Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/gFw-hsypE3GHoQdc9GxNzOl0cwE.roa
File: gFw-hsypE3GHoQdc9GxNzOl0cwE.roa (raw, json)
Hash identifier: m/1Wvd3YwdweBIf2YAIPKtIm6WBhg3V2djBTU430rI0=
Subject key identifier: 80:5C:3E:86:CC:A9:13:71:87:A1:07:5C:F4:6C:4D:CC:E9:74:73:01
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018A279AF150D2908E8B43F20FD22CB73AB9
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/gFw-hsypE3GHoQdc9GxNzOl0cwE.roa
Signing time: Thu 24 Aug 2023 12:53:00 +0000
ROA not before: Thu 24 Aug 2023 12:53:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203394
IP address blocks: 85.204.18.0/24 maxlen: 24
77.81.88.0/24 maxlen: 24
46.102.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Sep 2023 12:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:27:9a:f1:50:d2:90:8e:8b:43:f2:0f:d2:2c:b7:3a:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 24 12:53:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=805c3e86cca9137187a1075cf46c4dcce9747301
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:bd:70:6f:e4:95:a9:7c:31:62:53:2f:ee:5d:
e1:81:6c:c5:50:f5:2a:20:e7:ed:38:85:a7:57:9c:
e9:35:b8:f7:aa:ee:85:7b:1c:49:ee:0f:c8:98:00:
f4:49:fc:10:b9:f8:ce:6d:03:87:33:25:47:71:02:
9e:5a:0b:b9:d4:ce:23:8e:b8:0f:98:d8:54:96:db:
cf:ff:c8:5f:50:d8:3b:10:81:b2:f8:51:c1:01:47:
83:aa:bc:4d:94:3f:ba:14:85:2c:85:7f:c5:24:a1:
bc:4d:ed:71:e9:64:dd:3f:2b:47:0f:d5:f4:7d:7c:
0a:52:85:90:7f:56:be:63:0f:81:db:cd:20:99:a5:
36:69:08:3a:20:81:fb:88:80:aa:e3:61:21:a7:e1:
0b:da:56:b7:bc:50:b4:e3:89:d9:e7:06:2e:55:6f:
f0:10:0b:b4:53:dd:e8:0e:ec:23:31:46:ed:0a:58:
86:86:10:c1:94:a7:f2:a7:24:bb:15:b5:69:19:e9:
8b:b3:13:fc:75:f9:93:fe:53:f3:3a:08:af:0c:9f:
c3:64:4d:3b:af:41:08:c8:f3:20:aa:62:af:c2:26:
bf:d9:d7:cb:f1:d0:2d:4f:17:87:d1:1c:a2:71:94:
ee:6f:1e:c2:41:59:00:50:19:43:5c:39:94:cf:03:
b3:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:5C:3E:86:CC:A9:13:71:87:A1:07:5C:F4:6C:4D:CC:E9:74:73:01
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/gFw-hsypE3GHoQdc9GxNzOl0cwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.237.0/24
77.81.88.0/24
85.204.18.0/24
Signature Algorithm: sha256WithRSAEncryption
93:6c:67:22:58:49:b1:d1:59:db:f7:60:22:50:1f:aa:45:27:
82:09:1c:71:54:af:c5:24:a2:98:b1:e4:ba:93:67:57:f8:03:
52:2b:55:06:ee:0b:e5:af:81:90:33:70:97:6d:1f:3a:36:55:
1d:04:18:17:98:6f:fa:8e:d3:39:00:35:6d:18:c5:5b:a7:ab:
a8:a2:35:81:4b:06:ec:6b:18:02:ce:b3:a6:1e:dc:79:d0:81:
d8:e0:f7:b1:58:d2:df:42:9f:ce:6a:5a:b8:11:7d:40:82:db:
ce:05:54:c1:3d:8a:aa:2e:a2:60:18:8c:98:1b:b3:14:6c:b5:
65:d7:c7:c5:5d:bf:a4:d6:96:b8:00:8a:c0:99:3d:ea:2e:ac:
4a:d3:b3:1a:45:d6:64:6b:72:45:62:3c:3a:1e:8f:3f:e8:e1:
b4:1f:13:93:89:e3:bd:df:e0:d8:1d:77:57:70:5a:4c:dc:0f:
0c:9c:68:7d:06:b8:13:2a:e7:82:ae:10:f7:4f:3a:ba:db:e7:
61:dd:cf:b4:a6:a4:8a:f2:fb:e6:7e:b0:ad:0c:52:69:17:f1:
66:f2:07:54:56:57:e7:9d:a0:74:7a:b6:4c:5f:5d:1e:6a:97:
32:84:59:45:3c:00:ff:3b:20:9a:e5:3c:77:d1:e0:34:8e:17:
cf:5f:ad:87
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYonmvFQ0pCOi0PyD9Istzq5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjMwODI0MTI1MzAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MDVjM2U4NmNjYTkxMzcxODdhMTA3NWNmNDZjNGRjY2U5NzQ3MzAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjL1wb+SVqXwxYlMv7l3hgWzFUPUq
IOftOIWnV5zpNbj3qu6FexxJ7g/ImAD0SfwQufjObQOHMyVHcQKeWgu51M4jjrgP
mNhUltvP/8hfUNg7EIGy+FHBAUeDqrxNlD+6FIUshX/FJKG8Te1x6WTdPytHD9X0
fXwKUoWQf1a+Yw+B280gmaU2aQg6IIH7iICq42Ehp+EL2la3vFC044nZ5wYuVW/w
EAu0U93oDuwjMUbtCliGhhDBlKfypyS7FbVpGemLsxP8dfmT/lPzOgivDJ/DZE07
r0EIyPMgqmKvwia/2dfL8dAtTxeH0RyicZTubx7CQVkAUBlDXDmUzwOzlQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFIBcPobMqRNxh6EHXPRsTczpdHMBMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvZ0Z3LWhzeXBFM0dIb1FkYzlHeE56T2wwY3dFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQALmbtAwQA
TVFYAwQAVcwSMA0GCSqGSIb3DQEBCwUAA4IBAQCTbGciWEmx0Vnb92AiUB+qRSeC
CRxxVK/FJKKYseS6k2dX+ANSK1UG7gvlr4GQM3CXbR86NlUdBBgXmG/6jtM5ADVt
GMVbp6uoojWBSwbsaxgCzrOmHtx50IHY4PexWNLfQp/Oalq4EX1AgtvOBVTBPYqq
LqJgGIyYG7MUbLVl18fFXb+k1pa4AIrAmT3qLqxK07MaRdZka3JFYjw6Ho8/6OG0
HxOTieO93+DYHXdXcFpM3A8MnGh9BrgTKueCrhD3Tzq62+dh3c+0pqSK8vvmfrCt
DFJpF/Fm8gdUVlfnnaB0erZMX10eapcyhFlFPAD/OyCa5Tx30eA0jhfPX62H
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org