Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/beef2f-ec5a-49ff-975b-8d34f557822a/1/RWTxWHvbLOyR9HXQUqjQeaZNWQw.roa
File: RWTxWHvbLOyR9HXQUqjQeaZNWQw.roa (raw, json)
Hash identifier: e6nKEOGCqXXNJ3isDxrdvsiJ4NWqbcGjaGDdMEefDzY=
Subject key identifier: 45:64:F1:58:7B:DB:2C:EC:91:F4:75:D0:52:A8:D0:79:A6:4D:59:0C
Certificate issuer: /CN=9770bf2375d59ba81a9955c07a2f0a23264b61a8
Certificate serial: 018C3A8A9B71EADBA413A71231678466B8F5
Authority key identifier: 97:70:BF:23:75:D5:9B:A8:1A:99:55:C0:7A:2F:0A:23:26:4B:61:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l3C_I3XVm6gamVXAei8KIyZLYag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/beef2f-ec5a-49ff-975b-8d34f557822a/1/RWTxWHvbLOyR9HXQUqjQeaZNWQw.roa
Signing time: Tue 05 Dec 2023 15:13:31 +0000
ROA not before: Tue 05 Dec 2023 15:13:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50964
IP address blocks: 194.59.39.0/24 maxlen: 24
194.76.38.0/24 maxlen: 24
194.0.93.0/24 maxlen: 24
194.76.39.0/24 maxlen: 24
194.0.94.0/24 maxlen: 24
194.0.95.0/24 maxlen: 24
194.0.92.0/24 maxlen: 24
194.0.92.0/22 maxlen: 22
194.76.38.0/23 maxlen: 23
194.59.38.0/24 maxlen: 24
194.59.36.0/24 maxlen: 24
194.59.36.0/22 maxlen: 22
194.59.37.0/24 maxlen: 24
91.205.76.0/22 maxlen: 22
195.189.92.0/22 maxlen: 22
195.189.92.0/24 maxlen: 24
195.189.93.0/24 maxlen: 24
195.189.94.0/24 maxlen: 24
195.189.95.0/24 maxlen: 24
194.127.180.0/24 maxlen: 24
2001:67c:2dac::/48 maxlen: 48
2001:67c:2da8::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3a:8a:9b:71:ea:db:a4:13:a7:12:31:67:84:66:b8:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9770bf2375d59ba81a9955c07a2f0a23264b61a8
Validity
Not Before: Dec 5 15:13:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4564f1587bdb2cec91f475d052a8d079a64d590c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a6:55:ab:b5:b8:40:94:51:33:6f:a9:ad:a1:
cc:d6:45:e4:da:a1:11:27:c3:ea:07:e6:4c:b5:a7:
dc:d5:cc:b6:f7:dd:1b:aa:55:03:fb:91:08:4b:44:
bb:27:df:10:ad:0e:8f:36:67:6a:54:23:a4:d7:c0:
67:ff:a5:0f:3f:d0:97:5c:50:7d:92:76:e7:b0:e5:
cf:4f:96:d9:cf:97:16:56:5f:65:88:eb:25:02:ba:
14:ae:6d:c6:8d:ff:04:96:fa:ed:93:bc:6d:89:39:
59:d5:9c:d6:cd:9f:46:1c:26:9b:2e:aa:d3:4e:d1:
cc:59:fa:7d:d7:29:18:be:79:d9:7f:b2:da:68:1f:
8d:f8:3d:67:f6:df:16:67:1a:2e:38:b6:68:e7:b7:
af:2f:10:20:fa:ba:12:17:d5:47:51:7f:f7:e8:31:
35:a0:d5:07:80:ca:c8:14:30:ed:f8:32:0a:40:ec:
87:55:6c:22:24:ff:e1:3d:ec:43:49:12:ec:c3:a6:
8f:84:97:f1:ad:b3:53:bc:a5:f5:12:e5:e8:09:83:
25:d4:ee:48:84:e3:e3:57:8d:af:ef:d9:24:c0:f7:
7e:56:1f:38:8f:28:45:13:f5:1f:a5:38:ed:f8:36:
67:30:8a:55:ef:fa:cb:c9:83:1c:40:d2:2c:d1:98:
97:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:64:F1:58:7B:DB:2C:EC:91:F4:75:D0:52:A8:D0:79:A6:4D:59:0C
X509v3 Authority Key Identifier:
keyid:97:70:BF:23:75:D5:9B:A8:1A:99:55:C0:7A:2F:0A:23:26:4B:61:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l3C_I3XVm6gamVXAei8KIyZLYag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/beef2f-ec5a-49ff-975b-8d34f557822a/1/RWTxWHvbLOyR9HXQUqjQeaZNWQw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/beef2f-ec5a-49ff-975b-8d34f557822a/1/l3C_I3XVm6gamVXAei8KIyZLYag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.76.0/22
194.0.92.0/22
194.59.36.0/22
194.76.38.0/23
194.127.180.0/24
195.189.92.0/22
IPv6:
2001:67c:2da8::/48
2001:67c:2dac::/48
Signature Algorithm: sha256WithRSAEncryption
43:c2:97:e5:e2:12:83:15:46:e0:ef:47:1b:ca:49:2e:89:93:
79:0b:2a:5d:88:fe:67:34:27:cd:94:10:29:d1:42:e5:ae:e3:
8f:80:4c:2c:4f:9b:34:8c:80:5c:47:6c:91:14:45:29:e9:bf:
36:1b:24:5c:98:ec:0b:54:56:9b:a0:41:94:3c:8b:98:96:a9:
b4:9b:d4:b2:db:96:95:cb:68:99:6c:38:29:40:f4:03:04:ff:
b9:f9:99:ad:a8:de:c8:46:43:f1:c3:b7:93:35:e1:3d:17:fb:
e2:13:35:99:c7:1c:02:48:07:02:8a:71:8e:7d:20:99:da:df:
4a:a5:5c:bf:02:92:d4:39:e4:ac:7a:e7:f9:37:df:4e:14:47:
09:1f:3a:55:a9:e7:f7:30:b5:12:f1:a6:f5:71:25:69:7d:dd:
95:62:49:f1:45:22:09:b4:e8:c4:0b:53:92:b4:2d:67:63:cc:
c3:cd:a0:dc:54:ae:46:c1:df:af:e3:3f:81:0b:d6:48:74:0f:
2d:60:bb:1e:49:60:b1:30:61:52:25:7c:26:35:a3:85:a7:90:
e4:ca:fb:83:12:6f:75:89:11:71:97:aa:76:8d:2e:15:e4:f9:
f2:75:85:a8:d2:e3:db:de:d7:8c:4b:33:9b:c7:cf:9d:6d:82:
72:b3:ed:59
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgISAYw6iptx6tukE6cSMWeEZrj1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3NzBiZjIzNzVkNTliYTgxYTk5NTVjMDdhMmYwYTIzMjY0
YjYxYTgwHhcNMjMxMjA1MTUxMzMxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NTY0ZjE1ODdiZGIyY2VjOTFmNDc1ZDA1MmE4ZDA3OWE2NGQ1OTBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlKZVq7W4QJRRM2+praHM1kXk2qER
J8PqB+ZMtafc1cy2990bqlUD+5EIS0S7J98QrQ6PNmdqVCOk18Bn/6UPP9CXXFB9
knbnsOXPT5bZz5cWVl9liOslAroUrm3Gjf8Elvrtk7xtiTlZ1ZzWzZ9GHCabLqrT
TtHMWfp91ykYvnnZf7LaaB+N+D1n9t8WZxouOLZo57evLxAg+roSF9VHUX/36DE1
oNUHgMrIFDDt+DIKQOyHVWwiJP/hPexDSRLsw6aPhJfxrbNTvKX1EuXoCYMl1O5I
hOPjV42v79kkwPd+Vh84jyhFE/UfpTjt+DZnMIpV7/rLyYMcQNIs0ZiXGQIDAQAB
o4ICQTCCAj0wHQYDVR0OBBYEFEVk8Vh72yzskfR10FKo0HmmTVkMMB8GA1UdIwQY
MBaAFJdwvyN11ZuoGplVwHovCiMmS2GoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbDNDX0kzWFZtNmdhbVZYQWVpOEtJeVpMWWFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9iZWVmMmYtZWM1YS00OWZmLTk3NWIt
OGQzNGY1NTc4MjJhLzEvUldUeFdIdmJMT3lSOUhYUVVxalFlYVpOV1F3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi9iZWVmMmYtZWM1YS00OWZmLTk3NWItOGQzNGY1NTc4MjJh
LzEvbDNDX0kzWFZtNmdhbVZYQWVpOEtJeVpMWWFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFcGCCsGAQUFBwEHAQH/BEgwRjAqBAIAATAkAwQCW81MAwQC
wgBcAwQCwjskAwQBwkwmAwQAwn+0AwQCw71cMBgEAgACMBIDBwAgAQZ8LagDBwAg
AQZ8LawwDQYJKoZIhvcNAQELBQADggEBAEPCl+XiEoMVRuDvRxvKSS6Jk3kLKl2I
/mc0J82UECnRQuWu44+ATCxPmzSMgFxHbJEURSnpvzYbJFyY7AtUVpugQZQ8i5iW
qbSb1LLblpXLaJlsOClA9AME/7n5ma2o3shGQ/HDt5M14T0X++ITNZnHHAJIBwKK
cY59IJna30qlXL8CktQ55Kx65/k3304URwkfOlWp5/cwtRLxpvVxJWl93ZViSfFF
Igm06MQLU5K0LWdjzMPNoNxUrkbB36/jP4EL1kh0Dy1gux5JYLEwYVIlfCY1o4Wn
kOTK+4MSb3WJEXGXqnaNLhXk+fJ1hajS49ve14xLM5vHz51tgnKz7Vk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:43 2024 by rpki-client on console-fra.rpki-client.org