Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/8b0-8uhmql8RPpqx3zlQVTJuCMQ.roa
File: 8b0-8uhmql8RPpqx3zlQVTJuCMQ.roa (raw, json)
Hash identifier: qDTqhyb23qPF8aMLSUyluo1MCFLfLbVzueKBHmFgACY=
Subject key identifier: F1:BD:3E:F2:E8:66:AA:5F:11:3E:9A:B1:DF:39:50:55:32:6E:08:C4
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018A4A7EE4204DC07CEEEE0BD04405C4B8CE
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/8b0-8uhmql8RPpqx3zlQVTJuCMQ.roa
Signing time: Thu 31 Aug 2023 07:29:04 +0000
ROA not before: Thu 31 Aug 2023 07:29:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.155.255.0/24 maxlen: 24
185.199.212.0/24 maxlen: 24
185.199.213.0/24 maxlen: 24
185.199.151.0/24 maxlen: 24
185.250.26.0/24 maxlen: 24
45.155.252.0/24 maxlen: 24
194.146.92.0/24 maxlen: 24
194.146.93.0/24 maxlen: 24
185.225.170.0/24 maxlen: 24
185.225.168.0/24 maxlen: 24
185.225.169.0/24 maxlen: 24
79.98.246.0/23 maxlen: 24
79.98.244.0/23 maxlen: 24
185.221.24.0/24 maxlen: 24
185.221.26.0/23 maxlen: 24
185.221.25.0/24 maxlen: 24
176.125.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Sep 2023 21:45:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4a:7e:e4:20:4d:c0:7c:ee:ee:0b:d0:44:05:c4:b8:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Aug 31 07:29:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f1bd3ef2e866aa5f113e9ab1df395055326e08c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:99:fc:09:88:2e:00:59:0b:55:c5:5c:63:d2:
f4:a3:d7:d8:bf:0d:2e:fb:ab:9e:13:cf:b7:1b:b7:
9f:e9:85:04:09:69:b7:13:71:97:89:55:ea:84:c4:
06:ac:9d:bf:5b:5c:1e:6b:e9:b2:a3:e1:23:3b:d8:
ad:3e:45:79:64:27:80:a9:be:39:66:c5:2b:69:58:
64:79:0a:be:c0:4f:85:ba:5d:4e:6d:33:0c:99:3b:
bd:4a:b7:34:8d:0f:7f:bc:fd:47:af:b5:54:18:2e:
c9:dc:7b:81:d9:d6:2f:ad:2b:70:4f:cb:f4:cf:dc:
d4:10:fc:8d:b0:87:e3:f9:2e:96:11:e3:79:fb:8a:
4b:c1:c5:1e:2d:52:6b:aa:a6:d7:13:96:fc:e2:23:
46:3c:0b:02:a5:80:5b:2c:ac:36:80:90:0c:30:40:
21:1c:91:2a:84:7c:09:29:5b:a1:42:9f:12:f5:0d:
87:2f:04:7b:d0:b1:de:95:27:f4:b9:f2:0b:16:d7:
83:43:a7:b9:46:e5:1c:a8:0b:6f:d3:4a:27:51:c5:
e6:f1:07:a3:80:67:1c:eb:14:6c:60:ca:e6:45:56:
1b:d8:e0:9a:58:aa:d2:ba:57:b0:f1:95:5f:9e:6b:
f8:af:70:59:6c:31:58:2e:5c:99:19:84:b2:c8:25:
c4:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:BD:3E:F2:E8:66:AA:5F:11:3E:9A:B1:DF:39:50:55:32:6E:08:C4
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/8b0-8uhmql8RPpqx3zlQVTJuCMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.252.0/24
45.155.255.0/24
79.98.244.0/22
176.125.250.0/24
185.199.151.0/24
185.199.212.0/23
185.221.24.0/22
185.225.168.0-185.225.170.255
185.250.26.0/24
194.146.92.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:fe:ce:da:9f:35:43:be:1a:f7:93:06:98:f7:05:9e:aa:f6:
85:b2:93:46:d9:83:79:37:0b:76:e3:75:cf:dc:aa:7f:29:dc:
78:64:c5:08:79:74:16:56:24:b5:57:ee:56:62:89:2e:58:f8:
78:ff:78:67:15:06:a7:58:3f:69:43:6f:73:09:c2:05:0b:d1:
b6:98:ff:e5:7a:09:d0:5a:d2:9a:e5:4b:a1:db:8e:86:89:f5:
ee:71:0e:59:9f:2f:97:52:d4:91:08:3a:09:24:dc:59:93:6e:
e4:bd:5d:8f:f0:86:0d:4a:a9:a1:d2:a1:3f:7d:0f:0e:9c:bb:
d1:b3:10:cb:7f:5a:f9:1c:da:9e:ab:c0:9e:c5:b8:b4:0f:47:
60:ce:d3:4f:62:d2:80:aa:fd:4c:f1:09:eb:29:6a:af:19:64:
a0:e3:aa:e9:b9:4c:4c:6a:a2:ce:e6:bf:b5:60:7a:e1:a4:a8:
ad:60:f8:69:f0:a6:7b:37:c4:aa:28:d4:6b:14:87:8e:26:3c:
2f:ff:e9:a4:ec:22:da:e5:7b:f1:3e:fc:e4:49:fe:b0:33:dd:
94:35:78:d1:bc:b8:a9:fe:20:48:22:25:df:6f:f5:a7:d7:01:
dc:ca:fd:53:4a:74:0e:ac:ce:65:50:90:d0:fa:bf:2f:1a:38:
c7:b1:2c:13
-----BEGIN CERTIFICATE-----
MIIFOzCCBCOgAwIBAgISAYpKfuQgTcB87u4L0EQFxLjOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz
YWE5YjMwHhcNMjMwODMxMDcyOTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMWJkM2VmMmU4NjZhYTVmMTEzZTlhYjFkZjM5NTA1NTMyNmUwOGM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzZn8CYguAFkLVcVcY9L0o9fYvw0u
+6ueE8+3G7ef6YUECWm3E3GXiVXqhMQGrJ2/W1wea+myo+EjO9itPkV5ZCeAqb45
ZsUraVhkeQq+wE+Ful1ObTMMmTu9Src0jQ9/vP1Hr7VUGC7J3HuB2dYvrStwT8v0
z9zUEPyNsIfj+S6WEeN5+4pLwcUeLVJrqqbXE5b84iNGPAsCpYBbLKw2gJAMMEAh
HJEqhHwJKVuhQp8S9Q2HLwR70LHelSf0ufILFteDQ6e5RuUcqAtv00onUcXm8Qej
gGcc6xRsYMrmRVYb2OCaWKrSulew8ZVfnmv4r3BZbDFYLlyZGYSyyCXEMwIDAQAB
o4ICRzCCAkMwHQYDVR0OBBYEFPG9PvLoZqpfET6asd85UFUybgjEMB8GA1UdIwQY
MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt
MGFlMmU5MjJhMjkyLzEvOGIwLTh1aG1xbDhSUHBxeDN6bFFWVEp1Q01RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky
LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMF0GCCsGAQUFBwEHAQH/BE4wTDBKBAIAATBEAwQALZv8AwQA
LZv/AwQCT2L0AwQAsH36AwQAuceXAwQBucfUAwQCud0YMAwDBAO54agDBAC54aoD
BAC5+hoDBAHCklwwDQYJKoZIhvcNAQELBQADggEBAEz+ztqfNUO+GveTBpj3BZ6q
9oWyk0bZg3k3C3bjdc/cqn8p3HhkxQh5dBZWJLVX7lZiiS5Y+Hj/eGcVBqdYP2lD
b3MJwgUL0baY/+V6CdBa0prlS6HbjoaJ9e5xDlmfL5dS1JEIOgkk3FmTbuS9XY/w
hg1KqaHSoT99Dw6cu9GzEMt/Wvkc2p6rwJ7FuLQPR2DO009i0oCq/UzxCespaq8Z
ZKDjqum5TExqos7mv7VgeuGkqK1g+Gnwpns3xKoo1GsUh44mPC//6aTsItrle/E+
/ORJ/rAz3ZQ1eNG8uKn+IEgiJd9v9afXAdzK/VNKdA6szmVQkND6vy8aOMexLBM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org