Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/974213-49fd-4c5c-8014-bd3a630ee5cc/1/sDb3Wu5TX-kA8KFUjNWTcfdlzcI.roa
File: sDb3Wu5TX-kA8KFUjNWTcfdlzcI.roa (raw, json)
Hash identifier: Zkj7g0By2wTrwG92nCAexqScSqvi2lxPogKVbrtGcso=
Subject key identifier: B0:36:F7:5A:EE:53:5F:E9:00:F0:A1:54:8C:D5:93:71:F7:65:CD:C2
Certificate issuer: /CN=602be661e57c14659a608e9f6be605d6250047fc
Certificate serial: 01856FF0298E0EECB94434FE0AEF2E2CBB36
Authority key identifier: 60:2B:E6:61:E5:7C:14:65:9A:60:8E:9F:6B:E6:05:D6:25:00:47:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YCvmYeV8FGWaYI6fa-YF1iUAR_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/974213-49fd-4c5c-8014-bd3a630ee5cc/1/sDb3Wu5TX-kA8KFUjNWTcfdlzcI.roa
Signing time: Mon 02 Jan 2023 00:44:48 +0000
ROA not before: Mon 02 Jan 2023 00:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6876
IP address blocks: 31.31.96.0/19 maxlen: 19
185.184.168.0/22 maxlen: 22
185.177.240.0/22 maxlen: 22
212.178.0.0/19 maxlen: 19
45.156.36.0/22 maxlen: 22
185.247.20.0/22 maxlen: 22
212.90.124.0/22 maxlen: 22
62.16.0.0/19 maxlen: 19
37.203.0.0/19 maxlen: 19
85.238.96.0/19 maxlen: 19
188.115.128.0/18 maxlen: 18
185.228.104.0/22 maxlen: 22
185.23.104.0/22 maxlen: 22
193.178.48.0/22 maxlen: 22
176.119.64.0/18 maxlen: 18
79.140.0.0/20 maxlen: 20
95.214.40.0/22 maxlen: 22
45.130.0.0/22 maxlen: 22
130.0.32.0/19 maxlen: 19
185.166.220.0/22 maxlen: 22
195.138.64.0/19 maxlen: 19
88.214.8.0/22 maxlen: 22
185.206.36.0/22 maxlen: 22
45.140.120.0/22 maxlen: 22
185.226.112.0/22 maxlen: 22
185.145.104.0/22 maxlen: 22
2a04:2c00::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 20 Oct 2023 13:51:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f0:29:8e:0e:ec:b9:44:34:fe:0a:ef:2e:2c:bb:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=602be661e57c14659a608e9f6be605d6250047fc
Validity
Not Before: Jan 2 00:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b036f75aee535fe900f0a1548cd59371f765cdc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:b9:6e:53:8b:5a:72:34:5e:e1:2b:0b:dd:8f:
86:12:27:ce:cd:68:0e:56:2f:b4:75:96:6f:84:17:
f8:bc:da:38:26:89:14:b3:45:7b:ce:8e:75:d6:f4:
84:8f:8c:bb:89:26:c3:28:ef:fe:64:64:b3:eb:77:
56:f3:10:51:4c:48:1d:e7:c0:7a:f0:84:2f:b8:09:
53:1c:de:71:4b:52:69:11:f4:03:f8:20:af:ad:11:
f4:7f:5f:80:13:0b:7e:97:b7:98:e1:fd:80:11:54:
2b:2f:ab:a8:b2:f3:fd:d3:72:cb:00:11:48:71:19:
ba:f1:c0:26:24:ae:bc:d1:c9:87:c0:b7:24:7a:87:
5d:32:3c:bb:ca:57:6b:49:cb:2d:96:48:f0:52:ae:
0e:a0:6b:b2:a2:72:46:7e:af:3e:00:ea:ea:9c:23:
a5:0d:11:2c:74:40:e4:14:e0:eb:8a:68:3e:a7:16:
12:10:a7:54:45:bf:d3:42:c9:01:12:01:5d:23:39:
4b:15:3d:b1:47:38:d0:e9:78:1a:b6:50:91:d9:a7:
80:b3:0f:f1:ac:d6:af:a1:55:ae:89:79:10:af:6a:
b8:1a:9e:ce:3c:f5:8f:8e:8c:17:67:4e:7a:15:c3:
d4:18:a0:0a:43:b9:59:37:a7:cc:cc:b2:4d:b8:03:
5d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:36:F7:5A:EE:53:5F:E9:00:F0:A1:54:8C:D5:93:71:F7:65:CD:C2
X509v3 Authority Key Identifier:
keyid:60:2B:E6:61:E5:7C:14:65:9A:60:8E:9F:6B:E6:05:D6:25:00:47:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YCvmYeV8FGWaYI6fa-YF1iUAR_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974213-49fd-4c5c-8014-bd3a630ee5cc/1/sDb3Wu5TX-kA8KFUjNWTcfdlzcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974213-49fd-4c5c-8014-bd3a630ee5cc/1/YCvmYeV8FGWaYI6fa-YF1iUAR_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.31.96.0/19
37.203.0.0/19
45.130.0.0/22
45.140.120.0/22
45.156.36.0/22
62.16.0.0/19
79.140.0.0/20
85.238.96.0/19
88.214.8.0/22
95.214.40.0/22
130.0.32.0/19
176.119.64.0/18
185.23.104.0/22
185.145.104.0/22
185.166.220.0/22
185.177.240.0/22
185.184.168.0/22
185.206.36.0/22
185.226.112.0/22
185.228.104.0/22
185.247.20.0/22
188.115.128.0/18
193.178.48.0/22
195.138.64.0/19
212.90.124.0/22
212.178.0.0/19
IPv6:
2a04:2c00::/29
Signature Algorithm: sha256WithRSAEncryption
5f:3b:ac:29:58:6f:9c:67:eb:95:b6:43:8c:d0:d8:3f:f5:b1:
49:c4:7c:ff:c3:02:5c:67:00:da:23:79:d6:5e:ea:8e:3b:76:
fa:ab:66:af:6a:00:71:03:a6:26:91:fa:61:90:c7:17:cf:96:
b9:88:5b:8e:05:e9:56:21:1a:5d:23:61:64:c7:db:16:96:e0:
27:66:b0:53:81:b4:be:f0:7a:1e:9d:0f:48:fc:e0:41:73:ba:
73:37:93:df:f1:8d:74:1f:47:95:e2:e3:91:5a:7e:7e:fb:b1:
e8:d7:5d:c6:1f:99:ab:07:14:30:c5:af:f7:62:f4:31:63:db:
42:6e:a5:85:a9:80:fd:99:c9:4a:17:62:15:59:ae:4c:d6:45:
e7:db:3d:6b:46:25:3d:16:0f:95:fd:a2:5a:4a:a9:95:5d:c6:
29:73:e4:c0:d4:f3:0d:b9:5b:8f:0a:0b:2d:bf:2f:9d:14:f0:
0e:ec:dc:c8:15:56:f6:ed:7b:df:16:dd:56:f9:ad:1f:d3:af:
26:eb:45:34:38:c8:59:b3:80:af:34:32:59:7a:d2:09:5f:0f:
1c:96:5c:68:6b:34:5c:99:6b:64:60:18:b5:ec:74:dd:0a:7d:
d6:12:f5:b9:d0:07:1b:d6:d7:0c:ff:92:fb:ac:8d:a3:78:7b:
54:e6:a9:61
-----BEGIN CERTIFICATE-----
MIIFpzCCBI+gAwIBAgISAYVv8CmODuy5RDT+Cu8uLLs2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwMmJlNjYxZTU3YzE0NjU5YTYwOGU5ZjZiZTYwNWQ2MjUw
MDQ3ZmMwHhcNMjMwMTAyMDA0NDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMDM2Zjc1YWVlNTM1ZmU5MDBmMGExNTQ4Y2Q1OTM3MWY3NjVjZGMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgbluU4tacjRe4SsL3Y+GEifOzWgO
Vi+0dZZvhBf4vNo4JokUs0V7zo511vSEj4y7iSbDKO/+ZGSz63dW8xBRTEgd58B6
8IQvuAlTHN5xS1JpEfQD+CCvrRH0f1+AEwt+l7eY4f2AEVQrL6uosvP903LLABFI
cRm68cAmJK680cmHwLckeoddMjy7yldrScstlkjwUq4OoGuyonJGfq8+AOrqnCOl
DREsdEDkFODrimg+pxYSEKdURb/TQskBEgFdIzlLFT2xRzjQ6XgatlCR2aeAsw/x
rNavoVWuiXkQr2q4Gp7OPPWPjowXZ056FcPUGKAKQ7lZN6fMzLJNuANdgQIDAQAB
o4ICszCCAq8wHQYDVR0OBBYEFLA291ruU1/pAPChVIzVk3H3Zc3CMB8GA1UdIwQY
MBaAFGAr5mHlfBRlmmCOn2vmBdYlAEf8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUN2bVllVjhGR1dhWUk2ZmEtWUYxaVVBUl93LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC85NzQyMTMtNDlmZC00YzVjLTgwMTQt
YmQzYTYzMGVlNWNjLzEvc0RiM1d1NVRYLWtBOEtGVWpOV1RjZmRsemNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC85NzQyMTMtNDlmZC00YzVjLTgwMTQtYmQzYTYzMGVlNWNj
LzEvWUN2bVllVjhGR1dhWUk2ZmEtWUYxaVVBUl93LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHIBggrBgEFBQcBBwEB/wSBuDCBtTCBowQCAAEwgZwDBAUf
H2ADBAUlywADBAItggADBAItjHgDBAItnCQDBAU+EAADBARPjAADBAVV7mADBAJY
1ggDBAJf1igDBAWCACADBAawd0ADBAK5F2gDBAK5kWgDBAK5ptwDBAK5sfADBAK5
uKgDBAK5ziQDBAK54nADBAK55GgDBAK59xQDBAa8c4ADBALBsjADBAXDikADBALU
WnwDBAXUsgAwDQQCAAIwBwMFAyoELAAwDQYJKoZIhvcNAQELBQADggEBAF87rClY
b5xn65W2Q4zQ2D/1sUnEfP/DAlxnANojedZe6o47dvqrZq9qAHEDpiaR+mGQxxfP
lrmIW44F6VYhGl0jYWTH2xaW4CdmsFOBtL7weh6dD0j84EFzunM3k9/xjXQfR5Xi
45Fafn77sejXXcYfmasHFDDFr/di9DFj20JupYWpgP2ZyUoXYhVZrkzWRefbPWtG
JT0WD5X9olpKqZVdxilz5MDU8w25W48KCy2/L50U8A7s3MgVVvbte98W3Vb5rR/T
rybrRTQ4yFmzgK80Mll60glfDxyWXGhrNFyZa2RgGLXsdN0KfdYS9bnQBxvW1wz/
kvusjaN4e1TmqWE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:09 2024 by rpki-client on console-fra.rpki-client.org