Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/3jXSYE9RkIkaFPfJHXYq__Z6AVc.roa
File: 3jXSYE9RkIkaFPfJHXYq__Z6AVc.roa (raw, json)
Hash identifier: jJ/MSJJYFWKO0nLGrrcWwc8sLwufBfbWkXfNUQzyhGw=
Subject key identifier: DE:35:D2:60:4F:51:90:89:1A:14:F7:C9:1D:76:2A:FF:F6:7A:01:57
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 018A314C5132CECC2867B9EF9A6A9F7A03EE
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/3jXSYE9RkIkaFPfJHXYq__Z6AVc.roa
Signing time: Sat 26 Aug 2023 10:03:19 +0000
ROA not before: Sat 26 Aug 2023 10:03:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202766
IP address blocks: 94.198.47.0/24 maxlen: 24
94.198.46.0/24 maxlen: 24
45.80.82.0/23 maxlen: 23
45.80.80.0/24 maxlen: 24
45.80.83.0/24 maxlen: 24
45.80.82.0/24 maxlen: 24
89.42.70.0/24 maxlen: 24
185.242.175.0/24 maxlen: 24
178.19.44.0/24 maxlen: 24
178.19.47.0/24 maxlen: 24
80.66.112.0/23 maxlen: 23
185.229.212.0/22 maxlen: 22
185.229.213.0/24 maxlen: 24
185.229.212.0/24 maxlen: 24
80.66.118.0/24 maxlen: 24
80.66.117.0/24 maxlen: 24
80.66.116.0/24 maxlen: 24
80.66.115.0/24 maxlen: 24
80.66.114.0/24 maxlen: 24
80.66.124.0/24 maxlen: 24
89.44.151.0/24 maxlen: 24
89.44.150.0/24 maxlen: 24
185.229.215.0/24 maxlen: 24
185.229.214.0/24 maxlen: 24
80.66.125.0/24 maxlen: 24
80.66.123.0/24 maxlen: 24
80.66.121.0/24 maxlen: 24
80.66.120.0/24 maxlen: 24
80.66.119.0/24 maxlen: 24
80.66.126.0/24 maxlen: 24
178.19.33.0/24 maxlen: 24
178.19.32.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:31:4c:51:32:ce:cc:28:67:b9:ef:9a:6a:9f:7a:03:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Aug 26 10:03:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de35d2604f5190891a14f7c91d762afff67a0157
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:9f:30:64:80:09:ec:63:16:bc:76:58:63:ec:
ed:55:3c:21:d5:16:d8:6f:4d:75:0b:e1:23:f9:1a:
47:fa:8f:cf:e5:4f:4f:37:9d:fb:89:3e:7a:90:b9:
cd:3e:5e:bf:c2:c1:ab:f3:5d:4b:fb:2f:d7:b0:47:
a5:c8:64:8f:08:53:f5:c5:72:87:51:b1:2b:77:01:
94:6b:3b:ad:58:69:ad:8a:f9:41:43:b0:da:b2:d8:
74:60:a9:e3:10:80:76:2c:73:10:80:2c:21:ce:06:
f9:4e:25:7a:f6:f9:47:00:3b:81:49:b4:09:b9:ac:
1a:c3:59:97:ac:0d:a7:15:e7:f5:88:8b:e9:74:4c:
7c:85:35:45:6d:a1:47:e4:56:7c:e0:a0:4f:6e:69:
87:56:2c:e6:ee:e6:66:ea:86:db:ba:79:d1:18:3f:
82:2b:d1:7d:63:9d:4d:2b:0f:59:32:99:52:3f:55:
2d:66:4b:24:5a:93:e3:ce:3f:24:a0:6d:75:c5:31:
8b:c9:62:3e:72:95:f1:43:2c:a0:fe:33:16:e6:da:
91:75:0a:aa:64:9e:41:9f:f7:52:4b:21:08:ea:56:
a9:6d:29:54:15:9e:f0:ec:fc:8a:3b:88:12:af:52:
a1:2f:1a:fe:3c:d9:e4:68:de:a4:f7:30:0f:b2:c1:
be:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:35:D2:60:4F:51:90:89:1A:14:F7:C9:1D:76:2A:FF:F6:7A:01:57
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/3jXSYE9RkIkaFPfJHXYq__Z6AVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.80.0/24
45.80.82.0/23
80.66.112.0-80.66.121.255
80.66.123.0-80.66.126.255
89.42.70.0/24
89.44.150.0/23
94.198.46.0/23
178.19.32.0/23
178.19.44.0/24
178.19.47.0/24
185.229.212.0/22
185.242.175.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:55:01:75:c7:d3:c3:0d:f6:83:6b:2d:25:5e:d5:22:95:01:
99:c5:d7:65:70:d7:b5:80:a4:2e:6d:8c:77:fc:a1:04:56:4d:
9e:10:cb:a4:2d:a5:2a:f0:9c:dd:6e:ab:b9:45:35:e7:22:0f:
de:74:aa:b1:88:4c:88:20:38:fe:ca:e3:69:e7:fb:a4:ab:94:
8c:fa:be:8f:c3:2a:6c:d6:ec:13:5e:16:fc:ea:56:a3:38:7b:
82:0a:df:12:5e:a7:97:8a:ff:cf:3e:54:d7:04:73:60:8d:50:
bb:46:66:82:68:78:b9:65:95:79:11:7d:4f:4a:3c:52:5b:9e:
e4:04:62:fd:7d:8c:39:04:8c:df:8e:e0:6b:c0:de:35:9e:77:
2b:66:28:e9:0a:49:e5:c8:04:fc:a0:b5:ce:c3:41:7d:fd:63:
84:2a:ab:98:94:e2:2a:45:74:50:dc:23:63:43:34:2a:5a:b8:
f4:d6:1a:6d:6b:30:8b:97:04:f5:43:18:4e:19:44:c3:1e:49:
71:55:98:7e:3e:5b:c2:18:53:18:70:37:67:c3:e9:ab:4c:25:
8e:19:8c:04:cd:b4:1d:a3:7e:42:32:a5:fa:bb:0c:d6:4a:ab:
d0:dc:ee:73:03:27:da:c0:c0:01:25:68:5a:a5:28:e2:d2:b9:
b9:51:45:7a
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgISAYoxTFEyzswoZ7nvmmqfegPuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1MzRjNDlmY2ZhOGE0NTA0MWQ5NWVkNGQ4ZDRmYzY5Yzcy
N2E0NjcwHhcNMjMwODI2MTAwMzE5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZTM1ZDI2MDRmNTE5MDg5MWExNGY3YzkxZDc2MmFmZmY2N2EwMTU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmJ8wZIAJ7GMWvHZYY+ztVTwh1RbY
b011C+Ej+RpH+o/P5U9PN537iT56kLnNPl6/wsGr811L+y/XsEelyGSPCFP1xXKH
UbErdwGUazutWGmtivlBQ7Dasth0YKnjEIB2LHMQgCwhzgb5TiV69vlHADuBSbQJ
uawaw1mXrA2nFef1iIvpdEx8hTVFbaFH5FZ84KBPbmmHVizm7uZm6obbunnRGD+C
K9F9Y51NKw9ZMplSP1UtZkskWpPjzj8koG11xTGLyWI+cpXxQyyg/jMW5tqRdQqq
ZJ5Bn/dSSyEI6lapbSlUFZ7w7PyKO4gSr1KhLxr+PNnkaN6k9zAPssG+6wIDAQAB
o4ICWzCCAlcwHQYDVR0OBBYEFN410mBPUZCJGhT3yR12Kv/2egFXMB8GA1UdIwQY
MBaAFAU0xJ/PqKRQQdle1NjU/GnHJ6RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYt
Y2Q3ZTA2Y2JiNTMxLzEvM2pYU1lFOVJrSWthRlBmSkhYWXFfX1o2QVZjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYtY2Q3ZTA2Y2JiNTMx
LzEvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHEGCCsGAQUFBwEHAQH/BGIwYDBeBAIAATBYAwQALVBQAwQB
LVBSMAwDBARQQnADBAFQQngwDAMEAFBCewMEAFBCfgMEAFkqRgMEAVkslgMEAV7G
LgMEAbITIAMEALITLAMEALITLwMEArnl1AMEALnyrzANBgkqhkiG9w0BAQsFAAOC
AQEAjFUBdcfTww32g2stJV7VIpUBmcXXZXDXtYCkLm2Md/yhBFZNnhDLpC2lKvCc
3W6ruUU15yIP3nSqsYhMiCA4/srjaef7pKuUjPq+j8MqbNbsE14W/OpWozh7ggrf
El6nl4r/zz5U1wRzYI1Qu0Zmgmh4uWWVeRF9T0o8Ulue5ARi/X2MOQSM347ga8De
NZ53K2Yo6QpJ5cgE/KC1zsNBff1jhCqrmJTiKkV0UNwjY0M0Klq49NYabWswi5cE
9UMYThlEwx5JcVWYfj5bwhhTGHA3Z8Ppq0wljhmMBM20HaN+QjKl+rsM1kqr0Nzu
cwMn2sDAASVoWqUo4tK5uVFFeg==
Generated at Tue Sep 19 19:08:06 2023 by rpki-client on console-fra.rpki-client.org