Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/EJbS6YNQeddu7AY7SIYZht1Y_rE.roa
File: EJbS6YNQeddu7AY7SIYZht1Y_rE.roa (raw, json)
Hash identifier: wR7oUs0fydMEj4ZISy2Z1Xb26ZafTC8e4gg80XDyizM=
Subject key identifier: 10:96:D2:E9:83:50:79:D7:6E:EC:06:3B:48:86:19:86:DD:58:FE:B1
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018CC80282EA0B2E25B5265E4D4124C9A125
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/EJbS6YNQeddu7AY7SIYZht1Y_rE.roa
Signing time: Tue 02 Jan 2024 02:30:56 +0000
ROA not before: Tue 02 Jan 2024 02:30:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 185.209.36.0/23 maxlen: 24
185.218.102.0/24 maxlen: 24
185.210.235.0/24 maxlen: 24
185.199.159.0/24 maxlen: 24
185.210.152.0/24 maxlen: 24
185.210.154.0/24 maxlen: 24
185.210.153.0/24 maxlen: 24
185.210.155.0/24 maxlen: 24
185.251.231.0/24 maxlen: 24
185.223.76.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
185.225.2.0/24 maxlen: 24
185.227.145.0/24 maxlen: 24
185.121.12.0/22 maxlen: 24
185.206.249.0/24 maxlen: 24
185.206.251.0/24 maxlen: 24
185.206.248.0/24 maxlen: 24
185.226.105.0/24 maxlen: 24
185.226.107.0/24 maxlen: 24
185.234.20.0/22 maxlen: 24
185.234.23.0/24 maxlen: 24
185.209.74.0/24 maxlen: 24
185.240.120.0/23 maxlen: 24
185.238.228.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Jan 2024 17:06:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:82:ea:0b:2e:25:b5:26:5e:4d:41:24:c9:a1:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 02:30:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1096d2e9835079d76eec063b48861986dd58feb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:45:4d:24:a4:39:7e:dd:65:3a:ed:1d:2d:16:
cc:d3:3c:63:3f:28:18:c3:a4:a3:72:c8:d2:d5:68:
5b:5f:70:5b:1c:d6:68:07:82:c2:6d:b7:cd:98:b2:
dc:8e:43:7a:dd:7d:36:fe:85:db:84:c9:38:a8:ec:
d9:02:32:79:1a:0c:41:11:bc:86:84:80:85:5b:b6:
06:36:98:59:06:0f:8b:79:1b:cc:9e:b1:40:1e:88:
e8:e7:be:be:41:fe:04:c0:4b:02:9c:0a:f4:d7:50:
2f:5b:44:51:88:6e:72:7b:66:f5:0c:01:97:27:51:
e6:73:3c:46:15:6c:9a:b8:61:5a:73:3e:d8:ee:47:
f8:c2:2a:d6:91:81:ac:e4:4e:f4:0f:81:bf:7a:04:
94:08:10:25:34:89:03:66:be:d1:7f:c5:36:39:08:
ba:91:fa:0d:40:61:d1:9a:27:d7:fc:b2:06:8e:02:
79:cc:19:c8:84:ec:3b:72:6b:97:21:96:ff:94:03:
0d:fe:b9:83:45:1d:c4:d1:28:d1:6a:21:18:39:a6:
20:6a:5f:5b:52:c5:7a:34:ab:a1:c9:c8:e1:22:2b:
78:77:f8:a9:0f:5b:17:2f:ec:53:57:31:a5:49:06:
56:92:5d:99:f1:ab:be:54:aa:5f:ac:95:b5:ec:56:
42:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:96:D2:E9:83:50:79:D7:6E:EC:06:3B:48:86:19:86:DD:58:FE:B1
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/EJbS6YNQeddu7AY7SIYZht1Y_rE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.12.0/22
185.199.159.0/24
185.206.248.0/23
185.206.251.0/24
185.209.36.0/23
185.209.74.0/24
185.210.152.0/22
185.210.235.0/24
185.218.102.0/24
185.223.76.0/24
185.223.80.0/24
185.225.2.0/24
185.226.105.0/24
185.226.107.0/24
185.227.145.0/24
185.234.20.0/22
185.238.228.0/22
185.240.120.0/23
185.251.231.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:e0:d0:75:65:65:1a:44:11:3a:83:84:72:34:7b:9c:9d:bc:
7a:b2:ee:6f:d8:e9:f6:ae:08:31:f7:31:ac:43:37:bd:4e:42:
58:1b:f9:e1:ad:38:23:19:96:48:cc:67:93:df:00:af:f8:b6:
18:8b:35:bb:92:85:76:86:16:03:4e:7f:01:f8:44:e3:d6:4c:
d0:7b:4b:40:12:a7:41:01:05:db:33:97:5b:5c:07:c1:fb:f8:
56:b8:20:ee:e0:c3:8e:9c:8c:be:40:d6:79:b8:d3:31:9c:b8:
16:1a:45:5c:dc:75:98:98:39:34:40:d7:3a:ae:1c:75:0d:82:
0a:47:28:7a:54:21:a8:3e:e0:a4:4c:fa:95:11:20:f7:e0:11:
c4:cc:b8:78:85:2f:35:3e:4f:92:df:b9:21:3a:b3:c1:12:44:
30:56:65:cc:92:68:23:54:70:27:9d:07:41:04:39:8b:8e:c3:
3e:1b:f8:45:58:2f:bd:4a:8c:65:4b:e5:98:7d:ce:94:e7:3e:
37:d1:db:24:bc:0f:4c:ca:3f:dc:c6:1f:9a:cc:01:99:b9:cf:
2d:f0:f1:71:46:90:31:98:7c:da:5a:f1:e9:34:7f:b8:9b:ca:
e5:f4:33:88:ef:5d:65:0c:80:fb:2e:01:ee:06:72:4c:d4:a3:
7a:32:9e:d0
-----BEGIN CERTIFICATE-----
MIIFajCCBFKgAwIBAgISAYzIAoLqCy4ltSZeTUEkyaElMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjQwMTAyMDIzMDU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMDk2ZDJlOTgzNTA3OWQ3NmVlYzA2M2I0ODg2MTk4NmRkNThmZWIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiEVNJKQ5ft1lOu0dLRbM0zxjPygY
w6SjcsjS1WhbX3BbHNZoB4LCbbfNmLLcjkN63X02/oXbhMk4qOzZAjJ5GgxBEbyG
hICFW7YGNphZBg+LeRvMnrFAHojo576+Qf4EwEsCnAr011AvW0RRiG5ye2b1DAGX
J1HmczxGFWyauGFacz7Y7kf4wirWkYGs5E70D4G/egSUCBAlNIkDZr7Rf8U2OQi6
kfoNQGHRmifX/LIGjgJ5zBnIhOw7cmuXIZb/lAMN/rmDRR3E0SjRaiEYOaYgal9b
UsV6NKuhycjhIit4d/ipD1sXL+xTVzGlSQZWkl2Z8au+VKpfrJW17FZCyQIDAQAB
o4ICdjCCAnIwHQYDVR0OBBYEFBCW0umDUHnXbuwGO0iGGYbdWP6xMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvRUpiUzZZTlFlZGR1N0FZN1NJWVpodDFZX3JFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGLBggrBgEFBQcBBwEB/wR8MHoweAQCAAEwcgMEArl5DAME
ALnHnwMEAbnO+AMEALnO+wMEAbnRJAMEALnRSgMEArnSmAMEALnS6wMEALnaZgME
ALnfTAMEALnfUAMEALnhAgMEALniaQMEALniawMEALnjkQMEArnqFAMEArnu5AME
AbnweAMEALn75zANBgkqhkiG9w0BAQsFAAOCAQEAfuDQdWVlGkQROoOEcjR7nJ28
erLub9jp9q4IMfcxrEM3vU5CWBv54a04IxmWSMxnk98Ar/i2GIs1u5KFdoYWA05/
AfhE49ZM0HtLQBKnQQEF2zOXW1wHwfv4Vrgg7uDDjpyMvkDWebjTMZy4FhpFXNx1
mJg5NEDXOq4cdQ2CCkcoelQhqD7gpEz6lREg9+ARxMy4eIUvNT5Pkt+5ITqzwRJE
MFZlzJJoI1RwJ50HQQQ5i47DPhv4RVgvvUqMZUvlmH3OlOc+N9HbJLwPTMo/3MYf
mswBmbnPLfDxcUaQMZh82lrx6TR/uJvK5fQziO9dZQyA+y4B7gZyTNSjejKe0A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org