Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/YOd-iSOW2mQxKMAwcEdg7R7A8hE.roa
File: YOd-iSOW2mQxKMAwcEdg7R7A8hE.roa (raw, json)
Hash identifier: F/KptfoXHSj9f6vdMNUUjwa6lK5wapYtTZa6iQLLN6g=
Subject key identifier: 60:E7:7E:89:23:96:DA:64:31:28:C0:30:70:47:60:ED:1E:C0:F2:11
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 018EB9CBA27B5B0656B4107BB06F51EDD51E
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/YOd-iSOW2mQxKMAwcEdg7R7A8hE.roa
Signing time: Sun 07 Apr 2024 18:21:54 +0000
ROA not before: Sun 07 Apr 2024 18:21:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15723
IP address blocks: 46.23.100.0/22 maxlen: 22
62.217.129.0/24 maxlen: 24
62.217.131.0/24 maxlen: 24
62.217.134.0/24 maxlen: 24
62.217.138.0/24 maxlen: 24
62.217.141.0/24 maxlen: 24
62.217.142.0/24 maxlen: 24
62.217.146.0/24 maxlen: 24
62.217.147.0/24 maxlen: 24
62.217.148.0/24 maxlen: 24
62.217.149.0/24 maxlen: 24
62.217.151.0/24 maxlen: 24
62.217.156.0/24 maxlen: 24
62.217.157.0/24 maxlen: 24
62.217.158.0/24 maxlen: 24
62.217.159.0/24 maxlen: 24
164.215.97.0/24 maxlen: 24
185.81.217.0/24 maxlen: 24
188.64.8.0/24 maxlen: 24
188.64.9.0/24 maxlen: 24
188.64.10.0/24 maxlen: 24
188.64.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Apr 2024 17:24:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:b9:cb:a2:7b:5b:06:56:b4:10:7b:b0:6f:51:ed:d5:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Apr 7 18:21:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=60e77e892396da643128c030704760ed1ec0f211
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:18:3b:cd:b9:91:4a:41:42:05:d4:7b:32:f5:
f3:38:2b:4f:23:c7:1c:19:12:ef:2c:8c:83:81:d9:
f9:f9:2c:90:f1:3d:35:19:cd:2d:64:9f:e3:30:d6:
93:cf:39:38:2d:b4:f6:02:65:77:76:42:9f:6d:42:
f0:4f:95:75:29:95:de:24:54:ef:d7:4c:0f:0d:e8:
cc:86:05:3a:14:ed:87:54:ca:c5:ca:04:29:97:ef:
11:62:5f:9f:d7:43:5a:c8:f9:eb:61:8e:d3:3f:9c:
5b:f2:d4:9e:69:fa:18:7a:8d:3a:85:21:67:ed:f3:
64:bf:09:52:65:32:f8:22:50:d0:48:dc:0c:93:af:
ac:de:77:9a:39:e9:a5:eb:84:e0:d5:73:df:4c:59:
d1:43:da:3d:c4:3f:67:f9:55:db:53:81:26:58:e3:
c1:d5:86:7c:e8:e6:12:af:f9:14:67:d8:21:bf:37:
cc:9d:b7:69:0b:5b:26:e7:85:e3:b6:26:a8:b3:4a:
38:58:78:31:ec:a4:2b:74:b8:e7:95:0f:40:b0:e2:
ff:2c:99:ad:58:02:53:dc:0e:24:8b:4d:2e:2e:18:
b6:4d:72:41:66:91:9c:d1:76:cc:05:1c:5f:99:28:
4a:08:b7:e6:71:50:72:14:77:bc:b5:69:a0:c1:b1:
02:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:E7:7E:89:23:96:DA:64:31:28:C0:30:70:47:60:ED:1E:C0:F2:11
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/YOd-iSOW2mQxKMAwcEdg7R7A8hE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.100.0/22
62.217.129.0/24
62.217.131.0/24
62.217.134.0/24
62.217.138.0/24
62.217.141.0-62.217.142.255
62.217.146.0-62.217.149.255
62.217.151.0/24
62.217.156.0/22
164.215.97.0/24
185.81.217.0/24
188.64.8.0/22
Signature Algorithm: sha256WithRSAEncryption
61:98:df:70:2d:43:62:8c:50:25:ac:5d:98:e0:ec:84:c8:e1:
fd:b2:73:5f:65:49:35:f2:0b:44:b7:f1:02:10:cb:e2:34:52:
03:09:43:d8:32:88:88:b6:a0:04:c7:73:b4:c3:ee:bc:79:02:
dd:c8:b3:22:d7:b7:6c:31:cb:0f:e2:e2:40:d8:10:29:7e:f4:
ac:8d:c5:52:11:da:4b:85:40:52:8a:f6:bd:7a:e7:37:91:2a:
5b:74:c8:8f:2a:0e:a3:b9:b9:43:c6:b9:e1:e8:4c:3d:1a:a7:
08:c5:62:c3:1d:a2:84:a3:bd:22:17:f3:46:49:4d:f3:ed:dc:
e9:6e:a3:1e:65:de:78:46:fe:4b:e2:a8:1f:2d:2c:08:64:69:
7b:fd:75:95:e7:69:f0:9c:f0:b9:06:9e:58:7c:47:9b:7f:64:
a6:e1:a4:22:a0:64:d4:22:c9:8d:01:ba:3c:12:2e:d5:9d:f8:
8b:18:9c:b5:ed:4d:ba:45:ba:2f:a1:05:60:fe:3b:24:1d:5b:
5a:01:ea:ed:22:e1:d2:d8:ea:f9:6b:89:ed:d3:d6:b7:22:4e:
3d:5f:96:a7:91:d4:a8:3e:33:9a:ba:14:1d:08:3e:0c:f5:e7:
bf:1d:a2:5b:c5:bd:ae:9d:a6:ad:90:44:35:ff:0b:28:a1:7e:
28:09:40:d5
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgISAY65y6J7WwZWtBB7sG9R7dUeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkMDZhNDJiYjI0NDZlNTFmMTkyZWEzNzViZGY3ZWVjNWE1
MWM3N2YwHhcNMjQwNDA3MTgyMTU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MGU3N2U4OTIzOTZkYTY0MzEyOGMwMzA3MDQ3NjBlZDFlYzBmMjExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2xg7zbmRSkFCBdR7MvXzOCtPI8cc
GRLvLIyDgdn5+SyQ8T01Gc0tZJ/jMNaTzzk4LbT2AmV3dkKfbULwT5V1KZXeJFTv
10wPDejMhgU6FO2HVMrFygQpl+8RYl+f10NayPnrYY7TP5xb8tSeafoYeo06hSFn
7fNkvwlSZTL4IlDQSNwMk6+s3neaOeml64Tg1XPfTFnRQ9o9xD9n+VXbU4EmWOPB
1YZ86OYSr/kUZ9ghvzfMnbdpC1sm54Xjtiaos0o4WHgx7KQrdLjnlQ9AsOL/LJmt
WAJT3A4ki00uLhi2TXJBZpGc0XbMBRxfmShKCLfmcVByFHe8tWmgwbECMwIDAQAB
o4ICWzCCAlcwHQYDVR0OBBYEFGDnfokjltpkMSjAMHBHYO0ewPIRMB8GA1UdIwQY
MBaAFH0GpCuyRG5R8ZLqN1vffuxaUcd/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUt
MmNmODA2YjJkMGYyLzEvWU9kLWlTT1cybVF4S01Bd2NFZGc3UjdBOGhFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUtMmNmODA2YjJkMGYy
LzEvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHEGCCsGAQUFBwEHAQH/BGIwYDBeBAIAATBYAwQCLhdkAwQA
PtmBAwQAPtmDAwQAPtmGAwQAPtmKMAwDBAA+2Y0DBAA+2Y4wDAMEAT7ZkgMEAT7Z
lAMEAD7ZlwMEAj7ZnAMEAKTXYQMEALlR2QMEArxACDANBgkqhkiG9w0BAQsFAAOC
AQEAYZjfcC1DYoxQJaxdmODshMjh/bJzX2VJNfILRLfxAhDL4jRSAwlD2DKIiLag
BMdztMPuvHkC3cizIte3bDHLD+LiQNgQKX70rI3FUhHaS4VAUor2vXrnN5EqW3TI
jyoOo7m5Q8a54ehMPRqnCMViwx2ihKO9IhfzRklN8+3c6W6jHmXeeEb+S+KoHy0s
CGRpe/11ledp8JzwuQaeWHxHm39kpuGkIqBk1CLJjQG6PBIu1Z34ixicte1NukW6
L6EFYP47JB1bWgHq7SLh0tjq+WuJ7dPWtyJOPV+Wp5HUqD4zmroUHQg+DPXnvx2i
W8W9rp2mrZBENf8LKKF+KAlA1Q==
-----END CERTIFICATE-----
Generated at Mon Apr 8 20:02:54 2024 by rpki-client on console-fra.rpki-client.org