Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/a1464a-2411-4cc8-a101-0aecdc5175fa/1/6bnGwOha9pETVwm5GYTZ1sLC6Ww.roa
File: 6bnGwOha9pETVwm5GYTZ1sLC6Ww.roa (raw, json)
Hash identifier: 9E2UYcs0WhhMgcCodm93QHsiR05eFnGkil04NFMMAeE=
Subject key identifier: E9:B9:C6:C0:E8:5A:F6:91:13:57:09:B9:19:84:D9:D6:C2:C2:E9:6C
Certificate issuer: /CN=387b7561d98dacfab863058b3b9807ad823f186a
Certificate serial: 0193B00E3971554E24C3ECE4275B3EA431BE
Authority key identifier: 38:7B:75:61:D9:8D:AC:FA:B8:63:05:8B:3B:98:07:AD:82:3F:18:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OHt1YdmNrPq4YwWLO5gHrYI_GGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/a1464a-2411-4cc8-a101-0aecdc5175fa/1/6bnGwOha9pETVwm5GYTZ1sLC6Ww.roa
Signing time: Tue 10 Dec 2024 10:12:22 +0000
ROA not before: Tue 10 Dec 2024 10:12:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216434
IP address blocks: 195.160.64.0/19 maxlen: 19
195.160.64.0/24 maxlen: 24
195.160.65.0/24 maxlen: 24
195.160.66.0/24 maxlen: 24
195.160.67.0/24 maxlen: 24
195.160.68.0/24 maxlen: 24
195.160.70.0/24 maxlen: 24
195.160.71.0/24 maxlen: 24
195.160.72.0/21 maxlen: 21
195.160.72.0/24 maxlen: 24
195.160.74.0/24 maxlen: 24
195.160.80.0/23 maxlen: 23
195.160.88.0/24 maxlen: 24
195.160.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Dec 2024 23:33:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b0:0e:39:71:55:4e:24:c3:ec:e4:27:5b:3e:a4:31:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=387b7561d98dacfab863058b3b9807ad823f186a
Validity
Not Before: Dec 10 10:12:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e9b9c6c0e85af691135709b91984d9d6c2c2e96c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:01:0c:18:c8:e3:74:9e:f2:5a:ed:aa:8d:a2:
84:f8:3d:05:0a:8c:5b:5d:5d:c1:96:3d:55:99:3a:
3b:66:f9:a4:09:af:c2:83:c4:6f:da:39:ae:7c:ca:
af:06:dc:9d:3c:49:09:a9:ab:1c:fa:77:ce:59:14:
a3:de:a3:c6:ca:52:33:18:8e:e2:d3:34:e5:4d:f6:
4f:96:75:c4:e8:32:a5:f0:30:bc:fb:d2:45:e0:62:
0e:0d:fa:ac:44:cb:dc:3b:f7:f3:3d:a2:b8:63:b2:
5f:a6:93:ba:98:d2:11:ba:ab:b2:b4:98:6b:c0:7b:
ea:f4:4d:10:e7:fd:39:87:82:90:f7:57:a9:2b:7a:
85:a3:e8:ca:82:ba:fe:ee:6f:54:5a:2f:32:df:92:
db:05:e2:f4:ed:a8:1d:56:68:0f:fe:87:04:86:57:
1b:ca:5b:55:e2:6c:4a:fc:c9:08:15:40:d2:4e:55:
d8:8e:72:84:58:1b:e4:08:cc:24:8f:6a:f2:c3:4d:
13:07:a5:15:40:d8:d7:33:3e:73:18:26:71:38:88:
05:7e:d2:70:a4:f0:e2:20:31:97:38:79:8a:d9:37:
c6:31:0a:74:34:46:cb:e8:e2:0e:ca:e0:44:10:7d:
d9:6a:fb:fd:bf:96:cf:45:d1:05:1f:3f:70:66:71:
14:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:B9:C6:C0:E8:5A:F6:91:13:57:09:B9:19:84:D9:D6:C2:C2:E9:6C
X509v3 Authority Key Identifier:
keyid:38:7B:75:61:D9:8D:AC:FA:B8:63:05:8B:3B:98:07:AD:82:3F:18:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OHt1YdmNrPq4YwWLO5gHrYI_GGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/a1464a-2411-4cc8-a101-0aecdc5175fa/1/6bnGwOha9pETVwm5GYTZ1sLC6Ww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/a1464a-2411-4cc8-a101-0aecdc5175fa/1/OHt1YdmNrPq4YwWLO5gHrYI_GGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.160.64.0/19
Signature Algorithm: sha256WithRSAEncryption
a4:26:21:79:ce:59:65:75:8d:00:75:50:f5:2d:38:f7:4e:ff:
6c:8e:a3:b6:80:30:5a:61:ec:02:19:98:9e:8b:56:87:12:2b:
17:01:8c:9c:85:0d:36:ac:03:5e:a8:ab:a6:11:7f:2f:65:0c:
c3:57:3d:ba:1f:92:e2:fe:42:58:19:19:fc:c8:b5:46:4f:11:
e1:9f:17:a9:c4:12:56:f3:a7:f9:c1:85:4a:e8:4c:05:96:36:
bc:d6:5f:d3:3f:4e:b7:25:a2:0b:58:a3:4f:3d:d4:86:52:7b:
bd:fc:f3:08:a9:10:44:b8:84:43:a3:5d:e7:96:d2:2d:65:37:
6e:d9:8a:5e:8d:ea:26:db:83:fc:41:da:db:8b:1c:6d:d0:ec:
fe:89:70:b0:db:5d:37:13:51:33:60:0e:1a:e4:44:df:c2:ff:
92:ec:36:04:5d:82:ab:ab:45:88:2e:13:e6:37:68:c6:19:2e:
8f:62:95:85:00:7e:4c:68:c5:68:0c:4a:6f:42:55:a4:71:23:
18:b7:50:ed:8d:80:c2:30:c3:11:49:79:c3:66:2f:73:ad:32:
95:87:a9:71:cd:9a:ac:3f:e2:2e:f4:84:a8:13:e6:95:b1:03:
f0:8a:9b:67:d5:f5:21:bc:eb:e2:cd:5d:ae:e0:29:a6:21:e9:
d0:b8:24:5e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZOwDjlxVU4kw+zkJ1s+pDG+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4N2I3NTYxZDk4ZGFjZmFiODYzMDU4YjNiOTgwN2FkODIz
ZjE4NmEwHhcNMjQxMjEwMTAxMjIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOWI5YzZjMGU4NWFmNjkxMTM1NzA5YjkxOTg0ZDlkNmMyYzJlOTZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArAEMGMjjdJ7yWu2qjaKE+D0FCoxb
XV3Blj1VmTo7ZvmkCa/Cg8Rv2jmufMqvBtydPEkJqasc+nfOWRSj3qPGylIzGI7i
0zTlTfZPlnXE6DKl8DC8+9JF4GIODfqsRMvcO/fzPaK4Y7JfppO6mNIRuquytJhr
wHvq9E0Q5/05h4KQ91epK3qFo+jKgrr+7m9UWi8y35LbBeL07agdVmgP/ocEhlcb
yltV4mxK/MkIFUDSTlXYjnKEWBvkCMwkj2ryw00TB6UVQNjXMz5zGCZxOIgFftJw
pPDiIDGXOHmK2TfGMQp0NEbL6OIOyuBEEH3Zavv9v5bPRdEFHz9wZnEU/QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOm5xsDoWvaRE1cJuRmE2dbCwulsMB8GA1UdIwQY
MBaAFDh7dWHZjaz6uGMFizuYB62CPxhqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0h0MVlkbU5yUHE0WXdXTE81Z0hyWUlfR0dvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9hMTQ2NGEtMjQxMS00Y2M4LWExMDEt
MGFlY2RjNTE3NWZhLzEvNmJuR3dPaGE5cEVUVndtNUdZVFoxc0xDNld3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC9hMTQ2NGEtMjQxMS00Y2M4LWExMDEtMGFlY2RjNTE3NWZh
LzEvT0h0MVlkbU5yUHE0WXdXTE81Z0hyWUlfR0dvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFw6BAMA0G
CSqGSIb3DQEBCwUAA4IBAQCkJiF5zllldY0AdVD1LTj3Tv9sjqO2gDBaYewCGZie
i1aHEisXAYychQ02rANeqKumEX8vZQzDVz26H5Li/kJYGRn8yLVGTxHhnxepxBJW
86f5wYVK6EwFlja81l/TP063JaILWKNPPdSGUnu9/PMIqRBEuIRDo13nltItZTdu
2Ypejeom24P8Qdrbixxt0Oz+iXCw2103E1EzYA4a5ETfwv+S7DYEXYKrq0WILhPm
N2jGGS6PYpWFAH5MaMVoDEpvQlWkcSMYt1DtjYDCMMMRSXnDZi9zrTKVh6lxzZqs
P+Iu9ISoE+aVsQPwiptn1fUhvOvizV2u4CmmIenQuCRe
-----END CERTIFICATE-----
Generated at Fri May 16 06:23:03 2025 by rpki-client