Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/iGeyafL2Q9p0ku8tB0dybFQDbAg.roa
File: iGeyafL2Q9p0ku8tB0dybFQDbAg.roa (raw, json)
Hash identifier: 8NY20UJOnHVR9aGW9Hb11DVTBaAy3Y9r+DQuIBVZemo=
Subject key identifier: 88:67:B2:69:F2:F6:43:DA:74:92:EF:2D:07:47:72:6C:54:03:6C:08
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018F0FCD5FF6D1F9ECFEA7939D83BF1D7795
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/iGeyafL2Q9p0ku8tB0dybFQDbAg.roa
Signing time: Wed 24 Apr 2024 11:11:08 +0000
ROA not before: Wed 24 Apr 2024 11:11:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211619
IP address blocks: 5.182.115.0/24 maxlen: 24
45.9.168.0/24 maxlen: 24
77.242.152.0/24 maxlen: 24
77.242.153.0/24 maxlen: 24
77.242.154.0/24 maxlen: 24
83.137.157.0/24 maxlen: 24
83.137.158.0/24 maxlen: 24
88.209.205.0/24 maxlen: 24
88.209.206.0/24 maxlen: 24
88.209.219.0/24 maxlen: 24
88.209.228.0/24 maxlen: 24
88.209.236.0/22 maxlen: 22
88.209.236.0/24 maxlen: 24
88.209.237.0/24 maxlen: 24
88.209.238.0/24 maxlen: 24
88.209.239.0/24 maxlen: 24
88.209.254.0/24 maxlen: 24
92.52.217.0/24 maxlen: 24
92.52.218.0/24 maxlen: 24
194.41.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 May 2024 08:08:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:0f:cd:5f:f6:d1:f9:ec:fe:a7:93:9d:83:bf:1d:77:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Apr 24 11:11:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8867b269f2f643da7492ef2d0747726c54036c08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:98:be:9e:cd:3b:89:c7:47:d6:ec:7c:33:ec:
18:c1:47:3c:ef:64:7d:d5:f9:e7:2b:4b:74:85:b9:
39:ee:d4:c9:5e:e3:b6:7b:79:a9:ee:e7:34:90:ab:
5f:94:8d:2c:6b:98:63:c6:1f:b1:ed:5b:67:0c:1f:
5e:34:b0:2d:67:68:cd:7f:8a:ba:80:fc:bf:c5:35:
8e:1d:65:b5:6c:3a:61:3f:dc:c5:75:1a:eb:5a:bb:
aa:3c:68:82:87:6e:26:75:8f:88:d8:3d:37:6c:78:
4d:b6:6b:38:59:08:b9:ac:4d:e7:22:56:95:0e:19:
80:b1:9d:81:19:d0:0f:22:4a:b8:88:50:98:b7:62:
03:d5:fa:e4:c4:73:c7:d7:1a:ad:65:ea:5d:fc:b3:
95:bc:6e:20:0f:7f:67:a6:b9:4a:ef:ad:cc:78:6b:
e0:59:ab:1b:6d:11:46:6d:97:f6:90:88:08:0a:fa:
3d:cb:9d:92:bd:98:00:57:99:ef:f4:68:60:bd:a3:
a5:69:a3:a0:7c:27:23:4b:d5:32:bc:76:10:e1:e4:
b8:ab:eb:7f:6f:38:36:dc:17:4e:3d:50:5e:52:22:
c1:2a:20:81:f3:e0:b2:2b:8b:56:2e:62:52:28:17:
c9:b4:c2:9a:f2:56:45:d6:ee:4a:f7:bb:72:a3:46:
96:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:67:B2:69:F2:F6:43:DA:74:92:EF:2D:07:47:72:6C:54:03:6C:08
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/iGeyafL2Q9p0ku8tB0dybFQDbAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.115.0/24
45.9.168.0/24
77.242.152.0-77.242.154.255
83.137.157.0-83.137.158.255
88.209.205.0-88.209.206.255
88.209.219.0/24
88.209.228.0/24
88.209.236.0/22
88.209.254.0/24
92.52.217.0-92.52.218.255
194.41.47.0/24
Signature Algorithm: sha256WithRSAEncryption
05:66:56:37:6d:42:a4:b1:83:70:a2:54:0b:60:2c:02:f6:b8:
21:3e:da:f0:c3:a2:43:89:8b:f3:88:47:8c:40:87:ae:cc:72:
52:50:dd:30:82:26:d0:e7:e9:33:47:4e:19:f7:3f:d7:34:6c:
31:28:ac:67:07:54:20:bf:2f:36:24:75:88:14:9d:22:fb:c7:
ad:e6:35:44:4d:bc:18:d6:99:e6:e5:18:c9:b0:49:10:b4:29:
00:ec:0c:59:28:ad:85:72:6d:f0:d4:b8:1a:eb:e4:78:6d:8c:
69:55:17:a7:4b:36:6b:31:67:34:e4:03:6a:5b:33:b4:d8:95:
5a:4d:88:58:72:93:db:f7:5a:f0:a1:78:d3:00:ef:73:6e:db:
24:36:9a:b1:c5:29:7e:4f:fc:d8:73:7b:f5:5f:2b:17:12:69:
1d:ca:e1:32:f1:23:7c:a1:57:4d:68:81:46:fd:16:33:7a:eb:
f0:aa:6f:f5:04:fd:bf:12:9b:22:80:ab:09:40:bd:a4:26:b2:
1e:71:30:3d:d2:42:74:f9:b5:53:0d:2c:60:40:c2:fd:a4:8b:
c7:f8:19:a3:bd:42:25:e6:c3:b3:12:11:5d:cf:64:d9:f1:fd:
b4:60:67:ee:62:0c:29:c6:6f:aa:fd:7a:33:dc:36:eb:42:cd:
47:6d:c5:73
-----BEGIN CERTIFICATE-----
MIIFWTCCBEGgAwIBAgISAY8PzV/20fns/qeTnYO/HXeVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx
MWRhMTAwHhcNMjQwNDI0MTExMTA4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ODY3YjI2OWYyZjY0M2RhNzQ5MmVmMmQwNzQ3NzI2YzU0MDM2YzA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm5i+ns07icdH1ux8M+wYwUc872R9
1fnnK0t0hbk57tTJXuO2e3mp7uc0kKtflI0sa5hjxh+x7VtnDB9eNLAtZ2jNf4q6
gPy/xTWOHWW1bDphP9zFdRrrWruqPGiCh24mdY+I2D03bHhNtms4WQi5rE3nIlaV
DhmAsZ2BGdAPIkq4iFCYt2ID1frkxHPH1xqtZepd/LOVvG4gD39nprlK763MeGvg
WasbbRFGbZf2kIgICvo9y52SvZgAV5nv9GhgvaOlaaOgfCcjS9UyvHYQ4eS4q+t/
bzg23BdOPVBeUiLBKiCB8+CyK4tWLmJSKBfJtMKa8lZF1u5K97tyo0aWowIDAQAB
o4ICZTCCAmEwHQYDVR0OBBYEFIhnsmny9kPadJLvLQdHcmxUA2wIMB8GA1UdIwQY
MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt
N2U0ZDZmNmY2ZTY2LzEvaUdleWFmTDJROXAwa3U4dEIwZHliRlFEYkFnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2
LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHsGCCsGAQUFBwEHAQH/BGwwajBoBAIAATBiAwQABbZzAwQA
LQmoMAwDBANN8pgDBABN8powDAMEAFOJnQMEAFOJnjAMAwQAWNHNAwQAWNHOAwQA
WNHbAwQAWNHkAwQCWNHsAwQAWNH+MAwDBABcNNkDBABcNNoDBADCKS8wDQYJKoZI
hvcNAQELBQADggEBAAVmVjdtQqSxg3CiVAtgLAL2uCE+2vDDokOJi/OIR4xAh67M
clJQ3TCCJtDn6TNHThn3P9c0bDEorGcHVCC/LzYkdYgUnSL7x63mNURNvBjWmebl
GMmwSRC0KQDsDFkorYVybfDUuBrr5HhtjGlVF6dLNmsxZzTkA2pbM7TYlVpNiFhy
k9v3WvCheNMA73Nu2yQ2mrHFKX5P/Nhze/VfKxcSaR3K4TLxI3yhV01ogUb9FjN6
6/Cqb/UE/b8SmyKAqwlAvaQmsh5xMD3SQnT5tVMNLGBAwv2ki8f4GaO9QiXmw7MS
EV3PZNnx/bRgZ+5iDCnGb6r9ejPcNutCzUdtxXM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:28 2024 by rpki-client on console-fra.rpki-client.org