Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ceqkglPlwU2nK1A0bSB5AbPGjOk.roa
File: ceqkglPlwU2nK1A0bSB5AbPGjOk.roa (raw, json)
Hash identifier: cfZOu9BUenJwUUH1mxY+nYDdqR0iDqrzwUKcrBE+NBQ=
Subject key identifier: 71:EA:A4:82:53:E5:C1:4D:A7:2B:50:34:6D:20:79:01:B3:C6:8C:E9
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018CC8027CCD5DEE07D80B65F6F2FEAE7FAB
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ceqkglPlwU2nK1A0bSB5AbPGjOk.roa
Signing time: Tue 02 Jan 2024 02:30:55 +0000
ROA not before: Tue 02 Jan 2024 02:30:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49600
IP address blocks: 193.37.65.0/24 maxlen: 24
194.35.41.0/24 maxlen: 24
194.35.42.0/24 maxlen: 24
185.230.54.0/23 maxlen: 23
185.230.55.0/24 maxlen: 24
92.60.35.0/24 maxlen: 24
193.37.64.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 Jan 2024 19:15:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:7c:cd:5d:ee:07:d8:0b:65:f6:f2:fe:ae:7f:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 02:30:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=71eaa48253e5c14da72b50346d207901b3c68ce9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a7:10:38:94:52:9c:44:0b:40:00:fc:5c:71:
c5:68:4c:df:e9:3c:6c:19:c4:0a:c4:0b:70:04:03:
96:61:8a:c5:db:3f:f8:5b:17:74:07:a7:ec:63:1e:
10:f8:05:be:25:67:34:4b:66:4e:c8:f6:7e:80:5f:
c8:ba:c5:28:79:83:51:cb:06:36:57:10:60:f2:a4:
be:5e:08:54:da:34:e2:e2:41:1c:5a:65:80:25:45:
f8:96:37:2d:a6:a9:dd:bd:16:ab:ee:fc:a5:f8:82:
08:0d:71:b5:f9:62:c9:d9:e9:b4:52:be:4c:d9:46:
40:8f:d1:87:5d:2e:97:42:6f:57:45:51:e5:b2:5d:
7c:8d:ea:2f:bf:49:57:81:2f:76:91:c9:94:52:4a:
df:ba:59:a0:ff:4b:1b:47:bd:43:26:76:fb:de:83:
1c:09:c0:1e:75:4d:60:64:b8:0f:29:ea:1e:86:7e:
c9:09:74:af:00:c2:0e:9e:1b:76:19:59:08:35:20:
46:70:02:88:51:37:de:75:af:6a:3e:1f:3e:47:eb:
33:f3:0e:7e:d2:cc:ea:e9:9d:1e:61:ec:0b:a5:50:
f2:94:ad:bd:99:70:58:3c:b0:01:83:e5:c0:b0:a5:
06:3f:12:3f:31:cf:48:32:c3:57:9e:15:38:5b:72:
12:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:EA:A4:82:53:E5:C1:4D:A7:2B:50:34:6D:20:79:01:B3:C6:8C:E9
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ceqkglPlwU2nK1A0bSB5AbPGjOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.60.35.0/24
185.230.54.0/23
193.37.64.0/23
194.35.41.0-194.35.42.255
Signature Algorithm: sha256WithRSAEncryption
00:e5:58:16:7a:06:02:99:79:a0:00:68:1c:dd:9e:65:48:9f:
a6:a3:96:35:24:7b:50:57:4e:e9:0b:51:6d:7c:aa:1c:f2:89:
b9:7b:e4:5e:f3:4e:38:d8:90:e6:d1:10:c0:38:96:6f:17:02:
72:6c:36:6e:ed:4c:d8:c2:94:04:05:a2:b3:fc:91:c9:f2:2a:
d3:87:f9:c2:90:1e:30:86:f4:ce:8b:78:78:c5:d8:9a:26:73:
ee:4e:db:87:ff:f3:e5:60:f3:55:7d:9e:10:1b:e5:44:0c:22:
41:10:2d:58:f4:3d:fe:f0:c2:6f:b4:3b:b2:e1:8a:91:0f:a5:
b1:03:bd:a4:be:56:f0:6a:6b:48:11:97:a8:42:3c:45:bd:94:
eb:29:71:04:ee:66:d4:83:fd:54:99:4d:06:74:05:08:8c:06:
81:73:97:f4:d6:ab:8b:4e:cc:b7:0f:79:7f:1c:f1:19:b0:ef:
e0:a9:c9:65:fc:d9:71:f1:75:2f:54:b3:7e:38:3b:6f:6a:59:
97:a6:90:ca:cf:3e:c2:60:06:fa:fa:61:6c:4f:a7:77:ca:cf:
c4:75:ff:70:34:14:f1:ae:f1:88:62:96:cf:61:e4:6d:19:e8:
50:90:7a:f9:c5:79:03:54:3d:58:ea:60:8d:02:c7:8a:fd:79:
d0:65:89:d4
-----BEGIN CERTIFICATE-----
MIIFFzCCA/+gAwIBAgISAYzIAnzNXe4H2Atl9vL+rn+rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjQwMTAyMDIzMDU1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MWVhYTQ4MjUzZTVjMTRkYTcyYjUwMzQ2ZDIwNzkwMWIzYzY4Y2U5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjKcQOJRSnEQLQAD8XHHFaEzf6Txs
GcQKxAtwBAOWYYrF2z/4Wxd0B6fsYx4Q+AW+JWc0S2ZOyPZ+gF/IusUoeYNRywY2
VxBg8qS+XghU2jTi4kEcWmWAJUX4ljctpqndvRar7vyl+IIIDXG1+WLJ2em0Ur5M
2UZAj9GHXS6XQm9XRVHlsl18jeovv0lXgS92kcmUUkrfulmg/0sbR71DJnb73oMc
CcAedU1gZLgPKeoehn7JCXSvAMIOnht2GVkINSBGcAKIUTfeda9qPh8+R+sz8w5+
0szq6Z0eYewLpVDylK29mXBYPLABg+XAsKUGPxI/Mc9IMsNXnhU4W3ISuQIDAQAB
o4ICIzCCAh8wHQYDVR0OBBYEFHHqpIJT5cFNpytQNG0geQGzxozpMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvY2Vxa2dsUGx3VTJuSzFBMGJTQjVBYlBHak9rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQAXDwjAwQB
ueY2AwQBwSVAMAwDBADCIykDBADCIyowDQYJKoZIhvcNAQELBQADggEBAADlWBZ6
BgKZeaAAaBzdnmVIn6ajljUke1BXTukLUW18qhzyibl75F7zTjjYkObREMA4lm8X
AnJsNm7tTNjClAQForP8kcnyKtOH+cKQHjCG9M6LeHjF2Jomc+5O24f/8+Vg81V9
nhAb5UQMIkEQLVj0Pf7wwm+0O7LhipEPpbEDvaS+VvBqa0gRl6hCPEW9lOspcQTu
ZtSD/VSZTQZ0BQiMBoFzl/TWq4tOzLcPeX8c8Rmw7+CpyWX82XHxdS9Us344O29q
WZemkMrPPsJgBvr6YWxPp3fKz8R1/3A0FPGu8Yhils9h5G0Z6FCQevnFeQNUPVjq
YI0Cx4r9edBlidQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:28 2024 by rpki-client on console-ams.rpki-client.org