Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/RdJNSXP1CrRoH_tO5ngmauOqzx4.roa
File: RdJNSXP1CrRoH_tO5ngmauOqzx4.roa (raw, json)
Hash identifier: PGpxcT0ks3/uVJVgSN7cX6TC49eO74MPiAtY0sf+FG0=
Subject key identifier: 45:D2:4D:49:73:F5:0A:B4:68:1F:FB:4E:E6:78:26:6A:E3:AA:CF:1E
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0185C97B120B9C1B74E9021CB896C059E183
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/RdJNSXP1CrRoH_tO5ngmauOqzx4.roa
Signing time: Thu 19 Jan 2023 10:02:44 +0000
ROA not before: Thu 19 Jan 2023 10:02:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31287
IP address blocks: 185.46.163.0/24 maxlen: 24
185.46.160.0/22 maxlen: 22
85.187.205.0/24 maxlen: 24
85.187.206.0/24 maxlen: 24
85.187.204.0/24 maxlen: 24
85.187.207.0/24 maxlen: 24
85.187.222.0/24 maxlen: 24
85.187.232.0/24 maxlen: 24
85.187.235.0/24 maxlen: 24
85.187.234.0/24 maxlen: 24
85.187.248.0/24 maxlen: 24
85.187.250.0/24 maxlen: 24
85.187.42.0/24 maxlen: 24
85.187.50.0/24 maxlen: 24
85.187.63.0/24 maxlen: 24
85.187.62.0/24 maxlen: 24
46.55.252.0/22 maxlen: 22
46.55.252.0/24 maxlen: 24
46.55.253.0/24 maxlen: 24
151.237.128.0/24 maxlen: 24
85.187.4.0/24 maxlen: 24
85.187.3.0/24 maxlen: 24
85.187.6.0/24 maxlen: 24
85.187.8.0/24 maxlen: 24
85.187.10.0/23 maxlen: 23
85.187.15.0/24 maxlen: 24
85.187.18.0/24 maxlen: 24
85.187.20.0/24 maxlen: 24
85.187.184.0/23 maxlen: 23
46.55.254.0/24 maxlen: 24
77.78.152.0/21 maxlen: 21
77.78.154.0/24 maxlen: 24
77.78.153.0/24 maxlen: 24
77.78.159.0/24 maxlen: 24
185.72.58.0/24 maxlen: 24
80.72.64.0/24 maxlen: 24
151.237.91.0/24 maxlen: 24
80.72.72.0/24 maxlen: 24
151.237.92.0/24 maxlen: 24
151.237.93.0/24 maxlen: 24
195.85.215.0/24 maxlen: 24
151.237.29.0/24 maxlen: 24
151.237.36.0/22 maxlen: 22
151.237.36.0/24 maxlen: 24
151.237.38.0/24 maxlen: 24
151.237.37.0/24 maxlen: 24
151.237.39.0/24 maxlen: 24
185.200.40.0/22 maxlen: 22
151.237.63.0/24 maxlen: 24
2a01:9e40::/32 maxlen: 32
2a03:b540::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 13 Feb 2023 19:24:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c9:7b:12:0b:9c:1b:74:e9:02:1c:b8:96:c0:59:e1:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 19 10:02:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=45d24d4973f50ab4681ffb4ee678266ae3aacf1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:db:ae:51:e9:2a:45:63:ec:cd:26:d2:ba:c1:
64:17:d4:18:0a:57:88:de:f7:ee:c9:04:81:eb:2c:
05:69:01:81:a0:b2:be:de:d7:61:17:b0:68:7b:5f:
31:61:07:99:99:a3:7f:6e:31:f7:4d:e1:47:08:76:
2f:ed:8b:5f:94:c5:d2:45:12:b7:3b:c1:2f:a3:28:
ec:73:b1:48:52:9b:cf:c2:7d:bb:53:31:7c:8f:eb:
76:07:f9:24:e8:9b:7e:2c:5f:7a:74:e2:72:c4:2e:
b4:4b:f9:7f:ad:86:08:d9:93:bf:cb:22:9e:df:06:
08:77:88:51:de:3e:be:df:cb:07:ee:5e:7d:9f:21:
f2:d4:97:3b:4e:d3:fd:21:92:4d:bd:ea:4c:2f:a1:
52:3e:8a:fd:f7:e1:ce:9c:04:ce:5e:cc:25:1e:74:
12:09:be:f9:38:8d:44:c3:3a:38:1b:0c:e6:d0:74:
e3:55:5c:cf:ca:18:97:83:59:45:13:c5:89:42:7d:
bc:1e:57:c4:30:b8:3c:7f:d5:cb:6e:47:9e:3b:9f:
97:12:55:f3:50:25:ea:36:92:17:3b:87:5f:db:d7:
f9:bd:be:6e:b6:b9:d3:22:87:0a:2b:76:3d:f0:da:
24:95:a0:4a:fb:97:cb:e3:ad:2d:39:75:0f:4e:5c:
30:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:D2:4D:49:73:F5:0A:B4:68:1F:FB:4E:E6:78:26:6A:E3:AA:CF:1E
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/RdJNSXP1CrRoH_tO5ngmauOqzx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.55.252.0/22
77.78.152.0/21
80.72.64.0/24
80.72.72.0/24
85.187.3.0-85.187.4.255
85.187.6.0/24
85.187.8.0/24
85.187.10.0/23
85.187.15.0/24
85.187.18.0/24
85.187.20.0/24
85.187.42.0/24
85.187.50.0/24
85.187.62.0/23
85.187.184.0/23
85.187.204.0/22
85.187.222.0/24
85.187.232.0/24
85.187.234.0/23
85.187.248.0/24
85.187.250.0/24
151.237.29.0/24
151.237.36.0/22
151.237.63.0/24
151.237.91.0-151.237.93.255
151.237.128.0/24
185.46.160.0/22
185.72.58.0/24
185.200.40.0/22
195.85.215.0/24
IPv6:
2a01:9e40::/32
2a03:b540::/32
Signature Algorithm: sha256WithRSAEncryption
26:ec:d2:92:ef:fa:52:f3:0b:92:2f:b6:c1:b0:e1:4f:f4:2f:
64:fd:91:e1:ba:1a:aa:88:d9:fd:81:7c:8d:22:51:b4:4e:6b:
f8:6e:7b:f0:2b:32:e9:54:22:6c:3b:96:67:7f:e7:67:9a:51:
01:2f:aa:be:d8:5c:b8:b4:49:5f:3b:15:eb:b4:d2:b7:c8:78:
90:00:b1:de:e9:ec:b8:6d:3f:16:24:c5:0e:62:3b:e9:a0:51:
37:7c:ea:b2:f6:b8:b6:09:9a:11:5b:70:b0:e1:13:47:49:62:
20:63:de:ad:7c:23:b9:37:f9:7a:5d:b6:56:24:b6:35:1c:db:
15:ab:5f:50:ab:31:4e:1a:b4:5f:0f:a0:dd:58:a0:74:0f:e5:
6c:39:c0:7b:77:a2:11:a8:ad:b6:3b:68:56:c8:e8:23:3d:d7:
7c:80:76:80:2d:ed:fc:18:27:0a:be:14:61:1b:e9:af:b9:1d:
9e:e9:fe:ce:b4:fc:e8:65:04:10:00:60:fc:45:14:5c:2e:6d:
fb:56:b4:a0:d3:bf:85:ed:aa:15:b8:2e:a1:f3:0c:ea:b0:2c:
03:dc:8d:e5:39:13:68:46:9c:07:ae:fb:22:93:dd:f7:6b:af:
46:68:ea:0b:b0:40:98:02:0b:44:e3:b2:54:ec:a2:86:39:c3:
02:17:e7:3e
-----BEGIN CERTIFICATE-----
MIIF1jCCBL6gAwIBAgISAYXJexILnBt06QIcuJbAWeGDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlYmYzMDIwMWYxMmEwNDBkMzg2ZDJiNGVlZDQ0ODQ2MjNl
NGQxMWIwHhcNMjMwMTE5MTAwMjQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NWQyNGQ0OTczZjUwYWI0NjgxZmZiNGVlNjc4MjY2YWUzYWFjZjFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAotuuUekqRWPszSbSusFkF9QYCleI
3vfuyQSB6ywFaQGBoLK+3tdhF7Boe18xYQeZmaN/bjH3TeFHCHYv7YtflMXSRRK3
O8Evoyjsc7FIUpvPwn27UzF8j+t2B/kk6Jt+LF96dOJyxC60S/l/rYYI2ZO/yyKe
3wYId4hR3j6+38sH7l59nyHy1Jc7TtP9IZJNvepML6FSPor99+HOnATOXswlHnQS
Cb75OI1Ewzo4Gwzm0HTjVVzPyhiXg1lFE8WJQn28HlfEMLg8f9XLbkeeO5+XElXz
UCXqNpIXO4df29f5vb5utrnTIocKK3Y98NoklaBK+5fL460tOXUPTlwwHwIDAQAB
o4IC4jCCAt4wHQYDVR0OBBYEFEXSTUlz9Qq0aB/7TuZ4Jmrjqs8eMB8GA1UdIwQY
MBaAFP6/MCAfEqBA04bStO7USEYj5NEbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX3I4d0lCOFNvRURUaHRLMDd0UklSaVBrMFJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9mOGM0YTItOTZhYy00YjRlLWExOTUt
YTk3YzBkYzBhNzQ5LzEvUmRKTlNYUDFDclJvSF90TzVuZ21hdU9xeng0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy9mOGM0YTItOTZhYy00YjRlLWExOTUtYTk3YzBkYzBhNzQ5
LzEvX3I4d0lCOFNvRURUaHRLMDd0UklSaVBrMFJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIH3BggrBgEFBQcBBwEB/wSB5zCB5DCBywQCAAEwgcQDBAIu
N/wDBANNTpgDBABQSEADBABQSEgwDAMEAFW7AwMEAFW7BAMEAFW7BgMEAFW7CAME
AVW7CgMEAFW7DwMEAFW7EgMEAFW7FAMEAFW7KgMEAFW7MgMEAVW7PgMEAVW7uAME
AlW7zAMEAFW73gMEAFW76AMEAVW76gMEAFW7+AMEAFW7+gMEAJftHQMEApftJAME
AJftPzAMAwQAl+1bAwQBl+1cAwQAl+2AAwQCuS6gAwQAuUg6AwQCucgoAwQAw1XX
MBQEAgACMA4DBQAqAZ5AAwUAKgO1QDANBgkqhkiG9w0BAQsFAAOCAQEAJuzSku/6
UvMLki+2wbDhT/QvZP2R4boaqojZ/YF8jSJRtE5r+G578Csy6VQibDuWZ3/nZ5pR
AS+qvthcuLRJXzsV67TSt8h4kACx3unsuG0/FiTFDmI76aBRN3zqsva4tgmaEVtw
sOETR0liIGPerXwjuTf5el22ViS2NRzbFatfUKsxThq0Xw+g3VigdA/lbDnAe3ei
EaittjtoVsjoIz3XfIB2gC3t/BgnCr4UYRvpr7kdnun+zrT86GUEEABg/EUUXC5t
+1a0oNO/he2qFbguofMM6rAsA9yN5TkTaEacB677IpPd92uvRmjqC7BAmAILROOy
VOyihjnDAhfnPg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org