Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/9cc333-68d5-4692-9c5b-28a841da0bfd/1/XiE1k_Ko4ZFY86ZogHMyLc6ceMg.roa
File: XiE1k_Ko4ZFY86ZogHMyLc6ceMg.roa (raw, json)
Hash identifier: AAqNLh635GkstB595O6C2J0sZqejlcVd8nSkdhAEiAQ=
Subject key identifier: 5E:21:35:93:F2:A8:E1:91:58:F3:A6:68:80:73:32:2D:CE:9C:78:C8
Certificate issuer: /CN=9e459aa4602bffa2d2650ba66818458c89fc4582
Certificate serial: 018BCD8F38EEBC2C721D1285E36CB84D54BC
Authority key identifier: 9E:45:9A:A4:60:2B:FF:A2:D2:65:0B:A6:68:18:45:8C:89:FC:45:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nkWapGAr_6LSZQumaBhFjIn8RYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/9cc333-68d5-4692-9c5b-28a841da0bfd/1/XiE1k_Ko4ZFY86ZogHMyLc6ceMg.roa
Signing time: Tue 14 Nov 2023 11:19:57 +0000
ROA not before: Tue 14 Nov 2023 11:19:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 89.149.16.0/24 maxlen: 24
89.149.15.0/24 maxlen: 24
89.149.14.0/24 maxlen: 24
89.149.17.0/24 maxlen: 24
89.149.22.0/24 maxlen: 24
89.149.18.0/24 maxlen: 24
89.149.26.0/24 maxlen: 24
89.149.38.0/24 maxlen: 24
89.149.37.0/24 maxlen: 24
89.149.43.0/24 maxlen: 24
89.149.42.0/24 maxlen: 24
89.149.41.0/24 maxlen: 24
89.149.40.0/24 maxlen: 24
89.149.39.0/24 maxlen: 24
89.149.44.0/24 maxlen: 24
89.149.48.0/24 maxlen: 24
89.149.47.0/24 maxlen: 24
89.149.46.0/24 maxlen: 24
89.149.45.0/24 maxlen: 24
89.149.56.0/24 maxlen: 24
89.149.53.0/24 maxlen: 24
89.149.52.0/24 maxlen: 24
89.149.62.0/24 maxlen: 24
84.247.112.0/24 maxlen: 24
84.247.111.0/24 maxlen: 24
84.247.116.0/24 maxlen: 24
84.247.115.0/24 maxlen: 24
84.247.114.0/24 maxlen: 24
84.247.113.0/24 maxlen: 24
84.247.118.0/24 maxlen: 24
84.247.117.0/24 maxlen: 24
84.247.121.0/24 maxlen: 24
84.247.119.0/24 maxlen: 24
84.247.78.0/24 maxlen: 24
83.166.205.0/24 maxlen: 24
83.166.208.0/24 maxlen: 24
83.166.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:cd:8f:38:ee:bc:2c:72:1d:12:85:e3:6c:b8:4d:54:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e459aa4602bffa2d2650ba66818458c89fc4582
Validity
Not Before: Nov 14 11:19:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e213593f2a8e19158f3a6688073322dce9c78c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:50:63:7a:eb:ca:7d:bd:7a:57:a2:31:17:7a:
e5:9f:36:35:f4:ba:8d:9d:f3:d8:4f:8b:03:bc:56:
8b:f3:9b:bc:ac:ea:72:fb:bc:d1:29:49:20:f1:a1:
71:ee:61:89:87:f9:20:65:da:bc:17:f8:83:35:ad:
84:b1:15:d4:83:fb:83:08:af:ba:3a:9e:87:6d:a7:
e5:51:06:f4:e9:ea:b4:01:73:02:b7:4e:52:18:64:
f6:48:93:bd:03:7a:28:14:1d:c5:a4:66:29:b7:8a:
d1:02:96:2b:42:d4:fd:4a:88:4e:00:cc:3b:f4:73:
e8:aa:9c:05:9b:22:0e:3b:a5:0c:8d:2b:ca:a5:b5:
84:7b:46:47:b3:8e:b8:29:ba:f8:ff:7d:8f:9e:4c:
b6:93:55:66:8f:f1:5e:42:42:b3:64:7d:e3:c5:fc:
9f:9b:f2:78:1b:5f:e3:f8:40:7b:48:c8:4c:de:fb:
95:3d:f1:54:3f:a9:0f:9a:ce:4e:4c:c5:62:aa:b0:
d3:57:cc:0f:c7:c9:49:8b:d0:b6:65:3c:2d:e1:08:
84:70:b9:1e:9a:61:ad:25:77:82:c2:9d:12:57:73:
40:f2:47:6f:39:8d:d6:1d:fa:3b:4d:10:6d:cc:42:
23:10:55:aa:a8:28:b0:a0:45:3b:6b:5f:80:ab:db:
33:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:21:35:93:F2:A8:E1:91:58:F3:A6:68:80:73:32:2D:CE:9C:78:C8
X509v3 Authority Key Identifier:
keyid:9E:45:9A:A4:60:2B:FF:A2:D2:65:0B:A6:68:18:45:8C:89:FC:45:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nkWapGAr_6LSZQumaBhFjIn8RYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/9cc333-68d5-4692-9c5b-28a841da0bfd/1/XiE1k_Ko4ZFY86ZogHMyLc6ceMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/9cc333-68d5-4692-9c5b-28a841da0bfd/1/nkWapGAr_6LSZQumaBhFjIn8RYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.166.205.0/24
83.166.208.0/24
83.166.216.0/24
84.247.78.0/24
84.247.111.0-84.247.119.255
84.247.121.0/24
89.149.14.0-89.149.18.255
89.149.22.0/24
89.149.26.0/24
89.149.37.0-89.149.48.255
89.149.52.0/23
89.149.56.0/24
89.149.62.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:de:b3:c4:bc:01:56:92:e2:2e:86:b7:78:e3:4c:46:34:c0:
00:fb:33:0b:49:39:4b:b2:ba:2d:9f:1e:12:b0:11:27:7e:53:
a0:ff:62:8a:e2:ea:64:84:73:23:87:34:41:e4:23:98:e4:3f:
29:83:b9:0a:e3:e3:66:76:3e:0d:c3:ad:41:79:63:cf:70:e3:
ad:fb:2a:90:40:39:e0:9f:fa:4c:68:0e:83:71:c3:05:07:a2:
0a:9b:47:84:73:27:0b:40:fb:14:78:53:63:4d:d6:c8:30:2a:
23:53:07:dd:f1:e7:65:23:cf:07:e2:6b:c9:19:42:a2:53:2d:
d8:63:4a:23:5c:c9:72:11:0b:cc:c3:89:03:c6:10:06:b6:dc:
8b:ff:75:66:82:f7:1d:50:15:8b:7a:2c:0d:9d:2f:8c:8b:7f:
ec:59:f0:5c:aa:a4:72:1e:59:5c:6a:c7:6a:21:e9:33:f2:bb:
7a:dd:18:e0:5c:e4:82:46:a4:dd:82:bd:b7:e6:11:4f:3f:66:
7f:5c:94:80:b8:98:9f:10:41:17:77:d9:dd:6d:7b:63:1e:b2:
37:46:12:6e:54:ab:e3:d4:0b:fb:1a:e4:0c:55:53:ee:aa:fa:
25:55:e9:44:14:b0:95:b1:af:82:61:e4:8b:19:39:5e:e0:00:
55:49:5d:c6
-----BEGIN CERTIFICATE-----
MIIFXTCCBEWgAwIBAgISAYvNjzjuvCxyHRKF42y4TVS8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllNDU5YWE0NjAyYmZmYTJkMjY1MGJhNjY4MTg0NThjODlm
YzQ1ODIwHhcNMjMxMTE0MTExOTU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZTIxMzU5M2YyYThlMTkxNThmM2E2Njg4MDczMzIyZGNlOWM3OGM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt1BjeuvKfb16V6IxF3rlnzY19LqN
nfPYT4sDvFaL85u8rOpy+7zRKUkg8aFx7mGJh/kgZdq8F/iDNa2EsRXUg/uDCK+6
Op6HbaflUQb06eq0AXMCt05SGGT2SJO9A3ooFB3FpGYpt4rRApYrQtT9SohOAMw7
9HPoqpwFmyIOO6UMjSvKpbWEe0ZHs464Kbr4/32Pnky2k1Vmj/FeQkKzZH3jxfyf
m/J4G1/j+EB7SMhM3vuVPfFUP6kPms5OTMViqrDTV8wPx8lJi9C2ZTwt4QiEcLke
mmGtJXeCwp0SV3NA8kdvOY3WHfo7TRBtzEIjEFWqqCiwoEU7a1+Aq9szNQIDAQAB
o4ICaTCCAmUwHQYDVR0OBBYEFF4hNZPyqOGRWPOmaIBzMi3OnHjIMB8GA1UdIwQY
MBaAFJ5FmqRgK/+i0mULpmgYRYyJ/EWCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmtXYXBHQXJfNkxTWlF1bWFCaEZqSW44UllJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi85Y2MzMzMtNjhkNS00NjkyLTljNWIt
MjhhODQxZGEwYmZkLzEvWGlFMWtfS280WkZZODZab2dITXlMYzZjZU1nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi85Y2MzMzMtNjhkNS00NjkyLTljNWItMjhhODQxZGEwYmZk
LzEvbmtXYXBHQXJfNkxTWlF1bWFCaEZqSW44UllJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH8GCCsGAQUFBwEHAQH/BHAwbjBsBAIAATBmAwQAU6bNAwQA
U6bQAwQAU6bYAwQAVPdOMAwDBABU928DBANU93ADBABU93kwDAMEAVmVDgMEAFmV
EgMEAFmVFgMEAFmVGjAMAwQAWZUlAwQAWZUwAwQBWZU0AwQAWZU4AwQAWZU+MA0G
CSqGSIb3DQEBCwUAA4IBAQC53rPEvAFWkuIuhrd440xGNMAA+zMLSTlLsrotnx4S
sBEnflOg/2KK4upkhHMjhzRB5COY5D8pg7kK4+Nmdj4Nw61BeWPPcOOt+yqQQDng
n/pMaA6DccMFB6IKm0eEcycLQPsUeFNjTdbIMCojUwfd8edlI88H4mvJGUKiUy3Y
Y0ojXMlyEQvMw4kDxhAGttyL/3VmgvcdUBWLeiwNnS+Mi3/sWfBcqqRyHllcasdq
Iekz8rt63RjgXOSCRqTdgr235hFPP2Z/XJSAuJifEEEXd9ndbXtjHrI3RhJuVKvj
1Av7GuQMVVPuqvolVelEFLCVsa+CYeSLGTle4ABVSV3G
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:29 2024 by rpki-client on console-fra.rpki-client.org