Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/22a3c7-6fe5-49e1-935d-8bb80152ab34/1/o7J9DjfSjKhJ9XwBKDqCREPbK_4.roa
File: o7J9DjfSjKhJ9XwBKDqCREPbK_4.roa (raw, json)
Hash identifier: nWhpEIQVZ4anRghEe8R0LepPIl/C9cCuNksp7DKgu44=
Subject key identifier: A3:B2:7D:0E:37:D2:8C:A8:49:F5:7C:01:28:3A:82:44:43:DB:2B:FE
Certificate issuer: /CN=e7fed4e778209c3cae93d4b76d350704462c3aab
Certificate serial: 018CC8708D02F5D30035C9A991E9ACB82C7C
Authority key identifier: E7:FE:D4:E7:78:20:9C:3C:AE:93:D4:B7:6D:35:07:04:46:2C:3A:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_7U53ggnDyuk9S3bTUHBEYsOqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/22a3c7-6fe5-49e1-935d-8bb80152ab34/1/o7J9DjfSjKhJ9XwBKDqCREPbK_4.roa
Signing time: Tue 02 Jan 2024 04:31:08 +0000
ROA not before: Tue 02 Jan 2024 04:31:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58224
IP address blocks: 89.38.242.0/23 maxlen: 23
89.33.234.0/23 maxlen: 23
89.35.156.0/23 maxlen: 23
89.35.176.0/23 maxlen: 23
45.140.28.0/22 maxlen: 22
89.43.204.0/23 maxlen: 23
89.42.32.0/23 maxlen: 23
89.37.30.0/23 maxlen: 23
89.40.128.0/23 maxlen: 23
89.33.204.0/23 maxlen: 23
89.34.168.0/23 maxlen: 23
89.39.186.0/23 maxlen: 23
89.34.176.0/23 maxlen: 23
89.44.202.0/23 maxlen: 23
89.44.112.0/23 maxlen: 23
89.44.118.0/23 maxlen: 23
89.34.88.0/23 maxlen: 23
89.46.44.0/23 maxlen: 23
89.34.94.0/23 maxlen: 23
89.35.58.0/23 maxlen: 23
89.45.230.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 08 Mar 2024 06:24:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:70:8d:02:f5:d3:00:35:c9:a9:91:e9:ac:b8:2c:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7fed4e778209c3cae93d4b76d350704462c3aab
Validity
Not Before: Jan 2 04:31:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3b27d0e37d28ca849f57c01283a824443db2bfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:7c:be:2a:8e:24:ce:fe:ee:82:67:05:68:e9:
78:cd:99:53:f2:a0:85:09:f8:42:ef:48:f7:fd:54:
ef:13:55:04:4f:44:54:68:f1:19:41:6a:89:38:e6:
3c:4f:f4:49:df:4e:22:ea:10:9b:ed:44:dc:2b:4d:
8f:32:c8:3c:81:e6:43:f6:88:ba:d2:45:51:56:e0:
fb:21:b4:ec:dc:59:96:42:86:bc:3c:97:69:b1:99:
f2:d9:ab:85:4d:38:ba:18:49:0b:45:ec:aa:7f:9a:
9e:96:7b:80:f0:54:bf:e4:c4:23:b3:22:ed:c3:2b:
92:d4:4a:75:18:18:a3:5e:45:80:e3:42:c1:b5:de:
a4:46:f8:c0:90:e3:e2:42:38:61:50:bc:77:d1:11:
87:ac:08:2a:75:83:d3:bb:3c:d4:fc:6b:0d:43:65:
f1:91:bc:b1:1c:14:19:54:3a:70:36:85:ae:a2:e4:
a1:c8:08:3d:e5:c2:95:21:94:fc:03:42:40:9f:6d:
99:98:64:88:81:21:68:69:2e:72:3b:95:f7:db:ae:
33:9b:89:e6:ee:c3:dc:78:83:ad:c6:03:49:d2:5c:
73:c0:75:fe:3f:40:1d:99:d3:73:07:a5:3a:cb:ac:
a2:d2:8a:21:fc:c2:f1:ea:e3:8f:93:82:fd:ee:aa:
5d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:B2:7D:0E:37:D2:8C:A8:49:F5:7C:01:28:3A:82:44:43:DB:2B:FE
X509v3 Authority Key Identifier:
keyid:E7:FE:D4:E7:78:20:9C:3C:AE:93:D4:B7:6D:35:07:04:46:2C:3A:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_7U53ggnDyuk9S3bTUHBEYsOqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/22a3c7-6fe5-49e1-935d-8bb80152ab34/1/o7J9DjfSjKhJ9XwBKDqCREPbK_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/22a3c7-6fe5-49e1-935d-8bb80152ab34/1/5_7U53ggnDyuk9S3bTUHBEYsOqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.28.0/22
89.33.204.0/23
89.33.234.0/23
89.34.88.0/23
89.34.94.0/23
89.34.168.0/23
89.34.176.0/23
89.35.58.0/23
89.35.156.0/23
89.35.176.0/23
89.37.30.0/23
89.38.242.0/23
89.39.186.0/23
89.40.128.0/23
89.42.32.0/23
89.43.204.0/23
89.44.112.0/23
89.44.118.0/23
89.44.202.0/23
89.45.230.0/23
89.46.44.0/23
Signature Algorithm: sha256WithRSAEncryption
c5:52:6a:68:d1:b5:2f:06:ab:17:f3:d1:d8:cf:ee:48:16:9f:
b4:e2:6c:a1:af:ef:ca:5c:b5:ae:e7:92:03:e1:92:2b:f6:33:
d5:84:58:df:d8:3b:7e:5a:74:5e:4f:15:9a:08:58:a4:6b:9f:
82:4d:53:e1:01:27:0f:64:96:25:e0:a1:22:fe:e8:0f:b4:9d:
3d:f5:99:db:23:be:1f:c3:1f:94:d0:e3:4e:4e:19:75:b7:1b:
32:da:44:87:90:ac:82:9b:4a:8c:f7:11:b8:74:3b:77:d1:82:
0f:66:8f:f1:b6:75:2a:65:9d:0c:45:8b:81:0d:af:1d:4f:e3:
92:70:2a:90:4f:5c:65:83:4f:bf:a4:9b:04:af:8e:01:f5:76:
24:ff:b8:3e:8f:17:fd:61:29:e4:88:7b:d6:df:3b:ac:8e:c6:
13:3a:06:4b:1c:53:6b:91:b7:21:27:f6:26:03:db:0c:bd:b4:
bc:e7:75:84:65:dd:3b:02:59:99:9c:6c:eb:99:06:f8:a3:aa:
b7:7c:1e:ed:13:d7:17:69:5d:9f:7a:c6:03:44:79:2e:b2:26:
db:da:ee:f9:e0:29:d6:d8:4a:46:ab:26:62:9c:71:c7:86:73:
c2:9e:35:fa:b9:4c:20:1e:21:4b:8c:75:a6:72:94:73:ea:98:
30:00:67:13
-----BEGIN CERTIFICATE-----
MIIFeTCCBGGgAwIBAgISAYzIcI0C9dMANcmpkemsuCx8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3ZmVkNGU3NzgyMDljM2NhZTkzZDRiNzZkMzUwNzA0NDYy
YzNhYWIwHhcNMjQwMTAyMDQzMTA4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhM2IyN2QwZTM3ZDI4Y2E4NDlmNTdjMDEyODNhODI0NDQzZGIyYmZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiny+Ko4kzv7ugmcFaOl4zZlT8qCF
CfhC70j3/VTvE1UET0RUaPEZQWqJOOY8T/RJ304i6hCb7UTcK02PMsg8geZD9oi6
0kVRVuD7IbTs3FmWQoa8PJdpsZny2auFTTi6GEkLReyqf5qelnuA8FS/5MQjsyLt
wyuS1Ep1GBijXkWA40LBtd6kRvjAkOPiQjhhULx30RGHrAgqdYPTuzzU/GsNQ2Xx
kbyxHBQZVDpwNoWuouShyAg95cKVIZT8A0JAn22ZmGSIgSFoaS5yO5X3264zm4nm
7sPceIOtxgNJ0lxzwHX+P0AdmdNzB6U6y6yi0ooh/MLx6uOPk4L97qpdpQIDAQAB
o4IChTCCAoEwHQYDVR0OBBYEFKOyfQ430oyoSfV8ASg6gkRD2yv+MB8GA1UdIwQY
MBaAFOf+1Od4IJw8rpPUt201BwRGLDqrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNV83VTUzZ2duRHl1azlTM2JUVUhCRVlzT3FzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC8yMmEzYzctNmZlNS00OWUxLTkzNWQt
OGJiODAxNTJhYjM0LzEvbzdKOURqZlNqS2hKOVh3QktEcUNSRVBiS180LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC8yMmEzYzctNmZlNS00OWUxLTkzNWQtOGJiODAxNTJhYjM0
LzEvNV83VTUzZ2duRHl1azlTM2JUVUhCRVlzT3FzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGaBggrBgEFBQcBBwEB/wSBijCBhzCBhAQCAAEwfgMEAi2M
HAMEAVkhzAMEAVkh6gMEAVkiWAMEAVkiXgMEAVkiqAMEAVkisAMEAVkjOgMEAVkj
nAMEAVkjsAMEAVklHgMEAVkm8gMEAVknugMEAVkogAMEAVkqIAMEAVkrzAMEAVks
cAMEAVksdgMEAVksygMEAVkt5gMEAVkuLDANBgkqhkiG9w0BAQsFAAOCAQEAxVJq
aNG1LwarF/PR2M/uSBaftOJsoa/vyly1rueSA+GSK/Yz1YRY39g7flp0Xk8VmghY
pGufgk1T4QEnD2SWJeChIv7oD7SdPfWZ2yO+H8MflNDjTk4ZdbcbMtpEh5CsgptK
jPcRuHQ7d9GCD2aP8bZ1KmWdDEWLgQ2vHU/jknAqkE9cZYNPv6SbBK+OAfV2JP+4
Po8X/WEp5Ih71t87rI7GEzoGSxxTa5G3ISf2JgPbDL20vOd1hGXdOwJZmZxs65kG
+KOqt3we7RPXF2ldn3rGA0R5LrIm29ru+eAp1thKRqsmYpxxx4Zzwp41+rlMIB4h
S4x1pnKUc+qYMABnEw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:24 2024 by rpki-client on console-ams.rpki-client.org