Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/Cw8pv4Bmt0ua7T9sQJplhvS8asg.roa
File: Cw8pv4Bmt0ua7T9sQJplhvS8asg.roa (raw, json)
Hash identifier: yk6DkBhfjf8EFzvJfZnCiPPbAw/8Gif887WD//+1RJs=
Subject key identifier: 0B:0F:29:BF:80:66:B7:4B:9A:ED:3F:6C:40:9A:65:86:F4:BC:6A:C8
Certificate issuer: /CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Certificate serial: 0189AC02BAD521E1928BCE16351ABC596E11
Authority key identifier: C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/Cw8pv4Bmt0ua7T9sQJplhvS8asg.roa
Signing time: Mon 31 Jul 2023 12:53:27 +0000
ROA not before: Mon 31 Jul 2023 12:53:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48011
IP address blocks: 185.217.143.0/24 maxlen: 24
213.232.203.0/24 maxlen: 24
5.172.177.0/24 maxlen: 24
185.227.139.0/24 maxlen: 24
185.227.137.0/24 maxlen: 24
185.227.138.0/24 maxlen: 24
185.227.136.0/24 maxlen: 24
45.93.168.0/22 maxlen: 24
45.89.236.0/22 maxlen: 24
213.217.31.0/24 maxlen: 24
193.163.72.0/24 maxlen: 24
185.211.79.0/24 maxlen: 24
185.182.105.0/24 maxlen: 24
2a0c:6600:1::/48 maxlen: 48
2a0c:6600::/48 maxlen: 48
2a0c:6600:3::/48 maxlen: 48
2a0c:6600:4::/48 maxlen: 48
2a0c:6600:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 21 Aug 2023 06:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ac:02:ba:d5:21:e1:92:8b:ce:16:35:1a:bc:59:6e:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Validity
Not Before: Jul 31 12:53:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b0f29bf8066b74b9aed3f6c409a6586f4bc6ac8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f6:b6:e2:f4:07:fa:7b:bd:26:08:77:ab:51:
3b:eb:65:4a:68:e7:8a:da:53:c8:ee:51:f1:0b:19:
38:20:0b:ca:cd:a2:01:4f:5f:79:bc:4a:e5:9e:05:
e1:9d:71:50:e6:e1:2e:1d:c0:41:ed:76:09:a4:23:
67:89:43:03:4c:76:22:db:99:d4:bc:e7:15:35:21:
98:41:5c:c6:82:90:fd:f1:af:58:b9:bf:87:b6:3e:
fd:15:a9:32:18:87:0a:21:bb:12:b3:34:c4:93:4a:
48:b5:d8:a5:bd:3e:37:a2:47:0a:fc:bc:a4:fc:11:
a4:6d:ad:ca:58:8f:b3:ea:a8:9c:20:a2:50:26:a5:
61:7a:14:bc:b3:2f:30:b7:1d:e6:51:2c:7f:ed:fd:
5f:b1:4c:73:0a:a0:8a:1d:58:7f:8f:60:d9:c0:cc:
21:d8:c2:69:7b:77:47:04:63:ad:3f:3d:cf:1c:a3:
44:95:c0:27:2d:27:69:90:7d:d6:1f:23:23:74:40:
f0:30:9a:56:45:52:ec:6d:59:22:f9:46:a3:4c:71:
04:9c:76:cf:73:95:d5:aa:d0:58:ca:55:ec:00:0a:
a2:1e:56:34:94:8f:5f:16:a8:39:cc:83:33:d0:04:
3c:5e:4e:a9:94:32:bd:c3:38:e4:61:db:7b:1c:22:
97:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:0F:29:BF:80:66:B7:4B:9A:ED:3F:6C:40:9A:65:86:F4:BC:6A:C8
X509v3 Authority Key Identifier:
keyid:C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/Cw8pv4Bmt0ua7T9sQJplhvS8asg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/xZvR6MWPZBvZRDBfEcVO_l86DOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.177.0/24
45.89.236.0/22
45.93.168.0/22
185.182.105.0/24
185.211.79.0/24
185.217.143.0/24
185.227.136.0/22
193.163.72.0/24
213.217.31.0/24
213.232.203.0/24
IPv6:
2a0c:6600::-2a0c:6600:4:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
20:f4:82:18:7b:9e:59:cd:27:50:35:a9:85:ac:d9:86:bb:6d:
0d:ac:df:b4:ac:4b:e6:b9:78:d8:d7:7e:20:46:d9:35:2d:9e:
60:2b:6e:d1:f1:67:32:e6:72:7a:99:5c:c5:9c:d2:b5:ab:d3:
b1:48:56:65:63:f3:c1:94:7f:d4:5f:48:45:5b:c7:6e:01:65:
aa:b3:6b:2d:83:48:87:0d:79:f5:33:59:27:23:88:73:e6:eb:
53:09:e1:b2:d6:f2:e3:46:13:fd:0c:79:c6:ba:13:7b:61:88:
bf:45:00:ac:4b:7d:03:26:54:b4:7d:4d:e0:98:71:49:a6:a0:
f5:e0:b2:21:0d:99:a0:ac:c0:e5:13:d6:3a:a3:89:ba:33:f0:
87:5e:57:85:65:42:d7:2e:b7:a1:f0:3c:23:a5:04:36:4e:e4:
ce:4a:6b:8b:5b:cf:f6:82:f4:78:21:70:ed:be:1e:f9:73:9a:
d5:48:54:c8:0c:f4:bd:cb:54:17:5c:1f:05:44:18:6a:c6:30:
e5:63:0a:ef:60:d2:94:40:16:b9:6e:bf:56:40:11:c5:b2:8d:
47:b6:f6:c7:42:c3:15:ad:07:86:22:64:4d:4b:ed:f9:7d:97:
89:8f:81:d0:27:36:28:95:10:73:eb:f2:71:68:6b:d4:3e:60:
ff:aa:ba:19
-----BEGIN CERTIFICATE-----
MIIFTDCCBDSgAwIBAgISAYmsArrVIeGSi84WNRq8WW4RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1OWJkMWU4YzU4ZjY0MWJkOTQ0MzA1ZjExYzU0ZWZlNWYz
YTBjZTIwHhcNMjMwNzMxMTI1MzI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYjBmMjliZjgwNjZiNzRiOWFlZDNmNmM0MDlhNjU4NmY0YmM2YWM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApPa24vQH+nu9Jgh3q1E762VKaOeK
2lPI7lHxCxk4IAvKzaIBT195vErlngXhnXFQ5uEuHcBB7XYJpCNniUMDTHYi25nU
vOcVNSGYQVzGgpD98a9Yub+Htj79FakyGIcKIbsSszTEk0pItdilvT43okcK/Lyk
/BGkba3KWI+z6qicIKJQJqVhehS8sy8wtx3mUSx/7f1fsUxzCqCKHVh/j2DZwMwh
2MJpe3dHBGOtPz3PHKNElcAnLSdpkH3WHyMjdEDwMJpWRVLsbVki+UajTHEEnHbP
c5XVqtBYylXsAAqiHlY0lI9fFqg5zIMz0AQ8Xk6plDK9wzjkYdt7HCKX6wIDAQAB
o4ICWDCCAlQwHQYDVR0OBBYEFAsPKb+AZrdLmu0/bECaZYb0vGrIMB8GA1UdIwQY
MBaAFMWb0ejFj2Qb2UQwXxHFTv5fOgziMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveFp2UjZNV1BaQnZaUkRCZkVjVk9fbDg2RE9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9mZDg0NTctODEwZi00ZjdlLTllNTgt
NTZjYzM5ZGI2ZWQ2LzEvQ3c4cHY0Qm10MHVhN1Q5c1FKcGxodlM4YXNnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi9mZDg0NTctODEwZi00ZjdlLTllNTgtNTZjYzM5ZGI2ZWQ2
LzEveFp2UjZNV1BaQnZaUkRCZkVjVk9fbDg2RE9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG4GCCsGAQUFBwEHAQH/BF8wXTBCBAIAATA8AwQABayxAwQC
LVnsAwQCLV2oAwQAubZpAwQAudNPAwQAudmPAwQCueOIAwQAwaNIAwQA1dkfAwQA
1ejLMBcEAgACMBEwDwMEASoMZgMHACoMZgAABDANBgkqhkiG9w0BAQsFAAOCAQEA
IPSCGHueWc0nUDWphazZhrttDazftKxL5rl42Nd+IEbZNS2eYCtu0fFnMuZyeplc
xZzStavTsUhWZWPzwZR/1F9IRVvHbgFlqrNrLYNIhw159TNZJyOIc+brUwnhstby
40YT/Qx5xroTe2GIv0UArEt9AyZUtH1N4JhxSaag9eCyIQ2ZoKzA5RPWOqOJujPw
h15XhWVC1y63ofA8I6UENk7kzkpri1vP9oL0eCFw7b4e+XOa1UhUyAz0vctUF1wf
BUQYasYw5WMK72DSlEAWuW6/VkARxbKNR7b2x0LDFa0HhiJkTUvt+X2XiY+B0Cc2
KJUQc+vycWhr1D5g/6q6GQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:13 2024 by rpki-client on console-ams.rpki-client.org