Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/2b8d82-39fb-4a56-89c5-9d5657513e20/1/F24mIw6-LR63E7ZMxjIGxgHlka4.roa
File: F24mIw6-LR63E7ZMxjIGxgHlka4.roa (raw, json)
Hash identifier: rHkDPEPnoX3BLvX3U/DtwWV6jFqZDXsIwT5w+W8Ldjo=
Subject key identifier: 17:6E:26:23:0E:BE:2D:1E:B7:13:B6:4C:C6:32:06:C6:01:E5:91:AE
Certificate issuer: /CN=29c2103fd2417c8869145617de94fcc913b085ef
Certificate serial: 018704455D10DF8098ED0FBC2980CE956F8A
Authority key identifier: 29:C2:10:3F:D2:41:7C:88:69:14:56:17:DE:94:FC:C9:13:B0:85:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KcIQP9JBfIhpFFYX3pT8yROwhe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/2b8d82-39fb-4a56-89c5-9d5657513e20/1/F24mIw6-LR63E7ZMxjIGxgHlka4.roa
Signing time: Tue 21 Mar 2023 13:04:27 +0000
ROA not before: Tue 21 Mar 2023 13:04:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48504
IP address blocks: 193.243.151.0/24 maxlen: 24
193.243.150.0/23 maxlen: 23
45.134.192.0/22 maxlen: 24
46.247.160.0/19 maxlen: 24
94.247.160.0/21 maxlen: 24
185.117.36.0/22 maxlen: 24
94.143.80.0/21 maxlen: 24
185.48.48.0/22 maxlen: 24
194.105.58.0/23 maxlen: 24
194.105.62.0/23 maxlen: 24
176.53.128.0/22 maxlen: 24
185.12.96.0/22 maxlen: 24
193.239.190.0/23 maxlen: 24
37.26.176.0/21 maxlen: 24
185.50.76.0/22 maxlen: 24
2a04:b440::/29 maxlen: 29
2a03:bd00::/32 maxlen: 48
2a01:aa60::/32 maxlen: 48
2a01:9720::/32 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Jun 2023 11:58:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:04:45:5d:10:df:80:98:ed:0f:bc:29:80:ce:95:6f:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29c2103fd2417c8869145617de94fcc913b085ef
Validity
Not Before: Mar 21 13:04:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=176e26230ebe2d1eb713b64cc63206c601e591ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:a2:56:ff:0f:10:40:e9:c0:97:30:54:3e:bc:
ff:40:5d:2f:a6:3a:0a:fb:8d:bc:86:5f:81:c0:1d:
c4:71:fb:bc:93:76:f3:c1:ca:6d:c6:0c:f2:f9:de:
6e:0e:9c:b4:b2:71:7a:b7:87:78:ce:bf:7e:e1:ef:
c8:5d:84:83:a2:0b:d9:e6:92:99:da:10:94:09:ca:
4d:1a:71:99:72:62:43:88:43:a4:18:5a:7d:2a:cf:
36:f7:d7:fd:43:c0:4f:c3:f5:fa:44:26:24:3c:09:
3b:7d:64:87:f1:25:32:ff:be:2c:65:7c:9e:d7:9b:
2c:94:3b:a4:9e:c4:e8:1c:34:d0:b8:85:b0:4e:e8:
f4:27:7b:53:66:67:51:d8:17:cf:f3:3b:a0:86:c4:
75:33:20:8f:3f:ad:c0:a4:46:7f:40:f3:d2:1a:0a:
b7:94:5f:6c:dc:50:7e:7f:7b:0d:25:2e:5c:12:9a:
1d:4b:a9:54:95:ed:b6:a7:82:c7:61:e7:bf:37:62:
98:26:e7:1d:f9:a1:29:57:64:78:73:4e:ac:d2:29:
56:0f:ff:d4:91:33:38:b7:ab:7a:69:f2:b6:d5:09:
ba:ab:fa:55:88:f5:30:99:15:56:69:91:4a:91:12:
c7:f7:b4:c3:f9:85:74:da:b2:30:ac:8e:a8:1b:62:
f9:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:6E:26:23:0E:BE:2D:1E:B7:13:B6:4C:C6:32:06:C6:01:E5:91:AE
X509v3 Authority Key Identifier:
keyid:29:C2:10:3F:D2:41:7C:88:69:14:56:17:DE:94:FC:C9:13:B0:85:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KcIQP9JBfIhpFFYX3pT8yROwhe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2b8d82-39fb-4a56-89c5-9d5657513e20/1/F24mIw6-LR63E7ZMxjIGxgHlka4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2b8d82-39fb-4a56-89c5-9d5657513e20/1/KcIQP9JBfIhpFFYX3pT8yROwhe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.26.176.0/21
45.134.192.0/22
46.247.160.0/19
94.143.80.0/21
94.247.160.0/21
176.53.128.0/22
185.12.96.0/22
185.48.48.0/22
185.50.76.0/22
185.117.36.0/22
193.239.190.0/23
193.243.150.0/23
194.105.58.0/23
194.105.62.0/23
IPv6:
2a01:9720::/32
2a01:aa60::/32
2a03:bd00::/32
2a04:b440::/29
Signature Algorithm: sha256WithRSAEncryption
42:d0:88:1b:58:0f:e7:e8:17:a1:4b:44:79:6c:d0:a5:36:59:
57:95:47:92:f9:c8:c5:20:97:81:14:8f:02:73:cb:b4:14:af:
9d:52:6e:cb:56:1d:32:26:6d:d4:45:95:7b:74:da:59:f1:95:
bf:2a:e1:a9:42:4c:2b:5c:1f:f8:2d:76:8d:1d:80:cc:4b:e1:
eb:5b:fe:3f:e0:29:40:e9:27:a9:21:cb:8a:d9:88:fe:0d:f5:
b7:7e:53:4e:a7:3f:02:d6:74:62:b4:33:d1:af:2a:43:84:0a:
d0:67:a6:a8:20:cd:0c:b2:c2:60:62:fd:05:b0:8b:8e:91:60:
a1:c1:1c:d0:e0:c7:61:5f:f2:3f:23:5b:09:9d:7b:d5:28:44:
47:57:ba:1d:0e:a0:a6:9a:49:2a:9c:c6:4f:46:e6:fe:37:e3:
f9:74:84:f8:0a:88:ce:ac:b0:95:eb:d6:2d:ec:79:b9:39:46:
ae:f8:92:4b:a2:85:c7:cd:c3:0e:6a:49:c8:39:03:61:fd:22:
f5:66:98:c5:9b:7a:0b:c1:44:ea:7b:bf:3f:ec:6e:84:09:0f:
31:ab:22:8f:4e:27:ef:ec:49:aa:1a:c3:1d:ae:b3:a4:d9:eb:
58:e2:9b:3a:16:84:f8:d8:90:29:a9:b0:24:06:56:cb:18:2c:
4d:84:61:ec
-----BEGIN CERTIFICATE-----
MIIFcjCCBFqgAwIBAgISAYcERV0Q34CY7Q+8KYDOlW+KMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5YzIxMDNmZDI0MTdjODg2OTE0NTYxN2RlOTRmY2M5MTNi
MDg1ZWYwHhcNMjMwMzIxMTMwNDI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNzZlMjYyMzBlYmUyZDFlYjcxM2I2NGNjNjMyMDZjNjAxZTU5MWFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnKJW/w8QQOnAlzBUPrz/QF0vpjoK
+428hl+BwB3Ecfu8k3bzwcptxgzy+d5uDpy0snF6t4d4zr9+4e/IXYSDogvZ5pKZ
2hCUCcpNGnGZcmJDiEOkGFp9Ks8299f9Q8BPw/X6RCYkPAk7fWSH8SUy/74sZXye
15sslDuknsToHDTQuIWwTuj0J3tTZmdR2BfP8zughsR1MyCPP63ApEZ/QPPSGgq3
lF9s3FB+f3sNJS5cEpodS6lUle22p4LHYee/N2KYJucd+aEpV2R4c06s0ilWD//U
kTM4t6t6afK21Qm6q/pViPUwmRVWaZFKkRLH97TD+YV02rIwrI6oG2L5XwIDAQAB
o4ICfjCCAnowHQYDVR0OBBYEFBduJiMOvi0etxO2TMYyBsYB5ZGuMB8GA1UdIwQY
MBaAFCnCED/SQXyIaRRWF96U/MkTsIXvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2NJUVA5SkJmSWhwRkZZWDNwVDh5Uk93aGU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS8yYjhkODItMzlmYi00YTU2LTg5YzUt
OWQ1NjU3NTEzZTIwLzEvRjI0bUl3Ni1MUjYzRTdaTXhqSUd4Z0hsa2E0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS8yYjhkODItMzlmYi00YTU2LTg5YzUtOWQ1NjU3NTEzZTIw
LzEvS2NJUVA5SkJmSWhwRkZZWDNwVDh5Uk93aGU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGTBggrBgEFBQcBBwEB/wSBgzCBgDBaBAIAATBUAwQDJRqw
AwQCLYbAAwQFLvegAwQDXo9QAwQDXvegAwQCsDWAAwQCuQxgAwQCuTAwAwQCuTJM
AwQCuXUkAwQBwe++AwQBwfOWAwQBwmk6AwQBwmk+MCIEAgACMBwDBQAqAZcgAwUA
KgGqYAMFACoDvQADBQMqBLRAMA0GCSqGSIb3DQEBCwUAA4IBAQBC0IgbWA/n6Beh
S0R5bNClNllXlUeS+cjFIJeBFI8Cc8u0FK+dUm7LVh0yJm3URZV7dNpZ8ZW/KuGp
QkwrXB/4LXaNHYDMS+HrW/4/4ClA6SepIcuK2Yj+DfW3flNOpz8C1nRitDPRrypD
hArQZ6aoIM0MssJgYv0FsIuOkWChwRzQ4MdhX/I/I1sJnXvVKERHV7odDqCmmkkq
nMZPRub+N+P5dIT4CojOrLCV69Yt7Hm5OUau+JJLooXHzcMOaknIOQNh/SL1ZpjF
m3oLwUTqe78/7G6ECQ8xqyKPTifv7EmqGsMdrrOk2etY4ps6FoT42JApqbAkBlbL
GCxNhGHs
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:19 2024 by rpki-client on console-fra.rpki-client.org