Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/uI_sfWv8ot2gAaggn6SIm4yeV14.roa
File: uI_sfWv8ot2gAaggn6SIm4yeV14.roa (raw, json)
Hash identifier: NxvIZP+Zntikpx3T2We/tVJ6hMBpZ6XhJ7Z7LPlQa8U=
Subject key identifier: B8:8F:EC:7D:6B:FC:A2:DD:A0:01:A8:20:9F:A4:88:9B:8C:9E:57:5E
Certificate issuer: /CN=9c542f5df3c1acb857fd50eeb016eed07385ff8c
Certificate serial: 0185735890BDAED1E3D0FD40544B1F23B113
Authority key identifier: 9C:54:2F:5D:F3:C1:AC:B8:57:FD:50:EE:B0:16:EE:D0:73:85:FF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/uI_sfWv8ot2gAaggn6SIm4yeV14.roa
Signing time: Mon 02 Jan 2023 16:37:42 +0000
ROA not before: Mon 02 Jan 2023 16:37:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44682
IP address blocks: 89.35.50.0/24 maxlen: 24
188.210.88.0/24 maxlen: 24
86.107.68.0/23 maxlen: 23
93.113.156.0/24 maxlen: 24
188.213.2.0/23 maxlen: 23
89.43.194.0/23 maxlen: 23
89.42.28.0/24 maxlen: 24
93.114.172.0/22 maxlen: 22
89.46.220.0/23 maxlen: 23
89.42.59.0/24 maxlen: 24
89.45.163.0/24 maxlen: 24
89.35.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:58:90:bd:ae:d1:e3:d0:fd:40:54:4b:1f:23:b1:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c542f5df3c1acb857fd50eeb016eed07385ff8c
Validity
Not Before: Jan 2 16:37:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b88fec7d6bfca2dda001a8209fa4889b8c9e575e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a6:92:03:72:38:ad:14:79:0d:66:b6:80:50:
47:9e:bc:f1:b0:f2:97:a9:79:81:75:ad:16:bc:cb:
20:90:fe:53:34:9d:0d:e2:6d:0a:90:c0:c4:78:b0:
d1:fd:2a:ca:77:44:f0:4a:6d:aa:46:90:85:31:7d:
c9:7e:cc:4c:e4:e5:5d:e8:11:59:e0:82:ed:37:04:
bc:8c:20:ac:ad:5f:0e:0b:3c:88:fd:20:b1:13:9a:
87:ba:05:ce:b0:fc:02:d9:41:b7:58:55:bd:d3:20:
df:66:7b:57:19:b6:97:da:7f:bd:8c:00:ff:66:27:
42:fa:39:8c:d4:86:9c:b5:7e:c7:7d:6f:a9:f6:6f:
45:5c:c8:6e:1d:54:3a:fe:b0:fd:b1:3b:b2:95:fd:
03:bc:52:62:7c:9b:5c:83:cd:08:47:c0:61:43:bd:
98:0f:a7:9e:a1:c1:01:1c:d3:35:ee:63:b1:95:9c:
ed:e6:a9:fe:54:80:3a:9f:23:c3:e0:4e:e1:0d:3b:
80:a8:57:15:76:f7:1b:1e:54:a0:cb:be:42:5f:0a:
84:4d:dc:2a:c0:94:4b:93:9a:dc:00:f7:0a:b9:0e:
e1:3f:7c:85:09:c6:eb:63:7e:e7:6f:8e:bd:fc:fe:
49:87:cd:7e:fe:cb:5b:c8:8d:fe:74:41:1b:dd:97:
b1:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:8F:EC:7D:6B:FC:A2:DD:A0:01:A8:20:9F:A4:88:9B:8C:9E:57:5E
X509v3 Authority Key Identifier:
keyid:9C:54:2F:5D:F3:C1:AC:B8:57:FD:50:EE:B0:16:EE:D0:73:85:FF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/uI_sfWv8ot2gAaggn6SIm4yeV14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/nFQvXfPBrLhX_VDusBbu0HOF_4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.107.68.0/23
89.35.33.0/24
89.35.50.0/24
89.42.28.0/24
89.42.59.0/24
89.43.194.0/23
89.45.163.0/24
89.46.220.0/23
93.113.156.0/24
93.114.172.0/22
188.210.88.0/24
188.213.2.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:52:bd:14:ef:cb:67:07:c4:95:c9:5d:a0:00:91:cc:cc:63:
03:5a:c9:8b:8d:78:0e:b8:cf:7e:ec:3e:cb:b7:fc:be:ee:5f:
30:aa:dd:d9:dd:f8:4f:f7:48:f2:4e:48:5f:9a:1d:9e:f1:c6:
1c:70:9b:aa:9c:15:9e:63:7a:1a:f3:da:50:ab:47:cc:bf:94:
ee:89:7c:db:b8:d0:d4:99:04:94:dd:d2:d1:e1:9d:d1:3b:81:
e9:44:62:a4:1b:90:41:f9:e9:23:6d:5c:80:92:0e:bf:26:f2:
67:7c:7f:7f:47:90:e7:78:f8:79:15:4e:33:fe:ff:fa:04:2b:
63:4c:1e:37:f8:4d:db:97:8a:d7:10:75:23:1d:09:d6:aa:8e:
45:22:9f:13:2e:24:2b:a3:7e:d5:a6:ff:50:93:89:19:94:39:
ad:96:98:c4:d1:1c:86:06:dc:57:be:f2:e8:81:0e:74:1b:c9:
d3:7a:28:f3:ef:94:e5:b0:9c:08:37:f5:0c:61:49:bf:73:25:
af:4d:d5:b7:24:14:75:de:f7:5a:9f:c1:a1:a6:ec:26:0e:ed:
97:78:ff:b7:26:b1:a6:b6:f9:f5:b2:15:99:ad:e1:68:a3:fc:
ec:f9:8c:86:8e:04:11:19:f1:74:51:00:67:24:51:93:d1:15:
a2:01:d6:b7
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgISAYVzWJC9rtHj0P1AVEsfI7ETMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljNTQyZjVkZjNjMWFjYjg1N2ZkNTBlZWIwMTZlZWQwNzM4
NWZmOGMwHhcNMjMwMTAyMTYzNzQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiODhmZWM3ZDZiZmNhMmRkYTAwMWE4MjA5ZmE0ODg5YjhjOWU1NzVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq6aSA3I4rRR5DWa2gFBHnrzxsPKX
qXmBda0WvMsgkP5TNJ0N4m0KkMDEeLDR/SrKd0TwSm2qRpCFMX3JfsxM5OVd6BFZ
4ILtNwS8jCCsrV8OCzyI/SCxE5qHugXOsPwC2UG3WFW90yDfZntXGbaX2n+9jAD/
ZidC+jmM1IactX7HfW+p9m9FXMhuHVQ6/rD9sTuylf0DvFJifJtcg80IR8BhQ72Y
D6eeocEBHNM17mOxlZzt5qn+VIA6nyPD4E7hDTuAqFcVdvcbHlSgy75CXwqETdwq
wJRLk5rcAPcKuQ7hP3yFCcbrY37nb469/P5Jh81+/stbyI3+dEEb3Zex1QIDAQAB
o4ICSzCCAkcwHQYDVR0OBBYEFLiP7H1r/KLdoAGoIJ+kiJuMnldeMB8GA1UdIwQY
MBaAFJxUL13zway4V/1Q7rAW7tBzhf+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkZRdlhmUEJyTGhYX1ZEdXNCYnUwSE9GXzR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9mYjc5MWItODAxMy00NThhLTlhMWUt
MjVkYmY0MzgwNGM1LzEvdUlfc2ZXdjhvdDJnQWFnZ242U0ltNHllVjE0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9mYjc5MWItODAxMy00NThhLTlhMWUtMjVkYmY0MzgwNGM1
LzEvbkZRdlhmUEJyTGhYX1ZEdXNCYnUwSE9GXzR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGEGCCsGAQUFBwEHAQH/BFIwUDBOBAIAATBIAwQBVmtEAwQA
WSMhAwQAWSMyAwQAWSocAwQAWSo7AwQBWSvCAwQAWS2jAwQBWS7cAwQAXXGcAwQC
XXKsAwQAvNJYAwQBvNUCMA0GCSqGSIb3DQEBCwUAA4IBAQCNUr0U78tnB8SVyV2g
AJHMzGMDWsmLjXgOuM9+7D7Lt/y+7l8wqt3Z3fhP90jyTkhfmh2e8cYccJuqnBWe
Y3oa89pQq0fMv5TuiXzbuNDUmQSU3dLR4Z3RO4HpRGKkG5BB+ekjbVyAkg6/JvJn
fH9/R5DnePh5FU4z/v/6BCtjTB43+E3bl4rXEHUjHQnWqo5FIp8TLiQro37Vpv9Q
k4kZlDmtlpjE0RyGBtxXvvLogQ50G8nTeijz75TlsJwIN/UMYUm/cyWvTdW3JBR1
3vdan8GhpuwmDu2XeP+3JrGmtvn1shWZreFoo/zs+YyGjgQRGfF0UQBnJFGT0RWi
Ada3
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:40 2024 by rpki-client on console-ams.rpki-client.org