Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/hpZQlOZUP6ScWIPm1enw7eoMoRA.roa
File: hpZQlOZUP6ScWIPm1enw7eoMoRA.roa (raw, json)
Hash identifier: lAy6qtnbt0thJZ+Rx+nHNlnPLuCwT0ey1snbmLS/D6o=
Subject key identifier: 86:96:50:94:E6:54:3F:A4:9C:58:83:E6:D5:E9:F0:ED:EA:0C:A1:10
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 018EC726CCAFB704EF73018C96D327BC426F
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/hpZQlOZUP6ScWIPm1enw7eoMoRA.roa
Signing time: Wed 10 Apr 2024 08:36:32 +0000
ROA not before: Wed 10 Apr 2024 08:36:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210329
IP address blocks: 45.91.170.0/24 maxlen: 24
63.250.58.0/24 maxlen: 24
81.28.4.0/24 maxlen: 24
81.28.5.0/24 maxlen: 24
83.229.68.0/24 maxlen: 24
83.229.69.0/24 maxlen: 24
83.229.75.0/24 maxlen: 24
91.202.170.0/24 maxlen: 24
91.223.236.0/24 maxlen: 24
103.13.208.0/24 maxlen: 24
103.13.209.0/24 maxlen: 24
103.241.64.0/24 maxlen: 24
103.241.65.0/24 maxlen: 24
185.53.211.0/24 maxlen: 24
185.127.16.0/24 maxlen: 24
185.127.17.0/24 maxlen: 24
185.127.18.0/24 maxlen: 24
185.127.19.0/24 maxlen: 24
185.181.9.0/24 maxlen: 24
185.181.11.0/24 maxlen: 24
185.227.109.0/24 maxlen: 24
185.237.12.0/24 maxlen: 24
185.237.13.0/24 maxlen: 24
185.237.98.0/24 maxlen: 24
185.237.99.0/24 maxlen: 24
185.247.116.0/24 maxlen: 24
185.247.119.0/24 maxlen: 24
194.37.82.0/24 maxlen: 24
194.146.24.0/24 maxlen: 24
194.146.25.0/24 maxlen: 24
195.238.123.0/24 maxlen: 24
212.86.104.0/24 maxlen: 24
212.86.105.0/24 maxlen: 24
2a06:c5c0:600::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 10 Apr 2024 08:52:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c7:26:cc:af:b7:04:ef:73:01:8c:96:d3:27:bc:42:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Apr 10 08:36:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=86965094e6543fa49c5883e6d5e9f0edea0ca110
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:95:6c:15:68:e1:13:89:2b:43:f5:c3:b4:84:
f3:5f:54:b1:22:3e:9f:79:9e:e8:3a:1f:60:33:a6:
93:3f:ff:0c:f3:7f:91:ac:95:cf:79:54:ad:69:ec:
8f:bd:ab:e5:4c:5e:ef:78:79:49:a5:3d:1f:19:85:
02:c2:5f:06:0a:35:f8:86:91:b9:cd:e4:33:79:c3:
8c:17:2c:d3:ac:2f:94:fe:d1:bf:25:d9:0f:6f:71:
0f:6b:e7:ae:25:09:33:df:78:15:5c:ca:6c:2b:32:
1d:74:c0:a9:a3:a3:e6:a9:98:0c:7c:96:4d:ce:e6:
ea:4c:e2:82:9f:3a:95:4c:2b:a6:0c:ad:33:63:ea:
27:ec:48:e3:c0:2c:c1:d8:be:b2:6e:93:af:75:4a:
0a:38:fb:8b:4d:de:8b:31:1c:d0:55:3d:c7:f3:57:
ce:3d:9c:c4:f5:55:d5:f0:a9:d0:a0:de:c6:8a:6f:
27:ab:b0:2e:5b:64:a1:3e:80:93:ce:de:4d:40:cd:
01:87:d3:44:78:c1:3a:28:14:ee:75:02:79:4d:73:
e4:1c:a1:fa:70:af:41:72:f1:c6:fc:66:4d:59:a1:
7c:0a:86:e5:eb:72:08:0b:00:ba:11:a4:ef:ea:05:
7b:52:ba:ee:54:4a:0a:6f:e2:c3:76:ba:24:b0:44:
ed:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:96:50:94:E6:54:3F:A4:9C:58:83:E6:D5:E9:F0:ED:EA:0C:A1:10
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/hpZQlOZUP6ScWIPm1enw7eoMoRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.170.0/24
63.250.58.0/24
81.28.4.0/23
83.229.68.0/23
83.229.75.0/24
91.202.170.0/24
91.223.236.0/24
103.13.208.0/23
103.241.64.0/23
185.53.211.0/24
185.127.16.0/22
185.181.9.0/24
185.181.11.0/24
185.227.109.0/24
185.237.12.0/23
185.237.98.0/23
185.247.116.0/24
185.247.119.0/24
194.37.82.0/24
194.146.24.0/23
195.238.123.0/24
212.86.104.0/23
IPv6:
2a06:c5c0:600::/48
Signature Algorithm: sha256WithRSAEncryption
94:e9:a9:9e:10:53:64:d5:d9:17:56:6c:9b:7a:50:54:9f:97:
f4:4c:0a:9d:08:bb:f6:20:86:3c:da:8b:64:ba:2e:4e:06:06:
1d:2a:bf:74:38:25:e0:ca:c6:f6:5a:41:5e:db:8f:14:0d:07:
e1:36:c1:37:07:06:85:a4:c5:81:63:b5:8d:25:64:8c:05:d9:
36:78:3e:7b:52:74:11:38:d2:d2:40:30:6d:60:29:3c:54:02:
b1:ff:f2:e7:15:1f:06:4c:05:45:9d:20:14:53:e2:e2:a9:b2:
d7:1d:68:bf:3a:d4:e4:bb:bb:54:3c:fa:e0:39:da:15:7b:94:
9d:36:3f:c4:98:63:5a:66:cc:36:a4:53:ac:2f:65:ad:9d:37:
8f:c6:d0:8f:70:37:d3:1d:fc:c2:31:05:8b:99:ec:0e:f0:fc:
4b:c4:f7:b0:67:f5:5c:be:3d:60:40:b8:ed:03:2e:a3:96:d7:
dc:c6:08:0a:02:3b:01:49:34:b5:5d:71:cf:4e:3d:f4:b1:a3:
98:27:0e:ec:7d:3f:1a:6e:5f:4f:8e:29:af:41:e0:e6:0b:da:
85:2e:ed:fc:4c:e8:2b:39:4a:a6:41:cc:1a:02:87:b3:91:c2:
2e:51:54:15:c5:1a:b0:84:4c:35:18:dd:e3:3e:0d:46:df:a8:
2f:90:b3:54
-----BEGIN CERTIFICATE-----
MIIFkTCCBHmgAwIBAgISAY7HJsyvtwTvcwGMltMnvEJvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1YmQ3OTIzYWZkYmFlODdkMDdiMjMwOGRkMzg5ZDljZjA4
MmVkNmQwHhcNMjQwNDEwMDgzNjMyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4Njk2NTA5NGU2NTQzZmE0OWM1ODgzZTZkNWU5ZjBlZGVhMGNhMTEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmJVsFWjhE4krQ/XDtITzX1SxIj6f
eZ7oOh9gM6aTP/8M83+RrJXPeVStaeyPvavlTF7veHlJpT0fGYUCwl8GCjX4hpG5
zeQzecOMFyzTrC+U/tG/JdkPb3EPa+euJQkz33gVXMpsKzIddMCpo6PmqZgMfJZN
zubqTOKCnzqVTCumDK0zY+on7EjjwCzB2L6ybpOvdUoKOPuLTd6LMRzQVT3H81fO
PZzE9VXV8KnQoN7Gim8nq7AuW2ShPoCTzt5NQM0Bh9NEeME6KBTudQJ5TXPkHKH6
cK9BcvHG/GZNWaF8Cobl63IICwC6EaTv6gV7UrruVEoKb+LDdroksETtnQIDAQAB
o4ICnTCCApkwHQYDVR0OBBYEFIaWUJTmVD+knFiD5tXp8O3qDKEQMB8GA1UdIwQY
MBaAFOW9eSOv266H0HsjCN04nZzwgu1tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWIxNUk2X2Jyb2ZRZXlNSTNUaWRuUENDN1cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS8yNjkyMjktMjBlYi00ZjFjLWExM2Ut
MjZkMWU1NDU3OGYxLzEvaHBaUWxPWlVQNlNjV0lQbTFlbnc3ZW9Nb1JBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS8yNjkyMjktMjBlYi00ZjFjLWExM2UtMjZkMWU1NDU3OGYx
LzEvNWIxNUk2X2Jyb2ZRZXlNSTNUaWRuUENDN1cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGyBggrBgEFBQcBBwEB/wSBojCBnzCBiwQCAAEwgYQDBAAt
W6oDBAA/+joDBAFRHAQDBAFT5UQDBABT5UsDBABbyqoDBABb3+wDBAFnDdADBAFn
8UADBAC5NdMDBAK5fxADBAC5tQkDBAC5tQsDBAC5420DBAG57QwDBAG57WIDBAC5
93QDBAC593cDBADCJVIDBAHCkhgDBADD7nsDBAHUVmgwDwQCAAIwCQMHACoGxcAG
ADANBgkqhkiG9w0BAQsFAAOCAQEAlOmpnhBTZNXZF1Zsm3pQVJ+X9EwKnQi79iCG
PNqLZLouTgYGHSq/dDgl4MrG9lpBXtuPFA0H4TbBNwcGhaTFgWO1jSVkjAXZNng+
e1J0ETjS0kAwbWApPFQCsf/y5xUfBkwFRZ0gFFPi4qmy1x1ovzrU5Lu7VDz64Dna
FXuUnTY/xJhjWmbMNqRTrC9lrZ03j8bQj3A30x38wjEFi5nsDvD8S8T3sGf1XL49
YEC47QMuo5bX3MYICgI7AUk0tV1xz0499LGjmCcO7H0/Gm5fT44pr0Hg5gvahS7t
/EzoKzlKpkHMGgKHs5HCLlFUFcUasIRMNRjd4z4NRt+oL5CzVA==
-----END CERTIFICATE-----
Generated at Wed Apr 10 14:01:34 2024 by rpki-client on console-fra.rpki-client.org