Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/fRcFljdSQlJz75YrQnyye-DY31M.roa
File: fRcFljdSQlJz75YrQnyye-DY31M.roa (raw, json)
Hash identifier: A34C2P3rUs600fLD0uggL3vKFNnFWRDVxxg5PQstMG8=
Subject key identifier: 7D:17:05:96:37:52:42:52:73:EF:96:2B:42:7C:B2:7B:E0:D8:DF:53
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 018CC6B936142C80E02A9031C4236F0F05A0
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/fRcFljdSQlJz75YrQnyye-DY31M.roa
Signing time: Mon 01 Jan 2024 20:31:15 +0000
ROA not before: Mon 01 Jan 2024 20:31:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9009
IP address blocks: 88.218.101.0/24 maxlen: 24
88.218.102.0/23 maxlen: 23
88.218.100.0/24 maxlen: 24
141.98.240.0/24 maxlen: 24
195.206.108.0/24 maxlen: 24
195.206.109.0/24 maxlen: 24
193.31.72.0/24 maxlen: 24
193.31.73.0/24 maxlen: 24
193.31.75.0/24 maxlen: 24
85.209.216.0/24 maxlen: 24
85.209.218.0/23 maxlen: 23
139.28.138.0/23 maxlen: 23
139.28.137.0/24 maxlen: 24
45.84.44.0/24 maxlen: 24
194.5.0.0/22 maxlen: 22
45.84.45.0/24 maxlen: 24
45.84.47.0/24 maxlen: 24
141.98.242.0/23 maxlen: 23
141.98.241.0/24 maxlen: 24
194.124.52.0/22 maxlen: 22
85.8.190.0/23 maxlen: 23
85.8.188.0/24 maxlen: 24
85.8.189.0/24 maxlen: 24
92.119.180.0/24 maxlen: 24
92.119.181.0/24 maxlen: 24
45.157.74.0/23 maxlen: 23
45.14.72.0/24 maxlen: 24
5.182.100.0/24 maxlen: 24
5.182.101.0/24 maxlen: 24
5.182.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Feb 2024 21:51:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:36:14:2c:80:e0:2a:90:31:c4:23:6f:0f:05:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Jan 1 20:31:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7d1705963752425273ef962b427cb27be0d8df53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:33:b1:9d:89:5e:b0:97:9a:86:a1:f8:5b:d6:
03:63:cb:dd:48:e1:ac:25:db:71:c0:19:03:7c:54:
91:68:0b:5e:4f:c0:e6:65:96:5e:54:0b:c7:09:12:
e2:c6:85:f4:28:59:49:50:05:37:48:f5:de:b8:fe:
0d:94:38:f7:14:6e:f8:9d:d2:e6:40:aa:f3:4a:8e:
43:fa:d3:9c:72:c9:f1:91:7c:04:fc:1c:6c:f9:9d:
51:c6:05:ff:5c:aa:72:1b:7a:e8:f1:5b:4b:40:06:
0b:be:12:e1:fe:25:57:b5:d7:84:a5:a1:37:16:40:
e6:7b:63:b0:8e:3f:8b:a5:c4:3c:18:d1:0d:e4:fa:
f3:33:15:82:c0:85:67:75:3f:d1:f4:90:74:f0:56:
3f:20:87:75:cd:62:d6:44:a3:d1:1f:e2:99:2b:42:
77:60:b7:cd:ff:43:69:36:c3:45:00:a5:b0:a7:15:
e0:22:52:d1:03:66:0f:c5:e7:c8:a0:ee:3d:1f:4e:
87:ed:dd:6a:7c:c2:99:6e:f3:d6:68:98:6e:cd:d2:
ef:01:60:a0:17:e2:8f:20:0c:07:a6:f3:c9:2e:d2:
18:87:35:17:c5:34:ef:18:e1:44:25:fd:e6:17:fc:
af:1d:12:70:71:94:f4:07:b6:0a:2a:ce:23:ef:4f:
e2:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:17:05:96:37:52:42:52:73:EF:96:2B:42:7C:B2:7B:E0:D8:DF:53
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/fRcFljdSQlJz75YrQnyye-DY31M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.100.0/23
5.182.103.0/24
45.14.72.0/24
45.84.44.0/23
45.84.47.0/24
45.157.74.0/23
85.8.188.0/22
85.209.216.0/24
85.209.218.0/23
88.218.100.0/22
92.119.180.0/23
139.28.137.0-139.28.139.255
141.98.240.0/22
193.31.72.0/23
193.31.75.0/24
194.5.0.0/22
194.124.52.0/22
195.206.108.0/23
Signature Algorithm: sha256WithRSAEncryption
30:0c:d7:76:2c:57:e6:77:9f:b6:dd:e8:d6:1c:c7:d8:2c:34:
ae:44:40:dc:aa:a8:61:df:67:b7:42:fc:14:23:3b:82:cc:f2:
1d:d2:9e:78:6d:c6:48:7d:ec:1d:8e:82:7e:74:0c:17:b1:f5:
7a:c7:d6:df:cc:de:73:6a:55:5f:87:9c:ac:6c:a8:cd:83:6d:
d8:4e:d2:ba:8e:69:46:bd:58:7b:35:ed:ef:af:e2:b7:4b:af:
5c:71:71:ef:56:5d:73:69:ac:6e:9b:0e:2b:08:b4:d9:39:3b:
26:ea:70:8e:3c:02:b8:de:77:c6:00:31:33:0a:e3:4f:96:d1:
b2:e9:af:d2:5d:4a:76:2d:ed:c9:e7:f5:f4:0d:3a:40:41:e2:
40:7f:21:37:7a:49:e5:58:d7:23:26:b7:8a:61:ad:c6:89:52:
d5:62:5b:67:12:ba:c3:1c:ef:e1:00:51:59:39:25:e3:5a:e8:
b2:f1:3e:20:dd:70:7e:c6:b0:01:74:51:fd:91:79:eb:09:ef:
a9:f7:34:8c:b7:e7:89:f0:e6:bd:0a:17:ce:a6:53:0a:df:0a:
8c:60:88:3b:75:5d:b3:c2:dd:68:bf:dd:07:24:55:00:df:fa:
ad:b8:db:f9:1b:24:51:13:53:1b:08:b0:68:ab:9f:94:10:0f:
ff:60:84:39
-----BEGIN CERTIFICATE-----
MIIFbDCCBFSgAwIBAgISAYzGuTYULIDgKpAxxCNvDwWgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx
MTliZDcwHhcNMjQwMTAxMjAzMTE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZDE3MDU5NjM3NTI0MjUyNzNlZjk2MmI0MjdjYjI3YmUwZDhkZjUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAizOxnYlesJeahqH4W9YDY8vdSOGs
JdtxwBkDfFSRaAteT8DmZZZeVAvHCRLixoX0KFlJUAU3SPXeuP4NlDj3FG74ndLm
QKrzSo5D+tOccsnxkXwE/Bxs+Z1RxgX/XKpyG3ro8VtLQAYLvhLh/iVXtdeEpaE3
FkDme2Owjj+LpcQ8GNEN5PrzMxWCwIVndT/R9JB08FY/IId1zWLWRKPRH+KZK0J3
YLfN/0NpNsNFAKWwpxXgIlLRA2YPxefIoO49H06H7d1qfMKZbvPWaJhuzdLvAWCg
F+KPIAwHpvPJLtIYhzUXxTTvGOFEJf3mF/yvHRJwcZT0B7YKKs4j70/iWwIDAQAB
o4ICeDCCAnQwHQYDVR0OBBYEFH0XBZY3UkJSc++WK0J8snvg2N9TMB8GA1UdIwQY
MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt
YjZmMmFjODZlZjI3LzEvZlJjRmxqZFNRbEp6NzVZclFueXllLURZMzFNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3
LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGNBggrBgEFBQcBBwEB/wR+MHwwegQCAAEwdAMEAQW2ZAME
AAW2ZwMEAC0OSAMEAS1ULAMEAC1ULwMEAS2dSgMEAlUIvAMEAFXR2AMEAVXR2gME
AljaZAMEAVx3tDAMAwQAixyJAwQCixyIAwQCjWLwAwQBwR9IAwQAwR9LAwQCwgUA
AwQCwnw0AwQBw85sMA0GCSqGSIb3DQEBCwUAA4IBAQAwDNd2LFfmd5+23ejWHMfY
LDSuREDcqqhh32e3QvwUIzuCzPId0p54bcZIfewdjoJ+dAwXsfV6x9bfzN5zalVf
h5ysbKjNg23YTtK6jmlGvVh7Ne3vr+K3S69ccXHvVl1zaaxumw4rCLTZOTsm6nCO
PAK43nfGADEzCuNPltGy6a/SXUp2Le3J5/X0DTpAQeJAfyE3eknlWNcjJreKYa3G
iVLVYltnErrDHO/hAFFZOSXjWuiy8T4g3XB+xrABdFH9kXnrCe+p9zSMt+eJ8Oa9
ChfOplMK3wqMYIg7dV2zwt1ov90HJFUA3/qtuNv5GyRRE1MbCLBoq5+UEA//YIQ5
-----END CERTIFICATE-----
Generated at Fri Feb 9 00:31:03 2024 by rpki-client on console-ams.rpki-client.org