Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/8abeed-f53b-4776-a8e2-36e9a79bd950/1/9P48K10wULMhS_XzYujAvOQ4riY.roa
File: 9P48K10wULMhS_XzYujAvOQ4riY.roa (raw, json)
Hash identifier: zaAHLiLw9qGSElhVCwZNmDFbfXKj+0swuGXpsb+7r88=
Subject key identifier: F4:FE:3C:2B:5D:30:50:B3:21:4B:F5:F3:62:E8:C0:BC:E4:38:AE:26
Certificate issuer: /CN=297c508d23b38315bbf45b726d22050a46127b8c
Certificate serial: 018750C27B86551339D26062DCA13126E7D8
Authority key identifier: 29:7C:50:8D:23:B3:83:15:BB:F4:5B:72:6D:22:05:0A:46:12:7B:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXxQjSOzgxW79FtybSIFCkYSe4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/8abeed-f53b-4776-a8e2-36e9a79bd950/1/9P48K10wULMhS_XzYujAvOQ4riY.roa
Signing time: Wed 05 Apr 2023 09:32:15 +0000
ROA not before: Wed 05 Apr 2023 09:32:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34177
IP address blocks: 5.133.68.0/22 maxlen: 22
83.142.144.0/21 maxlen: 21
62.244.117.0/24 maxlen: 24
212.106.96.0/19 maxlen: 19
91.90.96.0/21 maxlen: 21
82.210.0.0/19 maxlen: 19
195.15.128.0/18 maxlen: 18
185.5.108.0/22 maxlen: 22
78.31.40.0/21 maxlen: 21
83.118.192.0/19 maxlen: 19
178.16.160.0/20 maxlen: 20
159.180.224.0/19 maxlen: 19
82.210.32.0/19 maxlen: 19
94.228.176.0/20 maxlen: 20
2001:ab8::/29 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:50:c2:7b:86:55:13:39:d2:60:62:dc:a1:31:26:e7:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297c508d23b38315bbf45b726d22050a46127b8c
Validity
Not Before: Apr 5 09:32:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4fe3c2b5d3050b3214bf5f362e8c0bce438ae26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:38:54:be:75:9d:78:78:31:10:cf:05:d0:43:
94:1d:95:29:6e:61:48:d9:67:b5:b0:7f:a0:17:12:
95:61:14:9b:40:61:bc:a4:47:1f:24:dd:e2:41:f0:
31:d7:7f:a4:a4:f2:6f:6c:d7:51:fa:b0:74:0a:b7:
02:1f:48:f1:5a:ba:06:a5:68:66:19:73:aa:c6:55:
ee:66:ca:19:8a:6e:b9:bd:ff:04:d0:60:28:d1:fd:
e2:98:32:03:57:fa:44:72:4b:57:17:dd:1b:a8:e1:
31:3e:66:36:a0:b7:e6:e1:14:0a:fe:20:6a:ad:20:
5d:5a:df:71:a0:41:a1:61:c5:43:05:29:2e:d5:38:
4b:5b:1f:38:70:0c:00:1d:8c:49:b8:8b:44:2f:8b:
e9:b8:e6:de:84:3a:bd:f1:f8:f9:c1:be:95:86:e4:
f2:ef:94:f0:ff:56:75:89:6c:32:a7:08:c6:43:43:
39:27:c9:ae:73:05:29:39:e2:d5:cb:21:45:a9:2d:
79:9f:e0:67:6f:8c:0a:32:7a:d9:6e:bf:c4:31:5f:
2f:d8:06:38:f0:53:8d:20:82:c3:a5:10:29:f0:77:
bc:d5:50:5a:8a:53:09:e8:37:9a:93:3e:c9:15:5e:
76:77:5b:02:0e:61:12:10:31:dd:a4:d5:d1:a7:7e:
9e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:FE:3C:2B:5D:30:50:B3:21:4B:F5:F3:62:E8:C0:BC:E4:38:AE:26
X509v3 Authority Key Identifier:
keyid:29:7C:50:8D:23:B3:83:15:BB:F4:5B:72:6D:22:05:0A:46:12:7B:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXxQjSOzgxW79FtybSIFCkYSe4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/8abeed-f53b-4776-a8e2-36e9a79bd950/1/9P48K10wULMhS_XzYujAvOQ4riY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/8abeed-f53b-4776-a8e2-36e9a79bd950/1/KXxQjSOzgxW79FtybSIFCkYSe4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.68.0/22
62.244.117.0/24
78.31.40.0/21
82.210.0.0/18
83.118.192.0/19
83.142.144.0/21
91.90.96.0/21
94.228.176.0/20
159.180.224.0/19
178.16.160.0/20
185.5.108.0/22
195.15.128.0/18
212.106.96.0/19
IPv6:
2001:ab8::/29
Signature Algorithm: sha256WithRSAEncryption
2c:5d:9b:18:41:69:af:50:57:04:54:73:96:3a:9a:1c:63:94:
53:56:71:2d:aa:8f:c6:29:19:07:52:f4:92:a7:2a:64:56:76:
5f:99:72:56:5e:b2:ed:c4:6b:e9:ce:55:7e:ec:97:6c:22:aa:
87:29:49:23:e2:a8:3d:ca:88:ee:be:1b:93:8a:7b:63:7a:fc:
e4:ec:49:d3:49:f9:41:c3:f6:8b:a8:e3:22:3a:1a:b2:82:1c:
0c:d3:c4:89:7e:00:6a:88:46:5a:f3:2c:9b:70:59:a4:e9:9d:
70:6d:c1:44:57:46:28:92:b0:e5:6f:e7:96:20:c8:6f:a4:9c:
1a:28:bf:21:79:84:d4:f5:54:96:85:63:f9:8e:6b:3d:49:16:
23:a8:6d:54:ed:45:eb:54:89:76:98:2e:a4:2c:67:96:9a:f1:
9b:3c:2f:a6:02:88:61:a9:5a:07:19:b3:73:00:77:7c:14:8e:
06:c0:16:30:5f:f8:21:fc:a2:54:80:c2:37:2c:fb:bb:44:c1:
6d:df:7a:9d:ec:84:f7:ca:36:a0:3e:41:81:ae:6c:36:67:43:
ea:db:15:52:a8:d4:19:e1:5b:cf:e4:c5:c8:c3:02:b8:bb:8c:
6d:e0:ef:3a:88:00:8c:ec:23:9b:7c:27:19:a7:56:35:0f:e7:
1b:37:0e:ea
-----BEGIN CERTIFICATE-----
MIIFVDCCBDygAwIBAgISAYdQwnuGVRM50mBi3KExJufYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5N2M1MDhkMjNiMzgzMTViYmY0NWI3MjZkMjIwNTBhNDYx
MjdiOGMwHhcNMjMwNDA1MDkzMjE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNGZlM2MyYjVkMzA1MGIzMjE0YmY1ZjM2MmU4YzBiY2U0MzhhZTI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArjhUvnWdeHgxEM8F0EOUHZUpbmFI
2We1sH+gFxKVYRSbQGG8pEcfJN3iQfAx13+kpPJvbNdR+rB0CrcCH0jxWroGpWhm
GXOqxlXuZsoZim65vf8E0GAo0f3imDIDV/pEcktXF90bqOExPmY2oLfm4RQK/iBq
rSBdWt9xoEGhYcVDBSku1ThLWx84cAwAHYxJuItEL4vpuObehDq98fj5wb6VhuTy
75Tw/1Z1iWwypwjGQ0M5J8mucwUpOeLVyyFFqS15n+Bnb4wKMnrZbr/EMV8v2AY4
8FONIILDpRAp8He81VBailMJ6Deakz7JFV52d1sCDmESEDHdpNXRp36eIQIDAQAB
o4ICYDCCAlwwHQYDVR0OBBYEFPT+PCtdMFCzIUv182LowLzkOK4mMB8GA1UdIwQY
MBaAFCl8UI0js4MVu/Rbcm0iBQpGEnuMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1h4UWpTT3pneFc3OUZ0eWJTSUZDa1lTZTR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC84YWJlZWQtZjUzYi00Nzc2LWE4ZTIt
MzZlOWE3OWJkOTUwLzEvOVA0OEsxMHdVTE1oU19Yell1akF2T1E0cmlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC84YWJlZWQtZjUzYi00Nzc2LWE4ZTItMzZlOWE3OWJkOTUw
LzEvS1h4UWpTT3pneFc3OUZ0eWJTSUZDa1lTZTR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHYGCCsGAQUFBwEHAQH/BGcwZTBUBAIAATBOAwQCBYVEAwQA
PvR1AwQDTh8oAwQGUtIAAwQFU3bAAwQDU46QAwQDW1pgAwQEXuSwAwQFn7TgAwQE
shCgAwQCuQVsAwQGww+AAwQF1GpgMA0EAgACMAcDBQMgAQq4MA0GCSqGSIb3DQEB
CwUAA4IBAQAsXZsYQWmvUFcEVHOWOpocY5RTVnEtqo/GKRkHUvSSpypkVnZfmXJW
XrLtxGvpzlV+7JdsIqqHKUkj4qg9yojuvhuTintjevzk7EnTSflBw/aLqOMiOhqy
ghwM08SJfgBqiEZa8yybcFmk6Z1wbcFEV0YokrDlb+eWIMhvpJwaKL8heYTU9VSW
hWP5jms9SRYjqG1U7UXrVIl2mC6kLGeWmvGbPC+mAohhqVoHGbNzAHd8FI4GwBYw
X/gh/KJUgMI3LPu7RMFt33qd7IT3yjagPkGBrmw2Z0Pq2xVSqNQZ4VvP5MXIwwK4
u4xt4O86iACM7CObfCcZp1Y1D+cbNw7q
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:46 2023 by rpki-client on console-ams.rpki-client.org