Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/_f4ar8C-nTafsWW7Y-NMJOvk3Wk.roa
File: _f4ar8C-nTafsWW7Y-NMJOvk3Wk.roa (raw, json)
Hash identifier: uaXLrvz5bUzaBwPb4+yY4AahicUfSXI40J5texI2QuE=
Subject key identifier: FD:FE:1A:AF:C0:BE:9D:36:9F:B1:65:BB:63:E3:4C:24:EB:E4:DD:69
Certificate issuer: /CN=4ecf53007c79cc5e2f2d7356ba9121a78c0c7714
Certificate serial: 018CC4254CB77B7C368A480A6FC9FB5D342B
Authority key identifier: 4E:CF:53:00:7C:79:CC:5E:2F:2D:73:56:BA:91:21:A7:8C:0C:77:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/_f4ar8C-nTafsWW7Y-NMJOvk3Wk.roa
Signing time: Mon 01 Jan 2024 08:30:27 +0000
ROA not before: Mon 01 Jan 2024 08:30:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29535
IP address blocks: 83.2.0.0/20 maxlen: 20
83.2.8.0/22 maxlen: 22
79.191.255.0/24 maxlen: 24
195.149.235.0/24 maxlen: 24
195.149.236.0/22 maxlen: 22
80.54.110.0/23 maxlen: 24
83.2.56.0/22 maxlen: 22
193.110.120.0/22 maxlen: 22
2a01:1101:5::/48 maxlen: 48
2001:7f8:27::/48 maxlen: 48
2a01:11f0::/28 maxlen: 28
Validation: Failed, certificate revoked on Tue 27 Feb 2024 09:52:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:4c:b7:7b:7c:36:8a:48:0a:6f:c9:fb:5d:34:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ecf53007c79cc5e2f2d7356ba9121a78c0c7714
Validity
Not Before: Jan 1 08:30:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fdfe1aafc0be9d369fb165bb63e34c24ebe4dd69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:73:0a:b4:a6:72:fb:a7:76:60:07:6d:60:74:
ff:c6:57:7c:34:9f:cd:44:1a:a4:cf:24:57:35:98:
0d:9a:93:15:af:57:b0:cd:e5:83:15:12:8d:ef:b0:
6c:49:95:68:86:73:6a:3d:77:ea:ac:16:a3:d6:f7:
78:b1:2f:6b:9f:71:60:cd:9c:5f:fb:28:31:40:72:
ac:e4:a1:46:0f:7e:67:60:97:b7:d4:44:8f:45:c2:
22:da:c5:fa:b3:d5:90:13:be:81:4d:a8:cc:82:5d:
33:45:90:0f:75:3c:a3:7e:48:03:3b:5f:11:d7:93:
37:c0:e7:f7:e7:cf:31:a0:39:11:a1:c5:55:b7:9a:
e6:10:2e:99:f1:ba:dd:d5:09:b9:1e:ff:3b:a1:da:
7b:40:7f:e9:45:c4:02:bf:a4:46:fd:fc:e7:a4:f4:
b1:f4:b6:a4:87:ff:6b:02:cf:c2:13:33:61:c8:7f:
f5:ad:c9:5c:4f:6e:f4:3e:1f:1a:55:bf:1e:a3:59:
82:54:bc:bf:92:db:60:24:01:74:42:9a:c0:e8:1f:
6d:6a:26:6a:ab:49:17:99:1c:dc:5b:da:f3:10:5b:
8f:d5:ba:88:86:3a:64:b8:e8:52:76:59:59:ba:1c:
c5:49:f1:7e:a4:f7:e2:1a:fd:cf:ff:f8:8a:ef:ea:
14:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:FE:1A:AF:C0:BE:9D:36:9F:B1:65:BB:63:E3:4C:24:EB:E4:DD:69
X509v3 Authority Key Identifier:
keyid:4E:CF:53:00:7C:79:CC:5E:2F:2D:73:56:BA:91:21:A7:8C:0C:77:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/_f4ar8C-nTafsWW7Y-NMJOvk3Wk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.191.255.0/24
80.54.110.0/23
83.2.0.0/20
83.2.56.0/22
193.110.120.0/22
195.149.235.0-195.149.239.255
IPv6:
2001:7f8:27::/48
2a01:1101:5::/48
2a01:11f0::/28
Signature Algorithm: sha256WithRSAEncryption
82:de:f4:3f:a3:72:15:bd:c2:62:24:b3:ba:9b:f7:c2:39:6a:
c1:72:fa:07:fd:fb:9c:3e:87:42:65:0d:dc:1d:5a:ff:34:4c:
00:88:fb:53:4e:d8:b0:26:87:93:53:9d:60:c0:18:42:39:e1:
f6:01:94:f5:4b:69:d7:90:3d:7f:60:ea:77:01:81:93:71:0f:
7f:45:58:b3:9c:f2:e5:d1:22:3c:96:d6:c6:49:1f:f4:7d:8f:
bd:c2:4a:12:90:b5:d4:83:29:c9:40:19:fd:4f:0e:cf:07:1b:
e3:22:f8:bc:2f:7b:e7:86:24:f0:f6:bd:6e:2a:d3:df:94:c0:
88:7c:d5:05:24:1a:22:20:53:68:23:bc:26:ca:5a:de:13:92:
40:ef:7f:72:7f:2b:33:37:4c:fc:cd:e5:62:ea:85:3c:f9:8f:
76:8d:26:65:2b:0f:07:e6:a2:cf:34:db:83:d5:d0:a4:d3:b7:
cb:fd:76:f5:2e:15:63:2e:74:97:34:07:ec:0b:84:3d:67:f1:
67:db:7e:0b:4c:66:02:1c:9a:e4:b2:e6:39:69:4f:df:cc:f5:
93:17:57:a9:f9:22:63:c7:e1:17:d3:da:86:03:c1:13:d9:86:
44:02:08:4b:a8:79:49:c9:bb:58:1b:a6:0c:c0:25:55:84:82:
87:6d:85:27
-----BEGIN CERTIFICATE-----
MIIFRDCCBCygAwIBAgISAYzEJUy3e3w2ikgKb8n7XTQrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlY2Y1MzAwN2M3OWNjNWUyZjJkNzM1NmJhOTEyMWE3OGMw
Yzc3MTQwHhcNMjQwMTAxMDgzMDI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZGZlMWFhZmMwYmU5ZDM2OWZiMTY1YmI2M2UzNGMyNGViZTRkZDY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoHMKtKZy+6d2YAdtYHT/xld8NJ/N
RBqkzyRXNZgNmpMVr1ewzeWDFRKN77BsSZVohnNqPXfqrBaj1vd4sS9rn3FgzZxf
+ygxQHKs5KFGD35nYJe31ESPRcIi2sX6s9WQE76BTajMgl0zRZAPdTyjfkgDO18R
15M3wOf3588xoDkRocVVt5rmEC6Z8brd1Qm5Hv87odp7QH/pRcQCv6RG/fznpPSx
9Lakh/9rAs/CEzNhyH/1rclcT270Ph8aVb8eo1mCVLy/kttgJAF0QprA6B9taiZq
q0kXmRzcW9rzEFuP1bqIhjpkuOhSdllZuhzFSfF+pPfiGv3P//iK7+oUhQIDAQAB
o4ICUDCCAkwwHQYDVR0OBBYEFP3+Gq/Avp02n7Flu2PjTCTr5N1pMB8GA1UdIwQY
MBaAFE7PUwB8ecxeLy1zVrqRIaeMDHcUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHM5VEFIeDV6RjR2TFhOV3VwRWhwNHdNZHhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi82NDhjNzUtMmJlOC00YmZkLWExYjEt
Y2I4YjNhMDk0MjA5LzEvX2Y0YXI4Qy1uVGFmc1dXN1ktTk1KT3ZrM1drLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi82NDhjNzUtMmJlOC00YmZkLWExYjEtY2I4YjNhMDk0MjA5
LzEvVHM5VEFIeDV6RjR2TFhOV3VwRWhwNHdNZHhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGYGCCsGAQUFBwEHAQH/BFcwVTAyBAIAATAsAwQAT7//AwQB
UDZuAwQEUwIAAwQCUwI4AwQCwW54MAwDBADDlesDBATDleAwHwQCAAIwGQMHACAB
B/gAJwMHACoBEQEABQMFBCoBEfAwDQYJKoZIhvcNAQELBQADggEBAILe9D+jchW9
wmIks7qb98I5asFy+gf9+5w+h0JlDdwdWv80TACI+1NO2LAmh5NTnWDAGEI54fYB
lPVLadeQPX9g6ncBgZNxD39FWLOc8uXRIjyW1sZJH/R9j73CShKQtdSDKclAGf1P
Ds8HG+Mi+Lwve+eGJPD2vW4q09+UwIh81QUkGiIgU2gjvCbKWt4TkkDvf3J/KzM3
TPzN5WLqhTz5j3aNJmUrDwfmos8024PV0KTTt8v9dvUuFWMudJc0B+wLhD1n8Wfb
fgtMZgIcmuSy5jlpT9/M9ZMXV6n5ImPH4RfT2oYDwRPZhkQCCEuoeUnJu1gbpgzA
JVWEgodthSc=
-----END CERTIFICATE-----
Generated at Tue Feb 27 13:19:39 2024 by rpki-client on console-ams.rpki-client.org