Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/uOeYXG1FbEo6Ck-b1IfROB_kaAk.roa
File: uOeYXG1FbEo6Ck-b1IfROB_kaAk.roa (raw, json)
Hash identifier: e87QG6aReHn+196Ialv+5Kpz6w5ocQTAA8UUCob4veQ=
Subject key identifier: B8:E7:98:5C:6D:45:6C:4A:3A:0A:4F:9B:D4:87:D1:38:1F:E4:68:09
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018978D49C4FB3FCDAE1BA3FDF42783DA4FA
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/uOeYXG1FbEo6Ck-b1IfROB_kaAk.roa
Signing time: Fri 21 Jul 2023 14:22:26 +0000
ROA not before: Fri 21 Jul 2023 14:22:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39543
IP address blocks: 89.33.13.0/24 maxlen: 24
89.33.12.0/23 maxlen: 23
89.33.12.0/24 maxlen: 24
193.19.192.0/24 maxlen: 24
193.19.192.0/22 maxlen: 24
93.113.176.0/21 maxlen: 21
93.113.181.0/24 maxlen: 24
93.113.204.0/24 maxlen: 24
93.114.79.0/24 maxlen: 24
89.40.67.0/24 maxlen: 24
89.43.140.0/22 maxlen: 22
89.35.158.0/24 maxlen: 24
89.42.90.0/24 maxlen: 24
89.42.91.0/24 maxlen: 24
89.42.94.0/24 maxlen: 24
89.42.95.0/24 maxlen: 24
89.42.93.0/24 maxlen: 24
89.45.164.0/24 maxlen: 24
89.39.111.0/24 maxlen: 24
89.46.2.0/23 maxlen: 23
89.46.2.0/24 maxlen: 24
89.46.4.0/24 maxlen: 24
89.46.3.0/24 maxlen: 24
195.28.2.0/23 maxlen: 23
89.34.224.0/21 maxlen: 21
89.34.224.0/22 maxlen: 22
89.34.228.0/23 maxlen: 23
89.34.230.0/23 maxlen: 23
89.47.96.0/24 maxlen: 24
89.47.96.0/20 maxlen: 20
89.47.97.0/24 maxlen: 24
89.47.98.0/24 maxlen: 24
89.47.99.0/24 maxlen: 24
89.47.101.0/24 maxlen: 24
93.114.194.0/24 maxlen: 24
89.47.100.0/24 maxlen: 24
89.47.103.0/24 maxlen: 24
89.47.102.0/24 maxlen: 24
89.47.104.0/24 maxlen: 24
89.47.105.0/24 maxlen: 24
89.47.106.0/24 maxlen: 24
89.47.108.0/24 maxlen: 24
89.47.107.0/24 maxlen: 24
89.47.110.0/24 maxlen: 24
89.47.109.0/24 maxlen: 24
89.47.111.0/24 maxlen: 24
89.47.112.0/20 maxlen: 20
89.47.113.0/24 maxlen: 24
89.47.115.0/24 maxlen: 24
89.47.114.0/24 maxlen: 24
89.47.118.0/24 maxlen: 24
89.47.119.0/24 maxlen: 24
89.37.196.0/23 maxlen: 23
89.34.27.0/24 maxlen: 24
2001:4d18::/32 maxlen: 32
2001:4d18::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 22 Jul 2023 07:56:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:78:d4:9c:4f:b3:fc:da:e1:ba:3f:df:42:78:3d:a4:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Jul 21 14:22:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8e7985c6d456c4a3a0a4f9bd487d1381fe46809
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:70:37:0f:0a:05:e2:be:8d:d0:4b:a8:2d:68:
b5:1b:91:89:0b:78:a0:3a:64:06:1b:ab:a1:d8:25:
14:36:3c:c3:af:51:45:2c:bc:5f:cd:da:98:d7:7a:
20:0f:ea:e8:99:99:ee:2e:c7:79:46:7e:32:59:b5:
69:9a:4e:63:97:0e:f9:ee:ac:e9:09:a5:15:6e:fd:
57:9a:04:f5:7b:f5:8b:ea:2a:a3:17:3a:11:40:71:
62:cb:b2:f7:01:d8:ab:1d:22:67:36:f6:35:2b:32:
02:a1:32:b9:af:b0:3a:64:3b:cb:d2:24:e7:60:34:
1d:50:6d:7d:82:39:ba:c2:dc:fa:7b:9d:f6:0c:87:
4e:ac:c7:5b:b5:23:fe:e1:ff:85:a3:f5:6b:93:2e:
4d:2f:df:cb:36:22:d5:cc:c6:1b:8c:a6:bc:49:82:
5c:a1:a5:85:7c:3b:63:3d:55:c2:1e:c4:2a:39:a0:
4b:db:6d:e5:f3:01:16:a6:96:fc:ee:83:e3:cc:65:
0b:85:73:02:02:2f:05:9a:76:f7:04:1b:2d:eb:7c:
17:63:70:ac:7c:d1:5a:ee:6e:84:3e:36:27:11:0a:
b4:4a:a7:c4:98:97:4b:0b:ea:f7:70:4e:a3:44:71:
76:46:92:20:02:71:4f:69:f9:dd:0d:c1:55:1d:16:
48:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:E7:98:5C:6D:45:6C:4A:3A:0A:4F:9B:D4:87:D1:38:1F:E4:68:09
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/uOeYXG1FbEo6Ck-b1IfROB_kaAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.33.12.0/23
89.34.27.0/24
89.34.224.0/21
89.35.158.0/24
89.37.196.0/23
89.39.111.0/24
89.40.67.0/24
89.42.90.0/23
89.42.93.0-89.42.95.255
89.43.140.0/22
89.45.164.0/24
89.46.2.0-89.46.4.255
89.47.96.0/19
93.113.176.0/21
93.113.204.0/24
93.114.79.0/24
93.114.194.0/24
193.19.192.0/22
195.28.2.0/23
IPv6:
2001:4d18::/32
Signature Algorithm: sha256WithRSAEncryption
87:7e:39:04:2d:2e:94:22:14:61:64:da:f6:88:6a:05:c5:6c:
10:5f:95:bb:fb:85:36:0a:ca:64:0f:68:1a:12:8d:96:52:27:
bf:5d:80:e0:58:18:d9:43:b8:8d:4c:67:fc:18:8c:57:a9:c3:
97:a2:5c:db:0f:e9:24:fb:51:31:d6:a5:34:de:01:d2:fc:af:
04:a3:10:d9:8b:ed:01:55:d3:f1:86:3b:46:9f:c4:97:92:7f:
f5:0e:e4:87:7a:55:6a:ab:82:d3:87:ad:b5:70:54:4a:3b:49:
33:e8:34:d9:d2:05:5a:c9:be:12:d6:86:d7:0f:b5:0b:db:b7:
8e:c2:e0:b0:a5:75:28:da:01:66:da:f3:b7:c1:9b:21:1c:e6:
83:17:86:d5:f0:82:b7:64:c3:15:16:c6:30:f1:5b:f6:e6:b1:
6b:d3:d0:85:74:a5:2e:10:99:dc:a8:2d:6d:23:b4:af:5f:0a:
81:e7:e3:09:88:d2:af:99:5a:ac:3a:b2:e8:23:23:35:01:f8:
d6:df:93:e7:42:98:79:2a:62:d1:f5:40:86:02:0b:4e:e4:dd:
86:99:52:4e:21:1b:5a:77:60:4e:5c:46:3d:96:73:ac:bd:10:
39:4d:05:df:f9:ef:c9:87:e8:65:84:02:29:ad:55:50:cf:c7:
d1:49:e1:b6
-----BEGIN CERTIFICATE-----
MIIFjTCCBHWgAwIBAgISAYl41JxPs/za4bo/30J4PaT6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxZDQ2ZTBlM2U4Y2FhYWVkNGE1MjliZDdkNzMwOGJkMWVm
MDFjMWQwHhcNMjMwNzIxMTQyMjI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOGU3OTg1YzZkNDU2YzRhM2EwYTRmOWJkNDg3ZDEzODFmZTQ2ODA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApXA3DwoF4r6N0EuoLWi1G5GJC3ig
OmQGG6uh2CUUNjzDr1FFLLxfzdqY13ogD+romZnuLsd5Rn4yWbVpmk5jlw757qzp
CaUVbv1XmgT1e/WL6iqjFzoRQHFiy7L3AdirHSJnNvY1KzICoTK5r7A6ZDvL0iTn
YDQdUG19gjm6wtz6e532DIdOrMdbtSP+4f+Fo/Vrky5NL9/LNiLVzMYbjKa8SYJc
oaWFfDtjPVXCHsQqOaBL223l8wEWppb87oPjzGULhXMCAi8Fmnb3BBst63wXY3Cs
fNFa7m6EPjYnEQq0SqfEmJdLC+r3cE6jRHF2RpIgAnFPafndDcFVHRZIkQIDAQAB
o4ICmTCCApUwHQYDVR0OBBYEFLjnmFxtRWxKOgpPm9SH0Tgf5GgJMB8GA1UdIwQY
MBaAFPHUbg4+jKqu1KUpvX1zCL0e8BwdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMt
YjQyZjIzZDgyOGMzLzEvdU9lWVhHMUZiRW82Q2stYjFJZlJPQl9rYUFrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMtYjQyZjIzZDgyOGMz
LzEvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGuBggrBgEFBQcBBwEB/wSBnjCBmzCBiQQCAAEwgYIDBAFZ
IQwDBABZIhsDBANZIuADBABZI54DBAFZJcQDBABZJ28DBABZKEMDBAFZKlowDAME
AFkqXQMEBVkqQAMEAlkrjAMEAFktpDAMAwQBWS4CAwQAWS4EAwQFWS9gAwQDXXGw
AwQAXXHMAwQAXXJPAwQAXXLCAwQCwRPAAwQBwxwCMA0EAgACMAcDBQAgAU0YMA0G
CSqGSIb3DQEBCwUAA4IBAQCHfjkELS6UIhRhZNr2iGoFxWwQX5W7+4U2CspkD2ga
Eo2WUie/XYDgWBjZQ7iNTGf8GIxXqcOXolzbD+kk+1Ex1qU03gHS/K8EoxDZi+0B
VdPxhjtGn8SXkn/1DuSHelVqq4LTh621cFRKO0kz6DTZ0gVayb4S1obXD7UL27eO
wuCwpXUo2gFm2vO3wZshHOaDF4bV8IK3ZMMVFsYw8Vv25rFr09CFdKUuEJncqC1t
I7SvXwqB5+MJiNKvmVqsOrLoIyM1AfjW35PnQph5KmLR9UCGAgtO5N2GmVJOIRta
d2BOXEY9lnOsvRA5TQXf+e/Jh+hlhAIprVVQz8fRSeG2
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:19 2024 by rpki-client on console-fra.rpki-client.org