Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/pp4V24lx4H3L1dPg1ctyQw4h_0E.roa
File: pp4V24lx4H3L1dPg1ctyQw4h_0E.roa (raw, json)
Hash identifier: hGlE7hW0R07/Vc/2kTOZMY4Cp8jHvSM1/aXVNalywCQ=
Subject key identifier: A6:9E:15:DB:89:71:E0:7D:CB:D5:D3:E0:D5:CB:72:43:0E:21:FF:41
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A476521EF230D7DBDC7FA7168CB8325B4
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/pp4V24lx4H3L1dPg1ctyQw4h_0E.roa
Signing time: Wed 30 Aug 2023 17:02:04 +0000
ROA not before: Wed 30 Aug 2023 17:02:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.225.22.0/24 maxlen: 24
185.225.20.0/24 maxlen: 24
185.228.75.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.251.231.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.225.0.0/24 maxlen: 24
185.194.177.0/24 maxlen: 24
185.223.83.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
185.222.29.0/24 maxlen: 24
193.58.144.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
193.58.147.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
194.5.65.0/24 maxlen: 24
185.220.249.0/24 maxlen: 24
185.210.232.0/24 maxlen: 24
185.227.145.0/24 maxlen: 24
185.226.106.0/24 maxlen: 24
185.221.23.0/24 maxlen: 24
185.221.20.0/24 maxlen: 24
185.221.22.0/24 maxlen: 24
185.246.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Aug 2023 12:55:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:47:65:21:ef:23:0d:7d:bd:c7:fa:71:68:cb:83:25:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 30 17:02:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a69e15db8971e07dcbd5d3e0d5cb72430e21ff41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1c:ba:0d:a1:18:d9:d7:aa:9d:28:9e:60:bf:
b3:01:0d:62:c4:ad:fc:41:a7:45:aa:a9:02:b4:0b:
32:52:38:d2:60:de:0a:26:1d:0c:44:31:41:d0:d8:
2f:94:ed:6d:f0:b2:e1:61:d8:47:bc:50:1f:34:ff:
b1:7c:43:0d:0a:e1:ec:12:7f:65:e4:b6:48:e5:fa:
9e:8c:4b:5b:37:23:2e:05:2a:ef:62:b0:61:78:e3:
40:cc:8f:ad:b2:e1:a0:4c:3f:66:e1:23:5a:00:07:
79:ff:ce:fe:0d:da:19:09:cc:f1:dd:96:36:10:47:
15:01:8e:31:46:17:60:45:5a:97:20:d6:2b:79:15:
5d:2f:68:4f:0f:ab:eb:e6:26:67:34:35:34:93:35:
96:a6:0b:e4:4f:3c:09:4c:5e:4b:a3:03:78:32:ce:
2a:21:0e:6e:32:bf:a9:20:25:b5:d6:84:8c:d8:a4:
2b:ef:7a:1e:81:4b:fd:6c:79:51:aa:92:f3:47:a3:
eb:64:92:99:2a:50:19:6a:54:e0:55:0d:70:88:e2:
b8:84:3d:ed:fd:bd:25:b5:8a:82:70:59:d8:0b:b2:
5e:96:6e:22:ad:ce:1e:89:fa:f6:c2:cd:16:c5:11:
f4:fb:0a:70:c6:91:47:91:e9:e5:bc:ef:68:a5:cd:
0b:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:9E:15:DB:89:71:E0:7D:CB:D5:D3:E0:D5:CB:72:43:0E:21:FF:41
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/pp4V24lx4H3L1dPg1ctyQw4h_0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.147.224.0/24
185.194.177.0/24
185.210.232.0/24
185.220.249.0/24
185.221.20.0/24
185.221.22.0/23
185.222.29.0/24
185.223.80.0/24
185.223.83.0/24
185.225.0.0/23
185.225.20.0/24
185.225.22.0/24
185.226.106.0/24
185.227.145.0/24
185.228.75.0/24
185.246.115.0/24
185.251.229.0/24
185.251.231.0/24
193.58.144.0/24
193.58.146.0/23
194.5.65.0/24
Signature Algorithm: sha256WithRSAEncryption
17:ff:a4:32:6f:bc:d0:f3:c3:1a:b8:8e:d1:a9:a7:86:29:2c:
90:19:87:70:e9:41:b0:80:96:b5:da:c1:d6:e8:31:b9:f5:12:
16:83:ca:df:08:0c:3e:e1:d1:5f:51:6a:69:bf:69:f3:e4:d4:
58:30:87:20:eb:f8:d9:29:aa:3a:0b:f3:f7:de:6b:ec:d7:ed:
fb:48:6d:e7:2c:3c:3e:70:8d:21:5a:11:4c:39:71:14:2e:2b:
66:6c:1b:94:0a:fc:0a:a3:f6:ac:6b:7a:ee:d0:1c:83:53:17:
dd:51:07:1b:fb:07:43:e3:c4:54:8d:b7:6a:c9:1c:92:99:53:
7b:a0:a8:68:8e:6f:a9:11:7c:a4:6c:8f:0d:52:6b:29:65:a3:
46:52:d7:00:72:df:ec:c7:1a:f9:b5:9f:1b:0c:5c:de:63:f4:
fb:8c:67:f8:98:a0:22:a1:a1:51:3b:6b:3a:86:90:27:6f:65:
6b:0c:0d:74:da:cf:58:b2:9a:ce:c3:96:08:1d:39:6b:55:f2:
5a:aa:56:78:a4:7d:46:e3:03:b0:49:69:24:49:cd:06:5b:4a:
59:2a:b2:3e:95:05:5f:b1:65:c7:e1:cc:cb:74:4e:c7:45:0b:
ac:36:2e:e9:76:b7:d7:b7:99:b1:ea:de:84:9f:7c:e4:de:4f:
d3:2d:fd:19
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgISAYpHZSHvIw19vcf6cWjLgyW0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMwODMwMTcwMjA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNjllMTVkYjg5NzFlMDdkY2JkNWQzZTBkNWNiNzI0MzBlMjFmZjQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvxy6DaEY2deqnSieYL+zAQ1ixK38
QadFqqkCtAsyUjjSYN4KJh0MRDFB0NgvlO1t8LLhYdhHvFAfNP+xfEMNCuHsEn9l
5LZI5fqejEtbNyMuBSrvYrBheONAzI+tsuGgTD9m4SNaAAd5/87+DdoZCczx3ZY2
EEcVAY4xRhdgRVqXINYreRVdL2hPD6vr5iZnNDU0kzWWpgvkTzwJTF5LowN4Ms4q
IQ5uMr+pICW11oSM2KQr73oegUv9bHlRqpLzR6PrZJKZKlAZalTgVQ1wiOK4hD3t
/b0ltYqCcFnYC7Jelm4irc4eifr2ws0WxRH0+wpwxpFHkenlvO9opc0LNwIDAQAB
o4ICjDCCAogwHQYDVR0OBBYEFKaeFduJceB9y9XT4NXLckMOIf9BMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvcHA0VjI0bHg0SDNMMWRQZzFjdHlRdzRoXzBFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGhBggrBgEFBQcBBwEB/wSBkTCBjjCBiwQCAAEwgYQDBAAt
CBUDBAAtk+ADBAC5wrEDBAC50ugDBAC53PkDBAC53RQDBAG53RYDBAC53h0DBAC5
31ADBAC531MDBAG54QADBAC54RQDBAC54RYDBAC54moDBAC545EDBAC55EsDBAC5
9nMDBAC5++UDBAC5++cDBADBOpADBAHBOpIDBADCBUEwDQYJKoZIhvcNAQELBQAD
ggEBABf/pDJvvNDzwxq4jtGpp4YpLJAZh3DpQbCAlrXawdboMbn1EhaDyt8IDD7h
0V9Ramm/afPk1FgwhyDr+NkpqjoL8/fea+zX7ftIbecsPD5wjSFaEUw5cRQuK2Zs
G5QK/Aqj9qxreu7QHINTF91RBxv7B0PjxFSNt2rJHJKZU3ugqGiOb6kRfKRsjw1S
ayllo0ZS1wBy3+zHGvm1nxsMXN5j9PuMZ/iYoCKhoVE7azqGkCdvZWsMDXTaz1iy
ms7DlggdOWtV8lqqVnikfUbjA7BJaSRJzQZbSlkqsj6VBV+xZcfhzMt0TsdFC6w2
Lul2t9e3mbHq3oSffOTeT9Mt/Rk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:29 2024 by rpki-client on console-ams.rpki-client.org