Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ieVWHXp1ODGbKQ19ukspS1G95Sk.roa
File: ieVWHXp1ODGbKQ19ukspS1G95Sk.roa (raw, json)
Hash identifier: We/0iv1HNw9K/0fc8kachXBOFiTXLijDyaz6fy/4f4U=
Subject key identifier: 89:E5:56:1D:7A:75:38:31:9B:29:0D:7D:BA:4B:29:4B:51:BD:E5:29
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018F1925B914A3FC649DAA40CE19C4440EE3
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ieVWHXp1ODGbKQ19ukspS1G95Sk.roa
Signing time: Fri 26 Apr 2024 06:44:13 +0000
ROA not before: Fri 26 Apr 2024 06:44:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207279
IP address blocks: 2.59.253.0/24 maxlen: 24
45.88.64.0/24 maxlen: 24
79.110.51.0/24 maxlen: 24
87.120.166.0/24 maxlen: 24
92.119.198.0/24 maxlen: 24
94.154.162.0/24 maxlen: 24
109.206.239.0/24 maxlen: 24
178.215.225.0/24 maxlen: 24
178.215.227.0/24 maxlen: 24
185.222.161.0/24 maxlen: 24
185.222.162.0/24 maxlen: 24
193.25.217.0/24 maxlen: 24
193.37.40.0/24 maxlen: 24
193.37.42.0/24 maxlen: 24
193.37.44.0/24 maxlen: 24
193.222.97.0/24 maxlen: 24
194.55.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Apr 2024 13:39:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:19:25:b9:14:a3:fc:64:9d:aa:40:ce:19:c4:44:0e:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 26 06:44:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=89e5561d7a7538319b290d7dba4b294b51bde529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:75:fb:9b:9b:62:52:e2:69:33:2c:1b:15:be:
e1:c1:bd:bc:2d:ce:66:c4:02:9a:3b:4a:65:4f:73:
cb:11:19:58:30:e7:c8:d3:ab:6c:f2:70:c3:55:9a:
33:3f:9e:95:09:96:90:1f:43:f2:9f:4c:85:3e:cd:
49:e0:54:e3:c1:e3:18:f3:17:25:5d:1a:3e:e8:6c:
b6:4d:7e:4e:a9:34:ba:73:b8:e6:ac:57:f1:13:20:
9a:e3:a9:7b:38:e4:ab:57:c5:80:44:dd:d0:44:6a:
d1:42:06:ab:d9:a8:b1:18:e2:95:29:d7:db:e2:b2:
c9:59:6f:af:f1:e2:12:da:b3:e1:2c:a2:54:8e:e0:
f4:30:a4:9a:80:2d:65:e7:0b:25:4f:6b:28:36:3c:
12:62:7e:7d:9e:33:9f:26:05:a9:75:08:13:5b:35:
3b:4f:e4:8f:d1:66:83:c9:85:72:8e:81:aa:8c:d2:
a8:a9:98:5b:40:ff:c6:a1:5c:84:27:81:f0:40:2d:
74:54:6e:72:6e:39:a6:a5:07:29:60:ad:89:f3:d4:
e1:00:88:f1:13:6e:c2:60:8c:23:43:76:d2:30:a0:
9e:6b:e5:8c:66:0c:95:70:be:51:19:8b:91:63:8c:
b4:72:56:df:58:3b:92:10:94:f3:6d:d1:43:37:36:
07:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:E5:56:1D:7A:75:38:31:9B:29:0D:7D:BA:4B:29:4B:51:BD:E5:29
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ieVWHXp1ODGbKQ19ukspS1G95Sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.253.0/24
45.88.64.0/24
79.110.51.0/24
87.120.166.0/24
92.119.198.0/24
94.154.162.0/24
109.206.239.0/24
178.215.225.0/24
178.215.227.0/24
185.222.161.0-185.222.162.255
193.25.217.0/24
193.37.40.0/24
193.37.42.0/24
193.37.44.0/24
193.222.97.0/24
194.55.225.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:22:63:f6:90:2a:5a:67:25:c6:c3:e3:f0:29:3c:0c:b7:96:
bb:df:a4:b2:60:34:d0:94:75:74:6b:4d:d4:0d:99:2d:3c:4f:
25:b3:12:54:2d:ff:6f:82:06:b7:31:af:14:46:8a:5c:ba:96:
d9:bd:60:38:d0:9f:9f:fa:71:71:c7:fc:30:aa:0d:ad:8b:44:
f5:14:e1:98:db:bd:1a:59:8b:69:b8:2c:39:17:53:da:48:c2:
29:27:d8:e9:1f:1e:61:78:07:0d:ac:11:51:bd:2f:0b:db:92:
22:c4:54:40:8e:9e:a8:d3:fa:52:de:47:5a:8a:8f:54:4e:9f:
e2:87:c5:bc:40:af:c2:ae:02:75:72:ac:f0:21:48:22:6f:33:
af:ad:a2:a0:19:d0:8f:aa:c0:31:52:39:92:71:5d:12:c6:42:
22:a0:45:dd:7d:c4:62:96:58:7f:8d:cd:dd:fc:57:38:c9:db:
35:23:4a:1f:3b:17:92:5b:e4:1d:aa:28:ea:29:f4:df:d8:86:
a9:31:23:19:de:8f:3b:ab:30:fc:02:ff:f5:48:d6:72:a7:29:
78:bc:cb:08:6f:da:d7:38:36:f1:56:1f:c0:a4:3b:44:dd:2e:
3c:1d:6e:dc:e4:ac:b6:c2:59:2e:53:ca:05:be:77:f6:07:d9:
59:75:e2:ae
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgISAY8ZJbkUo/xknapAzhnERA7jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjQwNDI2MDY0NDEzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OWU1NTYxZDdhNzUzODMxOWIyOTBkN2RiYTRiMjk0YjUxYmRlNTI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjHX7m5tiUuJpMywbFb7hwb28Lc5m
xAKaO0plT3PLERlYMOfI06ts8nDDVZozP56VCZaQH0Pyn0yFPs1J4FTjweMY8xcl
XRo+6Gy2TX5OqTS6c7jmrFfxEyCa46l7OOSrV8WARN3QRGrRQgar2aixGOKVKdfb
4rLJWW+v8eIS2rPhLKJUjuD0MKSagC1l5wslT2soNjwSYn59njOfJgWpdQgTWzU7
T+SP0WaDyYVyjoGqjNKoqZhbQP/GoVyEJ4HwQC10VG5ybjmmpQcpYK2J89ThAIjx
E27CYIwjQ3bSMKCea+WMZgyVcL5RGYuRY4y0clbfWDuSEJTzbdFDNzYHaQIDAQAB
o4ICbDCCAmgwHQYDVR0OBBYEFInlVh16dTgxmykNfbpLKUtRveUpMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvaWVWV0hYcDFPREdiS1ExOXVrc3BTMUc5NVNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGBBggrBgEFBQcBBwEB/wRyMHAwbgQCAAEwaAMEAAI7/QME
AC1YQAMEAE9uMwMEAFd4pgMEAFx3xgMEAF6aogMEAG3O7wMEALLX4QMEALLX4zAM
AwQAud6hAwQAud6iAwQAwRnZAwQAwSUoAwQAwSUqAwQAwSUsAwQAwd5hAwQAwjfh
MA0GCSqGSIb3DQEBCwUAA4IBAQAeImP2kCpaZyXGw+PwKTwMt5a736SyYDTQlHV0
a03UDZktPE8lsxJULf9vgga3Ma8URopcupbZvWA40J+f+nFxx/wwqg2ti0T1FOGY
270aWYtpuCw5F1PaSMIpJ9jpHx5heAcNrBFRvS8L25IixFRAjp6o0/pS3kdaio9U
Tp/ih8W8QK/CrgJ1cqzwIUgibzOvraKgGdCPqsAxUjmScV0SxkIioEXdfcRillh/
jc3d/Fc4yds1I0ofOxeSW+QdqijqKfTf2IapMSMZ3o87qzD8Av/1SNZypyl4vMsI
b9rXODbxVh/ApDtE3S48HW7c5Ky2wlkuU8oFvnf2B9lZdeKu
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:17 2024 by rpki-client on console-fra.rpki-client.org