Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/fcYVmvjNMyGaLAmn-3AHXEzh-xY.roa
File: fcYVmvjNMyGaLAmn-3AHXEzh-xY.roa (raw, json)
Hash identifier: 7AtLb5j1/bswITh7b2T/mhzKubU4aJftvNduKg76U+o=
Subject key identifier: 7D:C6:15:9A:F8:CD:33:21:9A:2C:09:A7:FB:70:07:5C:4C:E1:FB:16
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 01856F1DC6E752548C232977AAB5BB78AF87
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/fcYVmvjNMyGaLAmn-3AHXEzh-xY.roa
Signing time: Sun 01 Jan 2023 20:55:00 +0000
ROA not before: Sun 01 Jan 2023 20:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 4785
IP address blocks: 45.14.104.0/24 maxlen: 24
45.14.105.0/24 maxlen: 24
45.14.106.0/24 maxlen: 24
45.14.107.0/24 maxlen: 24
45.142.124.0/22 maxlen: 24
45.87.92.0/24 maxlen: 24
45.87.94.0/24 maxlen: 24
45.87.93.0/24 maxlen: 24
45.87.95.0/24 maxlen: 24
149.62.44.0/24 maxlen: 24
185.184.223.0/24 maxlen: 24
45.141.44.0/22 maxlen: 24
45.131.155.0/24 maxlen: 24
45.8.112.0/22 maxlen: 24
194.114.136.0/24 maxlen: 24
195.245.229.0/24 maxlen: 24
195.245.241.0/24 maxlen: 24
195.245.242.0/24 maxlen: 24
194.104.144.0/24 maxlen: 24
194.36.24.0/24 maxlen: 24
185.248.84.0/24 maxlen: 24
45.14.71.0/24 maxlen: 24
45.14.70.0/24 maxlen: 24
45.135.40.0/24 maxlen: 24
45.135.42.0/24 maxlen: 24
45.135.41.0/24 maxlen: 24
45.135.43.0/24 maxlen: 24
45.8.221.0/24 maxlen: 24
45.8.223.0/24 maxlen: 24
45.8.220.0/24 maxlen: 24
45.8.222.0/24 maxlen: 24
91.200.243.0/24 maxlen: 24
91.200.242.0/24 maxlen: 24
193.32.148.0/22 maxlen: 24
45.89.216.0/22 maxlen: 24
2a10:480::/29 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:c6:e7:52:54:8c:23:29:77:aa:b5:bb:78:af:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 1 20:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7dc6159af8cd33219a2c09a7fb70075c4ce1fb16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ad:d3:bd:ed:6f:af:18:a1:3f:e7:58:6b:20:
68:6f:65:fe:03:64:4a:9c:b9:46:9f:90:32:68:2e:
d6:2d:c6:b4:fa:22:e6:f3:08:3e:41:83:08:f9:18:
e1:51:07:db:3d:ca:03:df:b9:a5:6f:32:1d:e7:83:
87:ec:35:0d:a3:34:34:0b:29:fd:64:d3:0d:09:18:
f8:62:bc:c6:d9:f2:8b:cd:70:7e:52:0f:da:82:3b:
4e:78:0e:07:84:5f:b0:15:21:43:ad:6b:32:c2:3e:
d0:01:7e:31:5a:ba:1a:36:04:68:ac:8d:28:c7:35:
b2:47:a6:d4:90:93:55:92:23:bb:7f:da:4e:a1:b0:
ba:d7:c4:4f:27:d2:48:f2:4f:01:d2:ae:f5:a0:41:
d1:f3:06:3c:2a:3b:b5:38:00:8d:90:88:4c:56:48:
26:2c:60:4d:f9:37:cc:4a:aa:9c:26:e9:1f:cc:e3:
53:7f:e0:a1:9a:91:94:ae:8c:66:1e:8c:41:7f:4e:
f6:3c:bf:1b:de:41:f5:1e:00:34:47:c0:c6:04:95:
e8:15:53:ed:68:a7:e9:c1:37:c8:5b:5b:ee:92:45:
ba:5f:34:07:80:6d:cc:55:c8:95:2e:79:00:b3:4d:
2b:02:bb:64:6f:0f:10:78:19:f0:ae:f6:c9:31:08:
85:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:C6:15:9A:F8:CD:33:21:9A:2C:09:A7:FB:70:07:5C:4C:E1:FB:16
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/fcYVmvjNMyGaLAmn-3AHXEzh-xY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.112.0/22
45.8.220.0/22
45.14.70.0/23
45.14.104.0/22
45.87.92.0/22
45.89.216.0/22
45.131.155.0/24
45.135.40.0/22
45.141.44.0/22
45.142.124.0/22
91.200.242.0/23
149.62.44.0/24
185.184.223.0/24
185.248.84.0/24
193.32.148.0/22
194.36.24.0/24
194.104.144.0/24
194.114.136.0/24
195.245.229.0/24
195.245.241.0-195.245.242.255
IPv6:
2a10:480::/29
Signature Algorithm: sha256WithRSAEncryption
6d:08:97:32:1a:15:7c:07:69:79:f6:f2:e8:7f:af:a1:b2:bb:
dc:c0:64:fb:ee:0b:a5:2f:2b:07:e0:56:84:3e:58:d1:e6:70:
82:ea:20:80:4f:f6:2f:b5:76:45:06:4e:3d:0b:e3:57:e1:c8:
1c:39:47:da:89:6a:ab:f8:44:b9:3c:50:92:78:4d:64:9f:f4:
32:81:1b:e2:fb:9c:09:b5:9a:a8:56:0a:dc:e0:77:75:db:65:
76:7b:d3:b7:2b:83:e7:f8:82:41:2a:d4:29:6b:b1:96:78:42:
7f:4f:0e:d9:70:47:a0:ec:f3:27:05:c6:cc:21:58:db:e1:ac:
55:90:84:ad:a2:a3:29:33:9e:16:32:52:d4:72:ec:26:d4:e5:
a3:b6:68:b2:c6:d9:0d:aa:42:24:2f:b3:e9:a6:71:87:74:eb:
e7:8f:7e:73:bb:da:5f:92:5d:e3:04:e1:76:25:7a:c9:25:74:
d5:ac:3e:11:a7:04:8f:81:8b:6c:34:e7:73:a8:d7:98:ef:91:
5f:2c:bf:ac:cf:21:e6:55:c2:6f:af:0c:7d:f7:12:a7:5d:60:
f3:04:56:5e:2c:86:a1:7e:bb:87:ec:55:55:73:56:20:7e:5e:
f4:a3:04:1c:79:e0:b9:95:d4:80:86:6b:69:fe:dc:44:e1:74:
f3:fc:d0:f4
-----BEGIN CERTIFICATE-----
MIIFizCCBHOgAwIBAgISAYVvHcbnUlSMIyl3qrW7eK+HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1NzZlYjJjYzQ2MmU2ZTRiZjBkZTY5YjlmNjM0ODc1ZGVi
YmFhZTIwHhcNMjMwMTAxMjA1NTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZGM2MTU5YWY4Y2QzMzIxOWEyYzA5YTdmYjcwMDc1YzRjZTFmYjE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqq3Tve1vrxihP+dYayBob2X+A2RK
nLlGn5AyaC7WLca0+iLm8wg+QYMI+RjhUQfbPcoD37mlbzId54OH7DUNozQ0Cyn9
ZNMNCRj4YrzG2fKLzXB+Ug/agjtOeA4HhF+wFSFDrWsywj7QAX4xWroaNgRorI0o
xzWyR6bUkJNVkiO7f9pOobC618RPJ9JI8k8B0q71oEHR8wY8Kju1OACNkIhMVkgm
LGBN+TfMSqqcJukfzONTf+ChmpGUroxmHoxBf072PL8b3kH1HgA0R8DGBJXoFVPt
aKfpwTfIW1vukkW6XzQHgG3MVciVLnkAs00rArtkbw8QeBnwrvbJMQiFNwIDAQAB
o4IClzCCApMwHQYDVR0OBBYEFH3GFZr4zTMhmiwJp/twB1xM4fsWMB8GA1UdIwQY
MBaAFKV26yzEYubkvw3mm59jSHXeu6riMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFhickxNUmk1dVNfRGVhYm4yTklkZDY3cXVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85MzE5MjctOWYzOC00MWI2LTg3ZmEt
MjU0YWNkOTJiNGUxLzEvZmNZVm12ak5NeUdhTEFtbi0zQUhYRXpoLXhZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny85MzE5MjctOWYzOC00MWI2LTg3ZmEtMjU0YWNkOTJiNGUx
LzEvcFhickxNUmk1dVNfRGVhYm4yTklkZDY3cXVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGsBggrBgEFBQcBBwEB/wSBnDCBmTCBhwQCAAEwgYADBAIt
CHADBAItCNwDBAEtDkYDBAItDmgDBAItV1wDBAItWdgDBAAtg5sDBAIthygDBAIt
jSwDBAItjnwDBAFbyPIDBACVPiwDBAC5uN8DBAC5+FQDBALBIJQDBADCJBgDBADC
aJADBADCcogDBADD9eUwDAMEAMP18QMEAMP18jANBAIAAjAHAwUDKhAEgDANBgkq
hkiG9w0BAQsFAAOCAQEAbQiXMhoVfAdpefby6H+vobK73MBk++4LpS8rB+BWhD5Y
0eZwguoggE/2L7V2RQZOPQvjV+HIHDlH2olqq/hEuTxQknhNZJ/0MoEb4vucCbWa
qFYK3OB3ddtldnvTtyuD5/iCQSrUKWuxlnhCf08O2XBHoOzzJwXGzCFY2+GsVZCE
raKjKTOeFjJS1HLsJtTlo7ZossbZDapCJC+z6aZxh3Tr549+c7vaX5Jd4wThdiV6
ySV01aw+EacEj4GLbDTnc6jXmO+RXyy/rM8h5lXCb68MffcSp11g8wRWXiyGoX67
h+xVVXNWIH5e9KMEHHnguZXUgIZraf7cROF08/zQ9A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org