Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/sw87YDyfRCy3OwpADiYjolakR4Q.roa
File: sw87YDyfRCy3OwpADiYjolakR4Q.roa (raw, json)
Hash identifier: CsHQAOJ9H0lm7KquQyMfDTZ0FdD3s1egDoDuz7C7zeg=
Subject key identifier: B3:0F:3B:60:3C:9F:44:2C:B7:3B:0A:40:0E:26:23:A2:56:A4:47:84
Certificate issuer: /CN=b307c87e7b6e294f2700790eef19e82939d85cd6
Certificate serial: 018CC42530D4C51A0391C8A7049C462EAC70
Authority key identifier: B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/sw87YDyfRCy3OwpADiYjolakR4Q.roa
Signing time: Mon 01 Jan 2024 08:30:20 +0000
ROA not before: Mon 01 Jan 2024 08:30:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212330
IP address blocks: 45.113.239.0/24 maxlen: 24
103.229.80.0/24 maxlen: 24
185.16.25.0/24 maxlen: 24
193.3.137.0/24 maxlen: 24
94.176.40.0/24 maxlen: 24
185.96.160.0/24 maxlen: 24
86.111.151.0/24 maxlen: 24
86.111.150.0/24 maxlen: 24
185.113.104.0/24 maxlen: 24
31.223.185.0/24 maxlen: 24
185.113.106.0/24 maxlen: 24
86.105.220.0/24 maxlen: 24
93.115.252.0/24 maxlen: 24
2a10:fa43::/32 maxlen: 32
2a10:fa42::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 20 Nov 2024 13:48:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:30:d4:c5:1a:03:91:c8:a7:04:9c:46:2e:ac:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b307c87e7b6e294f2700790eef19e82939d85cd6
Validity
Not Before: Jan 1 08:30:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b30f3b603c9f442cb73b0a400e2623a256a44784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5a:95:44:ca:0e:02:e0:7d:2a:02:da:c0:10:
cd:2d:36:e2:63:64:97:5f:5e:ea:a2:55:71:25:c7:
1e:4d:bf:d9:14:c4:a2:7a:3a:05:f0:17:d1:e8:26:
79:9a:25:4d:53:63:f8:a4:12:84:f5:3f:58:e2:a0:
5a:2e:87:52:2a:42:83:76:3b:1b:cb:51:21:6d:10:
78:68:7c:c7:5c:9a:27:12:7c:56:ab:33:b1:a1:ff:
41:8b:18:7d:3d:8c:bf:ec:dd:97:56:07:ec:8f:6b:
19:59:47:6a:38:96:a1:31:ae:ee:2c:46:8b:dd:2b:
0b:57:1e:38:b3:4a:ff:87:8e:c5:e0:8f:58:09:04:
1c:70:fa:5c:8a:b6:07:8d:08:ec:54:c2:0b:98:29:
8e:d5:7f:e8:bd:6c:ad:21:e7:66:35:26:b8:ee:ae:
0f:73:86:eb:62:25:21:77:d6:b8:41:22:fe:a6:fc:
03:d7:9e:a4:c3:f6:b2:ed:73:62:3e:5a:ea:eb:0b:
74:03:0e:c7:a8:4b:77:59:6d:73:4e:f3:b2:b2:1a:
f9:12:ab:c6:db:a7:97:e8:33:cb:fb:8b:b9:cc:08:
8d:b8:11:d3:2d:23:c5:d9:f4:6e:84:43:f4:0f:17:
32:23:89:c7:53:1c:5c:46:f4:ac:01:39:0a:8c:22:
15:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:0F:3B:60:3C:9F:44:2C:B7:3B:0A:40:0E:26:23:A2:56:A4:47:84
X509v3 Authority Key Identifier:
keyid:B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/sw87YDyfRCy3OwpADiYjolakR4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/swfIfntuKU8nAHkO7xnoKTnYXNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.223.185.0/24
45.113.239.0/24
86.105.220.0/24
86.111.150.0/23
93.115.252.0/24
94.176.40.0/24
103.229.80.0/24
185.16.25.0/24
185.96.160.0/24
185.113.104.0/24
185.113.106.0/24
193.3.137.0/24
IPv6:
2a10:fa42::/31
Signature Algorithm: sha256WithRSAEncryption
87:c0:d3:53:9d:21:6a:f4:a4:67:43:a3:1b:ce:7d:c3:9d:7c:
35:bb:49:3b:e3:c2:48:c0:ce:fb:f4:7f:a6:d7:2a:6f:35:72:
df:39:03:29:c5:e1:c7:12:b3:36:55:02:eb:1c:c9:c4:55:e3:
19:d0:16:aa:f4:fa:b8:76:a4:2d:97:c2:11:1a:3c:0e:ea:d0:
79:bd:39:f6:e7:37:85:f4:47:da:21:75:20:e1:54:4a:2e:0e:
c5:8d:95:94:b7:10:cb:76:10:ce:72:16:84:3b:8d:71:e4:56:
f3:0d:31:f3:1f:bd:95:1b:5d:2c:df:d4:a0:91:6b:8e:f5:e3:
a9:91:e2:ae:c4:0a:4a:dc:34:8d:e0:97:72:57:99:fc:29:07:
33:b8:50:ec:fa:33:bf:f7:53:d1:2b:91:3e:17:3a:22:e9:2f:
a7:6f:65:36:52:b1:c4:9c:09:9d:cb:e5:90:de:be:eb:e0:24:
6f:e6:02:68:a7:a9:b4:ae:d8:c8:d5:c7:8e:a0:10:c0:88:2b:
39:85:f2:3f:18:4b:4f:82:33:52:d6:bb:df:12:6d:f8:af:27:
83:c0:98:be:bb:75:a9:4d:b5:c4:e7:00:17:e6:35:da:f9:67:
b3:29:18:2f:00:f7:52:9c:aa:8a:25:25:5c:96:d5:c1:f2:11:
3a:45:ec:82
-----BEGIN CERTIFICATE-----
MIIFTjCCBDagAwIBAgISAYzEJTDUxRoDkcinBJxGLqxwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzMDdjODdlN2I2ZTI5NGYyNzAwNzkwZWVmMTllODI5Mzlk
ODVjZDYwHhcNMjQwMTAxMDgzMDIwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMzBmM2I2MDNjOWY0NDJjYjczYjBhNDAwZTI2MjNhMjU2YTQ0Nzg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvFqVRMoOAuB9KgLawBDNLTbiY2SX
X17qolVxJcceTb/ZFMSiejoF8BfR6CZ5miVNU2P4pBKE9T9Y4qBaLodSKkKDdjsb
y1EhbRB4aHzHXJonEnxWqzOxof9Bixh9PYy/7N2XVgfsj2sZWUdqOJahMa7uLEaL
3SsLVx44s0r/h47F4I9YCQQccPpcirYHjQjsVMILmCmO1X/ovWytIedmNSa47q4P
c4brYiUhd9a4QSL+pvwD156kw/ay7XNiPlrq6wt0Aw7HqEt3WW1zTvOyshr5EqvG
26eX6DPL+4u5zAiNuBHTLSPF2fRuhEP0DxcyI4nHUxxcRvSsATkKjCIVuQIDAQAB
o4ICWjCCAlYwHQYDVR0OBBYEFLMPO2A8n0QstzsKQA4mI6JWpEeEMB8GA1UdIwQY
MBaAFLMHyH57bilPJwB5Du8Z6Ck52FzWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3dmSWZudHVLVThuQUhrTzd4bm9LVG5ZWE5ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS9kYTY0MmEtYTZhYi00NzA1LTk1ODct
NjQ5NDVhNGY4ZTEyLzEvc3c4N1lEeWZSQ3kzT3dwQURpWWpvbGFrUjRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS9kYTY0MmEtYTZhYi00NzA1LTk1ODctNjQ5NDVhNGY4ZTEy
LzEvc3dmSWZudHVLVThuQUhrTzd4bm9LVG5ZWE5ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHAGCCsGAQUFBwEHAQH/BGEwXzBOBAIAATBIAwQAH9+5AwQA
LXHvAwQAVmncAwQBVm+WAwQAXXP8AwQAXrAoAwQAZ+VQAwQAuRAZAwQAuWCgAwQA
uXFoAwQAuXFqAwQAwQOJMA0EAgACMAcDBQEqEPpCMA0GCSqGSIb3DQEBCwUAA4IB
AQCHwNNTnSFq9KRnQ6Mbzn3DnXw1u0k748JIwM779H+m1ypvNXLfOQMpxeHHErM2
VQLrHMnEVeMZ0Baq9Pq4dqQtl8IRGjwO6tB5vTn25zeF9EfaIXUg4VRKLg7FjZWU
txDLdhDOchaEO41x5FbzDTHzH72VG10s39SgkWuO9eOpkeKuxApK3DSN4JdyV5n8
KQczuFDs+jO/91PRK5E+Fzoi6S+nb2U2UrHEnAmdy+WQ3r7r4CRv5gJop6m0rtjI
1ceOoBDAiCs5hfI/GEtPgjNS1rvfEm34ryeDwJi+u3WpTbXE5wAX5jXa+WezKRgv
APdSnKqKJSVcltXB8hE6ReyC
-----END CERTIFICATE-----
Generated at Wed Nov 20 17:27:22 2024 by rpki-client on console-ams.rpki-client.org