Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/kF9Nejimna556imrx7Ru9Vtc1QE.roa
File: kF9Nejimna556imrx7Ru9Vtc1QE.roa (raw, json)
Hash identifier: nyTYfdWB0XVJ0OsUUH0NY8en8wGkaVixc05H1CmwU1w=
Subject key identifier: 90:5F:4D:7A:38:A6:9D:AE:79:EA:29:AB:C7:B4:6E:F5:5B:5C:D5:01
Certificate issuer: /CN=b79de9458d190e634329f9df1503b5222c1624ee
Certificate serial: 0188E2F07DC4A9ABA51A16BA3282A0E9B25A
Authority key identifier: B7:9D:E9:45:8D:19:0E:63:43:29:F9:DF:15:03:B5:22:2C:16:24:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t53pRY0ZDmNDKfnfFQO1IiwWJO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/kF9Nejimna556imrx7Ru9Vtc1QE.roa
Signing time: Thu 22 Jun 2023 11:49:51 +0000
ROA not before: Thu 22 Jun 2023 11:49:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61076
IP address blocks: 185.231.52.0/24 maxlen: 24
185.231.53.0/24 maxlen: 24
185.231.54.0/24 maxlen: 24
185.231.55.0/24 maxlen: 24
2a13:bc84::/32 maxlen: 32
2a0c:4107::/32 maxlen: 32
2a13:bc80::/32 maxlen: 32
2a0c:4106::/32 maxlen: 32
2a13:bc85::/32 maxlen: 32
2a0c:4100::/32 maxlen: 32
2a0c:4103::/32 maxlen: 32
2a13:bc86::/32 maxlen: 32
2a0c:4105::/32 maxlen: 32
2a13:bc82::/32 maxlen: 32
2a0c:4101::/32 maxlen: 32
2a13:bc83::/32 maxlen: 32
2a0c:4104::/32 maxlen: 32
2a13:bc87::/32 maxlen: 32
2a0c:4102::/32 maxlen: 32
2a13:bc81::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e2:f0:7d:c4:a9:ab:a5:1a:16:ba:32:82:a0:e9:b2:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b79de9458d190e634329f9df1503b5222c1624ee
Validity
Not Before: Jun 22 11:49:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=905f4d7a38a69dae79ea29abc7b46ef55b5cd501
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:4a:73:15:1c:40:4a:bc:7a:31:c3:f8:33:fe:
2f:99:00:f5:33:95:26:ae:48:21:04:c8:2a:a9:91:
e6:23:6b:9b:93:9c:59:41:17:1a:1c:da:b0:2e:46:
f3:b4:0f:3c:98:92:fb:74:50:7a:96:4d:f9:4f:82:
87:74:ee:e8:74:65:16:06:21:34:4a:58:c6:c4:c7:
78:3e:f1:01:1c:8b:92:36:41:a4:dc:7d:99:1e:70:
cf:9c:96:28:e7:6e:4d:2a:db:2a:72:33:8f:04:68:
a3:bf:d2:d8:e3:9e:1b:00:14:30:1e:8d:f8:1a:81:
ec:34:24:03:be:d3:b8:e9:59:81:2a:1b:c9:3f:4d:
90:ff:f0:81:eb:2c:4f:7a:be:d9:7c:eb:1d:40:14:
71:72:f4:e2:05:74:cb:fb:4f:72:24:78:15:01:87:
31:e0:af:ca:85:33:90:15:92:93:ac:8e:46:c8:03:
3d:bf:42:fc:e3:f6:ef:87:27:16:4e:54:7a:3b:4d:
95:ed:f3:e5:0d:9c:88:e2:2e:d2:47:11:34:c4:e4:
17:d1:43:2c:b3:d4:a1:28:07:15:ed:4b:27:19:d7:
46:3d:61:ac:c1:fc:bb:34:5a:3d:76:28:ef:d2:c0:
fa:fb:47:ea:62:90:9a:2c:3f:ab:5a:5f:42:29:38:
fb:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:5F:4D:7A:38:A6:9D:AE:79:EA:29:AB:C7:B4:6E:F5:5B:5C:D5:01
X509v3 Authority Key Identifier:
keyid:B7:9D:E9:45:8D:19:0E:63:43:29:F9:DF:15:03:B5:22:2C:16:24:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t53pRY0ZDmNDKfnfFQO1IiwWJO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/kF9Nejimna556imrx7Ru9Vtc1QE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.52.0/22
IPv6:
2a0c:4100::/29
2a13:bc80::/29
Signature Algorithm: sha256WithRSAEncryption
24:08:b6:c5:af:9d:73:9f:ff:5f:13:d5:b9:23:3c:de:91:03:
40:68:6a:61:6c:3a:e7:77:00:05:35:62:31:e5:0a:0a:f4:54:
c4:a3:d6:80:c0:f8:ae:bd:2e:78:9e:62:fb:f3:d1:4f:ee:7a:
26:77:5a:fd:fb:df:7c:db:58:f9:e3:58:c0:76:18:e4:6c:a2:
e4:05:64:77:01:e1:a0:55:fb:bd:c5:9b:0a:43:ff:5c:d8:0a:
38:76:c4:b3:7d:26:8b:32:f3:49:dc:54:b5:66:2d:fa:7f:ae:
2c:4d:ae:e5:65:0d:a6:12:43:c7:f1:8d:c3:d5:2f:69:18:25:
00:b4:10:34:51:2f:55:0b:f8:a1:4d:56:b0:a1:42:25:7b:dd:
3b:a6:8d:47:d1:cb:25:4a:71:a3:49:1a:83:24:99:29:cd:e5:
32:9d:63:89:fa:d1:d6:17:e7:06:7d:1e:e0:31:c9:cb:12:ec:
2c:19:73:94:55:56:08:dc:ff:4e:aa:bd:69:af:eb:e4:a3:b9:
26:0e:79:bb:ac:20:ef:f7:d8:75:96:c6:06:52:32:28:a9:b2:
db:b5:58:55:b6:bb:ee:cc:25:01:48:fe:a0:a0:55:21:f2:d1:
3d:9b:32:da:42:f3:4f:d5:63:20:d2:74:b2:30:f9:13:08:df:
af:01:70:2d
-----BEGIN CERTIFICATE-----
MIIFEzCCA/ugAwIBAgISAYji8H3EqaulGha6MoKg6bJaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3OWRlOTQ1OGQxOTBlNjM0MzI5ZjlkZjE1MDNiNTIyMmMx
NjI0ZWUwHhcNMjMwNjIyMTE0OTUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MDVmNGQ3YTM4YTY5ZGFlNzllYTI5YWJjN2I0NmVmNTViNWNkNTAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgkpzFRxASrx6McP4M/4vmQD1M5Um
rkghBMgqqZHmI2ubk5xZQRcaHNqwLkbztA88mJL7dFB6lk35T4KHdO7odGUWBiE0
SljGxMd4PvEBHIuSNkGk3H2ZHnDPnJYo525NKtsqcjOPBGijv9LY454bABQwHo34
GoHsNCQDvtO46VmBKhvJP02Q//CB6yxPer7ZfOsdQBRxcvTiBXTL+09yJHgVAYcx
4K/KhTOQFZKTrI5GyAM9v0L84/bvhycWTlR6O02V7fPlDZyI4i7SRxE0xOQX0UMs
s9ShKAcV7UsnGddGPWGswfy7NFo9dijv0sD6+0fqYpCaLD+rWl9CKTj7WQIDAQAB
o4ICHzCCAhswHQYDVR0OBBYEFJBfTXo4pp2ueeopq8e0bvVbXNUBMB8GA1UdIwQY
MBaAFLed6UWNGQ5jQyn53xUDtSIsFiTuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDUzcFJZMFpEbU5ES2ZuZkZRTzFJaXdXSk80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS8zYmU4OTktYTUyZi00M2FkLThlODkt
ZjFjZDlmYTI4Y2M1LzEva0Y5TmVqaW1uYTU1Nmltcng3UnU5VnRjMVFFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS8zYmU4OTktYTUyZi00M2FkLThlODktZjFjZDlmYTI4Y2M1
LzEvdDUzcFJZMFpEbU5ES2ZuZkZRTzFJaXdXSk80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDUGCCsGAQUFBwEHAQH/BCYwJDAMBAIAATAGAwQCuec0MBQE
AgACMA4DBQMqDEEAAwUDKhO8gDANBgkqhkiG9w0BAQsFAAOCAQEAJAi2xa+dc5//
XxPVuSM83pEDQGhqYWw653cABTViMeUKCvRUxKPWgMD4rr0ueJ5i+/PRT+56Jnda
/fvffNtY+eNYwHYY5Gyi5AVkdwHhoFX7vcWbCkP/XNgKOHbEs30mizLzSdxUtWYt
+n+uLE2u5WUNphJDx/GNw9UvaRglALQQNFEvVQv4oU1WsKFCJXvdO6aNR9HLJUpx
o0kagySZKc3lMp1jifrR1hfnBn0e4DHJyxLsLBlzlFVWCNz/Tqq9aa/r5KO5Jg55
u6wg7/fYdZbGBlIyKKmy27VYVba77swlAUj+oKBVIfLRPZsy2kLzT9VjINJ0sjD5
EwjfrwFwLQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:45 2024 by rpki-client on console-ams.rpki-client.org