Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/dtT4EZgGOeIVgBz0Mo7NgK-q6II.roa
File: dtT4EZgGOeIVgBz0Mo7NgK-q6II.roa (raw, json)
Hash identifier: fY64znS93e+HF7YEETrNM7+RvShmYNc3MIyzzZAFNBQ=
Subject key identifier: 76:D4:F8:11:98:06:39:E2:15:80:1C:F4:32:8E:CD:80:AF:AA:E8:82
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018E6A012B2D5C5D7C615DB30B2AF2151ECD
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/dtT4EZgGOeIVgBz0Mo7NgK-q6II.roa
Signing time: Sat 23 Mar 2024 06:30:45 +0000
ROA not before: Sat 23 Mar 2024 06:30:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 89.34.224.0/23 maxlen: 24
89.34.228.0/24 maxlen: 24
89.34.231.0/24 maxlen: 24
89.40.82.0/24 maxlen: 24
89.42.81.0/24 maxlen: 24
89.42.86.0/24 maxlen: 24
89.42.95.0/24 maxlen: 24
89.42.143.0/24 maxlen: 24
89.43.140.0/24 maxlen: 24
89.43.143.0/24 maxlen: 24
89.46.0.0/24 maxlen: 24
89.47.99.0/24 maxlen: 24
89.47.115.0/24 maxlen: 24
89.47.117.0/24 maxlen: 24
89.47.119.0/24 maxlen: 24
89.47.125.0/24 maxlen: 24
89.47.127.0/24 maxlen: 24
93.113.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 14 Apr 2024 06:25:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:6a:01:2b:2d:5c:5d:7c:61:5d:b3:0b:2a:f2:15:1e:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Mar 23 06:30:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=76d4f811980639e215801cf4328ecd80afaae882
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:4d:84:cf:d2:3c:f0:21:d6:fa:d8:30:2f:c2:
06:aa:89:c5:8d:a4:9c:32:0f:e2:08:66:81:91:08:
14:70:c2:8a:27:50:fd:27:73:10:ad:9c:15:35:f9:
6e:74:f2:cc:d8:18:ad:ee:fc:39:54:40:ec:8c:0e:
00:a0:0f:ca:64:fb:b6:d8:30:bc:8a:38:7f:5f:4b:
28:1e:5f:50:87:ac:48:58:5a:ae:85:71:84:c2:b1:
59:58:78:8a:5e:b0:c1:c7:46:7a:cb:07:c1:bf:c6:
fd:68:7a:a4:9c:f4:62:29:f4:b6:5c:96:05:98:d5:
a1:1a:06:d5:5a:35:99:f7:4c:37:8f:13:62:13:fe:
76:07:a1:37:60:a9:da:fd:68:43:50:c6:2a:18:41:
50:a5:05:a0:fb:39:33:29:08:30:77:fc:36:2e:6a:
54:66:8e:be:37:1b:77:dd:5e:0c:09:ca:aa:04:82:
f7:0c:c3:b4:43:89:82:79:41:41:8b:78:23:19:46:
68:78:0b:76:97:44:e4:e6:bc:06:58:c9:f6:f9:b9:
f2:6d:02:f0:11:a3:60:0b:d3:fe:39:9b:41:38:4e:
9c:9b:77:83:ae:9a:91:b8:03:2d:67:fa:aa:f1:98:
13:bf:1f:3b:75:d2:1e:a7:5a:56:6a:63:bf:94:5d:
af:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:D4:F8:11:98:06:39:E2:15:80:1C:F4:32:8E:CD:80:AF:AA:E8:82
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/dtT4EZgGOeIVgBz0Mo7NgK-q6II.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.224.0/23
89.34.228.0/24
89.34.231.0/24
89.40.82.0/24
89.42.81.0/24
89.42.86.0/24
89.42.95.0/24
89.42.143.0/24
89.43.140.0/24
89.43.143.0/24
89.46.0.0/24
89.47.99.0/24
89.47.115.0/24
89.47.117.0/24
89.47.119.0/24
89.47.125.0/24
89.47.127.0/24
93.113.181.0/24
Signature Algorithm: sha256WithRSAEncryption
86:02:00:bd:49:10:3b:5d:66:a8:a0:91:4c:1a:49:de:1c:14:
a5:98:6a:40:15:c1:7a:73:51:ba:0d:1d:5e:73:83:b7:b0:9d:
ae:5f:da:85:4f:da:4f:a5:38:37:7d:38:f9:e0:e2:38:9f:52:
7d:33:d6:b3:3d:3e:bf:02:62:44:1e:b6:ca:7a:98:cd:c2:ff:
2e:13:ac:07:e8:9a:bd:fa:6e:1f:90:18:a4:5a:6d:39:43:19:
6b:db:f8:e2:3f:f6:45:56:5c:17:11:f9:2e:39:6e:50:89:ce:
f9:e0:60:94:ce:15:d8:99:b0:c1:94:c2:8b:b3:11:ce:0c:f4:
e9:46:4b:b0:23:88:98:0e:6c:99:c0:63:be:ec:05:15:50:6f:
47:ac:ff:2b:57:d3:3a:73:47:de:1a:e6:4a:56:53:c7:c8:55:
93:65:be:16:f1:a9:6b:21:d0:e8:33:73:76:57:02:97:3c:a3:
fa:a4:e4:52:89:17:1b:b6:d8:ae:d2:3a:94:87:bf:8c:93:f8:
7b:d5:4b:74:df:54:a1:11:e4:8b:26:6c:c0:13:16:b7:c6:4f:
5d:34:92:93:fe:19:e7:a5:b7:ae:74:6f:78:e2:74:f6:26:84:
37:3f:4d:f7:f9:ca:df:ef:49:b7:4d:2f:1d:33:31:94:7a:9d:
3f:38:81:0d
-----BEGIN CERTIFICATE-----
MIIFZDCCBEygAwIBAgISAY5qASstXF18YV2zCyryFR7NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxZDQ2ZTBlM2U4Y2FhYWVkNGE1MjliZDdkNzMwOGJkMWVm
MDFjMWQwHhcNMjQwMzIzMDYzMDQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NmQ0ZjgxMTk4MDYzOWUyMTU4MDFjZjQzMjhlY2Q4MGFmYWFlODgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlE2Ez9I88CHW+tgwL8IGqonFjaSc
Mg/iCGaBkQgUcMKKJ1D9J3MQrZwVNfludPLM2Bit7vw5VEDsjA4AoA/KZPu22DC8
ijh/X0soHl9Qh6xIWFquhXGEwrFZWHiKXrDBx0Z6ywfBv8b9aHqknPRiKfS2XJYF
mNWhGgbVWjWZ90w3jxNiE/52B6E3YKna/WhDUMYqGEFQpQWg+zkzKQgwd/w2LmpU
Zo6+Nxt33V4MCcqqBIL3DMO0Q4mCeUFBi3gjGUZoeAt2l0Tk5rwGWMn2+bnybQLw
EaNgC9P+OZtBOE6cm3eDrpqRuAMtZ/qq8ZgTvx87ddIep1pWamO/lF2vCQIDAQAB
o4ICcDCCAmwwHQYDVR0OBBYEFHbU+BGYBjniFYAc9DKOzYCvquiCMB8GA1UdIwQY
MBaAFPHUbg4+jKqu1KUpvX1zCL0e8BwdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMt
YjQyZjIzZDgyOGMzLzEvZHRUNEVaZ0dPZUlWZ0J6ME1vN05nSy1xNklJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMtYjQyZjIzZDgyOGMz
LzEvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGFBggrBgEFBQcBBwEB/wR2MHQwcgQCAAEwbAMEAVki4AME
AFki5AMEAFki5wMEAFkoUgMEAFkqUQMEAFkqVgMEAFkqXwMEAFkqjwMEAFkrjAME
AFkrjwMEAFkuAAMEAFkvYwMEAFkvcwMEAFkvdQMEAFkvdwMEAFkvfQMEAFkvfwME
AF1xtTANBgkqhkiG9w0BAQsFAAOCAQEAhgIAvUkQO11mqKCRTBpJ3hwUpZhqQBXB
enNRug0dXnODt7Cdrl/ahU/aT6U4N304+eDiOJ9SfTPWsz0+vwJiRB62ynqYzcL/
LhOsB+iavfpuH5AYpFptOUMZa9v44j/2RVZcFxH5LjluUInO+eBglM4V2JmwwZTC
i7MRzgz06UZLsCOImA5smcBjvuwFFVBvR6z/K1fTOnNH3hrmSlZTx8hVk2W+FvGp
ayHQ6DNzdlcClzyj+qTkUokXG7bYrtI6lIe/jJP4e9VLdN9UoRHkiyZswBMWt8ZP
XTSSk/4Z56W3rnRveOJ09iaENz9N9/nK3+9Jt00vHTMxlHqdPziBDQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:19 2024 by rpki-client on console-fra.rpki-client.org