Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/t18k0OOGxBohq69pTvU2StYStmw.roa
File: t18k0OOGxBohq69pTvU2StYStmw.roa (raw, json)
Hash identifier: Ny4vnOoDHcs0CPi4xA6tACJ0wmNcADEYGM+F6pj8xwI=
Subject key identifier: B7:5F:24:D0:E3:86:C4:1A:21:AB:AF:69:4E:F5:36:4A:D6:12:B6:6C
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 0189CF33FEB66720D7363BAD756204F65A79
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/t18k0OOGxBohq69pTvU2StYStmw.roa
Signing time: Mon 07 Aug 2023 08:53:58 +0000
ROA not before: Mon 07 Aug 2023 08:53:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 45.151.139.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
83.171.240.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.243.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
2a0f:cc87::/36 maxlen: 36
2a10:c0c3::/32 maxlen: 32
2a10:c0c0::/29 maxlen: 29
2a11:200:8000::/36 maxlen: 36
2a11:200:7000::/36 maxlen: 36
2a11:200:5000::/36 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:4000::/36 maxlen: 36
2a0d:5ec5::/32 maxlen: 32
2a11:202::/32 maxlen: 32
2a11:af01::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a10:c0c1::/32 maxlen: 32
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c7:5000::/36 maxlen: 36
2a10:c0c0::/32 maxlen: 32
2a06:d900::/29 maxlen: 29
2a09:3b00::/29 maxlen: 29
2a09:4e01:3000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:5000::/36 maxlen: 36
2a09:4e01:9000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 08 Aug 2023 09:45:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:cf:33:fe:b6:67:20:d7:36:3b:ad:75:62:04:f6:5a:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Aug 7 08:53:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b75f24d0e386c41a21abaf694ef5364ad612b66c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:cf:f0:80:91:e1:58:bd:5a:d9:b8:f3:c7:b0:
9c:64:41:bf:18:70:ff:2e:1b:08:4d:3a:b8:67:ef:
1c:1d:ed:20:b5:5c:92:ef:a8:71:86:66:58:0a:88:
62:6c:81:14:da:d7:2e:41:20:cf:82:86:f4:90:a7:
35:c0:a2:33:26:53:fd:82:a9:b0:66:b3:7b:5a:ee:
9d:7a:36:81:32:56:bc:26:e2:70:49:0f:76:73:2f:
fe:d2:e5:c7:f5:01:43:7d:92:bf:f7:14:bf:72:17:
d8:b5:83:08:ee:4e:d7:6d:e7:f7:16:ed:5e:69:89:
25:cf:22:c5:21:56:3c:b2:54:79:9b:8f:2e:00:b5:
67:4a:a4:0f:b5:94:f4:d3:e0:d9:d8:af:b7:23:5a:
6d:61:de:43:f6:1b:16:bf:b6:05:62:d1:49:df:90:
7d:4c:a8:40:23:51:1b:2b:ac:e9:72:4a:8f:e0:4b:
46:ae:02:14:fb:ae:38:1a:de:38:1c:16:e9:04:0e:
dc:23:10:60:8c:24:a7:d4:2e:fa:f4:a1:3a:9f:eb:
ef:ee:65:1f:fc:ee:69:b8:bd:d6:94:c8:71:05:2e:
dd:79:ad:e9:9f:92:4e:75:4a:ed:46:e8:7a:71:00:
2f:74:b2:3b:ac:87:fe:30:9f:0d:75:82:52:00:e7:
0c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:5F:24:D0:E3:86:C4:1A:21:AB:AF:69:4E:F5:36:4A:D6:12:B6:6C
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/t18k0OOGxBohq69pTvU2StYStmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.139.0/24
83.171.240.0/22
84.54.36.0/24
194.113.105.0/24
IPv6:
2a06:d900::/29
2a09:3b00::/29
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a09:4e01:9000::/36
2a0c:e8c0::/29
2a0d:5ec5::/32
2a0f:cc87::/36
2a10:c0c0::/29
2a11:200::/36
2a11:200:4000::/35
2a11:200:7000::-2a11:200:8fff:ffff:ffff:ffff:ffff:ffff
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
2a11:af01::/32
Signature Algorithm: sha256WithRSAEncryption
11:51:f3:35:74:5c:13:db:02:f3:71:c0:40:e6:d1:8c:fd:54:
06:de:e0:1c:34:a8:2e:b8:67:3e:fb:4f:36:1a:52:c7:ef:a7:
3f:74:17:c1:4f:ba:62:2c:ee:6d:e9:20:82:c8:0c:b4:ea:27:
3b:0f:42:03:69:a5:bd:f3:5c:19:5f:c0:cf:82:63:8f:fc:eb:
c4:57:91:a7:96:95:8c:9e:e6:bb:d4:1d:e5:ce:2d:bd:d8:a1:
e9:b4:dc:4b:23:69:60:c1:d6:ac:ec:f7:24:86:74:8f:9d:4f:
41:8b:88:b8:02:18:94:94:37:0c:90:a0:07:b8:98:54:07:47:
3a:87:13:8d:99:b5:4f:de:11:b9:de:44:83:a5:26:dc:97:5a:
04:d4:05:e7:48:e8:2f:65:de:f4:5d:e1:a6:b6:97:d7:89:de:
5a:76:94:55:bb:25:d2:7f:da:e3:ae:ae:24:9a:c7:4f:ea:e9:
fc:1c:ec:1d:1c:92:aa:5f:83:12:53:e0:30:b7:91:50:d0:69:
6a:c4:f7:14:8a:81:db:dd:74:03:36:0a:4f:37:80:fe:8d:88:
49:b0:5a:cd:dc:aa:1d:86:79:7c:66:68:41:62:3a:53:3c:7f:
32:bc:8a:10:94:34:01:7e:0f:cf:d8:b1:ec:d2:05:e8:8f:ef:
f6:27:34:90
-----BEGIN CERTIFICATE-----
MIIFmTCCBIGgAwIBAgISAYnPM/62ZyDXNjutdWIE9lp5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0NTllYzJhNWZkNTM5MDljNTIzOWY0Y2M4ZDZkMzI5YTI3
NzliYjEwHhcNMjMwODA3MDg1MzU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNzVmMjRkMGUzODZjNDFhMjFhYmFmNjk0ZWY1MzY0YWQ2MTJiNjZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy8/wgJHhWL1a2bjzx7CcZEG/GHD/
LhsITTq4Z+8cHe0gtVyS76hxhmZYCohibIEU2tcuQSDPgob0kKc1wKIzJlP9gqmw
ZrN7Wu6dejaBMla8JuJwSQ92cy/+0uXH9QFDfZK/9xS/chfYtYMI7k7Xbef3Fu1e
aYklzyLFIVY8slR5m48uALVnSqQPtZT00+DZ2K+3I1ptYd5D9hsWv7YFYtFJ35B9
TKhAI1EbK6zpckqP4EtGrgIU+644Gt44HBbpBA7cIxBgjCSn1C769KE6n+vv7mUf
/O5puL3WlMhxBS7dea3pn5JOdUrtRuh6cQAvdLI7rIf+MJ8NdYJSAOcM1QIDAQAB
o4ICpTCCAqEwHQYDVR0OBBYEFLdfJNDjhsQaIauvaU71NkrWErZsMB8GA1UdIwQY
MBaAFERZ7Cpf1TkJxSOfTMjW0ymid5uxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkZuc0tsX1ZPUW5GSTU5TXlOYlRLYUozbTdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9mMGFlNjItYzEwNy00M2NlLWE4YTkt
NmI0MzcyNjAyMDk2LzEvdDE4azBPT0d4Qm9ocTY5cFR2VTJTdFlTdG13LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny9mMGFlNjItYzEwNy00M2NlLWE4YTktNmI0MzcyNjAyMDk2
LzEvUkZuc0tsX1ZPUW5GSTU5TXlOYlRLYUozbTdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG6BggrBgEFBQcBBwEB/wSBqjCBpzAeBAIAATAYAwQALZeL
AwQCU6vwAwQAVDYkAwQAwnFpMIGEBAIAAjB+AwUDKgbZAAMFAyoJOwAwEAMGBCoJ
TgEwAwYFKglOAUADBgQqCU4BkAMFAyoM6MADBQAqDV7FAwYEKg/MhwADBQMqEMDA
AwYEKhECAAADBgUqEQIAQDAQAwYEKhECAHADBgQqEQIAgDAOAwUAKhECAQMFACoR
AgIDBQAqEa8BMA0GCSqGSIb3DQEBCwUAA4IBAQARUfM1dFwT2wLzccBA5tGM/VQG
3uAcNKguuGc++082GlLH76c/dBfBT7piLO5t6SCCyAy06ic7D0IDaaW981wZX8DP
gmOP/OvEV5GnlpWMnua71B3lzi292KHptNxLI2lgwdas7PckhnSPnU9Bi4i4AhiU
lDcMkKAHuJhUB0c6hxONmbVP3hG53kSDpSbcl1oE1AXnSOgvZd70XeGmtpfXid5a
dpRVuyXSf9rjrq4kmsdP6un8HOwdHJKqX4MSU+Awt5FQ0GlqxPcUioHb3XQDNgpP
N4D+jYhJsFrN3Kodhnl8ZmhBYjpTPH8yvIoQlDQBfg/P2LHs0gXoj+/2JzSQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:05 2024 by rpki-client on console-fra.rpki-client.org