Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/dfwD9gaVdB0bnuLfGy2qPdJXZzU.roa
File: dfwD9gaVdB0bnuLfGy2qPdJXZzU.roa (raw, json)
Hash identifier: eAOfa1OTU+rruewcKl6hlHhjSoHqrum1el0lfRqv1IE=
Subject key identifier: 75:FC:03:F6:06:95:74:1D:1B:9E:E2:DF:1B:2D:AA:3D:D2:57:67:35
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018986B21BC17052789F5485DBF12F5714F3
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/dfwD9gaVdB0bnuLfGy2qPdJXZzU.roa
Signing time: Mon 24 Jul 2023 06:59:26 +0000
ROA not before: Mon 24 Jul 2023 06:59:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213250
IP address blocks: 45.89.124.0/23 maxlen: 23
45.89.126.0/23 maxlen: 23
212.87.212.0/23 maxlen: 23
45.133.74.0/24 maxlen: 24
45.13.224.0/23 maxlen: 23
109.71.252.0/24 maxlen: 24
5.182.206.0/23 maxlen: 23
5.182.204.0/23 maxlen: 23
45.11.229.0/24 maxlen: 24
45.131.64.0/24 maxlen: 24
45.86.155.0/24 maxlen: 24
45.131.66.0/23 maxlen: 23
37.221.93.0/24 maxlen: 24
194.15.36.0/24 maxlen: 24
5.253.247.0/24 maxlen: 24
2.56.245.0/24 maxlen: 24
5.252.103.0/24 maxlen: 24
5.252.100.0/22 maxlen: 22
5.252.100.0/24 maxlen: 24
5.252.101.0/24 maxlen: 24
5.252.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:86:b2:1b:c1:70:52:78:9f:54:85:db:f1:2f:57:14:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jul 24 06:59:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75fc03f60695741d1b9ee2df1b2daa3dd2576735
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:97:f5:b5:7f:9b:aa:85:92:5d:0d:bd:7c:fa:
96:ce:58:02:e4:f8:19:41:5b:df:95:e8:58:26:a9:
2e:0d:af:81:dc:d6:64:68:3a:69:63:c2:ae:f1:b0:
6a:af:18:46:64:27:9c:d5:09:c1:04:03:86:60:af:
2e:c6:0b:78:fc:59:36:fb:c0:95:9c:39:87:6b:56:
0e:ed:a8:ec:e0:a5:dc:ac:ff:ae:cf:71:f5:2f:4c:
0b:a8:0e:91:4e:6d:a6:97:f9:1c:91:41:d8:65:ae:
91:59:14:6b:29:1a:60:68:3b:26:94:ed:7b:0a:9a:
77:d3:7f:d4:5b:1b:64:72:70:50:d9:ff:4a:a1:ef:
9d:dc:cc:34:94:2d:fa:41:76:55:97:7f:6a:cc:ae:
29:e5:12:a6:fb:e2:a1:5a:12:8f:7b:e6:ce:7b:76:
52:2f:15:78:57:32:d6:c1:2a:67:ee:80:07:db:c2:
ab:f7:aa:69:5d:ad:5a:6f:02:64:68:61:b7:63:b2:
92:ee:37:8d:39:50:9c:8f:30:05:ef:54:ec:4e:b7:
2c:82:fe:92:7d:10:7b:4e:ca:2b:6e:07:9d:1e:f1:
61:e6:e5:ab:6d:a9:7f:34:3c:da:92:c8:3a:08:b9:
91:c5:75:15:72:5e:c6:c7:10:10:93:45:5e:70:8a:
87:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:FC:03:F6:06:95:74:1D:1B:9E:E2:DF:1B:2D:AA:3D:D2:57:67:35
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/dfwD9gaVdB0bnuLfGy2qPdJXZzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.245.0/24
5.182.204.0/22
5.252.100.0/22
5.253.247.0/24
37.221.93.0/24
45.11.229.0/24
45.13.224.0/23
45.86.155.0/24
45.89.124.0/22
45.131.64.0/24
45.131.66.0/23
45.133.74.0/24
109.71.252.0/24
194.15.36.0/24
212.87.212.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:18:5c:ec:2f:8a:ea:74:3e:b6:70:c4:ee:fb:2a:af:e8:96:
c4:c4:95:aa:ab:15:3f:8c:1f:96:5e:d8:ab:cd:b7:d4:0d:6a:
56:5f:83:57:c3:3f:c2:e0:24:5d:3a:11:3d:cf:6d:30:97:47:
ac:6f:c3:fc:c6:30:2a:0b:e1:d4:7a:9a:45:25:5a:58:3e:1f:
3d:27:fb:8b:e2:21:1a:c3:ed:ac:61:7b:e4:b6:ec:a1:4d:48:
05:0a:ab:79:ed:66:5b:47:14:7c:86:38:98:0f:04:16:b3:f2:
e0:38:fa:75:c1:95:5f:12:4f:ec:b3:55:e5:1e:c3:83:fc:9f:
9d:17:aa:d9:ac:f6:87:ac:db:5f:87:8f:35:9a:5e:81:e2:ce:
90:5d:ff:3b:fb:21:eb:19:29:fd:9a:6d:a5:78:5b:ec:50:5c:
d3:c6:c5:0b:1f:19:b7:0a:6a:1e:65:01:78:be:22:db:23:0c:
b4:bf:96:31:10:d0:ec:58:20:35:5b:37:54:30:2f:32:bc:95:
b5:fd:45:3a:a5:d6:6e:ba:2b:a5:e2:df:4b:be:67:22:d2:da:
74:0d:e8:bf:57:26:af:5c:9e:f1:91:b9:d9:23:20:12:df:ad:
98:87:8b:66:94:37:35:9b:a9:c9:79:11:35:ce:64:ec:88:32:
45:4b:14:12
-----BEGIN CERTIFICATE-----
MIIFUTCCBDmgAwIBAgISAYmGshvBcFJ4n1SF2/EvVxTzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3
NTJmZGUwHhcNMjMwNzI0MDY1OTI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NWZjMDNmNjA2OTU3NDFkMWI5ZWUyZGYxYjJkYWEzZGQyNTc2NzM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqZf1tX+bqoWSXQ29fPqWzlgC5PgZ
QVvflehYJqkuDa+B3NZkaDppY8Ku8bBqrxhGZCec1QnBBAOGYK8uxgt4/Fk2+8CV
nDmHa1YO7ajs4KXcrP+uz3H1L0wLqA6RTm2ml/kckUHYZa6RWRRrKRpgaDsmlO17
Cpp303/UWxtkcnBQ2f9Koe+d3Mw0lC36QXZVl39qzK4p5RKm++KhWhKPe+bOe3ZS
LxV4VzLWwSpn7oAH28Kr96ppXa1abwJkaGG3Y7KS7jeNOVCcjzAF71TsTrcsgv6S
fRB7TsorbgedHvFh5uWrbal/NDzaksg6CLmRxXUVcl7GxxAQk0VecIqHRQIDAQAB
o4ICXTCCAlkwHQYDVR0OBBYEFHX8A/YGlXQdG57i3xstqj3SV2c1MB8GA1UdIwQY
MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt
YTNjYTBkYjgzMjU0LzEvZGZ3RDlnYVZkQjBibnVMZkd5MnFQZEpYWnpVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0
LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHMGCCsGAQUFBwEHAQH/BGQwYjBgBAIAATBaAwQAAjj1AwQC
BbbMAwQCBfxkAwQABf33AwQAJd1dAwQALQvlAwQBLQ3gAwQALVabAwQCLVl8AwQA
LYNAAwQBLYNCAwQALYVKAwQAbUf8AwQAwg8kAwQB1FfUMA0GCSqGSIb3DQEBCwUA
A4IBAQBMGFzsL4rqdD62cMTu+yqv6JbExJWqqxU/jB+WXtirzbfUDWpWX4NXwz/C
4CRdOhE9z20wl0esb8P8xjAqC+HUeppFJVpYPh89J/uL4iEaw+2sYXvktuyhTUgF
Cqt57WZbRxR8hjiYDwQWs/LgOPp1wZVfEk/ss1XlHsOD/J+dF6rZrPaHrNtfh481
ml6B4s6QXf87+yHrGSn9mm2leFvsUFzTxsULHxm3CmoeZQF4viLbIwy0v5YxENDs
WCA1WzdUMC8yvJW1/UU6pdZuuiul4t9Lvmci0tp0Dei/VyavXJ7xkbnZIyAS362Y
h4tmlDc1m6nJeRE1zmTsiDJFSxQS
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:13 2024 by rpki-client on console-ams.rpki-client.org