Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/TzqPzNYjNNAevt_BGloYgdknkAA.roa
File: TzqPzNYjNNAevt_BGloYgdknkAA.roa (raw, json)
Hash identifier: g6k8f1Yc4cazS1SX2e8Qt/UfTQ11fUF3xEMoWTLjmQA=
Subject key identifier: 4F:3A:8F:CC:D6:23:34:D0:1E:BE:DF:C1:1A:5A:18:81:D9:27:90:00
Certificate issuer: /CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
Certificate serial: 018A6AB07C1BEBBFA17FF411A2B4DCE2B9CB
Authority key identifier: A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/TzqPzNYjNNAevt_BGloYgdknkAA.roa
Signing time: Wed 06 Sep 2023 13:31:05 +0000
ROA not before: Wed 06 Sep 2023 13:31:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207199
IP address blocks: 193.239.96.0/22 maxlen: 22
185.235.52.0/24 maxlen: 24
185.235.52.0/22 maxlen: 22
185.25.140.0/24 maxlen: 24
178.251.1.0/24 maxlen: 24
178.251.0.0/21 maxlen: 21
91.197.248.0/22 maxlen: 22
91.197.248.0/24 maxlen: 24
77.243.128.0/20 maxlen: 20
77.243.132.0/24 maxlen: 24
81.95.240.0/20 maxlen: 20
81.95.249.0/24 maxlen: 24
185.154.240.0/22 maxlen: 22
195.69.128.0/22 maxlen: 22
109.71.56.0/21 maxlen: 21
91.217.201.0/24 maxlen: 24
46.36.204.0/22 maxlen: 22
46.36.208.0/21 maxlen: 21
2a02:2339::/36 maxlen: 36
Validation: Failed, certificate revoked on Thu 19 Oct 2023 11:52:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6a:b0:7c:1b:eb:bf:a1:7f:f4:11:a2:b4:dc:e2:b9:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
Validity
Not Before: Sep 6 13:31:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f3a8fccd62334d01ebedfc11a5a1881d9279000
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a8:cc:11:6b:2d:89:f2:9a:5a:e9:1f:3d:15:
4f:e4:d5:95:7d:5a:c6:da:e7:cb:22:7b:16:80:8d:
bb:55:d3:ad:05:79:ce:27:3b:52:90:07:c9:20:a9:
90:2c:7a:db:0a:22:e1:a4:94:42:20:ae:37:f5:98:
25:e6:0e:93:95:08:b7:95:c3:ca:bc:4b:2f:14:0e:
37:7c:a4:48:7b:7a:ed:59:55:1f:70:1b:12:22:98:
8a:17:60:f5:8f:23:a1:4c:a3:ea:1b:dc:61:69:8c:
55:d0:a8:32:90:84:b0:18:0a:67:ea:b1:4c:95:b8:
bb:e5:76:94:b6:ca:f3:c6:fb:41:62:cf:3d:ea:c8:
37:3e:78:87:4a:06:9e:d4:84:bb:af:a6:21:be:23:
9f:69:ac:87:76:c4:89:11:e2:f8:26:99:e8:f8:ff:
f3:53:67:a4:f7:ab:03:5c:43:17:6a:a2:29:1e:b6:
fc:de:0c:03:11:95:a4:c9:43:eb:99:29:d7:fb:de:
49:18:d1:0a:38:a4:0f:fb:14:28:b1:76:fd:9c:85:
b3:9d:f1:22:51:91:64:2d:c3:c7:db:1c:a4:d7:92:
ac:c3:79:0e:f3:a0:16:03:b3:60:ab:ea:0a:97:0d:
5e:9f:88:e3:75:9c:7d:75:19:39:f2:9c:30:fc:1f:
73:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:3A:8F:CC:D6:23:34:D0:1E:BE:DF:C1:1A:5A:18:81:D9:27:90:00
X509v3 Authority Key Identifier:
keyid:A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/TzqPzNYjNNAevt_BGloYgdknkAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/pOcgX11BJXpruV-QDuwKESPnUWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.36.204.0-46.36.215.255
77.243.128.0/20
81.95.240.0/20
91.197.248.0/22
91.217.201.0/24
109.71.56.0/21
178.251.0.0/21
185.25.140.0/24
185.154.240.0/22
185.235.52.0/22
193.239.96.0/22
195.69.128.0/22
IPv6:
2a02:2339::/36
Signature Algorithm: sha256WithRSAEncryption
a4:42:f4:66:3f:2e:ed:cd:97:fc:3b:0f:bd:d3:f8:2f:3f:2a:
86:3a:61:b0:03:4e:f2:f8:d6:4b:61:c1:fc:0b:89:ad:43:8d:
55:30:06:96:78:b7:66:c9:b8:fb:48:6b:fb:c3:92:22:81:54:
25:84:c8:6f:19:9e:42:30:70:62:13:bf:8d:8e:e9:ae:68:2b:
35:7f:5a:2d:1e:03:72:df:2f:fa:44:91:33:4f:4e:ae:e5:74:
04:8d:ae:93:69:c8:d5:26:54:d8:d1:3e:08:81:63:a7:36:9f:
4e:cf:c0:7a:a5:ec:52:68:77:80:ee:83:86:d2:a4:0a:4d:f5:
f8:42:61:ac:42:8d:a5:81:24:0e:4d:f3:3b:98:1d:d1:78:ef:
56:ff:67:88:fb:eb:ab:63:2e:e0:cb:a2:c4:80:5f:8c:62:cd:
78:17:66:9b:e2:90:31:fa:00:87:54:5c:9b:91:b5:9a:c4:f1:
f3:7b:09:ea:e3:02:df:32:0f:ba:12:f2:3a:a7:12:32:a8:51:
55:d1:ae:fd:9d:b2:0d:28:60:cd:1c:50:bd:82:76:6e:00:f7:
1e:cc:5a:ac:c4:43:89:ec:91:56:6d:e9:64:28:4b:fb:65:f2:
af:c9:c3:b5:49:7a:33:f1:77:18:32:21:b3:25:0c:6e:48:85:
8e:f3:41:f1
-----BEGIN CERTIFICATE-----
MIIFVzCCBD+gAwIBAgISAYpqsHwb67+hf/QRorTc4rnLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0ZTcyMDVmNWQ0MTI1N2E2YmI5NWY5MDBlZWMwYTExMjNl
NzUxNjQwHhcNMjMwOTA2MTMzMTA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZjNhOGZjY2Q2MjMzNGQwMWViZWRmYzExYTVhMTg4MWQ5Mjc5MDAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl6jMEWstifKaWukfPRVP5NWVfVrG
2ufLInsWgI27VdOtBXnOJztSkAfJIKmQLHrbCiLhpJRCIK439Zgl5g6TlQi3lcPK
vEsvFA43fKRIe3rtWVUfcBsSIpiKF2D1jyOhTKPqG9xhaYxV0KgykISwGApn6rFM
lbi75XaUtsrzxvtBYs896sg3PniHSgae1IS7r6YhviOfaayHdsSJEeL4Jpno+P/z
U2ek96sDXEMXaqIpHrb83gwDEZWkyUPrmSnX+95JGNEKOKQP+xQosXb9nIWznfEi
UZFkLcPH2xyk15Ksw3kO86AWA7Ngq+oKlw1en4jjdZx9dRk58pww/B9zyQIDAQAB
o4ICYzCCAl8wHQYDVR0OBBYEFE86j8zWIzTQHr7fwRpaGIHZJ5AAMB8GA1UdIwQY
MBaAFKTnIF9dQSV6a7lfkA7sChEj51FkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcE9jZ1gxMUJKWHBydVYtUUR1d0tFU1BuVVdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9mNzYxYmQtNWMzYS00ZDJmLThjZDkt
M2U1OWNlNDQ1YjFjLzEvVHpxUHpOWWpOTkFldnRfQkdsb1lnZGtua0FBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy9mNzYxYmQtNWMzYS00ZDJmLThjZDktM2U1OWNlNDQ1YjFj
LzEvcE9jZ1gxMUJKWHBydVYtUUR1d0tFU1BuVVdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHkGCCsGAQUFBwEHAQH/BGowaDBWBAIAATBQMAwDBAIuJMwD
BAMuJNADBARN84ADBARRX/ADBAJbxfgDBABb2ckDBANtRzgDBAOy+wADBAC5GYwD
BAK5mvADBAK56zQDBALB72ADBALDRYAwDgQCAAIwCAMGBCoCIzkAMA0GCSqGSIb3
DQEBCwUAA4IBAQCkQvRmPy7tzZf8Ow+90/gvPyqGOmGwA07y+NZLYcH8C4mtQ41V
MAaWeLdmybj7SGv7w5IigVQlhMhvGZ5CMHBiE7+NjumuaCs1f1otHgNy3y/6RJEz
T06u5XQEja6TacjVJlTY0T4IgWOnNp9Oz8B6pexSaHeA7oOG0qQKTfX4QmGsQo2l
gSQOTfM7mB3ReO9W/2eI++urYy7gy6LEgF+MYs14F2ab4pAx+gCHVFybkbWaxPHz
ewnq4wLfMg+6EvI6pxIyqFFV0a79nbINKGDNHFC9gnZuAPcezFqsxEOJ7JFWbelk
KEv7ZfKvycO1SXoz8XcYMiGzJQxuSIWO80Hx
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:51 2024 by rpki-client on console-ams.rpki-client.org