Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/JJDAWInKErcYyH3BvFsOvzJzAUU.roa
File: JJDAWInKErcYyH3BvFsOvzJzAUU.roa (raw, json)
Hash identifier: YKlLhEflq8ug4+rgGIWAdknryvd9rUSx82Lm2lPTpJg=
Subject key identifier: 24:90:C0:58:89:CA:12:B7:18:C8:7D:C1:BC:5B:0E:BF:32:73:01:45
Certificate issuer: /CN=61b534437503668815add93cd17d0ad3e1b1a877
Certificate serial: 018A6F233A9C3E36FFB3C03A0A7BB7672457
Authority key identifier: 61:B5:34:43:75:03:66:88:15:AD:D9:3C:D1:7D:0A:D3:E1:B1:A8:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/JJDAWInKErcYyH3BvFsOvzJzAUU.roa
Signing time: Thu 07 Sep 2023 10:14:54 +0000
ROA not before: Thu 07 Sep 2023 10:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13127
IP address blocks: 82.172.0.0/16 maxlen: 24
82.173.192.0/19 maxlen: 24
62.166.51.0/24 maxlen: 24
62.166.50.0/24 maxlen: 24
87.215.0.0/16 maxlen: 24
62.166.56.0/24 maxlen: 24
82.173.0.0/16 maxlen: 24
82.173.128.0/18 maxlen: 24
143.176.0.0/16 maxlen: 24
62.166.0.0/17 maxlen: 24
87.214.0.0/15 maxlen: 24
82.173.81.0/24 maxlen: 24
82.175.0.0/16 maxlen: 24
82.172.128.0/17 maxlen: 24
81.58.0.0/16 maxlen: 24
217.149.216.0/24 maxlen: 24
81.58.0.0/15 maxlen: 24
62.58.0.0/15 maxlen: 24
87.213.0.0/16 maxlen: 24
143.179.0.0/16 maxlen: 24
87.211.0.0/16 maxlen: 24
81.59.128.0/17 maxlen: 24
2a01:380:6000::/43 maxlen: 43
2a01:380::/32 maxlen: 40
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6f:23:3a:9c:3e:36:ff:b3:c0:3a:0a:7b:b7:67:24:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b534437503668815add93cd17d0ad3e1b1a877
Validity
Not Before: Sep 7 10:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2490c05889ca12b718c87dc1bc5b0ebf32730145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:66:ff:4c:48:f3:78:e1:30:71:e0:69:52:53:
0b:15:6d:5a:cf:39:ea:d8:19:54:22:0c:5a:56:75:
dc:e8:66:7f:ca:55:b5:c2:07:35:37:58:fc:6c:bb:
06:70:7e:14:81:34:a4:d2:fd:0a:72:80:a7:2c:d3:
9f:d3:b3:69:c9:dd:b0:0d:f3:0f:4e:c3:dd:6c:ae:
39:cc:ac:24:95:8d:e6:35:bb:61:23:31:3f:0e:ea:
f4:5f:f0:b8:9c:6f:cf:d5:88:ed:9d:f3:7a:7e:e2:
e1:ba:09:09:c8:7c:26:0b:3a:ea:93:b5:3c:9c:14:
db:1a:d0:78:12:2c:c6:97:37:8f:49:21:cd:06:89:
84:ef:ca:92:0b:53:65:c7:50:67:59:48:d2:db:3b:
f9:90:4e:79:86:ac:35:3d:17:d3:b2:3a:17:df:1d:
03:56:e2:7c:3c:f4:02:01:11:11:9a:c8:11:df:35:
55:7b:88:2c:73:db:ab:45:95:7c:81:59:7d:91:a1:
7f:40:d1:4b:5d:b3:e5:ed:45:c4:c0:6e:8c:45:6f:
fb:43:1f:f7:88:c1:31:dd:7a:48:18:6b:5d:d5:d9:
9f:b1:ac:b1:bb:91:ad:58:b8:9c:45:06:17:d8:10:
88:11:53:36:6d:38:27:cc:65:ec:3f:a5:4a:e4:fe:
a5:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:90:C0:58:89:CA:12:B7:18:C8:7D:C1:BC:5B:0E:BF:32:73:01:45
X509v3 Authority Key Identifier:
keyid:61:B5:34:43:75:03:66:88:15:AD:D9:3C:D1:7D:0A:D3:E1:B1:A8:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/JJDAWInKErcYyH3BvFsOvzJzAUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/YbU0Q3UDZogVrdk80X0K0-GxqHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.58.0.0/15
62.166.0.0/17
81.58.0.0/15
82.172.0.0/15
82.175.0.0/16
87.211.0.0/16
87.213.0.0-87.215.255.255
143.176.0.0/16
143.179.0.0/16
217.149.216.0/24
IPv6:
2a01:380::/32
Signature Algorithm: sha256WithRSAEncryption
8f:78:9a:9f:73:b4:11:66:c4:8b:01:ad:a9:37:41:e5:85:1a:
af:ab:ce:14:4c:62:d2:a2:ac:58:09:55:56:30:66:3d:25:04:
33:e7:ce:ca:86:ca:31:ce:e7:b1:fe:5a:cf:ef:3a:69:a2:c0:
2a:2f:a5:49:84:f0:64:99:6a:7f:1b:d0:75:64:79:93:80:37:
36:2a:96:f9:38:6a:ee:43:56:ba:2a:a0:2c:d4:00:3b:9d:2c:
a1:54:b0:a1:da:ca:15:cf:73:5e:f4:6f:a7:98:23:a3:f6:22:
97:b8:75:38:cb:7f:81:7f:1a:41:6f:0a:84:d5:97:c8:58:77:
25:bc:d0:54:50:13:08:88:d1:3a:47:db:fc:e4:e9:20:ff:5a:
c5:c8:6d:bd:85:21:ff:a6:72:ef:40:ed:66:60:a7:9f:cc:62:
95:50:53:05:80:aa:3d:47:fc:9e:54:16:de:97:23:ad:f5:cb:
81:1f:38:2a:87:98:c9:13:5f:a5:b9:fb:ae:b6:c3:18:b2:a3:
12:d4:5b:79:2e:06:98:87:74:ef:86:16:f9:c1:23:43:8c:1f:
cb:e5:5d:bd:34:7f:a6:1b:a2:a9:44:a3:0c:e3:25:c9:03:bb:
c1:75:7e:40:75:3c:13:f6:74:08:d6:5f:4f:18:87:10:b3:a3:
91:e7:86:e6
-----BEGIN CERTIFICATE-----
MIIFQTCCBCmgAwIBAgISAYpvIzqcPjb/s8A6Cnu3ZyRXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxYjUzNDQzNzUwMzY2ODgxNWFkZDkzY2QxN2QwYWQzZTFi
MWE4NzcwHhcNMjMwOTA3MTAxNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNDkwYzA1ODg5Y2ExMmI3MThjODdkYzFiYzViMGViZjMyNzMwMTQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvmb/TEjzeOEwceBpUlMLFW1azznq
2BlUIgxaVnXc6GZ/ylW1wgc1N1j8bLsGcH4UgTSk0v0KcoCnLNOf07Npyd2wDfMP
TsPdbK45zKwklY3mNbthIzE/Dur0X/C4nG/P1YjtnfN6fuLhugkJyHwmCzrqk7U8
nBTbGtB4EizGlzePSSHNBomE78qSC1Nlx1BnWUjS2zv5kE55hqw1PRfTsjoX3x0D
VuJ8PPQCARERmsgR3zVVe4gsc9urRZV8gVl9kaF/QNFLXbPl7UXEwG6MRW/7Qx/3
iMEx3XpIGGtd1dmfsayxu5GtWLicRQYX2BCIEVM2bTgnzGXsP6VK5P6lnwIDAQAB
o4ICTTCCAkkwHQYDVR0OBBYEFCSQwFiJyhK3GMh9wbxbDr8ycwFFMB8GA1UdIwQY
MBaAFGG1NEN1A2aIFa3ZPNF9CtPhsah3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWJVMFEzVURab2dWcmRrODBYMEswLUd4cUhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS9jMWFjZDYtMjMwYS00ZTM2LWE1OGYt
ZjU1NWUyZTY4YTEwLzEvSkpEQVdJbktFcmNZeUgzQnZGc092ekp6QVVVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS9jMWFjZDYtMjMwYS00ZTM2LWE1OGYtZjU1NWUyZTY4YTEw
LzEvWWJVMFEzVURab2dWcmRrODBYMEswLUd4cUhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGMGCCsGAQUFBwEHAQH/BFQwUjBBBAIAATA7AwMBPjoDBAc+
pgADAwFROgMDAVKsAwMAUq8DAwBX0zAKAwMAV9UDAwNX0AMDAI+wAwMAj7MDBADZ
ldgwDQQCAAIwBwMFACoBA4AwDQYJKoZIhvcNAQELBQADggEBAI94mp9ztBFmxIsB
rak3QeWFGq+rzhRMYtKirFgJVVYwZj0lBDPnzsqGyjHO57H+Ws/vOmmiwCovpUmE
8GSZan8b0HVkeZOANzYqlvk4au5DVroqoCzUADudLKFUsKHayhXPc170b6eYI6P2
Ipe4dTjLf4F/GkFvCoTVl8hYdyW80FRQEwiI0TpH2/zk6SD/WsXIbb2FIf+mcu9A
7WZgp5/MYpVQUwWAqj1H/J5UFt6XI631y4EfOCqHmMkTX6W5+662wxiyoxLUW3ku
BpiHdO+GFvnBI0OMH8vlXb00f6YboqlEowzjJckDu8F1fkB1PBP2dAjWX08YhxCz
o5HnhuY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:07 2024 by rpki-client on console-fra.rpki-client.org