Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/be3c40-1210-4272-a5ea-7835d3208396/1/DbzUg3mfImCVgXOweqcwodN8loQ.roa
File: DbzUg3mfImCVgXOweqcwodN8loQ.roa (raw, json)
Hash identifier: 3qHVqRH95dbD7hFi2X1AFePTprig138HV96sArxp0ZA=
Subject key identifier: 0D:BC:D4:83:79:9F:22:60:95:81:73:B0:7A:A7:30:A1:D3:7C:96:84
Certificate issuer: /CN=15fd3804e00b9e06a82ced9f07b34fe3fd80394e
Certificate serial: 018CC2DADB8ABB113B4E71B9335AC28CF69F
Authority key identifier: 15:FD:38:04:E0:0B:9E:06:A8:2C:ED:9F:07:B3:4F:E3:FD:80:39:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ff04BOALngaoLO2fB7NP4_2AOU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/be3c40-1210-4272-a5ea-7835d3208396/1/DbzUg3mfImCVgXOweqcwodN8loQ.roa
Signing time: Mon 01 Jan 2024 02:29:31 +0000
ROA not before: Mon 01 Jan 2024 02:29:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61173
IP address blocks: 45.159.112.0/24 maxlen: 24
45.159.115.0/24 maxlen: 24
45.159.114.0/24 maxlen: 24
45.159.113.0/24 maxlen: 24
185.255.88.0/24 maxlen: 24
185.255.89.0/24 maxlen: 24
185.255.91.0/24 maxlen: 24
185.255.90.0/24 maxlen: 24
193.141.65.0/24 maxlen: 24
62.3.42.0/24 maxlen: 24
185.50.38.0/24 maxlen: 24
185.50.37.0/24 maxlen: 24
185.50.39.0/24 maxlen: 24
185.213.165.0/24 maxlen: 24
185.213.164.0/24 maxlen: 24
185.213.166.0/24 maxlen: 24
193.141.64.0/24 maxlen: 24
185.213.167.0/24 maxlen: 24
5.182.44.0/24 maxlen: 24
5.182.45.0/24 maxlen: 24
5.182.46.0/24 maxlen: 24
5.182.47.0/24 maxlen: 24
193.141.127.0/24 maxlen: 24
193.141.126.0/24 maxlen: 24
85.208.253.0/24 maxlen: 24
85.208.255.0/24 maxlen: 24
85.208.254.0/24 maxlen: 24
185.4.31.0/24 maxlen: 24
185.4.28.0/24 maxlen: 24
185.4.30.0/24 maxlen: 24
185.4.29.0/24 maxlen: 24
185.116.163.0/24 maxlen: 24
185.116.160.0/24 maxlen: 24
185.116.162.0/24 maxlen: 24
185.116.161.0/24 maxlen: 24
2a05:ab80::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 06 Mar 2024 11:03:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:db:8a:bb:11:3b:4e:71:b9:33:5a:c2:8c:f6:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15fd3804e00b9e06a82ced9f07b34fe3fd80394e
Validity
Not Before: Jan 1 02:29:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0dbcd483799f2260958173b07aa730a1d37c9684
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:5d:22:d7:d0:c7:97:04:62:47:4a:98:55:ed:
d8:69:98:e8:ba:48:1a:02:22:40:97:bf:14:b5:3d:
03:5d:0f:0e:22:ed:f0:18:10:f7:23:c5:89:b3:80:
ec:89:a5:29:66:36:08:61:b4:ee:21:48:da:8e:98:
ba:0e:a7:dd:0a:dc:d6:3f:dd:7a:92:34:bc:dd:68:
c0:33:de:8d:c7:e7:44:ca:8b:ee:7f:11:00:6d:4d:
53:ec:28:56:b1:87:ba:97:53:b8:b5:a5:1c:6d:6c:
82:0e:fb:22:3e:47:4f:2a:ce:15:ba:cd:e8:43:e1:
77:64:8d:54:17:e1:57:3a:57:66:ab:9b:da:ac:e7:
e0:3e:c3:53:b9:35:d1:56:69:d3:e3:cf:f6:0e:49:
9c:73:21:ba:d2:9f:64:aa:19:a7:7c:27:8e:7d:8d:
40:1f:5f:1e:ac:2c:8f:5f:11:d6:e4:d9:b6:74:b4:
7a:81:c2:7d:62:00:43:7b:5c:4b:59:52:7c:55:a4:
27:c0:e9:ed:54:50:99:bb:36:26:07:1e:ad:98:6a:
09:05:8b:61:82:ea:bd:65:10:91:17:4e:a8:8d:57:
53:9d:19:8c:ac:27:06:b9:03:df:f3:9b:e3:d3:8f:
ad:21:5b:8b:35:c0:3c:80:e7:d4:cf:87:72:fc:a3:
81:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:BC:D4:83:79:9F:22:60:95:81:73:B0:7A:A7:30:A1:D3:7C:96:84
X509v3 Authority Key Identifier:
keyid:15:FD:38:04:E0:0B:9E:06:A8:2C:ED:9F:07:B3:4F:E3:FD:80:39:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ff04BOALngaoLO2fB7NP4_2AOU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/be3c40-1210-4272-a5ea-7835d3208396/1/DbzUg3mfImCVgXOweqcwodN8loQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/be3c40-1210-4272-a5ea-7835d3208396/1/Ff04BOALngaoLO2fB7NP4_2AOU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.44.0/22
45.159.112.0/22
62.3.42.0/24
85.208.253.0-85.208.255.255
185.4.28.0/22
185.50.37.0-185.50.39.255
185.116.160.0/22
185.213.164.0/22
185.255.88.0/22
193.141.64.0/23
193.141.126.0/23
IPv6:
2a05:ab80::/48
Signature Algorithm: sha256WithRSAEncryption
53:50:e0:ad:1f:e6:a3:bd:94:ca:c3:37:1d:e0:c3:a6:37:55:
13:b6:d6:ca:29:47:b9:03:39:c5:b8:89:e4:27:1b:46:c2:4f:
14:f8:07:33:3d:27:ab:74:2b:b2:d6:1d:a6:c7:d3:23:9d:b6:
a4:ea:fb:1e:a6:4c:8e:22:e4:bd:a8:41:d6:84:65:b1:8f:4f:
ea:59:e7:fd:46:0b:0c:f7:ea:a8:84:5e:c1:97:92:b6:fc:57:
76:4a:40:4a:dd:4a:02:1a:fd:41:29:53:df:a5:38:fc:91:e0:
6c:ef:00:34:42:2f:b8:e2:d6:77:5c:87:10:d8:c1:18:67:91:
cb:06:a0:87:4a:ae:96:1d:98:1d:2f:2e:ef:f6:02:d1:49:4c:
6a:05:d6:a8:ce:a1:f3:3d:c0:b9:0b:b5:17:f7:83:ed:72:e9:
cc:0a:55:24:97:11:d4:36:eb:04:77:78:7b:65:0b:87:6b:8c:
14:e0:3c:d7:3a:f5:d0:2f:0d:78:7f:e7:8b:8e:c8:1e:6a:28:
0e:eb:c2:7a:28:a2:ac:15:eb:d6:04:0f:9e:82:0a:bb:93:71:
6a:8a:df:ce:6f:4b:5d:b4:f6:1d:d1:97:35:c3:cf:1e:01:2f:
99:28:fe:56:3c:a5:00:a2:94:b9:d3:b4:e6:2d:5a:02:62:56:
8b:04:7f:4b
-----BEGIN CERTIFICATE-----
MIIFWTCCBEGgAwIBAgISAYzC2tuKuxE7TnG5M1rCjPafMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZmQzODA0ZTAwYjllMDZhODJjZWQ5ZjA3YjM0ZmUzZmQ4
MDM5NGUwHhcNMjQwMTAxMDIyOTMxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZGJjZDQ4Mzc5OWYyMjYwOTU4MTczYjA3YWE3MzBhMWQzN2M5Njg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhl0i19DHlwRiR0qYVe3YaZjoukga
AiJAl78UtT0DXQ8OIu3wGBD3I8WJs4DsiaUpZjYIYbTuIUjajpi6DqfdCtzWP916
kjS83WjAM96Nx+dEyovufxEAbU1T7ChWsYe6l1O4taUcbWyCDvsiPkdPKs4Vus3o
Q+F3ZI1UF+FXOldmq5varOfgPsNTuTXRVmnT48/2DkmccyG60p9kqhmnfCeOfY1A
H18erCyPXxHW5Nm2dLR6gcJ9YgBDe1xLWVJ8VaQnwOntVFCZuzYmBx6tmGoJBYth
guq9ZRCRF06ojVdTnRmMrCcGuQPf85vj04+tIVuLNcA8gOfUz4dy/KOBqQIDAQAB
o4ICZTCCAmEwHQYDVR0OBBYEFA281IN5nyJglYFzsHqnMKHTfJaEMB8GA1UdIwQY
MBaAFBX9OATgC54GqCztnwezT+P9gDlOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmYwNEJPQUxuZ2FvTE8yZkI3TlA0XzJBT1U0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS9iZTNjNDAtMTIxMC00MjcyLWE1ZWEt
NzgzNWQzMjA4Mzk2LzEvRGJ6VWczbWZJbUNWZ1hPd2VxY3dvZE44bG9RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS9iZTNjNDAtMTIxMC00MjcyLWE1ZWEtNzgzNWQzMjA4Mzk2
LzEvRmYwNEJPQUxuZ2FvTE8yZkI3TlA0XzJBT1U0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHsGCCsGAQUFBwEHAQH/BGwwajBXBAIAATBRAwQCBbYsAwQC
LZ9wAwQAPgMqMAsDBABV0P0DAwBV0AMEArkEHDAMAwQAuTIlAwQDuTIgAwQCuXSg
AwQCudWkAwQCuf9YAwQBwY1AAwQBwY1+MA8EAgACMAkDBwAqBauAAAAwDQYJKoZI
hvcNAQELBQADggEBAFNQ4K0f5qO9lMrDNx3gw6Y3VRO21sopR7kDOcW4ieQnG0bC
TxT4BzM9J6t0K7LWHabH0yOdtqTq+x6mTI4i5L2oQdaEZbGPT+pZ5/1GCwz36qiE
XsGXkrb8V3ZKQErdSgIa/UEpU9+lOPyR4GzvADRCL7ji1ndchxDYwRhnkcsGoIdK
rpYdmB0vLu/2AtFJTGoF1qjOofM9wLkLtRf3g+1y6cwKVSSXEdQ26wR3eHtlC4dr
jBTgPNc69dAvDXh/54uOyB5qKA7rwnoooqwV69YED56CCruTcWqK385vS1209h3R
lzXDzx4BL5ko/lY8pQCilLnTtOYtWgJiVosEf0s=
-----END CERTIFICATE-----
Generated at Wed Mar 6 14:19:18 2024 by rpki-client on console-fra.rpki-client.org