Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/iXizZWe3D4zUKvSw50RFTPlcNfw.roa
File: iXizZWe3D4zUKvSw50RFTPlcNfw.roa (raw, json)
Hash identifier: /M3JCdBhHYaXgVTlTiWPuFhNSIw31mij4iJt+vmbCFw=
Subject key identifier: 89:78:B3:65:67:B7:0F:8C:D4:2A:F4:B0:E7:44:45:4C:F9:5C:35:FC
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018E1E75F3003D06E9740DCA568D73E766D3
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/iXizZWe3D4zUKvSw50RFTPlcNfw.roa
Signing time: Fri 08 Mar 2024 14:27:10 +0000
ROA not before: Fri 08 Mar 2024 14:27:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211619
IP address blocks: 5.182.115.0/24 maxlen: 24
45.9.168.0/24 maxlen: 24
77.242.152.0/24 maxlen: 24
77.242.154.0/24 maxlen: 24
83.137.157.0/24 maxlen: 24
83.137.158.0/24 maxlen: 24
88.209.206.0/24 maxlen: 24
88.209.219.0/24 maxlen: 24
88.209.228.0/24 maxlen: 24
88.209.236.0/22 maxlen: 22
88.209.236.0/24 maxlen: 24
88.209.237.0/24 maxlen: 24
88.209.239.0/24 maxlen: 24
88.209.246.0/24 maxlen: 24
88.209.247.0/24 maxlen: 24
88.209.254.0/24 maxlen: 24
92.52.217.0/24 maxlen: 24
92.52.218.0/24 maxlen: 24
194.41.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Mar 2024 13:37:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:1e:75:f3:00:3d:06:e9:74:0d:ca:56:8d:73:e7:66:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Mar 8 14:27:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8978b36567b70f8cd42af4b0e744454cf95c35fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:bb:e2:8f:13:2f:e4:01:4e:e7:19:4e:40:74:
e5:95:49:4b:a9:df:f6:ca:5a:f2:20:de:bb:d3:34:
e1:9b:36:fe:c3:38:e9:19:92:57:4f:42:09:f3:0d:
ea:f2:39:89:fd:a8:0d:58:37:33:a1:9e:bd:24:74:
eb:05:12:af:96:69:6c:30:a2:8e:30:af:9f:e0:6a:
b5:d8:86:a5:a4:ea:6f:c2:e5:c5:92:51:38:85:80:
cc:c5:b7:ce:6c:64:ee:4e:38:22:d3:02:26:47:88:
87:a0:e4:aa:fd:1d:ab:aa:51:e8:bf:45:3c:ab:b7:
2b:91:4d:41:c1:56:1c:69:27:16:57:c1:ad:c7:f4:
f6:65:a6:17:f5:17:4c:e4:d3:86:80:38:c9:3d:ba:
95:47:a8:e0:38:68:e9:a0:27:10:f0:da:5f:65:1e:
b9:30:36:63:6f:a6:3c:74:33:9c:cb:58:6f:40:27:
3f:2d:6a:f9:48:07:42:9f:14:47:e9:e7:bd:a6:e1:
03:64:e0:52:25:5f:9a:3e:b2:97:04:e8:7b:fd:6e:
df:d0:34:24:3e:40:08:2c:78:2a:97:b5:d3:8d:45:
3b:99:12:9c:5b:21:a4:81:e6:08:5d:a3:80:59:fa:
51:d5:59:74:43:fc:0b:43:a3:8a:4e:dc:b5:64:a3:
f4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:78:B3:65:67:B7:0F:8C:D4:2A:F4:B0:E7:44:45:4C:F9:5C:35:FC
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/iXizZWe3D4zUKvSw50RFTPlcNfw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.115.0/24
45.9.168.0/24
77.242.152.0/24
77.242.154.0/24
83.137.157.0-83.137.158.255
88.209.206.0/24
88.209.219.0/24
88.209.228.0/24
88.209.236.0/22
88.209.246.0/23
88.209.254.0/24
92.52.217.0-92.52.218.255
194.41.47.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:32:c5:0c:20:e4:6e:05:e0:37:52:57:a5:59:e6:55:8c:a0:
69:08:81:fe:bf:38:3d:04:d5:5e:d5:af:c5:09:78:f8:97:e8:
0e:5c:6e:2b:6a:b4:ea:ab:e8:75:87:c7:26:5b:47:1a:83:c0:
20:54:5a:03:ef:64:bb:b6:c6:c9:da:fd:0b:f8:ba:19:cf:db:
c2:ef:ad:47:38:af:40:9a:20:d7:57:65:56:db:0a:ce:d6:ee:
86:86:b5:da:c7:d6:07:96:ea:b4:30:e7:b8:0a:75:df:35:6d:
72:61:b6:14:b4:d6:21:83:a5:ef:4b:7c:bf:e4:ed:a7:c9:75:
2b:cf:44:e8:e1:89:b0:be:53:78:74:4d:34:c3:99:dd:d7:6b:
c3:aa:6d:f1:d1:06:ab:b2:54:9a:37:58:11:43:2e:77:22:28:
de:38:c6:b1:f7:68:f4:39:1f:b1:f4:7e:2a:21:b6:1c:5f:8a:
0e:89:4c:95:4c:6e:c1:a6:de:53:25:ab:e0:84:90:74:66:b1:
8c:50:98:fe:99:27:fb:f1:cf:2a:74:1f:ef:5f:e8:98:3f:1e:
9b:0b:a2:9d:cb:71:eb:f9:fc:c4:ec:4b:c8:81:b9:86:1a:8e:
57:50:63:0c:1a:3d:0e:bd:fb:1b:53:44:d9:bb:3e:c5:5f:3d:
b1:2f:6d:1e
-----BEGIN CERTIFICATE-----
MIIFVTCCBD2gAwIBAgISAY4edfMAPQbpdA3KVo1z52bTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx
MWRhMTAwHhcNMjQwMzA4MTQyNzEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OTc4YjM2NTY3YjcwZjhjZDQyYWY0YjBlNzQ0NDU0Y2Y5NWMzNWZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqrvijxMv5AFO5xlOQHTllUlLqd/2
ylryIN670zThmzb+wzjpGZJXT0IJ8w3q8jmJ/agNWDczoZ69JHTrBRKvlmlsMKKO
MK+f4Gq12IalpOpvwuXFklE4hYDMxbfObGTuTjgi0wImR4iHoOSq/R2rqlHov0U8
q7crkU1BwVYcaScWV8Gtx/T2ZaYX9RdM5NOGgDjJPbqVR6jgOGjpoCcQ8NpfZR65
MDZjb6Y8dDOcy1hvQCc/LWr5SAdCnxRH6ee9puEDZOBSJV+aPrKXBOh7/W7f0DQk
PkAILHgql7XTjUU7mRKcWyGkgeYIXaOAWfpR1Vl0Q/wLQ6OKTty1ZKP0MQIDAQAB
o4ICYTCCAl0wHQYDVR0OBBYEFIl4s2Vntw+M1Cr0sOdERUz5XDX8MB8GA1UdIwQY
MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt
N2U0ZDZmNmY2ZTY2LzEvaVhpelpXZTNENHpVS3ZTdzUwUkZUUGxjTmZ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2
LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHcGCCsGAQUFBwEHAQH/BGgwZjBkBAIAATBeAwQABbZzAwQA
LQmoAwQATfKYAwQATfKaMAwDBABTiZ0DBABTiZ4DBABY0c4DBABY0dsDBABY0eQD
BAJY0ewDBAFY0fYDBABY0f4wDAMEAFw02QMEAFw02gMEAMIpLzANBgkqhkiG9w0B
AQsFAAOCAQEADzLFDCDkbgXgN1JXpVnmVYygaQiB/r84PQTVXtWvxQl4+JfoDlxu
K2q06qvodYfHJltHGoPAIFRaA+9ku7bGydr9C/i6Gc/bwu+tRzivQJog11dlVtsK
ztbuhoa12sfWB5bqtDDnuAp13zVtcmG2FLTWIYOl70t8v+Ttp8l1K89E6OGJsL5T
eHRNNMOZ3ddrw6pt8dEGq7JUmjdYEUMudyIo3jjGsfdo9DkfsfR+KiG2HF+KDolM
lUxuwabeUyWr4ISQdGaxjFCY/pkn+/HPKnQf71/omD8emwuinctx6/n8xOxLyIG5
hhqOV1BjDBo9Dr37G1NE2bs+xV89sS9tHg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:56 2024 by rpki-client on console-ams.rpki-client.org