Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/I_w0J1VIt7mF7se_gIhWK4w8iTE.roa
File: I_w0J1VIt7mF7se_gIhWK4w8iTE.roa (raw, json)
Hash identifier: Q6lHCtczCcbruum+kht36VQiQgklD9vPwOjZtNYgh00=
Subject key identifier: 23:FC:34:27:55:48:B7:B9:85:EE:C7:BF:80:88:56:2B:8C:3C:89:31
Certificate issuer: /CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Certificate serial: 018A400A1DEE82FD460B653A5B1133260E19
Authority key identifier: 08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/I_w0J1VIt7mF7se_gIhWK4w8iTE.roa
Signing time: Tue 29 Aug 2023 06:45:19 +0000
ROA not before: Tue 29 Aug 2023 06:45:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48715
IP address blocks: 78.110.120.0/22 maxlen: 24
185.36.228.0/24 maxlen: 24
185.141.105.0/24 maxlen: 24
185.141.104.0/24 maxlen: 24
185.141.104.0/22 maxlen: 22
185.141.107.0/24 maxlen: 24
185.141.106.0/24 maxlen: 24
185.18.212.0/22 maxlen: 22
185.18.212.0/24 maxlen: 24
185.18.213.0/24 maxlen: 24
185.18.214.0/24 maxlen: 24
185.18.215.0/24 maxlen: 24
185.173.129.0/24 maxlen: 24
185.173.130.0/24 maxlen: 24
195.211.44.0/24 maxlen: 24
195.211.44.0/22 maxlen: 22
195.211.47.0/24 maxlen: 24
195.211.45.0/24 maxlen: 24
195.211.46.0/24 maxlen: 24
195.110.38.0/23 maxlen: 23
185.233.131.0/24 maxlen: 24
91.236.168.0/24 maxlen: 24
91.236.168.0/23 maxlen: 23
91.236.169.0/24 maxlen: 24
185.213.195.0/24 maxlen: 24
152.89.44.0/24 maxlen: 24
152.89.44.0/22 maxlen: 22
152.89.47.0/24 maxlen: 24
185.170.8.0/24 maxlen: 24
152.89.46.0/24 maxlen: 24
152.89.45.0/24 maxlen: 24
185.58.240.0/22 maxlen: 24
185.51.200.0/22 maxlen: 22
185.51.200.0/24 maxlen: 24
185.51.203.0/24 maxlen: 24
185.51.201.0/24 maxlen: 24
185.51.202.0/24 maxlen: 24
185.112.150.0/23 maxlen: 23
185.112.150.0/24 maxlen: 24
185.206.231.0/24 maxlen: 24
185.112.151.0/24 maxlen: 24
185.112.149.0/24 maxlen: 24
185.121.131.0/24 maxlen: 24
185.121.130.0/24 maxlen: 24
185.121.130.0/23 maxlen: 23
88.135.38.0/24 maxlen: 24
88.135.36.0/22 maxlen: 22
88.135.36.0/24 maxlen: 24
88.135.37.0/24 maxlen: 24
185.141.132.0/24 maxlen: 24
185.141.132.0/22 maxlen: 22
185.141.134.0/24 maxlen: 24
185.141.135.0/24 maxlen: 24
185.141.133.0/24 maxlen: 24
185.252.200.0/24 maxlen: 24
185.235.245.0/24 maxlen: 24
188.209.152.0/24 maxlen: 24
188.209.152.0/23 maxlen: 23
188.209.153.0/24 maxlen: 24
88.135.39.0/24 maxlen: 24
185.128.138.0/24 maxlen: 24
185.128.139.0/24 maxlen: 24
185.128.136.0/22 maxlen: 22
185.128.137.0/24 maxlen: 24
185.128.136.0/24 maxlen: 24
2a0a:5e80::/48 maxlen: 48
2a0a:5e80::/64 maxlen: 64
2a0a:5e80::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 25 Sep 2023 09:12:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:40:0a:1d:ee:82:fd:46:0b:65:3a:5b:11:33:26:0e:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Validity
Not Before: Aug 29 06:45:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=23fc34275548b7b985eec7bf8088562b8c3c8931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:8e:68:9a:d1:91:25:02:d6:83:8f:d1:ad:6a:
84:ff:8d:6d:f1:16:46:8c:f5:76:19:8d:64:b2:8b:
71:bb:e7:d9:74:d0:a9:42:7d:73:77:84:ff:d5:75:
f8:f9:da:64:6e:4c:0e:9f:53:78:b9:b2:9b:14:f5:
b5:29:e8:69:bc:6b:9a:1e:cd:39:31:bb:f2:f8:da:
1c:f8:51:22:18:85:a2:c3:19:ed:8b:0f:52:1d:f4:
18:54:75:f7:fb:64:d4:fd:f7:a7:78:e5:32:12:4e:
64:56:83:98:d9:c2:5b:02:8e:c5:f6:0c:b6:31:f9:
e2:ee:88:39:4c:bd:e3:cb:4d:86:26:e5:13:18:2a:
ff:4e:fb:5d:f9:ff:2c:2b:79:0e:d9:37:68:85:7b:
91:37:9a:9d:cc:0a:65:de:93:88:7d:21:f8:60:df:
a3:3e:06:9e:b0:21:2b:33:d5:00:0a:91:6a:0f:11:
24:d1:4c:a3:b4:14:a8:90:e4:ce:9f:65:2c:5e:4a:
95:1a:5b:30:45:06:18:c4:8d:ae:6a:f2:ea:2f:44:
28:d0:b3:f6:d2:0e:ee:a8:80:40:39:81:29:4f:ee:
91:00:03:26:0b:c1:37:68:39:b9:ab:b3:88:83:bf:
e5:1a:bd:7d:e7:18:9f:db:19:5d:e2:f6:95:de:b7:
07:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:FC:34:27:55:48:B7:B9:85:EE:C7:BF:80:88:56:2B:8C:3C:89:31
X509v3 Authority Key Identifier:
keyid:08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/I_w0J1VIt7mF7se_gIhWK4w8iTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/CBt6IuUc-5z4QgXkRJmYrVXY8GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.110.120.0/22
88.135.36.0/22
91.236.168.0/23
152.89.44.0/22
185.18.212.0/22
185.36.228.0/24
185.51.200.0/22
185.58.240.0/22
185.112.149.0-185.112.151.255
185.121.130.0/23
185.128.136.0/22
185.141.104.0/22
185.141.132.0/22
185.170.8.0/24
185.173.129.0-185.173.130.255
185.206.231.0/24
185.213.195.0/24
185.233.131.0/24
185.235.245.0/24
185.252.200.0/24
188.209.152.0/23
195.110.38.0/23
195.211.44.0/22
IPv6:
2a0a:5e80::/29
Signature Algorithm: sha256WithRSAEncryption
2a:f7:9b:2f:fa:e0:61:b2:58:7e:2b:de:ec:bc:9c:db:01:8a:
c1:85:01:b2:14:7d:db:d6:6e:e1:a4:b5:10:39:a7:4e:4e:49:
ff:03:91:7b:56:c0:e0:c0:ac:00:a1:ca:7b:03:66:4f:a0:b0:
58:72:8a:95:c3:9b:19:b6:b6:43:18:aa:7b:c3:ea:aa:b0:07:
15:f6:08:60:0d:a7:94:b4:c5:6e:c2:0c:93:bd:39:5a:54:12:
b6:70:d3:9d:4c:00:77:55:71:b6:67:bf:e9:a7:50:96:1c:66:
32:24:a3:6e:48:f9:4a:35:c1:bc:b8:62:dd:e1:a6:0d:df:b0:
19:f3:22:06:d9:6f:80:3e:4b:cc:e2:b0:62:06:3e:f4:4b:60:
da:fd:8f:ac:cf:d6:ba:52:7c:0e:dc:6f:98:6e:35:67:f0:12:
f4:bf:53:4c:2f:a6:4a:ea:71:76:42:61:7e:7e:14:24:97:cb:
f9:2d:50:c2:ad:12:ce:ab:2c:33:94:f2:b6:dc:dd:82:67:cb:
cb:2b:f9:ab:3c:c4:0b:99:43:e1:38:87:b7:95:e0:e3:ca:6b:
63:9b:ef:29:c7:6f:45:e5:26:22:28:ef:c4:8e:c7:ae:bf:00:
20:da:c4:2b:78:b6:2e:87:89:9d:01:d2:24:ea:04:a9:db:5e:
a8:ad:24:31
-----BEGIN CERTIFICATE-----
MIIFpTCCBI2gAwIBAgISAYpACh3ugv1GC2U6WxEzJg4ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4MWI3YTIyZTUxY2ZiOWNmODQyMDVlNDQ0OTk5OGFkNTVk
OGYwNjUwHhcNMjMwODI5MDY0NTE5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyM2ZjMzQyNzU1NDhiN2I5ODVlZWM3YmY4MDg4NTYyYjhjM2M4OTMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj45omtGRJQLWg4/RrWqE/41t8RZG
jPV2GY1ksotxu+fZdNCpQn1zd4T/1XX4+dpkbkwOn1N4ubKbFPW1KehpvGuaHs05
Mbvy+Noc+FEiGIWiwxntiw9SHfQYVHX3+2TU/feneOUyEk5kVoOY2cJbAo7F9gy2
Mfni7og5TL3jy02GJuUTGCr/Tvtd+f8sK3kO2TdohXuRN5qdzApl3pOIfSH4YN+j
PgaesCErM9UACpFqDxEk0UyjtBSokOTOn2UsXkqVGlswRQYYxI2uavLqL0Qo0LP2
0g7uqIBAOYEpT+6RAAMmC8E3aDm5q7OIg7/lGr195xif2xld4vaV3rcHcQIDAQAB
o4ICsTCCAq0wHQYDVR0OBBYEFCP8NCdVSLe5he7Hv4CIViuMPIkxMB8GA1UdIwQY
MBaAFAgbeiLlHPuc+EIF5ESZmK1V2PBlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0J0Nkl1VWMtNXo0UWdYa1JKbVlyVlhZOEdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9jNTE1YzktZGYwOC00MjZjLTgwZTYt
MDM2NzI2OGZmODcxLzEvSV93MEoxVkl0N21GN3NlX2dJaFdLNHc4aVRFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy9jNTE1YzktZGYwOC00MjZjLTgwZTYtMDM2NzI2OGZmODcx
LzEvQ0J0Nkl1VWMtNXo0UWdYa1JKbVlyVlhZOEdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHGBggrBgEFBQcBBwEB/wSBtjCBszCBoQQCAAEwgZoDBAJO
bngDBAJYhyQDBAFb7KgDBAKYWSwDBAK5EtQDBAC5JOQDBAK5M8gDBAK5OvAwDAME
ALlwlQMEA7lwkAMEAbl5ggMEArmAiAMEArmNaAMEArmNhAMEALmqCDAMAwQAua2B
AwQAua2CAwQAuc7nAwQAudXDAwQAuemDAwQAuev1AwQAufzIAwQBvNGYAwQBw24m
AwQCw9MsMA0EAgACMAcDBQMqCl6AMA0GCSqGSIb3DQEBCwUAA4IBAQAq95sv+uBh
slh+K97svJzbAYrBhQGyFH3b1m7hpLUQOadOTkn/A5F7VsDgwKwAocp7A2ZPoLBY
coqVw5sZtrZDGKp7w+qqsAcV9ghgDaeUtMVuwgyTvTlaVBK2cNOdTAB3VXG2Z7/p
p1CWHGYyJKNuSPlKNcG8uGLd4aYN37AZ8yIG2W+APkvM4rBiBj70S2Da/Y+sz9a6
UnwO3G+YbjVn8BL0v1NML6ZK6nF2QmF+fhQkl8v5LVDCrRLOqywzlPK23N2CZ8vL
K/mrPMQLmUPhOIe3leDjymtjm+8px29F5SYiKO/EjseuvwAg2sQreLYuh4mdAdIk
6gSp216orSQx
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:49 2024 by rpki-client on console-ams.rpki-client.org