Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/1-KJ_SlqMjhhBrgL8chb1pul5hIg.roa
File: 1-KJ_SlqMjhhBrgL8chb1pul5hIg.roa (raw, json)
Hash identifier: PinjotTJ6IDw71STX50WzFDhfG4gSmBlCOZcOFGtaH4=
Subject key identifier: F8:A2:7F:4A:5A:8C:8E:18:41:AE:02:FC:72:16:F5:A6:E9:79:84:88
Certificate issuer: /CN=61b534437503668815add93cd17d0ad3e1b1a877
Certificate serial: 01857169C8197776AAD3A1A9A3D9E2511CAE
Authority key identifier: 61:B5:34:43:75:03:66:88:15:AD:D9:3C:D1:7D:0A:D3:E1:B1:A8:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/1-KJ_SlqMjhhBrgL8chb1pul5hIg.roa
Signing time: Mon 02 Jan 2023 07:37:15 +0000
ROA not before: Mon 02 Jan 2023 07:37:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13127
IP address blocks: 82.172.0.0/16 maxlen: 24
82.173.192.0/19 maxlen: 24
62.166.51.0/24 maxlen: 24
62.166.50.0/24 maxlen: 24
62.166.56.0/24 maxlen: 24
82.173.0.0/16 maxlen: 24
82.173.128.0/18 maxlen: 24
143.176.0.0/16 maxlen: 24
62.166.0.0/17 maxlen: 24
87.214.0.0/15 maxlen: 24
82.173.81.0/24 maxlen: 24
82.175.0.0/16 maxlen: 24
82.172.128.0/17 maxlen: 24
62.250.0.0/17 maxlen: 24
81.58.0.0/16 maxlen: 24
217.149.216.0/24 maxlen: 24
62.58.0.0/15 maxlen: 24
81.58.0.0/15 maxlen: 24
87.213.0.0/16 maxlen: 24
143.179.0.0/16 maxlen: 24
87.211.0.0/16 maxlen: 24
81.59.128.0/17 maxlen: 24
2a01:380:6000::/43 maxlen: 43
2a01:380::/32 maxlen: 40
Validation: Failed, certificate revoked on Thu 05 Jan 2023 11:17:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:c8:19:77:76:aa:d3:a1:a9:a3:d9:e2:51:1c:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b534437503668815add93cd17d0ad3e1b1a877
Validity
Not Before: Jan 2 07:37:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f8a27f4a5a8c8e1841ae02fc7216f5a6e9798488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0f:49:f8:98:69:fa:d7:4f:4a:9e:1f:8e:f9:
be:88:9c:9c:8e:d4:bf:90:b9:8f:d7:2a:0d:62:af:
59:97:bd:a2:2d:d1:93:a9:47:15:5e:86:26:4b:dc:
f4:ea:64:ca:65:fa:55:85:28:91:c6:ea:c8:01:d3:
34:19:ac:3c:19:a7:bf:1c:6f:ee:1c:7d:e0:c3:c1:
a8:e7:fd:19:79:74:ce:35:c4:41:90:1c:15:a7:4c:
d9:61:24:30:a2:80:f6:80:d4:bc:2a:40:9a:77:a9:
af:51:03:fd:a4:10:0a:27:e0:d6:97:af:2e:45:0d:
c8:30:58:ba:42:13:ae:bd:7e:89:81:3c:18:8c:33:
9c:6f:db:ec:63:9b:5b:2e:ce:bc:2d:f1:b3:fa:37:
a5:19:f9:6b:95:0f:de:07:c4:b8:fa:a1:fc:46:09:
c6:21:b4:ec:df:03:75:d9:ce:c5:e8:2a:ad:91:76:
5e:5c:22:89:33:c4:23:a4:ce:71:af:ec:ef:d3:f3:
be:3e:58:4c:ae:ca:79:46:fa:41:75:5a:0c:9f:8e:
cd:1c:9e:ef:41:a6:ef:14:f3:8a:b4:8a:ae:d3:91:
f7:07:b6:51:5d:88:35:a8:50:ca:90:c1:ad:f3:16:
76:91:97:0a:19:02:4a:98:70:58:7c:8b:d4:40:13:
37:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:A2:7F:4A:5A:8C:8E:18:41:AE:02:FC:72:16:F5:A6:E9:79:84:88
X509v3 Authority Key Identifier:
keyid:61:B5:34:43:75:03:66:88:15:AD:D9:3C:D1:7D:0A:D3:E1:B1:A8:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/1-KJ_SlqMjhhBrgL8chb1pul5hIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/YbU0Q3UDZogVrdk80X0K0-GxqHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.58.0.0/15
62.166.0.0/17
62.250.0.0/17
81.58.0.0/15
82.172.0.0/15
82.175.0.0/16
87.211.0.0/16
87.213.0.0-87.215.255.255
143.176.0.0/16
143.179.0.0/16
217.149.216.0/24
IPv6:
2a01:380::/32
Signature Algorithm: sha256WithRSAEncryption
3e:ce:fc:8d:00:9d:21:3f:79:d9:3f:9c:39:2e:19:9d:bc:b0:
70:15:e7:90:7e:ab:69:43:62:e0:ec:0b:a1:f2:26:7b:d2:83:
33:c1:c1:3d:e3:b1:99:25:c9:35:75:e6:a1:85:e5:3d:15:76:
ec:ff:5b:47:75:05:41:0f:6c:fb:32:a2:f3:fd:a1:6f:73:5c:
d9:3f:ed:90:44:7d:19:7e:97:a6:7e:7c:45:d4:4f:0c:ee:55:
2e:08:08:9a:bb:9e:bb:92:f4:9b:41:f3:e3:7d:21:cd:4b:34:
22:48:59:c0:6f:16:a2:2f:57:23:97:aa:95:54:09:71:fc:99:
14:40:8b:28:4f:7e:de:8b:a7:f2:ea:c3:fc:e9:3d:ac:b8:b9:
fa:6f:31:bb:dd:f8:91:1e:8e:09:65:54:5e:ff:21:f4:b4:6c:
c8:1d:99:15:97:d9:e6:a2:8f:68:f3:8e:cd:cd:85:00:fc:7e:
a3:12:ce:7d:56:3c:d4:da:25:a3:ec:0e:96:6f:f7:ce:51:d7:
3c:7b:de:dc:2c:98:61:68:a2:dd:51:ba:98:80:5b:b5:59:8a:
eb:5f:b5:44:bd:cd:de:9e:5b:30:cc:c8:70:ab:e9:6d:87:ed:
e1:4c:d6:10:d8:3e:5a:11:bd:ef:2e:f0:54:bc:34:98:07:f8:
e2:58:96:52
-----BEGIN CERTIFICATE-----
MIIFSDCCBDCgAwIBAgISAYVxacgZd3aq06Gpo9niURyuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxYjUzNDQzNzUwMzY2ODgxNWFkZDkzY2QxN2QwYWQzZTFi
MWE4NzcwHhcNMjMwMTAyMDczNzE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOGEyN2Y0YTVhOGM4ZTE4NDFhZTAyZmM3MjE2ZjVhNmU5Nzk4NDg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtg9J+Jhp+tdPSp4fjvm+iJycjtS/
kLmP1yoNYq9Zl72iLdGTqUcVXoYmS9z06mTKZfpVhSiRxurIAdM0Gaw8Gae/HG/u
HH3gw8Go5/0ZeXTONcRBkBwVp0zZYSQwooD2gNS8KkCad6mvUQP9pBAKJ+DWl68u
RQ3IMFi6QhOuvX6JgTwYjDOcb9vsY5tbLs68LfGz+jelGflrlQ/eB8S4+qH8RgnG
IbTs3wN12c7F6CqtkXZeXCKJM8QjpM5xr+zv0/O+PlhMrsp5RvpBdVoMn47NHJ7v
QabvFPOKtIqu05H3B7ZRXYg1qFDKkMGt8xZ2kZcKGQJKmHBYfIvUQBM34wIDAQAB
o4ICVDCCAlAwHQYDVR0OBBYEFPiif0pajI4YQa4C/HIW9abpeYSIMB8GA1UdIwQY
MBaAFGG1NEN1A2aIFa3ZPNF9CtPhsah3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWJVMFEzVURab2dWcmRrODBYMEswLUd4cUhjLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS9jMWFjZDYtMjMwYS00ZTM2LWE1OGYt
ZjU1NWUyZTY4YTEwLzEvMS1LSl9TbHFNamhoQnJnTDhjaGIxcHVsNWhJZy5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZmUvYzFhY2Q2LTIzMGEtNGUzNi1hNThmLWY1NTVlMmU2OGEx
MC8xL1liVTBRM1VEWm9nVnJkazgwWDBLMC1HeHFIYy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjBpBggrBgEFBQcBBwEB/wRaMFgwRwQCAAEwQQMDAT46AwQH
PqYAAwQHPvoAAwMBUToDAwFSrAMDAFKvAwMAV9MwCgMDAFfVAwMDV9ADAwCPsAMD
AI+zAwQA2ZXYMA0EAgACMAcDBQAqAQOAMA0GCSqGSIb3DQEBCwUAA4IBAQA+zvyN
AJ0hP3nZP5w5LhmdvLBwFeeQfqtpQ2Lg7Auh8iZ70oMzwcE947GZJck1deahheU9
FXbs/1tHdQVBD2z7MqLz/aFvc1zZP+2QRH0ZfpemfnxF1E8M7lUuCAiau567kvSb
QfPjfSHNSzQiSFnAbxaiL1cjl6qVVAlx/JkUQIsoT37ei6fy6sP86T2suLn6bzG7
3fiRHo4JZVRe/yH0tGzIHZkVl9nmoo9o847NzYUA/H6jEs59VjzU2iWj7A6Wb/fO
Udc8e97cLJhhaKLdUbqYgFu1WYrrX7VEvc3enlswzMhwq+lth+3hTNYQ2D5aEb3v
LvBUvDSYB/jiWJZS
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:41 2024 by rpki-client on console-ams.rpki-client.org