Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/408667-0b39-4da0-9aa0-3cc11bc9d594/1/2wZxbaXXC1qIDrCH2K5Nzc2F2cI.roa
File: 2wZxbaXXC1qIDrCH2K5Nzc2F2cI.roa (raw, json)
Hash identifier: yxn7jfvnZdtRlx9AET+43grq2tgDsp3MbTltxUzAQPw=
Subject key identifier: DB:06:71:6D:A5:D7:0B:5A:88:0E:B0:87:D8:AE:4D:CD:CD:85:D9:C2
Certificate issuer: /CN=d00ba633f1e9824076d161a983d8b8e881263982
Certificate serial: 01856FA70927BA3F3D03F7C286CDB9A297AE
Authority key identifier: D0:0B:A6:33:F1:E9:82:40:76:D1:61:A9:83:D8:B8:E8:81:26:39:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0AumM_HpgkB20WGpg9i46IEmOYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/408667-0b39-4da0-9aa0-3cc11bc9d594/1/2wZxbaXXC1qIDrCH2K5Nzc2F2cI.roa
Signing time: Sun 01 Jan 2023 23:24:55 +0000
ROA not before: Sun 01 Jan 2023 23:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8818
IP address blocks: 46.243.151.0/24 maxlen: 24
128.0.70.0/24 maxlen: 24
185.57.160.0/22 maxlen: 22
178.170.132.0/22 maxlen: 22
37.230.214.0/23 maxlen: 23
37.230.216.0/22 maxlen: 22
37.230.220.0/23 maxlen: 23
194.177.224.0/19 maxlen: 19
178.170.199.0/24 maxlen: 24
188.72.71.0/24 maxlen: 24
178.170.202.0/24 maxlen: 24
178.170.200.0/22 maxlen: 22
178.170.203.0/24 maxlen: 24
178.170.204.0/23 maxlen: 23
178.170.210.0/23 maxlen: 23
178.170.212.0/22 maxlen: 22
37.230.164.0/22 maxlen: 22
178.170.216.0/24 maxlen: 24
88.83.0.0/19 maxlen: 19
37.18.44.0/22 maxlen: 22
178.170.147.0/24 maxlen: 24
178.170.160.0/22 maxlen: 22
88.83.24.0/21 maxlen: 21
2a00:1fa8::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a7:09:27:ba:3f:3d:03:f7:c2:86:cd:b9:a2:97:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d00ba633f1e9824076d161a983d8b8e881263982
Validity
Not Before: Jan 1 23:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db06716da5d70b5a880eb087d8ae4dcdcd85d9c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1f:5a:41:a2:39:9f:da:2f:df:7f:4a:f5:2a:
af:ff:3e:5c:61:a6:59:00:1d:b5:39:7a:ab:f3:48:
4e:28:f4:55:aa:d1:62:85:17:79:ca:30:19:be:be:
c8:b0:36:87:c4:ed:e5:7c:cd:63:5b:4c:ca:d8:23:
09:40:93:db:cc:a9:8a:1d:96:34:a9:1f:25:97:de:
d3:8d:f5:cb:0a:2f:01:7c:c8:85:5f:87:0d:15:86:
24:4e:fe:e3:9a:a0:9f:5f:6f:ab:84:fd:f6:f7:0c:
0c:b5:39:0c:0b:4b:3d:72:f1:cc:8c:ee:1b:cd:3a:
02:31:77:db:5d:98:00:72:68:75:25:94:d7:09:f6:
b3:ab:eb:c5:fe:3f:5c:bb:49:ab:81:a9:ac:75:58:
53:7e:84:c8:28:78:6f:a3:d3:33:74:fd:d5:de:79:
7f:21:7e:89:3d:b8:6c:8d:44:f7:5c:b1:12:17:7d:
55:be:77:bb:31:7a:f2:41:8b:60:20:b1:11:bd:76:
52:6a:5c:f5:e1:8b:ff:4e:87:6d:1c:4a:96:3a:79:
de:ae:e0:db:cd:1d:75:47:53:22:98:4d:a8:0d:59:
c9:cb:2c:26:94:05:99:54:fa:63:80:5b:99:c1:23:
c7:d8:0d:47:70:59:33:b9:8a:28:fe:28:c9:9f:08:
39:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:06:71:6D:A5:D7:0B:5A:88:0E:B0:87:D8:AE:4D:CD:CD:85:D9:C2
X509v3 Authority Key Identifier:
keyid:D0:0B:A6:33:F1:E9:82:40:76:D1:61:A9:83:D8:B8:E8:81:26:39:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0AumM_HpgkB20WGpg9i46IEmOYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/408667-0b39-4da0-9aa0-3cc11bc9d594/1/2wZxbaXXC1qIDrCH2K5Nzc2F2cI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/408667-0b39-4da0-9aa0-3cc11bc9d594/1/0AumM_HpgkB20WGpg9i46IEmOYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.44.0/22
37.230.164.0/22
37.230.214.0-37.230.221.255
46.243.151.0/24
88.83.0.0/19
128.0.70.0/24
178.170.132.0/22
178.170.147.0/24
178.170.160.0/22
178.170.199.0-178.170.205.255
178.170.210.0-178.170.216.255
185.57.160.0/22
188.72.71.0/24
194.177.224.0/19
IPv6:
2a00:1fa8::/32
Signature Algorithm: sha256WithRSAEncryption
13:81:98:d8:f4:b8:d2:4a:ac:1f:61:8e:63:4a:12:f7:c4:9d:
b5:21:e4:e1:30:8d:31:a4:ff:b4:7c:4a:c3:a3:01:b3:e0:a0:
36:fd:47:e2:35:0b:34:c4:0b:f7:49:9c:3c:d4:f2:f1:ba:f9:
15:1e:a3:f4:f6:9c:3c:20:d9:8c:8b:d4:13:d2:2a:4a:a0:06:
60:1f:c3:ab:b1:51:14:e6:df:49:46:97:5e:dc:24:91:b5:25:
43:00:7a:17:f8:4c:ce:73:dc:40:4c:83:ab:1e:1b:8c:8c:48:
9a:13:08:1e:28:d2:91:5b:68:07:aa:7e:75:0e:6b:60:36:08:
9d:67:45:fc:79:98:0c:8a:43:17:85:de:be:f4:47:fa:06:6e:
b8:4a:71:4c:0a:f8:6e:14:0c:03:77:e6:bf:ce:aa:78:11:2d:
81:2a:b3:3d:36:de:9c:f3:24:46:e6:b2:85:93:fa:05:19:9a:
43:73:45:03:5f:ba:9c:c5:bc:b8:6f:21:52:26:ed:b0:b2:4c:
da:7e:fd:36:d1:67:bd:a5:d7:94:9e:22:52:ee:7c:95:e8:4b:
ba:d4:7a:e1:38:90:e3:a1:18:74:0c:80:2f:1e:ba:3f:32:4a:
1f:22:42:12:ce:1a:0e:5f:eb:77:d5:15:a5:d7:1b:ad:04:09:
e6:a8:4f:96
-----BEGIN CERTIFICATE-----
MIIFdTCCBF2gAwIBAgISAYVvpwknuj89A/fChs25opeuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwMGJhNjMzZjFlOTgyNDA3NmQxNjFhOTgzZDhiOGU4ODEy
NjM5ODIwHhcNMjMwMTAxMjMyNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYjA2NzE2ZGE1ZDcwYjVhODgwZWIwODdkOGFlNGRjZGNkODVkOWMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuh9aQaI5n9ov339K9Sqv/z5cYaZZ
AB21OXqr80hOKPRVqtFihRd5yjAZvr7IsDaHxO3lfM1jW0zK2CMJQJPbzKmKHZY0
qR8ll97TjfXLCi8BfMiFX4cNFYYkTv7jmqCfX2+rhP329wwMtTkMC0s9cvHMjO4b
zToCMXfbXZgAcmh1JZTXCfazq+vF/j9cu0mrgamsdVhTfoTIKHhvo9MzdP3V3nl/
IX6JPbhsjUT3XLESF31Vvne7MXryQYtgILERvXZSalz14Yv/TodtHEqWOnneruDb
zR11R1MimE2oDVnJyywmlAWZVPpjgFuZwSPH2A1HcFkzuYoo/ijJnwg5VQIDAQAB
o4ICgTCCAn0wHQYDVR0OBBYEFNsGcW2l1wtaiA6wh9iuTc3NhdnCMB8GA1UdIwQY
MBaAFNALpjPx6YJAdtFhqYPYuOiBJjmCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMEF1bU1fSHBna0IyMFdHcGc5aTQ2SUVtT1lJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS80MDg2NjctMGIzOS00ZGEwLTlhYTAt
M2NjMTFiYzlkNTk0LzEvMndaeGJhWFhDMXFJRHJDSDJLNU56YzJGMmNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS80MDg2NjctMGIzOS00ZGEwLTlhYTAtM2NjMTFiYzlkNTk0
LzEvMEF1bU1fSHBna0IyMFdHcGc5aTQ2SUVtT1lJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGWBggrBgEFBQcBBwEB/wSBhjCBgzByBAIAATBsAwQCJRIs
AwQCJeakMAwDBAEl5tYDBAEl5twDBAAu85cDBAVYUwADBACAAEYDBAKyqoQDBACy
qpMDBAKyqqAwDAMEALKqxwMEAbKqzDAMAwQBsqrSAwQAsqrYAwQCuTmgAwQAvEhH
AwQFwrHgMA0EAgACMAcDBQAqAB+oMA0GCSqGSIb3DQEBCwUAA4IBAQATgZjY9LjS
SqwfYY5jShL3xJ21IeThMI0xpP+0fErDowGz4KA2/UfiNQs0xAv3SZw81PLxuvkV
HqP09pw8INmMi9QT0ipKoAZgH8OrsVEU5t9JRpde3CSRtSVDAHoX+EzOc9xATIOr
HhuMjEiaEwgeKNKRW2gHqn51DmtgNgidZ0X8eZgMikMXhd6+9Ef6Bm64SnFMCvhu
FAwDd+a/zqp4ES2BKrM9Nt6c8yRG5rKFk/oFGZpDc0UDX7qcxby4byFSJu2wskza
fv020We9pdeUniJS7nyV6Eu61HrhOJDjoRh0DIAvHro/MkofIkISzhoOX+t31RWl
1xutBAnmqE+W
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:13 2024 by rpki-client on console-fra.rpki-client.org