Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/592cf0-03df-4886-b061-284f7c9622b5/1/14rFEN2KmCMUWXlzQ8Zk03Zk_pQ.roa
File: 14rFEN2KmCMUWXlzQ8Zk03Zk_pQ.roa (raw, json)
Hash identifier: 4amXuvnD+5KQSljGWmuVxLKPttuZoi8BnBMRwBd0qFA=
Subject key identifier: D7:8A:C5:10:DD:8A:98:23:14:59:79:73:43:C6:64:D3:76:64:FE:94
Certificate issuer: /CN=b13099c38b6477a68c98019ff6e0040808078b90
Certificate serial: 01856D5413FF962F5B1449E1C9CD062240C7
Authority key identifier: B1:30:99:C3:8B:64:77:A6:8C:98:01:9F:F6:E0:04:08:08:07:8B:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sTCZw4tkd6aMmAGf9uAECAgHi5A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/592cf0-03df-4886-b061-284f7c9622b5/1/14rFEN2KmCMUWXlzQ8Zk03Zk_pQ.roa
Signing time: Sun 01 Jan 2023 12:35:04 +0000
ROA not before: Sun 01 Jan 2023 12:35:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206347
IP address blocks: 185.193.168.0/22 maxlen: 24
138.124.160.0/20 maxlen: 24
37.48.225.0/24 maxlen: 24
37.48.226.0/23 maxlen: 23
138.124.175.0/24 maxlen: 24
37.48.228.0/24 maxlen: 24
37.48.231.0/24 maxlen: 24
185.67.232.0/22 maxlen: 24
185.102.132.0/22 maxlen: 24
2a0b:de40::/29 maxlen: 48
Validation: Failed, certificate revoked on Thu 14 Dec 2023 11:04:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:54:13:ff:96:2f:5b:14:49:e1:c9:cd:06:22:40:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b13099c38b6477a68c98019ff6e0040808078b90
Validity
Not Before: Jan 1 12:35:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d78ac510dd8a98231459797343c664d37664fe94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3c:69:71:ce:ba:22:c3:1b:be:52:3a:b2:93:
69:2e:40:de:e0:38:46:f3:f1:9b:cd:2e:c3:cf:23:
b6:94:d3:03:37:33:c5:a2:3a:51:9c:a2:64:4e:bd:
ec:05:1d:ec:8b:8c:1c:9e:d6:e1:b4:02:12:08:f3:
09:a4:01:8b:37:ae:21:59:b7:92:cf:f6:3c:46:de:
1b:1d:f3:a9:c5:28:d5:f6:fb:f1:e4:9e:e4:6c:5a:
62:ac:6a:1d:1f:94:9c:27:0c:b3:ee:b7:2f:89:4a:
31:8f:3d:f1:93:f5:f6:39:2b:b7:6b:71:db:78:5c:
2b:6e:76:e2:7b:27:28:82:0e:bb:70:52:71:2a:b7:
5f:89:fb:0e:f7:d5:f8:85:14:34:99:b3:b7:c7:98:
e1:34:6f:41:92:61:20:f0:94:36:85:a4:ca:a4:2b:
67:5f:13:6e:f2:34:ea:50:9e:e6:ea:ee:9d:7f:85:
63:ac:c1:dc:9c:4e:35:6c:45:7c:fe:b6:56:10:f0:
ce:4d:94:b9:fc:80:ff:6a:68:a0:a5:08:11:2b:42:
4d:96:24:0c:5f:4c:51:1a:a5:fd:b4:87:36:e4:89:
25:c2:6c:05:56:8b:96:8f:d8:11:bd:10:d1:27:b7:
cd:c0:68:c4:f9:8e:16:e3:63:fd:2a:27:fb:ab:5d:
cf:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:8A:C5:10:DD:8A:98:23:14:59:79:73:43:C6:64:D3:76:64:FE:94
X509v3 Authority Key Identifier:
keyid:B1:30:99:C3:8B:64:77:A6:8C:98:01:9F:F6:E0:04:08:08:07:8B:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sTCZw4tkd6aMmAGf9uAECAgHi5A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/592cf0-03df-4886-b061-284f7c9622b5/1/14rFEN2KmCMUWXlzQ8Zk03Zk_pQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/592cf0-03df-4886-b061-284f7c9622b5/1/sTCZw4tkd6aMmAGf9uAECAgHi5A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.48.225.0-37.48.228.255
37.48.231.0/24
138.124.160.0/20
185.67.232.0/22
185.102.132.0/22
185.193.168.0/22
IPv6:
2a0b:de40::/29
Signature Algorithm: sha256WithRSAEncryption
14:92:fb:26:59:92:5f:d2:8e:59:e9:d7:ea:a2:85:52:d9:d6:
48:4f:32:f7:82:2d:26:61:70:1b:33:4a:c9:e4:b0:c6:32:f2:
1f:18:27:cc:bf:b8:f5:6b:14:10:87:d8:41:f0:aa:20:a2:d0:
3c:d6:20:bf:31:8c:b0:76:5f:47:98:c3:37:6d:c7:0e:c7:9f:
65:17:a3:0c:59:9b:83:a8:2b:b9:23:c6:25:e6:eb:c2:88:30:
71:18:7a:f1:3b:a0:bb:35:1a:86:98:7e:15:32:3e:2b:07:73:
5c:37:75:03:26:4e:80:65:83:62:90:ee:5a:79:f8:dc:43:a7:
9e:33:29:20:5b:9b:b9:b6:43:8e:c9:99:c5:4e:77:a1:aa:6c:
7c:85:93:cd:8b:fb:60:a1:b9:24:46:96:94:5d:8d:db:41:d2:
7b:6d:10:af:83:67:0a:4b:8c:e1:c5:0d:d5:3a:15:e6:cf:09:
1e:8a:46:c4:e1:8d:e6:93:64:50:0d:b7:c4:df:60:15:26:25:
21:d7:34:66:1e:27:36:b7:67:59:12:18:27:0a:6a:9f:c6:4d:
28:5b:11:50:93:15:cd:be:cc:31:c3:d2:a8:43:ad:63:31:ee:
d4:34:c2:bb:2b:91:b4:af:04:bb:84:45:cd:28:f2:85:65:4a:
b7:36:55:79
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgISAYVtVBP/li9bFEnhyc0GIkDHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxMzA5OWMzOGI2NDc3YTY4Yzk4MDE5ZmY2ZTAwNDA4MDgw
NzhiOTAwHhcNMjMwMTAxMTIzNTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNzhhYzUxMGRkOGE5ODIzMTQ1OTc5NzM0M2M2NjRkMzc2NjRmZTk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTxpcc66IsMbvlI6spNpLkDe4DhG
8/GbzS7DzyO2lNMDNzPFojpRnKJkTr3sBR3si4wcntbhtAISCPMJpAGLN64hWbeS
z/Y8Rt4bHfOpxSjV9vvx5J7kbFpirGodH5ScJwyz7rcviUoxjz3xk/X2OSu3a3Hb
eFwrbnbieycogg67cFJxKrdfifsO99X4hRQ0mbO3x5jhNG9BkmEg8JQ2haTKpCtn
XxNu8jTqUJ7m6u6df4VjrMHcnE41bEV8/rZWEPDOTZS5/ID/amigpQgRK0JNliQM
X0xRGqX9tIc25IklwmwFVouWj9gRvRDRJ7fNwGjE+Y4W42P9Kif7q13PiwIDAQAB
o4ICPjCCAjowHQYDVR0OBBYEFNeKxRDdipgjFFl5c0PGZNN2ZP6UMB8GA1UdIwQY
MBaAFLEwmcOLZHemjJgBn/bgBAgIB4uQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1RDWnc0dGtkNmFNbUFHZjl1QUVDQWdIaTVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy81OTJjZjAtMDNkZi00ODg2LWIwNjEt
Mjg0ZjdjOTYyMmI1LzEvMTRyRkVOMkttQ01VV1hselE4WmswM1prX3BRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy81OTJjZjAtMDNkZi00ODg2LWIwNjEtMjg0ZjdjOTYyMmI1
LzEvc1RDWnc0dGtkNmFNbUFHZjl1QUVDQWdIaTVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFQGCCsGAQUFBwEHAQH/BEUwQzAyBAIAATAsMAwDBAAlMOED
BAAlMOQDBAAlMOcDBASKfKADBAK5Q+gDBAK5ZoQDBAK5wagwDQQCAAIwBwMFAyoL
3kAwDQYJKoZIhvcNAQELBQADggEBABSS+yZZkl/Sjlnp1+qihVLZ1khPMveCLSZh
cBszSsnksMYy8h8YJ8y/uPVrFBCH2EHwqiCi0DzWIL8xjLB2X0eYwzdtxw7Hn2UX
owxZm4OoK7kjxiXm68KIMHEYevE7oLs1GoaYfhUyPisHc1w3dQMmToBlg2KQ7lp5
+NxDp54zKSBbm7m2Q47JmcVOd6GqbHyFk82L+2ChuSRGlpRdjdtB0nttEK+DZwpL
jOHFDdU6FebPCR6KRsThjeaTZFANt8TfYBUmJSHXNGYeJza3Z1kSGCcKap/GTShb
EVCTFc2+zDHD0qhDrWMx7tQ0wrsrkbSvBLuERc0o8oVlSrc2VXk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:28 2024 by rpki-client on console-ams.rpki-client.org