Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/2BeZdvOeqeIM9sCw17HX-zpGHGI.roa
File: 2BeZdvOeqeIM9sCw17HX-zpGHGI.roa (raw, json)
Hash identifier: DcPU4tp1JrDk0J5Gi7s6cHWwUHKGLsKvnuksd9x3bTE=
Subject key identifier: D8:17:99:76:F3:9E:A9:E2:0C:F6:C0:B0:D7:B1:D7:FB:3A:46:1C:62
Certificate issuer: /CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Certificate serial: 018991A66130ABB9C1098895B10F609133A4
Authority key identifier: B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/2BeZdvOeqeIM9sCw17HX-zpGHGI.roa
Signing time: Wed 26 Jul 2023 10:02:27 +0000
ROA not before: Wed 26 Jul 2023 10:02:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212369
IP address blocks: 185.93.68.0/24 maxlen: 24
185.93.69.0/24 maxlen: 24
185.93.70.0/24 maxlen: 24
185.255.93.0/24 maxlen: 24
185.255.94.0/24 maxlen: 24
185.255.95.0/24 maxlen: 24
89.35.52.0/24 maxlen: 24
185.132.126.0/24 maxlen: 24
93.115.10.0/24 maxlen: 24
93.177.101.0/24 maxlen: 24
93.177.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:91:a6:61:30:ab:b9:c1:09:88:95:b1:0f:60:91:33:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Validity
Not Before: Jul 26 10:02:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8179976f39ea9e20cf6c0b0d7b1d7fb3a461c62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:df:d0:c9:b3:16:fa:3e:fb:7d:bd:8c:70:10:
4b:df:76:d6:0a:c8:58:4e:d1:3a:3f:fd:4e:8d:69:
de:ec:fe:57:13:6d:1e:b4:b2:4c:a9:18:ff:e9:9c:
10:b2:59:e1:bd:49:76:7e:92:c5:d1:64:ed:af:10:
7d:2c:4b:ec:5e:59:ae:13:25:bc:4a:de:1e:3a:e3:
1b:5a:a2:1d:a7:90:ad:31:75:13:27:70:96:f3:52:
5c:11:4f:5f:f5:55:8d:52:23:4e:7d:85:c9:96:2c:
67:6e:c2:5c:73:5e:e6:41:14:38:d7:04:25:7e:fe:
e7:0f:4a:d5:38:5b:07:3d:bf:a1:b4:4a:5f:c1:25:
5c:4a:43:02:aa:82:c6:95:f5:56:62:60:14:49:d1:
59:f6:cc:9b:d2:62:bf:95:b6:3a:5c:05:e4:78:a5:
37:fa:45:f9:c6:e2:07:9c:30:24:1c:88:08:c5:c8:
50:27:eb:a0:6f:ba:f6:ce:b4:32:cd:6e:e7:d6:51:
ce:b8:fe:9b:74:19:46:8c:89:3d:d6:d8:2c:a6:99:
0a:82:ff:69:bb:c5:82:b4:c7:f4:8a:53:7c:2a:a1:
98:b1:1a:48:ea:18:11:cc:c0:dc:1c:9f:19:a5:1d:
e5:d5:f8:eb:a7:9a:87:5d:35:ae:56:8d:6c:28:c6:
56:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:17:99:76:F3:9E:A9:E2:0C:F6:C0:B0:D7:B1:D7:FB:3A:46:1C:62
X509v3 Authority Key Identifier:
keyid:B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/2BeZdvOeqeIM9sCw17HX-zpGHGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/sLWoCnEG4KS4VFyBULtyxpn8yaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.35.52.0/24
93.115.10.0/24
93.177.101.0-93.177.102.255
185.93.68.0-185.93.70.255
185.132.126.0/24
185.255.93.0-185.255.95.255
Signature Algorithm: sha256WithRSAEncryption
aa:ba:be:94:8f:83:10:a4:d8:9b:4d:11:41:82:1f:95:a5:d0:
46:f0:4a:8d:94:b2:07:62:d5:52:3c:4e:df:ab:94:a2:f8:31:
65:9a:e0:7c:32:1d:30:cd:70:29:e4:2f:89:8a:a5:83:5c:9f:
72:7c:17:12:ee:23:d5:a8:65:38:90:0f:30:7d:83:c1:bb:1f:
db:da:18:e4:f2:19:b7:7f:1e:6e:57:33:6e:ec:04:81:2c:3b:
06:1d:b9:a4:16:38:08:a2:23:25:8b:ec:ca:2f:87:86:28:56:
ad:67:a5:ba:88:ba:bf:e0:44:79:d9:85:15:e4:57:53:2f:0f:
71:57:45:6d:aa:9a:fc:19:14:fa:21:ab:04:8b:e0:db:18:30:
56:8b:12:79:5c:7e:37:73:f6:fd:4a:fe:80:b6:7b:9e:45:e3:
94:9a:4d:18:55:4f:b1:16:1c:55:0c:6b:fd:9c:af:b1:bc:df:
4b:c7:70:b2:65:11:03:54:83:35:c7:b4:41:52:4e:8a:78:a1:
02:be:da:3b:1d:11:b5:0e:2f:c5:b8:bc:4f:c1:27:c6:2d:57:
17:b1:9e:35:7a:ae:27:06:4a:65:b8:63:14:7b:d2:50:18:7d:
c7:f5:d2:40:10:91:f1:a3:59:43:82:ea:4a:f7:a1:8b:f2:81:
0e:56:c5:56
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgISAYmRpmEwq7nBCYiVsQ9gkTOkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwYjVhODBhNzEwNmUwYTRiODU0NWM4MTUwYmI3MmM2OTlm
Y2M5YTAwHhcNMjMwNzI2MTAwMjI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkODE3OTk3NmYzOWVhOWUyMGNmNmMwYjBkN2IxZDdmYjNhNDYxYzYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnt/QybMW+j77fb2McBBL33bWCshY
TtE6P/1OjWne7P5XE20etLJMqRj/6ZwQslnhvUl2fpLF0WTtrxB9LEvsXlmuEyW8
St4eOuMbWqIdp5CtMXUTJ3CW81JcEU9f9VWNUiNOfYXJlixnbsJcc17mQRQ41wQl
fv7nD0rVOFsHPb+htEpfwSVcSkMCqoLGlfVWYmAUSdFZ9syb0mK/lbY6XAXkeKU3
+kX5xuIHnDAkHIgIxchQJ+ugb7r2zrQyzW7n1lHOuP6bdBlGjIk91tgsppkKgv9p
u8WCtMf0ilN8KqGYsRpI6hgRzMDcHJ8ZpR3l1fjrp5qHXTWuVo1sKMZWvQIDAQAB
o4ICPzCCAjswHQYDVR0OBBYEFNgXmXbznqniDPbAsNex1/s6RhxiMB8GA1UdIwQY
MBaAFLC1qApxBuCkuFRcgVC7csaZ/MmgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0xXb0NuRUc0S1M0VkZ5QlVMdHl4cG44eWFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi9mMTUzZGMtY2JmYi00YTRmLTgwZDIt
NzQ1ZTA4ZmU1OGM2LzEvMkJlWmR2T2VxZUlNOXNDdzE3SFgtenBHSEdJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi9mMTUzZGMtY2JmYi00YTRmLTgwZDItNzQ1ZTA4ZmU1OGM2
LzEvc0xXb0NuRUc0S1M0VkZ5QlVMdHl4cG44eWFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFUGCCsGAQUFBwEHAQH/BEYwRDBCBAIAATA8AwQAWSM0AwQA
XXMKMAwDBABdsWUDBABdsWYwDAMEArldRAMEALldRgMEALmEfjAMAwQAuf9dAwQF
uf9AMA0GCSqGSIb3DQEBCwUAA4IBAQCqur6Uj4MQpNibTRFBgh+VpdBG8EqNlLIH
YtVSPE7fq5Si+DFlmuB8Mh0wzXAp5C+JiqWDXJ9yfBcS7iPVqGU4kA8wfYPBux/b
2hjk8hm3fx5uVzNu7ASBLDsGHbmkFjgIoiMli+zKL4eGKFatZ6W6iLq/4ER52YUV
5FdTLw9xV0Vtqpr8GRT6IasEi+DbGDBWixJ5XH43c/b9Sv6AtnueReOUmk0YVU+x
FhxVDGv9nK+xvN9Lx3CyZREDVIM1x7RBUk6KeKECvto7HRG1Di/FuLxPwSfGLVcX
sZ41eq4nBkpluGMUe9JQGH3H9dJAEJHxo1lDgupK96GL8oEOVsVW
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:12 2024 by rpki-client on console-ams.rpki-client.org