Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/Ly7IQbLhzwDZHbqQ9r5L5b87aT0.roa
File: Ly7IQbLhzwDZHbqQ9r5L5b87aT0.roa (raw, json)
Hash identifier: +fQo9CemPWGK3E93NtZEwrKaLheOfYPByLCsNPLL1lE=
Subject key identifier: 2F:2E:C8:41:B2:E1:CF:00:D9:1D:BA:90:F6:BE:4B:E5:BF:3B:69:3D
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 018EDB6276092B5E28FD4B478001E3F77599
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/Ly7IQbLhzwDZHbqQ9r5L5b87aT0.roa
Signing time: Sun 14 Apr 2024 06:54:06 +0000
ROA not before: Sun 14 Apr 2024 06:54:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204548
IP address blocks: 45.83.41.0/24 maxlen: 24
63.250.59.0/24 maxlen: 24
63.250.60.0/24 maxlen: 24
81.28.6.0/24 maxlen: 24
83.229.84.0/24 maxlen: 24
83.229.85.0/24 maxlen: 24
83.229.86.0/24 maxlen: 24
83.229.87.0/24 maxlen: 24
103.13.211.0/24 maxlen: 24
185.47.174.0/24 maxlen: 24
185.53.210.0/24 maxlen: 24
185.139.230.0/24 maxlen: 24
185.181.10.0/24 maxlen: 24
185.227.108.0/24 maxlen: 24
185.227.111.0/24 maxlen: 24
185.237.14.0/24 maxlen: 24
185.237.15.0/24 maxlen: 24
185.237.96.0/24 maxlen: 24
185.237.97.0/24 maxlen: 24
185.247.118.0/24 maxlen: 24
194.36.88.0/24 maxlen: 24
194.37.80.0/24 maxlen: 24
195.238.122.0/24 maxlen: 24
2a06:c5c0:1100::/48 maxlen: 48
2a07:3b80:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 31 Oct 2024 11:03:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:db:62:76:09:2b:5e:28:fd:4b:47:80:01:e3:f7:75:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Apr 14 06:54:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f2ec841b2e1cf00d91dba90f6be4be5bf3b693d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e8:6c:ae:d9:61:57:b9:ae:6d:7e:fa:f4:7a:
7a:d3:a0:ee:33:ee:21:f9:7b:1a:a8:fb:43:88:6d:
43:a5:45:38:73:94:55:95:9a:c8:32:c4:b3:1e:b0:
11:0f:fd:e2:37:40:3f:99:fb:93:a6:9b:9d:fc:25:
90:b4:bd:63:15:3b:36:aa:8e:1e:62:c8:26:9d:a4:
eb:92:93:6c:ae:5d:ee:d1:44:04:fb:a3:4a:6a:c6:
1c:e6:98:69:61:c8:cc:79:01:95:33:cb:b7:cc:24:
68:14:e6:35:c5:0f:e9:82:b5:5f:d5:26:92:12:04:
42:4f:8b:ec:ce:e4:38:08:c1:d6:c9:cc:1f:09:f7:
b5:dc:20:c0:c7:ba:0f:e0:29:16:ae:2c:58:65:7f:
ac:2f:c9:c1:ba:2f:84:bc:5f:3b:61:81:d2:a0:6e:
61:fb:ae:d5:8f:6c:e3:14:21:eb:90:95:10:c1:52:
ca:6d:7b:8a:e0:39:0f:6e:7b:7e:7c:35:1b:2e:3c:
3b:1a:6c:d0:91:d0:97:2f:b8:df:f9:99:71:47:50:
25:09:6c:cd:90:85:0c:c0:77:09:d1:ab:03:62:3c:
ec:14:ab:ce:5b:a3:55:c5:7d:00:fc:56:04:96:3f:
f3:44:a5:9a:6b:a7:39:8a:37:5a:fe:1a:31:bb:b1:
50:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:2E:C8:41:B2:E1:CF:00:D9:1D:BA:90:F6:BE:4B:E5:BF:3B:69:3D
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/Ly7IQbLhzwDZHbqQ9r5L5b87aT0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.41.0/24
63.250.59.0-63.250.60.255
81.28.6.0/24
83.229.84.0/22
103.13.211.0/24
185.47.174.0/24
185.53.210.0/24
185.139.230.0/24
185.181.10.0/24
185.227.108.0/24
185.227.111.0/24
185.237.14.0/23
185.237.96.0/23
185.247.118.0/24
194.36.88.0/24
194.37.80.0/24
195.238.122.0/24
IPv6:
2a06:c5c0:1100::/48
2a07:3b80:1::/48
Signature Algorithm: sha256WithRSAEncryption
08:d0:51:42:01:8f:07:61:08:60:47:79:7d:81:9d:85:94:ba:
8d:64:35:e5:6a:b2:30:62:6c:74:b9:9d:91:37:55:4c:d8:4a:
ab:ae:d7:e9:19:86:86:de:e8:7d:ae:e0:2f:8f:1c:58:3c:c6:
7b:98:86:fc:23:27:4f:8d:d7:c2:51:40:e5:1d:88:d0:9d:ca:
1d:d6:ce:87:c7:4e:09:d5:3f:17:9d:5b:f0:6a:c8:73:77:36:
ad:c5:cd:f3:48:82:f1:99:66:8c:0e:e8:18:a9:8c:bb:bd:fb:
09:67:58:2f:b5:77:40:b3:53:b6:5a:57:8b:0b:aa:62:68:99:
67:3d:36:83:ad:96:f4:7b:78:19:cb:e9:89:14:60:5c:84:b7:
fd:75:6a:ef:59:73:20:79:4c:4d:57:e3:dc:99:b4:fe:a7:45:
1e:66:fd:32:f3:d9:0b:fc:57:e9:fd:04:f3:66:7d:dc:ab:11:
cf:7d:c1:f0:05:32:29:42:c2:07:71:8f:ba:3f:18:8f:ed:d4:
9f:88:56:87:ff:53:3c:08:f3:9d:ae:c6:59:b4:e8:67:e2:8a:
7f:65:e9:30:ba:ed:b0:04:d3:7b:77:07:8c:e9:e0:59:80:e0:
6c:ec:a6:23:54:55:da:27:2e:2f:fc:19:4c:90:af:d0:e8:5a:
b1:3f:2a:f5
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgISAY7bYnYJK14o/UtHgAHj93WZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1YmQ3OTIzYWZkYmFlODdkMDdiMjMwOGRkMzg5ZDljZjA4
MmVkNmQwHhcNMjQwNDE0MDY1NDA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZjJlYzg0MWIyZTFjZjAwZDkxZGJhOTBmNmJlNGJlNWJmM2I2OTNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjehsrtlhV7mubX769Hp606DuM+4h
+XsaqPtDiG1DpUU4c5RVlZrIMsSzHrARD/3iN0A/mfuTppud/CWQtL1jFTs2qo4e
YsgmnaTrkpNsrl3u0UQE+6NKasYc5phpYcjMeQGVM8u3zCRoFOY1xQ/pgrVf1SaS
EgRCT4vszuQ4CMHWycwfCfe13CDAx7oP4CkWrixYZX+sL8nBui+EvF87YYHSoG5h
+67Vj2zjFCHrkJUQwVLKbXuK4DkPbnt+fDUbLjw7GmzQkdCXL7jf+ZlxR1AlCWzN
kIUMwHcJ0asDYjzsFKvOW6NVxX0A/FYElj/zRKWaa6c5ijda/hoxu7FQGwIDAQAB
o4ICjjCCAoowHQYDVR0OBBYEFC8uyEGy4c8A2R26kPa+S+W/O2k9MB8GA1UdIwQY
MBaAFOW9eSOv266H0HsjCN04nZzwgu1tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWIxNUk2X2Jyb2ZRZXlNSTNUaWRuUENDN1cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS8yNjkyMjktMjBlYi00ZjFjLWExM2Ut
MjZkMWU1NDU3OGYxLzEvTHk3SVFiTGh6d0RaSGJxUTlyNUw1Yjg3YVQwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS8yNjkyMjktMjBlYi00ZjFjLWExM2UtMjZkMWU1NDU3OGYx
LzEvNWIxNUk2X2Jyb2ZRZXlNSTNUaWRuUENDN1cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGjBggrBgEFBQcBBwEB/wSBkzCBkDB0BAIAATBuAwQALVMp
MAwDBAA/+jsDBAA/+jwDBABRHAYDBAJT5VQDBABnDdMDBAC5L64DBAC5NdIDBAC5
i+YDBAC5tQoDBAC542wDBAC5428DBAG57Q4DBAG57WADBAC593YDBADCJFgDBADC
JVADBADD7nowGAQCAAIwEgMHACoGxcARAAMHACoHO4AAATANBgkqhkiG9w0BAQsF
AAOCAQEACNBRQgGPB2EIYEd5fYGdhZS6jWQ15WqyMGJsdLmdkTdVTNhKq67X6RmG
ht7ofa7gL48cWDzGe5iG/CMnT43XwlFA5R2I0J3KHdbOh8dOCdU/F51b8GrIc3c2
rcXN80iC8ZlmjA7oGKmMu737CWdYL7V3QLNTtlpXiwuqYmiZZz02g62W9Ht4Gcvp
iRRgXIS3/XVq71lzIHlMTVfj3Jm0/qdFHmb9MvPZC/xX6f0E82Z93KsRz33B8AUy
KULCB3GPuj8Yj+3Un4hWh/9TPAjzna7GWbToZ+KKf2XpMLrtsATTe3cHjOngWYDg
bOymI1RV2icuL/wZTJCv0OhasT8q9Q==
-----END CERTIFICATE-----
Generated at Thu Oct 31 13:18:33 2024 by rpki-client on console-fra.rpki-client.org