Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1-jC3G4ANStWViUrCSY3s51nEZpI.roa
File: 1-jC3G4ANStWViUrCSY3s51nEZpI.roa (raw, json)
Hash identifier: p41eteQpMkOavCWgnaMAMH7c9ZPOn+Bsn/9GudD6H+0=
Subject key identifier: FA:30:B7:1B:80:0D:4A:D5:95:89:4A:C2:49:8D:EC:E7:59:C4:66:92
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0189726853CD5431AB86D08A9877612F8077
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1-jC3G4ANStWViUrCSY3s51nEZpI.roa
Signing time: Thu 20 Jul 2023 08:26:27 +0000
ROA not before: Thu 20 Jul 2023 08:26:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.218.103.0/24 maxlen: 24
185.209.39.0/24 maxlen: 24
185.230.52.0/24 maxlen: 24
185.220.248.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.223.78.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.222.28.0/24 maxlen: 24
185.222.30.0/23 maxlen: 24
185.218.21.0/24 maxlen: 24
185.209.72.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
193.58.147.0/24 maxlen: 24
185.214.100.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
185.214.102.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 23 Jul 2023 08:46:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:72:68:53:cd:54:31:ab:86:d0:8a:98:77:61:2f:80:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 20 08:26:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fa30b71b800d4ad595894ac2498dece759c46692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d9:30:3c:11:36:9b:9d:8d:59:c8:8a:88:05:
cb:0d:30:57:70:42:1e:ec:fd:9d:37:c0:6a:4d:ac:
70:2a:d2:4e:c7:02:4b:99:d6:41:a4:3c:78:be:6b:
45:16:c2:24:2a:3e:fe:86:05:4d:4b:2c:2c:3c:50:
ed:24:2c:56:58:c8:70:94:9f:0d:07:17:09:4e:4a:
c1:9a:1b:e3:b7:3b:8b:ee:cb:2a:6d:c1:20:74:ab:
c5:6e:a9:49:3c:41:97:cf:64:78:d0:9b:d1:02:26:
99:d5:ec:99:a6:f3:e5:a5:30:23:ac:0e:fc:28:18:
9b:d8:f3:e0:d8:2c:f1:ad:8c:87:65:5f:56:4c:4a:
3c:d6:0c:fc:ed:f7:cd:9e:0a:0a:79:42:9e:de:fd:
b0:93:39:67:b8:b3:b8:0f:d0:30:85:e9:02:b1:cf:
b3:3b:1e:21:80:36:d3:52:9d:d9:9d:5b:e7:99:26:
37:36:11:74:3e:01:56:33:34:81:04:ce:40:14:db:
fb:40:87:2e:e0:52:72:8a:2e:32:45:20:8d:2b:04:
f4:c5:c1:31:2f:0f:f0:ef:72:e6:65:8f:f4:95:79:
e5:0e:0b:c6:40:93:1a:0a:70:8c:e1:f0:43:cf:63:
3d:af:ae:8e:29:5c:60:98:58:59:db:af:05:95:ee:
79:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:30:B7:1B:80:0D:4A:D5:95:89:4A:C2:49:8D:EC:E7:59:C4:66:92
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1-jC3G4ANStWViUrCSY3s51nEZpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.147.224.0/24
185.209.39.0/24
185.209.72.0/24
185.214.100.0/24
185.214.102.0/24
185.218.21.0/24
185.218.103.0/24
185.220.248.0/24
185.222.28.0/24
185.222.30.0/23
185.223.78.0/24
185.225.0.0/23
185.230.52.0/24
185.251.229.0/24
193.58.146.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:d4:93:1a:01:94:36:eb:91:73:f4:33:fb:37:1a:84:0c:8c:
dc:f0:30:7f:c0:bd:44:54:49:9f:c7:ac:9a:29:ba:c8:d7:ca:
1a:2f:6f:d8:f5:98:e2:96:31:12:04:00:25:f0:c0:2a:a1:71:
e4:27:bf:b1:47:39:92:2b:9d:8e:ef:ea:8f:d8:83:4b:9e:74:
a7:78:bb:a5:4a:5b:1c:22:7a:a4:cd:88:da:f9:a5:24:dc:2a:
26:06:1c:44:09:6f:9a:d9:a4:08:b3:af:63:ae:18:eb:a3:ab:
31:40:b4:c8:7e:26:c2:26:1a:00:c4:6e:51:93:8a:71:23:b9:
48:5e:5c:cd:6c:eb:2b:75:a3:7c:d9:83:c7:f4:44:0b:c3:4f:
1b:9e:76:f3:64:e4:ba:2e:01:1f:1d:04:57:c4:d8:6f:97:a7:
c7:40:21:e0:c4:81:7f:f7:97:c0:6b:1d:a9:4b:80:83:7b:c4:
a4:66:78:4a:f9:0e:6e:6a:30:90:29:35:b1:17:71:45:c2:fb:
b4:8c:b5:25:b9:3d:5f:24:eb:71:c8:84:55:a7:a4:53:0a:a9:
b1:fc:c6:7b:ca:8c:f0:47:8f:c4:85:cf:07:e0:bb:c8:38:e5:
f3:62:7c:9b:da:8c:b0:31:a5:e4:91:3a:8c:93:c2:07:56:94:
2d:89:01:2b
-----BEGIN CERTIFICATE-----
MIIFWDCCBECgAwIBAgISAYlyaFPNVDGrhtCKmHdhL4B3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMwNzIwMDgyNjI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYTMwYjcxYjgwMGQ0YWQ1OTU4OTRhYzI0OThkZWNlNzU5YzQ2NjkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzdkwPBE2m52NWciKiAXLDTBXcEIe
7P2dN8BqTaxwKtJOxwJLmdZBpDx4vmtFFsIkKj7+hgVNSywsPFDtJCxWWMhwlJ8N
BxcJTkrBmhvjtzuL7ssqbcEgdKvFbqlJPEGXz2R40JvRAiaZ1eyZpvPlpTAjrA78
KBib2PPg2CzxrYyHZV9WTEo81gz87ffNngoKeUKe3v2wkzlnuLO4D9AwhekCsc+z
Ox4hgDbTUp3ZnVvnmSY3NhF0PgFWMzSBBM5AFNv7QIcu4FJyii4yRSCNKwT0xcEx
Lw/w73LmZY/0lXnlDgvGQJMaCnCM4fBDz2M9r66OKVxgmFhZ268Fle559QIDAQAB
o4ICZDCCAmAwHQYDVR0OBBYEFPowtxuADUrVlYlKwkmN7OdZxGaSMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvMS1qQzNHNEFOU3RXVmlVckNTWTNzNTFuRVpwSS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZDAvMmI4MzRlLWJhZDItNDlmZi1iYTM4LWI0MzQyYmE5MWFi
Yy8xL1lHZUV3UVVJVzUxcTFmYzZBN0lObWx3UlRLOC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjB5BggrBgEFBQcBBwEB/wRqMGgwZgQCAAEwYAMEAC0IFQME
AC2T4AMEALnRJwMEALnRSAMEALnWZAMEALnWZgMEALnaFQMEALnaZwMEALnc+AME
ALneHAMEAbneHgMEALnfTgMEAbnhAAMEALnmNAMEALn75QMEAcE6kjANBgkqhkiG
9w0BAQsFAAOCAQEAf9STGgGUNuuRc/Qz+zcahAyM3PAwf8C9RFRJn8esmim6yNfK
Gi9v2PWY4pYxEgQAJfDAKqFx5Ce/sUc5kiudju/qj9iDS550p3i7pUpbHCJ6pM2I
2vmlJNwqJgYcRAlvmtmkCLOvY64Y66OrMUC0yH4mwiYaAMRuUZOKcSO5SF5czWzr
K3WjfNmDx/REC8NPG55282Tkui4BHx0EV8TYb5enx0Ah4MSBf/eXwGsdqUuAg3vE
pGZ4SvkObmowkCk1sRdxRcL7tIy1Jbk9XyTrcciEVaekUwqpsfzGe8qM8EePxIXP
B+C7yDjl82J8m9qMsDGl5JE6jJPCB1aULYkBKw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org