Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/oUuKc7RLfFiQmT0kixx11UqgJiY.roa
File: oUuKc7RLfFiQmT0kixx11UqgJiY.roa (raw, json)
Hash identifier: EiRewpJDPOTqwDWHK9KuOCoyvUECcZraaJ/VumqPlIk=
Subject key identifier: A1:4B:8A:73:B4:4B:7C:58:90:99:3D:24:8B:1C:75:D5:4A:A0:26:26
Certificate issuer: /CN=896ed6e4b5c7c19db98c57432af4dcf630bf60ae
Certificate serial: 01886E127B1462298D1E06417ECAB1DF8337
Authority key identifier: 89:6E:D6:E4:B5:C7:C1:9D:B9:8C:57:43:2A:F4:DC:F6:30:BF:60:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iW7W5LXHwZ25jFdDKvTc9jC_YK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/oUuKc7RLfFiQmT0kixx11UqgJiY.roa
Signing time: Tue 30 May 2023 19:11:24 +0000
ROA not before: Tue 30 May 2023 19:11:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203214
IP address blocks: 185.141.8.0/24 maxlen: 24
109.224.52.0/22 maxlen: 22
109.224.56.0/22 maxlen: 22
109.224.56.0/21 maxlen: 21
109.224.60.0/22 maxlen: 22
109.224.0.0/18 maxlen: 18
109.224.2.0/23 maxlen: 23
109.224.1.0/24 maxlen: 24
109.224.0.0/21 maxlen: 21
109.224.4.0/22 maxlen: 22
109.224.8.0/21 maxlen: 21
109.224.8.0/22 maxlen: 22
109.224.5.0/24 maxlen: 24
109.224.16.0/22 maxlen: 22
109.224.15.0/24 maxlen: 24
109.224.14.0/24 maxlen: 24
109.224.14.0/23 maxlen: 23
109.224.13.0/24 maxlen: 24
109.224.12.0/23 maxlen: 23
109.224.12.0/24 maxlen: 24
109.224.24.0/22 maxlen: 22
109.224.20.0/22 maxlen: 22
109.224.30.0/23 maxlen: 23
109.224.29.0/24 maxlen: 24
109.224.28.0/24 maxlen: 24
109.224.36.0/22 maxlen: 22
109.224.32.0/22 maxlen: 22
109.224.44.0/22 maxlen: 22
109.224.43.0/24 maxlen: 24
109.224.42.0/23 maxlen: 23
109.224.42.0/24 maxlen: 24
109.224.41.0/24 maxlen: 24
109.224.40.0/21 maxlen: 21
109.224.40.0/24 maxlen: 24
109.224.48.0/21 maxlen: 21
109.224.48.0/22 maxlen: 22
185.118.96.0/24 maxlen: 24
185.118.96.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 06 Nov 2023 09:12:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6e:12:7b:14:62:29:8d:1e:06:41:7e:ca:b1:df:83:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896ed6e4b5c7c19db98c57432af4dcf630bf60ae
Validity
Not Before: May 30 19:11:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a14b8a73b44b7c5890993d248b1c75d54aa02626
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:39:82:06:2e:cd:8a:ea:a4:92:bd:92:3f:6e:
2b:17:1c:b9:a3:9f:82:a3:41:3d:f9:cd:bb:b3:11:
49:0a:02:20:5c:1a:8e:a6:10:67:a7:94:d0:e5:22:
54:a3:0b:8a:1c:d7:e4:97:9e:c0:be:1d:07:72:cc:
e1:72:42:98:56:e7:83:83:e8:1a:ef:1c:2e:32:51:
f4:e3:88:5f:58:a4:55:69:eb:88:cb:2f:49:0c:13:
cb:50:4c:77:ea:92:2f:1c:e5:0e:21:f7:af:9c:07:
62:85:58:21:6f:fa:1c:e9:df:3a:b9:2f:63:c5:1f:
69:49:57:24:56:c0:f8:25:38:40:ac:3d:71:1e:c1:
64:0c:f9:13:27:58:eb:43:73:35:fd:4f:0e:9e:b2:
e6:14:b8:da:54:d7:f8:36:11:ee:f0:99:9b:9c:3b:
55:89:77:e3:e8:9d:48:5c:38:ee:68:33:dd:86:20:
d7:07:8c:67:27:90:cb:16:84:58:91:1a:c8:15:3f:
90:c8:df:8f:2c:11:91:2b:7d:51:a6:59:46:bb:80:
37:5c:7e:d2:a2:f7:6b:19:17:b6:3c:ed:48:6e:6a:
df:7b:06:17:a3:7f:0c:a3:da:69:41:2d:19:af:2a:
de:92:53:89:36:7c:66:ce:6d:60:cc:83:09:3f:e9:
2b:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:4B:8A:73:B4:4B:7C:58:90:99:3D:24:8B:1C:75:D5:4A:A0:26:26
X509v3 Authority Key Identifier:
keyid:89:6E:D6:E4:B5:C7:C1:9D:B9:8C:57:43:2A:F4:DC:F6:30:BF:60:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iW7W5LXHwZ25jFdDKvTc9jC_YK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/oUuKc7RLfFiQmT0kixx11UqgJiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/iW7W5LXHwZ25jFdDKvTc9jC_YK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.224.0.0/18
185.118.96.0/22
185.141.8.0/24
Signature Algorithm: sha256WithRSAEncryption
25:ed:ee:a2:fb:1f:ed:2a:a9:a6:84:58:b5:25:4a:33:3a:c6:
80:f1:55:af:2d:31:1c:c5:48:b9:40:ec:99:ec:67:97:1c:37:
43:a2:45:1d:7a:ee:fa:f3:0c:7d:03:4c:24:d5:7b:39:ad:9a:
c5:34:40:c4:97:ad:5c:08:f7:60:8a:4f:69:50:22:db:1a:d2:
1e:a5:d9:5e:1a:e1:a6:19:b2:5e:a3:b0:39:07:5b:a2:9d:bc:
c7:8f:81:e5:6a:14:70:b9:b7:50:53:7c:90:9b:89:5a:41:3a:
df:d0:82:a7:62:21:f1:34:35:6d:52:df:da:14:b5:70:e7:d5:
1d:4f:f1:f7:21:ea:a8:a9:87:c9:57:fc:84:57:9f:74:f6:e2:
38:84:13:11:0e:3c:f9:56:59:30:66:32:08:b7:f9:b8:c2:ca:
9c:4f:0b:e1:1d:69:6d:25:0b:76:fb:28:ee:cf:89:f2:39:0a:
9e:3a:12:cd:58:2e:bf:d4:84:46:fa:f6:ed:4e:00:0f:e9:9c:
73:c7:16:e8:e2:3f:d7:b4:55:4b:34:8e:c4:b2:a6:e3:ba:1a:
a5:8a:35:6c:b3:0b:cf:bb:3e:93:e2:a3:85:81:69:55:fb:c4:
64:67:0d:ce:4f:3c:68:92:51:15:fd:bb:5b:0a:36:99:92:ff:
56:f7:3a:eb
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYhuEnsUYimNHgZBfsqx34M3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5NmVkNmU0YjVjN2MxOWRiOThjNTc0MzJhZjRkY2Y2MzBi
ZjYwYWUwHhcNMjMwNTMwMTkxMTI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMTRiOGE3M2I0NGI3YzU4OTA5OTNkMjQ4YjFjNzVkNTRhYTAyNjI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTmCBi7Niuqkkr2SP24rFxy5o5+C
o0E9+c27sxFJCgIgXBqOphBnp5TQ5SJUowuKHNfkl57Avh0HcszhckKYVueDg+ga
7xwuMlH044hfWKRVaeuIyy9JDBPLUEx36pIvHOUOIfevnAdihVghb/oc6d86uS9j
xR9pSVckVsD4JThArD1xHsFkDPkTJ1jrQ3M1/U8OnrLmFLjaVNf4NhHu8JmbnDtV
iXfj6J1IXDjuaDPdhiDXB4xnJ5DLFoRYkRrIFT+QyN+PLBGRK31RpllGu4A3XH7S
ovdrGRe2PO1IbmrfewYXo38Mo9ppQS0ZryreklOJNnxmzm1gzIMJP+krBQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFKFLinO0S3xYkJk9JIscddVKoCYmMB8GA1UdIwQY
MBaAFIlu1uS1x8GduYxXQyr03PYwv2CuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVc3VzVMWEh3WjI1akZkREt2VGM5akNfWUs0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC85MDA0NDQtZGQ0MC00YTA0LWE2MTYt
ZGMxZmY2NzQ2ZDJlLzEvb1V1S2M3UkxmRmlRbVQwa2l4eDExVXFnSmlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC85MDA0NDQtZGQ0MC00YTA0LWE2MTYtZGMxZmY2NzQ2ZDJl
LzEvaVc3VzVMWEh3WjI1akZkREt2VGM5akNfWUs0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQGbeAAAwQC
uXZgAwQAuY0IMA0GCSqGSIb3DQEBCwUAA4IBAQAl7e6i+x/tKqmmhFi1JUozOsaA
8VWvLTEcxUi5QOyZ7GeXHDdDokUdeu768wx9A0wk1Xs5rZrFNEDEl61cCPdgik9p
UCLbGtIepdleGuGmGbJeo7A5B1uinbzHj4HlahRwubdQU3yQm4laQTrf0IKnYiHx
NDVtUt/aFLVw59UdT/H3IeqoqYfJV/yEV5909uI4hBMRDjz5VlkwZjIIt/m4wsqc
TwvhHWltJQt2+yjuz4nyOQqeOhLNWC6/1IRG+vbtTgAP6Zxzxxbo4j/XtFVLNI7E
sqbjuhqlijVsswvPuz6T4qOFgWlV+8RkZw3OTzxoklEV/btbCjaZkv9W9zrr
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:11 2024 by rpki-client on console-fra.rpki-client.org