Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/df91c3-d5b8-4a58-ae9e-2f879b5754e1/1/O8DlrjZYZl4vMt8cehHmVO88b24.roa
File: O8DlrjZYZl4vMt8cehHmVO88b24.roa (raw, json)
Hash identifier: DdppxZajL2aTgA9qgFcWF0K3UpSyCMdm4cnTmemi8s4=
Subject key identifier: 3B:C0:E5:AE:36:58:66:5E:2F:32:DF:1C:7A:11:E6:54:EF:3C:6F:6E
Certificate issuer: /CN=1fedc4c19e033a167e4af795d54e34b71ea093c6
Certificate serial: 018CC8DE22E01B66D473DF7022B097A31960
Authority key identifier: 1F:ED:C4:C1:9E:03:3A:16:7E:4A:F7:95:D5:4E:34:B7:1E:A0:93:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H-3EwZ4DOhZ-SveV1U40tx6gk8Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/df91c3-d5b8-4a58-ae9e-2f879b5754e1/1/O8DlrjZYZl4vMt8cehHmVO88b24.roa
Signing time: Tue 02 Jan 2024 06:30:50 +0000
ROA not before: Tue 02 Jan 2024 06:30:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34412
IP address blocks: 185.49.231.0/24 maxlen: 24
91.246.44.0/24 maxlen: 24
193.3.182.0/24 maxlen: 24
185.226.140.0/24 maxlen: 24
185.226.143.0/24 maxlen: 24
185.226.141.0/24 maxlen: 24
185.226.142.0/24 maxlen: 24
31.25.91.0/24 maxlen: 24
31.25.90.0/24 maxlen: 24
77.72.80.0/24 maxlen: 24
62.204.61.0/24 maxlen: 24
146.19.217.0/24 maxlen: 24
2a10:5740::/48 maxlen: 48
2a10:5740:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 03 Feb 2024 14:51:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:22:e0:1b:66:d4:73:df:70:22:b0:97:a3:19:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fedc4c19e033a167e4af795d54e34b71ea093c6
Validity
Not Before: Jan 2 06:30:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3bc0e5ae3658665e2f32df1c7a11e654ef3c6f6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:30:86:de:4f:21:a6:a2:ca:f6:78:ae:61:91:
04:9d:94:5a:c8:d4:e8:97:9d:44:ca:2d:63:c4:39:
c4:88:87:ae:3c:6c:9c:7b:ff:c1:5b:76:37:71:bb:
a6:f0:b7:73:fb:af:a6:d7:7c:12:1b:40:f2:33:6c:
ef:d4:9f:f3:85:63:6c:47:aa:6c:fd:f8:92:c0:d2:
33:0d:e4:c3:08:98:2e:18:18:7a:3e:79:22:9d:bc:
79:85:e2:6a:4c:45:14:3f:40:44:6b:ec:6b:b5:59:
f4:8f:51:c2:31:96:da:e4:c5:27:dd:48:5f:c8:4c:
14:ee:89:41:94:61:f8:47:02:9c:ed:ee:c6:0d:a7:
8e:6d:14:f8:18:16:be:ac:20:31:30:1a:ca:5d:90:
34:f6:69:8a:90:45:3a:e1:11:fe:db:02:b5:8f:a1:
eb:14:28:40:34:2d:e1:53:c7:b6:fe:5b:44:ac:0c:
7b:89:6b:7e:65:d0:be:c9:46:d8:99:2c:86:dc:38:
44:a7:f2:ab:05:cd:9c:1e:d2:e8:18:c7:bd:6a:b7:
ac:00:11:eb:94:11:f6:17:e6:06:8c:35:57:a5:d2:
9b:ea:8b:6b:3e:07:88:d7:4f:1a:c1:ba:b1:77:44:
f5:76:cc:47:41:49:16:ca:d4:81:bd:05:2b:6a:97:
6d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:C0:E5:AE:36:58:66:5E:2F:32:DF:1C:7A:11:E6:54:EF:3C:6F:6E
X509v3 Authority Key Identifier:
keyid:1F:ED:C4:C1:9E:03:3A:16:7E:4A:F7:95:D5:4E:34:B7:1E:A0:93:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H-3EwZ4DOhZ-SveV1U40tx6gk8Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/df91c3-d5b8-4a58-ae9e-2f879b5754e1/1/O8DlrjZYZl4vMt8cehHmVO88b24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/df91c3-d5b8-4a58-ae9e-2f879b5754e1/1/H-3EwZ4DOhZ-SveV1U40tx6gk8Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.90.0/23
62.204.61.0/24
77.72.80.0/24
91.246.44.0/24
146.19.217.0/24
185.49.231.0/24
185.226.140.0/22
193.3.182.0/24
IPv6:
2a10:5740::/48
2a10:5740:2::/48
Signature Algorithm: sha256WithRSAEncryption
77:f7:23:2d:03:c2:b4:f5:10:b1:c8:e6:7b:5a:89:c7:fc:4a:
44:a9:a6:8c:41:46:fd:0e:f9:99:61:24:81:05:77:01:75:35:
40:9c:ed:22:4a:06:17:83:7a:16:46:07:1d:8b:3f:63:25:d5:
69:22:cb:6b:b9:ef:83:7b:d1:52:bf:ad:d8:94:bf:3c:2e:41:
b9:24:70:5d:08:46:5a:f0:7b:c4:a5:ab:69:d7:5f:c8:ac:a2:
ec:b7:ad:0e:e5:9d:a6:c5:5b:a7:31:b9:51:6d:37:1e:30:14:
b1:97:c1:ed:73:f1:84:ad:66:4b:5e:41:03:c9:1b:62:8b:f7:
9f:ad:9a:0c:18:ce:ce:be:69:43:72:61:76:f6:6e:8a:b6:63:
cc:48:50:6c:b0:64:fc:74:b0:26:12:11:f2:03:3b:83:2d:f5:
16:9f:9b:93:b8:e5:6e:95:eb:02:76:c2:ce:ae:62:2a:95:34:
f2:0e:f5:31:80:9a:21:38:f5:87:cb:ff:55:68:dd:a3:ed:32:
f1:2f:53:9d:59:ab:f7:d4:2b:7a:b4:3b:b7:07:53:db:2d:bb:
90:23:36:c9:14:b4:37:a0:d5:1a:4c:e9:b3:4c:0e:1c:74:5f:
cb:b2:ea:98:56:6f:7d:e8:64:34:61:87:d5:cf:33:59:a5:90:
9c:7c:c2:7c
-----BEGIN CERTIFICATE-----
MIIFQTCCBCmgAwIBAgISAYzI3iLgG2bUc99wIrCXoxlgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmZWRjNGMxOWUwMzNhMTY3ZTRhZjc5NWQ1NGUzNGI3MWVh
MDkzYzYwHhcNMjQwMTAyMDYzMDUwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYmMwZTVhZTM2NTg2NjVlMmYzMmRmMWM3YTExZTY1NGVmM2M2ZjZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiTCG3k8hpqLK9niuYZEEnZRayNTo
l51Eyi1jxDnEiIeuPGyce//BW3Y3cbum8Ldz+6+m13wSG0DyM2zv1J/zhWNsR6ps
/fiSwNIzDeTDCJguGBh6Pnkinbx5heJqTEUUP0BEa+xrtVn0j1HCMZba5MUn3Uhf
yEwU7olBlGH4RwKc7e7GDaeObRT4GBa+rCAxMBrKXZA09mmKkEU64RH+2wK1j6Hr
FChANC3hU8e2/ltErAx7iWt+ZdC+yUbYmSyG3DhEp/KrBc2cHtLoGMe9aresABHr
lBH2F+YGjDVXpdKb6otrPgeI108awbqxd0T1dsxHQUkWytSBvQUrapdtWwIDAQAB
o4ICTTCCAkkwHQYDVR0OBBYEFDvA5a42WGZeLzLfHHoR5lTvPG9uMB8GA1UdIwQY
MBaAFB/txMGeAzoWfkr3ldVONLceoJPGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSC0zRXdaNERPaFotU3ZlVjFVNDB0eDZnazhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9kZjkxYzMtZDViOC00YTU4LWFlOWUt
MmY4NzliNTc1NGUxLzEvTzhEbHJqWllabDR2TXQ4Y2VoSG1WTzg4YjI0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9kZjkxYzMtZDViOC00YTU4LWFlOWUtMmY4NzliNTc1NGUx
LzEvSC0zRXdaNERPaFotU3ZlVjFVNDB0eDZnazhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGMGCCsGAQUFBwEHAQH/BFQwUjA2BAIAATAwAwQBHxlaAwQA
Psw9AwQATUhQAwQAW/YsAwQAkhPZAwQAuTHnAwQCueKMAwQAwQO2MBgEAgACMBID
BwAqEFdAAAADBwAqEFdAAAIwDQYJKoZIhvcNAQELBQADggEBAHf3Iy0DwrT1ELHI
5ntaicf8SkSppoxBRv0O+ZlhJIEFdwF1NUCc7SJKBheDehZGBx2LP2Ml1Wkiy2u5
74N70VK/rdiUvzwuQbkkcF0IRlrwe8Slq2nXX8isouy3rQ7lnabFW6cxuVFtNx4w
FLGXwe1z8YStZkteQQPJG2KL95+tmgwYzs6+aUNyYXb2boq2Y8xIUGywZPx0sCYS
EfIDO4Mt9Rafm5O45W6V6wJ2ws6uYiqVNPIO9TGAmiE49YfL/1Vo3aPtMvEvU51Z
q/fUK3q0O7cHU9stu5AjNskUtDeg1RpM6bNMDhx0X8uy6phWb33oZDRhh9XPM1ml
kJx8wnw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:59 2024 by rpki-client on console-fra.rpki-client.org