Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/Jtrb44Xa-2WW05EFuN5rFCfUyT4.roa
File: Jtrb44Xa-2WW05EFuN5rFCfUyT4.roa (raw, json)
Hash identifier: zARbk5daZjFGEqbDZaOnaW5y+NrEz4y7BQy9W5Db998=
Subject key identifier: 26:DA:DB:E3:85:DA:FB:65:96:D3:91:05:B8:DE:6B:14:27:D4:C9:3E
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018CC86FA7218CBDDFDC2BA8788638508DA0
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/Jtrb44Xa-2WW05EFuN5rFCfUyT4.roa
Signing time: Tue 02 Jan 2024 04:30:09 +0000
ROA not before: Tue 02 Jan 2024 04:30:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39855
IP address blocks: 89.38.38.0/24 maxlen: 24
45.87.22.0/24 maxlen: 24
45.87.20.0/24 maxlen: 24
45.83.188.0/22 maxlen: 24
185.51.194.0/23 maxlen: 23
185.51.193.0/24 maxlen: 24
45.130.143.0/24 maxlen: 24
45.88.122.0/24 maxlen: 24
45.88.120.0/24 maxlen: 24
136.144.16.0/24 maxlen: 24
136.144.18.0/24 maxlen: 24
136.144.24.0/22 maxlen: 24
45.133.252.0/24 maxlen: 24
45.133.254.0/24 maxlen: 24
136.144.34.0/24 maxlen: 24
136.144.32.0/24 maxlen: 24
188.208.38.0/23 maxlen: 23
45.148.24.0/24 maxlen: 24
45.159.244.0/22 maxlen: 24
45.154.139.0/24 maxlen: 24
45.154.136.0/24 maxlen: 24
45.146.52.0/24 maxlen: 24
185.114.60.0/22 maxlen: 22
185.243.246.0/24 maxlen: 24
185.243.244.0/24 maxlen: 24
185.227.32.0/24 maxlen: 24
45.129.232.0/22 maxlen: 24
89.251.3.0/24 maxlen: 24
89.251.1.0/24 maxlen: 24
89.46.46.0/24 maxlen: 24
45.157.96.0/22 maxlen: 24
89.36.36.0/24 maxlen: 24
45.149.0.0/24 maxlen: 24
45.157.114.0/23 maxlen: 24
45.157.113.0/24 maxlen: 24
45.150.94.0/24 maxlen: 24
45.150.92.0/24 maxlen: 24
45.143.192.0/24 maxlen: 24
45.143.194.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Mar 2024 07:58:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:a7:21:8c:bd:df:dc:2b:a8:78:86:38:50:8d:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 2 04:30:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=26dadbe385dafb6596d39105b8de6b1427d4c93e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3d:12:de:e0:30:ce:e8:4b:2b:2b:48:f5:08:
69:00:2a:e8:57:eb:5f:a7:0f:97:e8:9d:59:78:2f:
fe:e5:11:cb:51:0f:22:0d:e8:68:d4:24:97:a9:3b:
9a:a0:9f:14:30:45:99:18:ed:df:88:a0:8a:9d:ca:
11:9e:53:81:f7:17:05:4d:90:90:a1:3e:5b:2b:fc:
f9:ca:4f:43:12:f1:e4:c3:fb:b3:c2:15:fc:79:0f:
64:56:f9:66:53:62:28:bc:8f:97:f6:04:b9:f9:4f:
ca:00:58:65:fc:2f:35:7d:80:b9:54:d4:3a:d6:b3:
a1:cd:ff:8a:57:89:f1:ad:cb:55:a1:06:98:52:41:
a4:00:43:78:95:5d:5d:f5:d3:48:23:bd:a5:4f:77:
b1:f3:7c:1f:55:25:c7:52:a9:f1:a6:6d:90:3b:3a:
57:5f:75:6a:7e:89:af:3f:0f:e6:20:e1:eb:4c:22:
d3:7e:78:36:0b:3c:aa:2a:47:f5:d8:91:74:fa:92:
aa:6f:d9:fb:28:7c:68:51:3d:5a:03:90:7d:bb:44:
e3:83:75:17:de:f2:01:da:f4:0c:a9:ce:14:2b:9f:
47:a0:02:02:96:2c:b6:59:ae:e3:e0:41:ad:4d:47:
cb:b9:67:50:72:17:de:b3:47:67:1f:3b:75:17:b0:
e2:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:DA:DB:E3:85:DA:FB:65:96:D3:91:05:B8:DE:6B:14:27:D4:C9:3E
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/Jtrb44Xa-2WW05EFuN5rFCfUyT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.188.0/22
45.87.20.0/24
45.87.22.0/24
45.88.120.0/24
45.88.122.0/24
45.129.232.0/22
45.130.143.0/24
45.133.252.0/24
45.133.254.0/24
45.143.192.0/24
45.143.194.0/24
45.146.52.0/24
45.148.24.0/24
45.149.0.0/24
45.150.92.0/24
45.150.94.0/24
45.154.136.0/24
45.154.139.0/24
45.157.96.0/22
45.157.113.0-45.157.115.255
45.159.244.0/22
89.36.36.0/24
89.38.38.0/24
89.46.46.0/24
89.251.1.0/24
89.251.3.0/24
136.144.16.0/24
136.144.18.0/24
136.144.24.0/22
136.144.32.0/24
136.144.34.0/24
185.51.193.0-185.51.195.255
185.114.60.0/22
185.227.32.0/24
185.243.244.0/24
185.243.246.0/24
188.208.38.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:a7:fe:94:3d:03:40:15:34:81:e4:0d:63:a2:2a:6a:25:86:
fb:64:69:30:89:9d:5e:0c:d3:8f:31:36:8a:38:c3:a2:83:9c:
9b:a3:a7:50:ac:85:5c:e0:b2:aa:11:ae:32:40:a1:fd:a0:04:
62:03:26:95:bb:99:c7:1b:2b:3d:b3:90:44:d3:92:15:2c:d5:
ce:43:65:17:29:93:5f:b3:21:5c:97:86:aa:57:e6:96:9b:27:
f9:24:9b:b4:88:4e:aa:05:eb:e9:79:3b:79:69:4a:4e:9a:0d:
f6:38:80:7f:4f:70:0a:78:12:46:1d:96:7f:6e:bf:77:d0:52:
6d:71:b4:8a:03:bf:51:1a:e9:35:a4:8f:03:b2:4b:8a:e7:db:
42:b0:df:78:8c:bc:e6:28:8a:fe:16:3b:c2:48:3f:25:96:7d:
fa:c6:6b:e4:16:ae:85:fb:e0:0d:7d:58:3e:1a:65:74:dc:1f:
0d:de:d1:93:8a:2c:71:0f:05:a6:3e:90:0a:1b:67:e6:ca:a9:
52:50:fb:be:20:a1:d8:49:f3:f6:fd:eb:57:c9:d5:ec:31:e4:
a4:6c:64:40:62:c0:16:1e:36:dd:3a:6f:18:79:37:18:ea:d8:
6e:75:8f:32:09:4a:41:9d:25:63:79:5a:c2:ce:10:41:8c:cf:
ba:ae:3a:2d
-----BEGIN CERTIFICATE-----
MIIF6zCCBNOgAwIBAgISAYzIb6chjL3f3CuoeIY4UI2gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl
MGI5MjYwHhcNMjQwMTAyMDQzMDA5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNmRhZGJlMzg1ZGFmYjY1OTZkMzkxMDViOGRlNmIxNDI3ZDRjOTNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtz0S3uAwzuhLKytI9QhpACroV+tf
pw+X6J1ZeC/+5RHLUQ8iDeho1CSXqTuaoJ8UMEWZGO3fiKCKncoRnlOB9xcFTZCQ
oT5bK/z5yk9DEvHkw/uzwhX8eQ9kVvlmU2IovI+X9gS5+U/KAFhl/C81fYC5VNQ6
1rOhzf+KV4nxrctVoQaYUkGkAEN4lV1d9dNII72lT3ex83wfVSXHUqnxpm2QOzpX
X3VqfomvPw/mIOHrTCLTfng2CzyqKkf12JF0+pKqb9n7KHxoUT1aA5B9u0Tjg3UX
3vIB2vQMqc4UK59HoAICliy2Wa7j4EGtTUfLuWdQchfes0dnHzt1F7Di9wIDAQAB
o4IC9zCCAvMwHQYDVR0OBBYEFCba2+OF2vtlltORBbjeaxQn1Mk+MB8GA1UdIwQY
MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt
NzM4NTZhZjQ5ZjNlLzEvSnRyYjQ0WGEtMldXMDVFRnVONXJGQ2ZVeVQ0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl
LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBCwYIKwYBBQUHAQcBAf8EgfswgfgwgfUEAgABMIHuAwQC
LVO8AwQALVcUAwQALVcWAwQALVh4AwQALVh6AwQCLYHoAwQALYKPAwQALYX8AwQA
LYX+AwQALY/AAwQALY/CAwQALZI0AwQALZQYAwQALZUAAwQALZZcAwQALZZeAwQA
LZqIAwQALZqLAwQCLZ1gMAwDBAAtnXEDBAItnXADBAItn/QDBABZJCQDBABZJiYD
BABZLi4DBABZ+wEDBABZ+wMDBACIkBADBACIkBIDBAKIkBgDBACIkCADBACIkCIw
DAMEALkzwQMEArkzwAMEArlyPAMEALnjIAMEALnz9AMEALnz9gMEAbzQJjANBgkq
hkiG9w0BAQsFAAOCAQEAD6f+lD0DQBU0geQNY6IqaiWG+2RpMImdXgzTjzE2ijjD
ooOcm6OnUKyFXOCyqhGuMkCh/aAEYgMmlbuZxxsrPbOQRNOSFSzVzkNlFymTX7Mh
XJeGqlfmlpsn+SSbtIhOqgXr6Xk7eWlKTpoN9jiAf09wCngSRh2Wf26/d9BSbXG0
igO/URrpNaSPA7JLiufbQrDfeIy85iiK/hY7wkg/JZZ9+sZr5BauhfvgDX1YPhpl
dNwfDd7Rk4oscQ8Fpj6QChtn5sqpUlD7viCh2Enz9v3rV8nV7DHkpGxkQGLAFh42
3TpvGHk3GOrYbnWPMglKQZ0lY3laws4QQYzPuq46LQ==
-----END CERTIFICATE-----
Generated at Mon Mar 11 12:10:47 2024 by rpki-client on console-ams.rpki-client.org