Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/2CEmRfGuZujw6C674ux0ikCNvpM.roa
File: 2CEmRfGuZujw6C674ux0ikCNvpM.roa (raw, json)
Hash identifier: LSWGrdd+VbPXKn/9uXxjHFrk/I9q8hrZhxtkLSqYLMk=
Subject key identifier: D8:21:26:45:F1:AE:66:E8:F0:E8:2E:BB:E2:EC:74:8A:40:8D:BE:93
Certificate issuer: /CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
Certificate serial: 018977BB8C157C1BEA937254B49582C560BF
Authority key identifier: A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/2CEmRfGuZujw6C674ux0ikCNvpM.roa
Signing time: Fri 21 Jul 2023 09:15:27 +0000
ROA not before: Fri 21 Jul 2023 09:15:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48854
IP address blocks: 185.134.28.0/22 maxlen: 22
195.178.14.0/23 maxlen: 23
80.70.0.0/23 maxlen: 23
185.21.40.0/22 maxlen: 22
80.70.6.0/23 maxlen: 23
80.70.7.0/24 maxlen: 24
212.97.132.0/22 maxlen: 22
212.97.143.0/24 maxlen: 24
212.97.140.0/24 maxlen: 24
212.97.140.0/22 maxlen: 22
212.97.142.0/24 maxlen: 24
212.97.141.0/24 maxlen: 24
94.143.8.0/21 maxlen: 21
93.191.152.0/21 maxlen: 21
93.191.152.0/22 maxlen: 22
217.61.236.0/22 maxlen: 22
93.191.156.0/24 maxlen: 24
93.191.158.0/24 maxlen: 24
93.191.157.0/24 maxlen: 24
89.188.72.0/21 maxlen: 21
185.25.141.0/24 maxlen: 24
185.25.143.0/24 maxlen: 24
94.231.96.0/20 maxlen: 20
94.231.103.0/24 maxlen: 24
185.223.24.0/22 maxlen: 22
185.221.36.0/22 maxlen: 22
212.237.248.0/23 maxlen: 23
194.150.112.0/22 maxlen: 22
185.20.204.0/22 maxlen: 22
185.20.205.0/24 maxlen: 24
185.20.206.0/23 maxlen: 23
2a06:eac0::/29 maxlen: 48
2a03:2740::/47 maxlen: 48
2a02:2338::/32 maxlen: 48
2a02:2339:4000::/34 maxlen: 48
Validation: Failed, certificate revoked on Mon 07 Aug 2023 07:59:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:77:bb:8c:15:7c:1b:ea:93:72:54:b4:95:82:c5:60:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
Validity
Not Before: Jul 21 09:15:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8212645f1ae66e8f0e82ebbe2ec748a408dbe93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:da:f4:23:a7:2f:0c:4a:89:b8:aa:b0:3a:bb:
eb:89:42:3c:0e:93:12:7d:82:7f:de:ad:89:78:ec:
b1:0f:ff:bd:4a:45:7c:be:6a:f1:c1:ea:ee:11:01:
1a:40:47:17:ed:1b:ee:8f:88:b6:3d:5b:06:4b:2f:
c4:91:57:f9:56:b7:4a:11:95:41:65:b0:37:e6:33:
ef:ad:43:bb:0b:8b:d3:d8:e7:7e:0e:f7:2e:e5:60:
31:99:53:ec:a7:07:a9:f3:91:53:94:76:3e:eb:6d:
be:27:dc:b8:2c:7d:9f:29:de:b6:d5:96:18:bd:3d:
6e:ec:f4:c3:79:45:92:62:84:17:91:51:57:3c:9b:
49:ef:b6:d7:95:23:09:93:71:c5:c4:2d:7f:48:a1:
0c:2f:d0:59:6d:7f:ec:ae:2c:57:59:a7:b6:36:74:
22:c3:e9:88:56:8c:e9:bc:52:02:d6:d5:b1:a3:ef:
3a:dd:22:7f:4f:fb:dc:9a:27:d2:6c:dc:4a:88:02:
f7:b9:61:1d:e1:14:ad:23:1d:0f:9f:bb:e8:30:f0:
2f:f8:15:7b:c0:e2:86:8a:ed:38:e1:a5:d1:50:55:
bd:4f:8c:6f:a2:a4:69:79:4f:eb:b0:3f:b9:b5:8b:
6a:ae:dd:02:17:af:f2:c9:46:71:c8:77:b6:e2:d4:
79:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:21:26:45:F1:AE:66:E8:F0:E8:2E:BB:E2:EC:74:8A:40:8D:BE:93
X509v3 Authority Key Identifier:
keyid:A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/2CEmRfGuZujw6C674ux0ikCNvpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/pOcgX11BJXpruV-QDuwKESPnUWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.70.0.0/23
80.70.6.0/23
89.188.72.0/21
93.191.152.0/21
94.143.8.0/21
94.231.96.0/20
185.20.204.0/22
185.21.40.0/22
185.25.141.0/24
185.25.143.0/24
185.134.28.0/22
185.221.36.0/22
185.223.24.0/22
194.150.112.0/22
195.178.14.0/23
212.97.132.0/22
212.97.140.0/22
212.237.248.0/23
217.61.236.0/22
IPv6:
2a02:2338::/32
2a02:2339:4000::/34
2a03:2740::/47
2a06:eac0::/29
Signature Algorithm: sha256WithRSAEncryption
8b:22:e8:8b:54:63:9d:05:03:86:3f:76:a5:e7:c1:b2:bc:e8:
6e:26:a8:08:b2:84:4f:7c:a5:a2:51:d6:12:d1:0f:75:49:9e:
f5:d0:9c:93:ca:b5:60:c2:a0:a6:2a:8a:50:c4:a4:71:c3:1d:
40:86:5a:0a:5c:0c:9b:3b:11:f4:80:50:c8:d3:92:99:3e:a3:
0b:5e:24:bd:63:55:51:71:d5:5a:20:ae:86:36:5f:a6:74:b4:
8e:a8:0d:0e:58:4e:58:a6:ac:ca:38:1e:7f:a7:d0:4e:c7:d4:
6b:32:33:fb:2c:f6:42:7f:09:04:e9:d7:d6:65:82:7f:6c:3c:
e8:26:ca:6b:e0:92:81:51:84:17:3b:57:45:61:e9:60:0f:ad:
37:4e:8e:ff:27:f4:57:ce:05:33:3d:29:5f:16:18:91:a6:f4:
da:52:86:0a:4d:35:5d:7e:dc:f5:80:45:a9:0f:99:38:2e:d4:
27:bb:c2:b4:48:ad:11:d4:ce:a0:a9:f9:fa:4b:6f:25:3a:be:
47:36:ae:e0:49:56:3b:e2:a8:77:98:57:6d:88:86:5a:40:96:
04:e1:c2:95:a8:77:c9:4e:50:d7:fa:4c:16:f1:2d:71:40:e6:
fa:a6:1d:ae:e3:43:a9:95:29:ae:64:08:2b:06:af:5b:d0:94:
c8:78:c3:42
-----BEGIN CERTIFICATE-----
MIIFkzCCBHugAwIBAgISAYl3u4wVfBvqk3JUtJWCxWC/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0ZTcyMDVmNWQ0MTI1N2E2YmI5NWY5MDBlZWMwYTExMjNl
NzUxNjQwHhcNMjMwNzIxMDkxNTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkODIxMjY0NWYxYWU2NmU4ZjBlODJlYmJlMmVjNzQ4YTQwOGRiZTkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAptr0I6cvDEqJuKqwOrvriUI8DpMS
fYJ/3q2JeOyxD/+9SkV8vmrxweruEQEaQEcX7Rvuj4i2PVsGSy/EkVf5VrdKEZVB
ZbA35jPvrUO7C4vT2Od+Dvcu5WAxmVPspwep85FTlHY+622+J9y4LH2fKd621ZYY
vT1u7PTDeUWSYoQXkVFXPJtJ77bXlSMJk3HFxC1/SKEML9BZbX/srixXWae2NnQi
w+mIVozpvFIC1tWxo+863SJ/T/vcmifSbNxKiAL3uWEd4RStIx0Pn7voMPAv+BV7
wOKGiu044aXRUFW9T4xvoqRpeU/rsD+5tYtqrt0CF6/yyUZxyHe24tR5YQIDAQAB
o4ICnzCCApswHQYDVR0OBBYEFNghJkXxrmbo8Oguu+LsdIpAjb6TMB8GA1UdIwQY
MBaAFKTnIF9dQSV6a7lfkA7sChEj51FkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcE9jZ1gxMUJKWHBydVYtUUR1d0tFU1BuVVdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9mNzYxYmQtNWMzYS00ZDJmLThjZDkt
M2U1OWNlNDQ1YjFjLzEvMkNFbVJmR3VadWp3NkM2NzR1eDBpa0NOdnBNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy9mNzYxYmQtNWMzYS00ZDJmLThjZDktM2U1OWNlNDQ1YjFj
LzEvcE9jZ1gxMUJKWHBydVYtUUR1d0tFU1BuVVdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG0BggrBgEFBQcBBwEB/wSBpDCBoTB4BAIAATByAwQBUEYA
AwQBUEYGAwQDWbxIAwQDXb+YAwQDXo8IAwQEXudgAwQCuRTMAwQCuRUoAwQAuRmN
AwQAuRmPAwQCuYYcAwQCud0kAwQCud8YAwQCwpZwAwQBw7IOAwQC1GGEAwQC1GGM
AwQB1O34AwQC2T3sMCUEAgACMB8DBQAqAiM4AwYGKgIjOUADBwEqAydAAAADBQMq
BurAMA0GCSqGSIb3DQEBCwUAA4IBAQCLIuiLVGOdBQOGP3al58GyvOhuJqgIsoRP
fKWiUdYS0Q91SZ710JyTyrVgwqCmKopQxKRxwx1AhloKXAybOxH0gFDI05KZPqML
XiS9Y1VRcdVaIK6GNl+mdLSOqA0OWE5YpqzKOB5/p9BOx9RrMjP7LPZCfwkE6dfW
ZYJ/bDzoJspr4JKBUYQXO1dFYelgD603To7/J/RXzgUzPSlfFhiRpvTaUoYKTTVd
ftz1gEWpD5k4LtQnu8K0SK0R1M6gqfn6S28lOr5HNq7gSVY74qh3mFdtiIZaQJYE
4cKVqHfJTlDX+kwW8S1xQOb6ph2u40OplSmuZAgrBq9b0JTIeMNC
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:23 2024 by rpki-client on console-fra.rpki-client.org