Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/_B17PWN_PLoIjGBgIFsHeH6WCO0.roa
File: _B17PWN_PLoIjGBgIFsHeH6WCO0.roa (raw, json)
Hash identifier: oripjCLVDXPUDJBZzdO9+1EF6GQx81cv+i0tVvZya+o=
Subject key identifier: FC:1D:7B:3D:63:7F:3C:BA:08:8C:60:60:20:5B:07:78:7E:96:08:ED
Certificate issuer: /CN=93a229e266b2558899f3547ee63d84ed6594768b
Certificate serial: 018C8ED7D41FE53ADBE44AD8F16F7D8DCBDA
Authority key identifier: 93:A2:29:E2:66:B2:55:88:99:F3:54:7E:E6:3D:84:ED:65:94:76:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k6Ip4mayVYiZ81R-5j2E7WWUdos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/_B17PWN_PLoIjGBgIFsHeH6WCO0.roa
Signing time: Fri 22 Dec 2023 00:05:58 +0000
ROA not before: Fri 22 Dec 2023 00:05:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56655
IP address blocks: 195.16.73.0/24 maxlen: 24
193.243.189.0/24 maxlen: 24
45.88.201.0/24 maxlen: 24
45.88.200.0/24 maxlen: 24
185.14.97.0/24 maxlen: 24
185.181.60.0/22 maxlen: 24
185.125.168.0/22 maxlen: 24
198.140.141.0/24 maxlen: 24
194.32.107.0/24 maxlen: 24
185.243.217.0/24 maxlen: 24
185.243.216.0/24 maxlen: 24
185.243.218.0/24 maxlen: 24
2a03:94e1::/32 maxlen: 32
2a0a:cd80::/32 maxlen: 32
2a03:94e2::/32 maxlen: 32
2a03:94e3::/32 maxlen: 32
2a03:94e0::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8e:d7:d4:1f:e5:3a:db:e4:4a:d8:f1:6f:7d:8d:cb:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93a229e266b2558899f3547ee63d84ed6594768b
Validity
Not Before: Dec 22 00:05:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc1d7b3d637f3cba088c6060205b07787e9608ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:12:6c:e1:06:9c:b2:53:7d:a3:b2:de:27:81:
c8:9e:18:68:33:46:e8:19:93:f9:05:2a:7f:08:0f:
a2:b3:74:98:c5:ec:0b:bd:ce:21:c6:9d:01:36:ee:
0e:02:2c:1f:93:1a:ef:d8:43:0a:fe:4e:ec:9f:87:
91:c7:fc:4a:01:6e:6c:cd:36:c1:dd:10:00:ad:4d:
86:74:4d:4d:46:52:a9:db:9b:0d:f4:f0:bf:e0:04:
ca:13:09:02:81:2d:d2:aa:bc:96:08:5e:d6:bd:2c:
33:22:76:61:64:fa:52:d1:45:bc:18:a8:c6:ec:5a:
09:0a:85:31:47:47:83:38:90:a4:b1:ad:8a:1b:c2:
06:50:2e:ae:84:c1:48:e4:fb:bd:37:bf:e7:51:f9:
28:17:38:58:dd:9a:cc:1a:a9:94:0a:f1:ef:75:b7:
49:2a:bb:00:f3:d1:d7:54:e0:a4:4b:89:52:5e:e3:
cc:75:03:d7:21:91:82:c9:73:05:8f:72:df:32:5a:
b1:e6:b0:8f:1f:54:88:03:2a:8d:93:01:17:50:55:
19:8d:be:2d:23:22:21:59:97:1e:2e:d3:94:ec:de:
0f:07:60:27:98:81:96:b3:b4:fe:98:c5:00:bc:fd:
70:bf:7b:d8:2b:7f:00:06:68:39:ba:8b:5a:df:10:
a9:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:1D:7B:3D:63:7F:3C:BA:08:8C:60:60:20:5B:07:78:7E:96:08:ED
X509v3 Authority Key Identifier:
keyid:93:A2:29:E2:66:B2:55:88:99:F3:54:7E:E6:3D:84:ED:65:94:76:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k6Ip4mayVYiZ81R-5j2E7WWUdos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/_B17PWN_PLoIjGBgIFsHeH6WCO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/k6Ip4mayVYiZ81R-5j2E7WWUdos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.200.0/23
185.14.97.0/24
185.125.168.0/22
185.181.60.0/22
185.243.216.0-185.243.218.255
193.243.189.0/24
194.32.107.0/24
195.16.73.0/24
198.140.141.0/24
IPv6:
2a03:94e0::/30
2a0a:cd80::/32
Signature Algorithm: sha256WithRSAEncryption
5d:fc:d3:18:b8:d3:70:f3:24:9d:7b:fa:ef:19:5d:2f:92:f5:
6f:a6:8e:d7:07:3a:ea:d7:27:d2:48:58:8e:ea:a7:b6:4c:42:
8c:2a:5e:80:37:a0:94:d6:89:ba:a3:50:10:7d:4c:a1:4d:96:
37:92:09:39:ee:73:37:e7:74:db:01:a6:c9:37:bd:5b:d7:1d:
93:8f:1d:fb:b5:58:d8:a6:95:4a:2d:19:be:f5:d6:cb:5c:14:
86:40:f8:47:10:a8:98:12:5f:b0:85:30:9b:79:52:d8:47:19:
9d:0a:2d:a0:bd:8f:64:a2:38:a3:ff:e3:10:45:50:10:9f:97:
ac:08:f6:c7:ea:7b:94:17:98:a7:43:19:47:29:3f:08:93:7c:
61:77:9d:d6:a1:58:58:a9:10:2d:6b:2e:5c:2b:5d:84:84:30:
a5:b0:4e:d7:14:3f:31:fa:f1:c8:84:18:a0:95:f5:36:f6:c0:
30:1f:62:ad:1b:c0:34:fb:b3:61:11:7f:d0:70:0d:9a:b8:87:
fd:ed:ce:ea:b3:47:51:4f:27:d2:75:81:3b:da:cb:ef:61:c9:
8b:34:bd:88:79:5b:c5:4e:95:04:72:37:ad:3f:9c:8e:1c:3c:
29:95:20:49:e9:e6:07:25:07:a1:9a:70:5c:69:d2:31:91:1e:
f3:e9:09:9a
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgISAYyO19Qf5Trb5ErY8W99jcvaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzYTIyOWUyNjZiMjU1ODg5OWYzNTQ3ZWU2M2Q4NGVkNjU5
NDc2OGIwHhcNMjMxMjIyMDAwNTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYzFkN2IzZDYzN2YzY2JhMDg4YzYwNjAyMDViMDc3ODdlOTYwOGVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzxJs4QacslN9o7LeJ4HInhhoM0bo
GZP5BSp/CA+is3SYxewLvc4hxp0BNu4OAiwfkxrv2EMK/k7sn4eRx/xKAW5szTbB
3RAArU2GdE1NRlKp25sN9PC/4ATKEwkCgS3SqryWCF7WvSwzInZhZPpS0UW8GKjG
7FoJCoUxR0eDOJCksa2KG8IGUC6uhMFI5Pu9N7/nUfkoFzhY3ZrMGqmUCvHvdbdJ
KrsA89HXVOCkS4lSXuPMdQPXIZGCyXMFj3LfMlqx5rCPH1SIAyqNkwEXUFUZjb4t
IyIhWZceLtOU7N4PB2AnmIGWs7T+mMUAvP1wv3vYK38ABmg5uota3xCpoQIDAQAB
o4ICVzCCAlMwHQYDVR0OBBYEFPwdez1jfzy6CIxgYCBbB3h+lgjtMB8GA1UdIwQY
MBaAFJOiKeJmslWImfNUfuY9hO1llHaLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazZJcDRtYXlWWWlaODFSLTVqMkU3V1dVZG9zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9jNDA3M2EtOTIzYi00ZWNmLTk1NjYt
NGQ3NzdjYWNkOWE0LzEvX0IxN1BXTl9QTG9JakdCZ0lGc0hlSDZXQ08wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC9jNDA3M2EtOTIzYi00ZWNmLTk1NjYtNGQ3NzdjYWNkOWE0
LzEvazZJcDRtYXlWWWlaODFSLTVqMkU3V1dVZG9zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDBEBAIAATA+AwQBLVjIAwQA
uQ5hAwQCuX2oAwQCubU8MAwDBAO589gDBAC589oDBADB870DBADCIGsDBADDEEkD
BADGjI0wFAQCAAIwDgMFAioDlOADBQAqCs2AMA0GCSqGSIb3DQEBCwUAA4IBAQBd
/NMYuNNw8ySde/rvGV0vkvVvpo7XBzrq1yfSSFiO6qe2TEKMKl6AN6CU1om6o1AQ
fUyhTZY3kgk57nM353TbAabJN71b1x2Tjx37tVjYppVKLRm+9dbLXBSGQPhHEKiY
El+whTCbeVLYRxmdCi2gvY9kojij/+MQRVAQn5esCPbH6nuUF5inQxlHKT8Ik3xh
d53WoVhYqRAtay5cK12EhDClsE7XFD8x+vHIhBiglfU29sAwH2KtG8A0+7NhEX/Q
cA2auIf97c7qs0dRTyfSdYE72svvYcmLNL2IeVvFTpUEcjetP5yOHDwplSBJ6eYH
JQehmnBcadIxkR7z6Qma
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:30 2024 by rpki-client on console-ams.rpki-client.org