Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/GuwEzniN_MdJ4zSrPFDTlZg9CE4.roa
File: GuwEzniN_MdJ4zSrPFDTlZg9CE4.roa (raw, json)
Hash identifier: lHBLm65AWLAZZ5eEECx6yNd6zVVVuWx9DQqbqapLa6g=
Subject key identifier: 1A:EC:04:CE:78:8D:FC:C7:49:E3:34:AB:3C:50:D3:95:98:3D:08:4E
Certificate issuer: /CN=c44db8b0983acf97a3255152c2ea592adae7735b
Certificate serial: 0185BEAF5CA7F965A97E65C924D97C8EA0EC
Authority key identifier: C4:4D:B8:B0:98:3A:CF:97:A3:25:51:52:C2:EA:59:2A:DA:E7:73:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xE24sJg6z5ejJVFSwupZKtrnc1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/GuwEzniN_MdJ4zSrPFDTlZg9CE4.roa
Signing time: Tue 17 Jan 2023 07:44:01 +0000
ROA not before: Tue 17 Jan 2023 07:44:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207990
IP address blocks: 188.212.136.0/21 maxlen: 32
93.113.52.0/23 maxlen: 32
110.238.192.0/19 maxlen: 32
185.66.136.0/22 maxlen: 32
94.139.224.0/20 maxlen: 32
119.12.192.0/21 maxlen: 32
176.223.182.0/23 maxlen: 32
Validation: Failed, certificate revoked on Mon 13 Mar 2023 09:26:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:be:af:5c:a7:f9:65:a9:7e:65:c9:24:d9:7c:8e:a0:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c44db8b0983acf97a3255152c2ea592adae7735b
Validity
Not Before: Jan 17 07:44:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1aec04ce788dfcc749e334ab3c50d395983d084e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6d:35:ac:d6:e4:48:28:cd:ff:22:8f:f7:1a:
82:5d:66:50:5b:a7:36:e0:06:d4:d1:f0:20:ac:33:
63:eb:ca:ab:8e:14:6a:ac:11:f2:87:e8:0e:ee:7f:
04:5a:96:bb:e4:d8:a1:25:f3:13:b4:7d:37:05:03:
cf:61:d8:11:b8:1a:4e:a5:04:ce:c1:f7:ff:a2:e8:
9b:37:9e:5d:15:99:b1:64:0c:18:1f:e6:bd:3e:b2:
4b:9b:1b:b7:28:6e:a6:fb:06:4e:ec:58:83:17:27:
56:ab:c4:5a:f1:47:b4:ca:b3:2a:55:7f:96:50:4e:
81:50:80:4e:a8:a8:98:b5:79:9e:89:81:2c:39:35:
cb:33:9d:6b:65:4d:82:3e:57:f4:ff:1b:67:21:3d:
21:1a:1d:b6:94:1e:33:67:b7:22:33:aa:78:70:e2:
72:33:89:24:bd:1a:6c:93:02:04:a8:05:7f:cd:55:
77:ee:e9:1d:89:9e:6a:88:6f:3a:2a:11:94:9d:71:
dd:91:9f:65:75:81:0e:83:6f:44:46:39:71:dd:69:
ea:a9:04:02:fd:30:c7:bb:ff:83:15:4a:46:df:23:
87:f8:fe:25:a9:94:5e:df:ad:f0:41:b3:ab:7f:0c:
9b:d3:c9:64:13:a3:88:55:b1:aa:8d:70:1f:8d:50:
a6:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:EC:04:CE:78:8D:FC:C7:49:E3:34:AB:3C:50:D3:95:98:3D:08:4E
X509v3 Authority Key Identifier:
keyid:C4:4D:B8:B0:98:3A:CF:97:A3:25:51:52:C2:EA:59:2A:DA:E7:73:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xE24sJg6z5ejJVFSwupZKtrnc1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/GuwEzniN_MdJ4zSrPFDTlZg9CE4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/xE24sJg6z5ejJVFSwupZKtrnc1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.113.52.0/23
94.139.224.0/20
110.238.192.0/19
119.12.192.0/21
176.223.182.0/23
185.66.136.0/22
188.212.136.0/21
Signature Algorithm: sha256WithRSAEncryption
69:cc:f4:7a:03:ae:b3:39:8d:9e:11:13:6b:78:cc:88:eb:aa:
41:01:4b:fc:9a:be:b3:a8:87:e3:c6:04:ab:6e:22:87:68:43:
b4:c6:92:34:ca:34:5d:f7:f2:59:5a:15:c4:2b:63:19:0f:59:
6f:51:7c:81:a8:32:a0:13:76:11:a2:f3:b1:35:9e:c9:26:2d:
ac:c1:21:46:93:bb:a0:bd:67:b9:12:f7:58:88:88:c8:e4:d4:
07:0f:13:56:05:cc:58:cd:cc:4a:d0:23:51:aa:e7:87:14:59:
6d:5b:d7:db:0c:23:1c:47:08:93:41:28:87:86:c0:b0:7b:fd:
04:a1:e1:26:df:75:38:94:75:14:14:7f:f5:9e:7e:5e:0b:d6:
92:d9:6c:cd:aa:13:51:b6:f6:8c:0c:73:4e:30:6e:65:37:4c:
0a:01:b0:88:e2:df:36:5c:32:76:26:39:25:cd:97:af:37:ca:
41:d2:6e:52:ab:c8:98:e9:8c:4e:96:62:5d:a9:46:1f:7c:bb:
6e:fd:fd:38:d9:bb:31:0b:ae:d4:cd:8d:3c:26:8b:fa:34:a5:
94:5d:43:b0:43:0a:a6:e7:b1:95:e1:2c:9c:42:20:bd:73:b4:
db:de:a2:a2:00:47:01:94:76:15:a0:58:ba:9b:88:29:30:8f:
30:f7:95:a5
-----BEGIN CERTIFICATE-----
MIIFITCCBAmgAwIBAgISAYW+r1yn+WWpfmXJJNl8jqDsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0NGRiOGIwOTgzYWNmOTdhMzI1NTE1MmMyZWE1OTJhZGFl
NzczNWIwHhcNMjMwMTE3MDc0NDAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYWVjMDRjZTc4OGRmY2M3NDllMzM0YWIzYzUwZDM5NTk4M2QwODRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo201rNbkSCjN/yKP9xqCXWZQW6c2
4AbU0fAgrDNj68qrjhRqrBHyh+gO7n8EWpa75NihJfMTtH03BQPPYdgRuBpOpQTO
wff/ouibN55dFZmxZAwYH+a9PrJLmxu3KG6m+wZO7FiDFydWq8Ra8Ue0yrMqVX+W
UE6BUIBOqKiYtXmeiYEsOTXLM51rZU2CPlf0/xtnIT0hGh22lB4zZ7ciM6p4cOJy
M4kkvRpskwIEqAV/zVV37ukdiZ5qiG86KhGUnXHdkZ9ldYEOg29ERjlx3WnqqQQC
/TDHu/+DFUpG3yOH+P4lqZRe363wQbOrfwyb08lkE6OIVbGqjXAfjVCmLwIDAQAB
o4ICLTCCAikwHQYDVR0OBBYEFBrsBM54jfzHSeM0qzxQ05WYPQhOMB8GA1UdIwQY
MBaAFMRNuLCYOs+XoyVRUsLqWSra53NbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEUyNHNKZzZ6NWVqSlZGU3d1cFpLdHJuYzFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC80Mzc4OTctYWY1OC00OTU5LThlNzYt
ZWVkZDk0ZWMxMjhjLzEvR3V3RXpuaU5fTWRKNHpTclBGRFRsWmc5Q0U0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC80Mzc4OTctYWY1OC00OTU5LThlNzYtZWVkZDk0ZWMxMjhj
LzEveEUyNHNKZzZ6NWVqSlZGU3d1cFpLdHJuYzFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQBXXE0AwQE
XovgAwQFbu7AAwQDdwzAAwQBsN+2AwQCuUKIAwQDvNSIMA0GCSqGSIb3DQEBCwUA
A4IBAQBpzPR6A66zOY2eERNreMyI66pBAUv8mr6zqIfjxgSrbiKHaEO0xpI0yjRd
9/JZWhXEK2MZD1lvUXyBqDKgE3YRovOxNZ7JJi2swSFGk7ugvWe5EvdYiIjI5NQH
DxNWBcxYzcxK0CNRqueHFFltW9fbDCMcRwiTQSiHhsCwe/0EoeEm33U4lHUUFH/1
nn5eC9aS2WzNqhNRtvaMDHNOMG5lN0wKAbCI4t82XDJ2JjklzZevN8pB0m5Sq8iY
6YxOlmJdqUYffLtu/f042bsxC67UzY08Jov6NKWUXUOwQwqm57GV4SycQiC9c7Tb
3qKiAEcBlHYVoFi6m4gpMI8w95Wl
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:45 2024 by rpki-client on console-ams.rpki-client.org