Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/uIDxKOWMok9z7T4zbVJb1epinZo.roa
File: uIDxKOWMok9z7T4zbVJb1epinZo.roa (raw, json)
Hash identifier: p00shSQeaS2QhRyNcGCGpPO4qsDsWXTbPtVRmXoY+4k=
Subject key identifier: B8:80:F1:28:E5:8C:A2:4F:73:ED:3E:33:6D:52:5B:D5:EA:62:9D:9A
Certificate issuer: /CN=3a92f5d936752baf2d0df713299499cecfa9f48d
Certificate serial: 0186CAA45641419DFD0F9A42EC1F726F4404
Authority key identifier: 3A:92:F5:D9:36:75:2B:AF:2D:0D:F7:13:29:94:99:CE:CF:A9:F4:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpL12TZ1K68tDfcTKZSZzs-p9I0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/uIDxKOWMok9z7T4zbVJb1epinZo.roa
Signing time: Fri 10 Mar 2023 08:30:13 +0000
ROA not before: Fri 10 Mar 2023 08:30:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35444
IP address blocks: 80.90.83.0/24 maxlen: 24
80.90.80.0/20 maxlen: 20
80.90.87.0/24 maxlen: 24
80.90.89.0/24 maxlen: 24
80.90.90.0/24 maxlen: 24
80.90.92.0/24 maxlen: 24
45.93.220.0/22 maxlen: 22
93.93.168.0/23 maxlen: 23
93.93.168.0/22 maxlen: 22
93.93.170.0/23 maxlen: 23
81.26.200.0/24 maxlen: 24
81.26.200.0/21 maxlen: 21
81.26.201.0/24 maxlen: 24
81.26.202.0/24 maxlen: 24
81.26.203.0/24 maxlen: 24
81.26.204.0/24 maxlen: 24
81.26.205.0/24 maxlen: 24
81.26.206.0/23 maxlen: 24
185.239.9.0/24 maxlen: 24
185.239.10.0/24 maxlen: 24
185.239.10.0/23 maxlen: 23
185.239.11.0/24 maxlen: 24
185.239.8.0/23 maxlen: 23
185.239.8.0/24 maxlen: 24
185.239.8.0/22 maxlen: 22
185.158.0.0/24 maxlen: 24
185.158.0.0/23 maxlen: 23
185.158.0.0/22 maxlen: 22
185.158.1.0/24 maxlen: 24
185.158.2.0/23 maxlen: 23
185.158.2.0/24 maxlen: 24
185.158.3.0/24 maxlen: 24
185.187.0.0/24 maxlen: 24
185.187.0.0/22 maxlen: 23
185.187.1.0/24 maxlen: 24
185.187.2.0/24 maxlen: 24
185.187.3.0/24 maxlen: 24
185.132.92.0/23 maxlen: 23
185.132.92.0/24 maxlen: 24
185.132.93.0/24 maxlen: 24
185.132.94.0/24 maxlen: 24
185.132.95.0/24 maxlen: 24
185.175.252.0/22 maxlen: 22
185.212.189.0/24 maxlen: 24
185.212.190.0/24 maxlen: 24
185.212.190.0/23 maxlen: 23
185.212.191.0/24 maxlen: 24
185.212.188.0/22 maxlen: 22
185.212.188.0/23 maxlen: 23
185.212.188.0/24 maxlen: 24
2a03:2de0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 23 May 2023 07:17:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ca:a4:56:41:41:9d:fd:0f:9a:42:ec:1f:72:6f:44:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a92f5d936752baf2d0df713299499cecfa9f48d
Validity
Not Before: Mar 10 08:30:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b880f128e58ca24f73ed3e336d525bd5ea629d9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f0:0d:49:88:e2:ab:6b:0f:1d:b7:56:0a:fe:
49:7a:df:32:04:4a:ad:79:dc:bf:27:cb:cb:01:f1:
41:89:7b:01:f6:f9:d8:f9:1f:ad:82:78:5b:46:dc:
7b:49:49:22:d5:eb:99:15:95:7b:84:2b:36:71:04:
ad:f4:64:2e:a3:fd:e1:1d:2f:86:8b:57:77:45:bf:
44:db:12:55:1f:64:d4:31:c4:29:50:e9:bc:fc:4d:
78:91:ce:19:cc:46:b3:87:d1:50:2f:f0:4c:54:ae:
8f:d2:df:1a:21:9e:d1:e5:76:53:49:f7:84:dd:bd:
0e:86:de:75:1a:a7:3f:6e:33:d2:46:4d:cf:32:3d:
89:05:4b:f7:ac:3a:12:18:4f:2b:fe:69:ec:d7:48:
7d:00:c7:97:6f:b5:d8:c9:3d:35:1f:f3:08:e4:be:
d4:6b:ce:7f:87:ff:ba:2f:22:29:ab:a8:ee:4d:51:
5b:d1:62:49:8e:21:7f:74:fd:ca:14:4a:6a:e5:e6:
4e:d7:a0:d6:0b:af:f7:c1:80:a0:37:1a:0e:a3:ca:
19:80:54:3d:67:fe:19:36:53:d3:04:1c:87:de:ad:
49:a6:6d:87:cf:ae:8d:ce:fa:2c:2a:61:d5:b0:af:
a5:94:cf:48:c7:49:47:8d:02:04:16:90:ac:f3:af:
cc:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:80:F1:28:E5:8C:A2:4F:73:ED:3E:33:6D:52:5B:D5:EA:62:9D:9A
X509v3 Authority Key Identifier:
keyid:3A:92:F5:D9:36:75:2B:AF:2D:0D:F7:13:29:94:99:CE:CF:A9:F4:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpL12TZ1K68tDfcTKZSZzs-p9I0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/uIDxKOWMok9z7T4zbVJb1epinZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/OpL12TZ1K68tDfcTKZSZzs-p9I0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.220.0/22
80.90.80.0/20
81.26.200.0/21
93.93.168.0/22
185.132.92.0/22
185.158.0.0/22
185.175.252.0/22
185.187.0.0/22
185.212.188.0/22
185.239.8.0/22
IPv6:
2a03:2de0::/32
Signature Algorithm: sha256WithRSAEncryption
89:cf:92:23:e6:af:3d:29:3e:1e:82:0b:58:09:98:3b:e3:be:
73:12:df:d6:82:39:8c:ca:bd:a5:36:bc:a8:5b:87:16:00:43:
47:04:8f:93:0e:db:46:df:e5:ad:94:1d:03:ed:b3:18:30:16:
6d:46:9b:21:cb:0d:8c:cd:f1:04:b1:9f:5d:1b:26:59:92:e9:
72:80:89:17:86:63:dc:fa:c0:e6:a8:0b:c8:76:a9:86:f2:6e:
fe:e2:ec:62:3e:20:21:c9:af:3b:62:5a:2a:60:5c:b4:dd:30:
60:d0:01:95:45:f4:d6:f6:89:10:9e:34:5a:59:5c:18:a5:64:
65:e9:5e:d4:bb:0c:50:62:52:df:16:db:51:87:e8:42:84:f2:
97:a8:33:39:2e:78:89:f2:a3:95:55:02:ce:ac:a4:e6:b7:d5:
2d:eb:a8:a0:4b:f4:37:02:ad:8b:11:28:95:9e:99:28:8c:2a:
aa:e0:ba:f0:65:9c:9f:ba:f6:74:47:1c:71:a9:c2:a2:c6:f0:
2f:8c:99:b3:cd:c3:1a:1a:3d:5e:79:03:b0:e0:57:d6:ba:f4:
93:98:16:e1:9c:79:a9:79:cf:78:01:eb:f7:3c:8b:b7:5f:1c:
4e:0a:cb:ce:06:8d:64:32:d8:8a:bc:32:8f:92:37:cd:d3:07:
77:22:6b:d2
-----BEGIN CERTIFICATE-----
MIIFQjCCBCqgAwIBAgISAYbKpFZBQZ39D5pC7B9yb0QEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhOTJmNWQ5MzY3NTJiYWYyZDBkZjcxMzI5OTQ5OWNlY2Zh
OWY0OGQwHhcNMjMwMzEwMDgzMDEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiODgwZjEyOGU1OGNhMjRmNzNlZDNlMzM2ZDUyNWJkNWVhNjI5ZDlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjvANSYjiq2sPHbdWCv5Jet8yBEqt
edy/J8vLAfFBiXsB9vnY+R+tgnhbRtx7SUki1euZFZV7hCs2cQSt9GQuo/3hHS+G
i1d3Rb9E2xJVH2TUMcQpUOm8/E14kc4ZzEazh9FQL/BMVK6P0t8aIZ7R5XZTSfeE
3b0Oht51Gqc/bjPSRk3PMj2JBUv3rDoSGE8r/mns10h9AMeXb7XYyT01H/MI5L7U
a85/h/+6LyIpq6juTVFb0WJJjiF/dP3KFEpq5eZO16DWC6/3wYCgNxoOo8oZgFQ9
Z/4ZNlPTBByH3q1Jpm2Hz66NzvosKmHVsK+llM9Ix0lHjQIEFpCs86/MmwIDAQAB
o4ICTjCCAkowHQYDVR0OBBYEFLiA8SjljKJPc+0+M21SW9XqYp2aMB8GA1UdIwQY
MBaAFDqS9dk2dSuvLQ33EymUmc7PqfSNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3BMMTJUWjFLNjh0RGZjVEtaU1p6cy1wOUkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS83Y2QxNTctYzU4Zi00Y2I5LTgyNTIt
MTY5NmIyNDZjZDUwLzEvdUlEeEtPV01vazl6N1Q0emJWSmIxZXBpblpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS83Y2QxNTctYzU4Zi00Y2I5LTgyNTItMTY5NmIyNDZjZDUw
LzEvT3BMMTJUWjFLNjh0RGZjVEtaU1p6cy1wOUkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGQGCCsGAQUFBwEHAQH/BFUwUzBCBAIAATA8AwQCLV3cAwQE
UFpQAwQDURrIAwQCXV2oAwQCuYRcAwQCuZ4AAwQCua/8AwQCubsAAwQCudS8AwQC
ue8IMA0EAgACMAcDBQAqAy3gMA0GCSqGSIb3DQEBCwUAA4IBAQCJz5Ij5q89KT4e
ggtYCZg7475zEt/WgjmMyr2lNryoW4cWAENHBI+TDttG3+WtlB0D7bMYMBZtRpsh
yw2MzfEEsZ9dGyZZkulygIkXhmPc+sDmqAvIdqmG8m7+4uxiPiAhya87YloqYFy0
3TBg0AGVRfTW9okQnjRaWVwYpWRl6V7UuwxQYlLfFttRh+hChPKXqDM5LniJ8qOV
VQLOrKTmt9Ut66igS/Q3Aq2LESiVnpkojCqq4LrwZZyfuvZ0RxxxqcKixvAvjJmz
zcMaGj1eeQOw4FfWuvSTmBbhnHmpec94Aev3PIu3XxxOCsvOBo1kMtiKvDKPkjfN
0wd3ImvS
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:57 2024 by rpki-client on console-fra.rpki-client.org