Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/c45811-75ba-4dd7-a421-f36d9ee346d4/1/y7SSdawEd74zgb0mN4D7QVIubCs.roa
File: y7SSdawEd74zgb0mN4D7QVIubCs.roa (raw, json)
Hash identifier: wMTU64fMwYkHzVyHszhkli/3fFweIKwpThA1GtAZgQI=
Subject key identifier: CB:B4:92:75:AC:04:77:BE:33:81:BD:26:37:80:FB:41:52:2E:6C:2B
Certificate issuer: /CN=2e0a2316f4e9b58aa52deee5c7d1f4b84476ec86
Certificate serial: 018F164CF4894E438C4E8CC2DFCE5FBA6C49
Authority key identifier: 2E:0A:23:16:F4:E9:B5:8A:A5:2D:EE:E5:C7:D1:F4:B8:44:76:EC:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LgojFvTptYqlLe7lx9H0uER27IY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/c45811-75ba-4dd7-a421-f36d9ee346d4/1/y7SSdawEd74zgb0mN4D7QVIubCs.roa
Signing time: Thu 25 Apr 2024 17:28:13 +0000
ROA not before: Thu 25 Apr 2024 17:28:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29545
IP address blocks: 86.111.36.0/24 maxlen: 24
86.111.37.0/24 maxlen: 24
86.111.38.0/24 maxlen: 24
86.111.39.0/24 maxlen: 24
86.111.40.0/22 maxlen: 22
86.111.40.0/24 maxlen: 24
86.111.41.0/24 maxlen: 24
86.111.50.0/23 maxlen: 23
86.111.50.0/24 maxlen: 24
213.163.229.0/24 maxlen: 24
213.163.232.0/24 maxlen: 24
213.163.233.0/24 maxlen: 24
213.163.236.0/23 maxlen: 23
213.163.238.0/24 maxlen: 24
213.163.242.0/23 maxlen: 23
213.163.244.0/23 maxlen: 23
213.163.248.0/23 maxlen: 23
213.163.254.0/24 maxlen: 24
2a00:1f88::/32 maxlen: 32
2a00:1f88:a402::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 10 May 2024 09:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:16:4c:f4:89:4e:43:8c:4e:8c:c2:df:ce:5f:ba:6c:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e0a2316f4e9b58aa52deee5c7d1f4b84476ec86
Validity
Not Before: Apr 25 17:28:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cbb49275ac0477be3381bd263780fb41522e6c2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:2d:27:72:8c:3b:64:b1:08:82:86:7d:69:44:
c3:80:d6:94:49:ef:ba:96:55:49:31:2a:93:35:dd:
be:0f:f3:c0:b8:57:c1:4c:ea:d1:e6:28:13:ec:21:
2e:fc:18:01:0a:a1:f5:bf:1a:85:31:ab:fa:aa:ec:
d5:39:60:a9:9e:ac:99:a5:97:ce:ae:3b:35:51:36:
60:04:55:40:53:a4:4f:32:fb:75:58:56:27:9d:c2:
8e:27:cf:68:42:94:ee:0f:aa:b0:da:5e:cb:7b:fd:
be:8a:a4:b5:3d:00:90:00:5d:8a:4e:d3:27:ae:55:
73:14:e3:dc:39:55:ad:51:16:bc:ce:e0:05:f5:a3:
2c:36:33:23:4b:3d:9f:a0:54:0c:dd:6f:17:7c:e6:
16:d8:a4:fe:2f:4a:7e:2b:db:e8:2a:24:10:53:4a:
e8:49:0f:8c:f7:db:a2:35:45:e9:fd:9f:dc:e8:42:
c1:fe:61:04:91:42:79:a4:aa:87:e0:22:3f:4d:69:
6c:48:0f:25:c2:34:7d:9a:46:c3:b7:95:f7:2e:31:
25:87:88:e9:46:24:77:6e:c3:e6:0b:bc:3f:9a:ab:
89:00:b8:cf:ae:f0:d8:71:a8:fc:31:b7:fd:7f:b7:
a8:c4:90:95:aa:5e:de:3e:a9:39:29:7b:97:dd:4e:
89:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:B4:92:75:AC:04:77:BE:33:81:BD:26:37:80:FB:41:52:2E:6C:2B
X509v3 Authority Key Identifier:
keyid:2E:0A:23:16:F4:E9:B5:8A:A5:2D:EE:E5:C7:D1:F4:B8:44:76:EC:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LgojFvTptYqlLe7lx9H0uER27IY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c45811-75ba-4dd7-a421-f36d9ee346d4/1/y7SSdawEd74zgb0mN4D7QVIubCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c45811-75ba-4dd7-a421-f36d9ee346d4/1/LgojFvTptYqlLe7lx9H0uER27IY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.111.36.0-86.111.43.255
86.111.50.0/23
213.163.229.0/24
213.163.232.0/23
213.163.236.0-213.163.238.255
213.163.242.0-213.163.245.255
213.163.248.0/23
213.163.254.0/24
IPv6:
2a00:1f88::/32
Signature Algorithm: sha256WithRSAEncryption
2e:77:c0:8c:2f:af:51:8b:75:3a:a9:86:23:a4:ec:62:3b:c5:
20:ca:90:cd:dc:1f:2a:f8:45:81:b4:43:04:cf:7a:7a:63:ec:
1e:a1:a5:21:2c:d7:d3:e0:c5:7a:b4:57:08:e5:98:89:48:f8:
24:09:b8:cb:08:4c:71:9d:9d:cd:95:07:d9:d4:36:0b:e5:b1:
8f:82:49:c7:6e:54:de:ab:30:1a:83:70:f1:1b:0d:d0:81:75:
45:dd:4f:57:95:aa:a5:6a:aa:c5:cb:fd:e9:5b:15:12:d2:56:
33:29:a9:66:42:5b:93:25:43:06:88:d8:7a:42:26:18:60:9a:
71:d4:92:3d:d1:75:ba:21:8e:b8:2b:33:a5:0d:55:c1:cf:0a:
a3:05:a7:77:0a:0b:6f:43:8a:d8:01:e0:31:7d:99:d0:d6:11:
78:1a:2e:5d:a7:8d:87:fa:ab:86:bd:6e:7f:8c:ad:01:40:3c:
41:52:d9:23:c1:7c:44:55:0d:08:72:de:83:e8:e5:25:2c:ab:
06:d4:18:ec:31:f1:b4:15:d0:b0:26:39:bc:82:31:47:bf:0c:
42:c0:90:a2:49:1e:a3:2d:01:1a:76:28:38:51:4a:a7:1b:4a:
8e:e2:a8:73:53:84:d8:30:ef:a2:dd:20:c6:6b:4e:8f:a4:71:
95:2a:cf:c3
-----BEGIN CERTIFICATE-----
MIIFTjCCBDagAwIBAgISAY8WTPSJTkOMTozC385fumxJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlMGEyMzE2ZjRlOWI1OGFhNTJkZWVlNWM3ZDFmNGI4NDQ3
NmVjODYwHhcNMjQwNDI1MTcyODEzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYmI0OTI3NWFjMDQ3N2JlMzM4MWJkMjYzNzgwZmI0MTUyMmU2YzJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiC0ncow7ZLEIgoZ9aUTDgNaUSe+6
llVJMSqTNd2+D/PAuFfBTOrR5igT7CEu/BgBCqH1vxqFMav6quzVOWCpnqyZpZfO
rjs1UTZgBFVAU6RPMvt1WFYnncKOJ89oQpTuD6qw2l7Le/2+iqS1PQCQAF2KTtMn
rlVzFOPcOVWtURa8zuAF9aMsNjMjSz2foFQM3W8XfOYW2KT+L0p+K9voKiQQU0ro
SQ+M99uiNUXp/Z/c6ELB/mEEkUJ5pKqH4CI/TWlsSA8lwjR9mkbDt5X3LjElh4jp
RiR3bsPmC7w/mquJALjPrvDYcaj8Mbf9f7eoxJCVql7ePqk5KXuX3U6JNwIDAQAB
o4ICWjCCAlYwHQYDVR0OBBYEFMu0knWsBHe+M4G9JjeA+0FSLmwrMB8GA1UdIwQY
MBaAFC4KIxb06bWKpS3u5cfR9LhEduyGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTGdvakZ2VHB0WXFsTGU3bHg5SDB1RVIyN0lZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC9jNDU4MTEtNzViYS00ZGQ3LWE0MjEt
ZjM2ZDllZTM0NmQ0LzEveTdTU2Rhd0VkNzR6Z2IwbU40RDdRVkl1YkNzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC9jNDU4MTEtNzViYS00ZGQ3LWE0MjEtZjM2ZDllZTM0NmQ0
LzEvTGdvakZ2VHB0WXFsTGU3bHg5SDB1RVIyN0lZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHAGCCsGAQUFBwEHAQH/BGEwXzBOBAIAATBIMAwDBAJWbyQD
BAJWbygDBAFWbzIDBADVo+UDBAHVo+gwDAMEAtWj7AMEANWj7jAMAwQB1aPyAwQB
1aP0AwQB1aP4AwQA1aP+MA0EAgACMAcDBQAqAB+IMA0GCSqGSIb3DQEBCwUAA4IB
AQAud8CML69Ri3U6qYYjpOxiO8UgypDN3B8q+EWBtEMEz3p6Y+weoaUhLNfT4MV6
tFcI5ZiJSPgkCbjLCExxnZ3NlQfZ1DYL5bGPgknHblTeqzAag3DxGw3QgXVF3U9X
laqlaqrFy/3pWxUS0lYzKalmQluTJUMGiNh6QiYYYJpx1JI90XW6IY64KzOlDVXB
zwqjBad3CgtvQ4rYAeAxfZnQ1hF4Gi5dp42H+quGvW5/jK0BQDxBUtkjwXxEVQ0I
ct6D6OUlLKsG1BjsMfG0FdCwJjm8gjFHvwxCwJCiSR6jLQEadig4UUqnG0qO4qhz
U4TYMO+i3SDGa06PpHGVKs/D
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:42 2024 by rpki-client on console-fra.rpki-client.org