Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/90cvGpu-WFngwHjFNSgYRFqLucc.roa
File: 90cvGpu-WFngwHjFNSgYRFqLucc.roa (raw, json)
Hash identifier: pg2B3jAxaQU8BINWjRxxtnbA4UEsBpxicZRRcF4QPtY=
Subject key identifier: F7:47:2F:1A:9B:BE:58:59:E0:C0:78:C5:35:28:18:44:5A:8B:B9:C7
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018944114C3F25A7E5E8D5F2B492F8C75A6E
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/90cvGpu-WFngwHjFNSgYRFqLucc.roa
Signing time: Tue 11 Jul 2023 08:28:51 +0000
ROA not before: Tue 11 Jul 2023 08:28:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 86.107.51.0/24 maxlen: 24
89.34.202.0/24 maxlen: 24
85.204.18.0/24 maxlen: 24
89.36.140.0/24 maxlen: 24
89.45.35.0/24 maxlen: 24
89.40.36.0/24 maxlen: 24
176.223.188.0/24 maxlen: 24
86.105.4.0/24 maxlen: 24
46.102.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Jul 2023 04:44:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:44:11:4c:3f:25:a7:e5:e8:d5:f2:b4:92:f8:c7:5a:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jul 11 08:28:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7472f1a9bbe5859e0c078c5352818445a8bb9c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ae:d0:bb:69:f0:2e:e9:f5:7d:b6:ae:9b:f1:
50:a2:93:8a:dc:0d:38:f6:61:68:8b:71:8a:10:0c:
6b:23:f9:18:3e:4f:41:07:94:28:ab:57:e5:5d:b7:
73:7b:8f:76:a1:52:2f:a0:0c:7e:2d:f1:c1:30:30:
9a:bb:8c:92:2a:6d:6c:52:89:b7:1d:a6:1d:4a:01:
ef:6d:e8:fd:05:49:75:51:00:6b:fa:7e:e0:ea:f1:
fd:fd:4e:82:a1:b0:e2:72:05:7d:3f:b2:fe:c3:f9:
69:9d:59:ef:10:72:f0:bf:03:d2:f9:5b:c6:8b:d9:
5f:20:84:31:24:7f:9f:41:7e:19:32:d0:28:21:f5:
8d:16:2d:2d:6d:ce:96:87:76:dc:c9:3b:00:51:84:
70:4f:0d:57:f4:cc:06:0c:b8:70:c2:9c:1a:b1:53:
c3:e6:58:5b:64:75:f7:11:d3:b8:78:98:af:13:06:
c9:b9:e0:2c:2e:c3:47:b5:32:01:5f:e5:1f:e5:55:
94:3b:92:b2:02:11:2f:d0:39:c3:5f:50:7b:ae:68:
4e:cf:97:07:d1:a6:36:c6:d3:10:42:76:53:d8:41:
6d:d4:03:86:4e:b0:51:32:dc:e5:ab:0f:93:8e:eb:
1c:fb:e5:2b:4f:ef:52:57:70:a3:f9:df:13:ed:ad:
07:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:47:2F:1A:9B:BE:58:59:E0:C0:78:C5:35:28:18:44:5A:8B:B9:C7
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/90cvGpu-WFngwHjFNSgYRFqLucc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.237.0/24
85.204.18.0/24
86.105.4.0/24
86.107.51.0/24
89.34.202.0/24
89.36.140.0/24
89.40.36.0/24
89.45.35.0/24
176.223.188.0/24
Signature Algorithm: sha256WithRSAEncryption
16:1e:3b:c6:74:7e:66:a5:28:2e:7f:d4:ba:f5:0c:0c:23:2c:
e1:4f:76:00:15:ca:6d:ca:29:80:a2:6e:ab:e5:eb:ac:70:e6:
b7:39:50:9d:54:1b:0a:9f:72:cb:ca:38:34:d4:53:6e:15:4d:
e4:94:0f:1e:c4:db:68:c8:54:b7:32:8c:19:bd:e2:cf:59:0c:
51:7d:bc:e8:0e:1e:54:21:7b:5f:5f:47:4e:e3:12:5e:ca:6b:
bb:84:83:fe:f3:8b:1c:8f:bf:98:23:ce:9b:79:0d:e7:c0:7b:
c2:ca:03:33:04:31:f9:f9:47:bc:bf:da:e9:55:9c:8b:13:30:
c1:0d:c0:cd:d7:4b:8c:d6:62:1d:e7:d6:f2:f0:c4:32:b4:82:
49:21:7d:16:75:db:df:51:d6:2f:fd:5e:db:59:37:c4:6a:c9:
b4:d6:e2:73:47:8b:a1:81:d5:b1:03:65:66:ee:8b:e1:ad:5c:
b3:69:ec:a3:9e:fe:bf:6b:cc:73:f6:71:c0:eb:e2:13:99:fa:
98:6e:f0:5c:d6:20:f9:f5:78:c4:cd:72:c6:b2:d6:cb:d8:e3:
52:bc:f2:fd:21:48:42:f2:40:bb:81:8e:c8:d1:88:4a:45:09:
3b:31:33:0f:0b:94:57:f4:e2:ab:63:e1:5a:60:48:06:3d:b7:
1d:ed:f5:d6
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgISAYlEEUw/Jafl6NXytJL4x1puMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjMwNzExMDgyODUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNzQ3MmYxYTliYmU1ODU5ZTBjMDc4YzUzNTI4MTg0NDVhOGJiOWM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmK7Qu2nwLun1fbaum/FQopOK3A04
9mFoi3GKEAxrI/kYPk9BB5Qoq1flXbdze492oVIvoAx+LfHBMDCau4ySKm1sUom3
HaYdSgHvbej9BUl1UQBr+n7g6vH9/U6CobDicgV9P7L+w/lpnVnvEHLwvwPS+VvG
i9lfIIQxJH+fQX4ZMtAoIfWNFi0tbc6Wh3bcyTsAUYRwTw1X9MwGDLhwwpwasVPD
5lhbZHX3EdO4eJivEwbJueAsLsNHtTIBX+Uf5VWUO5KyAhEv0DnDX1B7rmhOz5cH
0aY2xtMQQnZT2EFt1AOGTrBRMtzlqw+Tjusc++UrT+9SV3Cj+d8T7a0HOwIDAQAB
o4ICOTCCAjUwHQYDVR0OBBYEFPdHLxqbvlhZ4MB4xTUoGERai7nHMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvOTBjdkdwdS1XRm5nd0hqRk5TZ1lSRnFMdWNjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQALmbtAwQA
VcwSAwQAVmkEAwQAVmszAwQAWSLKAwQAWSSMAwQAWSgkAwQAWS0jAwQAsN+8MA0G
CSqGSIb3DQEBCwUAA4IBAQAWHjvGdH5mpSguf9S69QwMIyzhT3YAFcptyimAom6r
5euscOa3OVCdVBsKn3LLyjg01FNuFU3klA8exNtoyFS3MowZveLPWQxRfbzoDh5U
IXtfX0dO4xJeymu7hIP+84scj7+YI86beQ3nwHvCygMzBDH5+Ue8v9rpVZyLEzDB
DcDN10uM1mId59by8MQytIJJIX0WddvfUdYv/V7bWTfEasm01uJzR4uhgdWxA2Vm
7ovhrVyzaeyjnv6/a8xz9nHA6+ITmfqYbvBc1iD59XjEzXLGstbL2ONSvPL9IUhC
8kC7gY7I0YhKRQk7MTMPC5RX9OKrY+FaYEgGPbcd7fXW
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:12 2024 by rpki-client on console-ams.rpki-client.org