Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/6T55a6wC268gFQJkzu91GwXnrKU.roa
File: 6T55a6wC268gFQJkzu91GwXnrKU.roa (raw, json)
Hash identifier: hVTxY/2EyLUMJjxnIjCGMDhaBCiQGshnUfOO4FPTBiE=
Subject key identifier: E9:3E:79:6B:AC:02:DB:AF:20:15:02:64:CE:EF:75:1B:05:E7:AC:A5
Certificate issuer: /CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Certificate serial: 0187DD78F07744E3C2F61DC3ADF8FD0F5A20
Authority key identifier: 7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/6T55a6wC268gFQJkzu91GwXnrKU.roa
Signing time: Tue 02 May 2023 17:18:23 +0000
ROA not before: Tue 02 May 2023 17:18:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 94.245.64.0/18 maxlen: 24
172.208.0.0/13 maxlen: 13
51.124.0.0/16 maxlen: 16
192.100.112.0/21 maxlen: 21
192.100.120.0/21 maxlen: 21
82.87.0.0/16 maxlen: 16
192.100.128.0/22 maxlen: 22
192.100.132.0/23 maxlen: 23
172.160.0.0/11 maxlen: 11
51.144.0.0/15 maxlen: 15
51.107.0.0/16 maxlen: 16
40.171.0.0/16 maxlen: 16
192.100.104.0/21 maxlen: 21
85.212.0.0/16 maxlen: 16
152.138.0.0/16 maxlen: 16
51.138.0.0/16 maxlen: 16
51.10.0.0/15 maxlen: 15
194.110.197.0/24 maxlen: 24
51.104.0.0/15 maxlen: 15
51.12.0.0/15 maxlen: 15
51.103.0.0/16 maxlen: 16
51.140.0.0/14 maxlen: 14
135.130.0.0/16 maxlen: 16
57.150.0.0/15 maxlen: 15
132.164.0.0/16 maxlen: 16
193.221.113.0/24 maxlen: 24
51.53.0.0/16 maxlen: 16
57.160.0.0/12 maxlen: 12
51.120.0.0/16 maxlen: 16
57.156.0.0/14 maxlen: 14
172.128.0.0/11 maxlen: 11
193.149.64.0/19 maxlen: 24
151.129.0.0/16 maxlen: 16
172.200.0.0/13 maxlen: 13
51.116.0.0/16 maxlen: 16
212.207.0.0/16 maxlen: 16
40.170.0.0/16 maxlen: 16
51.136.0.0/15 maxlen: 15
209.199.0.0/16 maxlen: 16
143.226.0.0/16 maxlen: 16
167.162.0.0/16 maxlen: 16
159.128.0.0/16 maxlen: 16
213.54.0.0/16 maxlen: 16
194.41.16.0/20 maxlen: 20
194.41.18.0/24 maxlen: 24
194.41.22.0/24 maxlen: 24
194.41.23.0/24 maxlen: 24
194.41.20.0/24 maxlen: 24
194.41.21.0/24 maxlen: 24
194.41.19.0/24 maxlen: 24
51.132.0.0/16 maxlen: 16
157.31.0.0/16 maxlen: 16
157.95.0.0/16 maxlen: 16
213.199.128.0/18 maxlen: 24
167.186.0.0/16 maxlen: 16
128.85.0.0/16 maxlen: 16
147.243.0.0/16 maxlen: 24
51.51.0.0/16 maxlen: 16
57.152.0.0/14 maxlen: 14
151.206.0.0/16 maxlen: 16
138.105.0.0/16 maxlen: 16
40.169.0.0/16 maxlen: 16
2a00:1c68::/29 maxlen: 29
2a01:111:4004::/48 maxlen: 48
2a01:111::/32 maxlen: 32
2a01:111:4000::/36 maxlen: 36
2a01:111:2000::/36 maxlen: 36
2a01:111:f000::/36 maxlen: 36
Validation: Failed, certificate revoked on Tue 02 May 2023 17:19:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:dd:78:f0:77:44:e3:c2:f6:1d:c3:ad:f8:fd:0f:5a:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Validity
Not Before: May 2 17:18:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e93e796bac02dbaf20150264ceef751b05e7aca5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:78:21:9a:66:1e:8c:0b:27:a7:8c:23:e8:b0:
6d:0e:24:15:74:0c:4c:41:11:d5:d0:be:4e:a1:bc:
64:b8:df:66:29:b1:62:85:c9:e3:53:a8:84:63:5f:
35:49:af:7e:b9:b9:00:dd:99:3a:23:fd:20:3e:fb:
5c:7f:94:5e:e0:46:a5:a5:16:de:f7:d5:e3:9b:10:
c6:0b:3e:9b:4d:a1:b2:72:96:f0:48:42:86:4b:6d:
52:7a:e0:ee:7e:c8:00:b9:98:8e:ad:19:79:1c:1b:
10:b7:ef:0d:26:97:79:40:e3:31:71:90:09:2b:38:
d1:1a:4e:3e:9f:31:bd:7b:0a:5d:e6:4d:6c:4a:cf:
f0:c5:95:26:df:bf:d4:f1:2d:b8:01:d6:a2:c3:d6:
3c:93:20:a7:bc:07:5f:2d:68:98:de:fd:a9:47:bb:
a0:7d:b7:4d:b1:24:1c:68:32:32:b3:fb:ea:0e:c6:
df:b7:a8:30:2d:04:19:3a:25:13:f3:33:fe:75:ca:
c5:cb:4f:35:07:ab:82:5d:ad:c6:2f:df:2c:9a:3b:
61:3b:b7:cc:52:c1:25:73:26:a5:5e:e5:a3:c1:0a:
b8:c4:35:3d:02:f5:38:88:e2:06:99:f2:3c:d4:3f:
1a:0a:1b:c6:12:b0:17:6b:5b:ad:33:10:a6:a2:de:
c7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:3E:79:6B:AC:02:DB:AF:20:15:02:64:CE:EF:75:1B:05:E7:AC:A5
X509v3 Authority Key Identifier:
keyid:7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/6T55a6wC268gFQJkzu91GwXnrKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/fOaNr18IlFbA4dAiRTk1Maxbj8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
40.169.0.0-40.171.255.255
51.10.0.0-51.13.255.255
51.51.0.0/16
51.53.0.0/16
51.103.0.0-51.105.255.255
51.107.0.0/16
51.116.0.0/16
51.120.0.0/16
51.124.0.0/16
51.132.0.0/16
51.136.0.0-51.138.255.255
51.140.0.0-51.145.255.255
57.150.0.0-57.175.255.255
82.87.0.0/16
85.212.0.0/16
94.245.64.0/18
128.85.0.0/16
132.164.0.0/16
135.130.0.0/16
138.105.0.0/16
143.226.0.0/16
147.243.0.0/16
151.129.0.0/16
151.206.0.0/16
152.138.0.0/16
157.31.0.0/16
157.95.0.0/16
159.128.0.0/16
167.162.0.0/16
167.186.0.0/16
172.128.0.0/10
172.200.0.0-172.215.255.255
192.100.104.0-192.100.133.255
193.149.64.0/19
193.221.113.0/24
194.41.16.0/20
194.110.197.0/24
209.199.0.0/16
212.207.0.0/16
213.54.0.0/16
213.199.128.0/18
IPv6:
2a00:1c68::/29
2a01:111::/32
Signature Algorithm: sha256WithRSAEncryption
5d:22:56:40:c8:6d:98:6d:c2:fc:b9:23:ae:78:13:09:bf:16:
32:bc:78:42:1c:d4:5d:cb:04:e3:a4:06:a2:d6:5e:c9:36:44:
14:1a:35:b3:56:50:40:e2:23:23:36:09:00:40:7d:ed:31:9d:
3e:d6:3a:98:74:ad:46:19:1f:fc:78:fb:69:48:a8:a2:29:73:
f1:51:62:58:01:1c:ac:3a:54:49:ea:40:8d:42:58:5a:d6:f2:
63:db:07:e3:e2:44:83:98:a5:75:75:23:5c:4a:79:5f:1a:7e:
ed:4b:7c:a6:b2:7d:97:12:2b:fd:0e:9d:3f:c6:02:94:0f:ab:
c0:52:00:67:68:ce:f2:8c:73:b9:0b:51:f2:01:47:22:4c:02:
8c:f9:bc:5a:dc:23:5c:f3:76:44:72:16:64:8f:cf:82:8b:59:
ae:49:25:bc:56:e1:d8:68:f0:77:cc:01:24:04:ea:d9:ce:0d:
aa:a5:8d:34:e5:5b:da:4e:3c:8d:53:ed:ca:54:88:e4:3c:95:
73:1b:47:6d:f5:0e:58:1a:df:df:47:6a:16:39:70:74:93:86:
7e:e3:06:50:db:57:a0:17:b2:36:74:4c:c7:44:c4:9b:8a:70:
dc:f5:45:a0:a9:bb:8e:19:c0:90:63:34:10:fc:a4:d7:5f:54:
01:9d:9f:65
-----BEGIN CERTIFICATE-----
MIIGJDCCBQygAwIBAgISAYfdePB3ROPC9h3Drfj9D1ogMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjZTY4ZGFmNWYwODk0NTZjMGUxZDAyMjQ1MzkzNTMxYWM1
YjhmY2IwHhcNMjMwNTAyMTcxODIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOTNlNzk2YmFjMDJkYmFmMjAxNTAyNjRjZWVmNzUxYjA1ZTdhY2E1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl3ghmmYejAsnp4wj6LBtDiQVdAxM
QRHV0L5OobxkuN9mKbFihcnjU6iEY181Sa9+ubkA3Zk6I/0gPvtcf5Re4EalpRbe
99XjmxDGCz6bTaGycpbwSEKGS21SeuDufsgAuZiOrRl5HBsQt+8NJpd5QOMxcZAJ
KzjRGk4+nzG9ewpd5k1sSs/wxZUm37/U8S24Adaiw9Y8kyCnvAdfLWiY3v2pR7ug
fbdNsSQcaDIys/vqDsbft6gwLQQZOiUT8zP+dcrFy081B6uCXa3GL98smjthO7fM
UsElcyalXuWjwQq4xDU9AvU4iOIGmfI81D8aChvGErAXa1utMxCmot7HOQIDAQAB
o4IDMDCCAywwHQYDVR0OBBYEFOk+eWusAtuvIBUCZM7vdRsF56ylMB8GA1UdIwQY
MBaAFHzmja9fCJRWwOHQIkU5NTGsW4/LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZk9hTnIxOElsRmJBNGRBaVJUazFNYXhiajhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9lYzBiODktMWU2OC00NWEwLThiOTMt
MTNhMDZhMjY5YWE4LzEvNlQ1NWE2d0MyNjhnRlFKa3p1OTFHd1hucktVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi9lYzBiODktMWU2OC00NWEwLThiOTMtMTNhMDZhMjY5YWE4
LzEvZk9hTnIxOElsRmJBNGRBaVJUazFNYXhiajhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBRAYIKwYBBQUHAQcBAf8EggEzMIIBLzCCARUEAgABMIIB
DTAKAwMAKKkDAwIoqDAKAwMBMwoDAwEzDAMDADMzAwMAMzUwCgMDADNnAwMBM2gD
AwAzawMDADN0AwMAM3gDAwAzfAMDADOEMAoDAwMziAMDADOKMAoDAwIzjAMDATOQ
MAoDAwE5lgMDBDmgAwMAUlcDAwBV1AMEBl71QAMDAIBVAwMAhKQDAwCHggMDAIpp
AwMAj+IDAwCT8wMDAJeBAwMAl84DAwCYigMDAJ0fAwMAnV8DAwCfgAMDAKeiAwMA
p7oDAwasgDAKAwMDrMgDAwOs0DAMAwQDwGRoAwQBwGSEAwQFwZVAAwQAwd1xAwQE
wikQAwQAwm7FAwMA0ccDAwDUzwMDANU2AwQG1ceAMBQEAgACMA4DBQMqABxoAwUA
KgEBETANBgkqhkiG9w0BAQsFAAOCAQEAXSJWQMhtmG3C/LkjrngTCb8WMrx4QhzU
XcsE46QGotZeyTZEFBo1s1ZQQOIjIzYJAEB97TGdPtY6mHStRhkf/Hj7aUiooilz
8VFiWAEcrDpUSepAjUJYWtbyY9sH4+JEg5ildXUjXEp5Xxp+7Ut8prJ9lxIr/Q6d
P8YClA+rwFIAZ2jO8oxzuQtR8gFHIkwCjPm8WtwjXPN2RHIWZI/PgotZrkklvFbh
2Gjwd8wBJATq2c4NqqWNNOVb2k48jVPtylSI5DyVcxtHbfUOWBrf30dqFjlwdJOG
fuMGUNtXoBeyNnRMx0TEm4pw3PVFoKm7jhnAkGM0EPyk119UAZ2fZQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:32 2024 by rpki-client on console-fra.rpki-client.org