Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/Rgft5kxwYZF2egHmfdwMRuhTplU.roa
File: Rgft5kxwYZF2egHmfdwMRuhTplU.roa (raw, json)
Hash identifier: /WWyGDT2MSHQ/7HImZ2aH/zP7QZ5Ol+fpxi+C/0efZ8=
Subject key identifier: 46:07:ED:E6:4C:70:61:91:76:7A:01:E6:7D:DC:0C:46:E8:53:A6:55
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018742490562981A82494F1CDFE6C8FBFE91
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/Rgft5kxwYZF2egHmfdwMRuhTplU.roa
Signing time: Sun 02 Apr 2023 14:04:54 +0000
ROA not before: Sun 02 Apr 2023 14:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208258
IP address blocks: 185.243.112.0/24 maxlen: 24
185.243.113.0/24 maxlen: 24
185.228.83.0/24 maxlen: 24
185.227.82.0/24 maxlen: 24
185.208.208.0/24 maxlen: 24
185.208.209.0/24 maxlen: 24
185.208.210.0/24 maxlen: 24
185.208.211.0/24 maxlen: 24
194.146.48.0/24 maxlen: 24
45.151.156.0/23 maxlen: 24
45.151.158.0/24 maxlen: 24
193.109.137.0/24 maxlen: 24
45.144.244.0/23 maxlen: 24
195.26.6.0/24 maxlen: 24
195.26.7.0/24 maxlen: 24
2a0b:3c40:17::/48 maxlen: 48
2a0b:3c40:12::/48 maxlen: 48
2a0e:5540:11::/48 maxlen: 48
2a0b:3c40:fca6::/48 maxlen: 48
2a0b:3c40:1::/48 maxlen: 48
2a0b:3c40:21::/48 maxlen: 48
2a0e:5540::/48 maxlen: 48
2a0e:5540:100::/48 maxlen: 48
2a0b:3c40:25::/48 maxlen: 48
2a0b:3c40:20::/48 maxlen: 48
2a0b:3c40:16::/48 maxlen: 48
2a0b:3c40:11::/48 maxlen: 48
2a0e:5540:10::/48 maxlen: 48
2a0b:3c40:15::/48 maxlen: 48
2a0e:5540:12::/48 maxlen: 48
2a0b:3c40:9::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 24 Apr 2023 07:54:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:42:49:05:62:98:1a:82:49:4f:1c:df:e6:c8:fb:fe:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Apr 2 14:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4607ede64c706191767a01e67ddc0c46e853a655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:33:71:b4:5d:7b:55:33:02:b0:91:0a:6b:06:
18:f8:3c:a2:f8:bd:24:0f:ee:84:8d:2b:7d:8b:9d:
a2:a3:e0:92:96:51:a9:6b:2c:96:c5:aa:e9:de:7d:
ec:17:aa:f2:3d:37:2a:e9:9e:52:1f:18:10:36:7c:
7b:08:c8:4a:94:36:51:3e:46:ac:57:a6:9e:5b:10:
95:32:1c:d8:bd:6b:9e:35:7e:f1:cb:28:9a:f2:4e:
fb:62:91:a4:c7:d8:c3:ae:83:06:e3:41:ea:1a:13:
8d:e5:54:8c:ac:e9:94:e3:23:82:c3:8b:42:a0:22:
fb:d0:70:db:26:81:b8:5f:d6:16:ac:3d:31:4a:83:
a2:9f:75:84:76:ba:50:46:64:43:06:e3:c7:af:b6:
6c:d8:5d:c7:07:c9:ca:97:4b:80:05:43:a9:e0:f5:
17:58:11:a0:87:49:3e:bf:d3:74:04:22:7c:f1:17:
96:42:1d:62:0f:b8:1b:2a:c2:52:c6:91:ce:e7:74:
ae:84:13:54:db:c5:27:96:ce:aa:b6:a7:94:f1:af:
27:da:b5:e5:7a:7f:28:d4:2b:da:1a:85:64:55:2d:
dc:d4:9a:17:25:8a:99:83:30:47:a1:3c:12:ea:26:
c6:0a:a3:40:92:83:68:b1:50:1a:1b:7a:a7:ad:99:
57:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:07:ED:E6:4C:70:61:91:76:7A:01:E6:7D:DC:0C:46:E8:53:A6:55
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/Rgft5kxwYZF2egHmfdwMRuhTplU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.244.0/23
45.151.156.0-45.151.158.255
185.208.208.0/22
185.227.82.0/24
185.228.83.0/24
185.243.112.0/23
193.109.137.0/24
194.146.48.0/24
195.26.6.0/23
IPv6:
2a0b:3c40:1::/48
2a0b:3c40:9::/48
2a0b:3c40:11::-2a0b:3c40:12:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:15::-2a0b:3c40:17:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:20::/47
2a0b:3c40:25::/48
2a0b:3c40:fca6::/48
2a0e:5540::/48
2a0e:5540:10::-2a0e:5540:12:ffff:ffff:ffff:ffff:ffff
2a0e:5540:100::/48
Signature Algorithm: sha256WithRSAEncryption
57:b7:9f:68:25:05:c8:b7:57:c8:d2:30:ed:8a:9b:a9:20:7f:
af:2a:93:2f:fd:d8:1f:66:0a:67:9b:db:47:fa:ad:11:96:11:
6c:a6:7e:9f:a6:32:5a:f5:3c:6b:97:be:63:21:ca:0c:05:17:
16:e5:40:9c:cf:19:1d:99:09:43:8e:61:c3:df:4c:5f:ef:94:
0a:a8:f9:39:d2:57:25:d3:a6:5b:bc:fc:0d:09:bc:cc:fe:d2:
45:7c:f6:ac:71:a9:eb:44:d1:d7:8e:13:9e:9f:5b:f1:4c:76:
0f:f4:76:fa:54:5f:36:fc:77:de:c3:af:32:ba:72:9f:29:a5:
32:1d:40:99:30:c7:db:72:14:d0:bc:73:c6:9c:7e:fc:03:f3:
41:a5:6d:8b:ed:6f:8f:b9:9a:3f:73:41:9f:a9:f6:5c:17:06:
e0:84:fd:c1:96:10:a9:5f:41:7a:88:74:b5:17:ea:e9:cf:c1:
08:65:e4:08:c9:e1:1c:3d:11:c4:c3:a8:97:38:47:22:62:e4:
df:9a:5b:6f:d2:bb:05:c8:4b:6d:b9:2f:3c:55:50:c3:e4:93:
0b:48:9a:51:43:ea:35:03:4b:ad:78:bd:85:01:b9:fb:e6:99:
74:14:4c:76:3e:cc:d4:65:80:d3:42:55:c8:45:e4:c4:9b:e2:
aa:4a:52:05
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgISAYdCSQVimBqCSU8c3+bI+/6RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw
MTRiOGQwHhcNMjMwNDAyMTQwNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NjA3ZWRlNjRjNzA2MTkxNzY3YTAxZTY3ZGRjMGM0NmU4NTNhNjU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjTNxtF17VTMCsJEKawYY+Dyi+L0k
D+6EjSt9i52io+CSllGpayyWxarp3n3sF6ryPTcq6Z5SHxgQNnx7CMhKlDZRPkas
V6aeWxCVMhzYvWueNX7xyyia8k77YpGkx9jDroMG40HqGhON5VSMrOmU4yOCw4tC
oCL70HDbJoG4X9YWrD0xSoOin3WEdrpQRmRDBuPHr7Zs2F3HB8nKl0uABUOp4PUX
WBGgh0k+v9N0BCJ88ReWQh1iD7gbKsJSxpHO53SuhBNU28Unls6qtqeU8a8n2rXl
en8o1CvaGoVkVS3c1JoXJYqZgzBHoTwS6ibGCqNAkoNosVAaG3qnrZlXgQIDAQAB
o4ICyDCCAsQwHQYDVR0OBBYEFEYH7eZMcGGRdnoB5n3cDEboU6ZVMB8GA1UdIwQY
MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt
NmJjNzU1NzhiNGMzLzEvUmdmdDVreHdZWkYyZWdIbWZkd01SdWhUcGxVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz
LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHdBggrBgEFBQcBBwEB/wSBzTCByjBEBAIAATA+AwQBLZD0
MAwDBAItl5wDBAAtl54DBAK50NADBAC541IDBAC55FMDBAG583ADBADBbYkDBADC
kjADBAHDGgYwgYEEAgACMHsDBwAqCzxAAAEDBwAqCzxAAAkwEgMHACoLPEAAEQMH
ACoLPEAAEjASAwcAKgs8QAAVAwcDKgs8QAAQAwcBKgs8QAAgAwcAKgs8QAAlAwcA
Kgs8QPymAwcAKg5VQAAAMBIDBwQqDlVAABADBwAqDlVAABIDBwAqDlVAAQAwDQYJ
KoZIhvcNAQELBQADggEBAFe3n2glBci3V8jSMO2Km6kgf68qky/92B9mCmeb20f6
rRGWEWymfp+mMlr1PGuXvmMhygwFFxblQJzPGR2ZCUOOYcPfTF/vlAqo+TnSVyXT
plu8/A0JvMz+0kV89qxxqetE0deOE56fW/FMdg/0dvpUXzb8d97DrzK6cp8ppTId
QJkwx9tyFNC8c8acfvwD80GlbYvtb4+5mj9zQZ+p9lwXBuCE/cGWEKlfQXqIdLUX
6unPwQhl5AjJ4Rw9EcTDqJc4RyJi5N+aW2/SuwXIS225LzxVUMPkkwtImlFD6jUD
S614vYUBufvmmXQUTHY+zNRlgNNCVchF5MSb4qpKUgU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org