Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/vvpg0frBZpnEw2MJH4ZH1HiNWOo.roa
File: vvpg0frBZpnEw2MJH4ZH1HiNWOo.roa (raw, json)
Hash identifier: xyp9On27lHl4WYo8oq36itloXGBlpSo8zqSajLr734E=
Subject key identifier: BE:FA:60:D1:FA:C1:66:99:C4:C3:63:09:1F:86:47:D4:78:8D:58:EA
Certificate issuer: /CN=a4f8436003d37602026b65531755ca8fcd31bed2
Certificate serial: 018572311A3810E7368B9C3D64DA428731FA
Authority key identifier: A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/vvpg0frBZpnEw2MJH4ZH1HiNWOo.roa
Signing time: Mon 02 Jan 2023 11:14:58 +0000
ROA not before: Mon 02 Jan 2023 11:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31027
IP address blocks: 93.176.64.0/18 maxlen: 18
193.105.149.0/24 maxlen: 24
80.88.128.0/20 maxlen: 20
80.243.112.0/20 maxlen: 20
5.56.144.0/20 maxlen: 20
89.221.160.0/20 maxlen: 20
193.105.116.0/24 maxlen: 24
87.116.0.0/18 maxlen: 18
212.60.120.0/21 maxlen: 21
83.151.128.0/18 maxlen: 18
83.136.88.0/21 maxlen: 21
77.233.224.0/19 maxlen: 19
130.185.128.0/20 maxlen: 20
94.18.211.0/24 maxlen: 24
217.195.176.0/20 maxlen: 20
217.195.178.0/24 maxlen: 24
62.12.32.0/20 maxlen: 20
78.153.160.0/19 maxlen: 19
62.12.48.0/21 maxlen: 21
185.67.128.0/22 maxlen: 22
82.192.160.0/19 maxlen: 19
37.49.128.0/20 maxlen: 20
212.98.96.0/24 maxlen: 24
185.20.240.0/22 maxlen: 22
195.140.132.0/22 maxlen: 22
217.74.208.0/20 maxlen: 20
188.120.80.0/21 maxlen: 21
5.179.80.0/20 maxlen: 20
92.62.192.0/20 maxlen: 20
194.182.96.0/21 maxlen: 21
62.116.192.0/19 maxlen: 19
217.116.208.0/20 maxlen: 20
46.32.156.0/22 maxlen: 22
2a02:188::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:31:1a:38:10:e7:36:8b:9c:3d:64:da:42:87:31:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f8436003d37602026b65531755ca8fcd31bed2
Validity
Not Before: Jan 2 11:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=befa60d1fac16699c4c363091f8647d4788d58ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:42:67:85:0f:bd:8e:46:1e:da:5d:b6:ca:69:
aa:17:ff:63:f1:c6:bf:4a:a3:9c:60:e9:4a:c9:e7:
3e:cc:c9:70:31:21:05:27:d0:ad:8d:76:18:c0:c4:
c4:15:73:3d:f4:a8:c9:2f:99:77:c9:6e:34:e8:11:
75:ca:90:d8:e3:3d:bc:f7:74:a3:80:c8:ca:b9:11:
93:2d:61:fc:e8:82:d8:a2:f4:73:ed:dc:b3:96:83:
e1:2d:f6:f6:d1:ee:3a:2f:2c:13:e6:fc:8c:d8:7b:
5b:4d:35:1c:94:3d:8e:aa:2d:ed:0a:2e:71:ca:c3:
93:ae:58:2a:19:3b:d9:1b:d0:a5:d6:a6:97:6b:10:
f3:a8:a9:07:e9:bb:f7:b1:14:40:9b:be:8e:e1:21:
31:19:56:19:2c:5c:3a:31:3a:80:d5:4a:03:a7:92:
0f:f8:0c:f4:de:06:0d:d3:6d:1f:67:87:b2:4c:cc:
5b:23:a5:b4:2d:10:b3:25:6e:7c:05:1d:58:b6:3b:
77:b8:b2:40:7b:36:b8:75:2d:0c:54:92:75:fe:cc:
8b:b5:06:31:de:b1:1e:44:51:c1:cc:47:c2:b8:4f:
f1:03:31:ff:cb:9b:86:af:d0:69:4d:bf:0f:c5:81:
c5:cb:af:91:2d:5f:96:85:69:55:b4:9c:bc:83:e7:
a9:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:FA:60:D1:FA:C1:66:99:C4:C3:63:09:1F:86:47:D4:78:8D:58:EA
X509v3 Authority Key Identifier:
keyid:A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/vvpg0frBZpnEw2MJH4ZH1HiNWOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.56.144.0/20
5.179.80.0/20
37.49.128.0/20
46.32.156.0/22
62.12.32.0-62.12.55.255
62.116.192.0/19
77.233.224.0/19
78.153.160.0/19
80.88.128.0/20
80.243.112.0/20
82.192.160.0/19
83.136.88.0/21
83.151.128.0/18
87.116.0.0/18
89.221.160.0/20
92.62.192.0/20
93.176.64.0/18
94.18.211.0/24
130.185.128.0/20
185.20.240.0/22
185.67.128.0/22
188.120.80.0/21
193.105.116.0/24
193.105.149.0/24
194.182.96.0/21
195.140.132.0/22
212.60.120.0/21
212.98.96.0/24
217.74.208.0/20
217.116.208.0/20
217.195.176.0/20
IPv6:
2a02:188::/29
Signature Algorithm: sha256WithRSAEncryption
8e:5c:ef:7c:78:d8:13:e8:95:53:97:27:7d:b8:90:73:7b:de:
46:8d:ff:a2:6d:45:cb:ce:9e:ac:3f:43:94:e9:f3:e3:83:1e:
29:31:8d:60:03:23:8a:06:7e:40:04:54:15:7f:ca:5f:45:b5:
bf:1e:32:e5:d7:bd:10:93:ed:b7:d7:90:83:28:d8:97:ba:4f:
2c:e3:e7:b4:9d:9b:ef:ee:fe:ef:ee:2b:04:af:61:18:0a:38:
15:45:a9:db:b1:5c:81:1c:bc:4c:8e:56:7b:bd:9e:d4:53:5f:
6b:0f:92:e3:0e:34:a0:d0:5a:7b:4e:2c:06:60:57:42:ee:37:
59:f0:1b:39:ed:bd:56:6a:3b:00:b6:c1:2b:7d:ad:19:3b:a6:
00:4a:88:8d:89:86:1e:98:e2:f4:d2:1e:3f:8d:f7:ce:74:0c:
a1:d7:9d:c6:63:cd:fb:3a:32:76:af:0f:bf:63:8c:90:39:5f:
72:cf:da:96:91:62:c1:83:25:42:8b:30:2a:22:ba:0c:2f:e6:
e4:a5:7f:8e:44:58:4a:c8:04:7f:b6:48:b5:7e:d2:49:74:73:
29:ab:53:5f:7b:b5:bd:1e:c2:9f:23:8e:3f:4e:1e:42:c6:c4:
6a:58:c5:53:1b:65:f9:07:88:0e:72:33:5e:be:5b:10:f1:ad:
53:e5:1d:3d
-----BEGIN CERTIFICATE-----
MIIFzTCCBLWgAwIBAgISAYVyMRo4EOc2i5w9ZNpChzH6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0Zjg0MzYwMDNkMzc2MDIwMjZiNjU1MzE3NTVjYThmY2Qz
MWJlZDIwHhcNMjMwMTAyMTExNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZWZhNjBkMWZhYzE2Njk5YzRjMzYzMDkxZjg2NDdkNDc4OGQ1OGVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtUJnhQ+9jkYe2l22ymmqF/9j8ca/
SqOcYOlKyec+zMlwMSEFJ9CtjXYYwMTEFXM99KjJL5l3yW406BF1ypDY4z2893Sj
gMjKuRGTLWH86ILYovRz7dyzloPhLfb20e46LywT5vyM2HtbTTUclD2Oqi3tCi5x
ysOTrlgqGTvZG9Cl1qaXaxDzqKkH6bv3sRRAm76O4SExGVYZLFw6MTqA1UoDp5IP
+Az03gYN020fZ4eyTMxbI6W0LRCzJW58BR1Ytjt3uLJAeza4dS0MVJJ1/syLtQYx
3rEeRFHBzEfCuE/xAzH/y5uGr9BpTb8PxYHFy6+RLV+WhWlVtJy8g+ep7wIDAQAB
o4IC2TCCAtUwHQYDVR0OBBYEFL76YNH6wWaZxMNjCR+GR9R4jVjqMB8GA1UdIwQY
MBaAFKT4Q2AD03YCAmtlUxdVyo/NMb7SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFBoRFlBUFRkZ0lDYTJWVEYxWEtqODB4dnRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS81MTU2MDgtNTAxMi00YTQwLWIzMjQt
MjdiZjgzY2RlZDZiLzEvdnZwZzBmckJacG5FdzJNSkg0WkgxSGlOV09vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZS81MTU2MDgtNTAxMi00YTQwLWIzMjQtMjdiZjgzY2RlZDZi
LzEvcFBoRFlBUFRkZ0lDYTJWVEYxWEtqODB4dnRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHuBggrBgEFBQcBBwEB/wSB3jCB2zCByQQCAAEwgcIDBAQF
OJADBAQFs1ADBAQlMYADBAIuIJwwDAMEBT4MIAMEAz4MMAMEBT50wAMEBU3p4AME
BU6ZoAMEBFBYgAMEBFDzcAMEBVLAoAMEA1OIWAMEBlOXgAMEBld0AAMEBFndoAME
BFw+wAMEBl2wQAMEAF4S0wMEBIK5gAMEArkU8AMEArlDgAMEA7x4UAMEAMFpdAME
AMFplQMEA8K2YAMEAsOMhAMEA9Q8eAMEANRiYAMEBNlK0AMEBNl00AMEBNnDsDAN
BAIAAjAHAwUDKgIBiDANBgkqhkiG9w0BAQsFAAOCAQEAjlzvfHjYE+iVU5cnfbiQ
c3veRo3/om1Fy86erD9DlOnz44MeKTGNYAMjigZ+QARUFX/KX0W1vx4y5de9EJPt
t9eQgyjYl7pPLOPntJ2b7+7+7+4rBK9hGAo4FUWp27FcgRy8TI5We72e1FNfaw+S
4w40oNBae04sBmBXQu43WfAbOe29Vmo7ALbBK32tGTumAEqIjYmGHpji9NIeP433
znQModedxmPN+zoydq8Pv2OMkDlfcs/alpFiwYMlQoswKiK6DC/m5KV/jkRYSsgE
f7ZItX7SSXRzKatTX3u1vR7CnyOOP04eQsbEaljFUxtl+QeIDnIzXr5bEPGtU+Ud
PQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:25 2024 by rpki-client on console-ams.rpki-client.org