Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/rT8ebD6JP3QfA6P-5ry5c-XDdjw.roa
File: rT8ebD6JP3QfA6P-5ry5c-XDdjw.roa (raw, json)
Hash identifier: FOT0GR/drtCsUejFzIhCjhusfubCKDYRARYBadBbIos=
Subject key identifier: AD:3F:1E:6C:3E:89:3F:74:1F:03:A3:FE:E6:BC:B9:73:E5:C3:76:3C
Certificate issuer: /CN=3af7710df8add64bb9688e0f4581bea67e402c66
Certificate serial: 018CC424995AE947FACA0DF8C3A167625D0D
Authority key identifier: 3A:F7:71:0D:F8:AD:D6:4B:B9:68:8E:0F:45:81:BE:A6:7E:40:2C:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvdxDfit1ku5aI4PRYG-pn5ALGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/rT8ebD6JP3QfA6P-5ry5c-XDdjw.roa
Signing time: Mon 01 Jan 2024 08:29:42 +0000
ROA not before: Mon 01 Jan 2024 08:29:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203639
IP address blocks: 185.155.186.0/24 maxlen: 24
185.155.187.0/24 maxlen: 24
46.21.16.0/24 maxlen: 24
46.21.23.0/24 maxlen: 24
45.143.159.0/24 maxlen: 24
45.143.158.0/24 maxlen: 24
46.21.20.0/24 maxlen: 24
46.21.28.0/24 maxlen: 24
46.21.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Apr 2024 15:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:99:5a:e9:47:fa:ca:0d:f8:c3:a1:67:62:5d:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af7710df8add64bb9688e0f4581bea67e402c66
Validity
Not Before: Jan 1 08:29:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ad3f1e6c3e893f741f03a3fee6bcb973e5c3763c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f6:5c:71:89:14:d9:06:94:c5:e3:d6:00:1f:
a8:5e:b9:d8:a3:8a:7f:a0:e0:2c:2c:38:34:ba:49:
e4:a0:25:2c:05:6f:0b:d4:68:5c:ec:2c:d5:02:4c:
2c:32:78:91:8b:b6:c9:cc:c3:e0:39:2d:17:bd:f2:
df:2b:99:7c:e5:e4:f7:47:62:62:b2:a5:be:3f:3f:
56:14:06:33:0b:e5:8f:20:e5:67:32:a4:aa:2d:9b:
81:61:bb:da:56:d4:bf:1b:d8:32:f6:ee:f3:e0:63:
d9:13:02:63:ec:8c:c0:56:f5:b7:b2:19:62:08:6a:
54:81:c0:27:66:60:9a:03:af:5f:98:42:ee:44:67:
16:e3:d4:90:24:a9:b3:09:72:8e:db:66:70:bc:48:
68:f6:26:e0:60:5b:48:6a:91:37:d3:06:c8:99:6e:
88:d3:2a:ad:aa:d5:e5:83:e3:93:a2:0a:71:54:79:
9a:46:f2:73:df:c9:fe:90:9e:1c:ab:6b:c4:34:f0:
4e:b4:55:19:15:5f:69:2b:d3:0b:d2:f3:ac:e1:a8:
20:25:e0:57:a4:e0:0f:fa:9f:b5:63:4e:6e:f2:53:
a7:b8:e7:80:e6:de:e6:30:4b:43:44:7a:48:05:3b:
25:b3:69:80:a8:63:0c:06:1d:bb:96:ea:f2:10:70:
17:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:3F:1E:6C:3E:89:3F:74:1F:03:A3:FE:E6:BC:B9:73:E5:C3:76:3C
X509v3 Authority Key Identifier:
keyid:3A:F7:71:0D:F8:AD:D6:4B:B9:68:8E:0F:45:81:BE:A6:7E:40:2C:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvdxDfit1ku5aI4PRYG-pn5ALGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/rT8ebD6JP3QfA6P-5ry5c-XDdjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/f59fe3-956e-4937-858d-eec416a886f7/1/OvdxDfit1ku5aI4PRYG-pn5ALGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.158.0/23
46.21.16.0/24
46.21.20.0/24
46.21.23.0/24
46.21.28.0/24
46.21.30.0/24
185.155.186.0/23
Signature Algorithm: sha256WithRSAEncryption
60:5f:97:0d:a6:c1:fb:b7:81:08:47:32:00:a5:4f:8b:33:99:
7f:18:35:76:fd:78:05:33:e9:2f:6c:62:0b:55:98:69:fd:9b:
37:b5:64:bb:4d:5f:4d:96:3f:7c:85:a5:5a:cc:66:15:9c:33:
8d:52:ac:15:8c:53:ab:f3:4f:3b:0b:23:e6:d1:33:5e:e2:47:
11:8f:04:a0:f9:04:65:85:3f:47:0a:93:52:c5:65:a6:47:de:
4c:18:cb:ce:cb:4f:37:7c:24:f0:5c:d5:4e:79:b4:9a:0e:c5:
dd:19:78:5a:49:61:0d:7d:06:30:e6:65:5e:96:e4:bc:67:ee:
78:42:64:ca:c7:0d:fd:6b:36:06:fe:73:f5:1e:5d:e6:fa:2f:
2a:a5:3a:ad:ca:ff:c5:17:42:0f:28:05:ee:30:67:58:42:c8:
fb:27:1d:5f:e3:62:b0:94:b9:a1:ed:b1:4c:ea:00:53:b4:51:
09:fd:d9:59:50:c7:1a:6c:5b:0c:9a:30:d0:81:f3:ec:72:36:
38:be:ae:b5:8a:a1:dd:19:0b:f1:5d:28:d1:8f:d0:60:1b:21:
b1:18:82:de:5a:6e:f3:4d:c4:1c:fd:c8:46:1b:df:a1:e3:56:
9c:4f:31:f9:1c:51:76:38:ac:65:fe:66:1e:25:e2:16:71:df:
fc:db:0b:0b
-----BEGIN CERTIFICATE-----
MIIFITCCBAmgAwIBAgISAYzEJJla6Uf6yg34w6FnYl0NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhZjc3MTBkZjhhZGQ2NGJiOTY4OGUwZjQ1ODFiZWE2N2U0
MDJjNjYwHhcNMjQwMTAxMDgyOTQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZDNmMWU2YzNlODkzZjc0MWYwM2EzZmVlNmJjYjk3M2U1YzM3NjNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzfZccYkU2QaUxePWAB+oXrnYo4p/
oOAsLDg0uknkoCUsBW8L1Ghc7CzVAkwsMniRi7bJzMPgOS0XvfLfK5l85eT3R2Ji
sqW+Pz9WFAYzC+WPIOVnMqSqLZuBYbvaVtS/G9gy9u7z4GPZEwJj7IzAVvW3shli
CGpUgcAnZmCaA69fmELuRGcW49SQJKmzCXKO22ZwvEho9ibgYFtIapE30wbImW6I
0yqtqtXlg+OTogpxVHmaRvJz38n+kJ4cq2vENPBOtFUZFV9pK9ML0vOs4aggJeBX
pOAP+p+1Y05u8lOnuOeA5t7mMEtDRHpIBTsls2mAqGMMBh27luryEHAXbQIDAQAB
o4ICLTCCAikwHQYDVR0OBBYEFK0/Hmw+iT90HwOj/ua8uXPlw3Y8MB8GA1UdIwQY
MBaAFDr3cQ34rdZLuWiOD0WBvqZ+QCxmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3ZkeERmaXQxa3U1YUk0UFJZRy1wbjVBTEdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi9mNTlmZTMtOTU2ZS00OTM3LTg1OGQt
ZWVjNDE2YTg4NmY3LzEvclQ4ZWJENkpQM1FmQTZQLTVyeTVjLVhEZGp3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi9mNTlmZTMtOTU2ZS00OTM3LTg1OGQtZWVjNDE2YTg4NmY3
LzEvT3ZkeERmaXQxa3U1YUk0UFJZRy1wbjVBTEdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQBLY+eAwQA
LhUQAwQALhUUAwQALhUXAwQALhUcAwQALhUeAwQBuZu6MA0GCSqGSIb3DQEBCwUA
A4IBAQBgX5cNpsH7t4EIRzIApU+LM5l/GDV2/XgFM+kvbGILVZhp/Zs3tWS7TV9N
lj98haVazGYVnDONUqwVjFOr8087CyPm0TNe4kcRjwSg+QRlhT9HCpNSxWWmR95M
GMvOy083fCTwXNVOebSaDsXdGXhaSWENfQYw5mVeluS8Z+54QmTKxw39azYG/nP1
Hl3m+i8qpTqtyv/FF0IPKAXuMGdYQsj7Jx1f42KwlLmh7bFM6gBTtFEJ/dlZUMca
bFsMmjDQgfPscjY4vq61iqHdGQvxXSjRj9BgGyGxGILeWm7zTcQc/chGG9+h41ac
TzH5HFF2OKxl/mYeJeIWcd/82wsL
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:45 2024 by rpki-client on console-fra.rpki-client.org