Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/b9K0wPqEVQ0oBvA3n8PPhU8ogKI.roa
File: b9K0wPqEVQ0oBvA3n8PPhU8ogKI.roa (raw, json)
Hash identifier: eDWI406oagwd/E3tswkXVb7rIL53w9bbIKsKpe5TExI=
Subject key identifier: 6F:D2:B4:C0:FA:84:55:0D:28:06:F0:37:9F:C3:CF:85:4F:28:80:A2
Certificate issuer: /CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Certificate serial: 0189898CB30E16F3BD6F30FAC5308473C688
Authority key identifier: 73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/b9K0wPqEVQ0oBvA3n8PPhU8ogKI.roa
Signing time: Mon 24 Jul 2023 20:17:26 +0000
ROA not before: Mon 24 Jul 2023 20:17:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39521
IP address blocks: 185.144.56.0/22 maxlen: 24
45.95.40.0/22 maxlen: 22
83.229.23.0/24 maxlen: 24
188.191.48.0/22 maxlen: 22
5.22.204.0/22 maxlen: 22
217.194.153.0/24 maxlen: 24
83.229.34.0/24 maxlen: 24
45.130.100.0/22 maxlen: 22
95.178.107.0/24 maxlen: 24
45.10.16.0/23 maxlen: 23
45.88.5.0/24 maxlen: 24
45.88.6.0/24 maxlen: 24
45.88.7.0/24 maxlen: 24
2a05:e4c0::/29 maxlen: 32
Validation: Failed, certificate revoked on Fri 15 Sep 2023 20:54:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:89:8c:b3:0e:16:f3:bd:6f:30:fa:c5:30:84:73:c6:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Validity
Not Before: Jul 24 20:17:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6fd2b4c0fa84550d2806f0379fc3cf854f2880a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:95:f2:15:ef:37:67:de:b3:5a:60:d3:9e:7e:
3b:35:74:a0:7f:4b:7a:1f:8d:34:9b:c1:f1:c2:37:
78:8e:56:e5:60:bd:b0:af:64:aa:c8:24:41:85:ca:
07:16:21:bb:4b:87:da:e0:86:00:f9:ac:35:e9:25:
fb:52:f1:ec:9c:1d:7a:b9:1a:38:a1:67:95:f0:1e:
96:f2:b8:fd:d6:62:b3:ae:d2:47:cb:96:94:40:fe:
4b:a4:b2:35:44:db:66:80:bd:cc:2b:0c:57:53:6a:
cd:e1:a5:4c:de:43:c1:9f:17:d1:23:0c:11:ac:08:
88:0f:1c:b7:19:10:6c:00:d2:0d:72:79:53:57:1e:
05:2f:1a:91:e5:eb:1a:e5:d2:f4:d1:41:24:d9:b4:
17:4b:77:20:fd:fc:ae:59:ec:82:45:4a:28:46:10:
a2:6f:77:13:c3:01:a7:25:d1:8c:f1:3d:bb:aa:72:
e0:c2:cf:6a:3a:d8:a9:86:9f:c2:9c:d3:fa:3c:43:
6c:d5:03:aa:2a:ad:93:e5:34:e1:63:32:b7:23:09:
c9:32:80:3e:e5:46:20:e3:43:b0:50:ab:ba:5e:53:
4b:de:d8:ad:32:52:d0:48:39:53:c5:a1:75:f0:9b:
e8:a9:40:9c:97:ca:07:1b:8b:a7:9d:fd:39:83:f9:
fa:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:D2:B4:C0:FA:84:55:0D:28:06:F0:37:9F:C3:CF:85:4F:28:80:A2
X509v3 Authority Key Identifier:
keyid:73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/b9K0wPqEVQ0oBvA3n8PPhU8ogKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.22.204.0/22
45.10.16.0/23
45.88.5.0-45.88.7.255
45.95.40.0/22
45.130.100.0/22
83.229.23.0/24
83.229.34.0/24
95.178.107.0/24
185.144.56.0/22
188.191.48.0/22
217.194.153.0/24
IPv6:
2a05:e4c0::/29
Signature Algorithm: sha256WithRSAEncryption
51:00:50:e8:5e:b1:6a:b0:55:78:c9:76:c8:81:5d:14:19:aa:
39:2a:a6:bb:d3:d5:9f:75:51:94:a7:cf:b2:c8:9c:0a:9d:23:
12:22:48:02:b2:05:57:2e:f7:a2:8c:85:e6:fe:1c:a7:c4:3b:
81:b9:5c:61:db:46:3c:13:49:45:68:95:9b:6b:a4:7f:53:1e:
fa:51:4d:ff:da:12:56:61:13:4b:2e:c1:20:c8:48:70:ca:ba:
ee:8e:18:38:43:80:60:9e:18:19:70:c8:a3:24:a9:10:0d:9d:
b5:2b:c8:b8:d4:89:5c:7d:40:c3:58:3e:e0:ab:9f:41:03:64:
9c:34:0e:b2:df:ff:23:fe:4b:54:61:7a:b9:59:63:ff:fb:a7:
0c:38:18:1c:55:4f:6d:37:ec:f2:7b:87:31:78:4f:1f:26:30:
db:ca:8e:42:6f:e4:73:fb:da:58:73:13:98:37:3c:e5:8a:55:
76:c4:a6:12:eb:90:c4:03:c7:71:35:ac:90:64:65:c2:fd:d6:
20:8b:b8:0e:37:c8:fe:ac:3d:b7:f1:8a:05:dc:00:70:85:03:
7c:8c:23:17:ff:23:15:2c:44:48:82:47:1f:ae:34:5a:0e:f2:
71:8a:4c:2d:e0:8a:b9:48:7c:6b:77:f4:d7:ff:1d:aa:9b:9e:
f3:dc:81:80
-----BEGIN CERTIFICATE-----
MIIFUDCCBDigAwIBAgISAYmJjLMOFvO9bzD6xTCEc8aIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczZjIxMGYxMjk5YTFlMGFlZTcxZGMxZDc5ZTVmYjEyMDky
ZDMwYTkwHhcNMjMwNzI0MjAxNzI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZmQyYjRjMGZhODQ1NTBkMjgwNmYwMzc5ZmMzY2Y4NTRmMjg4MGEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg5XyFe83Z96zWmDTnn47NXSgf0t6
H400m8Hxwjd4jlblYL2wr2SqyCRBhcoHFiG7S4fa4IYA+aw16SX7UvHsnB16uRo4
oWeV8B6W8rj91mKzrtJHy5aUQP5LpLI1RNtmgL3MKwxXU2rN4aVM3kPBnxfRIwwR
rAiIDxy3GRBsANINcnlTVx4FLxqR5esa5dL00UEk2bQXS3cg/fyuWeyCRUooRhCi
b3cTwwGnJdGM8T27qnLgws9qOtiphp/CnNP6PENs1QOqKq2T5TThYzK3IwnJMoA+
5UYg40OwUKu6XlNL3titMlLQSDlTxaF18JvoqUCcl8oHG4unnf05g/n61QIDAQAB
o4ICXDCCAlgwHQYDVR0OBBYEFG/StMD6hFUNKAbwN5/Dz4VPKICiMB8GA1UdIwQY
MBaAFHPyEPEpmh4K7nHcHXnl+xIJLTCpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY19JUThTbWFIZ3J1Y2R3ZGVlWDdFZ2t0TUtrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9kYjFiNDgtMWNjNS00ODMzLTkzZDkt
Yjk0NjQ3MThiYTM3LzEvYjlLMHdQcUVWUTBvQnZBM244UFBoVThvZ0tJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC9kYjFiNDgtMWNjNS00ODMzLTkzZDktYjk0NjQ3MThiYTM3
LzEvY19JUThTbWFIZ3J1Y2R3ZGVlWDdFZ2t0TUtrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHIGCCsGAQUFBwEHAQH/BGMwYTBQBAIAATBKAwQCBRbMAwQB
LQoQMAwDBAAtWAUDBAMtWAADBAItXygDBAItgmQDBABT5RcDBABT5SIDBABfsmsD
BAK5kDgDBAK8vzADBADZwpkwDQQCAAIwBwMFAyoF5MAwDQYJKoZIhvcNAQELBQAD
ggEBAFEAUOhesWqwVXjJdsiBXRQZqjkqprvT1Z91UZSnz7LInAqdIxIiSAKyBVcu
96KMheb+HKfEO4G5XGHbRjwTSUVolZtrpH9THvpRTf/aElZhE0suwSDISHDKuu6O
GDhDgGCeGBlwyKMkqRANnbUryLjUiVx9QMNYPuCrn0EDZJw0DrLf/yP+S1RherlZ
Y//7pww4GBxVT2037PJ7hzF4Tx8mMNvKjkJv5HP72lhzE5g3POWKVXbEphLrkMQD
x3E1rJBkZcL91iCLuA43yP6sPbfxigXcAHCFA3yMIxf/IxUsREiCRx+uNFoO8nGK
TC3girlIfGt39Nf/HaqbnvPcgYA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:07 2024 by rpki-client on console-fra.rpki-client.org