Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/AK-ugC6I0Tehnw-GJlsC175elN4.roa
File: AK-ugC6I0Tehnw-GJlsC175elN4.roa (raw, json)
Hash identifier: 8SZoQAy6N34+v4d58394mtkbxKVYKsWP07Rw1wRzbzE=
Subject key identifier: 00:AF:AE:80:2E:88:D1:37:A1:9F:0F:86:26:5B:02:D7:BE:5E:94:DE
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 0185A5B338ABF13BF6C373315F672CB02ABC
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/AK-ugC6I0Tehnw-GJlsC175elN4.roa
Signing time: Thu 12 Jan 2023 11:17:44 +0000
ROA not before: Thu 12 Jan 2023 11:17:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 185.231.206.0/24 maxlen: 24
185.231.205.0/24 maxlen: 24
185.231.204.0/24 maxlen: 24
185.231.207.0/24 maxlen: 24
141.98.169.0/24 maxlen: 24
45.84.0.0/24 maxlen: 24
45.84.1.0/24 maxlen: 24
45.89.52.0/24 maxlen: 24
45.159.251.0/24 maxlen: 24
45.159.250.0/24 maxlen: 24
45.159.249.0/24 maxlen: 24
45.159.248.0/24 maxlen: 24
45.67.35.0/24 maxlen: 24
5.182.36.0/24 maxlen: 24
5.182.39.0/24 maxlen: 24
193.57.138.0/24 maxlen: 24
193.57.136.0/24 maxlen: 24
93.185.166.0/24 maxlen: 24
45.87.154.0/24 maxlen: 24
45.8.145.0/24 maxlen: 24
45.8.144.0/24 maxlen: 24
193.46.56.0/24 maxlen: 24
194.4.48.0/24 maxlen: 24
194.4.51.0/24 maxlen: 24
194.4.50.0/24 maxlen: 24
194.4.49.0/24 maxlen: 24
194.116.191.0/24 maxlen: 24
194.116.190.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a5:b3:38:ab:f1:3b:f6:c3:73:31:5f:67:2c:b0:2a:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Jan 12 11:17:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00afae802e88d137a19f0f86265b02d7be5e94de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:c9:74:79:67:ac:0a:9c:2d:ec:6e:fc:86:ca:
43:87:f2:ed:08:fc:e1:65:42:eb:cc:54:7e:f1:de:
f5:df:05:5b:a4:a6:7b:d2:15:b1:a6:63:db:0d:c1:
37:2c:02:83:d7:bd:8e:b9:78:87:7e:cc:bb:1b:2c:
35:fd:a5:b4:50:fc:42:00:13:13:ab:bc:29:dd:01:
67:32:39:6d:b5:d2:ff:19:6a:8e:eb:59:82:5b:27:
5d:d8:1b:f8:9f:b2:9f:2f:8a:5b:38:83:25:f6:f5:
80:0e:b9:8d:d1:c2:5a:35:99:bb:27:15:fc:5e:2d:
ad:08:86:3f:d4:b9:0d:1a:cb:f3:e2:3c:a6:44:6c:
4e:c7:cf:16:d3:8c:6b:b7:25:20:73:c6:80:01:7c:
1a:98:ec:fc:11:91:d6:9b:04:bf:9a:89:d4:fc:73:
1b:99:1b:0c:36:cd:0e:f5:6f:2a:e6:98:e2:d2:91:
69:4d:2c:38:41:32:a4:b6:4b:d7:a8:79:cc:45:b1:
51:8b:19:94:12:50:33:aa:ba:d3:3c:95:f5:70:44:
a6:14:e2:a0:90:da:af:42:31:c5:36:03:61:6e:d6:
2c:a5:bd:82:5a:bd:ee:ca:8e:4b:24:c8:c7:5b:4a:
2a:2b:7b:3d:01:44:61:1e:d6:6f:64:df:a5:12:82:
d8:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:AF:AE:80:2E:88:D1:37:A1:9F:0F:86:26:5B:02:D7:BE:5E:94:DE
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/AK-ugC6I0Tehnw-GJlsC175elN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.36.0/24
5.182.39.0/24
45.8.144.0/23
45.67.35.0/24
45.84.0.0/23
45.87.154.0/24
45.89.52.0/24
45.159.248.0/22
93.185.166.0/24
141.98.169.0/24
185.231.204.0/22
193.46.56.0/24
193.57.136.0/24
193.57.138.0/24
194.4.48.0/22
194.116.190.0/23
Signature Algorithm: sha256WithRSAEncryption
67:85:bc:ec:ca:e0:ce:c2:ab:d4:57:3a:ae:ac:d2:0d:03:11:
92:15:84:9e:bf:57:a1:36:76:e3:4d:d6:55:b6:43:8c:66:0c:
63:5d:d0:64:76:bc:1c:d4:05:00:cf:e9:6e:1a:ce:b3:ef:68:
20:20:fc:b5:a8:d2:4c:7e:bb:e6:18:68:45:fb:35:9e:ec:74:
36:2e:16:4b:48:d0:84:ca:f6:9e:1a:03:7d:dc:3c:f0:ec:7e:
ce:a9:25:ea:90:7b:1d:d7:ef:1e:0f:b1:cb:15:25:78:ce:e1:
a9:51:fa:39:3a:af:7e:c1:04:d8:f9:ae:22:41:74:33:df:5b:
9c:3f:d2:01:ab:14:bc:86:72:b2:6e:df:30:82:75:b0:f2:a6:
82:74:b0:1d:a9:5a:8a:61:ad:96:21:c7:c4:95:5a:19:2a:d3:
47:11:58:9e:fc:35:a8:f2:77:09:f0:91:1e:df:d0:e0:ce:99:
5b:39:e1:5c:51:f8:19:96:c4:06:37:b6:bc:86:9c:aa:41:4f:
3c:f5:f4:ce:02:d7:5a:dd:56:a5:6a:da:10:67:16:62:43:6d:
c5:28:7c:fc:46:64:59:d5:f4:af:d0:dd:d2:a9:02:1e:28:63:
2a:40:6e:0b:d0:dc:f3:78:a9:7f:5d:ed:69:2d:a8:63:1b:28:
b3:86:1b:9e
-----BEGIN CERTIFICATE-----
MIIFVzCCBD+gAwIBAgISAYWlszir8Tv2w3MxX2cssCq8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDExYTAxMGY4N2EwNDliNmUyMWFiZWQ5YjQwOTgzYjA0ZjNm
MWM3ZTgwHhcNMjMwMTEyMTExNzQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMGFmYWU4MDJlODhkMTM3YTE5ZjBmODYyNjViMDJkN2JlNWU5NGRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAksl0eWesCpwt7G78hspDh/LtCPzh
ZULrzFR+8d713wVbpKZ70hWxpmPbDcE3LAKD172OuXiHfsy7Gyw1/aW0UPxCABMT
q7wp3QFnMjlttdL/GWqO61mCWydd2Bv4n7KfL4pbOIMl9vWADrmN0cJaNZm7JxX8
Xi2tCIY/1LkNGsvz4jymRGxOx88W04xrtyUgc8aAAXwamOz8EZHWmwS/monU/HMb
mRsMNs0O9W8q5pji0pFpTSw4QTKktkvXqHnMRbFRixmUElAzqrrTPJX1cESmFOKg
kNqvQjHFNgNhbtYspb2CWr3uyo5LJMjHW0oqK3s9AURhHtZvZN+lEoLYzQIDAQAB
o4ICYzCCAl8wHQYDVR0OBBYEFACvroAuiNE3oZ8PhiZbAte+XpTeMB8GA1UdIwQY
MBaAFBGgEPh6BJtuIavtm0CYOwTz8cfoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRWFBUS1Ib0VtMjRocS0yYlFKZzdCUFB4eC1nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9mMjVkN2MtNjY3Ny00ZmRiLTg5OGUt
ZWU3NDY1NzU0ZmY2LzEvQUstdWdDNkkwVGVobnctR0psc0MxNzVlbE40LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi9mMjVkN2MtNjY3Ny00ZmRiLTg5OGUtZWU3NDY1NzU0ZmY2
LzEvRWFBUS1Ib0VtMjRocS0yYlFKZzdCUFB4eC1nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHkGCCsGAQUFBwEHAQH/BGowaDBmBAIAATBgAwQABbYkAwQA
BbYnAwQBLQiQAwQALUMjAwQBLVQAAwQALVeaAwQALVk0AwQCLZ/4AwQAXbmmAwQA
jWKpAwQCuefMAwQAwS44AwQAwTmIAwQAwTmKAwQCwgQwAwQBwnS+MA0GCSqGSIb3
DQEBCwUAA4IBAQBnhbzsyuDOwqvUVzqurNINAxGSFYSev1ehNnbjTdZVtkOMZgxj
XdBkdrwc1AUAz+luGs6z72ggIPy1qNJMfrvmGGhF+zWe7HQ2LhZLSNCEyvaeGgN9
3Dzw7H7OqSXqkHsd1+8eD7HLFSV4zuGpUfo5Oq9+wQTY+a4iQXQz31ucP9IBqxS8
hnKybt8wgnWw8qaCdLAdqVqKYa2WIcfElVoZKtNHEVie/DWo8ncJ8JEe39Dgzplb
OeFcUfgZlsQGN7a8hpyqQU889fTOAtda3ValatoQZxZiQ23FKHz8RmRZ1fSv0N3S
qQIeKGMqQG4L0NzzeKl/Xe1pLahjGyizhhue
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:24 2023 by rpki-client on console-ams.rpki-client.org