Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/_gggnPJFfAjhShD_cXa0sbMrnHU.roa
File: _gggnPJFfAjhShD_cXa0sbMrnHU.roa (raw, json)
Hash identifier: 77qbimet9FzdlkXRJ6kKG2Q2U1wUK+gnWgMpK5076dI=
Subject key identifier: FE:08:20:9C:F2:45:7C:08:E1:4A:10:FF:71:76:B4:B1:B3:2B:9C:75
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018C4BBF59A44E9683445044D12A96159EA2
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/_gggnPJFfAjhShD_cXa0sbMrnHU.roa
Signing time: Fri 08 Dec 2023 23:24:40 +0000
ROA not before: Fri 08 Dec 2023 23:24:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 81.22.136.0/22 maxlen: 24
89.185.24.0/22 maxlen: 24
81.22.140.0/22 maxlen: 24
109.72.116.0/22 maxlen: 24
89.185.0.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 15 Dec 2023 07:41:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:4b:bf:59:a4:4e:96:83:44:50:44:d1:2a:96:15:9e:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Dec 8 23:24:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe08209cf2457c08e14a10ff7176b4b1b32b9c75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:87:40:9f:07:92:63:7f:db:19:2e:1b:8d:ca:
87:4c:51:b0:ee:cf:6e:83:4b:38:a9:01:fd:a9:62:
b4:8c:da:12:3c:93:72:fd:d6:46:5e:2b:ac:1e:bb:
06:8f:b4:5f:3f:32:91:bf:bb:d9:cd:f0:23:49:06:
68:49:5e:e2:2f:46:9b:84:09:de:10:cb:13:b6:c0:
62:db:c4:ef:09:fe:91:8d:c8:52:b0:5f:09:ad:2a:
38:05:0d:77:26:08:83:35:08:21:b3:b9:1e:a1:16:
10:17:5d:d0:9f:35:fe:7a:30:e6:13:5c:56:4b:1a:
9c:9e:e2:b8:6c:92:93:fd:3b:4c:05:54:c3:99:20:
b7:ce:47:79:4d:10:58:3c:77:b7:10:53:69:18:3e:
c4:b0:1e:50:94:6d:8d:34:71:62:01:4b:03:f5:70:
75:f9:05:2a:e7:91:e3:c2:aa:ed:2c:83:c8:4c:00:
cb:e0:47:a1:94:57:be:6b:64:8a:dd:e0:4d:28:42:
c0:8e:4a:ea:6b:98:91:3e:e9:b2:2b:9a:c1:f4:4a:
a4:6a:58:ee:a6:a5:4c:79:f1:6e:d4:77:f1:ee:69:
aa:43:a4:6c:61:d1:ec:93:d4:9d:cf:12:19:af:24:
b8:c4:60:f8:fc:ca:d9:f2:6d:d7:89:80:e2:a1:09:
f7:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:08:20:9C:F2:45:7C:08:E1:4A:10:FF:71:76:B4:B1:B3:2B:9C:75
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/_gggnPJFfAjhShD_cXa0sbMrnHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.136.0/21
89.185.0.0/22
89.185.24.0/22
109.72.116.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:1d:37:d4:c6:ee:34:5f:8b:ff:22:4a:38:8f:12:01:2c:7e:
9e:8f:35:48:7f:66:df:9b:64:d1:c2:b6:29:10:35:78:2b:4b:
58:24:ab:7e:cc:d3:10:62:82:ff:84:42:dc:67:c5:3f:f6:12:
b8:88:c0:8e:84:c6:30:ac:5f:be:50:11:80:7f:1b:6d:a2:fa:
89:43:2c:7a:f4:01:34:f1:20:31:6c:a1:38:f4:4e:e7:b5:1e:
de:79:7a:2a:91:65:d9:fa:8b:14:2d:87:f1:35:30:0d:f9:fd:
d6:84:a2:6f:7a:fa:0e:89:02:bd:35:28:b7:f7:44:a2:7b:6f:
86:fc:28:cd:b5:ce:41:03:02:7d:89:61:5a:fd:0f:19:f7:5c:
34:29:b6:7e:9f:eb:39:d3:45:98:0f:a3:90:67:02:e0:75:77:
dd:45:13:36:4c:d1:10:5a:84:a1:60:08:ee:90:d8:37:c0:4a:
d7:20:03:73:de:59:ca:93:dd:24:47:04:9b:b7:ee:30:b0:9f:
1a:75:c5:e4:c9:e6:27:66:94:94:5d:cc:86:46:c8:a1:5b:7c:
cb:7b:56:95:20:75:d3:eb:69:ee:8c:64:f8:e8:2f:52:b4:d1:
c7:77:d4:ac:3f:90:88:85:9b:87:9b:e2:74:1b:95:87:11:8c:
aa:b2:95:ef
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAYxLv1mkTpaDRFBE0SqWFZ6iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4MmNmODA5YzBlM2U4ZTU1NTJmOWQwZGQyZTI3ZTBkZDJk
OGRhYmUwHhcNMjMxMjA4MjMyNDQwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZTA4MjA5Y2YyNDU3YzA4ZTE0YTEwZmY3MTc2YjRiMWIzMmI5Yzc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn4dAnweSY3/bGS4bjcqHTFGw7s9u
g0s4qQH9qWK0jNoSPJNy/dZGXiusHrsGj7RfPzKRv7vZzfAjSQZoSV7iL0abhAne
EMsTtsBi28TvCf6RjchSsF8JrSo4BQ13JgiDNQghs7keoRYQF13QnzX+ejDmE1xW
SxqcnuK4bJKT/TtMBVTDmSC3zkd5TRBYPHe3EFNpGD7EsB5QlG2NNHFiAUsD9XB1
+QUq55HjwqrtLIPITADL4EehlFe+a2SK3eBNKELAjkrqa5iRPumyK5rB9Eqkalju
pqVMefFu1Hfx7mmqQ6RsYdHsk9SdzxIZryS4xGD4/MrZ8m3XiYDioQn3CQIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFP4IIJzyRXwI4UoQ/3F2tLGzK5x1MB8GA1UdIwQY
MBaAFJgs+AnA4+jlVS+dDdLifg3S2Nq+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEt
ODJhZDE0NTU1ZWFhLzEvX2dnZ25QSkZmQWpoU2hEX2NYYTBzYk1ybkhVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEtODJhZDE0NTU1ZWFh
LzEvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQDURaIAwQC
WbkAAwQCWbkYAwQCbUh0MA0GCSqGSIb3DQEBCwUAA4IBAQA+HTfUxu40X4v/Iko4
jxIBLH6ejzVIf2bfm2TRwrYpEDV4K0tYJKt+zNMQYoL/hELcZ8U/9hK4iMCOhMYw
rF++UBGAfxttovqJQyx69AE08SAxbKE49E7ntR7eeXoqkWXZ+osULYfxNTAN+f3W
hKJvevoOiQK9NSi390Sie2+G/CjNtc5BAwJ9iWFa/Q8Z91w0KbZ+n+s500WYD6OQ
ZwLgdXfdRRM2TNEQWoShYAjukNg3wErXIANz3lnKk90kRwSbt+4wsJ8adcXkyeYn
ZpSUXcyGRsihW3zLe1aVIHXT62nujGT46C9StNHHd9SsP5CIhZuHm+J0G5WHEYyq
spXv
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org