Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1-EBA_oI7Yfo5VEPECQTVyknek1U.roa
File: 1-EBA_oI7Yfo5VEPECQTVyknek1U.roa (raw, json)
Hash identifier: DMW7EbtmpxtRFGSZhVaLfm8E8E9srrWf88pmULMb4rk=
Subject key identifier: F8:40:40:FE:82:3B:61:FA:39:54:43:C4:09:04:D5:CA:49:DE:93:55
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018AE7A6C17AAD542479075100CEDA92A762
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1-EBA_oI7Yfo5VEPECQTVyknek1U.roa
Signing time: Sat 30 Sep 2023 19:52:59 +0000
ROA not before: Sat 30 Sep 2023 19:52:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.225.22.0/24 maxlen: 24
185.218.101.0/24 maxlen: 24
185.230.52.0/24 maxlen: 24
185.220.250.0/23 maxlen: 24
185.251.229.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.223.81.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
185.222.30.0/23 maxlen: 24
185.218.23.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
185.214.100.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Oct 2023 15:02:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e7:a6:c1:7a:ad:54:24:79:07:51:00:ce:da:92:a7:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 30 19:52:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f84040fe823b61fa395443c40904d5ca49de9355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:31:af:09:73:66:16:06:2f:25:15:10:a2:88:
d9:fe:e3:24:fc:96:f0:99:d3:cc:c9:1c:a3:fc:5d:
93:05:c5:e0:d4:4c:fd:a3:ab:4c:3a:12:a8:83:51:
1d:b8:bc:2e:f8:60:d2:42:ca:68:7a:ec:42:09:f3:
5f:8f:46:f9:9e:8f:03:03:48:6b:5a:64:53:0f:1b:
ef:86:60:63:be:66:fc:be:06:bf:af:78:00:09:a2:
27:15:f3:23:5a:ef:bd:ee:9d:4b:6e:85:04:99:5b:
a0:cb:08:e3:cc:d9:1e:0a:7f:90:3f:81:b0:5e:13:
92:1b:7d:4a:7c:9c:3f:ca:1e:96:f7:6d:38:b5:78:
3c:70:b5:1d:0e:a6:3b:19:e5:78:3a:34:8d:52:18:
2e:0a:c7:db:43:82:f1:d8:42:99:b9:c4:23:36:2d:
b0:eb:72:8f:8d:c2:c4:14:ed:7c:e2:20:7d:27:94:
58:a6:1b:43:ba:dd:79:ea:62:3f:0e:07:46:ff:94:
36:79:27:46:01:f8:f0:b4:1c:31:49:61:73:e1:92:
27:cd:44:68:ab:83:50:4c:a8:42:72:13:7a:52:90:
6d:a4:68:96:2f:44:9e:ad:c8:a3:3c:f9:26:72:67:
75:9c:84:b2:c1:c3:ae:73:f2:ce:4d:05:7f:99:d5:
08:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:40:40:FE:82:3B:61:FA:39:54:43:C4:09:04:D5:CA:49:DE:93:55
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1-EBA_oI7Yfo5VEPECQTVyknek1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.147.224.0/24
185.214.100.0/24
185.218.23.0/24
185.218.101.0/24
185.220.250.0/23
185.222.30.0/23
185.223.80.0/23
185.225.0.0/23
185.225.22.0/24
185.230.52.0/24
185.251.229.0/24
193.58.146.0/23
Signature Algorithm: sha256WithRSAEncryption
37:ee:23:a7:c1:91:f3:49:15:69:e9:c6:4d:ae:dd:46:00:75:
d2:51:50:2d:5f:43:1a:ea:05:9a:a0:5e:10:11:6f:f3:7a:11:
bf:b6:97:9c:3f:43:7e:43:4f:bc:d7:81:f8:1e:5e:a4:1b:d4:
fa:a2:df:33:e7:32:92:b4:ee:de:ad:94:e7:f9:8c:3c:47:6a:
01:a2:9e:ea:46:50:38:d4:ef:8c:4e:24:29:77:ce:e3:b3:b8:
a8:7c:2d:88:5d:ac:5f:89:b2:05:32:79:be:9c:8e:ae:9c:27:
f4:ec:3d:64:7b:05:e1:6a:bb:6d:97:63:ef:2c:1d:7d:91:cd:
d0:c2:7f:e0:52:97:77:20:63:b9:d4:51:ad:e4:e4:03:c6:a1:
2b:1e:4f:2d:04:bb:ee:0b:0a:8b:f3:15:cb:4e:df:87:dd:b0:
28:ac:31:ec:a2:27:a7:72:63:e2:a9:4a:7a:35:f8:b5:d4:e7:
df:7b:b8:69:ab:10:c5:1c:ab:b6:ff:b7:93:24:d7:4b:76:d6:
f0:d5:4e:5e:9f:ef:fc:9f:0b:ff:89:30:87:04:5d:51:73:3d:
fa:24:ca:41:74:d5:cc:91:42:52:f1:32:78:63:fa:19:11:d1:
b2:97:97:23:de:f7:7a:5a:f8:90:0b:a9:f4:0f:d1:29:84:b5:
c9:31:98:a7
-----BEGIN CERTIFICATE-----
MIIFRjCCBC6gAwIBAgISAYrnpsF6rVQkeQdRAM7akqdiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMwOTMwMTk1MjU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmODQwNDBmZTgyM2I2MWZhMzk1NDQzYzQwOTA0ZDVjYTQ5ZGU5MzU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTGvCXNmFgYvJRUQoojZ/uMk/Jbw
mdPMyRyj/F2TBcXg1Ez9o6tMOhKog1EduLwu+GDSQspoeuxCCfNfj0b5no8DA0hr
WmRTDxvvhmBjvmb8vga/r3gACaInFfMjWu+97p1LboUEmVugywjjzNkeCn+QP4Gw
XhOSG31KfJw/yh6W9204tXg8cLUdDqY7GeV4OjSNUhguCsfbQ4Lx2EKZucQjNi2w
63KPjcLEFO184iB9J5RYphtDut156mI/DgdG/5Q2eSdGAfjwtBwxSWFz4ZInzURo
q4NQTKhCchN6UpBtpGiWL0SercijPPkmcmd1nISywcOuc/LOTQV/mdUIQQIDAQAB
o4ICUjCCAk4wHQYDVR0OBBYEFPhAQP6CO2H6OVRDxAkE1cpJ3pNVMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvMS1FQkFfb0k3WWZvNVZFUEVDUVRWeWtuZWsxVS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZDAvMmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFi
Yy8xL1lHZUV3UVVJVzUxcTFmYzZBN0lObWx3UlRLOC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjBnBggrBgEFBQcBBwEB/wRYMFYwVAQCAAEwTgMEAC0IFQME
AC2T4AMEALnWZAMEALnaFwMEALnaZQMEAbnc+gMEAbneHgMEAbnfUAMEAbnhAAME
ALnhFgMEALnmNAMEALn75QMEAcE6kjANBgkqhkiG9w0BAQsFAAOCAQEAN+4jp8GR
80kVaenGTa7dRgB10lFQLV9DGuoFmqBeEBFv83oRv7aXnD9DfkNPvNeB+B5epBvU
+qLfM+cykrTu3q2U5/mMPEdqAaKe6kZQONTvjE4kKXfO47O4qHwtiF2sX4myBTJ5
vpyOrpwn9Ow9ZHsF4Wq7bZdj7ywdfZHN0MJ/4FKXdyBjudRRreTkA8ahKx5PLQS7
7gsKi/MVy07fh92wKKwx7KInp3Jj4qlKejX4tdTn33u4aasQxRyrtv+3kyTXS3bW
8NVOXp/v/J8L/4kwhwRdUXM9+iTKQXTVzJFCUvEyeGP6GRHRspeXI973elr4kAup
9A/RKYS1yTGYpw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:19 2024 by rpki-client on console-ams.rpki-client.org