Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/RThcjaTFs-oQKzuh1MDdydvGdeo.roa
File: RThcjaTFs-oQKzuh1MDdydvGdeo.roa (raw, json)
Hash identifier: jeqgztmZwI8FqEHZp0/YFWx7AZb8DuoRCFLY9YYX/DU=
Subject key identifier: 45:38:5C:8D:A4:C5:B3:EA:10:2B:3B:A1:D4:C0:DD:C9:DB:C6:75:EA
Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Certificate serial: 01857315EF75BF4E42FC31D95EAB76138D22
Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/RThcjaTFs-oQKzuh1MDdydvGdeo.roa
Signing time: Mon 02 Jan 2023 15:24:55 +0000
ROA not before: Mon 02 Jan 2023 15:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8262
IP address blocks: 194.12.224.0/19 maxlen: 19
194.12.231.0/24 maxlen: 24
194.12.249.0/24 maxlen: 24
194.12.254.0/24 maxlen: 24
82.119.92.0/24 maxlen: 24
82.119.95.0/24 maxlen: 24
82.119.94.0/24 maxlen: 24
185.92.132.0/22 maxlen: 22
82.119.64.0/19 maxlen: 19
82.119.68.0/24 maxlen: 24
82.119.69.0/24 maxlen: 24
82.119.75.0/24 maxlen: 24
82.119.74.0/24 maxlen: 24
82.119.84.0/24 maxlen: 24
82.119.83.0/24 maxlen: 24
82.119.80.0/21 maxlen: 21
89.252.223.0/24 maxlen: 24
89.252.241.0/24 maxlen: 24
89.252.246.0/24 maxlen: 24
89.252.192.0/18 maxlen: 18
89.252.199.0/24 maxlen: 24
89.252.200.0/24 maxlen: 24
85.14.36.0/24 maxlen: 24
85.14.44.0/24 maxlen: 24
85.14.49.0/24 maxlen: 24
85.14.47.0/24 maxlen: 24
176.67.233.0/24 maxlen: 24
85.14.0.0/23 maxlen: 23
85.14.0.0/18 maxlen: 18
176.67.234.0/24 maxlen: 24
85.14.12.0/24 maxlen: 24
85.14.13.0/24 maxlen: 24
85.14.24.0/24 maxlen: 24
2001:1ae0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 03 Jan 2023 08:24:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:15:ef:75:bf:4e:42:fc:31:d9:5e:ab:76:13:8d:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Validity
Not Before: Jan 2 15:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=45385c8da4c5b3ea102b3ba1d4c0ddc9dbc675ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:af:d1:0e:54:fa:33:9a:ac:e8:95:29:c4:88:
34:2f:59:82:b9:24:d6:4a:a6:9e:84:04:12:af:f4:
77:93:2c:cc:45:7b:a3:f0:ed:2c:2c:32:35:1b:0c:
67:3a:3a:27:83:23:e3:f0:b0:62:fc:93:4e:a4:7e:
11:c2:23:c8:9a:7c:3e:7f:20:b6:25:f4:73:30:a3:
7d:30:0e:1c:0c:40:b1:92:cc:fc:c9:dc:94:a5:a8:
d6:56:38:fd:a5:a3:ab:be:68:c5:ac:94:ed:4c:ff:
98:22:5d:51:56:18:51:97:0f:40:98:fc:4e:6f:6e:
6b:ea:36:3c:a9:a5:15:48:9d:64:f8:9c:c0:e0:2c:
52:38:31:3b:1f:0f:09:47:56:10:17:19:18:ec:90:
1d:08:db:cb:c1:84:bf:1e:60:4d:1c:77:ee:0d:56:
1d:8b:c3:d5:35:84:76:e8:94:51:9c:21:1b:ca:77:
58:10:19:92:18:69:98:58:77:f5:3f:ce:e3:bf:b6:
2f:2a:87:7e:07:59:7b:67:2d:d1:40:6f:56:1f:6f:
3c:cd:a5:31:23:34:9a:4c:f1:c5:e0:d4:0e:77:92:
6e:49:80:97:7b:a6:9d:a7:2d:bb:79:bc:47:8e:a4:
8b:67:33:b3:53:53:16:3a:7f:79:79:17:14:56:7f:
83:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:38:5C:8D:A4:C5:B3:EA:10:2B:3B:A1:D4:C0:DD:C9:DB:C6:75:EA
X509v3 Authority Key Identifier:
keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/RThcjaTFs-oQKzuh1MDdydvGdeo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.119.64.0/19
85.14.0.0/18
89.252.192.0/18
176.67.233.0-176.67.234.255
185.92.132.0/22
194.12.224.0/19
IPv6:
2001:1ae0::/32
Signature Algorithm: sha256WithRSAEncryption
c8:f7:8f:e2:c0:ba:6a:5a:0f:a8:a3:de:f7:4d:15:ab:75:a8:
20:cf:58:f6:58:e7:eb:3e:98:12:ba:c4:36:d2:b9:15:de:95:
fb:d7:8c:b2:f6:ba:ac:c3:72:1c:c6:d7:07:a7:47:f5:1f:da:
3e:6a:8c:cb:2f:43:5c:00:88:79:0e:70:c4:01:da:45:82:a9:
e6:50:e0:cd:76:66:69:0c:95:fa:42:64:85:71:0e:1b:54:dc:
f1:76:29:fe:86:f7:60:89:1b:e3:f1:58:9c:dd:6b:b8:ef:2e:
07:77:79:66:20:f0:ed:00:31:9c:b9:4a:d9:53:e7:33:a0:d1:
9b:88:95:a4:a0:72:99:30:36:43:ea:d8:e3:df:7c:32:2c:ed:
b5:fd:23:6e:93:ca:d4:a6:fb:9d:16:ca:0d:9f:ef:85:2b:6b:
bd:5c:e4:57:ce:b6:f3:d1:4d:6f:8d:b0:2a:e9:12:74:bb:4b:
fe:fe:56:7c:ee:bd:37:05:01:7c:ca:a8:49:47:20:f3:e1:fd:
9e:50:1d:86:e4:9b:7a:6a:95:45:59:b8:dc:91:16:63:1f:77:
19:09:a9:46:f0:67:b9:0a:25:00:08:34:fc:54:b5:ad:49:9f:
45:0c:bc:57:e9:ec:c4:5f:c0:7c:f1:ec:a9:4e:b7:30:1b:0c:
93:d8:99:15
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgISAYVzFe91v05C/DHZXqt2E40iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxMDRhNDA4MjFjNDE3NmNjNDJlMjU1ZWY2YzE3Mjc0NzNj
M2YwMGEwHhcNMjMwMTAyMTUyNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NTM4NWM4ZGE0YzViM2VhMTAyYjNiYTFkNGMwZGRjOWRiYzY3NWVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl6/RDlT6M5qs6JUpxIg0L1mCuSTW
SqaehAQSr/R3kyzMRXuj8O0sLDI1GwxnOjongyPj8LBi/JNOpH4RwiPImnw+fyC2
JfRzMKN9MA4cDECxksz8ydyUpajWVjj9paOrvmjFrJTtTP+YIl1RVhhRlw9AmPxO
b25r6jY8qaUVSJ1k+JzA4CxSODE7Hw8JR1YQFxkY7JAdCNvLwYS/HmBNHHfuDVYd
i8PVNYR26JRRnCEbyndYEBmSGGmYWHf1P87jv7YvKod+B1l7Zy3RQG9WH288zaUx
IzSaTPHF4NQOd5JuSYCXe6adpy27ebxHjqSLZzOzU1MWOn95eRcUVn+DMQIDAQAB
o4ICPjCCAjowHQYDVR0OBBYEFEU4XI2kxbPqECs7odTA3cnbxnXqMB8GA1UdIwQY
MBaAFEEEpAghxBdsxC4lXvbBcnRzw/AKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVFTa0NDSEVGMnpFTGlWZTlzRnlkSFBEOEFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS85Njk5NjItMTJkMy00MWIyLWFiNDMt
YjI3ZDZlMjc4ZTE4LzEvUlRoY2phVEZzLW9RS3p1aDFNRGR5ZHZHZGVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS85Njk5NjItMTJkMy00MWIyLWFiNDMtYjI3ZDZlMjc4ZTE4
LzEvUVFTa0NDSEVGMnpFTGlWZTlzRnlkSFBEOEFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFQGCCsGAQUFBwEHAQH/BEUwQzAyBAIAATAsAwQFUndAAwQG
VQ4AAwQGWfzAMAwDBACwQ+kDBACwQ+oDBAK5XIQDBAXCDOAwDQQCAAIwBwMFACAB
GuAwDQYJKoZIhvcNAQELBQADggEBAMj3j+LAumpaD6ij3vdNFat1qCDPWPZY5+s+
mBK6xDbSuRXelfvXjLL2uqzDchzG1wenR/Uf2j5qjMsvQ1wAiHkOcMQB2kWCqeZQ
4M12ZmkMlfpCZIVxDhtU3PF2Kf6G92CJG+PxWJzda7jvLgd3eWYg8O0AMZy5StlT
5zOg0ZuIlaSgcpkwNkPq2OPffDIs7bX9I26TytSm+50Wyg2f74Ura71c5FfOtvPR
TW+NsCrpEnS7S/7+VnzuvTcFAXzKqElHIPPh/Z5QHYbkm3pqlUVZuNyRFmMfdxkJ
qUbwZ7kKJQAINPxUta1Jn0UMvFfp7MRfwHzx7KlOtzAbDJPYmRU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:56 2024 by rpki-client on console-fra.rpki-client.org