Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/dwNzxycOG4R5vDr8Hz5mSeHSYbQ.roa
File: dwNzxycOG4R5vDr8Hz5mSeHSYbQ.roa (raw, json)
Hash identifier: 1jAFTOnouw5qxYFhghaP4oPSPUmoQJFd4zJV4FfCNoI=
Subject key identifier: 77:03:73:C7:27:0E:1B:84:79:BC:3A:FC:1F:3E:66:49:E1:D2:61:B4
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 018BF058ECC43A61173C63E7DE376872FD4E
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/dwNzxycOG4R5vDr8Hz5mSeHSYbQ.roa
Signing time: Tue 21 Nov 2023 05:27:21 +0000
ROA not before: Tue 21 Nov 2023 05:27:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9123
IP address blocks: 195.80.50.0/24 maxlen: 24
195.80.51.0/24 maxlen: 24
85.92.110.0/24 maxlen: 24
85.92.111.0/24 maxlen: 24
85.92.108.0/24 maxlen: 24
89.191.226.0/24 maxlen: 24
45.95.235.0/24 maxlen: 24
45.95.234.0/24 maxlen: 24
45.8.98.0/24 maxlen: 24
45.8.96.0/24 maxlen: 24
45.8.97.0/24 maxlen: 24
45.8.99.0/24 maxlen: 24
37.220.85.0/24 maxlen: 24
194.31.173.0/24 maxlen: 24
194.31.174.0/24 maxlen: 24
37.220.80.0/24 maxlen: 24
194.31.175.0/24 maxlen: 24
94.198.217.0/24 maxlen: 24
94.198.218.0/24 maxlen: 24
94.198.219.0/24 maxlen: 24
94.198.216.0/24 maxlen: 24
81.200.144.0/24 maxlen: 24
81.200.145.0/24 maxlen: 24
94.198.220.0/24 maxlen: 24
94.198.221.0/24 maxlen: 24
81.200.150.0/24 maxlen: 24
81.200.151.0/24 maxlen: 24
81.200.152.0/24 maxlen: 24
81.200.146.0/24 maxlen: 24
81.200.147.0/24 maxlen: 24
81.200.148.0/24 maxlen: 24
81.200.149.0/24 maxlen: 24
81.200.157.0/24 maxlen: 24
81.200.153.0/24 maxlen: 24
81.200.154.0/24 maxlen: 24
81.200.155.0/24 maxlen: 24
81.200.156.0/24 maxlen: 24
46.19.64.0/24 maxlen: 24
46.19.67.0/24 maxlen: 24
46.19.68.0/24 maxlen: 24
46.19.69.0/24 maxlen: 24
46.19.65.0/24 maxlen: 24
46.19.66.0/24 maxlen: 24
45.89.190.0/24 maxlen: 24
92.118.113.0/24 maxlen: 24
92.118.114.0/24 maxlen: 24
92.118.115.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f0:58:ec:c4:3a:61:17:3c:63:e7:de:37:68:72:fd:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Nov 21 05:27:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=770373c7270e1b8479bc3afc1f3e6649e1d261b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:65:57:27:3c:22:a4:f1:39:17:cd:6a:2c:ac:
24:54:85:ae:fd:4c:74:a7:09:33:9c:00:e4:67:18:
3f:17:dd:22:10:34:0e:1e:54:f2:f1:f0:53:75:8d:
6c:08:d1:46:f0:98:29:2c:8b:5f:67:2b:08:be:31:
c0:5b:06:4d:43:87:f2:1b:d5:68:fc:4e:df:83:fc:
ab:78:e4:e5:06:1e:b8:bf:9a:7a:d0:30:ee:2b:74:
a1:72:70:2c:c7:07:00:33:72:bc:7b:85:5e:f7:0d:
6d:60:5b:03:da:31:d5:80:c5:97:b8:05:8a:e2:89:
66:be:71:ce:22:9d:ea:e1:cc:8a:9f:00:b2:7b:d1:
64:3c:90:a2:b2:24:d4:86:b0:d7:22:5f:d7:27:4e:
95:2c:24:28:8e:10:29:2c:da:db:89:9b:7b:35:96:
c9:20:b1:84:14:44:d3:01:5c:66:b7:f8:03:29:ec:
64:49:3d:b4:1d:57:94:8f:07:46:7a:5b:a5:37:61:
72:b6:fe:e6:0d:e5:ee:29:6d:f3:1c:18:6a:3f:20:
99:44:8f:f4:87:cc:9b:62:07:35:4a:0e:6a:0f:ef:
9a:8b:91:2a:c5:64:6f:47:79:05:45:f9:e8:ec:bc:
69:ba:76:c8:26:64:07:db:ab:a0:e7:5b:13:47:a4:
a2:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:03:73:C7:27:0E:1B:84:79:BC:3A:FC:1F:3E:66:49:E1:D2:61:B4
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/dwNzxycOG4R5vDr8Hz5mSeHSYbQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.220.80.0/24
37.220.85.0/24
45.8.96.0/22
45.89.190.0/24
45.95.234.0/23
46.19.64.0-46.19.69.255
81.200.144.0-81.200.157.255
85.92.108.0/24
85.92.110.0/23
89.191.226.0/24
92.118.113.0-92.118.115.255
94.198.216.0-94.198.221.255
194.31.173.0-194.31.175.255
195.80.50.0/23
Signature Algorithm: sha256WithRSAEncryption
34:a1:ff:c1:bb:00:dc:1e:e4:9e:d1:ac:a0:c3:7a:af:ac:97:
55:cb:55:2c:fa:16:6c:9b:54:49:d9:c5:ab:98:0a:30:41:e9:
25:f8:0c:c5:64:65:fa:c0:d1:cb:ed:ff:24:05:a4:d5:de:f7:
b4:7d:23:a1:86:68:41:8b:be:d8:33:8d:6b:16:28:1d:dc:5f:
60:60:87:41:8c:d1:19:28:06:d5:fa:d3:25:0c:0f:48:d8:bf:
0f:6b:4f:a0:6b:e2:f6:be:e3:72:55:cc:61:ba:6c:a9:52:29:
6b:1b:d8:fa:40:ed:c9:44:4a:c3:c9:0d:c3:32:d4:75:71:f4:
d4:38:bb:07:25:1e:d4:72:bb:26:c9:ae:48:44:a1:74:33:11:
f9:40:32:13:56:54:3d:35:12:89:93:e9:cc:53:6e:be:90:87:
92:08:47:f9:33:08:c8:01:fe:95:9b:06:75:9d:8a:62:c9:16:
58:14:de:bc:b1:9e:a0:33:6d:ef:5d:a4:f1:14:56:91:79:40:
df:5a:25:22:2e:de:5c:82:34:c2:f6:9c:1b:32:ce:a9:87:d8:
b8:35:2e:e9:6a:55:5a:10:de:06:2a:22:d5:7a:fb:94:f4:98:
e3:d6:16:15:f1:81:38:f7:45:dc:1d:19:ba:d7:db:6e:ec:65:
c0:40:f0:a3
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgISAYvwWOzEOmEXPGPn3jdocv1OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1YjFkMTNjMmUyNmUxMjc4NjI0NmE1ZWM0YzViZWE2OTg2
NGIyMGYwHhcNMjMxMTIxMDUyNzIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NzAzNzNjNzI3MGUxYjg0NzliYzNhZmMxZjNlNjY0OWUxZDI2MWI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwGVXJzwipPE5F81qLKwkVIWu/Ux0
pwkznADkZxg/F90iEDQOHlTy8fBTdY1sCNFG8JgpLItfZysIvjHAWwZNQ4fyG9Vo
/E7fg/yreOTlBh64v5p60DDuK3ShcnAsxwcAM3K8e4Ve9w1tYFsD2jHVgMWXuAWK
4olmvnHOIp3q4cyKnwCye9FkPJCisiTUhrDXIl/XJ06VLCQojhApLNrbiZt7NZbJ
ILGEFETTAVxmt/gDKexkST20HVeUjwdGelulN2Fytv7mDeXuKW3zHBhqPyCZRI/0
h8ybYgc1Sg5qD++ai5EqxWRvR3kFRfno7LxpunbIJmQH26ug51sTR6SiYwIDAQAB
o4ICgzCCAn8wHQYDVR0OBBYEFHcDc8cnDhuEebw6/B8+Zknh0mG0MB8GA1UdIwQY
MBaAFAWx0TwuJuEnhiRqXsTFvqaYZLIPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmJIUlBDNG00U2VHSkdwZXhNVy1wcGhrc2c4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9jNjEwOTItNzM0YS00ZWVmLTlkNjct
NDkwNTI0M2JjODI4LzEvZHdOenh5Y09HNFI1dkRyOEh6NW1TZUhTWWJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9jNjEwOTItNzM0YS00ZWVmLTlkNjctNDkwNTI0M2JjODI4
LzEvQmJIUlBDNG00U2VHSkdwZXhNVy1wcGhrc2c4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGYBggrBgEFBQcBBwEB/wSBiDCBhTCBggQCAAEwfAMEACXc
UAMEACXcVQMEAi0IYAMEAC1ZvgMEAS1f6jAMAwQGLhNAAwQBLhNEMAwDBARRyJAD
BAFRyJwDBABVXGwDBAFVXG4DBABZv+IwDAMEAFx2cQMEAlx2cDAMAwQDXsbYAwQB
XsbcMAwDBADCH60DBATCH6ADBAHDUDIwDQYJKoZIhvcNAQELBQADggEBADSh/8G7
ANwe5J7RrKDDeq+sl1XLVSz6FmybVEnZxauYCjBB6SX4DMVkZfrA0cvt/yQFpNXe
97R9I6GGaEGLvtgzjWsWKB3cX2Bgh0GM0RkoBtX60yUMD0jYvw9rT6Br4va+43JV
zGG6bKlSKWsb2PpA7clESsPJDcMy1HVx9NQ4uwclHtRyuybJrkhEoXQzEflAMhNW
VD01EomT6cxTbr6Qh5IIR/kzCMgB/pWbBnWdimLJFlgU3ryxnqAzbe9dpPEUVpF5
QN9aJSIu3lyCNML2nBsyzqmH2Lg1LulqVVoQ3gYqItV6+5T0mOPWFhXxgTj3Rdwd
GbrX227sZcBA8KM=
-----END CERTIFICATE-----
Generated at Wed Nov 22 08:50:09 2023 by rpki-client on console-fra.rpki-client.org