Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/W8D4nEZNXK8jawTMaAGQEB7545E.roa
File: W8D4nEZNXK8jawTMaAGQEB7545E.roa (raw, json)
Hash identifier: 0+l0oVK9RVzt4/oWbJOLHwqTjC9Dq/v8MUKMCHdLyF4=
Subject key identifier: 5B:C0:F8:9C:46:4D:5C:AF:23:6B:04:CC:68:01:90:10:1E:F9:E3:91
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018AD6B393FD74805014774FDC24FE23061C
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/W8D4nEZNXK8jawTMaAGQEB7545E.roa
Signing time: Wed 27 Sep 2023 12:53:27 +0000
ROA not before: Wed 27 Sep 2023 12:53:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 77.83.39.0/24 maxlen: 24
85.209.120.0/23 maxlen: 24
45.94.171.0/24 maxlen: 24
2.56.110.0/24 maxlen: 24
45.138.183.0/24 maxlen: 24
195.62.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Sep 2023 13:58:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d6:b3:93:fd:74:80:50:14:77:4f:dc:24:fe:23:06:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Sep 27 12:53:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5bc0f89c464d5caf236b04cc680190101ef9e391
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b8:ed:63:97:c0:a5:83:fa:9c:98:a4:2d:23:
05:46:7c:ec:94:af:32:09:4a:1e:1d:26:fd:86:4e:
21:14:1e:df:71:2b:cb:fd:35:e7:c8:b2:b1:3e:19:
20:41:03:05:99:5c:08:5c:2c:ec:a8:9b:09:df:2c:
b8:34:e6:de:1b:23:7b:e3:ed:00:f0:60:71:e0:2d:
fe:f8:31:1f:97:2c:d6:92:35:b8:05:4a:d5:84:b3:
78:4c:66:ed:31:71:5c:c1:a7:72:e6:5b:63:d2:71:
77:b1:7b:4b:82:a0:72:12:51:57:3c:24:e9:79:a9:
ba:46:72:dc:92:24:82:5a:23:35:b6:a5:54:8f:25:
8e:99:f3:aa:57:94:48:f3:ea:a4:97:7e:0f:9f:38:
72:f0:63:13:9e:cd:6b:6a:05:26:66:f4:b8:ae:9d:
6f:01:03:ff:24:bd:17:9f:e3:e7:a8:0f:5a:45:89:
c4:92:da:d7:ef:03:5b:c4:bf:c8:7a:bf:e0:08:41:
5a:f5:76:41:8b:df:11:08:60:f8:39:42:73:20:3f:
5b:cd:d9:e8:f2:93:d1:17:77:a0:99:39:c8:6b:62:
03:b7:5c:65:f4:35:04:be:a0:ab:0b:53:99:cb:66:
a3:ce:53:6c:b5:47:22:c9:6d:3b:b9:47:86:67:a0:
52:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:C0:F8:9C:46:4D:5C:AF:23:6B:04:CC:68:01:90:10:1E:F9:E3:91
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/W8D4nEZNXK8jawTMaAGQEB7545E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.110.0/24
45.94.171.0/24
45.138.183.0/24
77.83.39.0/24
85.209.120.0/23
195.62.24.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:58:f7:5b:70:30:2e:85:b1:06:ca:fc:8a:fb:0b:cb:c2:07:
08:23:98:86:fc:53:2f:42:37:6a:a1:3c:07:27:a3:26:23:f6:
5a:88:f3:e3:80:86:cd:11:ae:fd:8f:67:84:48:20:28:aa:ff:
94:2d:21:41:95:6b:1a:8c:d5:8d:b9:ff:64:c1:35:8f:ea:34:
b7:4a:26:b9:03:53:a1:73:d9:be:69:9d:69:75:97:23:e7:43:
6f:a0:68:60:8f:01:28:46:3c:70:f1:81:45:f1:53:6b:4c:32:
d7:9c:6e:d8:63:c9:94:a2:00:8e:3d:ee:fe:7c:b3:11:eb:4b:
d8:96:27:7a:7f:23:52:0e:31:ae:23:1b:f5:7c:87:d0:b4:82:
ae:9f:2e:8b:be:b0:be:dc:16:c8:16:65:9f:78:8e:bc:00:eb:
ac:ac:ec:25:27:6c:51:1e:19:5e:c3:34:57:87:ff:ce:0f:e9:
0b:d1:5a:39:41:9c:cd:fd:16:61:2b:62:d6:e3:4d:32:04:ac:
45:01:60:71:0a:63:b8:2e:1f:06:ae:e6:c9:c4:b6:dc:72:ad:
83:b9:ca:78:53:72:7c:ca:c6:44:04:bd:8a:38:67:91:a3:eb:
0d:e0:6e:49:69:c8:26:1a:81:1a:bb:74:a6:44:e0:06:7a:ee:
9a:3e:6a:35
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAYrWs5P9dIBQFHdP3CT+IwYcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMmE0NzhiYjBiMDhlNjYxYjBiMmY5ZmJlODkzNWJjOWMy
YTI4YTEwHhcNMjMwOTI3MTI1MzI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YmMwZjg5YzQ2NGQ1Y2FmMjM2YjA0Y2M2ODAxOTAxMDFlZjllMzkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt7jtY5fApYP6nJikLSMFRnzslK8y
CUoeHSb9hk4hFB7fcSvL/TXnyLKxPhkgQQMFmVwIXCzsqJsJ3yy4NObeGyN74+0A
8GBx4C3++DEflyzWkjW4BUrVhLN4TGbtMXFcwady5ltj0nF3sXtLgqByElFXPCTp
eam6RnLckiSCWiM1tqVUjyWOmfOqV5RI8+qkl34Pnzhy8GMTns1ragUmZvS4rp1v
AQP/JL0Xn+PnqA9aRYnEktrX7wNbxL/Ier/gCEFa9XZBi98RCGD4OUJzID9bzdno
8pPRF3egmTnIa2IDt1xl9DUEvqCrC1OZy2ajzlNstUciyW07uUeGZ6BSoQIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFFvA+JxGTVyvI2sEzGgBkBAe+eORMB8GA1UdIwQY
MBaAFJ0qR4uwsI5mGwsvn76JNbycKiihMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMt
ZWVmMzUxMWY2YzYwLzEvVzhENG5FWk5YSzhqYXdUTWFBR1FFQjc1NDVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMtZWVmMzUxMWY2YzYw
LzEvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAAjhuAwQA
LV6rAwQALYq3AwQATVMnAwQBVdF4AwQAwz4YMA0GCSqGSIb3DQEBCwUAA4IBAQAL
WPdbcDAuhbEGyvyK+wvLwgcII5iG/FMvQjdqoTwHJ6MmI/ZaiPPjgIbNEa79j2eE
SCAoqv+ULSFBlWsajNWNuf9kwTWP6jS3Sia5A1Ohc9m+aZ1pdZcj50NvoGhgjwEo
Rjxw8YFF8VNrTDLXnG7YY8mUogCOPe7+fLMR60vYlid6fyNSDjGuIxv1fIfQtIKu
ny6LvrC+3BbIFmWfeI68AOusrOwlJ2xRHhlewzRXh//OD+kL0Vo5QZzN/RZhK2LW
400yBKxFAWBxCmO4Lh8GrubJxLbccq2Ducp4U3J8ysZEBL2KOGeRo+sN4G5Jacgm
GoEau3SmROAGeu6aPmo1
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:18 2024 by rpki-client on console-ams.rpki-client.org