Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/hmB0QoM1vbIbIxcq1f-IteJyqj4.roa
File: hmB0QoM1vbIbIxcq1f-IteJyqj4.roa (raw, json)
Hash identifier: HLS90F51kwdtUyF3GBd/YGWjkPxpEm94BtmJQlijV90=
Subject key identifier: 86:60:74:42:83:35:BD:B2:1B:23:17:2A:D5:FF:88:B5:E2:72:AA:3E
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 01894B41852A12815811FAD126564E4FCCCD
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/hmB0QoM1vbIbIxcq1f-IteJyqj4.roa
Signing time: Wed 12 Jul 2023 17:58:52 +0000
ROA not before: Wed 12 Jul 2023 17:58:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136258
IP address blocks: 185.213.23.0/24 maxlen: 24
109.104.152.0/24 maxlen: 24
109.104.155.0/24 maxlen: 24
109.104.153.0/24 maxlen: 24
147.78.3.0/24 maxlen: 24
147.78.0.0/24 maxlen: 24
147.78.1.0/24 maxlen: 24
185.126.239.0/24 maxlen: 24
2a11:840:12::/48 maxlen: 48
2a11:840:8::/48 maxlen: 48
2a11:840:18::/48 maxlen: 48
2a11:840:13::/48 maxlen: 48
2a11:840:6::/48 maxlen: 48
2a11:840:11::/48 maxlen: 48
2a11:840:41::/48 maxlen: 48
2a11:840:17::/48 maxlen: 48
2a11:840:47::/48 maxlen: 48
2a11:840:7::/48 maxlen: 48
2a11:840:25::/48 maxlen: 48
2a11:840:40::/48 maxlen: 48
2a11:840:10::/48 maxlen: 48
2a11:840:19::/48 maxlen: 48
2a11:840:14::/48 maxlen: 48
2a11:840:24::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 17 Jul 2023 23:35:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4b:41:85:2a:12:81:58:11:fa:d1:26:56:4e:4f:cc:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: Jul 12 17:58:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=866074428335bdb21b23172ad5ff88b5e272aa3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:70:90:ad:a6:be:49:0c:38:da:75:34:17:25:
c3:e9:c0:a4:8b:6d:0c:6e:35:9e:2b:40:00:c1:a4:
ab:e9:4b:8d:36:46:96:9a:d3:8f:79:c8:9c:b5:a9:
00:4d:39:52:b1:b1:a1:b7:26:30:bc:e9:fb:b5:9b:
99:b9:0f:fe:48:1e:a2:24:32:a6:f2:c0:17:f0:ae:
d0:e9:af:ea:9a:a6:1f:95:d6:1c:62:4c:fd:e8:ae:
b0:89:2b:c0:4a:f4:4c:45:d8:92:cb:66:ee:32:23:
d5:91:f5:23:87:8b:89:8e:a1:96:0e:b5:55:f5:ec:
1f:fb:df:bf:98:aa:7c:2e:6f:97:2d:9b:91:e2:31:
ce:b7:08:87:f2:df:93:cf:39:02:4a:dc:5f:a5:4c:
ad:4f:1f:86:21:b8:15:a7:af:45:ea:fc:59:0b:c5:
38:b3:f5:71:dc:e9:67:fc:26:54:d9:14:5d:96:7a:
e0:03:7d:d9:3d:1f:ca:8a:cb:99:46:fb:79:9c:eb:
ba:44:af:fa:b0:fb:cf:6f:5a:7a:0e:0f:be:b7:16:
48:02:b1:eb:17:a6:57:8c:95:93:96:05:5a:81:68:
90:4a:9f:49:8e:3c:54:6d:79:27:17:3b:4c:3c:9c:
39:33:60:54:ef:90:50:2e:d3:3d:82:4d:00:76:5b:
56:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:60:74:42:83:35:BD:B2:1B:23:17:2A:D5:FF:88:B5:E2:72:AA:3E
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/hmB0QoM1vbIbIxcq1f-IteJyqj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.104.152.0/23
109.104.155.0/24
147.78.0.0/23
147.78.3.0/24
185.126.239.0/24
185.213.23.0/24
IPv6:
2a11:840:6::-2a11:840:8:ffff:ffff:ffff:ffff:ffff
2a11:840:10::-2a11:840:14:ffff:ffff:ffff:ffff:ffff
2a11:840:17::-2a11:840:19:ffff:ffff:ffff:ffff:ffff
2a11:840:24::/47
2a11:840:40::/47
2a11:840:47::/48
Signature Algorithm: sha256WithRSAEncryption
54:f6:d7:25:16:f7:c0:92:af:66:d3:d7:37:d0:5a:99:9b:2c:
85:15:25:7b:8b:6d:50:1e:a8:da:37:0c:40:1d:cc:86:98:6d:
aa:80:01:29:0d:5d:48:9f:2f:42:6b:c2:10:ae:81:3d:b1:ac:
b6:6f:48:d1:bc:15:9f:51:75:f8:af:c5:73:5d:e2:74:04:ad:
46:bf:8e:b5:7b:c9:ff:a3:73:c0:b4:27:d3:c4:2e:a8:df:5f:
c4:bf:dd:3d:34:ef:cc:38:28:66:6a:40:e4:d0:b4:12:72:77:
6c:91:fd:ae:08:dc:a4:ed:8d:de:56:c3:52:fa:00:89:df:99:
ae:a7:fa:8d:d7:51:96:19:9e:a1:f1:d1:05:15:fc:d2:ba:2c:
5a:34:09:b6:cc:d6:f8:ef:45:7e:c9:e6:f8:7a:56:13:18:72:
c3:70:69:d2:80:9e:f8:c1:a2:99:c9:a9:87:11:2c:1c:55:9e:
e4:05:57:54:a6:ff:fb:87:c8:b9:f7:eb:2d:37:34:77:74:f1:
cd:b7:ec:24:ed:1c:88:55:bc:2b:61:97:c5:7e:dd:40:e5:dc:
68:b4:28:bb:a7:52:5b:5f:b8:f1:d9:1c:4f:db:37:69:45:bc:
87:c6:3f:6e:4d:af:5e:7a:1f:e6:33:d0:9f:a8:ce:1a:41:ab:
b1:17:ec:a6
-----BEGIN CERTIFICATE-----
MIIFfTCCBGWgAwIBAgISAYlLQYUqEoFYEfrRJlZOT8zNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5MDU2ZmE5NjI1YjZjODc0MDQyNjdjNmRjMjE5OTI0YWMx
NjAwNDUwHhcNMjMwNzEyMTc1ODUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NjYwNzQ0MjgzMzViZGIyMWIyMzE3MmFkNWZmODhiNWUyNzJhYTNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxnCQraa+SQw42nU0FyXD6cCki20M
bjWeK0AAwaSr6UuNNkaWmtOPecictakATTlSsbGhtyYwvOn7tZuZuQ/+SB6iJDKm
8sAX8K7Q6a/qmqYfldYcYkz96K6wiSvASvRMRdiSy2buMiPVkfUjh4uJjqGWDrVV
9ewf+9+/mKp8Lm+XLZuR4jHOtwiH8t+TzzkCStxfpUytTx+GIbgVp69F6vxZC8U4
s/Vx3Oln/CZU2RRdlnrgA33ZPR/KisuZRvt5nOu6RK/6sPvPb1p6Dg++txZIArHr
F6ZXjJWTlgVagWiQSp9JjjxUbXknFztMPJw5M2BU75BQLtM9gk0AdltWMwIDAQAB
o4ICiTCCAoUwHQYDVR0OBBYEFIZgdEKDNb2yGyMXKtX/iLXicqo+MB8GA1UdIwQY
MBaAFIkFb6liW2yHQEJnxtwhmSSsFgBFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVFWdnFXSmJiSWRBUW1mRzNDR1pKS3dXQUVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi85OWFlMmYtMzljYy00M2YzLTk0MWQt
NTE5MjAzNzMzNTNjLzEvaG1CMFFvTTF2YkliSXhjcTFmLUl0ZUp5cWo0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi85OWFlMmYtMzljYy00M2YzLTk0MWQtNTE5MjAzNzMzNTNj
LzEvaVFWdnFXSmJiSWRBUW1mRzNDR1pKS3dXQUVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGeBggrBgEFBQcBBwEB/wSBjjCBizAqBAIAATAkAwQBbWiY
AwQAbWibAwQBk04AAwQAk04DAwQAuX7vAwQAudUXMF0EAgACMFcwEgMHASoRCEAA
BgMHACoRCEAACDASAwcEKhEIQAAQAwcAKhEIQAAUMBIDBwAqEQhAABcDBwEqEQhA
ABgDBwEqEQhAACQDBwEqEQhAAEADBwAqEQhAAEcwDQYJKoZIhvcNAQELBQADggEB
AFT21yUW98CSr2bT1zfQWpmbLIUVJXuLbVAeqNo3DEAdzIaYbaqAASkNXUifL0Jr
whCugT2xrLZvSNG8FZ9RdfivxXNd4nQErUa/jrV7yf+jc8C0J9PELqjfX8S/3T00
78w4KGZqQOTQtBJyd2yR/a4I3KTtjd5Ww1L6AInfma6n+o3XUZYZnqHx0QUV/NK6
LFo0CbbM1vjvRX7J5vh6VhMYcsNwadKAnvjBopnJqYcRLBxVnuQFV1Sm//uHyLn3
6y03NHd08c237CTtHIhVvCthl8V+3UDl3Gi0KLunUltfuPHZHE/bN2lFvIfGP25N
r156H+Yz0J+ozhpBq7EX7KY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:20 2024 by rpki-client on console-fra.rpki-client.org