Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/L2I2qlMrK8BAPYaPkbefYNN7SF8.roa
File: L2I2qlMrK8BAPYaPkbefYNN7SF8.roa (raw, json)
Hash identifier: hn/kIqDDhJm3BoFwF0fwCxZkuUunX+8Zqc4KylHe1GE=
Subject key identifier: 2F:62:36:AA:53:2B:2B:C0:40:3D:86:8F:91:B7:9F:60:D3:7B:48:5F
Certificate issuer: /CN=922208b47b6a864d9d1ff33e06aa81d13819a74e
Certificate serial: 018CC3B689A7B814F66004367A861E17F1EC
Authority key identifier: 92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/L2I2qlMrK8BAPYaPkbefYNN7SF8.roa
Signing time: Mon 01 Jan 2024 06:29:29 +0000
ROA not before: Mon 01 Jan 2024 06:29:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207990
IP address blocks: 194.53.70.0/24 maxlen: 32
193.228.58.0/23 maxlen: 32
92.118.208.0/22 maxlen: 32
194.88.143.0/24 maxlen: 32
45.66.176.0/22 maxlen: 32
45.154.192.0/22 maxlen: 32
193.254.27.0/24 maxlen: 32
193.254.28.0/24 maxlen: 32
139.28.120.0/22 maxlen: 32
45.82.96.0/22 maxlen: 32
185.36.254.0/24 maxlen: 32
185.223.248.0/22 maxlen: 32
82.115.213.0/24 maxlen: 32
185.188.63.0/24 maxlen: 32
63.141.36.0/23 maxlen: 32
45.156.224.0/22 maxlen: 32
194.124.240.0/24 maxlen: 32
194.124.239.0/24 maxlen: 32
194.124.247.0/24 maxlen: 32
194.124.248.0/24 maxlen: 32
188.119.154.0/24 maxlen: 32
45.84.228.0/22 maxlen: 32
45.10.236.0/22 maxlen: 32
194.0.133.0/24 maxlen: 32
194.0.136.0/24 maxlen: 32
Validation: Failed, certificate revoked on Tue 05 Mar 2024 06:57:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:89:a7:b8:14:f6:60:04:36:7a:86:1e:17:f1:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=922208b47b6a864d9d1ff33e06aa81d13819a74e
Validity
Not Before: Jan 1 06:29:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f6236aa532b2bc0403d868f91b79f60d37b485f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8b:48:ee:da:e0:b8:a7:ca:57:e2:74:8a:24:
d2:38:d7:43:b9:38:0f:31:c5:42:fb:13:d1:4a:95:
1a:15:c7:5a:b3:bd:81:51:51:79:ec:1f:5a:71:a5:
bd:4c:43:cb:87:c0:4f:38:2a:16:84:30:1a:b1:2d:
76:b1:75:4b:22:f5:dc:46:b5:7d:f1:a9:17:49:7d:
7c:c6:52:36:b5:08:fd:35:d6:f4:f7:52:68:75:3b:
03:b0:d3:4e:9b:71:1b:4c:b4:5b:98:56:b4:ce:c2:
d6:78:03:ff:54:70:a1:1b:3e:fe:b0:ad:0a:fc:25:
f6:35:f8:ae:54:6c:6e:b9:f9:d1:85:f2:d6:85:8c:
74:6f:b7:3b:4e:ce:ed:36:8f:a7:13:d3:31:49:31:
2b:25:58:f2:ef:01:84:3a:69:1e:4f:b4:c7:25:f0:
31:40:4d:56:a5:1f:ba:57:04:48:28:d9:f8:01:e3:
a6:89:1e:28:06:a6:70:1e:6d:6f:a4:e9:c3:be:34:
68:59:4a:0a:b5:4f:5c:6f:fb:d9:ed:88:57:dd:d6:
64:f3:fd:c4:6a:6b:6e:81:a5:3e:32:c5:36:91:79:
64:48:81:41:af:62:5b:51:1b:f9:a1:5b:9d:ce:a5:
3a:fe:5e:46:ba:e0:27:9a:56:74:a3:d8:0f:64:1e:
f0:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:62:36:AA:53:2B:2B:C0:40:3D:86:8F:91:B7:9F:60:D3:7B:48:5F
X509v3 Authority Key Identifier:
keyid:92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/L2I2qlMrK8BAPYaPkbefYNN7SF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/kiIItHtqhk2dH_M-BqqB0TgZp04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.236.0/22
45.66.176.0/22
45.82.96.0/22
45.84.228.0/22
45.154.192.0/22
45.156.224.0/22
63.141.36.0/23
82.115.213.0/24
92.118.208.0/22
139.28.120.0/22
185.36.254.0/24
185.188.63.0/24
185.223.248.0/22
188.119.154.0/24
193.228.58.0/23
193.254.27.0-193.254.28.255
194.0.133.0/24
194.0.136.0/24
194.53.70.0/24
194.88.143.0/24
194.124.239.0-194.124.240.255
194.124.247.0-194.124.248.255
Signature Algorithm: sha256WithRSAEncryption
c5:cf:d6:22:98:ea:95:d0:23:3d:10:be:d2:dc:df:eb:90:d4:
ac:fa:f5:3d:42:aa:54:9f:0b:19:de:36:f9:b9:93:86:c0:a9:
a4:75:b2:16:77:43:68:66:5b:86:a4:4b:71:87:64:32:e0:f0:
35:c3:e6:16:94:ac:46:16:9a:4b:b1:9d:fe:4d:b7:a9:32:f7:
4e:62:dd:0e:55:57:52:36:a0:d5:0e:d3:dc:a0:ce:6d:f4:c1:
c8:f9:31:2d:ba:6f:7c:78:c6:71:6f:0b:d1:e9:67:fa:f7:4f:
f5:d4:29:fe:99:8a:ea:7c:f4:74:73:21:a1:16:d0:a6:0f:ff:
1d:30:24:14:61:69:40:b2:21:8f:00:a0:a8:1a:aa:07:60:11:
f9:d0:26:52:d6:62:30:44:4a:3c:91:5c:3f:c0:76:32:d9:6b:
3a:28:c6:ce:9e:5f:8f:bb:78:cf:a2:7e:d2:ca:51:6e:ae:7f:
71:d8:db:a8:7b:77:e0:ff:fe:a5:81:3d:e1:9a:69:61:f0:f9:
a4:1a:ca:ee:16:cb:35:a3:24:a6:c0:8f:0a:35:49:42:bc:a5:
55:bb:e6:9b:6d:08:92:1f:c2:66:d7:e6:02:cf:dd:8e:f6:dc:
80:80:8d:6d:d9:e2:76:67:f6:2e:1f:1d:a8:0d:ba:0e:03:04:
c2:25:3d:a4
-----BEGIN CERTIFICATE-----
MIIFmDCCBICgAwIBAgISAYzDtomnuBT2YAQ2eoYeF/HsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMjIwOGI0N2I2YTg2NGQ5ZDFmZjMzZTA2YWE4MWQxMzgx
OWE3NGUwHhcNMjQwMTAxMDYyOTI5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZjYyMzZhYTUzMmIyYmMwNDAzZDg2OGY5MWI3OWY2MGQzN2I0ODVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoItI7trguKfKV+J0iiTSONdDuTgP
McVC+xPRSpUaFcdas72BUVF57B9acaW9TEPLh8BPOCoWhDAasS12sXVLIvXcRrV9
8akXSX18xlI2tQj9Ndb091JodTsDsNNOm3EbTLRbmFa0zsLWeAP/VHChGz7+sK0K
/CX2NfiuVGxuufnRhfLWhYx0b7c7Ts7tNo+nE9MxSTErJVjy7wGEOmkeT7THJfAx
QE1WpR+6VwRIKNn4AeOmiR4oBqZwHm1vpOnDvjRoWUoKtU9cb/vZ7YhX3dZk8/3E
amtugaU+MsU2kXlkSIFBr2JbURv5oVudzqU6/l5GuuAnmlZ0o9gPZB7w7wIDAQAB
o4ICpDCCAqAwHQYDVR0OBBYEFC9iNqpTKyvAQD2Gj5G3n2DTe0hfMB8GA1UdIwQY
MBaAFJIiCLR7aoZNnR/zPgaqgdE4GadOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2lJSXRIdHFoazJkSF9NLUJxcUIwVGdacDA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS82OTkwZTktYzNjMC00NzhhLTk5OTct
OTViMDhlMzY2MGNmLzEvTDJJMnFsTXJLOEJBUFlhUGtiZWZZTk43U0Y4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS82OTkwZTktYzNjMC00NzhhLTk5OTctOTViMDhlMzY2MGNm
LzEva2lJSXRIdHFoazJkSF9NLUJxcUIwVGdacDA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG5BggrBgEFBQcBBwEB/wSBqTCBpjCBowQCAAEwgZwDBAIt
CuwDBAItQrADBAItUmADBAItVOQDBAItmsADBAItnOADBAE/jSQDBABSc9UDBAJc
dtADBAKLHHgDBAC5JP4DBAC5vD8DBAK53/gDBAC8d5oDBAHB5DowDAMEAMH+GwME
AMH+HAMEAMIAhQMEAMIAiAMEAMI1RgMEAMJYjzAMAwQAwnzvAwQAwnzwMAwDBADC
fPcDBADCfPgwDQYJKoZIhvcNAQELBQADggEBAMXP1iKY6pXQIz0QvtLc3+uQ1Kz6
9T1CqlSfCxneNvm5k4bAqaR1shZ3Q2hmW4akS3GHZDLg8DXD5haUrEYWmkuxnf5N
t6ky905i3Q5VV1I2oNUO09ygzm30wcj5MS26b3x4xnFvC9HpZ/r3T/XUKf6Ziup8
9HRzIaEW0KYP/x0wJBRhaUCyIY8AoKgaqgdgEfnQJlLWYjBESjyRXD/AdjLZazoo
xs6eX4+7eM+iftLKUW6uf3HY26h7d+D//qWBPeGaaWHw+aQayu4WyzWjJKbAjwo1
SUK8pVW75pttCJIfwmbX5gLP3Y723ICAjW3Z4nZn9i4fHagNug4DBMIlPaQ=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:13 2025 by rpki-client