Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/gPx0806wlNP_nnzHYGvDMQhrDTo.roa
File: gPx0806wlNP_nnzHYGvDMQhrDTo.roa (raw, json)
Hash identifier: w0czW7mWoVyNfK8DtnCCZypseIvEoyMmhX8JXxeNbe4=
Subject key identifier: 80:FC:74:F3:4E:B0:94:D3:FF:9E:7C:C7:60:6B:C3:31:08:6B:0D:3A
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 0189B5C4C2BC77C742023C9FE865284301DC
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/gPx0806wlNP_nnzHYGvDMQhrDTo.roa
Signing time: Wed 02 Aug 2023 10:21:58 +0000
ROA not before: Wed 02 Aug 2023 10:21:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 45.151.139.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
83.171.240.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.243.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
2a0f:cc87::/36 maxlen: 36
2a10:c0c3::/32 maxlen: 32
2a10:c0c0::/29 maxlen: 29
2a11:200:8000::/36 maxlen: 36
2a11:200:7000::/36 maxlen: 36
2a11:200:5000::/36 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:4000::/36 maxlen: 36
2a0d:5ec5::/32 maxlen: 32
2a11:202::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a10:c0c1::/32 maxlen: 32
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c7:5000::/36 maxlen: 36
2a10:c0c0::/32 maxlen: 32
2a06:d900::/29 maxlen: 29
2a09:3b00::/29 maxlen: 29
2a09:4e01:3000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:5000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 07 Aug 2023 07:06:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b5:c4:c2:bc:77:c7:42:02:3c:9f:e8:65:28:43:01:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Aug 2 10:21:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80fc74f34eb094d3ff9e7cc7606bc331086b0d3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:22:28:27:2e:aa:26:0f:58:e8:3d:0b:3c:54:
fc:d9:5a:c6:88:64:04:55:a1:7b:de:61:8c:a5:1a:
c1:4e:1a:ed:64:9a:a4:72:d7:19:5a:0c:c6:9e:ed:
f0:f8:66:a9:81:84:20:9f:a7:0d:b9:b4:ed:93:70:
65:4f:15:23:7f:22:c7:12:ed:77:d2:87:10:bd:a8:
63:c1:55:1d:67:08:d2:1a:9d:1b:6c:1a:fd:be:9e:
d0:94:85:6b:56:ff:35:b9:77:0c:fe:80:58:73:a6:
e4:e5:b0:8a:c9:06:13:9a:c4:03:91:91:1d:cf:ea:
50:1f:9d:50:66:5c:16:39:5c:95:be:13:43:c7:21:
74:ad:7a:b5:d4:4d:69:8e:7f:00:1b:88:43:7c:30:
bf:1f:89:61:27:a6:d5:13:e4:b2:bd:99:97:aa:a1:
1e:a6:43:3b:95:d9:07:73:50:f7:df:3e:39:d1:b9:
2a:38:0f:70:0b:34:25:4b:03:c5:37:3b:46:01:fa:
ef:27:b0:cc:81:64:9c:58:2b:19:35:13:5e:38:87:
5d:f4:77:29:8c:2c:1a:43:f4:fd:f4:d9:8a:d7:52:
53:16:1d:1a:86:5c:0f:a3:85:76:2e:32:05:e6:1f:
26:c1:0a:c5:f4:04:86:59:04:00:15:e8:11:f3:e5:
60:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:FC:74:F3:4E:B0:94:D3:FF:9E:7C:C7:60:6B:C3:31:08:6B:0D:3A
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/gPx0806wlNP_nnzHYGvDMQhrDTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.139.0/24
83.171.240.0/22
84.54.36.0/24
194.113.105.0/24
IPv6:
2a06:d900::/29
2a09:3b00::/29
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a0c:e8c0::/29
2a0d:5ec5::/32
2a0f:cc87::/36
2a10:c0c0::/29
2a11:200::/36
2a11:200:4000::/35
2a11:200:7000::-2a11:200:8fff:ffff:ffff:ffff:ffff:ffff
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
35:ad:c6:c0:35:9c:20:86:82:a2:a6:51:7b:5b:f0:d3:46:28:
57:1b:38:f2:ce:03:8e:8f:8c:a1:dc:b4:93:a5:0f:42:b8:2b:
9a:38:a7:77:bd:5e:34:1c:ef:4b:29:de:ed:df:57:af:d7:5b:
0f:40:72:d4:5e:74:6d:e0:80:1b:3e:5d:bd:26:f0:99:3f:ea:
d0:53:25:4e:3a:7c:0d:43:f3:1a:96:78:64:27:0f:45:0a:25:
cb:b7:25:e5:8b:6e:e1:7d:d1:fd:84:62:2f:83:02:5e:3e:3b:
06:57:18:6d:b2:36:3d:eb:87:94:42:62:f7:cb:a3:71:90:c6:
82:1f:e1:20:b4:2c:31:70:4e:d0:b8:d4:b9:ff:31:ed:1e:d5:
ea:f2:69:c9:ea:8c:c3:4a:57:97:a3:26:ee:99:5c:03:b5:fe:
d7:ac:54:86:9a:3b:f3:5e:c3:23:0c:86:5e:95:fc:70:68:88:
29:df:39:99:53:8f:d6:9a:70:5c:5e:9a:6b:e5:d2:f4:62:90:
df:4e:49:01:bd:07:97:41:47:c2:bd:ef:95:b4:18:75:a4:71:
b1:05:36:6f:77:a4:89:ff:c7:12:52:6c:7a:11:21:40:c9:27:
41:a6:0b:45:ea:94:6c:fd:03:8e:e0:87:51:e2:b8:fc:77:89:
3e:7a:81:de
-----BEGIN CERTIFICATE-----
MIIFiTCCBHGgAwIBAgISAYm1xMK8d8dCAjyf6GUoQwHcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0NTllYzJhNWZkNTM5MDljNTIzOWY0Y2M4ZDZkMzI5YTI3
NzliYjEwHhcNMjMwODAyMTAyMTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MGZjNzRmMzRlYjA5NGQzZmY5ZTdjYzc2MDZiYzMzMTA4NmIwZDNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmSIoJy6qJg9Y6D0LPFT82VrGiGQE
VaF73mGMpRrBThrtZJqkctcZWgzGnu3w+GapgYQgn6cNubTtk3BlTxUjfyLHEu13
0ocQvahjwVUdZwjSGp0bbBr9vp7QlIVrVv81uXcM/oBYc6bk5bCKyQYTmsQDkZEd
z+pQH51QZlwWOVyVvhNDxyF0rXq11E1pjn8AG4hDfDC/H4lhJ6bVE+SyvZmXqqEe
pkM7ldkHc1D33z450bkqOA9wCzQlSwPFNztGAfrvJ7DMgWScWCsZNRNeOIdd9Hcp
jCwaQ/T99NmK11JTFh0ahlwPo4V2LjIF5h8mwQrF9ASGWQQAFegR8+VgLQIDAQAB
o4IClTCCApEwHQYDVR0OBBYEFID8dPNOsJTT/558x2BrwzEIaw06MB8GA1UdIwQY
MBaAFERZ7Cpf1TkJxSOfTMjW0ymid5uxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkZuc0tsX1ZPUW5GSTU5TXlOYlRLYUozbTdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9mMGFlNjItYzEwNy00M2NlLWE4YTkt
NmI0MzcyNjAyMDk2LzEvZ1B4MDgwNndsTlBfbm56SFlHdkRNUWhyRFRvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny9mMGFlNjItYzEwNy00M2NlLWE4YTktNmI0MzcyNjAyMDk2
LzEvUkZuc0tsX1ZPUW5GSTU5TXlOYlRLYUozbTdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGqBggrBgEFBQcBBwEB/wSBmjCBlzAeBAIAATAYAwQALZeL
AwQCU6vwAwQAVDYkAwQAwnFpMHUEAgACMG8DBQMqBtkAAwUDKgk7ADAQAwYEKglO
ATADBgUqCU4BQAMFAyoM6MADBQAqDV7FAwYEKg/MhwADBQMqEMDAAwYEKhECAAAD
BgUqEQIAQDAQAwYEKhECAHADBgQqEQIAgDAOAwUAKhECAQMFACoRAgIwDQYJKoZI
hvcNAQELBQADggEBADWtxsA1nCCGgqKmUXtb8NNGKFcbOPLOA46PjKHctJOlD0K4
K5o4p3e9XjQc70sp3u3fV6/XWw9ActRedG3ggBs+Xb0m8Jk/6tBTJU46fA1D8xqW
eGQnD0UKJcu3JeWLbuF90f2EYi+DAl4+OwZXGG2yNj3rh5RCYvfLo3GQxoIf4SC0
LDFwTtC41Ln/Me0e1eryacnqjMNKV5ejJu6ZXAO1/tesVIaaO/NewyMMhl6V/HBo
iCnfOZlTj9aacFxemmvl0vRikN9OSQG9B5dBR8K975W0GHWkcbEFNm93pIn/xxJS
bHoRIUDJJ0GmC0XqlGz9A47gh1HiuPx3iT56gd4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:05 2024 by rpki-client on console-fra.rpki-client.org