Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/vo8AmKfBKlaLoGIqYfKJ-vXqH3k.roa
File: vo8AmKfBKlaLoGIqYfKJ-vXqH3k.roa (raw, json)
Hash identifier: 5ANCrVebzfXFUslEIOLD2VJPPIwtlsJI9kHeFQag/88=
Subject key identifier: BE:8F:00:98:A7:C1:2A:56:8B:A0:62:2A:61:F2:89:FA:F5:EA:1F:79
Certificate issuer: /CN=162e48329c8be8ef209e9958da66ab0240145e19
Certificate serial: 018E4176BFBA73BA6300CE314E8B333DDEA4
Authority key identifier: 16:2E:48:32:9C:8B:E8:EF:20:9E:99:58:DA:66:AB:02:40:14:5E:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fi5IMpyL6O8gnplY2marAkAUXhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/vo8AmKfBKlaLoGIqYfKJ-vXqH3k.roa
Signing time: Fri 15 Mar 2024 09:34:45 +0000
ROA not before: Fri 15 Mar 2024 09:34:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57795
IP address blocks: 23.249.232.0/21 maxlen: 24
37.114.88.0/21 maxlen: 24
83.174.128.0/20 maxlen: 24
93.92.24.0/21 maxlen: 24
149.143.0.0/19 maxlen: 24
185.6.204.0/22 maxlen: 24
185.34.176.0/22 maxlen: 24
185.37.64.0/22 maxlen: 24
185.37.64.0/23 maxlen: 24
185.43.212.0/22 maxlen: 24
185.144.20.0/22 maxlen: 24
185.221.156.0/22 maxlen: 24
185.254.41.0/24 maxlen: 24
185.254.42.0/23 maxlen: 24
2a00:9340::/29 maxlen: 29
2a07:36c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 22 Jul 2024 07:11:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:41:76:bf:ba:73:ba:63:00:ce:31:4e:8b:33:3d:de:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=162e48329c8be8ef209e9958da66ab0240145e19
Validity
Not Before: Mar 15 09:34:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be8f0098a7c12a568ba0622a61f289faf5ea1f79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c9:e4:44:f7:e9:6e:3d:21:58:61:7f:04:37:
dd:ca:8f:f5:d6:5b:fa:aa:d7:05:61:5a:61:c0:a7:
1a:dd:a6:8d:75:f1:27:de:ca:9b:95:f5:e3:b9:72:
a9:3c:8d:35:34:62:4a:2e:1c:b7:ac:bf:8d:fc:dc:
51:82:30:8f:4e:c0:20:28:5b:b2:7a:9b:a0:f7:cc:
ec:24:6d:d5:c1:04:86:1f:d8:45:84:84:a8:8a:b9:
d2:d3:50:cc:91:d5:de:02:17:5a:dd:88:4e:e3:d9:
3d:7a:f4:f7:fd:64:a4:b5:c8:72:89:bb:3a:8a:45:
0d:de:1b:4f:f9:b1:9a:78:4f:e1:6c:46:cf:82:c5:
cb:9f:6c:7f:b2:e6:e3:bb:05:cd:a6:ec:47:49:c2:
3c:72:b5:55:ad:7d:2e:3d:97:fd:ec:fd:68:62:31:
2c:8f:5c:c2:a2:ee:eb:3d:76:48:3e:3e:0d:00:3d:
92:62:e8:5e:bd:fa:23:a4:eb:88:07:0c:bf:cd:07:
79:ed:a0:b2:9e:7c:ab:67:98:da:8b:de:29:43:08:
3c:d1:39:eb:60:01:de:39:84:92:48:9f:1f:ca:2c:
9c:91:ef:c9:4c:44:ef:38:73:b3:53:9c:d5:56:eb:
fd:34:4b:90:90:b5:b0:74:04:7a:82:37:29:56:46:
cc:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:8F:00:98:A7:C1:2A:56:8B:A0:62:2A:61:F2:89:FA:F5:EA:1F:79
X509v3 Authority Key Identifier:
keyid:16:2E:48:32:9C:8B:E8:EF:20:9E:99:58:DA:66:AB:02:40:14:5E:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fi5IMpyL6O8gnplY2marAkAUXhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/vo8AmKfBKlaLoGIqYfKJ-vXqH3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/Fi5IMpyL6O8gnplY2marAkAUXhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.249.232.0/21
37.114.88.0/21
83.174.128.0/20
93.92.24.0/21
149.143.0.0/19
185.6.204.0/22
185.34.176.0/22
185.37.64.0/22
185.43.212.0/22
185.144.20.0/22
185.221.156.0/22
185.254.41.0-185.254.43.255
IPv6:
2a00:9340::/29
2a07:36c0::/29
Signature Algorithm: sha256WithRSAEncryption
37:6f:a7:dd:43:ad:35:f2:c3:ed:f7:18:df:13:ca:64:50:ff:
71:b8:d7:ff:6d:a6:9c:ab:57:dd:4e:e5:cf:12:8c:b5:60:d7:
ec:6c:67:9e:64:e1:de:df:5e:35:4d:fa:bf:66:d5:77:fd:13:
7a:3c:e5:dc:0a:8f:2e:a0:1e:b6:75:4b:8f:f0:3f:61:f5:e4:
85:57:65:2b:b1:c6:7e:b0:c1:e5:a0:51:ca:af:25:d2:af:0f:
6a:6a:9f:11:97:3b:e5:53:f7:1a:69:5d:f5:71:43:86:d7:ff:
30:a7:0b:b8:b2:ee:2b:67:4c:21:1f:27:25:70:de:5d:be:83:
dd:53:9e:c0:db:ef:5d:e3:a4:d4:d9:da:45:20:11:e4:45:36:
0d:47:b8:87:40:9f:fe:c1:57:54:16:15:d6:2a:78:76:71:57:
9f:40:c8:02:98:46:0d:9d:74:2f:10:67:f8:fc:9f:b3:f2:94:
20:f0:25:93:4c:0b:bb:de:1a:dc:81:4f:42:5a:37:6d:6e:8e:
c9:02:f5:1f:c3:20:9d:e8:ba:11:06:57:dc:56:0b:59:fb:a8:
f9:37:25:74:11:77:6b:6f:04:30:5b:3c:ea:90:93:c7:8f:5f:
03:75:45:cd:33:e0:3b:34:47:15:fa:c1:34:fc:73:f3:4f:18:
98:f3:55:ce
-----BEGIN CERTIFICATE-----
MIIFXTCCBEWgAwIBAgISAY5Bdr+6c7pjAM4xToszPd6kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE2MmU0ODMyOWM4YmU4ZWYyMDllOTk1OGRhNjZhYjAyNDAx
NDVlMTkwHhcNMjQwMzE1MDkzNDQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZThmMDA5OGE3YzEyYTU2OGJhMDYyMmE2MWYyODlmYWY1ZWExZjc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm8nkRPfpbj0hWGF/BDfdyo/11lv6
qtcFYVphwKca3aaNdfEn3sqblfXjuXKpPI01NGJKLhy3rL+N/NxRgjCPTsAgKFuy
epug98zsJG3VwQSGH9hFhISoirnS01DMkdXeAhda3YhO49k9evT3/WSktchyibs6
ikUN3htP+bGaeE/hbEbPgsXLn2x/subjuwXNpuxHScI8crVVrX0uPZf97P1oYjEs
j1zCou7rPXZIPj4NAD2SYuhevfojpOuIBwy/zQd57aCynnyrZ5jai94pQwg80Tnr
YAHeOYSSSJ8fyiycke/JTETvOHOzU5zVVuv9NEuQkLWwdAR6gjcpVkbM0wIDAQAB
o4ICaTCCAmUwHQYDVR0OBBYEFL6PAJinwSpWi6BiKmHyifr16h95MB8GA1UdIwQY
MBaAFBYuSDKci+jvIJ6ZWNpmqwJAFF4ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmk1SU1weUw2TzhnbnBsWTJtYXJBa0FVWGhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi84ZTIwNjctMjgzYi00ZTRlLWI2N2Ut
NjlmMzNmZTFiNTMwLzEvdm84QW1LZkJLbGFMb0dJcVlmS0otdlhxSDNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi84ZTIwNjctMjgzYi00ZTRlLWI2N2UtNjlmMzNmZTFiNTMw
LzEvRmk1SU1weUw2TzhnbnBsWTJtYXJBa0FVWGhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH8GCCsGAQUFBwEHAQH/BHAwbjBWBAIAATBQAwQDF/noAwQD
JXJYAwQEU66AAwQDXVwYAwQFlY8AAwQCuQbMAwQCuSKwAwQCuSVAAwQCuSvUAwQC
uZAUAwQCud2cMAwDBAC5/ikDBAK5/igwFAQCAAIwDgMFAyoAk0ADBQMqBzbAMA0G
CSqGSIb3DQEBCwUAA4IBAQA3b6fdQ6018sPt9xjfE8pkUP9xuNf/baacq1fdTuXP
Eoy1YNfsbGeeZOHe3141Tfq/ZtV3/RN6POXcCo8uoB62dUuP8D9h9eSFV2UrscZ+
sMHloFHKryXSrw9qap8RlzvlU/caaV31cUOG1/8wpwu4su4rZ0whHyclcN5dvoPd
U57A2+9d46TU2dpFIBHkRTYNR7iHQJ/+wVdUFhXWKnh2cVefQMgCmEYNnXQvEGf4
/J+z8pQg8CWTTAu73hrcgU9CWjdtbo7JAvUfwyCd6LoRBlfcVgtZ+6j5NyV0EXdr
bwQwWzzqkJPHj18DdUXNM+A7NEcV+sE0/HPzTxiY81XO
-----END CERTIFICATE-----
Generated at Mon Jul 22 09:00:28 2024 by rpki-client on console-ams.rpki-client.org