Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/3Ikr4srFDA_rTefpOBKfVF6pTyU.roa
File: 3Ikr4srFDA_rTefpOBKfVF6pTyU.roa (raw, json)
Hash identifier: qz2B7dpQ5FWyo8E1oVy/pjK0Qq8Y11TyC+W2CyhezxA=
Subject key identifier: DC:89:2B:E2:CA:C5:0C:0F:EB:4D:E7:E9:38:12:9F:54:5E:A9:4F:25
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0188E7F9A163536035559AF3F32BD0476DB7
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/3Ikr4srFDA_rTefpOBKfVF6pTyU.roa
Signing time: Fri 23 Jun 2023 11:17:56 +0000
ROA not before: Fri 23 Jun 2023 11:17:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48146
IP address blocks: 92.118.248.0/22 maxlen: 24
185.148.52.0/22 maxlen: 24
151.237.131.0/24 maxlen: 24
185.240.22.0/24 maxlen: 24
185.240.20.0/23 maxlen: 24
185.240.23.0/24 maxlen: 24
185.255.72.0/22 maxlen: 24
45.86.224.0/22 maxlen: 24
81.22.232.0/22 maxlen: 24
194.36.104.0/22 maxlen: 24
185.209.8.0/22 maxlen: 24
194.147.144.0/22 maxlen: 24
45.89.40.0/22 maxlen: 24
5.182.80.0/22 maxlen: 24
45.147.204.0/22 maxlen: 24
45.14.208.0/22 maxlen: 24
185.198.108.0/22 maxlen: 24
45.136.32.0/22 maxlen: 24
193.228.194.0/23 maxlen: 24
185.210.60.0/22 maxlen: 24
151.237.58.0/24 maxlen: 24
193.228.204.0/23 maxlen: 24
185.210.72.0/22 maxlen: 24
151.237.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 20 Oct 2023 10:07:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e7:f9:a1:63:53:60:35:55:9a:f3:f3:2b:d0:47:6d:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jun 23 11:17:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc892be2cac50c0feb4de7e938129f545ea94f25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:4c:b0:71:8e:0f:c8:db:ad:25:4b:d3:5d:8d:
72:dc:4b:ae:5b:f9:e1:02:f1:f4:22:30:10:7d:51:
48:63:f5:66:9a:30:b1:7b:0d:04:f4:b2:15:33:ac:
cb:ee:ad:0f:9e:1b:c6:02:79:32:96:8e:5f:2a:f8:
7d:82:03:b3:95:7c:05:a5:b5:77:e6:28:72:a7:8b:
6b:73:16:65:b6:4c:66:1f:41:f6:95:d8:7b:49:05:
90:72:e8:31:bf:32:a9:17:5c:73:3a:57:b2:26:c5:
20:26:88:77:db:df:65:a4:71:0f:71:51:47:73:d2:
6c:55:41:aa:89:ee:00:d9:49:b7:d8:a5:9a:4b:ab:
80:a4:5f:cd:87:61:11:45:8d:2a:88:37:a2:3b:9a:
f5:94:be:59:3f:34:31:7a:ef:20:03:9b:50:79:3d:
4a:d3:ee:00:b5:7c:06:aa:c3:4f:b0:e4:a8:48:6f:
15:be:6a:a0:f2:54:67:7e:f3:d8:f2:c9:6e:cb:f6:
13:a2:67:97:ef:c7:98:70:d2:66:65:47:67:5d:e7:
6f:0a:29:2c:1f:8e:7d:56:9f:b9:47:e6:68:9c:87:
5a:60:b8:79:ce:dc:1c:71:a0:34:c6:ef:dd:30:3a:
99:5d:2c:4a:5e:96:f8:96:4f:71:d5:46:01:f8:b2:
ee:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:89:2B:E2:CA:C5:0C:0F:EB:4D:E7:E9:38:12:9F:54:5E:A9:4F:25
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/3Ikr4srFDA_rTefpOBKfVF6pTyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.80.0/22
45.14.208.0/22
45.86.224.0/22
45.89.40.0/22
45.136.32.0/22
45.147.204.0/22
81.22.232.0/22
92.118.248.0/22
151.237.58.0/23
151.237.131.0/24
185.148.52.0/22
185.198.108.0/22
185.209.8.0/22
185.210.60.0/22
185.210.72.0/22
185.240.20.0/22
185.255.72.0/22
193.228.194.0/23
193.228.204.0/23
194.36.104.0/22
194.147.144.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:6b:9c:77:e7:c8:c5:55:92:5f:2c:5c:c4:41:fe:44:14:db:
e1:e8:41:44:b6:13:76:68:92:4e:6c:77:17:fb:35:db:b1:43:
02:16:42:56:77:36:b7:f8:cc:c3:02:69:5f:be:0e:17:02:f5:
6e:c8:3c:ee:03:bf:46:6a:d3:09:90:ed:fa:3f:1c:df:8b:de:
5e:a3:3a:c8:41:73:f2:5e:eb:d4:e3:a8:4b:15:c1:2c:4b:f3:
89:6e:c3:89:c9:f1:a3:e9:85:3a:bc:e9:f1:0b:24:d7:1e:cd:
a7:4e:8e:16:0e:b1:25:6c:f1:65:f3:86:7e:b7:77:2c:f4:5e:
ed:00:a0:37:e1:a1:71:b1:d9:26:c4:28:ba:5c:e3:d0:60:c5:
5d:66:12:1e:0d:a9:3f:81:e4:58:d7:4f:7e:9a:a6:3a:1d:4c:
84:47:fa:04:1e:3a:6f:c1:2d:33:65:48:d0:e0:bc:91:5f:6b:
af:a6:68:c0:0e:f3:d1:fa:47:f0:a0:4d:44:e6:32:be:d3:42:
f5:0c:1a:5d:01:82:ef:bf:2b:df:48:3b:92:0b:0a:0e:a1:26:
7f:ee:52:7b:38:93:a0:61:1d:94:76:1a:90:d7:ee:eb:23:db:
51:e2:12:25:95:dd:f4:14:6c:c8:b9:91:dc:3e:ee:bd:34:d0:
69:65:33:da
-----BEGIN CERTIFICATE-----
MIIFeTCCBGGgAwIBAgISAYjn+aFjU2A1VZrz8yvQR223MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0NzVmYjA5MzRjZjZhNThkY2NlZjExMDg3NWRiZTVlM2U4
YjZiNzUwHhcNMjMwNjIzMTExNzU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYzg5MmJlMmNhYzUwYzBmZWI0ZGU3ZTkzODEyOWY1NDVlYTk0ZjI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhEywcY4PyNutJUvTXY1y3EuuW/nh
AvH0IjAQfVFIY/VmmjCxew0E9LIVM6zL7q0PnhvGAnkylo5fKvh9ggOzlXwFpbV3
5ihyp4trcxZltkxmH0H2ldh7SQWQcugxvzKpF1xzOleyJsUgJoh3299lpHEPcVFH
c9JsVUGqie4A2Um32KWaS6uApF/Nh2ERRY0qiDeiO5r1lL5ZPzQxeu8gA5tQeT1K
0+4AtXwGqsNPsOSoSG8Vvmqg8lRnfvPY8sluy/YTomeX78eYcNJmZUdnXedvCiks
H459Vp+5R+ZonIdaYLh5ztwccaA0xu/dMDqZXSxKXpb4lk9x1UYB+LLu7QIDAQAB
o4IChTCCAoEwHQYDVR0OBBYEFNyJK+LKxQwP603n6TgSn1ReqU8lMB8GA1UdIwQY
MBaAFNR1+wk0z2pY3M7xEIddvl4+i2t1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYt
Yzc5MTRhYjY0MjczLzEvM0lrcjRzckZEQV9yVGVmcE9CS2ZWRjZwVHlVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYtYzc5MTRhYjY0Mjcz
LzEvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGaBggrBgEFBQcBBwEB/wSBijCBhzCBhAQCAAEwfgMEAgW2
UAMEAi0O0AMEAi1W4AMEAi1ZKAMEAi2IIAMEAi2TzAMEAlEW6AMEAlx2+AMEAZft
OgMEAJftgwMEArmUNAMEArnGbAMEArnRCAMEArnSPAMEArnSSAMEArnwFAMEArn/
SAMEAcHkwgMEAcHkzAMEAsIkaAMEAsKTkDANBgkqhkiG9w0BAQsFAAOCAQEAsmuc
d+fIxVWSXyxcxEH+RBTb4ehBRLYTdmiSTmx3F/s127FDAhZCVnc2t/jMwwJpX74O
FwL1bsg87gO/RmrTCZDt+j8c34veXqM6yEFz8l7r1OOoSxXBLEvziW7Dicnxo+mF
Orzp8Qsk1x7Np06OFg6xJWzxZfOGfrd3LPRe7QCgN+GhcbHZJsQoulzj0GDFXWYS
Hg2pP4HkWNdPfpqmOh1MhEf6BB46b8EtM2VI0OC8kV9rr6ZowA7z0fpH8KBNROYy
vtNC9QwaXQGC778r30g7kgsKDqEmf+5SeziToGEdlHYakNfu6yPbUeISJZXd9BRs
yLmR3D7uvTTQaWUz2g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:50 2024 by rpki-client on console-ams.rpki-client.org