Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/0WSWN8l9qE3tewfUhXdbR6_TBY0.roa
File: 0WSWN8l9qE3tewfUhXdbR6_TBY0.roa (raw, json)
Hash identifier: Ie8u+Be3iQXCXFH3bdxotdku1aPzsxUCnSD5VtqPPqE=
Subject key identifier: D1:64:96:37:C9:7D:A8:4D:ED:7B:07:D4:85:77:5B:47:AF:D3:05:8D
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018A6A67FCAE6BDF9C34668908FB4ED2DB7F
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/0WSWN8l9qE3tewfUhXdbR6_TBY0.roa
Signing time: Wed 06 Sep 2023 12:11:54 +0000
ROA not before: Wed 06 Sep 2023 12:11:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 86.107.51.0/24 maxlen: 24
89.34.219.0/24 maxlen: 24
94.177.51.0/24 maxlen: 24
89.35.119.0/24 maxlen: 24
89.35.130.0/23 maxlen: 23
89.35.131.0/24 maxlen: 24
2.57.240.0/24 maxlen: 24
86.107.168.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
94.177.150.0/24 maxlen: 24
195.88.89.0/24 maxlen: 24
89.47.36.0/24 maxlen: 24
45.88.13.0/24 maxlen: 24
188.214.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 16 Sep 2023 15:55:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6a:67:fc:ae:6b:df:9c:34:66:89:08:fb:4e:d2:db:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Sep 6 12:11:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1649637c97da84ded7b07d485775b47afd3058d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:73:7d:5f:b9:26:5b:74:db:50:d9:b6:90:af:
9f:c0:11:e5:11:fe:77:56:6f:c6:6e:57:2f:f6:fe:
ab:c2:f8:d6:45:57:95:29:6f:65:96:87:0c:f2:c9:
d3:40:00:c4:48:d0:c4:0f:9c:5d:6b:f3:7b:92:06:
52:0b:2e:fd:90:53:3c:b6:79:51:3c:b8:3a:14:50:
70:ee:94:03:92:8a:62:74:f7:79:2f:76:76:f0:35:
65:8d:0f:67:77:4a:e7:b1:a1:0c:5a:23:3c:d7:13:
63:ed:e7:a0:2e:9e:d4:3b:bd:84:b6:7f:5b:0b:3f:
3b:b4:b9:51:49:43:73:e9:85:82:9f:2e:eb:9e:f0:
b3:19:5b:1a:dc:59:2f:b7:7e:c1:0a:ad:7d:ee:9a:
61:4b:f9:0a:40:8d:f5:6d:38:ae:f3:b1:0b:ad:54:
23:04:a4:6c:dd:e7:7e:a1:1e:d9:35:14:40:ab:d4:
97:73:92:19:dc:b7:ba:e4:9f:cc:d8:91:38:61:d1:
9a:90:a5:b0:99:74:ce:f5:65:9a:43:a6:5f:3a:19:
87:fe:c5:9f:35:05:9f:e7:61:0a:78:a1:49:cc:1e:
6a:40:d0:13:e1:4a:95:22:dd:4b:aa:0b:3a:d5:45:
c1:83:4f:fc:48:b5:1e:a3:12:80:c2:58:49:7b:63:
41:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:64:96:37:C9:7D:A8:4D:ED:7B:07:D4:85:77:5B:47:AF:D3:05:8D
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/0WSWN8l9qE3tewfUhXdbR6_TBY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.240.0/24
45.88.13.0/24
86.107.51.0/24
86.107.168.0/24
89.34.106.0/24
89.34.219.0/24
89.35.119.0/24
89.35.130.0/23
89.47.36.0/24
94.177.51.0/24
94.177.150.0/24
188.214.107.0/24
195.88.89.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:94:d8:36:6b:07:b0:fe:b4:9e:0e:37:74:6a:52:be:9a:82:
70:e3:7a:b0:4b:c5:d5:bd:f2:eb:7b:ce:58:b0:25:16:57:c9:
bf:58:5f:7e:b9:9c:01:83:41:e8:35:d6:93:be:70:30:b8:56:
22:60:4a:26:0d:87:a2:43:68:1d:24:98:f3:f1:ae:44:3e:c5:
11:5e:ea:16:42:40:68:63:aa:82:c3:d3:4a:de:ab:75:e9:2a:
ac:b0:fc:50:b4:27:25:f7:84:f5:4d:30:e5:d6:15:70:74:d8:
2f:9d:58:3f:e6:4d:29:42:8a:0f:23:24:f6:b5:d0:6c:62:a4:
12:a0:9a:65:69:8b:d7:7f:ac:51:0f:c5:ab:fc:43:94:21:85:
95:ad:88:7c:b1:41:3d:11:6a:d3:a7:69:e2:f7:de:ed:72:57:
e7:d6:ad:6f:25:e9:73:a9:22:10:7c:ad:df:14:3c:f3:26:29:
f0:a1:30:ae:52:77:9f:66:14:ee:3c:4f:54:29:46:57:cc:f9:
39:17:5a:73:52:17:1f:b6:90:93:aa:77:a3:9a:0f:44:21:cf:
69:74:ac:31:b4:1f:98:fd:b6:1c:a3:ae:b4:a2:0c:c4:e6:ae:
98:47:40:8e:4b:1b:37:62:d1:05:93:d7:a0:71:db:fa:3b:ed:
ca:92:83:17
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgISAYpqZ/yua9+cNGaJCPtO0tt/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjMwOTA2MTIxMTU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMTY0OTYzN2M5N2RhODRkZWQ3YjA3ZDQ4NTc3NWI0N2FmZDMwNThkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkXN9X7kmW3TbUNm2kK+fwBHlEf53
Vm/Gblcv9v6rwvjWRVeVKW9llocM8snTQADESNDED5xda/N7kgZSCy79kFM8tnlR
PLg6FFBw7pQDkopidPd5L3Z28DVljQ9nd0rnsaEMWiM81xNj7eegLp7UO72Etn9b
Cz87tLlRSUNz6YWCny7rnvCzGVsa3Fkvt37BCq197pphS/kKQI31bTiu87ELrVQj
BKRs3ed+oR7ZNRRAq9SXc5IZ3Le65J/M2JE4YdGakKWwmXTO9WWaQ6ZfOhmH/sWf
NQWf52EKeKFJzB5qQNAT4UqVIt1Lqgs61UXBg0/8SLUeoxKAwlhJe2NBKwIDAQAB
o4ICUTCCAk0wHQYDVR0OBBYEFNFkljfJfahN7XsH1IV3W0ev0wWNMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvMFdTV044bDlxRTN0ZXdmVWhYZGJSNl9UQlkwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGcGCCsGAQUFBwEHAQH/BFgwVjBUBAIAATBOAwQAAjnwAwQA
LVgNAwQAVmszAwQAVmuoAwQAWSJqAwQAWSLbAwQAWSN3AwQBWSOCAwQAWS8kAwQA
XrEzAwQAXrGWAwQAvNZrAwQAw1hZMA0GCSqGSIb3DQEBCwUAA4IBAQBOlNg2awew
/rSeDjd0alK+moJw43qwS8XVvfLre85YsCUWV8m/WF9+uZwBg0HoNdaTvnAwuFYi
YEomDYeiQ2gdJJjz8a5EPsURXuoWQkBoY6qCw9NK3qt16SqssPxQtCcl94T1TTDl
1hVwdNgvnVg/5k0pQooPIyT2tdBsYqQSoJplaYvXf6xRD8Wr/EOUIYWVrYh8sUE9
EWrTp2ni997tclfn1q1vJelzqSIQfK3fFDzzJinwoTCuUnefZhTuPE9UKUZXzPk5
F1pzUhcftpCTqnejmg9EIc9pdKwxtB+Y/bYco660ogzE5q6YR0COSxs3YtEFk9eg
cdv6O+3KkoMX
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:05 2024 by rpki-client on console-fra.rpki-client.org