time: Tue 16 Jul 2024 14:16:34 +0000
ROA not before: Tue 16 Jul 2024 14:16:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44709
IP address blocks: 5.100.248.0/24 maxlen: 24
5.100.249.0/24 maxlen: 24
5.100.250.0/24 maxlen: 24
5.100.251.0/24 maxlen: 24
5.100.252.0/24 maxlen: 24
5.100.253.0/24 maxlen: 24
5.100.254.0/24 maxlen: 24
5.100.255.0/24 maxlen: 24
31.133.100.0/24 maxlen: 24
31.133.102.0/24 maxlen: 24
31.133.103.0/24 maxlen: 24
45.83.40.0/24 maxlen: 24
45.83.42.0/24 maxlen: 24
45.83.43.0/24 maxlen: 24
45.93.92.0/24 maxlen: 24
45.93.93.0/24 maxlen: 24
45.93.94.0/24 maxlen: 24
45.93.95.0/24 maxlen: 24
63.250.61.0/24 maxlen: 24
63.250.62.0/24 maxlen: 24
63.250.63.0/24 maxlen: 24
81.28.7.0/24 maxlen: 24
83.229.70.0/24 maxlen: 24
83.229.71.0/24 maxlen: 24
83.229.72.0/24 maxlen: 24
83.229.73.0/24 maxlen: 24
83.229.74.0/24 maxlen: 24
91.202.168.0/24 maxlen: 24
91.202.169.0/24 maxlen: 24
91.202.170.0/24 maxlen: 24
91.202.171.0/24 maxlen: 24
91.223.106.0/24 maxlen: 24
91.226.72.0/24 maxlen: 24
91.226.76.0/24 maxlen: 24
91.228.126.0/23 maxlen: 23
103.45.244.0/24 maxlen: 24
109.207.76.0/24 maxlen: 24
109.207.79.0/24 maxlen: 24
185.28.152.0/24 maxlen: 24
185.28.153.0/24 maxlen: 24
185.28.154.0/24 maxlen: 24
185.28.155.0/24 maxlen: 24
185.47.173.0/24 maxlen: 24
185.47.175.0/24 maxlen: 24
185.56.72.0/22 maxlen: 22
185.139.231.0/24 maxlen: 24
185.162.124.0/24 maxlen: 24
185.162.125.0/24 maxlen: 24
185.162.126.0/24 maxlen: 24
185.220.207.0/24 maxlen: 24
185.241.4.0/24 maxlen: 24
185.241.5.0/24 maxlen: 24
185.241.6.0/24 maxlen: 24
185.241.7.0/24 maxlen: 24
185.253.72.0/24 maxlen: 24
185.253.73.0/24 maxlen: 24
185.253.75.0/24 maxlen: 24
188.191.147.0/24 maxlen: 24
194.36.89.0/24 maxlen: 24
194.36.90.0/24 maxlen: 24
194.36.91.0/24 maxlen: 24
195.28.180.0/24 maxlen: 24
195.28.181.0/24 maxlen: 24
195.238.120.0/24 maxlen: 24
212.80.204.0/24 maxlen: 24
212.80.205.0/24 maxlen: 24
212.80.206.0/24 maxlen: 24
212.80.207.0/24 maxlen: 24
2a06:c5c0::/48 maxlen: 48
2a06:c5c0:700::/48 maxlen: 48
2a06:c5c0:900::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 04 Sep 2024 09:53:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:bb:e6:f8:5b:2a:cf:fb:3f:02:f9:d8:e1:70:82:6e:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Jul 16 14:16:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0a17a3e1ddb4c2b6d9e9a0a001ca6e4c57b24a48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b3:2f:3e:1b:c8:60:da:81:b2:e1:9b:e7:b7:
3b:8a:1e:19:17:a6:3e:c3:c6:74:73:f7:61:ac:c1:
e2:66:b0:68:59:4d:52:b5:56:fa:6a:46:06:64:62:
f8:61:84:bc:be:b8:d5:fc:5a:e0:33:47:1f:5f:be:
9e:2f:f0:27:47:1f:65:7e:90:3d:be:0a:59:8d:36:
d7:88:87:8d:57:9d:4a:0c:d3:f4:a7:f1:4f:32:89:
6f:99:55:a0:48:85:50:94:60:a6:af:2a:da:d2:1d:
fc:da:c4:47:8d:d0:45:a0:ce:5d:b2:8a:26:58:7c:
f0:77:f4:dc:f2:00:1d:23:da:d8:3c:8d:68:8a:ea:
a1:c5:a6:23:77:1e:98:c3:3c:74:96:66:85:93:e7:
ed:91:82:5e:97:18:de:d0:28:5e:d3:fa:64:1c:43:
9a:a7:88:3e:47:eb:72:79:c4:5e:4c:14:04:7d:69:
0c:28:df:e1:99:b7:c1:e0:5d:d7:bb:a5:01:95:14:
fa:51:71:80:bc:b9:9e:9b:a4:dd:84:31:85:16:81:
6f:33:4d:c5:c7:31:b3:cd:5c:de:f6:0b:d5:d4:3f:
71:5d:03:bd:ad:dd:99:f6:4b:62:4b:88:08:77:33:
53:6a:90:f3:bc:92:b8:67:fc:69:26:4b:5d:69:68:
e0:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:17:A3:E1:DD:B4:C2:B6:D9:E9:A0:A0:01:CA:6E:4C:57:B2:4A:48
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/Chej4d20wrbZ6aCgAcpuTFeySkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.248.0/21
31.133.100.0/24
31.133.102.0/23
45.83.40.0/24
45.83.42.0/23
45.93.92.0/22
63.250.61.0-63.250.63.255
81.28.7.0/24
83.229.70.0-83.229.74.255
91.202.168.0/22
91.223.106.0/24
91.226.72.0/24
91.226.76.0/24
91.228.126.0/23
103.45.244.0/24
109.207.76.0/24
109.207.79.0/24
185.28.152.0/22
185.47.173.0/24
185.47.175.0/24
185.56.72.0/22
185.139.231.0/24
185.162.124.0-185.162.126.255
185.220.207.0/24
185.241.4.0/22
185.253.72.0/23
185.253.75.0/24
188.191.147.0/24
194.36.89.0-194.36.91.255
195.28.180.0/23
195.238.120.0/24
212.80.204.0/22
IPv6:
2a06:c5c0::/48
2a06:c5c0:700::/48
2a06:c5c0:900::/48
Signature Algorithm: sha256WithRSAEncryption
b7:77:50:78:48:bc:9b:06:42:dc:f5:96:ba:a2:ce:cd:f3:32:
f8:36:87:1e:d1:e3:d2:71:24:0b:fd:50:b2:52:ad:43:09:08:
42:cb:1b:37:1f:fe:97:dc:1e:96:ec:89:3e:3f:97:46:a6:ef:
02:08:6b:d0:56:2c:c2:ec:d5:f1:83:f6:3d:65:fd:74:aa:f8:
b9:ce:c0:c9:1d:8e:c3:e0:b9:65:82:f1:93:1c:3d:19:42:24:
06:09:e1:0a:aa:bf:91:74:26:99:d6:52:c0:ab:5c:52:c2:86:
be:fe:be:fc:d9:65:b1:2e:bf:8c:b4:50:5e:23:68:c3:e9:11:
10:80:bf:0a:cf:8d:31:d5:79:14:b7:a8:3b:a7:f6:89:d3:79:
d3:7c:8b:5c:58:59:0d:af:ea:29:e1:dd:43:f7:3e:f1:2d:79:
fb:d4:8d:9a:70:43:bd:2b:a6:32:33:ea:3f:c8:ac:86:c1:12:
61:27:00:9b:1b:e7:92:f6:91:bd:2d:e7:1a:a4:47:a9:d3:f2:
6d:d4:2b:e7:f3:2f:5c:71:03:8e:2b:f9:62:81:e2:50:da:1a:
95:4a:20:24:ae:29:ee:b1:28:95:e0:c9:8d:75:c6:d4:9e:fe:
07:be:68:0b:21:1d:5e:ca:a6:84:91:54:1a:b9:bb:d1:57:8a:
1b:51:78:39
-----BEGIN CERTIFICATE-----
MIIGAjCCBOqgAwIBAgISAZC75vhbKs/7PwL52OFwgm7AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1YmQ3OTIzYWZkYmFlODdkMDdiMjMwOGRkMzg5ZDljZjA4
MmVkNmQwHhcNMjQwNzE2MTQxNjM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYTE3YTNlMWRkYjRjMmI2ZDllOWEwYTAwMWNhNmU0YzU3YjI0YTQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwrMvPhvIYNqBsuGb57c7ih4ZF6Y+
w8Z0c/dhrMHiZrBoWU1StVb6akYGZGL4YYS8vrjV/FrgM0cfX76eL/AnRx9lfpA9
vgpZjTbXiIeNV51KDNP0p/FPMolvmVWgSIVQlGCmryra0h382sRHjdBFoM5dsoom
WHzwd/Tc8gAdI9rYPI1oiuqhxaYjdx6Ywzx0lmaFk+ftkYJelxje0Che0/pkHEOa
p4g+R+tyecReTBQEfWkMKN/hmbfB4F3Xu6UBlRT6UXGAvLmem6TdhDGFFoFvM03F
xzGzzVze9gvV1D9xXQO9rd2Z9ktiS4gIdzNTapDzvJK4Z/xpJktdaWjgBQIDAQAB
o4IDDjCCAwowHQYDVR0OBBYEFAoXo+HdtMK22emgoAHKbkxXskpIMB8GA1UdIwQY
MBaAFOW9eSOv266H0HsjCN04nZzwgu1tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWIxNUk2X2Jyb2ZRZXlNSTNUaWRuUENDN1cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS8yNjkyMjktMjBlYi00ZjFjLWExM2Ut
MjZkMWU1NDU3OGYxLzEvQ2hlajRkMjB3cmJaNmFDZ0FjcHVURmV5U2tnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS8yNjkyMjktMjBlYi00ZjFjLWExM2UtMjZkMWU1NDU3OGYx
LzEvNWIxNUk2X2Jyb2ZRZXlNSTNUaWRuUENDN1cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBIgYIKwYBBQUHAQcBAf8EggERMIIBDTCB5wQCAAEwgeAD
BAMFZPgDBAAfhWQDBAEfhWYDBAAtUygDBAEtUyoDBAItXVwwDAMEAD/6PQMEBj/6
AAMEAFEcBzAMAwQBU+VGAwQAU+VKAwQCW8qoAwQAW99qAwQAW+JIAwQAW+JMAwQB
W+R+AwQAZy30AwQAbc9MAwQAbc9PAwQCuRyYAwQAuS+tAwQAuS+vAwQCuThIAwQA
uYvnMAwDBAK5onwDBAC5on4DBAC53M8DBAK58QQDBAG5/UgDBAC5/UsDBAC8v5Mw
DAMEAMIkWQMEAsIkWAMEAcMctAMEAMPueAMEAtRQzDAhBAIAAjAbAwcAKgbFwAAA
AwcAKgbFwAcAAwcAKgbFwAkAMA0GCSqGSIb3DQEBCwUAA4IBAQC3d1B4SLybBkLc
9Za6os7N8zL4Noce0ePScSQL/VCyUq1DCQhCyxs3H/6X3B6W7Ik+P5dGpu8CCGvQ
VizC7NXxg/Y9Zf10qvi5zsDJHY7D4LllgvGTHD0ZQiQGCeEKqr+RdCaZ1lLAq1xS
woa+/r782WWxLr+MtFBeI2jD6REQgL8Kz40x1XkUt6g7p/aJ03nTfItcWFkNr+op
4d1D9z7xLXn71I2acEO9K6YyM+o/yKyGwRJhJwCbG+eS9pG9LecapEep0/Jt1Cvn
8y9ccQOOK/ligeJQ2hqVSiAkrinusSiV4MmNdcbUnv4HvmgLIR1eyqaEkVQaubvR
V4obUXg5
-----END CERTIFICATE-----
Generated at Wed Sep 4 12:08:43 2024 by rpki-client on console-fra.rpki-client.org