Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uOn557ahtjXMdHBMS-vXie7mPi0.roa
File: uOn557ahtjXMdHBMS-vXie7mPi0.roa (raw, json)
Hash identifier: ynczOPaixhfjEzg4UkDnSHFpAUnDNN43uNwwpqv/RsQ=
Subject key identifier: B8:E9:F9:E7:B6:A1:B6:35:CC:74:70:4C:4B:EB:D7:89:EE:E6:3E:2D
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A4644BF5726C6FCFF67D28A4305160804
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uOn557ahtjXMdHBMS-vXie7mPi0.roa
Signing time: Wed 30 Aug 2023 11:47:05 +0000
ROA not before: Wed 30 Aug 2023 11:47:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.225.22.0/24 maxlen: 24
185.225.20.0/24 maxlen: 24
185.218.101.0/24 maxlen: 24
185.228.75.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.251.231.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.225.0.0/24 maxlen: 24
185.194.177.0/24 maxlen: 24
185.223.81.0/24 maxlen: 24
185.223.83.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
185.222.29.0/24 maxlen: 24
193.58.144.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
193.58.147.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
194.5.65.0/24 maxlen: 24
185.220.249.0/24 maxlen: 24
185.210.232.0/24 maxlen: 24
185.227.145.0/24 maxlen: 24
185.226.106.0/24 maxlen: 24
185.221.23.0/24 maxlen: 24
185.221.20.0/24 maxlen: 24
185.221.22.0/24 maxlen: 24
185.209.75.0/24 maxlen: 24
185.246.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Aug 2023 15:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:46:44:bf:57:26:c6:fc:ff:67:d2:8a:43:05:16:08:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 30 11:47:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8e9f9e7b6a1b635cc74704c4bebd789eee63e2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:54:d6:50:58:ce:52:5f:ca:c2:87:bd:24:95:
f2:97:a7:30:f3:18:fa:45:fe:59:4b:63:9d:a0:66:
af:11:95:48:52:5d:a4:e1:03:c2:ca:d7:43:7f:5a:
a8:35:00:57:4c:19:b9:5a:9a:46:84:0e:b7:d3:ce:
89:fc:ec:f4:ce:d9:72:bb:bd:42:e7:2b:66:9e:53:
21:3b:59:3e:d7:ae:89:25:37:ec:0b:8e:4e:71:c7:
b7:bb:cf:7e:1b:fe:29:a5:7c:d8:92:da:87:ea:bf:
4e:77:bf:60:95:61:a3:55:fb:94:ec:d3:f1:4d:c6:
81:cd:c6:04:1f:ad:55:6c:d4:6e:42:c4:9c:81:42:
27:27:d9:14:62:c1:e7:b1:7e:f5:18:b4:0d:59:5a:
48:9c:1c:a7:32:25:f5:27:55:96:bb:b0:0b:a4:04:
c5:77:65:1c:4e:85:c2:d6:6a:34:fd:1a:37:3e:ef:
88:0c:88:a7:7d:af:35:e1:55:10:6a:0d:ca:d9:43:
bf:8d:c8:ac:1e:18:5f:2f:b2:22:81:5d:5b:86:51:
87:f9:62:ae:93:94:3c:09:84:02:0c:d9:ed:93:f0:
aa:05:f4:fb:d5:da:8d:76:64:bc:0e:a5:c7:b8:5f:
d4:e1:56:83:a7:db:3c:26:c4:d2:4d:4f:02:03:d6:
c3:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:E9:F9:E7:B6:A1:B6:35:CC:74:70:4C:4B:EB:D7:89:EE:E6:3E:2D
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uOn557ahtjXMdHBMS-vXie7mPi0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.147.224.0/24
185.194.177.0/24
185.209.75.0/24
185.210.232.0/24
185.218.101.0/24
185.220.249.0/24
185.221.20.0/24
185.221.22.0/23
185.222.29.0/24
185.223.80.0/23
185.223.83.0/24
185.225.0.0/23
185.225.20.0/24
185.225.22.0/24
185.226.106.0/24
185.227.145.0/24
185.228.75.0/24
185.246.115.0/24
185.251.229.0/24
185.251.231.0/24
193.58.144.0/24
193.58.146.0/23
194.5.65.0/24
Signature Algorithm: sha256WithRSAEncryption
af:dc:c8:87:6e:30:6b:a7:4c:3c:5f:81:b0:36:b3:76:ba:ab:
f1:5e:a7:8c:6d:31:2f:06:df:44:b7:0f:d3:7c:fb:f3:18:12:
ef:ec:3e:4f:ca:2d:a7:4e:80:9a:4c:b1:0c:bd:65:d3:c4:d2:
5e:69:ae:49:02:b7:7e:70:77:50:4e:3c:75:28:ff:61:fd:2b:
d5:4c:33:46:b3:4b:5f:9d:24:39:99:cb:bb:9e:e5:3d:9b:63:
e3:eb:1b:ef:da:78:fe:3c:7f:c3:12:3f:25:db:88:08:61:c9:
9d:f4:77:bd:c7:3c:e6:2d:68:e2:b6:2f:59:9e:55:c6:c3:5b:
39:b4:14:b1:5d:1a:83:b0:b0:3c:f7:a4:5d:77:c2:a8:12:4e:
4e:5e:ff:71:dd:c1:a0:0b:37:d4:55:cf:e1:a4:99:81:38:9c:
6a:ae:da:8d:16:5f:31:9c:fc:cb:38:35:7b:c5:92:63:5c:8e:
a1:09:b3:9d:dd:88:a1:54:f1:28:df:3c:7d:f2:70:8a:c6:83:
45:b4:57:d6:16:4e:8a:fb:30:08:e4:51:77:8e:f0:93:d6:fd:
3e:50:01:a0:03:8b:8b:1a:82:37:20:a0:8f:ed:08:cc:17:2d:
65:38:c8:69:bf:5a:9e:e2:b5:58:a2:96:ef:84:fd:6c:ee:91:
bb:d9:ba:88
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgISAYpGRL9XJsb8/2fSikMFFggEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMwODMwMTE0NzA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOGU5ZjllN2I2YTFiNjM1Y2M3NDcwNGM0YmViZDc4OWVlZTYzZTJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiVTWUFjOUl/Kwoe9JJXyl6cw8xj6
Rf5ZS2OdoGavEZVIUl2k4QPCytdDf1qoNQBXTBm5WppGhA63086J/Oz0ztlyu71C
5ytmnlMhO1k+166JJTfsC45Occe3u89+G/4ppXzYktqH6r9Od79glWGjVfuU7NPx
TcaBzcYEH61VbNRuQsScgUInJ9kUYsHnsX71GLQNWVpInBynMiX1J1WWu7ALpATF
d2UcToXC1mo0/Ro3Pu+IDIinfa814VUQag3K2UO/jcisHhhfL7IigV1bhlGH+WKu
k5Q8CYQCDNntk/CqBfT71dqNdmS8DqXHuF/U4VaDp9s8JsTSTU8CA9bDxwIDAQAB
o4ICmDCCApQwHQYDVR0OBBYEFLjp+ee2obY1zHRwTEvr14nu5j4tMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvdU9uNTU3YWh0alhNZEhCTVMtdlhpZTdtUGkwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGtBggrBgEFBQcBBwEB/wSBnTCBmjCBlwQCAAEwgZADBAAt
CBUDBAAtk+ADBAC5wrEDBAC50UsDBAC50ugDBAC52mUDBAC53PkDBAC53RQDBAG5
3RYDBAC53h0DBAG531ADBAC531MDBAG54QADBAC54RQDBAC54RYDBAC54moDBAC5
45EDBAC55EsDBAC59nMDBAC5++UDBAC5++cDBADBOpADBAHBOpIDBADCBUEwDQYJ
KoZIhvcNAQELBQADggEBAK/cyIduMGunTDxfgbA2s3a6q/Fep4xtMS8G30S3D9N8
+/MYEu/sPk/KLadOgJpMsQy9ZdPE0l5prkkCt35wd1BOPHUo/2H9K9VMM0azS1+d
JDmZy7ue5T2bY+PrG+/aeP48f8MSPyXbiAhhyZ30d73HPOYtaOK2L1meVcbDWzm0
FLFdGoOwsDz3pF13wqgSTk5e/3HdwaALN9RVz+GkmYE4nGqu2o0WXzGc/Ms4NXvF
kmNcjqEJs53diKFU8SjfPH3ycIrGg0W0V9YWTor7MAjkUXeO8JPW/T5QAaADi4sa
gjcgoI/tCMwXLWU4yGm/Wp7itViilu+E/WzukbvZuog=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:29 2024 by rpki-client on console-ams.rpki-client.org