Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/StpKqJczDKBwkcZEh8KDjrOYGqM.roa
File: StpKqJczDKBwkcZEh8KDjrOYGqM.roa (raw, json)
Hash identifier: NvdbQxnsJ3ir+pma4Lftx1fb63wWWvqIh8gTSrvTS3s=
Subject key identifier: 4A:DA:4A:A8:97:33:0C:A0:70:91:C6:44:87:C2:83:8E:B3:98:1A:A3
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 0189DA9D71E78960565397002EB9E598020C
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/StpKqJczDKBwkcZEh8KDjrOYGqM.roa
Signing time: Wed 09 Aug 2023 14:04:58 +0000
ROA not before: Wed 09 Aug 2023 14:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210489
IP address blocks: 45.140.8.0/23 maxlen: 23
45.141.206.0/23 maxlen: 23
45.157.202.0/23 maxlen: 23
46.161.210.0/23 maxlen: 23
46.161.220.0/23 maxlen: 23
46.161.222.0/23 maxlen: 23
45.135.96.0/23 maxlen: 23
45.135.98.0/23 maxlen: 23
45.136.64.0/22 maxlen: 23
185.222.32.0/23 maxlen: 23
185.222.34.0/23 maxlen: 23
45.141.16.0/23 maxlen: 23
45.152.8.0/23 maxlen: 23
45.141.18.0/23 maxlen: 23
193.110.4.0/23 maxlen: 24
91.244.204.0/22 maxlen: 23
195.62.22.0/23 maxlen: 24
45.141.62.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:da:9d:71:e7:89:60:56:53:97:00:2e:b9:e5:98:02:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Aug 9 14:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ada4aa897330ca07091c64487c2838eb3981aa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:26:06:75:a4:e2:23:bf:f2:0e:de:6b:6a:d2:
6b:84:1e:4f:62:f9:5e:2e:dc:cf:ac:4a:02:fd:dc:
9e:0b:22:7d:3e:ff:25:0e:6d:5b:38:b8:17:fb:77:
82:85:28:9b:31:55:95:e1:b2:f8:ba:21:84:80:04:
0f:b6:ff:90:6d:5f:9c:74:f9:02:a8:20:b4:46:a4:
aa:b5:50:76:77:28:fd:83:19:58:8e:39:96:f2:8d:
d4:6c:90:f5:ae:03:e9:0e:22:2d:b7:08:5b:b8:eb:
4e:fa:01:a3:91:c7:04:14:c3:7d:ab:b0:ec:78:5a:
57:59:e6:11:4f:30:71:12:6d:71:42:c7:f2:60:e9:
65:44:41:25:97:19:e8:5b:1e:26:41:b7:5c:e7:e1:
79:a9:fc:5b:d4:ee:d0:a9:28:c0:72:9c:6c:84:2c:
16:00:2d:d9:71:b0:b9:35:e1:a9:7c:b7:6a:f1:a0:
28:59:52:ba:1d:1f:bb:34:de:24:47:24:a3:83:73:
34:3d:3c:1a:ad:12:bc:0d:ae:8d:b7:73:0f:8a:fe:
5a:c1:5f:23:71:fe:d4:87:ec:81:43:a5:a7:91:d5:
5f:a1:23:62:78:6e:48:4b:e5:ac:24:1b:ba:b3:76:
34:f9:0c:20:8e:96:a0:1d:c7:d0:58:04:4c:08:b8:
a0:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:DA:4A:A8:97:33:0C:A0:70:91:C6:44:87:C2:83:8E:B3:98:1A:A3
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/StpKqJczDKBwkcZEh8KDjrOYGqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.96.0/22
45.136.64.0/22
45.140.8.0/23
45.141.16.0/22
45.141.62.0/23
45.141.206.0/23
45.152.8.0/23
45.157.202.0/23
46.161.210.0/23
46.161.220.0/22
91.244.204.0/22
185.222.32.0/22
193.110.4.0/23
195.62.22.0/23
Signature Algorithm: sha256WithRSAEncryption
80:c2:d0:5e:65:1e:d8:3d:2f:b8:c8:0a:58:0e:5a:b6:e5:87:
36:af:ab:5d:b2:84:12:7f:b0:d8:d9:c2:64:78:93:21:a0:10:
bc:de:c8:ff:3b:14:c3:7f:98:c6:a2:86:0b:d5:5d:3f:ec:29:
df:d8:b6:2c:4c:e7:b9:09:df:b8:12:47:77:c8:df:e5:4a:3e:
bd:43:bb:8e:41:93:86:0b:97:ed:e3:d1:4c:b8:71:08:bc:9f:
80:ea:b0:3d:49:23:30:b1:41:35:e9:8b:52:70:94:da:b3:c8:
68:dc:e6:64:7c:0f:6d:1b:75:8c:7b:7a:06:ab:8c:af:d9:fc:
5c:b0:06:14:e4:89:69:41:48:93:88:32:27:50:bd:ce:09:4d:
04:1e:63:fe:76:df:a3:89:d6:68:e6:27:a6:b1:05:b7:c3:88:
5f:48:1c:5d:83:62:cc:c7:45:2c:25:8d:d3:19:87:ea:d4:9b:
0a:f4:f1:5e:2b:e0:a5:a0:5d:d4:5a:37:e1:c8:44:c9:f9:07:
2f:18:db:76:60:af:d4:96:4f:bb:2d:14:77:b3:c0:89:00:16:
f1:d9:f3:5f:dc:10:8f:9b:bd:ca:75:62:6b:4e:41:dc:68:b6:
2b:21:58:24:48:de:bf:68:e9:03:4e:29:e2:80:39:7f:bd:a9:
c0:c7:08:a2
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgISAYnanXHniWBWU5cALrnlmAIMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw
MTRiOGQwHhcNMjMwODA5MTQwNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YWRhNGFhODk3MzMwY2EwNzA5MWM2NDQ4N2MyODM4ZWIzOTgxYWEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkyYGdaTiI7/yDt5ratJrhB5PYvle
LtzPrEoC/dyeCyJ9Pv8lDm1bOLgX+3eChSibMVWV4bL4uiGEgAQPtv+QbV+cdPkC
qCC0RqSqtVB2dyj9gxlYjjmW8o3UbJD1rgPpDiIttwhbuOtO+gGjkccEFMN9q7Ds
eFpXWeYRTzBxEm1xQsfyYOllREEllxnoWx4mQbdc5+F5qfxb1O7QqSjAcpxshCwW
AC3ZcbC5NeGpfLdq8aAoWVK6HR+7NN4kRySjg3M0PTwarRK8Da6Nt3MPiv5awV8j
cf7Uh+yBQ6WnkdVfoSNieG5IS+WsJBu6s3Y0+QwgjpagHcfQWARMCLig3QIDAQAB
o4ICVzCCAlMwHQYDVR0OBBYEFEraSqiXMwygcJHGRIfCg46zmBqjMB8GA1UdIwQY
MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt
NmJjNzU1NzhiNGMzLzEvU3RwS3FKY3pES0J3a2NaRWg4S0Rqck9ZR3FNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz
LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDBaBAIAATBUAwQCLYdgAwQC
LYhAAwQBLYwIAwQCLY0QAwQBLY0+AwQBLY3OAwQBLZgIAwQBLZ3KAwQBLqHSAwQC
LqHcAwQCW/TMAwQCud4gAwQBwW4EAwQBwz4WMA0GCSqGSIb3DQEBCwUAA4IBAQCA
wtBeZR7YPS+4yApYDlq25Yc2r6tdsoQSf7DY2cJkeJMhoBC83sj/OxTDf5jGooYL
1V0/7Cnf2LYsTOe5Cd+4Ekd3yN/lSj69Q7uOQZOGC5ft49FMuHEIvJ+A6rA9SSMw
sUE16YtScJTas8ho3OZkfA9tG3WMe3oGq4yv2fxcsAYU5IlpQUiTiDInUL3OCU0E
HmP+dt+jidZo5iemsQW3w4hfSBxdg2LMx0UsJY3TGYfq1JsK9PFeK+CloF3UWjfh
yETJ+QcvGNt2YK/Ulk+7LRR3s8CJABbx2fNf3BCPm73KdWJrTkHcaLYrIVgkSN6/
aOkDTinigDl/vanAxwii
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org