Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/WJfXxY33Wo7dVQfe1OO6I9eSzcU.roa
File: WJfXxY33Wo7dVQfe1OO6I9eSzcU.roa (raw, json)
Hash identifier: HAfiPU5u+CQxTdvq+XlTyOGg/9DqTvX0XnF3OaPi8LU=
Subject key identifier: 58:97:D7:C5:8D:F7:5A:8E:DD:55:07:DE:D4:E3:BA:23:D7:92:CD:C5
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018AA79D2D05EC277732E5BF1890635272BD
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/WJfXxY33Wo7dVQfe1OO6I9eSzcU.roa
Signing time: Mon 18 Sep 2023 09:26:50 +0000
ROA not before: Mon 18 Sep 2023 09:26:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.209.36.0/23 maxlen: 24
185.199.159.0/24 maxlen: 24
185.210.152.0/24 maxlen: 24
185.210.154.0/24 maxlen: 24
185.210.153.0/24 maxlen: 24
185.210.155.0/24 maxlen: 24
185.223.76.0/24 maxlen: 24
185.225.2.0/24 maxlen: 24
185.121.12.0/22 maxlen: 24
185.206.249.0/24 maxlen: 24
185.206.251.0/24 maxlen: 24
185.206.248.0/24 maxlen: 24
185.226.105.0/24 maxlen: 24
185.226.107.0/24 maxlen: 24
185.234.20.0/22 maxlen: 24
185.234.23.0/24 maxlen: 24
185.240.120.0/23 maxlen: 24
185.238.228.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Sep 2023 10:06:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a7:9d:2d:05:ec:27:77:32:e5:bf:18:90:63:52:72:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 18 09:26:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5897d7c58df75a8edd5507ded4e3ba23d792cdc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:5e:38:78:98:40:2f:3f:3c:56:81:65:97:16:
5b:47:e7:ef:b1:3c:86:0a:7a:37:80:5d:29:32:64:
0d:2b:59:30:f2:33:2a:53:17:62:a2:d2:02:c2:a0:
b4:54:d1:b1:12:1a:8c:62:2f:aa:78:e1:af:c9:60:
57:61:11:fa:d9:de:67:aa:b6:86:f7:f8:5d:a8:62:
ae:89:b8:f6:ff:c0:27:d1:5a:ad:ec:19:15:81:b3:
57:59:51:ad:aa:8e:e2:1e:13:f9:cd:fd:83:a2:d9:
fc:6c:2e:f1:d9:ff:ac:27:5d:6b:15:f2:a5:ae:94:
68:10:57:b8:23:ab:82:31:10:e1:f7:56:06:08:f8:
56:48:e4:bd:da:4a:10:fe:98:50:36:7d:49:19:d2:
29:9b:5a:96:88:c8:07:79:00:a5:b3:3b:ee:a4:89:
0c:ff:cf:75:bc:99:11:f3:78:b3:42:27:3b:da:92:
39:b9:fa:ac:1f:dc:2c:5c:0a:0d:1d:33:0d:19:7c:
87:26:ab:c8:79:e3:81:24:fe:f7:35:27:62:ed:3d:
a2:1a:59:d2:8c:74:1d:5f:19:d9:3c:01:d5:fd:b3:
99:63:03:c3:36:1a:be:a0:de:0b:31:c4:30:5d:1f:
a0:16:d9:d2:bf:8c:8a:02:b0:f4:6a:ff:ca:a2:69:
6c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:97:D7:C5:8D:F7:5A:8E:DD:55:07:DE:D4:E3:BA:23:D7:92:CD:C5
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/WJfXxY33Wo7dVQfe1OO6I9eSzcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.12.0/22
185.199.159.0/24
185.206.248.0/23
185.206.251.0/24
185.209.36.0/23
185.210.152.0/22
185.223.76.0/24
185.225.2.0/24
185.226.105.0/24
185.226.107.0/24
185.234.20.0/22
185.238.228.0/22
185.240.120.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:a1:ae:ec:48:95:37:c1:f8:43:ae:d4:a5:e6:8e:9a:39:ef:
f7:22:3c:fb:41:ab:e5:bb:da:d9:4a:f5:29:bc:11:63:5f:53:
92:31:bd:56:e9:a8:e9:21:0f:6f:aa:e2:4c:60:91:52:99:2c:
78:d0:8f:9c:20:59:72:c8:99:5f:3f:4c:7d:6d:d8:53:d4:9b:
99:28:37:56:95:5f:40:6e:d3:bc:ad:cb:10:4d:4a:cb:c9:6f:
32:1b:e6:8d:71:14:0c:8d:36:e6:e1:0f:33:f3:96:a0:d2:0f:
da:72:b8:75:55:1c:94:5c:31:36:38:d4:75:e0:3d:cf:eb:38:
27:9f:06:0b:a4:be:38:73:d8:90:c8:d2:f5:2c:be:14:64:32:
39:20:d3:aa:7e:c2:5c:be:dd:c4:20:69:cb:74:4d:97:b0:35:
4e:eb:71:f6:b5:5d:c1:6a:a1:a1:11:6d:25:6f:3c:37:b5:99:
11:c5:ea:31:1f:9d:7c:fd:fa:f5:6f:21:c9:06:63:2f:3b:0e:
de:ff:01:f0:8e:a9:69:4c:01:98:c3:5e:98:0d:5d:fc:1b:d0:
4b:58:72:47:fb:d5:11:cb:ac:b8:20:28:b9:7e:d8:7d:ea:62:
73:43:df:44:6e:24:97:6b:1a:d2:b4:f7:93:f2:a9:68:af:a9:
f7:aa:31:55
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgISAYqnnS0F7Cd3MuW/GJBjUnK9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMwOTE4MDkyNjUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ODk3ZDdjNThkZjc1YThlZGQ1NTA3ZGVkNGUzYmEyM2Q3OTJjZGM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnl44eJhALz88VoFllxZbR+fvsTyG
Cno3gF0pMmQNK1kw8jMqUxdiotICwqC0VNGxEhqMYi+qeOGvyWBXYRH62d5nqraG
9/hdqGKuibj2/8An0Vqt7BkVgbNXWVGtqo7iHhP5zf2Dotn8bC7x2f+sJ11rFfKl
rpRoEFe4I6uCMRDh91YGCPhWSOS92koQ/phQNn1JGdIpm1qWiMgHeQClszvupIkM
/891vJkR83izQic72pI5ufqsH9wsXAoNHTMNGXyHJqvIeeOBJP73NSdi7T2iGlnS
jHQdXxnZPAHV/bOZYwPDNhq+oN4LMcQwXR+gFtnSv4yKArD0av/KomlspwIDAQAB
o4ICUTCCAk0wHQYDVR0OBBYEFFiX18WN91qO3VUH3tTjuiPXks3FMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvV0pmWHhZMzNXbzdkVlFmZTFPTzZJOWVTemNVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGcGCCsGAQUFBwEHAQH/BFgwVjBUBAIAATBOAwQCuXkMAwQA
ucefAwQBuc74AwQAuc77AwQBudEkAwQCudKYAwQAud9MAwQAueECAwQAueJpAwQA
ueJrAwQCueoUAwQCue7kAwQBufB4MA0GCSqGSIb3DQEBCwUAA4IBAQCzoa7sSJU3
wfhDrtSl5o6aOe/3Ijz7Qavlu9rZSvUpvBFjX1OSMb1W6ajpIQ9vquJMYJFSmSx4
0I+cIFlyyJlfP0x9bdhT1JuZKDdWlV9AbtO8rcsQTUrLyW8yG+aNcRQMjTbm4Q8z
85ag0g/acrh1VRyUXDE2ONR14D3P6zgnnwYLpL44c9iQyNL1LL4UZDI5INOqfsJc
vt3EIGnLdE2XsDVO63H2tV3BaqGhEW0lbzw3tZkRxeoxH518/fr1byHJBmMvOw7e
/wHwjqlpTAGYw16YDV38G9BLWHJH+9URy6y4ICi5fth96mJzQ99EbiSXaxrStPeT
8qlor6n3qjFV
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org