Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/3ySZwJOyEQFdrcj7oN15OYbVlA4.roa
File: 3ySZwJOyEQFdrcj7oN15OYbVlA4.roa (raw, json)
Hash identifier: bH/Qo57mBVJ2ot5eafv8jsj39DyrAphRLcecKLrQnxM=
Subject key identifier: DF:24:99:C0:93:B2:11:01:5D:AD:C8:FB:A0:DD:79:39:86:D5:94:0E
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018CD9AA569D85A8B1975A550E30940ABE50
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/3ySZwJOyEQFdrcj7oN15OYbVlA4.roa
Signing time: Fri 05 Jan 2024 12:47:48 +0000
ROA not before: Fri 05 Jan 2024 12:47:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49581
IP address blocks: 45.131.111.0/24 maxlen: 24
45.131.108.0/24 maxlen: 24
92.118.207.0/24 maxlen: 24
45.142.104.0/24 maxlen: 24
45.142.107.0/24 maxlen: 24
37.221.94.0/24 maxlen: 24
37.221.92.0/24 maxlen: 24
185.117.3.0/24 maxlen: 24
45.13.227.0/24 maxlen: 24
45.151.56.0/24 maxlen: 24
5.253.246.0/24 maxlen: 24
45.147.7.0/24 maxlen: 24
45.137.203.0/24 maxlen: 24
45.137.201.0/24 maxlen: 24
45.84.198.0/24 maxlen: 24
45.84.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Mar 2024 17:43:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d9:aa:56:9d:85:a8:b1:97:5a:55:0e:30:94:0a:be:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 5 12:47:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=df2499c093b211015dadc8fba0dd793986d5940e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:28:e2:7f:66:06:6c:76:c9:6c:16:48:6c:aa:
d9:01:aa:d4:35:0f:82:cc:3a:69:c0:cc:aa:c9:ee:
4c:c1:7b:fe:a4:7f:9b:f6:ca:af:c6:cc:d0:8e:ea:
12:db:40:08:07:d0:a4:63:47:f3:d8:d2:7f:de:86:
7c:10:66:7b:60:7a:d2:43:69:db:03:8d:3a:9e:92:
d5:ac:a1:a1:e3:88:3b:0f:0a:d2:10:ec:a9:fd:e1:
a2:5a:0b:2a:b4:75:12:a6:c5:04:7b:c3:ec:c0:4a:
eb:95:81:4f:9a:62:7f:0f:d2:85:1d:a1:1e:24:28:
6e:c1:c3:6d:2e:f8:ac:ff:3a:5e:6a:6b:42:30:66:
60:43:87:d4:d5:f3:59:17:ba:53:26:96:5e:c1:bc:
3a:fa:35:7c:55:51:fa:db:1e:31:60:97:6f:69:5c:
91:3c:80:96:5b:75:24:23:89:6b:74:da:da:3b:db:
08:62:85:09:86:87:3e:e3:5d:e3:9c:1b:bf:7c:5b:
dd:3d:75:4b:f9:05:71:be:fb:f2:5b:0a:a6:67:2f:
e1:a1:ed:6e:43:24:84:32:b0:0f:51:3d:60:1b:ad:
71:67:19:12:69:27:32:4d:2d:bd:81:2f:a8:60:18:
c7:e2:20:3a:af:fa:76:49:79:d8:43:61:5d:af:09:
d8:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:24:99:C0:93:B2:11:01:5D:AD:C8:FB:A0:DD:79:39:86:D5:94:0E
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/3ySZwJOyEQFdrcj7oN15OYbVlA4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.246.0/24
37.221.92.0/24
37.221.94.0/24
45.13.227.0/24
45.84.196.0/24
45.84.198.0/24
45.131.108.0/24
45.131.111.0/24
45.137.201.0/24
45.137.203.0/24
45.142.104.0/24
45.142.107.0/24
45.147.7.0/24
45.151.56.0/24
92.118.207.0/24
185.117.3.0/24
Signature Algorithm: sha256WithRSAEncryption
25:fc:c4:9d:11:b7:c3:65:64:21:47:21:d6:50:9c:69:54:12:
ea:79:a5:ad:f3:53:71:29:b3:e4:e0:b9:85:9e:2b:a3:d9:12:
0e:e5:ef:2d:b6:b8:de:42:02:8b:a6:8c:e4:f3:89:25:51:6a:
0f:34:43:54:fe:ef:0e:e7:2c:06:5b:5c:40:37:fa:75:a1:8e:
7b:74:5d:20:48:5d:bf:78:1a:77:2d:6c:fb:a6:a7:0d:8b:da:
7c:c4:46:db:6c:cb:60:88:a3:ab:1e:f2:d1:d7:59:38:da:c4:
47:45:b2:2a:3d:62:8c:4c:58:3a:4c:78:c0:bc:f1:93:58:2b:
5f:0b:9d:41:3e:51:02:f3:ea:26:52:ec:27:58:b9:98:c9:8c:
52:b2:40:75:17:fd:4f:ac:53:16:22:fb:9b:2b:15:70:54:30:
a0:0d:12:07:d3:59:2c:e9:92:95:da:22:e4:72:74:83:7a:b0:
80:6e:51:a7:83:fc:eb:e0:d7:60:ae:7b:92:b7:f0:94:05:7f:
3e:94:a9:6e:bd:1f:5a:26:b6:ea:03:47:16:54:22:15:01:ac:
4f:d8:33:f1:44:3d:c9:af:48:b7:a5:61:b4:df:f7:99:82:3e:
02:73:59:0c:47:08:5a:87:44:78:67:fb:04:d4:25:93:85:11:
17:68:18:36
-----BEGIN CERTIFICATE-----
MIIFVzCCBD+gAwIBAgISAYzZqladhaixl1pVDjCUCr5QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3
NTJmZGUwHhcNMjQwMTA1MTI0NzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZjI0OTljMDkzYjIxMTAxNWRhZGM4ZmJhMGRkNzkzOTg2ZDU5NDBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhCjif2YGbHbJbBZIbKrZAarUNQ+C
zDppwMyqye5MwXv+pH+b9sqvxszQjuoS20AIB9CkY0fz2NJ/3oZ8EGZ7YHrSQ2nb
A406npLVrKGh44g7DwrSEOyp/eGiWgsqtHUSpsUEe8PswErrlYFPmmJ/D9KFHaEe
JChuwcNtLvis/zpeamtCMGZgQ4fU1fNZF7pTJpZewbw6+jV8VVH62x4xYJdvaVyR
PICWW3UkI4lrdNraO9sIYoUJhoc+413jnBu/fFvdPXVL+QVxvvvyWwqmZy/hoe1u
QySEMrAPUT1gG61xZxkSaScyTS29gS+oYBjH4iA6r/p2SXnYQ2FdrwnYBQIDAQAB
o4ICYzCCAl8wHQYDVR0OBBYEFN8kmcCTshEBXa3I+6DdeTmG1ZQOMB8GA1UdIwQY
MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt
YTNjYTBkYjgzMjU0LzEvM3lTWndKT3lFUUZkcmNqN29OMTVPWWJWbEE0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0
LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHkGCCsGAQUFBwEHAQH/BGowaDBmBAIAATBgAwQABf32AwQA
Jd1cAwQAJd1eAwQALQ3jAwQALVTEAwQALVTGAwQALYNsAwQALYNvAwQALYnJAwQA
LYnLAwQALY5oAwQALY5rAwQALZMHAwQALZc4AwQAXHbPAwQAuXUDMA0GCSqGSIb3
DQEBCwUAA4IBAQAl/MSdEbfDZWQhRyHWUJxpVBLqeaWt81NxKbPk4LmFniuj2RIO
5e8ttrjeQgKLpozk84klUWoPNENU/u8O5ywGW1xAN/p1oY57dF0gSF2/eBp3LWz7
pqcNi9p8xEbbbMtgiKOrHvLR11k42sRHRbIqPWKMTFg6THjAvPGTWCtfC51BPlEC
8+omUuwnWLmYyYxSskB1F/1PrFMWIvubKxVwVDCgDRIH01ks6ZKV2iLkcnSDerCA
blGng/zr4NdgrnuSt/CUBX8+lKluvR9aJrbqA0cWVCIVAaxP2DPxRD3Jr0i3pWG0
3/eZgj4Cc1kMRwhah0R4Z/sE1CWThREXaBg2
-----END CERTIFICATE-----
Generated at Thu Mar 7 22:23:10 2024 by rpki-client on console-fra.rpki-client.org