Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/gq0jrPjdJ87lCZ-YttOHzVCU4vM.roa
File: gq0jrPjdJ87lCZ-YttOHzVCU4vM.roa (raw, json)
Hash identifier: UQgIbJAuxbGXNRZpUDuwofMIg4W0DSV1e7h3t3s0tTw=
Subject key identifier: 82:AD:23:AC:F8:DD:27:CE:E5:09:9F:98:B6:D3:87:CD:50:94:E2:F3
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 018FCA320998B1AA589A55ADA97E1275B0E2
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/gq0jrPjdJ87lCZ-YttOHzVCU4vM.roa
Signing time: Thu 30 May 2024 15:50:27 +0000
ROA not before: Thu 30 May 2024 15:50:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 265770
IP address blocks: 5.253.228.0/22 maxlen: 22
45.15.244.0/22 maxlen: 22
45.91.84.0/22 maxlen: 22
45.128.20.0/22 maxlen: 22
45.151.196.0/22 maxlen: 22
89.32.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Jul 2024 10:40:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ca:32:09:98:b1:aa:58:9a:55:ad:a9:7e:12:75:b0:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: May 30 15:50:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82ad23acf8dd27cee5099f98b6d387cd5094e2f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d9:e2:28:b1:82:82:49:52:fe:e6:b1:8b:cc:
c2:9f:7a:10:4d:46:7e:f2:bd:fe:47:37:8d:d4:a0:
5e:07:b7:d1:7c:f4:a5:65:44:a1:e2:e9:9e:b8:d9:
a8:92:76:5c:a9:c4:94:b8:ba:a2:b6:62:17:60:14:
54:ff:c4:f1:a7:d5:82:eb:c1:a1:fa:43:d6:1c:88:
ce:ed:3c:4b:26:fd:6e:ac:89:b4:26:a6:33:dd:32:
09:5b:e0:85:86:4c:e0:89:08:c9:45:8e:d2:ec:1b:
09:dd:8c:fa:dd:0d:0a:ba:a3:43:d0:5a:72:b1:dd:
61:17:07:91:b2:64:bd:42:f1:f0:f8:7e:52:9c:c4:
51:aa:d1:d5:02:06:3a:1f:c8:42:ef:c7:d5:f0:61:
af:01:07:40:65:52:99:c4:69:de:43:4c:64:8b:7b:
a7:03:65:4d:2a:e1:a6:7a:08:aa:a4:31:ad:69:ec:
de:36:08:2d:96:0d:66:84:15:10:60:34:e9:75:85:
f5:70:3d:f5:46:34:9d:4a:e5:1b:ce:36:43:ba:f3:
38:80:49:63:9e:45:4a:77:4a:08:3b:fd:c2:34:07:
7e:61:83:9c:95:6d:37:c8:42:20:dd:dc:08:0a:d3:
06:6e:43:25:a2:4f:30:3c:4c:54:8c:b2:a7:f3:5e:
97:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:AD:23:AC:F8:DD:27:CE:E5:09:9F:98:B6:D3:87:CD:50:94:E2:F3
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/gq0jrPjdJ87lCZ-YttOHzVCU4vM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.228.0/22
45.15.244.0/22
45.91.84.0/22
45.128.20.0/22
45.151.196.0/22
89.32.126.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:3a:f1:60:95:15:d0:42:b1:0c:c1:ef:aa:4c:0a:c3:37:cd:
88:20:09:a8:e9:45:4e:6c:64:8e:3e:30:40:b7:4d:57:c2:8c:
65:91:d4:2b:2c:42:be:66:a9:0d:e2:aa:63:c2:72:04:b1:13:
b5:74:76:b6:8c:c3:02:d5:6b:42:35:6f:f2:97:ac:05:4c:71:
b7:e3:c8:56:8c:50:1d:31:1f:ad:7a:1f:c7:c2:fb:76:b5:9d:
e7:80:5a:9c:39:6a:f8:17:d7:49:f1:fa:c6:b9:9d:47:7d:fd:
43:21:99:8a:4b:cb:c3:fb:0e:67:0f:3e:25:9f:54:d9:6f:76:
cd:4f:ac:53:3a:47:59:a4:3e:b2:2d:6d:4f:18:7e:a8:ad:21:
f8:79:18:55:1f:dc:f7:13:79:a8:ab:3d:0a:19:4b:f9:93:4a:
b3:1b:55:9c:9a:2b:17:0e:e9:06:26:32:5d:e0:b1:d0:02:8b:
67:74:b3:67:96:d5:39:5a:2e:77:62:78:3a:16:98:a4:4b:f6:
47:aa:46:dc:28:06:da:9e:89:f2:d8:d9:3d:c0:0c:68:40:28:
2c:51:52:97:cc:ee:72:04:05:47:90:2c:61:a3:e7:e5:21:7d:
b9:1d:a4:52:33:f0:ec:48:1e:29:ad:c4:06:0b:87:c1:f4:43:
19:89:24:60
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAY/KMgmYsapYmlWtqX4SdbDiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiYWIzMDY4Mzg1OWVjN2UwMjA2ZmU5MjY1MzYzZThlMzk3
MWE5YTgwHhcNMjQwNTMwMTU1MDI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MmFkMjNhY2Y4ZGQyN2NlZTUwOTlmOThiNmQzODdjZDUwOTRlMmYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1tniKLGCgklS/uaxi8zCn3oQTUZ+
8r3+RzeN1KBeB7fRfPSlZUSh4umeuNmoknZcqcSUuLqitmIXYBRU/8Txp9WC68Gh
+kPWHIjO7TxLJv1urIm0JqYz3TIJW+CFhkzgiQjJRY7S7BsJ3Yz63Q0KuqND0Fpy
sd1hFweRsmS9QvHw+H5SnMRRqtHVAgY6H8hC78fV8GGvAQdAZVKZxGneQ0xki3un
A2VNKuGmegiqpDGtaezeNggtlg1mhBUQYDTpdYX1cD31RjSdSuUbzjZDuvM4gElj
nkVKd0oIO/3CNAd+YYOclW03yEIg3dwICtMGbkMlok8wPExUjLKn816XCQIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFIKtI6z43SfO5QmfmLbTh81QlOLzMB8GA1UdIwQY
MBaAFIurMGg4Wex+Agb+kmU2Po45camoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTZzd2FEaFo3SDRDQnY2U1pUWS1qamx4cWFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi84MWZkMWEtNDdhNy00NWQ4LWJlNzQt
M2FjOWU1NmMzMDg5LzEvZ3EwanJQamRKODdsQ1otWXR0T0h6VkNVNHZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi84MWZkMWEtNDdhNy00NWQ4LWJlNzQtM2FjOWU1NmMzMDg5
LzEvaTZzd2FEaFo3SDRDQnY2U1pUWS1qamx4cWFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQCBf3kAwQC
LQ/0AwQCLVtUAwQCLYAUAwQCLZfEAwQAWSB+MA0GCSqGSIb3DQEBCwUAA4IBAQBa
OvFglRXQQrEMwe+qTArDN82IIAmo6UVObGSOPjBAt01XwoxlkdQrLEK+ZqkN4qpj
wnIEsRO1dHa2jMMC1WtCNW/yl6wFTHG348hWjFAdMR+teh/Hwvt2tZ3ngFqcOWr4
F9dJ8frGuZ1Hff1DIZmKS8vD+w5nDz4ln1TZb3bNT6xTOkdZpD6yLW1PGH6orSH4
eRhVH9z3E3moqz0KGUv5k0qzG1WcmisXDukGJjJd4LHQAotndLNnltU5Wi53Yng6
FpikS/ZHqkbcKAbanony2Nk9wAxoQCgsUVKXzO5yBAVHkCxho+flIX25HaRSM/Ds
SB4prcQGC4fB9EMZiSRg
-----END CERTIFICATE-----
Generated at Fri Jul 12 13:01:34 2024 by rpki-client on console-fra.rpki-client.org