Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/9nQiMJnIGXe8hwPV_NurvVhwcE4.roa
File: 9nQiMJnIGXe8hwPV_NurvVhwcE4.roa (raw, json)
Hash identifier: Ioq8IjBYsloMoc1XJPsZ1j5OBLYnBAj2isviJgh71Rw=
Subject key identifier: F6:74:22:30:99:C8:19:77:BC:87:03:D5:FC:DB:AB:BD:58:70:70:4E
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 018BF61A48789BF411BF3E8DAFB215DE90D0
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/9nQiMJnIGXe8hwPV_NurvVhwcE4.roa
Signing time: Wed 22 Nov 2023 08:16:39 +0000
ROA not before: Wed 22 Nov 2023 08:16:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9123
IP address blocks: 195.80.50.0/24 maxlen: 24
195.80.51.0/24 maxlen: 24
89.191.226.0/24 maxlen: 24
185.166.196.0/24 maxlen: 24
185.166.197.0/24 maxlen: 24
81.200.144.0/24 maxlen: 24
81.200.145.0/24 maxlen: 24
81.200.150.0/24 maxlen: 24
81.200.151.0/24 maxlen: 24
81.200.152.0/24 maxlen: 24
81.200.146.0/24 maxlen: 24
81.200.147.0/24 maxlen: 24
81.200.148.0/24 maxlen: 24
81.200.149.0/24 maxlen: 24
81.200.157.0/24 maxlen: 24
81.200.153.0/24 maxlen: 24
81.200.154.0/24 maxlen: 24
81.200.155.0/24 maxlen: 24
81.200.156.0/24 maxlen: 24
46.19.64.0/24 maxlen: 24
46.19.67.0/24 maxlen: 24
46.19.68.0/24 maxlen: 24
46.19.69.0/24 maxlen: 24
46.19.65.0/24 maxlen: 24
46.19.66.0/24 maxlen: 24
45.89.190.0/24 maxlen: 24
85.92.110.0/24 maxlen: 24
85.92.111.0/24 maxlen: 24
85.92.108.0/24 maxlen: 24
45.95.235.0/24 maxlen: 24
45.95.234.0/24 maxlen: 24
45.8.98.0/24 maxlen: 24
45.8.96.0/24 maxlen: 24
45.8.97.0/24 maxlen: 24
45.8.99.0/24 maxlen: 24
37.220.85.0/24 maxlen: 24
37.220.82.0/24 maxlen: 24
37.220.83.0/24 maxlen: 24
37.220.84.0/24 maxlen: 24
194.31.173.0/24 maxlen: 24
194.31.174.0/24 maxlen: 24
37.220.80.0/24 maxlen: 24
37.220.81.0/24 maxlen: 24
194.31.175.0/24 maxlen: 24
5.44.47.0/24 maxlen: 24
5.44.46.0/24 maxlen: 24
94.198.217.0/24 maxlen: 24
94.198.218.0/24 maxlen: 24
94.198.219.0/24 maxlen: 24
94.198.216.0/24 maxlen: 24
94.198.220.0/24 maxlen: 24
94.198.221.0/24 maxlen: 24
92.118.113.0/24 maxlen: 24
92.118.114.0/24 maxlen: 24
92.118.115.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f6:1a:48:78:9b:f4:11:bf:3e:8d:af:b2:15:de:90:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Nov 22 08:16:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f674223099c81977bc8703d5fcdbabbd5870704e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:16:6b:19:de:c9:69:5e:18:52:2a:b4:e3:46:
e0:6c:db:5a:73:63:e2:ef:74:8d:e2:48:be:b9:12:
a5:61:07:b1:47:8c:e0:0f:6c:0b:62:6a:31:df:8f:
2a:83:5c:01:f8:ae:1b:5e:1f:0f:aa:e3:8c:95:aa:
4c:32:92:14:a2:3d:ab:21:57:c8:9a:14:82:c8:a0:
5e:99:83:01:71:23:80:1f:48:4e:2e:d2:48:e2:48:
a1:b0:5a:17:1c:b9:d0:42:f4:22:3d:ba:e0:4e:e1:
e3:01:a9:3e:55:bd:b4:94:02:15:ce:d7:f9:28:01:
8b:57:df:4a:98:6e:be:00:bf:a5:05:7a:b6:a8:83:
07:8f:42:db:31:54:6c:c5:e4:c3:f2:53:87:b7:f8:
17:e1:0f:6c:8a:e9:af:c7:f3:2c:21:61:12:a7:78:
e0:3d:a3:25:be:43:05:fd:41:cd:03:e0:dd:21:5d:
1e:59:8a:cf:b6:da:df:77:81:ea:c9:16:68:74:86:
bf:aa:ea:01:d8:81:34:d7:3c:de:5c:d9:05:cf:ba:
4a:56:52:4d:46:93:ac:ef:30:cf:16:0f:ac:00:38:
0a:9a:4a:3d:df:98:39:21:56:9e:79:b9:4c:db:6b:
f7:5b:d9:59:d7:97:69:3a:f6:02:f4:25:b6:56:7e:
85:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:74:22:30:99:C8:19:77:BC:87:03:D5:FC:DB:AB:BD:58:70:70:4E
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/9nQiMJnIGXe8hwPV_NurvVhwcE4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.46.0/23
37.220.80.0-37.220.85.255
45.8.96.0/22
45.89.190.0/24
45.95.234.0/23
46.19.64.0-46.19.69.255
81.200.144.0-81.200.157.255
85.92.108.0/24
85.92.110.0/23
89.191.226.0/24
92.118.113.0-92.118.115.255
94.198.216.0-94.198.221.255
185.166.196.0/23
194.31.173.0-194.31.175.255
195.80.50.0/23
Signature Algorithm: sha256WithRSAEncryption
20:6f:ef:40:dc:a1:29:ba:c8:02:02:6e:3a:6c:d1:b9:ba:77:
e7:0b:ab:db:8f:59:a7:41:1d:4f:91:6d:68:bc:a3:23:f9:76:
bd:29:57:5c:72:ed:9a:db:cf:a2:59:e0:ea:90:53:ef:71:9d:
53:a9:27:ea:73:86:a5:5f:71:00:51:ad:72:c7:54:72:6d:a0:
28:7a:bc:6f:9f:0a:44:ff:87:25:ac:c8:c5:2e:75:54:e3:ab:
1a:67:99:a1:b5:be:32:16:b7:f2:f0:55:b6:f6:0d:6c:2c:4e:
93:87:d8:f8:99:6a:1f:48:72:25:8f:ab:1c:3f:47:44:f8:fa:
45:08:89:fa:9f:ab:4c:af:1a:14:62:c6:32:ba:1e:d7:45:d0:
3d:05:54:85:95:2f:ce:27:c5:8a:6a:86:51:e8:b3:97:a5:f0:
85:0d:d7:9f:f3:81:2e:ce:77:60:dd:e6:97:6c:cb:52:1c:2c:
4f:85:97:d9:d6:82:d8:0f:d6:ba:91:28:24:0f:ac:0b:9d:22:
31:f6:39:ae:70:88:ab:d4:9e:17:6a:47:2d:e3:83:46:70:f5:
0c:dd:26:df:55:db:33:c9:99:37:a4:1a:82:7e:11:fa:ba:82:
b7:b0:a8:b8:17:a4:0c:30:6f:de:37:43:d2:65:5e:95:52:b5:
d7:76:55:60
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgISAYv2Gkh4m/QRvz6Nr7IV3pDQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1YjFkMTNjMmUyNmUxMjc4NjI0NmE1ZWM0YzViZWE2OTg2
NGIyMGYwHhcNMjMxMTIyMDgxNjM5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNjc0MjIzMDk5YzgxOTc3YmM4NzAzZDVmY2RiYWJiZDU4NzA3MDRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAihZrGd7JaV4YUiq040bgbNtac2Pi
73SN4ki+uRKlYQexR4zgD2wLYmox348qg1wB+K4bXh8PquOMlapMMpIUoj2rIVfI
mhSCyKBemYMBcSOAH0hOLtJI4kihsFoXHLnQQvQiPbrgTuHjAak+Vb20lAIVztf5
KAGLV99KmG6+AL+lBXq2qIMHj0LbMVRsxeTD8lOHt/gX4Q9siumvx/MsIWESp3jg
PaMlvkMF/UHNA+DdIV0eWYrPttrfd4HqyRZodIa/quoB2IE01zzeXNkFz7pKVlJN
RpOs7zDPFg+sADgKmko935g5IVaeeblM22v3W9lZ15dpOvYC9CW2Vn6FmwIDAQAB
o4ICkjCCAo4wHQYDVR0OBBYEFPZ0IjCZyBl3vIcD1fzbq71YcHBOMB8GA1UdIwQY
MBaAFAWx0TwuJuEnhiRqXsTFvqaYZLIPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmJIUlBDNG00U2VHSkdwZXhNVy1wcGhrc2c4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9jNjEwOTItNzM0YS00ZWVmLTlkNjct
NDkwNTI0M2JjODI4LzEvOW5RaU1KbklHWGU4aHdQVl9OdXJ2Vmh3Y0U0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9jNjEwOTItNzM0YS00ZWVmLTlkNjctNDkwNTI0M2JjODI4
LzEvQmJIUlBDNG00U2VHSkdwZXhNVy1wcGhrc2c4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGnBggrBgEFBQcBBwEB/wSBlzCBlDCBkQQCAAEwgYoDBAEF
LC4wDAMEBCXcUAMEASXcVAMEAi0IYAMEAC1ZvgMEAS1f6jAMAwQGLhNAAwQBLhNE
MAwDBARRyJADBAFRyJwDBABVXGwDBAFVXG4DBABZv+IwDAMEAFx2cQMEAlx2cDAM
AwQDXsbYAwQBXsbcAwQBuabEMAwDBADCH60DBATCH6ADBAHDUDIwDQYJKoZIhvcN
AQELBQADggEBACBv70DcoSm6yAICbjps0bm6d+cLq9uPWadBHU+RbWi8oyP5dr0p
V1xy7Zrbz6JZ4OqQU+9xnVOpJ+pzhqVfcQBRrXLHVHJtoCh6vG+fCkT/hyWsyMUu
dVTjqxpnmaG1vjIWt/LwVbb2DWwsTpOH2PiZah9IciWPqxw/R0T4+kUIifqfq0yv
GhRixjK6HtdF0D0FVIWVL84nxYpqhlHos5el8IUN15/zgS7Od2Dd5pdsy1IcLE+F
l9nWgtgP1rqRKCQPrAudIjH2Oa5wiKvUnhdqRy3jg0Zw9QzdJt9V2zPJmTekGoJ+
Efq6grewqLgXpAwwb943Q9JlXpVStdd2VWA=
-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:15 2024 by rpki-client on console-fra.rpki-client.org