Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/9-0j-LoPdPCZ5cEANFhap0uuXzg.roa
File: 9-0j-LoPdPCZ5cEANFhap0uuXzg.roa (raw, json)
Hash identifier: ZuXRvvVTrMXUofl3Gp6KR0fPUzlGQ/H1mkYdRx0GgOM=
Subject key identifier: F7:ED:23:F8:BA:0F:74:F0:99:E5:C1:00:34:58:5A:A7:4B:AE:5F:38
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018F765978835412B8AC0FEB24DC2F8C806A
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/9-0j-LoPdPCZ5cEANFhap0uuXzg.roa
Signing time: Tue 14 May 2024 09:05:26 +0000
ROA not before: Tue 14 May 2024 09:05:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.135.181.0/24 maxlen: 24
45.135.182.0/24 maxlen: 24
45.135.183.0/24 maxlen: 24
86.107.50.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
185.198.234.0/24 maxlen: 24
188.64.142.0/24 maxlen: 24
188.208.103.0/24 maxlen: 24
217.19.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 May 2024 13:54:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:76:59:78:83:54:12:b8:ac:0f:eb:24:dc:2f:8c:80:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: May 14 09:05:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f7ed23f8ba0f74f099e5c10034585aa74bae5f38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:09:67:50:e4:ff:96:1f:e8:95:a5:02:c7:8c:
2d:48:bf:1d:3d:8a:81:93:99:70:fd:e0:7b:16:34:
cc:d0:92:3a:51:f6:0d:e1:23:fa:c6:54:3a:fc:98:
f9:6c:4d:aa:7c:9c:fe:ed:d0:94:47:c9:75:49:89:
f5:af:f4:25:cd:7a:21:41:35:2a:1c:3e:ec:c9:d1:
2f:1e:7e:87:ee:1f:7c:38:61:07:78:ba:e5:7e:63:
98:a1:cd:2d:d6:f0:53:1d:4c:c3:af:72:f2:70:24:
71:d4:9d:66:04:f3:74:74:18:62:59:6c:65:27:89:
12:b4:b0:a2:3d:b5:c6:05:ae:2f:22:cc:a5:97:77:
c7:1f:e1:27:29:18:1f:b2:2e:9e:17:4b:e6:39:8f:
98:28:6a:3a:3c:0d:23:fc:0b:11:31:4e:72:df:b4:
a0:96:a6:5f:a3:72:56:81:bd:ae:2d:34:26:24:f8:
9a:2c:19:ac:24:4c:7d:e3:f4:80:63:a0:09:70:e9:
dc:2a:54:41:1a:b0:d3:cd:f5:8b:c7:bc:77:a6:b3:
c7:4b:b1:b8:7b:47:ef:26:bd:b3:d9:06:a7:82:52:
49:04:da:12:dc:0b:71:ea:18:6b:19:26:ac:31:07:
24:31:f5:9b:8e:88:d1:3e:cf:c1:34:ba:c6:ac:18:
0b:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:ED:23:F8:BA:0F:74:F0:99:E5:C1:00:34:58:5A:A7:4B:AE:5F:38
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/9-0j-LoPdPCZ5cEANFhap0uuXzg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.181.0-45.135.183.255
86.107.50.0/24
89.34.106.0/24
93.114.183.0/24
185.198.234.0/24
188.64.142.0/24
188.208.103.0/24
217.19.4.0/24
Signature Algorithm: sha256WithRSAEncryption
94:e9:01:82:bb:7d:9d:00:a2:0c:16:bb:70:bb:3e:13:2a:2e:
99:a7:2d:10:6a:72:a3:02:56:c4:93:a1:e1:be:fb:79:07:ad:
97:f0:ec:f8:42:f8:8c:06:52:a2:63:7d:ef:62:c2:e8:aa:34:
b5:21:89:35:00:b0:98:06:6f:42:43:2b:e7:06:12:5d:50:07:
c3:36:df:2d:b4:05:9c:9e:0d:f5:14:18:bc:c1:5a:e7:97:fc:
13:70:ac:12:50:9e:aa:03:27:78:2f:25:e0:6d:cb:e4:2a:bf:
f5:45:2c:44:59:eb:35:7d:5d:7f:cb:4e:6e:b8:46:ad:a3:0a:
6d:d7:2d:2a:37:77:7f:cb:96:76:a8:8f:8f:2d:74:99:b6:71:
d1:d6:ab:ae:0e:90:1f:74:53:13:e7:10:25:41:ee:ce:f6:4c:
3c:ec:5f:4b:c8:5e:12:74:7b:51:67:31:e0:0e:01:5b:a8:e8:
42:5f:ab:e6:64:2c:7e:75:2e:4f:08:d3:fc:e3:07:79:dc:7c:
f6:24:84:0f:c4:30:7a:a6:7d:8a:e8:4c:81:de:6a:e6:92:86:
73:fe:11:d7:9d:b7:e6:01:8d:59:ac:bf:77:21:05:34:a7:88:
8f:dc:90:b7:7e:10:d4:f3:a3:b5:f7:1d:20:03:8d:a8:69:34:
58:a4:9f:6d
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgISAY92WXiDVBK4rA/rJNwvjIBqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjQwNTE0MDkwNTI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmN2VkMjNmOGJhMGY3NGYwOTllNWMxMDAzNDU4NWFhNzRiYWU1ZjM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtQlnUOT/lh/olaUCx4wtSL8dPYqB
k5lw/eB7FjTM0JI6UfYN4SP6xlQ6/Jj5bE2qfJz+7dCUR8l1SYn1r/QlzXohQTUq
HD7sydEvHn6H7h98OGEHeLrlfmOYoc0t1vBTHUzDr3LycCRx1J1mBPN0dBhiWWxl
J4kStLCiPbXGBa4vIsyll3fHH+EnKRgfsi6eF0vmOY+YKGo6PA0j/AsRMU5y37Sg
lqZfo3JWgb2uLTQmJPiaLBmsJEx94/SAY6AJcOncKlRBGrDTzfWLx7x3prPHS7G4
e0fvJr2z2QanglJJBNoS3Atx6hhrGSasMQckMfWbjojRPs/BNLrGrBgLKwIDAQAB
o4ICOzCCAjcwHQYDVR0OBBYEFPftI/i6D3TwmeXBADRYWqdLrl84MB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvOS0wai1Mb1BkUENaNWNFQU5GaGFwMHV1WHpnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFEGCCsGAQUFBwEHAQH/BEIwQDA+BAIAATA4MAwDBAAth7UD
BAMth7ADBABWazIDBABZImoDBABdcrcDBAC5xuoDBAC8QI4DBAC80GcDBADZEwQw
DQYJKoZIhvcNAQELBQADggEBAJTpAYK7fZ0AogwWu3C7PhMqLpmnLRBqcqMCVsST
oeG++3kHrZfw7PhC+IwGUqJjfe9iwuiqNLUhiTUAsJgGb0JDK+cGEl1QB8M23y20
BZyeDfUUGLzBWueX/BNwrBJQnqoDJ3gvJeBty+Qqv/VFLERZ6zV9XX/LTm64Rq2j
Cm3XLSo3d3/Llnaoj48tdJm2cdHWq64OkB90UxPnECVB7s72TDzsX0vIXhJ0e1Fn
MeAOAVuo6EJfq+ZkLH51Lk8I0/zjB3ncfPYkhA/EMHqmfYroTIHeauaShnP+Eded
t+YBjVmsv3chBTSniI/ckLd+ENTzo7X3HSADjahpNFikn20=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org