Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/5442ce-48bc-4164-9350-9240d9f75ae6/1/7gtDtQjMXEd0XXQEGk3l3Qc9V3o.roa
File: 7gtDtQjMXEd0XXQEGk3l3Qc9V3o.roa (raw, json)
Hash identifier: E23FOPoC6ii+kmgAUkgKJdGrf9aIJ5pJ4RXtDmLPyoE=
Subject key identifier: EE:0B:43:B5:08:CC:5C:47:74:5D:74:04:1A:4D:E5:DD:07:3D:57:7A
Certificate issuer: /CN=4283696716dbcc360b9a62ef7d84b4d28f958bdd
Certificate serial: 018E4BAAC0AB56295ABA00E789FCE52F3F7F
Authority key identifier: 42:83:69:67:16:DB:CC:36:0B:9A:62:EF:7D:84:B4:D2:8F:95:8B:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QoNpZxbbzDYLmmLvfYS00o-Vi90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/5442ce-48bc-4164-9350-9240d9f75ae6/1/7gtDtQjMXEd0XXQEGk3l3Qc9V3o.roa
Signing time: Sun 17 Mar 2024 09:07:45 +0000
ROA not before: Sun 17 Mar 2024 09:07:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29256
IP address blocks: 5.0.0.0/19 maxlen: 19
5.0.32.0/19 maxlen: 19
5.0.64.0/18 maxlen: 18
5.0.128.0/19 maxlen: 19
5.0.160.0/19 maxlen: 19
5.0.192.0/18 maxlen: 18
5.155.0.0/19 maxlen: 19
5.155.32.0/19 maxlen: 19
5.155.64.0/19 maxlen: 19
5.155.96.0/19 maxlen: 19
5.155.128.0/19 maxlen: 19
5.155.160.0/19 maxlen: 19
5.155.192.0/19 maxlen: 19
5.155.224.0/19 maxlen: 19
31.9.48.0/22 maxlen: 22
31.9.56.0/21 maxlen: 21
31.9.64.0/20 maxlen: 20
31.9.80.0/20 maxlen: 20
31.9.96.0/19 maxlen: 19
31.9.128.0/20 maxlen: 20
31.9.144.0/20 maxlen: 20
31.9.160.0/19 maxlen: 19
31.9.192.0/19 maxlen: 19
31.9.224.0/19 maxlen: 19
46.40.128.0/18 maxlen: 18
80.70.120.0/21 maxlen: 21
82.100.128.0/19 maxlen: 19
82.137.192.0/20 maxlen: 20
82.137.208.0/20 maxlen: 20
82.137.224.0/20 maxlen: 20
82.137.240.0/24 maxlen: 24
82.137.242.0/24 maxlen: 24
82.137.243.0/24 maxlen: 24
82.137.244.0/23 maxlen: 23
82.137.246.0/23 maxlen: 23
82.137.248.0/24 maxlen: 24
82.137.249.0/24 maxlen: 24
82.137.250.0/24 maxlen: 24
82.137.251.0/24 maxlen: 24
82.137.252.0/24 maxlen: 24
82.137.253.0/24 maxlen: 24
82.137.254.0/24 maxlen: 24
82.137.255.0/24 maxlen: 24
91.144.0.0/20 maxlen: 20
91.144.16.0/20 maxlen: 20
91.144.32.0/20 maxlen: 20
94.47.0.0/19 maxlen: 19
94.47.0.0/21 maxlen: 21
94.47.8.0/21 maxlen: 21
94.47.16.0/21 maxlen: 21
94.47.24.0/21 maxlen: 21
94.47.32.0/19 maxlen: 19
94.47.32.0/21 maxlen: 21
94.47.40.0/21 maxlen: 21
94.47.48.0/21 maxlen: 21
94.47.56.0/21 maxlen: 21
94.47.64.0/19 maxlen: 19
94.47.96.0/19 maxlen: 19
94.47.128.0/20 maxlen: 20
94.47.144.0/20 maxlen: 20
94.47.160.0/19 maxlen: 19
94.47.192.0/18 maxlen: 18
178.253.64.0/19 maxlen: 19
178.253.96.0/23 maxlen: 23
178.253.98.0/24 maxlen: 24
178.253.100.0/23 maxlen: 23
178.253.102.0/24 maxlen: 24
178.253.103.0/24 maxlen: 24
178.253.104.0/22 maxlen: 22
178.253.108.0/23 maxlen: 23
178.253.110.0/23 maxlen: 23
185.92.88.0/22 maxlen: 22
185.99.100.0/22 maxlen: 22
185.109.212.0/22 maxlen: 22
188.133.0.0/20 maxlen: 20
188.133.16.0/20 maxlen: 20
188.133.32.0/19 maxlen: 19
188.133.64.0/19 maxlen: 19
188.133.96.0/19 maxlen: 19
193.124.10.0/23 maxlen: 23
193.124.12.0/23 maxlen: 23
193.124.26.0/23 maxlen: 23
193.124.28.0/23 maxlen: 23
193.124.38.0/23 maxlen: 23
193.124.52.0/23 maxlen: 23
193.124.62.0/23 maxlen: 23
193.124.68.0/23 maxlen: 23
193.124.86.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 19 Mar 2024 07:15:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:4b:aa:c0:ab:56:29:5a:ba:00:e7:89:fc:e5:2f:3f:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4283696716dbcc360b9a62ef7d84b4d28f958bdd
Validity
Not Before: Mar 17 09:07:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ee0b43b508cc5c47745d74041a4de5dd073d577a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:db:7b:1e:1c:68:e9:91:2f:3e:be:51:8c:59:
b1:23:c6:94:d2:b6:61:42:c5:c1:6e:58:b4:04:ba:
7c:97:39:c1:9a:01:48:b4:a4:2f:62:2f:39:6e:7b:
c5:a0:49:70:7d:30:79:32:9a:d0:8e:38:bc:df:7e:
d7:8a:8e:97:45:e0:ff:c8:0a:fa:1b:f8:a5:e9:53:
93:a5:e1:e6:af:bf:9a:45:f7:bf:3b:ee:99:4b:d3:
88:c8:27:07:12:e2:b2:3e:47:c7:73:7f:56:e7:f9:
ef:5e:78:0a:38:dc:89:69:3a:19:3b:7e:86:f7:8d:
67:90:80:72:f9:98:24:2c:57:7c:78:9e:0f:12:cd:
5a:85:32:9a:c6:4a:e2:53:40:b8:cc:99:0e:e4:f7:
3b:63:76:75:c4:8b:c4:60:a6:cf:0c:50:49:d4:f1:
f0:19:a1:17:93:75:64:23:01:9f:c9:dc:09:0d:1c:
6d:82:d2:95:36:b1:bb:20:17:6c:e0:1f:41:ea:a1:
87:4b:46:db:91:d2:29:cd:b7:99:e1:8b:84:7b:9f:
23:32:2a:da:a7:7b:d7:a3:92:80:44:88:ff:fb:ce:
09:27:3b:4f:3d:ee:f4:72:d5:d4:76:2d:b0:44:07:
80:8d:ca:a3:33:1a:a1:22:b6:73:cf:be:41:7e:2e:
0c:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:0B:43:B5:08:CC:5C:47:74:5D:74:04:1A:4D:E5:DD:07:3D:57:7A
X509v3 Authority Key Identifier:
keyid:42:83:69:67:16:DB:CC:36:0B:9A:62:EF:7D:84:B4:D2:8F:95:8B:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QoNpZxbbzDYLmmLvfYS00o-Vi90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/5442ce-48bc-4164-9350-9240d9f75ae6/1/7gtDtQjMXEd0XXQEGk3l3Qc9V3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/5442ce-48bc-4164-9350-9240d9f75ae6/1/QoNpZxbbzDYLmmLvfYS00o-Vi90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.0.0.0/16
5.155.0.0/16
31.9.48.0/22
31.9.56.0-31.9.255.255
46.40.128.0/18
80.70.120.0/21
82.100.128.0/19
82.137.192.0-82.137.240.255
82.137.242.0-82.137.255.255
91.144.0.0-91.144.47.255
94.47.0.0/16
178.253.64.0-178.253.98.255
178.253.100.0-178.253.111.255
185.92.88.0/22
185.99.100.0/22
185.109.212.0/22
188.133.0.0/17
193.124.10.0-193.124.13.255
193.124.26.0-193.124.29.255
193.124.38.0/23
193.124.52.0/23
193.124.62.0/23
193.124.68.0/23
193.124.86.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:02:5c:ae:4b:40:fd:9f:0a:23:60:0e:be:0b:b2:b8:97:f2:
ad:50:66:dc:e8:71:d4:49:8d:d8:9f:1b:c1:2e:6b:e4:0b:31:
90:88:b4:06:7f:7d:df:48:34:bc:fb:69:4c:c4:b8:ac:76:63:
1f:8a:15:d0:62:75:82:47:ae:f8:1c:40:34:34:c7:94:a6:8f:
4d:b2:2f:39:36:44:5d:79:a2:e8:cd:b9:d2:32:f6:ce:5e:af:
6d:19:ef:1c:fd:ae:e3:6e:eb:27:68:6f:c7:dc:d4:3b:da:23:
d2:e7:7d:ef:db:f6:54:51:01:f6:e4:de:88:67:82:49:28:7c:
05:04:0e:5d:87:bd:be:02:2b:a1:6b:11:58:cb:d4:31:f1:c8:
1b:7e:5c:d4:c1:6b:c5:e2:43:6a:b2:1d:be:00:78:b0:60:98:
ed:ac:42:77:5e:32:8a:73:6c:09:4e:3a:da:1e:e5:6c:b0:48:
be:2d:4f:2c:fc:a2:f6:c3:01:4f:eb:d8:4e:f4:dd:81:40:a7:
83:5a:b5:b1:05:49:41:57:73:22:bd:ac:35:f5:22:1e:f1:62:
f7:ae:6e:a4:bb:48:81:b1:90:02:87:d5:04:a5:fd:a8:14:43:
69:9d:b9:4f:71:98:de:12:da:08:e4:87:df:d3:c4:5d:41:25:
f9:d3:a3:9d
-----BEGIN CERTIFICATE-----
MIIFxjCCBK6gAwIBAgISAY5LqsCrVilaugDnifzlLz9/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyODM2OTY3MTZkYmNjMzYwYjlhNjJlZjdkODRiNGQyOGY5
NThiZGQwHhcNMjQwMzE3MDkwNzQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZTBiNDNiNTA4Y2M1YzQ3NzQ1ZDc0MDQxYTRkZTVkZDA3M2Q1NzdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAndt7Hhxo6ZEvPr5RjFmxI8aU0rZh
QsXBbli0BLp8lznBmgFItKQvYi85bnvFoElwfTB5MprQjji8337Xio6XReD/yAr6
G/il6VOTpeHmr7+aRfe/O+6ZS9OIyCcHEuKyPkfHc39W5/nvXngKONyJaToZO36G
941nkIBy+ZgkLFd8eJ4PEs1ahTKaxkriU0C4zJkO5Pc7Y3Z1xIvEYKbPDFBJ1PHw
GaEXk3VkIwGfydwJDRxtgtKVNrG7IBds4B9B6qGHS0bbkdIpzbeZ4YuEe58jMira
p3vXo5KARIj/+84JJztPPe70ctXUdi2wRAeAjcqjMxqhIrZzz75Bfi4MtQIDAQAB
o4IC0jCCAs4wHQYDVR0OBBYEFO4LQ7UIzFxHdF10BBpN5d0HPVd6MB8GA1UdIwQY
MBaAFEKDaWcW28w2C5pi732EtNKPlYvdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUW9OcFp4YmJ6RFlMbW1MdmZZUzAwby1WaTkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS81NDQyY2UtNDhiYy00MTY0LTkzNTAt
OTI0MGQ5Zjc1YWU2LzEvN2d0RHRRak1YRWQwWFhRRUdrM2wzUWM5VjNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS81NDQyY2UtNDhiYy00MTY0LTkzNTAtOTI0MGQ5Zjc1YWU2
LzEvUW9OcFp4YmJ6RFlMbW1MdmZZUzAwby1WaTkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHnBggrBgEFBQcBBwEB/wSB1zCB1DCB0QQCAAEwgcoDAwAF
AAMDAAWbAwQCHwkwMAsDBAMfCTgDAwEfCAMEBi4ogAMEA1BGeAMEBVJkgDAMAwQG
UonAAwQAUonwMAsDBAFSifIDAwFSiDALAwMEW5ADBARbkCADAwBeLzAMAwQGsv1A
AwQAsv1iMAwDBAKy/WQDBASy/WADBAK5XFgDBAK5Y2QDBAK5bdQDBAe8hQAwDAME
AcF8CgMEAcF8DDAMAwQBwXwaAwQBwXwcAwQBwXwmAwQBwXw0AwQBwXw+AwQBwXxE
AwQBwXxWMA0GCSqGSIb3DQEBCwUAA4IBAQBbAlyuS0D9nwojYA6+C7K4l/KtUGbc
6HHUSY3YnxvBLmvkCzGQiLQGf33fSDS8+2lMxLisdmMfihXQYnWCR674HEA0NMeU
po9Nsi85NkRdeaLozbnSMvbOXq9tGe8c/a7jbusnaG/H3NQ72iPS533v2/ZUUQH2
5N6IZ4JJKHwFBA5dh72+AiuhaxFYy9Qx8cgbflzUwWvF4kNqsh2+AHiwYJjtrEJ3
XjKKc2wJTjraHuVssEi+LU8s/KL2wwFP69hO9N2BQKeDWrWxBUlBV3Mivaw19SIe
8WL3rm6ku0iBsZACh9UEpf2oFENpnblPcZjeEtoI5Iff08RdQSX506Od
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:07 2024 by rpki-client on console-fra.rpki-client.org