Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/fU52lpHPyKTQ0AQfXg3dcqCHfk0.roa
File: fU52lpHPyKTQ0AQfXg3dcqCHfk0.roa (raw, json)
Hash identifier: 8oFXKJlQvHQxoT5WwD0EsIv6tBUNLpYEvUn4kIzS2dU=
Subject key identifier: 7D:4E:76:96:91:CF:C8:A4:D0:D0:04:1F:5E:0D:DD:72:A0:87:7E:4D
Certificate issuer: /CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Certificate serial: 0186EF121EBEA38D6DDBEC9787F676A6E032
Authority key identifier: 97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/fU52lpHPyKTQ0AQfXg3dcqCHfk0.roa
Signing time: Fri 17 Mar 2023 10:16:27 +0000
ROA not before: Fri 17 Mar 2023 10:16:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47787
IP address blocks: 193.163.151.0/24 maxlen: 24
188.93.192.0/21 maxlen: 24
188.93.198.0/24 maxlen: 24
188.93.199.0/24 maxlen: 24
185.112.251.0/24 maxlen: 24
185.166.144.0/24 maxlen: 24
2a0d:82c0::/29 maxlen: 48
2a11:c00::/29 maxlen: 48
2a0f:8900::/29 maxlen: 29
2a0d:82c7:9::/48 maxlen: 48
2a0f:d300::/29 maxlen: 29
2a0e:5f00::/29 maxlen: 48
2a0b:e740::/29 maxlen: 29
2a0f:7700::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 26 May 2023 11:33:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ef:12:1e:be:a3:8d:6d:db:ec:97:87:f6:76:a6:e0:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Validity
Not Before: Mar 17 10:16:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d4e769691cfc8a4d0d0041f5e0ddd72a0877e4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a6:98:07:bf:2a:a3:04:ab:ee:6a:da:cf:ae:
bd:53:b8:8e:f6:fa:f6:de:f8:02:9f:11:17:7c:9e:
ce:18:0a:c6:f3:db:dd:cf:4a:e7:63:f1:25:f9:a6:
8a:96:d0:48:d0:34:99:9a:94:09:e0:8e:4f:b2:75:
9e:8c:2f:31:23:10:d7:e5:97:57:3c:82:ac:13:b1:
1c:64:05:80:0b:b1:04:c4:a4:ea:a7:54:f0:d3:45:
87:d9:9f:03:7f:7b:73:3e:17:0e:83:cc:d5:eb:cf:
73:19:c9:9f:a0:e8:4f:45:60:31:39:30:c3:76:5a:
bd:13:2a:a9:4c:78:78:13:0b:51:fe:68:39:07:25:
7a:c8:e1:28:ee:48:22:eb:80:e6:80:f3:17:56:eb:
cc:c0:51:e4:9a:32:a3:80:bc:6e:60:b0:23:17:5e:
1e:64:0c:9a:94:79:a4:30:6d:0c:b9:ce:05:97:21:
7f:b0:e6:3b:ea:3b:8d:33:1b:15:67:f3:54:a3:ad:
40:f6:3c:cd:9d:c8:d1:18:5d:43:f3:5e:42:f4:f9:
92:b4:c1:26:af:60:30:bf:ed:82:3d:97:4e:fa:b0:
e2:58:45:57:14:9a:a7:1a:e8:d4:91:0f:46:4e:17:
c0:d6:b8:75:43:ac:c9:98:7a:c6:3a:59:90:4c:58:
70:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:4E:76:96:91:CF:C8:A4:D0:D0:04:1F:5E:0D:DD:72:A0:87:7E:4D
X509v3 Authority Key Identifier:
keyid:97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/fU52lpHPyKTQ0AQfXg3dcqCHfk0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/l59cqMM_E0w8FX1IucKuTpG2ML8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.251.0/24
185.166.144.0/24
188.93.192.0/21
193.163.151.0/24
IPv6:
2a0b:e740::/29
2a0d:82c0::/29
2a0e:5f00::/29
2a0f:7700::/29
2a0f:8900::/29
2a0f:d300::/29
2a11:c00::/29
Signature Algorithm: sha256WithRSAEncryption
a8:52:8a:71:de:c0:13:7d:d4:61:d0:a7:fc:73:0e:b8:93:d6:
85:63:04:2d:35:01:e5:83:9a:32:c8:10:5a:37:33:2a:2d:b3:
b7:6c:87:d1:fd:89:bc:ba:bf:3c:9d:e3:fa:b0:7a:b8:88:20:
71:5b:7d:76:0f:16:08:4d:5f:2d:89:a5:e7:6d:6a:7e:b4:45:
de:26:63:fa:e6:af:ba:29:0f:f7:fd:c7:6e:e4:6c:b2:b2:d0:
a0:c4:02:a3:39:a8:5c:82:42:b9:a4:df:fd:4a:c6:7b:4a:36:
8e:60:af:13:5d:50:3a:15:00:d6:4a:cb:6c:28:51:86:ba:83:
39:3d:d9:eb:ae:25:8e:0b:17:f2:57:2b:03:fa:13:b4:70:e6:
54:38:42:0b:84:6b:c4:e6:00:ed:a7:e0:28:92:3a:cb:33:ab:
f1:a0:af:a2:25:dc:84:e6:0f:1d:70:47:88:b8:c1:1e:09:14:
7a:d4:a0:ee:92:40:fe:5d:ab:9d:29:cf:e2:ab:da:41:47:12:
ca:9c:eb:b8:d6:dc:66:c2:5e:f3:95:9f:f8:48:0f:3c:12:aa:
d2:5a:e1:ca:5a:2c:97:f7:78:93:6f:ec:5e:4c:34:09:ef:90:
62:2e:c6:fc:b1:55:75:28:b4:c7:fe:54:7e:88:24:0c:5c:c3:
5e:42:fd:87
-----BEGIN CERTIFICATE-----
MIIFSDCCBDCgAwIBAgISAYbvEh6+o41t2+yXh/Z2puAyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3OWY1Y2E4YzMzZjEzNGMzYzE1N2Q0OGI5YzJhZTRlOTFi
NjMwYmYwHhcNMjMwMzE3MTAxNjI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZDRlNzY5NjkxY2ZjOGE0ZDBkMDA0MWY1ZTBkZGQ3MmEwODc3ZTRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi6aYB78qowSr7mraz669U7iO9vr2
3vgCnxEXfJ7OGArG89vdz0rnY/El+aaKltBI0DSZmpQJ4I5PsnWejC8xIxDX5ZdX
PIKsE7EcZAWAC7EExKTqp1Tw00WH2Z8Df3tzPhcOg8zV689zGcmfoOhPRWAxOTDD
dlq9EyqpTHh4EwtR/mg5ByV6yOEo7kgi64DmgPMXVuvMwFHkmjKjgLxuYLAjF14e
ZAyalHmkMG0Muc4FlyF/sOY76juNMxsVZ/NUo61A9jzNncjRGF1D815C9PmStMEm
r2Awv+2CPZdO+rDiWEVXFJqnGujUkQ9GThfA1rh1Q6zJmHrGOlmQTFhwMwIDAQAB
o4ICVDCCAlAwHQYDVR0OBBYEFH1OdpaRz8ik0NAEH14N3XKgh35NMB8GA1UdIwQY
MBaAFJefXKjDPxNMPBV9SLnCrk6RtjC/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbDU5Y3FNTV9FMHc4RlgxSXVjS3VUcEcyTUw4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy9mNjU2MTAtNTlmNi00YWQ2LWE5ZDgt
MTQ3MGFjMzY0ZGQyLzEvZlU1MmxwSFB5S1RRMEFRZlhnM2RjcUNIZmswLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy9mNjU2MTAtNTlmNi00YWQ2LWE5ZDgtMTQ3MGFjMzY0ZGQy
LzEvbDU5Y3FNTV9FMHc4RlgxSXVjS3VUcEcyTUw4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGoGCCsGAQUFBwEHAQH/BFswWTAeBAIAATAYAwQAuXD7AwQA
uaaQAwQDvF3AAwQAwaOXMDcEAgACMDEDBQMqC+dAAwUDKg2CwAMFAyoOXwADBQMq
D3cAAwUDKg+JAAMFAyoP0wADBQMqEQwAMA0GCSqGSIb3DQEBCwUAA4IBAQCoUopx
3sATfdRh0Kf8cw64k9aFYwQtNQHlg5oyyBBaNzMqLbO3bIfR/Ym8ur88neP6sHq4
iCBxW312DxYITV8tiaXnbWp+tEXeJmP65q+6KQ/3/cdu5GyystCgxAKjOahcgkK5
pN/9SsZ7SjaOYK8TXVA6FQDWSstsKFGGuoM5PdnrriWOCxfyVysD+hO0cOZUOEIL
hGvE5gDtp+AokjrLM6vxoK+iJdyE5g8dcEeIuMEeCRR61KDukkD+XaudKc/iq9pB
RxLKnOu41txmwl7zlZ/4SA88EqrSWuHKWiyX93iTb+xeTDQJ75BiLsb8sVV1KLTH
/lR+iCQMXMNeQv2H
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:29 2024 by rpki-client on console-fra.rpki-client.org