Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/L3dy8KLuYBwVcV6cmXZTeUxs5uw.roa
File: L3dy8KLuYBwVcV6cmXZTeUxs5uw.roa (raw, json)
Hash identifier: 8iNy4X9hEoDUo6o9mxq2wlZnpIUfDQsM5f4PhmOlOOc=
Subject key identifier: 2F:77:72:F0:A2:EE:60:1C:15:71:5E:9C:99:76:53:79:4C:6C:E6:EC
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0191582893A1A7FA2E1753F1E7FE2561975D
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/L3dy8KLuYBwVcV6cmXZTeUxs5uw.roa
Signing time: Thu 15 Aug 2024 22:28:59 +0000
ROA not before: Thu 15 Aug 2024 22:28:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.135.182.0/24 maxlen: 24
45.135.183.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
89.40.70.0/24 maxlen: 24
89.46.42.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
217.19.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Aug 2024 11:07:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:58:28:93:a1:a7:fa:2e:17:53:f1:e7:fe:25:61:97:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 15 22:28:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f7772f0a2ee601c15715e9c997653794c6ce6ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:cc:63:c7:fa:86:6b:08:27:df:42:86:9e:e3:
e1:ad:a5:d6:66:89:d3:22:4c:7b:fd:ab:15:a9:5c:
bf:3e:c1:7d:fa:33:a5:b9:dd:b6:39:32:bb:79:21:
32:77:4f:45:ad:2f:e9:36:f6:16:11:e6:6e:b9:c7:
b0:19:a2:24:45:ce:11:f3:7f:15:f9:bd:39:2b:10:
c1:14:e3:7c:4a:8d:bd:55:c4:84:2b:a6:92:2a:4a:
26:7d:9f:4d:47:4a:5e:d0:ee:96:0d:f5:2b:e2:46:
48:19:d2:ad:f5:c2:b7:68:66:3b:7e:59:a3:44:b1:
80:d9:43:d4:f5:43:80:19:16:ff:9c:10:23:13:56:
25:a0:c6:a4:37:76:2e:c8:61:5d:d3:2c:81:b3:ed:
27:f6:55:dd:b4:0a:f0:48:2a:8f:f6:28:59:67:11:
8c:44:76:48:e4:5e:97:13:20:1b:f8:90:41:a8:52:
1c:4c:e2:12:25:2d:58:02:57:0f:2e:f3:86:3f:14:
5a:78:16:cb:31:83:1a:d6:fe:59:6c:e1:2c:21:c8:
ac:1f:0c:cd:df:49:16:67:c1:57:24:cb:3c:04:52:
bf:9b:b2:45:4e:40:a3:49:f2:e7:df:7f:88:87:29:
04:6f:7f:cb:51:99:49:5a:54:e5:fa:b4:3b:7e:af:
d9:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:77:72:F0:A2:EE:60:1C:15:71:5E:9C:99:76:53:79:4C:6C:E6:EC
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/L3dy8KLuYBwVcV6cmXZTeUxs5uw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.182.0/23
89.34.106.0/24
89.40.70.0/24
89.46.42.0/24
93.114.183.0/24
217.19.4.0/24
Signature Algorithm: sha256WithRSAEncryption
72:91:6f:b4:2c:12:27:d5:03:ff:f3:86:e9:c8:50:22:18:89:
18:50:8b:5b:a7:87:20:e6:4f:2c:88:e6:39:0a:02:36:8a:50:
19:62:b5:32:5f:d8:68:75:65:1f:c6:c4:36:02:b8:e7:2e:b7:
30:03:95:fb:3d:6d:bd:f5:5e:e9:ad:7d:b4:f9:e5:0e:cd:0e:
af:9b:47:68:1b:22:d2:50:bb:57:66:f5:69:89:e3:a3:e4:b7:
76:e3:86:a8:1b:42:6e:3f:79:5a:c7:1d:f0:75:aa:2d:df:46:
ae:4a:79:39:0a:4a:b4:2d:4a:b4:73:f5:03:76:f0:8f:51:3f:
6c:ab:27:83:01:3e:0a:6e:12:d1:f9:80:10:0c:28:f4:13:c5:
ed:2e:5a:a7:4c:f0:da:42:98:da:bf:12:49:a0:3d:23:5f:5d:
de:9f:55:cf:72:2b:ec:ea:10:60:fb:cf:27:18:bc:e4:f5:32:
e0:ba:82:ec:f2:99:46:45:ba:b6:3d:e1:cc:c4:e6:d6:cc:77:
75:2b:3a:e8:7e:04:63:47:e5:cf:1e:87:2b:d4:9f:39:4c:a9:
63:92:3a:6c:f3:12:83:79:dd:31:61:45:60:d7:bc:26:39:d3:
d5:30:1f:4d:3e:97:5a:b6:b7:e0:6d:5c:31:44:de:8c:17:83:
e1:34:2e:b4
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAZFYKJOhp/ouF1Px5/4lYZddMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjQwODE1MjIyODU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZjc3NzJmMGEyZWU2MDFjMTU3MTVlOWM5OTc2NTM3OTRjNmNlNmVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlMxjx/qGawgn30KGnuPhraXWZonT
Ikx7/asVqVy/PsF9+jOlud22OTK7eSEyd09FrS/pNvYWEeZuucewGaIkRc4R838V
+b05KxDBFON8So29VcSEK6aSKkomfZ9NR0pe0O6WDfUr4kZIGdKt9cK3aGY7flmj
RLGA2UPU9UOAGRb/nBAjE1YloMakN3YuyGFd0yyBs+0n9lXdtArwSCqP9ihZZxGM
RHZI5F6XEyAb+JBBqFIcTOISJS1YAlcPLvOGPxRaeBbLMYMa1v5ZbOEsIcisHwzN
30kWZ8FXJMs8BFK/m7JFTkCjSfLn33+IhykEb3/LUZlJWlTl+rQ7fq/ZgQIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFC93cvCi7mAcFXFenJl2U3lMbObsMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvTDNkeThLTHVZQndWY1Y2Y21YWlRlVXhzNXV3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQBLYe2AwQA
WSJqAwQAWShGAwQAWS4qAwQAXXK3AwQA2RMEMA0GCSqGSIb3DQEBCwUAA4IBAQBy
kW+0LBIn1QP/84bpyFAiGIkYUItbp4cg5k8siOY5CgI2ilAZYrUyX9hodWUfxsQ2
ArjnLrcwA5X7PW299V7prX20+eUOzQ6vm0doGyLSULtXZvVpieOj5Ld244aoG0Ju
P3laxx3wdaot30auSnk5Ckq0LUq0c/UDdvCPUT9sqyeDAT4KbhLR+YAQDCj0E8Xt
LlqnTPDaQpjavxJJoD0jX13en1XPcivs6hBg+88nGLzk9TLguoLs8plGRbq2PeHM
xObWzHd1KzrofgRjR+XPHocr1J85TKljkjps8xKDed0xYUVg17wmOdPVMB9NPpda
trfgbVwxRN6MF4PhNC60
-----END CERTIFICATE-----
Generated at Mon Aug 19 15:41:46 2024 by rpki-client on console-ams.rpki-client.org