Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/rsRsdQX_gn6So_2-7F1xusYAcJ4.roa
File: rsRsdQX_gn6So_2-7F1xusYAcJ4.roa (raw, json)
Hash identifier: EkdyP1+wldQZHyPBWsy+k6rsR5Sg9KOnoV6rXYCLwaI=
Subject key identifier: AE:C4:6C:75:05:FF:82:7E:92:A3:FD:BE:EC:5D:71:BA:C6:00:70:9E
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 018A5F828895AF2527430AFCEBCA8843F0D5
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/rsRsdQX_gn6So_2-7F1xusYAcJ4.roa
Signing time: Mon 04 Sep 2023 09:25:04 +0000
ROA not before: Mon 04 Sep 2023 09:25:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34450
IP address blocks: 89.43.42.0/24 maxlen: 24
89.43.43.0/24 maxlen: 24
89.43.44.0/24 maxlen: 24
89.43.40.0/24 maxlen: 24
89.43.46.0/24 maxlen: 24
89.43.73.0/24 maxlen: 24
89.39.252.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
188.240.14.0/24 maxlen: 24
93.114.99.0/24 maxlen: 24
89.33.163.0/24 maxlen: 24
89.45.34.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
188.215.72.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
188.215.73.0/24 maxlen: 24
93.114.187.0/24 maxlen: 24
86.106.80.0/24 maxlen: 24
86.106.104.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
93.114.171.0/24 maxlen: 24
85.204.125.0/24 maxlen: 24
85.204.127.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
89.37.136.0/24 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 15 Sep 2023 09:55:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5f:82:88:95:af:25:27:43:0a:fc:eb:ca:88:43:f0:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Sep 4 09:25:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aec46c7505ff827e92a3fdbeec5d71bac600709e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:46:81:8d:0f:4d:35:57:32:da:42:c4:9d:28:
63:c0:83:ea:c5:26:84:5a:40:58:bc:33:99:4f:fb:
eb:4f:14:06:2a:53:26:cb:7c:dc:3f:74:a6:90:76:
42:a2:83:3f:e6:9d:49:7d:52:a3:11:c5:dd:1f:a6:
9d:0f:45:6c:96:90:4f:38:ec:15:93:03:87:47:1f:
9a:0e:6d:52:79:ca:5b:5a:c2:70:08:13:76:eb:c0:
53:a7:c2:7b:bd:63:e3:03:06:21:0b:8b:14:d7:d0:
21:65:ee:a4:3a:74:2a:5c:be:b4:50:77:72:87:f3:
4f:70:27:d4:7e:51:9e:a2:0d:1b:89:21:c1:2c:55:
33:ea:3e:c5:91:3e:b5:ae:de:c5:32:d5:b2:82:c7:
42:da:7f:78:3a:9b:0a:30:35:ab:3c:0a:00:90:26:
49:da:d5:cb:88:40:f7:26:f8:df:c4:bc:ec:f3:c1:
e8:60:8f:b4:bf:36:ea:ec:00:52:2e:cd:1e:f4:f9:
69:72:db:d1:21:ee:e8:5c:66:23:8a:7f:01:63:90:
74:53:c5:a4:5f:7f:37:cf:8c:6f:45:c8:66:a0:91:
fd:d9:7d:76:46:7d:da:b6:ab:41:a0:d2:d3:40:e9:
fc:20:3e:88:9a:ec:1c:e3:b9:4c:8c:86:b7:0d:3c:
11:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:C4:6C:75:05:FF:82:7E:92:A3:FD:BE:EC:5D:71:BA:C6:00:70:9E
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/rsRsdQX_gn6So_2-7F1xusYAcJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.125.0/24
85.204.127.0/24
86.106.80.0/24
86.106.104.0/24
89.33.163.0/24
89.34.8.0/21
89.37.136.0/24
89.39.252.0/24
89.43.40.0/24
89.43.42.0-89.43.44.255
89.43.46.0/24
89.43.73.0/24
89.45.34.0/24
93.113.158.0/24
93.114.55.0/24
93.114.99.0/24
93.114.171.0/24
93.114.187.0/24
188.213.18.0/24
188.215.72.0/23
188.240.14.0/24
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
09:37:df:0d:df:0d:97:ac:89:f8:ce:eb:8c:15:cb:cc:ab:90:
9f:3c:1a:42:c0:f3:b8:59:0b:83:f5:fc:29:9c:91:64:f8:68:
b1:1d:10:ac:7e:4f:03:ab:92:66:e0:b3:44:06:2a:f5:e6:15:
28:c2:a4:bf:d6:54:95:d1:69:96:91:be:ab:68:68:be:00:77:
f5:af:f3:be:4c:df:09:d4:6b:90:34:67:f9:32:89:c8:e2:30:
da:7d:cd:88:f6:5a:85:ce:ca:b7:ce:d3:ab:36:9d:ed:a6:31:
2a:4c:82:76:c3:6e:36:0d:86:6b:db:1a:11:21:6f:9d:61:fd:
4a:0d:62:da:9f:21:89:49:f3:5b:15:ff:8d:fd:b1:dd:3d:5f:
8b:fc:4a:d0:34:89:07:ef:76:56:4d:48:ad:ec:b0:46:b1:7e:
54:51:2c:bf:21:59:a5:fc:53:9e:c1:e8:d8:74:1a:b7:df:04:
c0:62:21:61:35:d5:f2:19:66:21:db:6f:78:61:92:c2:ad:39:
d5:11:83:c8:3c:32:25:59:7d:1c:78:21:e1:f0:86:67:41:79:
81:11:09:c1:6f:f7:be:1b:d1:7a:ea:bb:d9:18:87:36:67:54:
a7:e0:53:e0:fa:4e:e4:0e:28:d0:ed:eb:d8:b8:74:f5:6d:8a:
34:ba:2d:c3
-----BEGIN CERTIFICATE-----
MIIFkzCCBHugAwIBAgISAYpfgoiVryUnQwr868qIQ/DVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlNTg5NTJkMzkzOTM1ZjBkM2JjZTgxNGZkOTE3OGQwNDY5
M2FlYjkwHhcNMjMwOTA0MDkyNTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZWM0NmM3NTA1ZmY4MjdlOTJhM2ZkYmVlYzVkNzFiYWM2MDA3MDllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuEaBjQ9NNVcy2kLEnShjwIPqxSaE
WkBYvDOZT/vrTxQGKlMmy3zcP3SmkHZCooM/5p1JfVKjEcXdH6adD0VslpBPOOwV
kwOHRx+aDm1SecpbWsJwCBN268BTp8J7vWPjAwYhC4sU19AhZe6kOnQqXL60UHdy
h/NPcCfUflGeog0biSHBLFUz6j7FkT61rt7FMtWygsdC2n94OpsKMDWrPAoAkCZJ
2tXLiED3JvjfxLzs88HoYI+0vzbq7ABSLs0e9PlpctvRIe7oXGYjin8BY5B0U8Wk
X383z4xvRchmoJH92X12Rn3atqtBoNLTQOn8ID6Imuwc47lMjIa3DTwR+QIDAQAB
o4ICnzCCApswHQYDVR0OBBYEFK7EbHUF/4J+kqP9vuxdcbrGAHCeMB8GA1UdIwQY
MBaAFP5YlS05OTXw07zoFP2ReNBGk665MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2xpVkxUazVOZkRUdk9nVV9aRjQwRWFUcnJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9iMjZhYTgtYWNlNy00ZmE2LTllOGUt
NWQ0OGI2NWNlNTczLzEvcnNSc2RRWF9nbjZTb18yLTdGMXh1c1lBY0o0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC9iMjZhYTgtYWNlNy00ZmE2LTllOGUtNWQ0OGI2NWNlNTcz
LzEvX2xpVkxUazVOZkRUdk9nVV9aRjQwRWFUcnJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG0BggrBgEFBQcBBwEB/wSBpDCBoTCBjQQCAAEwgYYDBABV
zH0DBABVzH8DBABWalADBABWamgDBABZIaMDBANZIggDBABZJYgDBABZJ/wDBABZ
KygwDAMEAVkrKgMEAFkrLAMEAFkrLgMEAFkrSQMEAFktIgMEAF1xngMEAF1yNwME
AF1yYwMEAF1yqwMEAF1yuwMEALzVEgMEAbzXSAMEALzwDjAPBAIAAjAJAwcAKgW2
gAABMA0GCSqGSIb3DQEBCwUAA4IBAQAJN98N3w2XrIn4zuuMFcvMq5CfPBpCwPO4
WQuD9fwpnJFk+GixHRCsfk8Dq5Jm4LNEBir15hUowqS/1lSV0WmWkb6raGi+AHf1
r/O+TN8J1GuQNGf5MonI4jDafc2I9lqFzsq3ztOrNp3tpjEqTIJ2w242DYZr2xoR
IW+dYf1KDWLanyGJSfNbFf+N/bHdPV+L/ErQNIkH73ZWTUit7LBGsX5UUSy/IVml
/FOewejYdBq33wTAYiFhNdXyGWYh2294YZLCrTnVEYPIPDIlWX0ceCHh8IZnQXmB
EQnBb/e+G9F66rvZGIc2Z1Sn4FPg+k7kDijQ7evYuHT1bYo0ui3D
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:29 2024 by rpki-client on console-fra.rpki-client.org