Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/90UrQ_ADgtNHR8cymy4MrK7JLT8.roa
File: 90UrQ_ADgtNHR8cymy4MrK7JLT8.roa (raw, json)
Hash identifier: q4rlDYkFD1kusCOWkyQZr5Y+GD4t0YldPZutPnM6H/o=
Subject key identifier: F7:45:2B:43:F0:03:82:D3:47:47:C7:32:9B:2E:0C:AC:AE:C9:2D:3F
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01896E0F0C733D4ED43AB98B382CF4B364E0
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/90UrQ_ADgtNHR8cymy4MrK7JLT8.roa
Signing time: Wed 19 Jul 2023 12:10:27 +0000
ROA not before: Wed 19 Jul 2023 12:10:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.218.103.0/24 maxlen: 24
185.209.39.0/24 maxlen: 24
185.230.52.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.223.78.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.222.30.0/23 maxlen: 24
185.218.21.0/24 maxlen: 24
185.209.72.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
193.58.147.0/24 maxlen: 24
185.214.100.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
185.214.102.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Jul 2023 08:25:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6e:0f:0c:73:3d:4e:d4:3a:b9:8b:38:2c:f4:b3:64:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 19 12:10:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7452b43f00382d34747c7329b2e0cacaec92d3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:30:93:23:58:24:e6:4c:09:7a:95:ea:fe:99:
9a:b4:7c:ad:63:23:79:54:92:48:04:6c:cc:29:69:
e0:3a:63:15:0a:59:10:a1:07:ba:dc:3f:b8:85:8c:
ce:66:b0:6a:21:49:c7:4d:50:53:ea:74:4c:1d:50:
a5:ef:ef:4e:5c:a8:6b:4a:72:17:74:63:39:66:0a:
6f:6e:32:77:fa:87:67:3e:a6:5d:93:0f:6d:fe:3f:
8e:75:97:fa:5d:a1:d9:44:77:1b:93:f2:23:e1:eb:
82:bf:04:d1:51:e1:1e:da:db:e2:57:60:44:bc:d3:
7a:5f:85:a5:18:fe:b9:27:14:1b:0b:c9:dd:3a:d4:
16:b3:58:ed:f9:5d:32:e3:3d:76:4e:7e:33:50:bc:
1b:50:99:6c:0e:2e:ac:21:b1:92:6b:6f:62:ca:37:
ec:3e:45:08:49:b2:ec:7d:a1:1a:ef:11:b2:34:8d:
14:73:01:98:90:d0:14:d8:a7:99:13:74:4e:8f:f7:
af:15:a7:70:3f:81:f1:17:a6:38:24:b4:d4:85:72:
3e:4a:65:89:bb:28:eb:e1:e8:6e:ba:91:6b:9c:a3:
ba:49:10:04:bd:6a:a7:a4:08:3c:3d:6a:d4:aa:e1:
6b:60:11:c4:ad:57:e4:d8:69:b4:61:79:4c:8a:ce:
d6:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:45:2B:43:F0:03:82:D3:47:47:C7:32:9B:2E:0C:AC:AE:C9:2D:3F
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/90UrQ_ADgtNHR8cymy4MrK7JLT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.147.224.0/24
185.209.39.0/24
185.209.72.0/24
185.214.100.0/24
185.214.102.0/24
185.218.21.0/24
185.218.103.0/24
185.222.30.0/23
185.223.78.0/24
185.225.0.0/23
185.230.52.0/24
185.251.229.0/24
193.58.146.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:74:7a:dd:1a:d0:2a:9f:2a:0a:65:24:32:63:71:dc:82:77:
f5:2f:8e:40:8d:25:85:12:da:9a:cb:88:30:6d:2e:f5:24:6d:
de:fb:a1:b5:86:e8:51:9d:40:e5:01:5d:0f:48:b4:b6:3a:87:
e0:ab:96:23:83:c0:ea:9f:10:0d:bb:62:b0:f1:53:88:c4:48:
d2:79:12:5f:48:ce:e9:79:de:4d:04:0f:97:e2:50:68:03:ba:
a7:b3:96:7e:b4:71:7c:9b:d0:13:8c:99:fd:46:55:b6:ed:fb:
f3:72:c6:6e:9c:4a:3a:c9:33:84:26:d9:14:98:78:fb:e8:58:
5a:09:cb:04:ac:d6:70:f6:6a:52:6e:db:f3:69:ff:1f:48:75:
8b:df:52:9b:a8:b8:b3:11:38:58:3c:2d:66:ae:b7:dd:53:d7:
e5:90:57:32:29:61:ef:d9:c7:f3:f5:29:88:7a:88:8b:2b:e9:
11:c4:0f:e2:41:18:d3:01:45:7d:84:0d:eb:75:c8:32:0e:b9:
2d:a1:cb:e3:5a:39:61:3e:de:d2:4d:95:7e:ce:06:ba:5f:e7:
de:a7:1f:a2:d2:ae:45:38:54:d5:80:01:ac:f0:bc:a6:c8:0a:
3f:ff:34:0b:c2:97:e9:27:18:7b:d8:18:b6:71:bc:c8:95:9d:
e6:ca:c5:dc
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgISAYluDwxzPU7UOrmLOCz0s2TgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMwNzE5MTIxMDI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNzQ1MmI0M2YwMDM4MmQzNDc0N2M3MzI5YjJlMGNhY2FlYzkyZDNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjDCTI1gk5kwJepXq/pmatHytYyN5
VJJIBGzMKWngOmMVClkQoQe63D+4hYzOZrBqIUnHTVBT6nRMHVCl7+9OXKhrSnIX
dGM5ZgpvbjJ3+odnPqZdkw9t/j+OdZf6XaHZRHcbk/Ij4euCvwTRUeEe2tviV2BE
vNN6X4WlGP65JxQbC8ndOtQWs1jt+V0y4z12Tn4zULwbUJlsDi6sIbGSa29iyjfs
PkUISbLsfaEa7xGyNI0UcwGYkNAU2KeZE3ROj/evFadwP4HxF6Y4JLTUhXI+SmWJ
uyjr4ehuupFrnKO6SRAEvWqnpAg8PWrUquFrYBHErVfk2Gm0YXlMis7WEwIDAQAB
o4ICVzCCAlMwHQYDVR0OBBYEFPdFK0PwA4LTR0fHMpsuDKyuyS0/MB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvOTBVclFfQURndE5IUjhjeW15NE1ySzdKTFQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDBaBAIAATBUAwQALQgVAwQA
LZPgAwQAudEnAwQAudFIAwQAudZkAwQAudZmAwQAudoVAwQAudpnAwQBud4eAwQA
ud9OAwQBueEAAwQAueY0AwQAufvlAwQBwTqSMA0GCSqGSIb3DQEBCwUAA4IBAQAq
dHrdGtAqnyoKZSQyY3Hcgnf1L45AjSWFEtqay4gwbS71JG3e+6G1huhRnUDlAV0P
SLS2Oofgq5Yjg8DqnxANu2Kw8VOIxEjSeRJfSM7ped5NBA+X4lBoA7qns5Z+tHF8
m9ATjJn9RlW27fvzcsZunEo6yTOEJtkUmHj76FhaCcsErNZw9mpSbtvzaf8fSHWL
31KbqLizEThYPC1mrrfdU9flkFcyKWHv2cfz9SmIeoiLK+kRxA/iQRjTAUV9hA3r
dcgyDrktocvjWjlhPt7STZV+zga6X+fepx+i0q5FOFTVgAGs8LymyAo//zQLwpfp
Jxh72Bi2cbzIlZ3mysXc
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:20 2024 by rpki-client on console-ams.rpki-client.org