Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/jKtYF1XksF4DzJygnNyYDYCaH4Q.roa
File: jKtYF1XksF4DzJygnNyYDYCaH4Q.roa (raw, json)
Hash identifier: HJSkRcb5PATb9qs9otEwACMi00WOQloNNLTjoWvqT/8=
Subject key identifier: 8C:AB:58:17:55:E4:B0:5E:03:CC:9C:A0:9C:DC:98:0D:80:9A:1F:84
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01876BEC52810FF8056AADFACBE80F3E9640
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/jKtYF1XksF4DzJygnNyYDYCaH4Q.roa
Signing time: Mon 10 Apr 2023 16:07:42 +0000
ROA not before: Mon 10 Apr 2023 16:07:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 86.107.51.0/24 maxlen: 24
89.34.202.0/24 maxlen: 24
89.34.219.0/24 maxlen: 24
89.47.55.0/24 maxlen: 24
89.35.119.0/24 maxlen: 24
185.112.249.0/24 maxlen: 24
89.35.129.0/24 maxlen: 24
89.35.130.0/23 maxlen: 23
89.35.131.0/24 maxlen: 24
89.40.70.0/24 maxlen: 24
188.241.136.0/24 maxlen: 24
188.241.137.0/24 maxlen: 24
94.198.171.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
77.81.88.0/24 maxlen: 24
89.45.35.0/24 maxlen: 24
77.81.100.0/24 maxlen: 24
176.223.188.0/24 maxlen: 24
62.192.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Apr 2023 13:16:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6b:ec:52:81:0f:f8:05:6a:ad:fa:cb:e8:0f:3e:96:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Apr 10 16:07:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8cab581755e4b05e03cc9ca09cdc980d809a1f84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:fc:7b:9e:14:5d:d8:a1:7a:5a:ad:c9:2d:3f:
50:21:41:51:1e:9b:64:33:05:a9:6d:f2:8d:1e:41:
78:00:b4:b4:c9:8e:8e:b7:28:1b:14:7d:1c:3d:f7:
0d:3a:3e:89:6d:fb:fa:8b:4f:04:d5:ea:09:3f:06:
b7:a4:da:30:e9:8b:0c:56:5f:f5:3d:dd:ee:0d:3b:
ab:b7:30:49:65:db:a0:f8:d1:c6:76:32:72:c4:89:
c8:bf:5c:ff:83:72:d1:9b:2d:1f:c1:ca:53:0d:7d:
ee:6c:aa:83:52:2a:4b:e6:3d:63:56:58:0f:ab:73:
0a:56:99:bf:29:d5:19:bd:03:9b:78:2d:70:ee:3d:
88:f4:4f:bb:b0:2d:10:82:51:59:d2:ef:7d:dc:9a:
cc:45:19:59:50:19:36:ed:d6:1c:a8:d2:96:43:67:
56:f9:03:3b:9a:52:4b:57:e2:a3:95:e4:b8:c4:74:
d9:da:18:6c:bd:ed:04:0b:bc:b3:a4:7c:5b:1f:27:
f9:5b:f8:25:f5:9a:1b:91:51:b1:4d:3c:41:71:d2:
99:62:e3:f4:71:ed:e2:58:68:1f:4a:86:79:61:3f:
5f:bb:54:d5:5a:99:be:d8:c0:4e:27:2a:b6:b3:15:
3b:e2:cd:a4:4d:bb:25:eb:61:15:7a:29:f4:f3:2e:
5b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:AB:58:17:55:E4:B0:5E:03:CC:9C:A0:9C:DC:98:0D:80:9A:1F:84
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/jKtYF1XksF4DzJygnNyYDYCaH4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.152.0/24
77.81.88.0/24
77.81.100.0/24
86.107.51.0/24
86.107.100.0/24
89.34.202.0/24
89.34.219.0/24
89.35.119.0/24
89.35.129.0-89.35.131.255
89.40.70.0/24
89.45.35.0/24
89.47.55.0/24
94.198.171.0/24
176.223.188.0/24
185.112.249.0/24
188.241.136.0/23
Signature Algorithm: sha256WithRSAEncryption
00:9f:20:f6:37:f9:fa:2c:51:02:8d:b1:9e:e6:c8:f4:23:7f:
5b:a5:8d:b3:df:0d:98:9e:10:17:d3:d4:4a:cb:e8:83:0f:c3:
d1:86:bb:e9:b1:24:f6:91:50:dc:b7:c5:92:7a:74:63:43:80:
b0:e1:ad:a8:6b:c6:56:ea:37:d4:2e:48:f0:53:ac:e4:d0:b9:
a3:cb:46:a3:1f:e5:8a:ce:10:29:fd:4f:6f:66:8d:99:f1:bd:
fd:97:83:02:2c:dc:6e:5b:22:3a:87:d4:e6:4e:70:02:d2:ac:
67:b0:e6:b8:17:7b:51:a5:d3:0f:dd:a1:30:37:4b:74:59:1c:
12:db:de:45:ef:8c:95:14:7f:37:bb:a6:b9:5b:25:b6:f0:60:
c3:5c:4b:5e:42:64:76:47:c7:e1:a0:6d:88:68:40:63:8c:0a:
69:8b:9a:df:e5:51:25:fb:d0:f4:73:9a:8c:ce:94:58:e6:85:
6e:f4:23:d7:00:be:99:29:fa:bd:ac:1e:f2:4d:38:95:38:6d:
7e:6b:dc:ef:34:5f:58:6e:3b:31:8a:c1:df:d6:80:f4:b1:a9:
a6:21:d8:86:95:b7:1a:0f:8c:0a:21:78:f2:c6:b8:75:b7:1f:
97:e0:8b:d9:6f:b5:16:e8:ba:c7:95:95:d3:e8:67:19:e7:3d:
ec:0b:46:83
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgISAYdr7FKBD/gFaq36y+gPPpZAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjMwNDEwMTYwNzQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4Y2FiNTgxNzU1ZTRiMDVlMDNjYzljYTA5Y2RjOTgwZDgwOWExZjg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi/x7nhRd2KF6Wq3JLT9QIUFRHptk
MwWpbfKNHkF4ALS0yY6OtygbFH0cPfcNOj6Jbfv6i08E1eoJPwa3pNow6YsMVl/1
Pd3uDTurtzBJZdug+NHGdjJyxInIv1z/g3LRmy0fwcpTDX3ubKqDUipL5j1jVlgP
q3MKVpm/KdUZvQObeC1w7j2I9E+7sC0QglFZ0u993JrMRRlZUBk27dYcqNKWQ2dW
+QM7mlJLV+KjleS4xHTZ2hhsve0EC7yzpHxbHyf5W/gl9ZobkVGxTTxBcdKZYuP0
ce3iWGgfSoZ5YT9fu1TVWpm+2MBOJyq2sxU74s2kTbsl62EVein08y5bIwIDAQAB
o4ICbDCCAmgwHQYDVR0OBBYEFIyrWBdV5LBeA8ycoJzcmA2Amh+EMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvakt0WUYxWGtzRjREekp5Z25OeVlEWUNhSDRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGBBggrBgEFBQcBBwEB/wRyMHAwbgQCAAEwaAMEAD7AmAME
AE1RWAMEAE1RZAMEAFZrMwMEAFZrZAMEAFkiygMEAFki2wMEAFkjdzAMAwQAWSOB
AwQCWSOAAwQAWShGAwQAWS0jAwQAWS83AwQAXsarAwQAsN+8AwQAuXD5AwQBvPGI
MA0GCSqGSIb3DQEBCwUAA4IBAQAAnyD2N/n6LFECjbGe5sj0I39bpY2z3w2YnhAX
09RKy+iDD8PRhrvpsST2kVDct8WSenRjQ4Cw4a2oa8ZW6jfULkjwU6zk0Lmjy0aj
H+WKzhAp/U9vZo2Z8b39l4MCLNxuWyI6h9TmTnAC0qxnsOa4F3tRpdMP3aEwN0t0
WRwS295F74yVFH83u6a5WyW28GDDXEteQmR2R8fhoG2IaEBjjAppi5rf5VEl+9D0
c5qMzpRY5oVu9CPXAL6ZKfq9rB7yTTiVOG1+a9zvNF9YbjsxisHf1oD0sammIdiG
lbcaD4wKIXjyxrh1tx+X4IvZb7UW6LrHlZXT6GcZ5z3sC0aD
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org