Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a1c6ec-c260-4ca2-887b-4bb94cbc2e73/1/hAdxvKUHKQ9cbIicFO1oQgWSVZM.roa
File: hAdxvKUHKQ9cbIicFO1oQgWSVZM.roa (raw, json)
Hash identifier: EOEAbwsenxEbJnZ8GMDh7FcAJGCHDtNNftKrJIEWcTE=
Subject key identifier: 84:07:71:BC:A5:07:29:0F:5C:6C:88:9C:14:ED:68:42:05:92:55:93
Certificate issuer: /CN=5b6d178f13851306b5634df159716319f4d82478
Certificate serial: 01934430D1050BE96ADB2A9E1F292F14A3DF
Authority key identifier: 5B:6D:17:8F:13:85:13:06:B5:63:4D:F1:59:71:63:19:F4:D8:24:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W20XjxOFEwa1Y03xWXFjGfTYJHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a1c6ec-c260-4ca2-887b-4bb94cbc2e73/1/hAdxvKUHKQ9cbIicFO1oQgWSVZM.roa
Signing time: Tue 19 Nov 2024 11:31:10 +0000
ROA not before: Tue 19 Nov 2024 11:31:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207459
IP address blocks: 80.253.254.0/24 maxlen: 32
80.253.255.0/24 maxlen: 32
91.217.119.0/24 maxlen: 32
193.31.117.0/24 maxlen: 32
213.142.132.0/24 maxlen: 24
213.142.134.0/24 maxlen: 24
213.142.149.0/24 maxlen: 24
213.142.150.0/24 maxlen: 32
213.142.156.0/24 maxlen: 24
2a0e:36c0::/29 maxlen: 32
2a0e:36c0::/32 maxlen: 32
2a0e:36c1::/32 maxlen: 32
2a0e:36c2::/32 maxlen: 32
2a0e:36c3::/32 maxlen: 32
2a0e:36c4::/32 maxlen: 32
2a0e:36c5::/32 maxlen: 32
2a0e:36c6::/32 maxlen: 32
2a0e:36c6:ff80::/48 maxlen: 48
2a0e:36c7::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 22 Nov 2024 00:07:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:44:30:d1:05:0b:e9:6a:db:2a:9e:1f:29:2f:14:a3:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b6d178f13851306b5634df159716319f4d82478
Validity
Not Before: Nov 19 11:31:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=840771bca507290f5c6c889c14ed684205925593
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:6f:e2:7b:39:3c:d5:9c:19:08:ad:07:55:f1:
fc:28:41:68:58:83:32:1b:64:2d:ca:8c:b8:83:45:
54:08:26:55:0c:66:91:ee:72:7e:49:41:ad:1e:25:
39:6e:ac:e8:f3:cb:fc:b9:7c:46:e3:91:e5:6c:27:
7b:6b:8a:79:a4:6a:2f:06:d2:69:eb:8d:aa:c4:ae:
b0:e6:81:85:34:39:4f:ee:42:eb:bb:28:d9:0e:12:
5a:b7:ba:69:a0:e1:f3:40:c4:5f:bf:4e:c4:e0:b2:
d2:f9:15:7b:e0:28:8f:c5:0d:77:29:6a:80:99:4b:
5c:10:af:b7:3c:05:59:cc:96:57:7b:b2:3b:12:aa:
67:44:59:e4:dc:3e:9f:c5:0f:17:7a:b9:92:3b:8e:
f8:c6:93:e8:b4:a5:d2:a5:d2:31:30:56:d7:92:f0:
ec:85:d4:51:ab:b5:83:6a:b4:34:06:59:ba:7d:6c:
15:91:61:9c:84:36:bf:5e:0b:26:0a:69:cd:5c:1e:
73:b1:24:44:00:71:7e:2c:21:60:8c:de:22:72:03:
24:47:64:90:62:1d:8d:63:5b:94:5d:6b:43:d2:ac:
44:c3:cf:f5:de:14:12:24:97:86:c3:0c:72:b1:15:
7b:52:c5:ac:ce:19:ae:46:77:eb:e3:5a:8e:63:8e:
ff:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:07:71:BC:A5:07:29:0F:5C:6C:88:9C:14:ED:68:42:05:92:55:93
X509v3 Authority Key Identifier:
keyid:5B:6D:17:8F:13:85:13:06:B5:63:4D:F1:59:71:63:19:F4:D8:24:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W20XjxOFEwa1Y03xWXFjGfTYJHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a1c6ec-c260-4ca2-887b-4bb94cbc2e73/1/hAdxvKUHKQ9cbIicFO1oQgWSVZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a1c6ec-c260-4ca2-887b-4bb94cbc2e73/1/W20XjxOFEwa1Y03xWXFjGfTYJHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.253.254.0/23
91.217.119.0/24
193.31.117.0/24
213.142.132.0/24
213.142.134.0/24
213.142.149.0-213.142.150.255
213.142.156.0/24
IPv6:
2a0e:36c0::/29
Signature Algorithm: sha256WithRSAEncryption
2b:b1:16:1d:0c:01:96:49:12:1a:4a:bf:d6:25:47:fe:43:d6:
1c:7a:01:7d:87:79:0e:3e:fc:39:9f:5c:08:df:9e:11:a1:e9:
eb:d8:86:93:2e:a2:81:9a:fe:1c:60:b6:be:06:0d:2d:e0:26:
0e:eb:98:f4:0d:3a:6e:53:6e:5c:a5:29:63:09:8e:3e:fc:fd:
d8:14:5d:52:49:68:83:17:55:00:74:91:d4:a0:83:64:41:6c:
be:1a:a2:d3:e6:98:32:9a:05:b1:dd:ee:11:7c:32:44:77:d6:
a2:e4:dc:c6:7a:d6:25:ad:66:e2:1d:97:d9:d4:92:9f:f2:0c:
e8:4b:8c:de:47:92:c7:cd:b8:2d:26:83:99:3c:ff:7f:15:fb:
7b:a8:bf:1b:19:81:bf:f7:f7:09:09:ca:d8:a8:24:c6:dd:ad:
f3:a2:78:ba:0c:ee:9e:93:1d:35:b8:e0:b2:79:fb:4e:cf:6f:
c2:b9:36:fd:14:f5:b6:4f:84:cb:ed:fd:50:2f:d0:74:46:5e:
4c:74:c3:9e:c7:cc:13:e5:c2:21:70:6e:45:8d:b7:39:eb:5d:
40:2e:9c:92:3f:3b:77:6c:7a:89:95:e4:9f:0a:25:96:fd:27:
c8:96:14:d4:20:57:d7:ca:6b:75:d7:71:93:81:5c:bf:ad:48:
85:18:44:b7
-----BEGIN CERTIFICATE-----
MIIFODCCBCCgAwIBAgISAZNEMNEFC+lq2yqeHykvFKPfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViNmQxNzhmMTM4NTEzMDZiNTYzNGRmMTU5NzE2MzE5ZjRk
ODI0NzgwHhcNMjQxMTE5MTEzMTEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NDA3NzFiY2E1MDcyOTBmNWM2Yzg4OWMxNGVkNjg0MjA1OTI1NTkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApG/iezk81ZwZCK0HVfH8KEFoWIMy
G2Qtyoy4g0VUCCZVDGaR7nJ+SUGtHiU5bqzo88v8uXxG45HlbCd7a4p5pGovBtJp
642qxK6w5oGFNDlP7kLruyjZDhJat7ppoOHzQMRfv07E4LLS+RV74CiPxQ13KWqA
mUtcEK+3PAVZzJZXe7I7EqpnRFnk3D6fxQ8XermSO474xpPotKXSpdIxMFbXkvDs
hdRRq7WDarQ0Blm6fWwVkWGchDa/XgsmCmnNXB5zsSREAHF+LCFgjN4icgMkR2SQ
Yh2NY1uUXWtD0qxEw8/13hQSJJeGwwxysRV7UsWszhmuRnfr41qOY47/6wIDAQAB
o4ICRDCCAkAwHQYDVR0OBBYEFIQHcbylBykPXGyInBTtaEIFklWTMB8GA1UdIwQY
MBaAFFttF48ThRMGtWNN8VlxYxn02CR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVzIwWGp4T0ZFd2ExWTAzeFdYRmpHZlRZSkhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy9hMWM2ZWMtYzI2MC00Y2EyLTg4N2It
NGJiOTRjYmMyZTczLzEvaEFkeHZLVUhLUTljYklpY0ZPMW9RZ1dTVlpNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYy9hMWM2ZWMtYzI2MC00Y2EyLTg4N2ItNGJiOTRjYmMyZTcz
LzEvVzIwWGp4T0ZFd2ExWTAzeFdYRmpHZlRZSkhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFoGCCsGAQUFBwEHAQH/BEswSTA4BAIAATAyAwQBUP3+AwQA
W9l3AwQAwR91AwQA1Y6EAwQA1Y6GMAwDBADVjpUDBADVjpYDBADVjpwwDQQCAAIw
BwMFAyoONsAwDQYJKoZIhvcNAQELBQADggEBACuxFh0MAZZJEhpKv9YlR/5D1hx6
AX2HeQ4+/DmfXAjfnhGh6evYhpMuooGa/hxgtr4GDS3gJg7rmPQNOm5TblylKWMJ
jj78/dgUXVJJaIMXVQB0kdSgg2RBbL4aotPmmDKaBbHd7hF8MkR31qLk3MZ61iWt
ZuIdl9nUkp/yDOhLjN5HksfNuC0mg5k8/38V+3uovxsZgb/39wkJytioJMbdrfOi
eLoM7p6THTW44LJ5+07Pb8K5Nv0U9bZPhMvt/VAv0HRGXkx0w57HzBPlwiFwbkWN
tznrXUAunJI/O3dseomV5J8KJZb9J8iWFNQgV9fKa3XXcZOBXL+tSIUYRLc=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:34:19 2025 by rpki-client