Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1e08vMJAjXq1xBGYZ4R5kIhT6W4.roa
File: 1e08vMJAjXq1xBGYZ4R5kIhT6W4.roa (raw, json)
Hash identifier: WSx3oO70Jd2/LRY9yqnL215yaPQ5l4gMVHg+3nIgBww=
Subject key identifier: D5:ED:3C:BC:C2:40:8D:7A:B5:C4:11:98:67:84:79:90:88:53:E9:6E
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018B6187425BF9E9F65BEC8EBBB0512463EF
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1e08vMJAjXq1xBGYZ4R5kIhT6W4.roa
Signing time: Tue 24 Oct 2023 11:52:16 +0000
ROA not before: Tue 24 Oct 2023 11:52:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213005
IP address blocks: 93.92.228.0/22 maxlen: 24
194.38.56.0/22 maxlen: 24
92.60.34.0/24 maxlen: 24
185.211.180.0/22 maxlen: 22
185.106.124.0/22 maxlen: 24
85.115.192.0/22 maxlen: 24
81.21.228.0/22 maxlen: 24
185.245.34.0/23 maxlen: 23
185.227.128.0/22 maxlen: 22
212.115.44.0/22 maxlen: 24
95.214.144.0/22 maxlen: 24
185.223.220.0/22 maxlen: 22
212.80.208.0/22 maxlen: 24
193.35.88.0/22 maxlen: 24
193.26.152.0/22 maxlen: 24
88.135.64.0/22 maxlen: 24
185.179.228.0/22 maxlen: 22
185.189.64.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:61:87:42:5b:f9:e9:f6:5b:ec:8e:bb:b0:51:24:63:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Oct 24 11:52:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d5ed3cbcc2408d7ab5c41198678479908853e96e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:60:7a:e6:ee:8f:9a:96:fd:ab:71:64:b7:cb:
9d:ce:d5:ad:05:2c:5e:e4:45:8b:2f:c9:97:fc:41:
ba:8d:ba:78:c5:41:a3:2a:12:d8:2f:a6:dd:fa:40:
c1:e2:64:98:97:2e:1e:56:11:39:30:7d:9c:83:ee:
7c:6e:5e:c3:27:2c:b8:7f:ed:c7:9c:9e:45:9b:4d:
3e:52:10:7e:6b:b7:3e:db:6d:9b:59:82:a5:b1:11:
d7:e9:d4:78:36:11:12:13:bd:6b:ba:93:72:a8:11:
a8:f8:8c:cf:74:9e:20:6d:a5:05:c7:15:98:17:da:
93:09:9f:a5:05:4b:8e:27:7e:22:c7:6f:32:3c:fb:
ed:c0:ae:e3:d0:d9:6a:6f:2d:81:43:06:6b:b3:8a:
af:80:b9:47:d5:cb:e2:7e:bf:ba:2e:e7:41:8d:87:
cc:55:9e:ce:5d:07:f3:6f:85:86:5e:97:c7:70:d2:
74:4c:77:a0:e4:d4:c2:5f:84:27:58:70:1a:71:aa:
3b:a5:57:fd:c6:27:bb:1c:e9:b3:07:b0:7c:54:31:
96:fd:a7:6f:2f:ab:cd:d3:f1:ab:7e:7f:20:eb:a5:
6b:0a:ee:23:e7:6a:fe:96:46:81:0f:d9:d3:28:09:
21:34:7b:73:0f:61:f1:0e:d7:88:24:d7:e7:7c:a5:
1a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:ED:3C:BC:C2:40:8D:7A:B5:C4:11:98:67:84:79:90:88:53:E9:6E
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1e08vMJAjXq1xBGYZ4R5kIhT6W4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.21.228.0/22
85.115.192.0/22
88.135.64.0/22
92.60.34.0/24
93.92.228.0/22
95.214.144.0/22
185.106.124.0/22
185.179.228.0/22
185.189.64.0/22
185.211.180.0/22
185.223.220.0/22
185.227.128.0/22
185.245.34.0/23
193.26.152.0/22
193.35.88.0/22
194.38.56.0/22
212.80.208.0/22
212.115.44.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:62:40:13:2d:7f:32:9c:bf:03:6c:03:8c:6f:14:ca:8e:a1:
0b:7e:d1:61:5f:47:06:90:a9:3d:e5:b2:45:68:98:2d:57:88:
2c:35:9d:17:e1:5b:b4:aa:b1:3a:fa:44:31:c1:54:64:8a:33:
07:90:d6:47:ea:f4:e6:94:ad:86:48:f8:a9:a2:3a:c0:3b:d1:
2a:1d:42:a3:b2:6a:d0:ac:02:ba:e2:b8:6b:9c:64:0a:3d:cf:
cd:a0:ae:91:7b:2c:17:da:57:bf:11:96:74:7a:68:38:cf:ff:
7a:27:7f:a1:ff:0a:c5:68:66:a9:1d:71:8d:12:f0:d9:5c:50:
19:e4:d4:7f:1f:3d:3b:0a:5c:e4:3f:a5:28:91:94:86:45:a0:
31:4f:f1:ff:1d:63:6e:86:38:6e:9d:91:83:05:0a:37:0b:2d:
92:08:f7:e1:b6:87:a1:16:4c:bc:8f:58:2f:35:b6:c6:be:f7:
c2:f7:1f:fd:b3:0c:13:21:03:be:38:e0:a6:b4:ea:f5:6f:89:
24:21:e6:2f:ec:cd:03:5f:65:f9:3c:f5:b1:11:6d:1a:92:df:
34:62:52:02:e5:8d:08:cc:3c:d5:c3:4c:46:82:f4:f4:a1:b2:
97:07:9d:63:49:3f:b7:d5:39:95:32:df:6b:74:86:5e:d2:1d:
2c:94:a2:02
-----BEGIN CERTIFICATE-----
MIIFZDCCBEygAwIBAgISAYthh0Jb+en2W+yOu7BRJGPvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMxMDI0MTE1MjE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNWVkM2NiY2MyNDA4ZDdhYjVjNDExOTg2Nzg0Nzk5MDg4NTNlOTZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsGB65u6Pmpb9q3Fkt8udztWtBSxe
5EWLL8mX/EG6jbp4xUGjKhLYL6bd+kDB4mSYly4eVhE5MH2cg+58bl7DJyy4f+3H
nJ5Fm00+UhB+a7c+222bWYKlsRHX6dR4NhESE71rupNyqBGo+IzPdJ4gbaUFxxWY
F9qTCZ+lBUuOJ34ix28yPPvtwK7j0Nlqby2BQwZrs4qvgLlH1cvifr+6LudBjYfM
VZ7OXQfzb4WGXpfHcNJ0THeg5NTCX4QnWHAacao7pVf9xie7HOmzB7B8VDGW/adv
L6vN0/Grfn8g66VrCu4j52r+lkaBD9nTKAkhNHtzD2HxDteIJNfnfKUa5wIDAQAB
o4ICcDCCAmwwHQYDVR0OBBYEFNXtPLzCQI16tcQRmGeEeZCIU+luMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvMWUwOHZNSkFqWHExeEJHWVo0UjVrSWhUNlc0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGFBggrBgEFBQcBBwEB/wR2MHQwcgQCAAEwbAMEAlEV5AME
AlVzwAMEAliHQAMEAFw8IgMEAl1c5AMEAl/WkAMEArlqfAMEArmz5AMEArm9QAME
ArnTtAMEArnf3AMEArnjgAMEAbn1IgMEAsEamAMEAsEjWAMEAsImOAMEAtRQ0AME
AtRzLDANBgkqhkiG9w0BAQsFAAOCAQEAuWJAEy1/Mpy/A2wDjG8Uyo6hC37RYV9H
BpCpPeWyRWiYLVeILDWdF+FbtKqxOvpEMcFUZIozB5DWR+r05pSthkj4qaI6wDvR
Kh1Co7Jq0KwCuuK4a5xkCj3PzaCukXssF9pXvxGWdHpoOM//eid/of8KxWhmqR1x
jRLw2VxQGeTUfx89Owpc5D+lKJGUhkWgMU/x/x1jboY4bp2RgwUKNwstkgj34baH
oRZMvI9YLzW2xr73wvcf/bMMEyEDvjjgprTq9W+JJCHmL+zNA19l+Tz1sRFtGpLf
NGJSAuWNCMw81cNMRoL09KGylwedY0k/t9U5lTLfa3SGXtIdLJSiAg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:20 2024 by rpki-client on console-ams.rpki-client.org