Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/rQ3g4qI6ALFsOHUTyeKtOj9hGgY.roa
File: rQ3g4qI6ALFsOHUTyeKtOj9hGgY.roa (raw, json)
Hash identifier: JPywHYHs7j0qqkehrrFrEbRWdjr3FqQQ0JAH9fh+sgI=
Subject key identifier: AD:0D:E0:E2:A2:3A:00:B1:6C:38:75:13:C9:E2:AD:3A:3F:61:1A:06
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 018BD5224E18430BC183E4465BE60ABF39D0
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/rQ3g4qI6ALFsOHUTyeKtOj9hGgY.roa
Signing time: Wed 15 Nov 2023 22:37:57 +0000
ROA not before: Wed 15 Nov 2023 22:37:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136258
IP address blocks: 185.213.23.0/24 maxlen: 24
109.104.152.0/24 maxlen: 24
109.104.155.0/24 maxlen: 24
109.104.153.0/24 maxlen: 24
147.78.3.0/24 maxlen: 24
147.78.0.0/24 maxlen: 24
147.78.1.0/24 maxlen: 24
185.126.239.0/24 maxlen: 24
2a11:840:18::/48 maxlen: 48
2a11:840:13::/48 maxlen: 48
2a11:840:33::/48 maxlen: 48
2a11:840:11::/48 maxlen: 48
2a11:840:7::/48 maxlen: 48
2a11:840:47::/48 maxlen: 48
2a11:840:10::/48 maxlen: 48
2a11:840:24::/48 maxlen: 48
2a11:840:12::/48 maxlen: 48
2a11:840:8::/48 maxlen: 48
2a11:840:26::/48 maxlen: 48
2a11:840:6::/48 maxlen: 48
2a11:840:41::/48 maxlen: 48
2a11:840:17::/48 maxlen: 48
2a11:840:25::/48 maxlen: 48
2a11:840:40::/48 maxlen: 48
2a11:840:19::/48 maxlen: 48
2a11:840:54::/48 maxlen: 48
2a11:840:14::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d5:22:4e:18:43:0b:c1:83:e4:46:5b:e6:0a:bf:39:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: Nov 15 22:37:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad0de0e2a23a00b16c387513c9e2ad3a3f611a06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f9:08:67:0b:0e:ff:68:4b:4f:70:2a:a7:c6:
46:90:55:17:8a:12:fc:c5:3c:b5:80:94:c4:33:02:
d1:a2:c3:00:c1:3e:15:e2:12:b7:61:c9:82:3b:38:
09:b1:32:1c:a9:76:1c:e9:34:59:23:cf:fc:ab:4e:
c9:87:56:a4:36:b8:9c:b6:d4:2d:a9:28:a6:41:0a:
56:49:0f:36:bd:18:26:76:97:67:16:42:80:07:f3:
25:e5:b2:28:10:41:e2:03:a2:78:cd:d1:25:9f:72:
91:43:de:c9:db:fc:41:17:9a:de:88:fd:fc:84:04:
3b:36:3a:18:1a:24:aa:a2:77:7f:9d:ca:d3:4b:f4:
f1:6e:94:ee:19:3e:22:41:d8:16:36:0d:d1:ec:1e:
5f:84:8c:c1:c6:13:a6:2b:33:b5:97:12:33:02:69:
61:a4:c2:55:0a:cc:93:ab:97:c4:60:57:51:f6:66:
0e:dc:7e:01:82:47:a7:5e:ca:e6:0e:9c:71:14:31:
2f:67:6a:60:55:d1:99:f2:99:24:00:e7:67:63:d6:
f2:29:f7:1a:32:7c:82:1d:47:d9:e3:0f:75:47:20:
82:84:9f:09:b7:51:50:83:25:20:10:12:68:10:c4:
06:ed:8e:3e:ee:dd:3b:0d:0b:7f:aa:30:90:21:84:
3a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:0D:E0:E2:A2:3A:00:B1:6C:38:75:13:C9:E2:AD:3A:3F:61:1A:06
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/rQ3g4qI6ALFsOHUTyeKtOj9hGgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.104.152.0/23
109.104.155.0/24
147.78.0.0/23
147.78.3.0/24
185.126.239.0/24
185.213.23.0/24
IPv6:
2a11:840:6::-2a11:840:8:ffff:ffff:ffff:ffff:ffff
2a11:840:10::-2a11:840:14:ffff:ffff:ffff:ffff:ffff
2a11:840:17::-2a11:840:19:ffff:ffff:ffff:ffff:ffff
2a11:840:24::-2a11:840:26:ffff:ffff:ffff:ffff:ffff
2a11:840:33::/48
2a11:840:40::/47
2a11:840:47::/48
2a11:840:54::/48
Signature Algorithm: sha256WithRSAEncryption
5a:5a:cd:ce:5a:02:bb:30:a2:35:64:ef:59:72:7c:72:0d:0d:
14:3f:ce:a8:12:0a:d1:56:0e:c7:24:20:90:3e:ba:7f:da:38:
a5:0e:79:be:8e:f4:ed:e4:e8:fc:01:b1:94:a7:1c:fc:24:1b:
3b:e9:0f:03:43:6e:03:3c:d2:a5:1e:b4:f6:77:62:e4:a1:c5:
be:02:f5:b2:fd:85:f6:28:22:b8:56:ac:69:ac:67:ed:30:b5:
36:f4:b1:1a:66:56:3f:37:db:fb:f4:d3:d1:d6:95:e9:07:d3:
2e:2b:98:e2:81:b6:a0:a5:e6:7c:ce:c7:94:e5:6a:36:ad:31:
1c:25:68:09:95:de:fe:0a:18:e8:53:ba:22:ad:92:32:e0:75:
69:29:2d:45:00:ff:31:6e:46:6a:22:a0:6d:1c:8e:66:8b:3d:
ee:0d:f8:8b:3c:8a:76:58:56:a9:33:fd:bb:d4:73:0f:5c:1d:
08:d8:46:62:59:97:5c:14:e6:d0:73:15:db:3d:83:ee:6c:ce:
e0:07:66:fd:53:6f:8e:62:24:d8:ad:d5:78:fa:fa:a8:a2:0b:
2d:7e:c5:c7:5b:de:04:30:71:09:0c:a3:12:48:c8:60:e8:51:
24:8a:57:85:f9:ea:b2:2d:a7:df:46:87:65:34:a8:14:f0:56:
09:b2:c9:df
-----BEGIN CERTIFICATE-----
MIIFmjCCBIKgAwIBAgISAYvVIk4YQwvBg+RGW+YKvznQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5MDU2ZmE5NjI1YjZjODc0MDQyNjdjNmRjMjE5OTI0YWMx
NjAwNDUwHhcNMjMxMTE1MjIzNzU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZDBkZTBlMmEyM2EwMGIxNmMzODc1MTNjOWUyYWQzYTNmNjExYTA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk/kIZwsO/2hLT3Aqp8ZGkFUXihL8
xTy1gJTEMwLRosMAwT4V4hK3YcmCOzgJsTIcqXYc6TRZI8/8q07Jh1akNricttQt
qSimQQpWSQ82vRgmdpdnFkKAB/Ml5bIoEEHiA6J4zdEln3KRQ97J2/xBF5reiP38
hAQ7NjoYGiSqond/ncrTS/TxbpTuGT4iQdgWNg3R7B5fhIzBxhOmKzO1lxIzAmlh
pMJVCsyTq5fEYFdR9mYO3H4BgkenXsrmDpxxFDEvZ2pgVdGZ8pkkAOdnY9byKfca
MnyCHUfZ4w91RyCChJ8Jt1FQgyUgEBJoEMQG7Y4+7t07DQt/qjCQIYQ6GwIDAQAB
o4ICpjCCAqIwHQYDVR0OBBYEFK0N4OKiOgCxbDh1E8nirTo/YRoGMB8GA1UdIwQY
MBaAFIkFb6liW2yHQEJnxtwhmSSsFgBFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVFWdnFXSmJiSWRBUW1mRzNDR1pKS3dXQUVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi85OWFlMmYtMzljYy00M2YzLTk0MWQt
NTE5MjAzNzMzNTNjLzEvclEzZzRxSTZBTEZzT0hVVHllS3RPajloR2dZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi85OWFlMmYtMzljYy00M2YzLTk0MWQtNTE5MjAzNzMzNTNj
LzEvaVFWdnFXSmJiSWRBUW1mRzNDR1pKS3dXQUVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG7BggrBgEFBQcBBwEB/wSBqzCBqDAqBAIAATAkAwQBbWiY
AwQAbWibAwQBk04AAwQAk04DAwQAuX7vAwQAudUXMHoEAgACMHQwEgMHASoRCEAA
BgMHACoRCEAACDASAwcEKhEIQAAQAwcAKhEIQAAUMBIDBwAqEQhAABcDBwEqEQhA
ABgwEgMHAioRCEAAJAMHACoRCEAAJgMHACoRCEAAMwMHASoRCEAAQAMHACoRCEAA
RwMHACoRCEAAVDANBgkqhkiG9w0BAQsFAAOCAQEAWlrNzloCuzCiNWTvWXJ8cg0N
FD/OqBIK0VYOxyQgkD66f9o4pQ55vo707eTo/AGxlKcc/CQbO+kPA0NuAzzSpR60
9ndi5KHFvgL1sv2F9igiuFasaaxn7TC1NvSxGmZWPzfb+/TT0daV6QfTLiuY4oG2
oKXmfM7HlOVqNq0xHCVoCZXe/goY6FO6Iq2SMuB1aSktRQD/MW5GaiKgbRyOZos9
7g34izyKdlhWqTP9u9RzD1wdCNhGYlmXXBTm0HMV2z2D7mzO4Adm/VNvjmIk2K3V
ePr6qKILLX7Fx1veBDBxCQyjEkjIYOhRJIpXhfnqsi2n30aHZTSoFPBWCbLJ3w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:51 2024 by rpki-client on console-ams.rpki-client.org