Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/jWsPjXYlgHN_Sr2VlWq3Pf8x8IY.roa
File: jWsPjXYlgHN_Sr2VlWq3Pf8x8IY.roa (raw, json)
Hash identifier: 9ew0pArhLPiqlfnVCjCUEOAuAtm8e6QJUZIzf1X0Pd0=
Subject key identifier: 8D:6B:0F:8D:76:25:80:73:7F:4A:BD:95:95:6A:B7:3D:FF:31:F0:86
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 0194236984CC44E311278ABC77E70AABB6B4
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/jWsPjXYlgHN_Sr2VlWq3Pf8x8IY.roa
Signing time: Wed 01 Jan 2025 19:48:25 +0000
ROA not before: Wed 01 Jan 2025 19:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8708
IP address blocks: 46.102.175.0/24 maxlen: 24
85.204.241.0/24 maxlen: 24
85.204.242.0/24 maxlen: 24
86.105.233.0/24 maxlen: 24
86.106.113.0/24 maxlen: 24
89.34.178.0/24 maxlen: 24
89.38.236.0/24 maxlen: 24
89.40.65.0/24 maxlen: 24
89.43.53.0/24 maxlen: 24
89.43.63.0/24 maxlen: 24
89.46.93.0/24 maxlen: 24
93.114.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Jan 2025 18:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:84:cc:44:e3:11:27:8a:bc:77:e7:0a:ab:b6:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 1 19:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8d6b0f8d762580737f4abd95956ab73dff31f086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:bc:dd:df:a2:93:18:e9:f5:c5:38:5c:97:f4:
09:af:08:c0:f0:90:62:54:51:32:1c:09:59:13:e6:
0e:66:3f:28:27:6f:15:bb:fd:9d:ab:b7:56:bc:77:
4d:b3:ef:f9:b1:0d:e0:46:d9:c5:92:39:45:c8:65:
b3:8e:97:d9:29:ac:0e:b8:31:3d:a9:4c:d6:7c:00:
2f:f7:9e:78:d2:99:83:9c:ed:71:03:b1:36:0e:bd:
b1:15:5d:2a:1a:27:d2:1f:5c:74:f7:13:57:f6:f1:
3a:a9:77:5b:45:59:e4:59:2d:5f:67:92:a6:c4:1a:
fd:00:b2:7a:d2:20:4e:cd:2b:95:d8:f8:04:57:37:
90:92:a6:13:26:46:36:8e:61:04:57:f3:70:7b:27:
a6:8f:8d:a6:e7:5d:6b:be:9e:ba:5f:19:fd:d2:65:
47:ea:90:3e:a7:3a:af:8d:f3:72:7d:70:82:f3:75:
28:6c:23:9d:60:f3:16:dd:de:4a:54:b7:df:7f:e0:
09:8c:90:1e:2f:aa:98:f6:cd:5e:3b:8d:1f:09:4d:
e9:32:29:2a:80:77:d5:8a:9f:3d:6c:9e:91:65:b1:
c7:71:27:f2:cc:86:24:77:41:0e:5a:9f:52:9a:bb:
28:64:d8:5e:11:30:35:2e:dd:da:5c:67:e2:e2:af:
98:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:6B:0F:8D:76:25:80:73:7F:4A:BD:95:95:6A:B7:3D:FF:31:F0:86
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/jWsPjXYlgHN_Sr2VlWq3Pf8x8IY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.175.0/24
85.204.241.0-85.204.242.255
86.105.233.0/24
86.106.113.0/24
89.34.178.0/24
89.38.236.0/24
89.40.65.0/24
89.43.53.0/24
89.43.63.0/24
89.46.93.0/24
93.114.57.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:3c:1c:98:ff:2e:09:d1:2f:d0:02:d8:ea:c6:a2:7d:bb:b7:
13:29:2a:81:8b:59:a2:5a:30:11:fc:91:29:8f:31:3a:01:b3:
1e:d8:0d:4a:b9:ba:e1:a0:03:03:aa:50:b3:1d:99:b3:c2:82:
a6:69:76:bd:85:92:5c:f2:5c:40:8b:79:d6:28:94:ee:b3:fc:
cc:9d:8c:01:73:47:86:62:f4:93:99:9c:80:a8:33:08:20:12:
97:3e:5f:a6:e5:c7:c6:95:05:37:cc:db:b5:47:3b:77:03:da:
f0:b7:59:5c:56:e6:9f:d6:67:3f:dd:96:f0:f5:6a:27:a9:e8:
ae:06:99:56:ee:47:77:10:74:9d:f6:be:1d:a0:3a:e0:cb:ea:
95:9e:b6:3c:5c:d3:62:1e:02:53:d3:a9:bd:b7:24:36:ba:08:
c3:8b:aa:ba:80:46:6f:3f:04:90:ea:c7:d9:73:83:9d:6e:1a:
62:ab:67:4b:65:48:ff:35:b4:b5:97:b1:f6:84:ec:0b:65:55:
aa:ab:04:e8:e1:e5:be:05:60:b5:a8:7a:1f:b5:2e:51:ae:75:
18:15:3e:04:25:83:07:67:7a:a3:22:85:3f:bb:65:5f:7c:4f:
bc:32:4b:4a:72:b3:b6:35:09:5f:58:19:4b:ca:df:bd:88:6a:
fd:c8:08:dd
-----BEGIN CERTIFICATE-----
MIIFQzCCBCugAwIBAgISAZQjaYTMROMRJ4q8d+cKq7a0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4ZTYyNjM0ZTFiZDUxMzNhOWRlNDUxMmFlOThjYWQxYjIy
MTliNTkwHhcNMjUwMTAxMTk0ODI1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZDZiMGY4ZDc2MjU4MDczN2Y0YWJkOTU5NTZhYjczZGZmMzFmMDg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuLzd36KTGOn1xThcl/QJrwjA8JBi
VFEyHAlZE+YOZj8oJ28Vu/2dq7dWvHdNs+/5sQ3gRtnFkjlFyGWzjpfZKawOuDE9
qUzWfAAv95540pmDnO1xA7E2Dr2xFV0qGifSH1x09xNX9vE6qXdbRVnkWS1fZ5Km
xBr9ALJ60iBOzSuV2PgEVzeQkqYTJkY2jmEEV/Nweyemj42m511rvp66Xxn90mVH
6pA+pzqvjfNyfXCC83UobCOdYPMW3d5KVLfff+AJjJAeL6qY9s1eO40fCU3pMikq
gHfVip89bJ6RZbHHcSfyzIYkd0EOWp9SmrsoZNheETA1Lt3aXGfi4q+YfwIDAQAB
o4ICTzCCAkswHQYDVR0OBBYEFI1rD412JYBzf0q9lZVqtz3/MfCGMB8GA1UdIwQY
MBaAFPjmJjThvVEzqd5FEq6YytGyIZtZMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1PWW1OT0c5VVRPcDNrVVNycGpLMGJJaG0xay5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFl
LTkyZTI1ZmUxNjMzMS8xL2pXc1BqWFlsZ0hOX1NyMlZsV3EzUGY4eDhJWS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFlLTkyZTI1ZmUxNjMz
MS8xLzEtT1ltTk9HOVVUT3Aza1VTcnBqSzBiSWhtMWsuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwYwYIKwYBBQUHAQcBAf8EVDBSMFAEAgABMEoDBAAuZq8w
DAMEAFXM8QMEAFXM8gMEAFZp6QMEAFZqcQMEAFkisgMEAFkm7AMEAFkoQQMEAFkr
NQMEAFkrPwMEAFkuXQMEAF1yOTANBgkqhkiG9w0BAQsFAAOCAQEApTwcmP8uCdEv
0ALY6saifbu3EykqgYtZolowEfyRKY8xOgGzHtgNSrm64aADA6pQsx2Zs8KCpml2
vYWSXPJcQIt51iiU7rP8zJ2MAXNHhmL0k5mcgKgzCCASlz5fpuXHxpUFN8zbtUc7
dwPa8LdZXFbmn9ZnP92W8PVqJ6norgaZVu5HdxB0nfa+HaA64MvqlZ62PFzTYh4C
U9OpvbckNroIw4uquoBGbz8EkOrH2XODnW4aYqtnS2VI/zW0tZex9oTsC2VVqqsE
6OHlvgVgtah6H7UuUa51GBU+BCWDB2d6oyKFP7tlX3xPvDJLSnKztjUJX1gZS8rf
vYhq/cgI3Q==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:33:49 2025 by rpki-client