Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/bWQ9dKMqpdx_DOnNUaJna5r2GJA.roa
File: bWQ9dKMqpdx_DOnNUaJna5r2GJA.roa (raw, json)
Hash identifier: VOW5UE4TxDhQ1TXbbFYTdBSCJJHxmuG9Db3QzEabDow=
Subject key identifier: 6D:64:3D:74:A3:2A:A5:DC:7F:0C:E9:CD:51:A2:67:6B:9A:F6:18:90
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 018983CF87C9798470126171138E9DE9953D
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/bWQ9dKMqpdx_DOnNUaJna5r2GJA.roa
Signing time: Sun 23 Jul 2023 17:32:43 +0000
ROA not before: Sun 23 Jul 2023 17:32:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209372
IP address blocks: 185.112.56.0/23 maxlen: 24
185.95.102.0/23 maxlen: 24
185.95.100.0/23 maxlen: 24
193.221.215.0/24 maxlen: 24
185.81.174.0/23 maxlen: 24
185.81.174.0/24 maxlen: 24
185.81.173.0/24 maxlen: 24
185.81.186.0/23 maxlen: 24
185.81.184.0/23 maxlen: 24
185.97.1.0/24 maxlen: 24
185.97.3.0/24 maxlen: 24
185.68.245.0/24 maxlen: 24
185.96.83.0/24 maxlen: 24
185.96.80.0/24 maxlen: 24
185.185.147.0/24 maxlen: 24
185.79.51.0/24 maxlen: 24
185.104.151.0/24 maxlen: 24
185.79.79.0/24 maxlen: 24
185.89.108.0/22 maxlen: 24
89.19.57.0/24 maxlen: 24
89.19.58.0/24 maxlen: 24
185.175.225.0/24 maxlen: 24
185.175.224.0/24 maxlen: 24
89.19.59.0/24 maxlen: 24
213.170.223.0/24 maxlen: 24
185.81.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:83:cf:87:c9:79:84:70:12:61:71:13:8e:9d:e9:95:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Jul 23 17:32:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d643d74a32aa5dc7f0ce9cd51a2676b9af61890
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:37:75:2e:bd:b9:31:04:6d:78:83:35:51:59:
50:80:43:99:ef:31:97:03:d8:d4:de:a0:c5:81:07:
98:32:05:3a:15:2d:17:d3:2f:cd:9c:dd:29:a6:91:
b8:7c:39:57:26:0a:6d:f0:3a:6f:c9:79:6b:69:36:
69:ff:c3:16:d1:1b:95:be:2c:db:a1:0b:d7:e2:96:
f2:79:f9:0c:c7:9e:b0:77:51:e6:44:5c:c7:a0:4a:
1d:78:2c:2e:81:53:02:c8:1b:1f:b4:a5:00:e8:9d:
6e:74:2c:10:6c:31:c9:2a:a6:28:ff:34:f5:d7:8e:
b8:55:d4:d8:d0:44:7d:2f:9d:d2:18:e8:09:b1:78:
de:1a:bd:c4:28:2b:40:66:8a:96:12:46:b9:de:c3:
32:e4:10:83:bf:b7:92:46:e1:5e:05:09:44:20:9f:
a2:85:94:68:98:b1:3b:2e:f1:84:9d:a9:83:9c:92:
84:69:83:96:ca:04:97:93:14:cf:e5:f3:14:fb:d0:
97:db:24:59:f8:f8:ab:2a:33:42:22:30:ca:3d:9f:
a4:09:b9:af:a3:d7:75:c7:91:7b:b8:f2:08:cc:08:
8a:28:7e:5b:d2:48:be:cd:7f:4f:e5:e8:ee:76:42:
a2:d6:e8:28:e8:91:ba:f4:eb:9f:d3:df:ee:92:d0:
77:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:64:3D:74:A3:2A:A5:DC:7F:0C:E9:CD:51:A2:67:6B:9A:F6:18:90
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/bWQ9dKMqpdx_DOnNUaJna5r2GJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.19.57.0-89.19.59.255
185.68.245.0/24
185.79.51.0/24
185.79.79.0/24
185.81.172.0/22
185.81.184.0/22
185.89.108.0/22
185.95.100.0/22
185.96.80.0/24
185.96.83.0/24
185.97.1.0/24
185.97.3.0/24
185.104.151.0/24
185.112.56.0/23
185.175.224.0/23
185.185.147.0/24
193.221.215.0/24
213.170.223.0/24
Signature Algorithm: sha256WithRSAEncryption
70:18:fd:60:84:a9:58:de:24:4a:6a:b8:54:28:ad:9f:cb:cf:
85:ff:47:7d:a2:da:0e:46:5e:9a:19:46:a2:20:60:51:3c:32:
44:86:01:2f:9a:92:6a:d1:a3:23:e4:de:74:82:cf:ad:85:8a:
b2:c8:9a:94:cf:9a:70:e9:79:69:83:10:e9:21:56:d3:ee:16:
81:73:a7:02:d0:07:5b:97:54:04:c0:1a:09:75:c3:bf:5e:45:
42:a9:54:34:66:bf:e4:60:38:55:c4:cf:46:cf:85:3a:11:e1:
ad:91:2d:0e:10:cb:df:d5:a0:50:60:98:d9:46:5e:f3:e9:25:
b4:7d:d5:1e:36:51:6f:97:13:e4:f7:50:c2:c6:9c:15:0f:b8:
3d:a8:eb:03:06:71:f8:ed:91:57:d3:22:a7:2a:81:3a:07:9a:
a9:ba:4f:ae:0e:a8:d0:6c:28:6f:24:7d:ff:b7:c9:08:2b:70:
0a:0e:25:52:8e:c1:55:33:29:63:4e:11:2d:f8:c7:0c:58:0d:
7f:21:58:59:64:c3:26:e2:c3:f4:73:af:3c:6c:a6:dc:b4:f0:
9f:83:b5:55:08:9b:af:61:6d:50:ba:45:9c:b2:c4:d1:19:28:
da:fc:73:04:ab:e2:28:80:19:c0:37:30:60:60:84:f0:25:20:
da:57:a3:68
-----BEGIN CERTIFICATE-----
MIIFbDCCBFSgAwIBAgISAYmDz4fJeYRwEmFxE46d6ZU9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhZWUxNWMzM2RlMzU4OTM4ZDY5MDBhMWIzYzE0NDgwYTM4
OWU4NWIwHhcNMjMwNzIzMTczMjQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZDY0M2Q3NGEzMmFhNWRjN2YwY2U5Y2Q1MWEyNjc2YjlhZjYxODkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmjd1Lr25MQRteIM1UVlQgEOZ7zGX
A9jU3qDFgQeYMgU6FS0X0y/NnN0pppG4fDlXJgpt8DpvyXlraTZp/8MW0RuVvizb
oQvX4pbyefkMx56wd1HmRFzHoEodeCwugVMCyBsftKUA6J1udCwQbDHJKqYo/zT1
1464VdTY0ER9L53SGOgJsXjeGr3EKCtAZoqWEka53sMy5BCDv7eSRuFeBQlEIJ+i
hZRomLE7LvGEnamDnJKEaYOWygSXkxTP5fMU+9CX2yRZ+PirKjNCIjDKPZ+kCbmv
o9d1x5F7uPIIzAiKKH5b0ki+zX9P5ejudkKi1ugo6JG69Ouf09/uktB3lwIDAQAB
o4ICeDCCAnQwHQYDVR0OBBYEFG1kPXSjKqXcfwzpzVGiZ2ua9hiQMB8GA1UdIwQY
MBaAFJruFcM941iTjWkAobPBRICjiehbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjIt
NmVlNTM0ZDkyZTUyLzEvYldROWRLTXFwZHhfRE9uTlVhSm5hNXIyR0pBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjItNmVlNTM0ZDkyZTUy
LzEvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGNBggrBgEFBQcBBwEB/wR+MHwwegQCAAEwdDAMAwQAWRM5
AwQCWRM4AwQAuUT1AwQAuU8zAwQAuU9PAwQCuVGsAwQCuVG4AwQCuVlsAwQCuV9k
AwQAuWBQAwQAuWBTAwQAuWEBAwQAuWEDAwQAuWiXAwQBuXA4AwQBua/gAwQAubmT
AwQAwd3XAwQA1arfMA0GCSqGSIb3DQEBCwUAA4IBAQBwGP1ghKlY3iRKarhUKK2f
y8+F/0d9otoORl6aGUaiIGBRPDJEhgEvmpJq0aMj5N50gs+thYqyyJqUz5pw6Xlp
gxDpIVbT7haBc6cC0Adbl1QEwBoJdcO/XkVCqVQ0Zr/kYDhVxM9Gz4U6EeGtkS0O
EMvf1aBQYJjZRl7z6SW0fdUeNlFvlxPk91DCxpwVD7g9qOsDBnH47ZFX0yKnKoE6
B5qpuk+uDqjQbChvJH3/t8kIK3AKDiVSjsFVMyljThEt+McMWA1/IVhZZMMm4sP0
c688bKbctPCfg7VVCJuvYW1QukWcssTRGSja/HMEq+IogBnANzBgYITwJSDaV6No
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org