Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/HaCwHfVrrCYMOxhvFWzhXQ1sqnc.roa
File: HaCwHfVrrCYMOxhvFWzhXQ1sqnc.roa (raw, json)
Hash identifier: YxKYZrLGA1tlAYT9gbw9sdhAwhXrkO8GEHj7YZu+syg=
Subject key identifier: 1D:A0:B0:1D:F5:6B:AC:26:0C:3B:18:6F:15:6C:E1:5D:0D:6C:AA:77
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 018CC94DFE640A8692A9355385443EDCA06E
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/HaCwHfVrrCYMOxhvFWzhXQ1sqnc.roa
Signing time: Tue 02 Jan 2024 08:33:00 +0000
ROA not before: Tue 02 Jan 2024 08:33:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34450
IP address blocks: 93.114.187.0/24 maxlen: 24
86.106.80.0/24 maxlen: 24
89.43.45.0/24 maxlen: 24
86.106.104.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
89.43.73.0/24 maxlen: 24
89.39.252.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
188.240.14.0/24 maxlen: 24
85.204.127.0/24 maxlen: 24
93.114.99.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
89.33.163.0/24 maxlen: 24
89.37.136.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
188.215.73.0/24 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 08 Jan 2024 14:02:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:fe:64:0a:86:92:a9:35:53:85:44:3e:dc:a0:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jan 2 08:33:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1da0b01df56bac260c3b186f156ce15d0d6caa77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:70:ab:e6:69:f0:ba:9c:88:23:b1:5c:1e:21:
26:43:55:e4:bc:aa:4d:6e:e7:1a:70:76:e1:35:6d:
6c:83:8c:93:b6:16:4e:14:c9:71:82:6a:43:03:e7:
99:4f:ed:b5:8c:b5:bc:fc:01:73:0b:12:46:6f:7a:
b0:f8:66:cb:4d:12:d3:0a:c8:05:dc:2e:ec:61:0c:
95:4a:da:07:d2:1f:b7:81:c7:4a:31:4a:66:b4:34:
6b:7c:05:8d:1d:0d:d7:7a:7d:05:27:f7:3d:63:75:
9d:14:5b:fa:e0:04:f8:7c:c1:5f:53:34:1a:d7:ea:
e1:fb:5b:2d:2c:b8:c5:21:6e:3a:ed:50:a3:95:14:
1e:9f:e5:43:a9:a7:47:92:fa:68:e4:ef:1a:90:41:
5f:8e:a9:04:55:db:2d:05:f7:12:29:be:49:6c:59:
9e:b7:26:1b:08:bb:c7:03:73:62:c9:06:28:9c:f3:
ce:28:1b:27:38:f4:3e:cf:19:95:f8:46:78:81:ee:
4f:dd:4f:26:82:6f:5c:2e:9d:4e:31:f2:96:b9:fc:
0e:ae:b7:20:c6:a3:a0:82:a3:21:28:fa:59:40:54:
36:3c:e4:c9:ca:2f:d6:67:3e:96:c9:07:2d:37:03:
8e:22:57:e6:f5:1b:6a:33:ba:4e:de:57:dc:29:ff:
18:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A0:B0:1D:F5:6B:AC:26:0C:3B:18:6F:15:6C:E1:5D:0D:6C:AA:77
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/HaCwHfVrrCYMOxhvFWzhXQ1sqnc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.127.0/24
86.106.80.0/24
86.106.104.0/24
89.33.163.0/24
89.34.8.0/21
89.37.136.0/24
89.39.252.0/24
89.43.45.0/24
89.43.73.0/24
93.113.158.0/24
93.114.55.0/24
93.114.99.0/24
93.114.187.0/24
188.213.18.0/24
188.215.72.0/23
188.240.14.0/24
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
70:87:50:fd:0c:f5:a5:dc:03:a9:ec:a4:74:cb:16:d0:13:25:
85:0c:a6:68:54:a7:32:f4:e6:e1:57:f6:05:13:07:e7:3a:ac:
a8:27:9f:3b:37:8a:75:5e:86:57:92:be:b5:0f:b8:dd:6e:04:
d5:de:5e:87:21:01:1f:0b:43:ea:90:37:b4:41:c4:51:7d:8c:
70:0c:3a:ae:a4:88:a8:26:1c:c9:0d:4f:4a:ae:c7:7c:ee:f0:
7f:95:2f:81:3b:68:27:f6:2c:a5:0c:e2:8a:e7:e4:eb:4b:0d:
34:6a:47:70:66:ec:28:8e:5d:6d:93:9e:86:20:a9:96:46:49:
c7:ba:44:88:b8:9a:d6:17:3c:36:4a:1c:d7:ea:89:ae:95:4e:
cb:2e:9f:87:ca:af:1e:4a:41:7a:fb:89:c7:da:2c:25:7e:ad:
f8:53:6a:98:d5:9e:48:f0:80:36:85:6d:95:10:a9:01:f3:f9:
20:45:1b:29:e0:41:a1:48:ab:09:50:14:4a:86:6a:9d:9f:01:
08:8e:9b:76:e1:e7:ba:51:1c:e4:0c:60:ea:78:39:ef:c2:53:
bf:cd:4c:03:24:49:80:0a:9f:f5:06:66:31:f9:c2:c7:57:21:
1e:2d:ec:a3:fa:b7:bc:5c:d4:2b:3e:dd:ff:66:8a:e1:19:ce:
dc:f8:cc:ea
-----BEGIN CERTIFICATE-----
MIIFaTCCBFGgAwIBAgISAYzJTf5kCoaSqTVThUQ+3KBuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlNTg5NTJkMzkzOTM1ZjBkM2JjZTgxNGZkOTE3OGQwNDY5
M2FlYjkwHhcNMjQwMTAyMDgzMzAwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZGEwYjAxZGY1NmJhYzI2MGMzYjE4NmYxNTZjZTE1ZDBkNmNhYTc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmHCr5mnwupyII7FcHiEmQ1XkvKpN
bucacHbhNW1sg4yTthZOFMlxgmpDA+eZT+21jLW8/AFzCxJGb3qw+GbLTRLTCsgF
3C7sYQyVStoH0h+3gcdKMUpmtDRrfAWNHQ3Xen0FJ/c9Y3WdFFv64AT4fMFfUzQa
1+rh+1stLLjFIW467VCjlRQen+VDqadHkvpo5O8akEFfjqkEVdstBfcSKb5JbFme
tyYbCLvHA3NiyQYonPPOKBsnOPQ+zxmV+EZ4ge5P3U8mgm9cLp1OMfKWufwOrrcg
xqOggqMhKPpZQFQ2POTJyi/WZz6WyQctNwOOIlfm9RtqM7pO3lfcKf8YNwIDAQAB
o4ICdTCCAnEwHQYDVR0OBBYEFB2gsB31a6wmDDsYbxVs4V0NbKp3MB8GA1UdIwQY
MBaAFP5YlS05OTXw07zoFP2ReNBGk665MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2xpVkxUazVOZkRUdk9nVV9aRjQwRWFUcnJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9iMjZhYTgtYWNlNy00ZmE2LTllOGUt
NWQ0OGI2NWNlNTczLzEvSGFDd0hmVnJyQ1lNT3hodkZXemhYUTFzcW5jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC9iMjZhYTgtYWNlNy00ZmE2LTllOGUtNWQ0OGI2NWNlNTcz
LzEvX2xpVkxUazVOZkRUdk9nVV9aRjQwRWFUcnJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGKBggrBgEFBQcBBwEB/wR7MHkwZgQCAAEwYAMEAFXMfwME
AFZqUAMEAFZqaAMEAFkhowMEA1kiCAMEAFkliAMEAFkn/AMEAFkrLQMEAFkrSQME
AF1xngMEAF1yNwMEAF1yYwMEAF1yuwMEALzVEgMEAbzXSAMEALzwDjAPBAIAAjAJ
AwcAKgW2gAABMA0GCSqGSIb3DQEBCwUAA4IBAQBwh1D9DPWl3AOp7KR0yxbQEyWF
DKZoVKcy9ObhV/YFEwfnOqyoJ587N4p1XoZXkr61D7jdbgTV3l6HIQEfC0PqkDe0
QcRRfYxwDDqupIioJhzJDU9Krsd87vB/lS+BO2gn9iylDOKK5+TrSw00akdwZuwo
jl1tk56GIKmWRknHukSIuJrWFzw2ShzX6omulU7LLp+Hyq8eSkF6+4nH2iwlfq34
U2qY1Z5I8IA2hW2VEKkB8/kgRRsp4EGhSKsJUBRKhmqdnwEIjpt24ee6URzkDGDq
eDnvwlO/zUwDJEmACp/1BmYx+cLHVyEeLeyj+re8XNQrPt3/ZorhGc7c+Mzq
-----END CERTIFICATE-----
Generated at Mon Jan 8 18:32:36 2024 by rpki-client on console-fra.rpki-client.org