Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/o248c3OV0iAjCsdupnwoRX-GYPE.roa
File: o248c3OV0iAjCsdupnwoRX-GYPE.roa (raw, json)
Hash identifier: UOoyU+BZehSEzdnWOFcuAld2+4WDFkwrB1md+FvWuNQ=
Subject key identifier: A3:6E:3C:73:73:95:D2:20:23:0A:C7:6E:A6:7C:28:45:7F:86:60:F1
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018A09A99B1C2F089931A5495E3D2522724A
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/o248c3OV0iAjCsdupnwoRX-GYPE.roa
Signing time: Fri 18 Aug 2023 17:20:24 +0000
ROA not before: Fri 18 Aug 2023 17:20:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212219
IP address blocks: 86.107.51.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
89.34.219.0/24 maxlen: 24
89.47.36.0/24 maxlen: 24
89.47.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 18 Aug 2023 19:09:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:09:a9:9b:1c:2f:08:99:31:a5:49:5e:3d:25:22:72:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 18 17:20:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a36e3c737395d220230ac76ea67c28457f8660f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:2e:48:c9:e5:00:50:b1:d0:1c:55:7e:69:10:
88:f9:99:ad:5e:30:37:f8:0f:a4:df:f3:96:b2:a3:
16:5c:f9:3c:9a:e9:e8:89:6c:1e:0d:c6:18:fc:b8:
5c:0c:af:9c:12:fa:2d:be:b7:ff:8f:15:5a:a0:75:
56:7c:de:8a:7b:ac:b8:57:17:ed:cc:11:97:03:56:
04:2a:3c:1f:01:bd:51:b1:0c:a2:9d:91:19:e5:0c:
9f:de:1d:71:8c:6c:df:ad:b1:31:34:90:e7:3c:69:
48:2f:03:3a:25:b6:89:ed:23:ae:cb:9f:34:21:ea:
a2:5d:d5:1c:7b:54:5b:4a:da:05:67:b3:a7:24:32:
c4:ef:f6:c4:e2:4c:c7:50:89:05:d7:fa:fc:c5:d5:
df:74:8e:3d:8f:df:5d:9a:c3:1c:a6:df:ce:4e:d4:
e6:48:9b:c1:b6:cd:46:98:5a:4a:a3:1e:c9:0b:ad:
5f:7f:65:01:2a:d2:77:88:7d:2a:e6:cf:d4:51:c8:
b8:49:b2:13:8f:af:e0:1b:4a:fd:1b:3e:cb:8f:d4:
05:48:d3:8a:a6:29:fc:0d:dc:4b:f2:36:f4:80:1b:
26:3a:dc:be:ba:89:f7:9b:c1:83:f2:20:5a:42:9d:
fb:2d:57:54:e0:25:e0:45:39:bc:a6:5c:b8:cb:f2:
b7:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:6E:3C:73:73:95:D2:20:23:0A:C7:6E:A6:7C:28:45:7F:86:60:F1
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/o248c3OV0iAjCsdupnwoRX-GYPE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.107.51.0/24
89.34.106.0/24
89.34.219.0/24
89.47.36.0/24
89.47.55.0/24
Signature Algorithm: sha256WithRSAEncryption
77:7f:95:d4:a1:90:49:a6:30:65:b3:94:62:9a:4b:1f:c4:39:
41:77:6b:ec:0f:1a:a2:5b:69:11:57:9a:77:a5:20:76:f9:f1:
e9:9e:58:2f:0f:db:e1:3f:03:0d:22:c8:07:ec:56:2e:33:14:
c9:f1:f7:ee:e3:bc:b7:4e:95:bf:8f:82:2e:2b:5c:22:6b:d3:
9f:54:b0:c5:8d:57:0f:66:c8:ac:e2:44:62:83:05:d0:56:1e:
83:00:70:d2:a1:7e:29:7e:d7:c8:a8:1f:bc:3c:bf:a7:3a:69:
50:3e:4c:b4:43:1a:bc:c4:ab:e5:ba:0b:4c:36:d6:ad:3b:56:
27:84:34:59:64:28:53:c6:5b:23:2a:45:8f:6c:94:df:b0:2e:
05:57:15:c6:97:6f:ac:e1:0f:3f:11:77:90:05:64:61:8b:11:
3f:57:d6:f8:22:61:b4:f1:19:33:38:0e:a2:7f:44:26:e9:88:
c7:bf:7a:40:63:98:28:0b:42:3e:ad:53:ab:b5:b9:57:75:79:
cd:24:c5:9f:60:94:5b:1b:e1:be:a0:3e:5e:85:05:1d:6a:c5:
44:87:7a:f9:18:c1:58:0a:14:1a:18:c6:00:52:fa:35:b0:e7:
76:b3:d9:9a:98:dd:8a:f2:d0:5d:e8:f3:16:cf:b8:5b:b6:8e:
a4:9b:af:d4
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAYoJqZscLwiZMaVJXj0lInJKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjMwODE4MTcyMDI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMzZlM2M3MzczOTVkMjIwMjMwYWM3NmVhNjdjMjg0NTdmODY2MGYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2C5IyeUAULHQHFV+aRCI+ZmtXjA3
+A+k3/OWsqMWXPk8munoiWweDcYY/LhcDK+cEvotvrf/jxVaoHVWfN6Ke6y4Vxft
zBGXA1YEKjwfAb1RsQyinZEZ5Qyf3h1xjGzfrbExNJDnPGlILwM6JbaJ7SOuy580
IeqiXdUce1RbStoFZ7OnJDLE7/bE4kzHUIkF1/r8xdXfdI49j99dmsMcpt/OTtTm
SJvBts1GmFpKox7JC61ff2UBKtJ3iH0q5s/UUci4SbITj6/gG0r9Gz7Lj9QFSNOK
pin8DdxL8jb0gBsmOty+uon3m8GD8iBaQp37LVdU4CXgRTm8ply4y/K3FwIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFKNuPHNzldIgIwrHbqZ8KEV/hmDxMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvbzI0OGMzT1YwaUFqQ3NkdXBud29SWC1HWVBFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAVmszAwQA
WSJqAwQAWSLbAwQAWS8kAwQAWS83MA0GCSqGSIb3DQEBCwUAA4IBAQB3f5XUoZBJ
pjBls5RimksfxDlBd2vsDxqiW2kRV5p3pSB2+fHpnlgvD9vhPwMNIsgH7FYuMxTJ
8ffu47y3TpW/j4IuK1wia9OfVLDFjVcPZsis4kRigwXQVh6DAHDSoX4pftfIqB+8
PL+nOmlQPky0Qxq8xKvlugtMNtatO1YnhDRZZChTxlsjKkWPbJTfsC4FVxXGl2+s
4Q8/EXeQBWRhixE/V9b4ImG08RkzOA6if0Qm6YjHv3pAY5goC0I+rVOrtblXdXnN
JMWfYJRbG+G+oD5ehQUdasVEh3r5GMFYChQaGMYAUvo1sOd2s9mamN2K8tBd6PMW
z7hbto6km6/U
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org