Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/276c24-2a7f-4726-8d9f-8bf4fe4c7732/1/bAbfC07cF8X0M1FXRAPUq7JjPhk.roa
File: bAbfC07cF8X0M1FXRAPUq7JjPhk.roa (raw, json)
Hash identifier: UyLs/LYs1eDSpgWwwcTFz3v++N8+CZ+lecKyf1AJVrg=
Subject key identifier: 6C:06:DF:0B:4E:DC:17:C5:F4:33:51:57:44:03:D4:AB:B2:63:3E:19
Certificate issuer: /CN=fa56c7e660b1c74e3b0318b14338c3f00dd7bc72
Certificate serial: 01856B00A4F61A47D73013955869AE0F6756
Authority key identifier: FA:56:C7:E6:60:B1:C7:4E:3B:03:18:B1:43:38:C3:F0:0D:D7:BC:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-lbH5mCxx047AxixQzjD8A3XvHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/276c24-2a7f-4726-8d9f-8bf4fe4c7732/1/bAbfC07cF8X0M1FXRAPUq7JjPhk.roa
Signing time: Sun 01 Jan 2023 01:44:42 +0000
ROA not before: Sun 01 Jan 2023 01:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57704
IP address blocks: 176.106.40.0/21 maxlen: 24
192.145.120.0/22 maxlen: 22
192.145.120.0/24 maxlen: 24
192.145.122.0/24 maxlen: 24
192.145.121.0/24 maxlen: 24
192.145.123.0/24 maxlen: 24
45.130.98.0/24 maxlen: 24
45.130.96.0/24 maxlen: 24
45.130.97.0/24 maxlen: 24
45.130.99.0/24 maxlen: 24
152.89.42.0/24 maxlen: 24
152.89.41.0/24 maxlen: 24
152.89.43.0/24 maxlen: 24
152.89.40.0/24 maxlen: 24
185.5.221.0/24 maxlen: 24
185.5.220.0/22 maxlen: 22
185.5.220.0/24 maxlen: 24
185.5.223.0/24 maxlen: 24
185.5.222.0/24 maxlen: 24
2a03:7c0::/32 maxlen: 48
Validation: Failed, certificate revoked on Fri 17 Mar 2023 20:05:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:00:a4:f6:1a:47:d7:30:13:95:58:69:ae:0f:67:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa56c7e660b1c74e3b0318b14338c3f00dd7bc72
Validity
Not Before: Jan 1 01:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c06df0b4edc17c5f43351574403d4abb2633e19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:de:e2:0e:3b:09:c3:45:76:03:79:90:2f:37:
a5:63:49:05:4b:8c:40:e1:cf:8b:7a:d5:4e:02:db:
b6:6e:ab:2e:25:83:06:fe:36:00:b2:eb:ad:d9:db:
b3:eb:86:c0:c9:8e:04:5d:1e:68:b6:d9:a9:34:e0:
42:a4:20:11:13:ac:21:ae:20:f9:51:a8:69:11:fa:
4c:2c:33:6a:32:1f:23:a9:a6:20:6d:5e:57:c9:84:
77:7c:a0:59:40:65:f9:23:50:6e:34:6d:3d:0e:01:
d7:9d:22:e3:eb:96:1f:90:35:63:ed:27:3c:0a:d7:
0f:dc:f1:ab:12:dd:ef:22:67:ff:8b:66:0d:02:35:
8c:a5:67:4f:2e:cc:41:31:e9:8f:31:1e:0f:2c:46:
bd:a8:ee:19:29:56:df:1a:dc:49:e9:ed:e9:a2:08:
73:99:f5:96:4c:1f:43:92:1a:13:b8:e4:40:85:c2:
9b:22:48:f7:8a:d9:a2:38:ca:ee:1d:8b:00:f3:69:
12:0f:ae:87:35:50:85:f9:a0:05:7a:c6:b0:22:68:
6d:d4:82:a4:90:46:86:d7:9c:11:4f:c1:d2:c1:c7:
78:59:20:99:75:aa:47:31:8c:04:93:14:13:8c:41:
7a:de:0a:a8:9f:5f:15:ec:75:43:72:11:e0:f2:17:
4d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:06:DF:0B:4E:DC:17:C5:F4:33:51:57:44:03:D4:AB:B2:63:3E:19
X509v3 Authority Key Identifier:
keyid:FA:56:C7:E6:60:B1:C7:4E:3B:03:18:B1:43:38:C3:F0:0D:D7:BC:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-lbH5mCxx047AxixQzjD8A3XvHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/276c24-2a7f-4726-8d9f-8bf4fe4c7732/1/bAbfC07cF8X0M1FXRAPUq7JjPhk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/276c24-2a7f-4726-8d9f-8bf4fe4c7732/1/1-lbH5mCxx047AxixQzjD8A3XvHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.96.0/22
152.89.40.0/22
176.106.40.0/21
185.5.220.0/22
192.145.120.0/22
IPv6:
2a03:7c0::/32
Signature Algorithm: sha256WithRSAEncryption
8b:76:71:19:21:74:80:c7:05:b6:c2:52:95:a8:17:7a:37:29:
cc:61:d0:d9:51:d1:4e:a9:3c:01:7f:19:1f:f6:b2:6e:9c:d7:
5e:7c:8c:c0:ef:38:80:2a:90:03:12:5a:15:ab:83:f1:d6:15:
e4:75:d8:7d:72:87:53:a2:24:10:9e:e8:cb:ef:3b:dc:75:e5:
3d:c7:83:2b:c2:82:a1:7e:d9:62:78:45:1e:b1:94:31:17:f6:
57:db:3e:75:d3:05:01:f7:54:ad:ff:27:4d:04:9f:15:24:3f:
8b:18:a3:26:37:52:d6:2c:e6:2c:4a:76:6d:64:45:e5:6e:f6:
6e:62:ad:91:d4:e1:55:fc:38:b8:1f:44:21:9b:aa:6d:b2:bc:
9b:be:f6:06:20:a9:fa:7c:7e:1f:0d:6b:4c:25:a0:2b:92:2f:
6e:30:95:f8:30:33:8c:b8:1f:06:99:3d:b9:ac:f5:6f:a2:fe:
ba:54:f9:e6:2b:85:30:a9:79:ce:72:9b:0c:d7:83:bd:50:bc:
32:a7:cf:77:d5:85:b1:2a:82:7c:46:30:92:98:6f:b1:07:e9:
03:1c:46:07:04:2f:59:1f:85:64:b8:f6:ec:aa:94:eb:a3:41:
2f:bf:08:32:21:69:df:a4:b1:61:6b:2e:2f:4b:72:5a:4f:91:
57:fa:bd:eb
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgISAYVrAKT2GkfXMBOVWGmuD2dWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhNTZjN2U2NjBiMWM3NGUzYjAzMThiMTQzMzhjM2YwMGRk
N2JjNzIwHhcNMjMwMTAxMDE0NDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YzA2ZGYwYjRlZGMxN2M1ZjQzMzUxNTc0NDAzZDRhYmIyNjMzZTE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA197iDjsJw0V2A3mQLzelY0kFS4xA
4c+LetVOAtu2bqsuJYMG/jYAsuut2duz64bAyY4EXR5ottmpNOBCpCARE6whriD5
UahpEfpMLDNqMh8jqaYgbV5XyYR3fKBZQGX5I1BuNG09DgHXnSLj65YfkDVj7Sc8
CtcP3PGrEt3vImf/i2YNAjWMpWdPLsxBMemPMR4PLEa9qO4ZKVbfGtxJ6e3poghz
mfWWTB9DkhoTuORAhcKbIkj3itmiOMruHYsA82kSD66HNVCF+aAFesawImht1IKk
kEaG15wRT8HSwcd4WSCZdapHMYwEkxQTjEF63gqon18V7HVDchHg8hdNoQIDAQAB
o4ICMjCCAi4wHQYDVR0OBBYEFGwG3wtO3BfF9DNRV0QD1KuyYz4ZMB8GA1UdIwQY
MBaAFPpWx+ZgscdOOwMYsUM4w/AN17xyMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1sYkg1bUN4eDA0N0F4aXhRempEOEEzWHZISS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODIvMjc2YzI0LTJhN2YtNDcyNi04ZDlm
LThiZjRmZTRjNzczMi8xL2JBYmZDMDdjRjhYME0xRlhSQVBVcTdKalBoay5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvODIvMjc2YzI0LTJhN2YtNDcyNi04ZDlmLThiZjRmZTRjNzcz
Mi8xLzEtbGJINW1DeHgwNDdBeGl4UXpqRDhBM1h2SEkuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwRgYIKwYBBQUHAQcBAf8ENzA1MCQEAgABMB4DBAItgmAD
BAKYWSgDBAOwaigDBAK5BdwDBALAkXgwDQQCAAIwBwMFACoDB8AwDQYJKoZIhvcN
AQELBQADggEBAIt2cRkhdIDHBbbCUpWoF3o3Kcxh0NlR0U6pPAF/GR/2sm6c1158
jMDvOIAqkAMSWhWrg/HWFeR12H1yh1OiJBCe6MvvO9x15T3HgyvCgqF+2WJ4RR6x
lDEX9lfbPnXTBQH3VK3/J00EnxUkP4sYoyY3UtYs5ixKdm1kReVu9m5irZHU4VX8
OLgfRCGbqm2yvJu+9gYgqfp8fh8Na0wloCuSL24wlfgwM4y4HwaZPbms9W+i/rpU
+eYrhTCpec5ymwzXg71QvDKnz3fVhbEqgnxGMJKYb7EH6QMcRgcEL1kfhWS49uyq
lOujQS+/CDIhad+ksWFrLi9LclpPkVf6ves=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:07 2024 by rpki-client on console-fra.rpki-client.org