Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/EvWvmO2kK6BjuvOMwu5RNHrnqAA.roa
File: EvWvmO2kK6BjuvOMwu5RNHrnqAA.roa (raw, json)
Hash identifier: W+t4itSKj1TUrZ/kV492RjlUVa/1V2vrD0BJDYnJB2Q=
Subject key identifier: 12:F5:AF:98:ED:A4:2B:A0:63:BA:F3:8C:C2:EE:51:34:7A:E7:A8:00
Certificate issuer: /CN=ef54d9e41ea5e2d161b7c4cdb2e4702c4f248e14
Certificate serial: 01862AFD560D0F7734B92F2B174294588C3D
Authority key identifier: EF:54:D9:E4:1E:A5:E2:D1:61:B7:C4:CD:B2:E4:70:2C:4F:24:8E:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71TZ5B6l4tFht8TNsuRwLE8kjhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/EvWvmO2kK6BjuvOMwu5RNHrnqAA.roa
Signing time: Tue 07 Feb 2023 08:28:10 +0000
ROA not before: Tue 07 Feb 2023 08:28:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203217
IP address blocks: 144.86.230.0/23 maxlen: 23
144.86.228.0/23 maxlen: 23
144.86.228.0/22 maxlen: 22
144.86.228.0/24 maxlen: 24
144.86.229.0/24 maxlen: 24
144.86.230.0/24 maxlen: 24
144.86.231.0/24 maxlen: 24
185.254.13.0/24 maxlen: 24
185.254.15.0/24 maxlen: 24
185.138.121.0/24 maxlen: 24
185.138.122.0/24 maxlen: 24
185.138.120.0/23 maxlen: 23
185.138.123.0/24 maxlen: 24
185.138.122.0/23 maxlen: 23
185.138.120.0/24 maxlen: 24
93.180.218.0/24 maxlen: 24
93.180.219.0/24 maxlen: 24
93.180.216.0/24 maxlen: 24
93.180.218.0/23 maxlen: 23
93.180.217.0/24 maxlen: 24
93.180.220.0/24 maxlen: 24
93.180.221.0/24 maxlen: 24
93.180.222.0/24 maxlen: 24
93.180.223.0/24 maxlen: 24
195.133.220.0/24 maxlen: 24
195.133.221.0/24 maxlen: 24
195.133.222.0/24 maxlen: 24
195.133.223.0/24 maxlen: 24
195.133.220.0/23 maxlen: 23
185.20.198.0/23 maxlen: 23
185.20.196.0/24 maxlen: 24
185.20.197.0/24 maxlen: 24
185.20.196.0/23 maxlen: 23
185.20.198.0/24 maxlen: 24
185.20.199.0/24 maxlen: 24
2a0b:1880::/48 maxlen: 48
2a0b:1880:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 14 May 2023 08:59:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2a:fd:56:0d:0f:77:34:b9:2f:2b:17:42:94:58:8c:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef54d9e41ea5e2d161b7c4cdb2e4702c4f248e14
Validity
Not Before: Feb 7 08:28:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12f5af98eda42ba063baf38cc2ee51347ae7a800
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:58:5f:82:60:98:3b:ed:b9:bf:d3:a7:47:e8:
e7:63:05:33:b6:0a:50:ad:de:1c:39:c2:8b:c2:96:
c3:96:ac:fe:b6:b7:0d:b8:68:54:f8:00:d4:6c:53:
b3:49:61:87:3b:a6:f3:41:9f:f7:e1:51:22:7f:d1:
c0:48:51:0f:94:13:9b:2b:5a:d8:ea:d9:37:e2:65:
4b:3c:3d:01:7d:97:31:ab:e1:52:6c:92:32:13:25:
42:b1:ba:50:ba:e0:e7:26:80:4e:64:fd:bd:db:37:
4f:41:20:86:1a:17:f0:89:cc:92:ca:7a:53:3b:1e:
ef:0a:13:e0:92:21:3c:37:41:d2:47:80:b6:02:57:
01:21:c3:95:d2:78:43:2b:f5:8a:56:dd:6d:8e:10:
82:11:c7:c2:5c:b3:60:19:44:3c:73:e9:d5:f5:3a:
74:ec:2c:3d:17:12:c0:28:e7:0b:a8:4e:f3:ca:e4:
4f:d7:5a:ab:7e:d8:bd:a3:e1:65:4a:d6:dc:5b:e5:
03:8a:11:00:40:d5:b3:e6:15:ef:4d:48:ab:1f:f9:
7d:93:fc:13:9b:c1:fd:0a:0e:6a:c4:a6:f9:c9:6f:
82:32:98:24:24:36:23:85:fd:e3:74:35:f5:b7:9f:
bc:00:37:cc:f4:5c:4a:c1:94:c4:06:36:4a:5e:f2:
5c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:F5:AF:98:ED:A4:2B:A0:63:BA:F3:8C:C2:EE:51:34:7A:E7:A8:00
X509v3 Authority Key Identifier:
keyid:EF:54:D9:E4:1E:A5:E2:D1:61:B7:C4:CD:B2:E4:70:2C:4F:24:8E:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71TZ5B6l4tFht8TNsuRwLE8kjhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/EvWvmO2kK6BjuvOMwu5RNHrnqAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/71TZ5B6l4tFht8TNsuRwLE8kjhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.180.216.0/21
144.86.228.0/22
185.20.196.0/22
185.138.120.0/22
185.254.13.0/24
185.254.15.0/24
195.133.220.0/22
IPv6:
2a0b:1880::/47
Signature Algorithm: sha256WithRSAEncryption
38:49:07:e5:8a:ea:a3:37:a1:b4:dd:08:09:d8:5f:37:35:54:
ca:26:f5:32:e8:38:2e:90:e7:c6:85:47:e1:6f:6d:35:75:dc:
1c:fb:a1:d6:23:e8:f0:3b:2c:97:b1:a9:d7:a3:dd:3c:aa:61:
11:d3:14:2b:8c:6a:ee:5f:8c:ec:23:76:7d:00:8c:4a:fb:14:
f5:15:c6:3e:82:5c:84:7f:a0:4c:6f:31:61:ee:3d:c9:b8:0e:
86:c6:2d:95:8b:f9:e6:6c:6d:8d:0f:b2:2c:d3:ab:ba:e8:3c:
8f:47:23:da:0f:34:1f:f9:8c:af:e0:57:7c:87:a0:a1:78:e7:
7a:7d:b4:06:26:8d:a3:63:0d:b6:c0:ba:db:e1:e6:a9:46:5f:
d1:39:f1:14:26:9e:a5:90:80:4a:6a:54:52:06:39:fa:b2:54:
95:5e:b7:b1:33:cf:bc:e9:eb:89:c6:c3:f0:28:bf:ab:b1:5d:
da:75:7f:46:78:be:3a:ed:c3:af:02:4c:fc:8f:cd:62:81:59:
ab:7d:b1:70:29:27:68:75:bb:8b:90:dd:35:71:af:f0:52:dd:
be:92:c7:f5:d7:e2:4c:11:c8:3f:c2:20:a7:d8:6f:8d:f9:d5:
42:b8:54:fb:91:21:41:44:fb:9a:f6:a5:9b:d8:d0:08:48:10:
a6:b8:1c:5e
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgISAYYq/VYND3c0uS8rF0KUWIw9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmNTRkOWU0MWVhNWUyZDE2MWI3YzRjZGIyZTQ3MDJjNGYy
NDhlMTQwHhcNMjMwMjA3MDgyODEwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMmY1YWY5OGVkYTQyYmEwNjNiYWYzOGNjMmVlNTEzNDdhZTdhODAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhFhfgmCYO+25v9OnR+jnYwUztgpQ
rd4cOcKLwpbDlqz+trcNuGhU+ADUbFOzSWGHO6bzQZ/34VEif9HASFEPlBObK1rY
6tk34mVLPD0BfZcxq+FSbJIyEyVCsbpQuuDnJoBOZP292zdPQSCGGhfwicySynpT
Ox7vChPgkiE8N0HSR4C2AlcBIcOV0nhDK/WKVt1tjhCCEcfCXLNgGUQ8c+nV9Tp0
7Cw9FxLAKOcLqE7zyuRP11qrfti9o+FlStbcW+UDihEAQNWz5hXvTUirH/l9k/wT
m8H9Cg5qxKb5yW+CMpgkJDYjhf3jdDX1t5+8ADfM9FxKwZTEBjZKXvJcRwIDAQAB
o4ICPjCCAjowHQYDVR0OBBYEFBL1r5jtpCugY7rzjMLuUTR656gAMB8GA1UdIwQY
MBaAFO9U2eQepeLRYbfEzbLkcCxPJI4UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNzFUWjVCNmw0dEZodDhUTnN1UndMRThramhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9lYzAwZTItY2JkYS00YjMyLThjMzIt
ZmJjNmZjYjVlN2E2LzEvRXZXdm1PMmtLNkJqdXZPTXd1NVJOSHJucUFBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny9lYzAwZTItY2JkYS00YjMyLThjMzItZmJjNmZjYjVlN2E2
LzEvNzFUWjVCNmw0dEZodDhUTnN1UndMRThramhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFQGCCsGAQUFBwEHAQH/BEUwQzAwBAIAATAqAwQDXbTYAwQC
kFbkAwQCuRTEAwQCuYp4AwQAuf4NAwQAuf4PAwQCw4XcMA8EAgACMAkDBwEqCxiA
AAAwDQYJKoZIhvcNAQELBQADggEBADhJB+WK6qM3obTdCAnYXzc1VMom9TLoOC6Q
58aFR+FvbTV13Bz7odYj6PA7LJexqdej3TyqYRHTFCuMau5fjOwjdn0AjEr7FPUV
xj6CXIR/oExvMWHuPcm4DobGLZWL+eZsbY0PsizTq7roPI9HI9oPNB/5jK/gV3yH
oKF453p9tAYmjaNjDbbAutvh5qlGX9E58RQmnqWQgEpqVFIGOfqyVJVet7Ezz7zp
64nGw/Aov6uxXdp1f0Z4vjrtw68CTPyPzWKBWat9sXApJ2h1u4uQ3TVxr/BS3b6S
x/XX4kwRyD/CIKfYb4351UK4VPuRIUFE+5r2pZvY0AhIEKa4HF4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:50 2024 by rpki-client on console-fra.rpki-client.org