Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/dWuLqL5vJ7Ns17SalmLd3KPXRTU.roa
File: dWuLqL5vJ7Ns17SalmLd3KPXRTU.roa (raw, json)
Hash identifier: yXmUHENps2M4I97lXHAtKZfDER/7yLcdlAXhzsp+VLQ=
Subject key identifier: 75:6B:8B:A8:BE:6F:27:B3:6C:D7:B4:9A:96:62:DD:DC:A3:D7:45:35
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 018EC7F3E06F1CF1F75B12776180C6450118
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/dWuLqL5vJ7Ns17SalmLd3KPXRTU.roa
Signing time: Wed 10 Apr 2024 12:20:32 +0000
ROA not before: Wed 10 Apr 2024 12:20:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 36007
IP address blocks: 45.91.171.0/24 maxlen: 24
91.202.170.0/24 maxlen: 24
91.223.169.0/24 maxlen: 24
103.45.245.0/24 maxlen: 24
103.45.246.0/24 maxlen: 24
103.241.66.0/24 maxlen: 24
103.241.67.0/24 maxlen: 24
185.47.172.0/24 maxlen: 24
185.53.209.0/24 maxlen: 24
185.139.228.0/24 maxlen: 24
185.144.156.0/22 maxlen: 22
193.168.172.0/24 maxlen: 24
2a06:c5c0:1500::/48 maxlen: 48
2a06:c5c0:1600::/48 maxlen: 48
2a06:c5c0:1700::/48 maxlen: 48
2a07:3b80:8::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 14 Apr 2024 06:49:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c7:f3:e0:6f:1c:f1:f7:5b:12:77:61:80:c6:45:01:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Apr 10 12:20:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=756b8ba8be6f27b36cd7b49a9662dddca3d74535
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:2f:73:3f:b9:68:f8:c1:0a:90:49:8b:ae:78:
31:99:7e:84:c3:0e:20:b1:ff:06:9b:c3:d2:d1:dc:
00:21:87:6b:46:a8:11:26:13:ee:af:e7:88:1f:fe:
6c:ae:2e:3a:ad:ce:b3:d8:eb:29:85:ba:45:11:82:
21:a6:5d:64:22:8d:b8:29:35:04:12:eb:b7:8d:76:
ec:c5:ee:e0:01:58:13:5c:0b:8f:6f:bb:d5:6e:f5:
eb:72:4e:f9:30:55:0d:76:5f:a3:04:3a:ee:9d:9e:
32:45:01:5d:af:a4:a4:eb:2e:2a:c4:7e:f6:55:bd:
40:ca:6f:c4:80:f7:04:e4:1d:d8:b6:0e:69:f3:a9:
e9:a7:03:39:7a:af:2c:35:a4:9b:d2:7e:03:a7:52:
fa:6a:2a:e2:3a:2d:1a:8f:88:57:51:40:3d:9a:f1:
11:95:fe:0f:37:53:86:24:c4:cf:8d:f0:2f:3f:5f:
dd:c6:ed:3b:9f:f3:98:73:25:0e:f8:71:11:2a:80:
f4:8a:2d:21:f4:88:8f:7b:ad:d9:a4:6f:17:ce:39:
2e:37:10:c0:d8:46:b9:b6:10:15:09:bb:b1:4a:74:
c6:0b:da:f5:a2:4c:5e:ac:bc:55:e4:65:0b:a8:d5:
d8:0a:00:1f:4b:7d:75:28:b6:5c:a5:69:fd:1a:8b:
70:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:6B:8B:A8:BE:6F:27:B3:6C:D7:B4:9A:96:62:DD:DC:A3:D7:45:35
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/dWuLqL5vJ7Ns17SalmLd3KPXRTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.171.0/24
91.202.170.0/24
91.223.169.0/24
103.45.245.0-103.45.246.255
103.241.66.0/23
185.47.172.0/24
185.53.209.0/24
185.139.228.0/24
185.144.156.0/22
193.168.172.0/24
IPv6:
2a06:c5c0:1500::/48
2a06:c5c0:1600::/48
2a06:c5c0:1700::/48
2a07:3b80:8::/48
Signature Algorithm: sha256WithRSAEncryption
21:7c:fa:37:8e:6f:b5:e2:22:fa:a9:74:0e:1d:99:0f:e4:e1:
41:04:c3:22:55:55:31:f3:d6:17:ed:8f:6f:80:36:84:50:c5:
75:89:01:74:e3:6b:3f:9f:41:4c:b2:22:99:00:ae:d6:18:30:
54:e8:fd:21:e3:00:d1:2b:b3:73:fc:d6:68:39:34:96:81:c6:
5f:b9:c9:8d:cf:2f:3f:c9:f7:e4:11:c5:97:24:c4:cf:72:bc:
d2:51:57:4d:aa:95:61:4e:36:80:05:f0:36:4e:f0:79:e6:25:
b0:28:9c:15:59:93:19:29:d5:89:d2:03:42:c5:e1:91:9a:cf:
81:40:e9:f1:3b:a5:59:9f:64:96:ff:94:70:d6:ff:dd:5f:74:
7b:5b:59:6a:c0:c0:83:a4:c6:3b:28:38:de:2d:b2:1c:22:3a:
d0:3f:92:80:1e:92:61:dc:9e:36:90:33:c3:84:e1:8d:fa:e5:
e3:aa:47:ce:6a:23:1d:a3:5a:c1:81:96:c8:54:56:d7:98:2b:
5b:f0:8d:50:1b:02:ca:88:db:9e:91:37:30:8e:3e:89:86:d2:
dd:d9:a8:93:c1:1d:da:c8:e9:17:b5:10:d1:8f:94:a0:10:de:
5d:ee:6e:0e:de:32:26:ed:95:59:89:f0:b2:71:b9:1f:0b:64:
72:71:0d:4d
-----BEGIN CERTIFICATE-----
MIIFaDCCBFCgAwIBAgISAY7H8+BvHPH3WxJ3YYDGRQEYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1YmQ3OTIzYWZkYmFlODdkMDdiMjMwOGRkMzg5ZDljZjA4
MmVkNmQwHhcNMjQwNDEwMTIyMDMyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTZiOGJhOGJlNmYyN2IzNmNkN2I0OWE5NjYyZGRkY2EzZDc0NTM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiy9zP7lo+MEKkEmLrngxmX6Eww4g
sf8Gm8PS0dwAIYdrRqgRJhPur+eIH/5sri46rc6z2OsphbpFEYIhpl1kIo24KTUE
Euu3jXbsxe7gAVgTXAuPb7vVbvXrck75MFUNdl+jBDrunZ4yRQFdr6Sk6y4qxH72
Vb1Aym/EgPcE5B3Ytg5p86nppwM5eq8sNaSb0n4Dp1L6airiOi0aj4hXUUA9mvER
lf4PN1OGJMTPjfAvP1/dxu07n/OYcyUO+HERKoD0ii0h9IiPe63ZpG8XzjkuNxDA
2Ea5thAVCbuxSnTGC9r1okxerLxV5GULqNXYCgAfS311KLZcpWn9GotwqQIDAQAB
o4ICdDCCAnAwHQYDVR0OBBYEFHVri6i+byezbNe0mpZi3dyj10U1MB8GA1UdIwQY
MBaAFOW9eSOv266H0HsjCN04nZzwgu1tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWIxNUk2X2Jyb2ZRZXlNSTNUaWRuUENDN1cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS8yNjkyMjktMjBlYi00ZjFjLWExM2Ut
MjZkMWU1NDU3OGYxLzEvZFd1THFMNXZKN05zMTdTYWxtTGQzS1BYUlRVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS8yNjkyMjktMjBlYi00ZjFjLWExM2UtMjZkMWU1NDU3OGYx
LzEvNWIxNUk2X2Jyb2ZRZXlNSTNUaWRuUENDN1cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGJBggrBgEFBQcBBwEB/wR6MHgwSgQCAAEwRAMEAC1bqwME
AFvKqgMEAFvfqTAMAwQAZy31AwQAZy32AwQBZ/FCAwQAuS+sAwQAuTXRAwQAuYvk
AwQCuZCcAwQAwaisMCoEAgACMCQDBwAqBsXAFQADBwAqBsXAFgADBwAqBsXAFwAD
BwAqBzuAAAgwDQYJKoZIhvcNAQELBQADggEBACF8+jeOb7XiIvqpdA4dmQ/k4UEE
wyJVVTHz1hftj2+ANoRQxXWJAXTjaz+fQUyyIpkArtYYMFTo/SHjANErs3P81mg5
NJaBxl+5yY3PLz/J9+QRxZckxM9yvNJRV02qlWFONoAF8DZO8HnmJbAonBVZkxkp
1YnSA0LF4ZGaz4FA6fE7pVmfZJb/lHDW/91fdHtbWWrAwIOkxjsoON4tshwiOtA/
koAekmHcnjaQM8OE4Y365eOqR85qIx2jWsGBlshUVteYK1vwjVAbAsqI256RNzCO
PomG0t3ZqJPBHdrI6Re1ENGPlKAQ3l3ubg7eMibtlVmJ8LJxuR8LZHJxDU0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:32 2024 by rpki-client on console-fra.rpki-client.org