Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/gRGu3WKQyXyH06nAV0ptYRXLBUI.roa
File: gRGu3WKQyXyH06nAV0ptYRXLBUI.roa (raw, json)
Hash identifier: XWhWnp3+bjI/vuGEHqQc6WO7ZQIngjvgYCWZ69coBeo=
Subject key identifier: 81:11:AE:DD:62:90:C9:7C:87:D3:A9:C0:57:4A:6D:61:15:CB:05:42
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 0188944BB75274F749F9F56C0E0615B3F115
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/gRGu3WKQyXyH06nAV0ptYRXLBUI.roa
Signing time: Wed 07 Jun 2023 05:19:30 +0000
ROA not before: Wed 07 Jun 2023 05:19:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39543
IP address blocks: 89.33.12.0/23 maxlen: 23
193.19.192.0/24 maxlen: 24
193.19.192.0/22 maxlen: 24
93.113.176.0/21 maxlen: 21
93.113.181.0/24 maxlen: 24
93.113.204.0/24 maxlen: 24
93.114.79.0/24 maxlen: 24
89.40.67.0/24 maxlen: 24
89.43.140.0/22 maxlen: 22
89.42.80.0/21 maxlen: 22
89.42.88.0/21 maxlen: 22
89.35.158.0/24 maxlen: 24
89.45.164.0/24 maxlen: 24
89.39.111.0/24 maxlen: 24
89.46.2.0/23 maxlen: 23
89.46.2.0/24 maxlen: 24
89.46.4.0/24 maxlen: 24
89.46.3.0/24 maxlen: 24
89.46.0.0/23 maxlen: 23
195.28.2.0/23 maxlen: 23
89.34.224.0/21 maxlen: 21
89.34.224.0/22 maxlen: 22
89.34.228.0/23 maxlen: 23
89.34.230.0/23 maxlen: 23
93.119.104.0/22 maxlen: 22
93.119.104.0/24 maxlen: 24
93.119.105.0/24 maxlen: 24
93.119.106.0/24 maxlen: 24
93.119.107.0/24 maxlen: 24
89.47.96.0/24 maxlen: 24
89.47.96.0/20 maxlen: 20
89.47.97.0/24 maxlen: 24
89.47.98.0/24 maxlen: 24
89.47.99.0/24 maxlen: 24
89.47.101.0/24 maxlen: 24
93.114.194.0/24 maxlen: 24
89.47.100.0/24 maxlen: 24
89.47.103.0/24 maxlen: 24
89.47.102.0/24 maxlen: 24
89.47.104.0/24 maxlen: 24
89.47.105.0/24 maxlen: 24
89.47.106.0/24 maxlen: 24
89.47.108.0/24 maxlen: 24
89.47.107.0/24 maxlen: 24
89.47.110.0/24 maxlen: 24
89.47.109.0/24 maxlen: 24
89.47.111.0/24 maxlen: 24
89.47.112.0/20 maxlen: 20
89.47.113.0/24 maxlen: 24
89.47.115.0/24 maxlen: 24
89.47.114.0/24 maxlen: 24
89.47.118.0/24 maxlen: 24
89.47.119.0/24 maxlen: 24
89.37.196.0/23 maxlen: 23
89.34.27.0/24 maxlen: 24
2001:4d18::/32 maxlen: 32
2001:4d18::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 06 Jul 2023 06:06:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:94:4b:b7:52:74:f7:49:f9:f5:6c:0e:06:15:b3:f1:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jun 7 05:19:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8111aedd6290c97c87d3a9c0574a6d6115cb0542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e6:21:74:93:be:7d:3b:1c:3c:af:96:f0:1e:
72:66:a1:7f:2a:0e:7b:08:71:a1:23:79:5f:07:69:
81:7c:36:1f:e3:45:2f:af:5a:d6:6f:f8:9e:90:70:
f6:96:3a:96:d0:c7:b2:4e:9a:74:50:51:eb:f9:f3:
f9:3b:0a:6d:d8:7e:f2:31:b7:63:10:56:fb:f6:3d:
32:aa:0e:0e:cc:be:1c:69:91:ea:ba:b8:52:f2:10:
39:bb:6a:b1:8f:11:d0:be:81:f7:6a:c7:05:fa:c2:
85:92:7d:c8:a3:12:1f:27:9d:85:fb:79:bc:b1:96:
dc:70:15:e4:2c:77:59:4f:d0:3d:3c:ca:31:c3:bd:
3c:de:44:3f:f1:ea:f5:99:8c:da:74:db:35:9f:c2:
23:8a:d2:cd:4a:b4:d8:39:e9:a7:a8:4f:a1:53:e1:
3c:07:d7:f3:59:c9:7e:17:1e:1a:e7:c8:32:e4:96:
d8:41:4e:75:cb:2a:bb:7e:3a:c1:ee:7c:b3:f1:6f:
78:f8:a7:18:b5:9c:a6:61:a4:e8:55:54:b8:8b:78:
7c:01:38:f2:6a:7c:24:0f:15:15:19:52:a1:bc:48:
1c:fb:30:91:e8:0b:be:14:04:2f:98:b2:d7:5c:1b:
d3:f8:ed:fc:81:a6:d3:be:de:33:df:5e:21:f9:d3:
a5:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:11:AE:DD:62:90:C9:7C:87:D3:A9:C0:57:4A:6D:61:15:CB:05:42
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/gRGu3WKQyXyH06nAV0ptYRXLBUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.33.12.0/23
89.34.27.0/24
89.34.224.0/21
89.35.158.0/24
89.37.196.0/23
89.39.111.0/24
89.40.67.0/24
89.42.80.0/20
89.43.140.0/22
89.45.164.0/24
89.46.0.0-89.46.4.255
89.47.96.0/19
93.113.176.0/21
93.113.204.0/24
93.114.79.0/24
93.114.194.0/24
93.119.104.0/22
193.19.192.0/22
195.28.2.0/23
IPv6:
2001:4d18::/32
Signature Algorithm: sha256WithRSAEncryption
73:a4:65:d9:70:b0:d5:da:d7:5e:31:3d:47:ee:37:42:bf:9d:
fc:6b:78:a5:22:1f:e9:53:49:07:18:b2:e7:80:5a:c9:66:6c:
ee:80:da:67:3b:08:56:34:61:90:30:3d:d6:1a:9f:b4:94:6c:
a3:d9:92:d1:b4:f1:d2:60:6d:ed:4d:bf:33:6d:f6:e1:75:c2:
72:ab:11:02:21:8f:b0:03:37:94:be:75:82:7f:d1:2c:b1:ec:
ca:8f:b8:bf:3e:8b:90:e3:d5:6f:76:63:fc:31:29:c3:a8:0d:
1f:47:02:70:f3:45:c5:12:ae:e3:f4:02:6b:05:bd:8f:cb:44:
bd:99:ae:9b:cd:8c:b2:fe:f4:2a:5a:e8:e3:ff:9f:e5:c9:e5:
92:39:9d:85:03:84:6a:17:c5:fc:0c:38:d5:6c:6d:a4:b7:6c:
17:f4:ea:a7:ae:34:a0:52:94:16:ec:6a:4f:cc:45:c8:4f:40:
10:ea:bb:ca:47:6f:00:07:9b:96:62:65:13:45:dc:47:e1:5d:
57:86:b0:1a:41:eb:db:20:61:c3:ac:99:1c:58:af:ef:90:0f:
d4:4a:db:c1:2e:63:32:04:02:8a:40:a4:c5:df:b9:0d:75:7d:
bc:3e:8e:93:74:5f:ef:8f:34:36:d9:36:01:6b:21:10:8c:fe:
c1:d9:24:1c
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgISAYiUS7dSdPdJ+fVsDgYVs/EVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxZDQ2ZTBlM2U4Y2FhYWVkNGE1MjliZDdkNzMwOGJkMWVm
MDFjMWQwHhcNMjMwNjA3MDUxOTMwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MTExYWVkZDYyOTBjOTdjODdkM2E5YzA1NzRhNmQ2MTE1Y2IwNTQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq+YhdJO+fTscPK+W8B5yZqF/Kg57
CHGhI3lfB2mBfDYf40Uvr1rWb/iekHD2ljqW0MeyTpp0UFHr+fP5Owpt2H7yMbdj
EFb79j0yqg4OzL4caZHqurhS8hA5u2qxjxHQvoH3ascF+sKFkn3IoxIfJ52F+3m8
sZbccBXkLHdZT9A9PMoxw7083kQ/8er1mYzadNs1n8IjitLNSrTYOemnqE+hU+E8
B9fzWcl+Fx4a58gy5JbYQU51yyq7fjrB7nyz8W94+KcYtZymYaToVVS4i3h8ATjy
anwkDxUVGVKhvEgc+zCR6Au+FAQvmLLXXBvT+O38gabTvt4z314h+dOlAQIDAQAB
o4ICjjCCAoowHQYDVR0OBBYEFIERrt1ikMl8h9OpwFdKbWEVywVCMB8GA1UdIwQY
MBaAFPHUbg4+jKqu1KUpvX1zCL0e8BwdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMt
YjQyZjIzZDgyOGMzLzEvZ1JHdTNXS1F5WHlIMDZuQVYwcHRZUlhMQlVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMtYjQyZjIzZDgyOGMz
LzEvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGjBggrBgEFBQcBBwEB/wSBkzCBkDB/BAIAATB5AwQBWSEM
AwQAWSIbAwQDWSLgAwQAWSOeAwQBWSXEAwQAWSdvAwQAWShDAwQEWSpQAwQCWSuM
AwQAWS2kMAsDAwFZLgMEAFkuBAMEBVkvYAMEA11xsAMEAF1xzAMEAF1yTwMEAF1y
wgMEAl13aAMEAsETwAMEAcMcAjANBAIAAjAHAwUAIAFNGDANBgkqhkiG9w0BAQsF
AAOCAQEAc6Rl2XCw1drXXjE9R+43Qr+d/Gt4pSIf6VNJBxiy54BayWZs7oDaZzsI
VjRhkDA91hqftJRso9mS0bTx0mBt7U2/M2324XXCcqsRAiGPsAM3lL51gn/RLLHs
yo+4vz6LkOPVb3Zj/DEpw6gNH0cCcPNFxRKu4/QCawW9j8tEvZmum82Msv70Klro
4/+f5cnlkjmdhQOEahfF/Aw41WxtpLdsF/Tqp640oFKUFuxqT8xFyE9AEOq7ykdv
AAeblmJlE0XcR+FdV4awGkHr2yBhw6yZHFiv75AP1ErbwS5jMgQCikCkxd+5DXV9
vD6Ok3Rf7480Ntk2AWshEIz+wdkkHA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:50 2024 by rpki-client on console-ams.rpki-client.org