Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/553Nfezy6Se-vDWVylARl3Vc85w.roa
File: 553Nfezy6Se-vDWVylARl3Vc85w.roa (raw, json)
Hash identifier: kLKnxadOTNULoVb+nmbxXl58PEkRpR6Cg3IP7wWkcg8=
Subject key identifier: E7:9D:CD:7D:EC:F2:E9:27:BE:BC:35:95:CA:50:11:97:75:5C:F3:9C
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0185F34CADB659DE8E0CB3C16716647A6A89
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/553Nfezy6Se-vDWVylARl3Vc85w.roa
Signing time: Fri 27 Jan 2023 12:56:06 +0000
ROA not before: Fri 27 Jan 2023 12:56:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34450
IP address blocks: 89.43.42.0/24 maxlen: 24
89.43.44.0/24 maxlen: 24
89.43.40.0/24 maxlen: 24
89.43.41.0/24 maxlen: 24
86.106.80.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
89.43.73.0/24 maxlen: 24
89.39.252.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
188.240.14.0/24 maxlen: 24
85.204.125.0/24 maxlen: 24
85.204.127.0/24 maxlen: 24
93.114.99.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
89.33.163.0/24 maxlen: 24
89.37.136.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
188.215.73.0/24 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 03 Feb 2023 19:34:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:f3:4c:ad:b6:59:de:8e:0c:b3:c1:67:16:64:7a:6a:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jan 27 12:56:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e79dcd7decf2e927bebc3595ca501197755cf39c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b0:ae:ec:ee:c3:2e:d7:0d:70:be:c1:c6:c3:
1a:c9:e5:77:a2:a3:12:70:b5:23:11:0a:61:b7:e4:
55:76:f6:92:f5:6e:d7:5f:2d:cc:06:47:93:ce:3c:
5d:b8:d1:32:b0:5b:55:8d:be:58:49:d9:8f:ac:4d:
8b:b2:af:0e:6f:b8:f2:ec:6d:63:68:6e:75:4c:3a:
a8:18:b9:17:59:4a:95:47:73:62:9b:9c:a3:49:91:
23:3c:24:04:d3:07:91:31:de:df:d9:bc:46:26:2e:
5c:83:f1:63:25:69:39:53:ed:33:c3:84:95:c4:45:
29:f1:c0:87:21:4b:83:59:fb:85:4f:64:c9:5d:36:
2b:83:ed:7c:48:1f:ab:81:a5:dc:47:e5:e4:98:25:
56:7d:8b:59:f0:cb:80:02:af:87:cd:34:ae:8f:cf:
cd:cc:4f:18:d7:74:46:48:23:34:2e:ef:77:19:57:
91:9f:de:95:8a:41:b1:ec:27:4c:aa:70:ef:32:91:
1a:81:c7:b1:b8:aa:e6:8f:40:1f:64:9a:b6:c9:ce:
48:e4:5e:a1:d6:99:b5:7c:7c:4b:d3:b2:07:89:3b:
5a:77:1e:f4:b5:10:0a:87:e6:b7:48:c4:7d:ee:77:
09:21:b8:42:32:ed:9f:4b:76:ea:35:0a:64:8e:44:
d2:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:9D:CD:7D:EC:F2:E9:27:BE:BC:35:95:CA:50:11:97:75:5C:F3:9C
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/553Nfezy6Se-vDWVylARl3Vc85w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.125.0/24
85.204.127.0/24
86.106.80.0/24
89.33.163.0/24
89.34.8.0/21
89.37.136.0/24
89.39.252.0/24
89.43.40.0-89.43.42.255
89.43.44.0/24
89.43.73.0/24
93.113.158.0/24
93.114.55.0/24
93.114.99.0/24
188.213.18.0/24
188.215.72.0/23
188.240.14.0/24
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
6c:19:29:3a:48:57:6b:0a:d5:fd:06:e2:6e:31:6d:d2:e8:ab:
70:1d:6a:fb:fb:98:0e:93:73:18:c0:4c:86:8e:20:b4:c3:54:
c6:6a:f8:b3:53:f3:ed:7c:65:bf:42:8b:ba:91:6f:66:60:93:
23:79:4b:b6:6c:a8:d5:69:e7:d5:9a:5e:84:38:cd:bf:d5:87:
26:5c:5b:81:7d:ec:82:0b:68:c7:f9:00:d6:cd:0e:a3:28:64:
36:1d:a2:d8:68:1a:d0:72:2c:27:ec:d4:7d:92:4b:11:60:a6:
cc:81:f1:9c:93:f9:67:f3:10:ef:11:e5:8d:fe:93:87:c8:97:
f5:9e:c8:e4:ab:3f:85:aa:94:f7:a7:85:8c:ad:62:28:5a:4d:
cd:0a:3c:f0:58:4d:cf:49:84:a2:81:58:1e:79:56:3f:a6:90:
6f:89:b5:41:69:48:59:5b:05:16:49:9a:97:a6:81:b9:49:88:
1f:2b:b3:02:1b:d1:db:63:83:e7:c0:9f:c9:84:65:11:dd:93:
e0:48:52:ba:4c:cb:39:b4:b0:0f:1c:3d:47:60:1e:b5:bd:8c:
c2:bc:33:8f:0e:00:c5:a2:75:9e:13:00:60:df:9d:e6:64:bf:
df:71:ff:39:65:c4:af:b4:59:28:ef:12:79:b3:85:1b:38:1c:
85:89:e9:0f
-----BEGIN CERTIFICATE-----
MIIFczCCBFugAwIBAgISAYXzTK22Wd6ODLPBZxZkemqJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlNTg5NTJkMzkzOTM1ZjBkM2JjZTgxNGZkOTE3OGQwNDY5
M2FlYjkwHhcNMjMwMTI3MTI1NjA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNzlkY2Q3ZGVjZjJlOTI3YmViYzM1OTVjYTUwMTE5Nzc1NWNmMzljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqrCu7O7DLtcNcL7BxsMayeV3oqMS
cLUjEQpht+RVdvaS9W7XXy3MBkeTzjxduNEysFtVjb5YSdmPrE2Lsq8Ob7jy7G1j
aG51TDqoGLkXWUqVR3Nim5yjSZEjPCQE0weRMd7f2bxGJi5cg/FjJWk5U+0zw4SV
xEUp8cCHIUuDWfuFT2TJXTYrg+18SB+rgaXcR+XkmCVWfYtZ8MuAAq+HzTSuj8/N
zE8Y13RGSCM0Lu93GVeRn96VikGx7CdMqnDvMpEagcexuKrmj0AfZJq2yc5I5F6h
1pm1fHxL07IHiTtadx70tRAKh+a3SMR97ncJIbhCMu2fS3bqNQpkjkTSewIDAQAB
o4ICfzCCAnswHQYDVR0OBBYEFOedzX3s8uknvrw1lcpQEZd1XPOcMB8GA1UdIwQY
MBaAFP5YlS05OTXw07zoFP2ReNBGk665MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2xpVkxUazVOZkRUdk9nVV9aRjQwRWFUcnJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9iMjZhYTgtYWNlNy00ZmE2LTllOGUt
NWQ0OGI2NWNlNTczLzEvNTUzTmZlenk2U2UtdkRXVnlsQVJsM1ZjODV3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC9iMjZhYTgtYWNlNy00ZmE2LTllOGUtNWQ0OGI2NWNlNTcz
LzEvX2xpVkxUazVOZkRUdk9nVV9aRjQwRWFUcnJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGUBggrBgEFBQcBBwEB/wSBhDCBgTBuBAIAATBoAwQAVcx9
AwQAVcx/AwQAVmpQAwQAWSGjAwQDWSIIAwQAWSWIAwQAWSf8MAwDBANZKygDBABZ
KyoDBABZKywDBABZK0kDBABdcZ4DBABdcjcDBABdcmMDBAC81RIDBAG810gDBAC8
8A4wDwQCAAIwCQMHACoFtoAAATANBgkqhkiG9w0BAQsFAAOCAQEAbBkpOkhXawrV
/QbibjFt0uircB1q+/uYDpNzGMBMho4gtMNUxmr4s1Pz7Xxlv0KLupFvZmCTI3lL
tmyo1Wnn1ZpehDjNv9WHJlxbgX3sggtox/kA1s0OoyhkNh2i2Gga0HIsJ+zUfZJL
EWCmzIHxnJP5Z/MQ7xHljf6Th8iX9Z7I5Ks/haqU96eFjK1iKFpNzQo88FhNz0mE
ooFYHnlWP6aQb4m1QWlIWVsFFkmal6aBuUmIHyuzAhvR22OD58CfyYRlEd2T4EhS
ukzLObSwDxw9R2Aetb2Mwrwzjw4AxaJ1nhMAYN+d5mS/33H/OWXEr7RZKO8SebOF
GzgchYnpDw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:29 2024 by rpki-client on console-fra.rpki-client.org