Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/BR6-mhoJlmIaaYWpPr-0WsZtHVQ.roa
File: BR6-mhoJlmIaaYWpPr-0WsZtHVQ.roa (raw, json)
Hash identifier: T/Vwa2cMCfadn1NqfxSOQoKxBJNGeUQpxYcGY7lp4hw=
Subject key identifier: 05:1E:BE:9A:1A:09:96:62:1A:69:85:A9:3E:BF:B4:5A:C6:6D:1D:54
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018A92C3A5DF7A0DC97CBCFED318C439092E
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/BR6-mhoJlmIaaYWpPr-0WsZtHVQ.roa
Signing time: Thu 14 Sep 2023 08:16:50 +0000
ROA not before: Thu 14 Sep 2023 08:16:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39543
IP address blocks: 195.28.2.0/23 maxlen: 23
193.19.192.0/24 maxlen: 24
193.19.192.0/22 maxlen: 24
89.34.228.0/24 maxlen: 24
89.34.230.0/23 maxlen: 23
89.34.230.0/24 maxlen: 24
89.34.231.0/24 maxlen: 24
93.113.176.0/21 maxlen: 21
93.113.181.0/24 maxlen: 24
93.113.204.0/24 maxlen: 24
93.114.79.0/24 maxlen: 24
89.40.67.0/24 maxlen: 24
89.43.140.0/22 maxlen: 22
89.47.96.0/24 maxlen: 24
89.47.96.0/20 maxlen: 20
89.47.97.0/24 maxlen: 24
89.47.98.0/24 maxlen: 24
89.47.99.0/24 maxlen: 24
89.47.101.0/24 maxlen: 24
93.114.194.0/24 maxlen: 24
89.47.100.0/24 maxlen: 24
89.47.103.0/24 maxlen: 24
89.47.102.0/24 maxlen: 24
89.47.104.0/24 maxlen: 24
89.47.105.0/24 maxlen: 24
89.35.158.0/24 maxlen: 24
89.47.106.0/24 maxlen: 24
89.47.108.0/24 maxlen: 24
89.47.107.0/24 maxlen: 24
89.47.110.0/24 maxlen: 24
89.47.109.0/24 maxlen: 24
89.47.111.0/24 maxlen: 24
89.47.112.0/20 maxlen: 20
89.47.113.0/24 maxlen: 24
89.47.115.0/24 maxlen: 24
89.47.114.0/24 maxlen: 24
89.47.118.0/24 maxlen: 24
89.47.119.0/24 maxlen: 24
89.45.164.0/24 maxlen: 24
89.39.111.0/24 maxlen: 24
89.34.27.0/24 maxlen: 24
89.46.3.0/24 maxlen: 24
2001:4d18::/32 maxlen: 32
2001:4d18::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 25 Sep 2023 11:53:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:92:c3:a5:df:7a:0d:c9:7c:bc:fe:d3:18:c4:39:09:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Sep 14 08:16:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=051ebe9a1a0996621a6985a93ebfb45ac66d1d54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:00:34:6c:3e:7c:15:03:cb:59:c9:88:71:64:
d4:65:90:bf:00:2c:f0:d6:2a:f6:e9:52:87:56:a6:
cb:09:e1:a8:b0:13:45:14:e1:f1:1c:39:8a:41:2a:
94:fb:27:2b:ca:f7:e6:f3:3d:8e:f8:1e:07:96:cd:
5f:4a:48:2b:a7:0b:3a:65:0f:2f:b8:98:4d:b8:4a:
d3:f4:48:21:2c:12:f3:82:9f:41:77:b5:c1:8f:66:
ac:8c:8e:6f:64:52:be:a4:1d:6b:ba:ae:a7:39:d2:
b4:2c:72:1f:35:11:82:4a:18:d7:fa:ba:5b:38:15:
47:84:bc:ea:53:d8:06:32:3a:bd:49:bd:fa:88:81:
b1:15:07:ea:4c:8b:d0:46:d7:41:bc:9a:5e:40:8a:
01:85:35:dc:7b:02:85:37:05:e3:a2:10:30:e6:1b:
26:21:26:9c:26:1b:b9:67:e0:35:32:e1:62:29:c9:
68:8f:54:de:95:2e:b5:db:03:65:08:8f:4c:2a:88:
dc:d2:83:82:2f:ca:54:35:fc:ed:4c:9c:e6:33:7a:
57:f5:31:76:3b:f5:d7:70:5f:a5:38:15:69:3d:d5:
9c:b2:82:0d:e1:b4:a2:38:e5:eb:3a:2b:af:c7:3e:
e0:be:a1:20:04:ce:2a:51:3a:08:c7:79:a9:a8:c9:
eb:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:1E:BE:9A:1A:09:96:62:1A:69:85:A9:3E:BF:B4:5A:C6:6D:1D:54
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/BR6-mhoJlmIaaYWpPr-0WsZtHVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.27.0/24
89.34.228.0/24
89.34.230.0/23
89.35.158.0/24
89.39.111.0/24
89.40.67.0/24
89.43.140.0/22
89.45.164.0/24
89.46.3.0/24
89.47.96.0/19
93.113.176.0/21
93.113.204.0/24
93.114.79.0/24
93.114.194.0/24
193.19.192.0/22
195.28.2.0/23
IPv6:
2001:4d18::/32
Signature Algorithm: sha256WithRSAEncryption
83:66:d3:4a:c1:e5:c1:db:45:8d:74:34:b9:bb:0c:3b:f3:93:
3d:8f:e2:b3:cf:86:c1:40:65:ea:df:0e:68:b7:c9:2d:72:f1:
2b:61:e5:0d:5e:1a:39:76:3d:eb:0e:cd:91:37:a4:62:f7:97:
ee:c1:af:0a:ce:2e:41:e1:1a:fd:e7:2c:2b:5d:8f:0a:7c:63:
e2:d7:65:f3:f6:12:99:5a:4d:12:c3:c3:56:fa:ff:21:e7:dd:
6a:76:c0:85:89:6b:79:ec:a7:05:86:df:af:2e:f6:cb:bb:6b:
2f:96:c7:19:f4:85:56:0a:96:de:b0:bd:01:7c:e5:9a:0d:26:
16:e6:c6:d2:a7:81:7e:be:ac:eb:5c:bb:8c:40:11:27:f0:cb:
42:e2:70:0c:50:ab:ed:a1:04:a4:13:30:8a:a3:ed:b8:f3:8b:
77:fc:15:8d:8a:df:43:e8:80:c6:5c:55:de:77:79:1f:94:90:
f2:81:5c:1e:b1:d6:db:61:11:23:0e:dc:05:a6:88:3d:fc:47:
6e:21:a2:3f:aa:76:4e:35:72:24:51:a9:f7:a7:05:c3:1e:89:
bd:12:62:92:69:3d:7a:29:1b:6c:cb:bc:71:0b:e5:51:13:1d:
1c:a7:7e:ac:ab:96:09:38:64:d0:21:16:c7:58:e0:ad:f7:bd:
4a:d6:19:3b
-----BEGIN CERTIFICATE-----
MIIFZzCCBE+gAwIBAgISAYqSw6Xfeg3JfLz+0xjEOQkuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxZDQ2ZTBlM2U4Y2FhYWVkNGE1MjliZDdkNzMwOGJkMWVm
MDFjMWQwHhcNMjMwOTE0MDgxNjUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNTFlYmU5YTFhMDk5NjYyMWE2OTg1YTkzZWJmYjQ1YWM2NmQxZDU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwgA0bD58FQPLWcmIcWTUZZC/ACzw
1ir26VKHVqbLCeGosBNFFOHxHDmKQSqU+ycryvfm8z2O+B4Hls1fSkgrpws6ZQ8v
uJhNuErT9EghLBLzgp9Bd7XBj2asjI5vZFK+pB1ruq6nOdK0LHIfNRGCShjX+rpb
OBVHhLzqU9gGMjq9Sb36iIGxFQfqTIvQRtdBvJpeQIoBhTXcewKFNwXjohAw5hsm
ISacJhu5Z+A1MuFiKcloj1TelS612wNlCI9MKojc0oOCL8pUNfztTJzmM3pX9TF2
O/XXcF+lOBVpPdWcsoIN4bSiOOXrOiuvxz7gvqEgBM4qUToIx3mpqMnrFwIDAQAB
o4ICczCCAm8wHQYDVR0OBBYEFAUevpoaCZZiGmmFqT6/tFrGbR1UMB8GA1UdIwQY
MBaAFPHUbg4+jKqu1KUpvX1zCL0e8BwdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMt
YjQyZjIzZDgyOGMzLzEvQlI2LW1ob0psbUlhYVlXcFByLTBXc1p0SFZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMtYjQyZjIzZDgyOGMz
LzEvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGIBggrBgEFBQcBBwEB/wR5MHcwZgQCAAEwYAMEAFkiGwME
AFki5AMEAVki5gMEAFkjngMEAFknbwMEAFkoQwMEAlkrjAMEAFktpAMEAFkuAwME
BVkvYAMEA11xsAMEAF1xzAMEAF1yTwMEAF1ywgMEAsETwAMEAcMcAjANBAIAAjAH
AwUAIAFNGDANBgkqhkiG9w0BAQsFAAOCAQEAg2bTSsHlwdtFjXQ0ubsMO/OTPY/i
s8+GwUBl6t8OaLfJLXLxK2HlDV4aOXY96w7NkTekYveX7sGvCs4uQeEa/ecsK12P
Cnxj4tdl8/YSmVpNEsPDVvr/IefdanbAhYlreeynBYbfry72y7trL5bHGfSFVgqW
3rC9AXzlmg0mFubG0qeBfr6s61y7jEARJ/DLQuJwDFCr7aEEpBMwiqPtuPOLd/wV
jYrfQ+iAxlxV3nd5H5SQ8oFcHrHW22ERIw7cBaaIPfxHbiGiP6p2TjVyJFGp96cF
wx6JvRJikmk9eikbbMu8cQvlURMdHKd+rKuWCThk0CEWx1jgrfe9StYZOw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:18 2024 by rpki-client on console-fra.rpki-client.org