Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/S7TDXPIGZtp6Kk_52dAbYXRy3Kw.roa
File: S7TDXPIGZtp6Kk_52dAbYXRy3Kw.roa (raw, json)
Hash identifier: G1lGBafn5S+vlzSPWUQTRtABskq/3fdt13YNXHCtxd4=
Subject key identifier: 4B:B4:C3:5C:F2:06:66:DA:7A:2A:4F:F9:D9:D0:1B:61:74:72:DC:AC
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 0188529212FF87EC0D0D246DEA852D70C8A6
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/S7TDXPIGZtp6Kk_52dAbYXRy3Kw.roa
Signing time: Thu 25 May 2023 11:01:24 +0000
ROA not before: Thu 25 May 2023 11:01:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8456
IP address blocks: 95.183.228.0/24 maxlen: 24
193.140.192.0/24 maxlen: 24
193.140.193.0/24 maxlen: 24
193.140.194.0/24 maxlen: 24
193.140.199.0/24 maxlen: 24
193.140.196.0/22 maxlen: 22
193.140.196.0/24 maxlen: 24
193.140.195.0/24 maxlen: 24
193.140.201.0/24 maxlen: 24
193.140.200.0/22 maxlen: 22
193.140.203.0/24 maxlen: 24
193.140.204.0/22 maxlen: 22
193.140.208.0/21 maxlen: 21
79.123.179.0/24 maxlen: 24
79.123.178.0/24 maxlen: 24
79.123.176.0/23 maxlen: 23
79.123.181.0/24 maxlen: 24
79.123.180.0/24 maxlen: 24
79.123.183.0/24 maxlen: 24
79.123.182.0/24 maxlen: 24
193.255.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Sep 2023 13:47:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:52:92:12:ff:87:ec:0d:0d:24:6d:ea:85:2d:70:c8:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: May 25 11:01:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4bb4c35cf20666da7a2a4ff9d9d01b617472dcac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:bc:16:73:cb:5f:18:ab:20:89:80:75:24:16:
d7:20:ef:01:f2:87:d0:83:13:8f:7c:34:9c:4d:bc:
2b:a5:a3:88:3c:c1:9a:85:12:a3:9a:c2:14:62:40:
e1:b6:4c:00:6e:0f:54:95:ab:4e:bf:28:b7:95:11:
f6:d6:24:ac:69:74:66:15:a6:cb:62:5b:e7:b9:12:
a9:d4:33:87:07:f2:af:05:28:72:2f:0f:b1:53:bf:
bf:1b:3f:7e:6d:27:34:a2:43:4a:52:72:7b:a9:95:
11:e8:f6:4e:9e:b4:5f:2b:d0:f5:ea:08:e1:89:13:
55:cb:9e:38:39:e8:2f:66:a8:d9:0f:a7:82:02:06:
3a:5b:80:c8:27:22:47:5d:02:41:09:44:7d:ec:de:
cf:85:ee:d4:e4:95:d0:b2:e3:0e:55:ee:01:3c:c2:
7b:34:7b:86:0b:de:a5:a7:71:69:ba:fb:0b:8a:fa:
eb:cf:39:95:19:ee:e2:e2:b1:d2:a7:d1:bd:9e:18:
2c:ff:44:04:6a:3a:08:bf:37:3d:fe:ba:a5:c4:03:
b5:17:29:83:4e:5e:5e:91:78:4a:0d:86:60:29:9b:
a9:62:17:a3:62:6d:f3:f9:1b:df:40:9f:77:fc:e8:
df:7f:c9:5e:10:bf:08:ef:10:89:95:48:16:de:03:
23:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:B4:C3:5C:F2:06:66:DA:7A:2A:4F:F9:D9:D0:1B:61:74:72:DC:AC
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/S7TDXPIGZtp6Kk_52dAbYXRy3Kw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.123.176.0/21
95.183.228.0/24
193.140.192.0-193.140.215.255
193.255.30.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:ae:bf:da:71:70:04:1a:f7:4b:91:28:dd:30:78:5a:e2:51:
49:3e:b5:fb:9b:cc:38:7b:3c:37:70:27:7d:ed:63:a4:0a:8f:
26:17:0c:88:3f:1a:db:78:a9:8e:73:2e:2a:b3:7d:98:a3:fb:
7b:e3:c8:52:b8:55:4c:07:e7:fc:e2:e4:a4:47:4a:73:ec:13:
8d:37:ce:d6:b3:6b:ed:83:f6:83:1a:25:db:b3:d1:fa:68:6b:
5b:df:7f:97:88:ea:f4:bd:10:ab:46:ea:42:ba:e9:79:fa:7a:
bb:df:9c:d4:e5:54:ff:fc:d5:68:6c:13:9d:6c:fa:5a:7f:1f:
f0:dd:9c:2c:cf:44:7c:aa:ba:0d:5b:9e:1e:3a:dc:77:5c:6c:
bc:f7:cb:4c:19:c2:2d:1d:22:8c:92:7a:4e:90:3f:a7:aa:63:
a0:bb:b6:69:92:a2:8f:9f:4b:ec:34:b6:85:d7:d6:7a:45:0a:
4a:e9:5b:75:78:d2:f7:87:0c:7e:81:f0:48:91:fc:34:9b:bb:
84:6d:fa:fd:c4:58:86:31:b5:89:95:91:6d:2d:52:59:56:c5:
bc:fa:ef:28:21:82:a8:5f:9a:b9:59:62:b9:08:9e:93:5c:2d:
e8:c2:4a:61:5e:d0:43:0c:10:dc:0b:f2:9c:e5:e7:a8:20:a4:
07:a2:52:1e
-----BEGIN CERTIFICATE-----
MIIFFzCCA/+gAwIBAgISAYhSkhL/h+wNDSRt6oUtcMimMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3NTE4ZDE4MDkyM2E3ZjNjMDA2NTNlYzEyYmM3MDJiOTVh
YWI5MDcwHhcNMjMwNTI1MTEwMTI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YmI0YzM1Y2YyMDY2NmRhN2EyYTRmZjlkOWQwMWI2MTc0NzJkY2FjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi7wWc8tfGKsgiYB1JBbXIO8B8ofQ
gxOPfDScTbwrpaOIPMGahRKjmsIUYkDhtkwAbg9UlatOvyi3lRH21iSsaXRmFabL
YlvnuRKp1DOHB/KvBShyLw+xU7+/Gz9+bSc0okNKUnJ7qZUR6PZOnrRfK9D16gjh
iRNVy544OegvZqjZD6eCAgY6W4DIJyJHXQJBCUR97N7Phe7U5JXQsuMOVe4BPMJ7
NHuGC96lp3FpuvsLivrrzzmVGe7i4rHSp9G9nhgs/0QEajoIvzc9/rqlxAO1FymD
Tl5ekXhKDYZgKZupYhejYm3z+RvfQJ93/Ojff8leEL8I7xCJlUgW3gMjQQIDAQAB
o4ICIzCCAh8wHQYDVR0OBBYEFEu0w1zyBmbaeipP+dnQG2F0ctysMB8GA1UdIwQY
MBaAFDdRjRgJI6fzwAZT7BK8cCuVqrkHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTjFHTkdBa2pwX1BBQmxQc0VyeHdLNVdxdVFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi9mODBlZjMtOWYwYi00YmQxLTgwMTgt
NTk2NzE5MjBmYjYwLzEvUzdURFhQSUdadHA2S2tfNTJkQWJZWFJ5M0t3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYi9mODBlZjMtOWYwYi00YmQxLTgwMTgtNTk2NzE5MjBmYjYw
LzEvTjFHTkdBa2pwX1BBQmxQc0VyeHdLNVdxdVFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQDT3uwAwQA
X7fkMAwDBAbBjMADBAPBjNADBADB/x4wDQYJKoZIhvcNAQELBQADggEBAKSuv9px
cAQa90uRKN0weFriUUk+tfubzDh7PDdwJ33tY6QKjyYXDIg/Gtt4qY5zLiqzfZij
+3vjyFK4VUwH5/zi5KRHSnPsE403ztaza+2D9oMaJduz0fpoa1vff5eI6vS9EKtG
6kK66Xn6ervfnNTlVP/81WhsE51s+lp/H/DdnCzPRHyqug1bnh463HdcbLz3y0wZ
wi0dIoySek6QP6eqY6C7tmmSoo+fS+w0toXX1npFCkrpW3V40veHDH6B8EiR/DSb
u4Rt+v3EWIYxtYmVkW0tUllWxbz67yghgqhfmrlZYrkInpNcLejCSmFe0EMMENwL
8pzl56ggpAeiUh4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:01 2024 by rpki-client on console-ams.rpki-client.org