Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/ED4hAb80x1ab5fZPu9h4uG_5Q7w.roa
File: ED4hAb80x1ab5fZPu9h4uG_5Q7w.roa (raw, json)
Hash identifier: HQa0yzEHOhXtBJeZ49d4ArB5/8hG13ITbNVKKLSeuHM=
Subject key identifier: 10:3E:21:01:BF:34:C7:56:9B:E5:F6:4F:BB:D8:78:B8:6F:F9:43:BC
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0189B1D2C1D43A5AF7D5C7BE11C0C196061A
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/ED4hAb80x1ab5fZPu9h4uG_5Q7w.roa
Signing time: Tue 01 Aug 2023 15:58:46 +0000
ROA not before: Tue 01 Aug 2023 15:58:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34450
IP address blocks: 89.43.42.0/24 maxlen: 24
89.43.43.0/24 maxlen: 24
89.43.44.0/24 maxlen: 24
89.43.40.0/24 maxlen: 24
93.114.187.0/24 maxlen: 24
86.106.80.0/24 maxlen: 24
89.43.46.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
89.43.73.0/24 maxlen: 24
89.39.252.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
188.240.14.0/24 maxlen: 24
85.204.125.0/24 maxlen: 24
85.204.127.0/24 maxlen: 24
93.114.99.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
89.33.163.0/24 maxlen: 24
89.37.136.0/24 maxlen: 24
89.45.34.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
188.215.72.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
188.215.73.0/24 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 04 Aug 2023 06:04:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b1:d2:c1:d4:3a:5a:f7:d5:c7:be:11:c0:c1:96:06:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Aug 1 15:58:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=103e2101bf34c7569be5f64fbbd878b86ff943bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:87:23:e6:34:84:ca:25:28:68:ac:5a:d1:a9:
ab:66:da:db:d0:a9:ac:bb:a6:f5:f5:ed:2a:61:a8:
4d:06:e8:aa:c7:68:0b:fd:62:eb:b4:32:bd:20:aa:
b8:ab:d4:7a:b3:a4:fd:b2:9e:b6:bd:36:cc:de:05:
05:d7:70:32:11:1b:89:9d:58:6c:8a:ac:5f:49:3a:
bd:08:fb:30:31:aa:10:f1:47:06:e1:1c:5d:48:e2:
52:a6:15:20:a7:a7:20:76:d1:3e:0b:e4:1a:63:28:
cc:32:22:55:41:ef:ca:c9:5c:a4:30:9c:23:9b:54:
7d:b8:7c:d3:6b:3e:db:bb:ae:4d:61:db:24:fe:0f:
70:25:3c:6a:fb:33:9d:95:5e:ff:2d:ab:8d:68:ac:
24:b6:99:f0:39:21:e5:33:10:dd:a7:2c:d9:52:47:
3c:5b:52:f9:11:de:d5:8c:b7:5f:c2:9e:0b:3d:ac:
f6:fb:80:7f:d9:82:b7:6a:bf:65:7c:6c:de:e7:e5:
4d:08:79:51:d7:a9:0a:dd:4b:a6:ec:0f:7d:01:e8:
35:67:2b:19:40:91:e0:82:6d:c6:d7:2d:59:01:6e:
d9:82:c9:b2:be:27:46:0e:23:5b:db:6f:f7:1e:1f:
ca:9c:43:be:26:d5:09:74:33:bf:76:8f:b3:3b:77:
2d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:3E:21:01:BF:34:C7:56:9B:E5:F6:4F:BB:D8:78:B8:6F:F9:43:BC
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/ED4hAb80x1ab5fZPu9h4uG_5Q7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.125.0/24
85.204.127.0/24
86.106.80.0/24
89.33.163.0/24
89.34.8.0/21
89.37.136.0/24
89.39.252.0/24
89.43.40.0/24
89.43.42.0-89.43.44.255
89.43.46.0/24
89.43.73.0/24
89.45.34.0/24
93.113.158.0/24
93.114.55.0/24
93.114.99.0/24
93.114.187.0/24
188.213.18.0/24
188.215.72.0/23
188.240.14.0/24
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
95:c2:04:33:84:44:bb:5a:cf:2a:10:32:a0:d5:c2:82:e8:44:
fc:a4:0f:c2:ac:11:0c:83:46:4f:a8:8d:71:aa:ba:f0:de:27:
74:8a:e7:d9:a0:3c:17:49:4b:1f:52:e6:94:b1:c1:2f:c0:0c:
d9:ef:40:9b:e7:e1:46:63:e7:5e:0d:be:3a:1b:2e:ae:e2:af:
37:0e:5f:56:ee:c2:18:d3:ae:1b:b2:54:23:9c:be:b4:36:21:
4e:4a:bf:d5:6b:85:7d:6c:3e:8a:f6:43:24:4f:3e:63:cf:41:
cb:f2:45:7b:f5:c9:e7:aa:91:77:00:0b:c5:01:37:f8:56:e4:
28:2e:9e:62:75:30:f4:a3:3a:21:0c:ac:fe:2b:46:d1:d4:c2:
4c:2f:f7:32:72:16:64:d2:2d:a3:39:36:80:e7:42:bd:41:7a:
d1:73:c1:61:9a:b0:f5:e1:42:29:67:7f:a0:de:46:e7:a1:7d:
c1:f1:61:3a:4f:f1:58:ac:87:fc:0c:b4:a9:61:64:e7:84:e9:
89:3d:58:48:44:af:4b:bf:f9:9c:8e:cf:4b:25:78:64:d2:f4:
b0:91:eb:13:7e:ae:93:73:2d:20:a1:8b:75:1a:f0:2c:45:96:
0f:b6:a9:23:a3:52:83:52:7e:fc:59:f2:c3:93:50:e4:c7:b3:
85:21:39:7a
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgISAYmx0sHUOlr31ce+EcDBlgYaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlNTg5NTJkMzkzOTM1ZjBkM2JjZTgxNGZkOTE3OGQwNDY5
M2FlYjkwHhcNMjMwODAxMTU1ODQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMDNlMjEwMWJmMzRjNzU2OWJlNWY2NGZiYmQ4NzhiODZmZjk0M2JjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArocj5jSEyiUoaKxa0amrZtrb0Kms
u6b19e0qYahNBuiqx2gL/WLrtDK9IKq4q9R6s6T9sp62vTbM3gUF13AyERuJnVhs
iqxfSTq9CPswMaoQ8UcG4RxdSOJSphUgp6cgdtE+C+QaYyjMMiJVQe/KyVykMJwj
m1R9uHzTaz7bu65NYdsk/g9wJTxq+zOdlV7/LauNaKwktpnwOSHlMxDdpyzZUkc8
W1L5Ed7VjLdfwp4LPaz2+4B/2YK3ar9lfGze5+VNCHlR16kK3Uum7A99Aeg1ZysZ
QJHggm3G1y1ZAW7ZgsmyvidGDiNb22/3Hh/KnEO+JtUJdDO/do+zO3ct4QIDAQAB
o4ICkjCCAo4wHQYDVR0OBBYEFBA+IQG/NMdWm+X2T7vYeLhv+UO8MB8GA1UdIwQY
MBaAFP5YlS05OTXw07zoFP2ReNBGk665MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2xpVkxUazVOZkRUdk9nVV9aRjQwRWFUcnJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9iMjZhYTgtYWNlNy00ZmE2LTllOGUt
NWQ0OGI2NWNlNTczLzEvRUQ0aEFiODB4MWFiNWZaUHU5aDR1R181UTd3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC9iMjZhYTgtYWNlNy00ZmE2LTllOGUtNWQ0OGI2NWNlNTcz
LzEvX2xpVkxUazVOZkRUdk9nVV9aRjQwRWFUcnJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGnBggrBgEFBQcBBwEB/wSBlzCBlDCBgAQCAAEwegMEAFXM
fQMEAFXMfwMEAFZqUAMEAFkhowMEA1kiCAMEAFkliAMEAFkn/AMEAFkrKDAMAwQB
WSsqAwQAWSssAwQAWSsuAwQAWStJAwQAWS0iAwQAXXGeAwQAXXI3AwQAXXJjAwQA
XXK7AwQAvNUSAwQBvNdIAwQAvPAOMA8EAgACMAkDBwAqBbaAAAEwDQYJKoZIhvcN
AQELBQADggEBAJXCBDOERLtazyoQMqDVwoLoRPykD8KsEQyDRk+ojXGquvDeJ3SK
59mgPBdJSx9S5pSxwS/ADNnvQJvn4UZj514NvjobLq7irzcOX1buwhjTrhuyVCOc
vrQ2IU5Kv9VrhX1sPor2QyRPPmPPQcvyRXv1yeeqkXcAC8UBN/hW5CgunmJ1MPSj
OiEMrP4rRtHUwkwv9zJyFmTSLaM5NoDnQr1BetFzwWGasPXhQilnf6DeRuehfcHx
YTpP8Vish/wMtKlhZOeE6Yk9WEhEr0u/+ZyOz0sleGTS9LCR6xN+rpNzLSChi3Ua
8CxFlg+2qSOjUoNSfvxZ8sOTUOTHs4UhOXo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:38 2024 by rpki-client on console-ams.rpki-client.org