Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/oS5SPchtu3K6yaufbqQ8WIFxw90.roa
File: oS5SPchtu3K6yaufbqQ8WIFxw90.roa (raw, json)
Hash identifier: ivq78xM8gVHIsOOxlqe0m76X8gz/NL4HJIhPKP7eejE=
Subject key identifier: A1:2E:52:3D:C8:6D:BB:72:BA:C9:AB:9F:6E:A4:3C:58:81:71:C3:DD
Certificate issuer: /CN=e85b83c87c4a3d8315025379f72987520bb5d046
Certificate serial: 0185711E520B0A261977CBE23C4788AFCB3A
Authority key identifier: E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/oS5SPchtu3K6yaufbqQ8WIFxw90.roa
Signing time: Mon 02 Jan 2023 06:14:50 +0000
ROA not before: Mon 02 Jan 2023 06:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20910
IP address blocks: 89.191.96.0/19 maxlen: 32
91.188.32.0/19 maxlen: 32
185.7.236.0/22 maxlen: 32
85.115.96.0/19 maxlen: 32
79.132.64.0/19 maxlen: 32
93.177.192.0/18 maxlen: 32
62.84.0.0/19 maxlen: 32
80.255.224.0/20 maxlen: 20
188.112.128.0/18 maxlen: 32
77.38.128.0/17 maxlen: 32
89.18.192.0/19 maxlen: 32
195.244.128.0/20 maxlen: 32
91.123.64.0/20 maxlen: 32
62.205.192.0/18 maxlen: 18
87.226.0.0/17 maxlen: 32
217.198.224.0/20 maxlen: 32
213.180.96.0/19 maxlen: 32
195.62.128.0/19 maxlen: 32
94.30.128.0/17 maxlen: 32
217.199.96.0/19 maxlen: 32
217.24.64.0/20 maxlen: 32
188.64.176.0/21 maxlen: 21
37.148.168.0/21 maxlen: 32
80.254.208.0/20 maxlen: 32
85.234.160.0/19 maxlen: 32
109.110.0.0/19 maxlen: 32
91.142.0.0/20 maxlen: 32
136.169.0.0/17 maxlen: 17
89.201.0.0/17 maxlen: 32
2a00:f4a0::/29 maxlen: 29
2a00:9000::/29 maxlen: 32
2a03:6740::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:52:0b:0a:26:19:77:cb:e2:3c:47:88:af:cb:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e85b83c87c4a3d8315025379f72987520bb5d046
Validity
Not Before: Jan 2 06:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a12e523dc86dbb72bac9ab9f6ea43c588171c3dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:8b:ce:5c:73:d6:83:4c:aa:bc:64:cd:93:ae:
47:80:3c:62:8c:1b:31:37:e6:9f:eb:09:53:bd:4c:
aa:81:25:e6:af:68:a7:b3:e6:bf:19:4a:72:13:f2:
83:a0:19:1e:54:df:35:2d:ec:41:d5:1b:77:9f:96:
61:e6:83:15:c5:2b:f0:c2:64:27:4b:a6:b7:c4:f5:
2b:d2:36:b8:8e:7b:9d:18:60:d1:84:a1:fe:9c:52:
fe:bb:8c:ff:38:5f:1f:ba:c2:5c:3b:87:77:a9:43:
29:80:d0:95:b1:19:69:e4:63:4e:20:e4:ff:52:93:
dd:ac:89:5e:46:1c:dc:07:22:2d:12:c2:7c:f7:49:
08:86:11:5f:9c:17:9a:fb:ba:eb:23:01:34:65:9a:
cf:be:2f:c6:4f:d0:2d:37:0d:bf:dd:87:be:06:18:
7e:62:ab:16:40:42:7c:33:5d:eb:d2:72:4e:c0:8d:
f4:95:39:bd:8e:61:fc:7d:5b:19:b3:78:6b:1b:d4:
ae:91:fc:1d:d5:cf:d4:da:1e:6e:19:ce:be:a8:5e:
fe:34:7a:67:9a:8d:7d:37:38:b9:87:d5:cd:62:8a:
19:f7:07:89:91:a5:4f:69:2c:16:94:b6:99:41:0b:
3e:35:04:06:b6:aa:34:34:27:85:19:c1:40:cd:9a:
ce:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:2E:52:3D:C8:6D:BB:72:BA:C9:AB:9F:6E:A4:3C:58:81:71:C3:DD
X509v3 Authority Key Identifier:
keyid:E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/oS5SPchtu3K6yaufbqQ8WIFxw90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/6FuDyHxKPYMVAlN59ymHUgu10EY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.148.168.0/21
62.84.0.0/19
62.205.192.0/18
77.38.128.0/17
79.132.64.0/19
80.254.208.0/20
80.255.224.0/20
85.115.96.0/19
85.234.160.0/19
87.226.0.0/17
89.18.192.0/19
89.191.96.0/19
89.201.0.0/17
91.123.64.0/20
91.142.0.0/20
91.188.32.0/19
93.177.192.0/18
94.30.128.0/17
109.110.0.0/19
136.169.0.0/17
185.7.236.0/22
188.64.176.0/21
188.112.128.0/18
195.62.128.0/19
195.244.128.0/20
213.180.96.0/19
217.24.64.0/20
217.198.224.0/20
217.199.96.0/19
IPv6:
2a00:9000::/29
2a00:f4a0::/29
2a03:6740::/29
Signature Algorithm: sha256WithRSAEncryption
4c:20:be:9f:e9:f2:81:ba:6c:21:93:64:4b:e3:4e:4b:e8:62:
a5:ba:08:e5:aa:b8:9c:02:69:e3:30:cb:ee:f3:22:57:c3:14:
74:3a:de:2f:77:e5:a0:4a:29:df:e4:49:76:0e:28:50:a0:4d:
01:62:c5:84:4f:2a:f6:6d:60:55:f4:b5:38:c6:6b:6b:e0:7b:
8f:3c:eb:2c:0a:fc:7e:52:fc:75:c7:f5:a1:a7:f1:1e:76:f2:
e5:f5:ff:e8:fd:6e:f4:d0:f1:0e:58:53:2e:50:7b:cc:e3:13:
92:85:2c:1f:9e:ac:12:c5:3f:a7:4a:6b:02:fb:e4:26:78:b0:
3b:d2:4f:ad:83:15:7a:15:18:ef:8e:e3:4a:3b:4e:c9:15:6a:
76:de:c2:bb:20:4a:b2:2b:37:86:b7:83:38:15:2d:5d:20:0a:
14:33:aa:cc:16:94:d2:46:65:85:4e:26:b8:f3:6f:64:ba:41:
92:66:ae:84:2e:10:ce:36:d5:c7:a2:59:81:c5:e2:c2:46:d8:
ac:51:86:1c:94:e7:f6:40:bb:7d:f2:be:8c:e2:81:f8:ad:a7:
95:df:27:8b:7e:60:dd:4e:5d:a0:bb:7c:c0:91:d9:8e:58:b3:
7e:ad:ee:f7:ef:7a:ca:9a:59:7c:df:08:7f:5c:bb:3d:e8:21:
ae:47:ce:91
-----BEGIN CERTIFICATE-----
MIIFxzCCBK+gAwIBAgISAYVxHlILCiYZd8viPEeIr8s6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU4NWI4M2M4N2M0YTNkODMxNTAyNTM3OWY3Mjk4NzUyMGJi
NWQwNDYwHhcNMjMwMTAyMDYxNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMTJlNTIzZGM4NmRiYjcyYmFjOWFiOWY2ZWE0M2M1ODgxNzFjM2RkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxYvOXHPWg0yqvGTNk65HgDxijBsx
N+af6wlTvUyqgSXmr2ins+a/GUpyE/KDoBkeVN81LexB1Rt3n5Zh5oMVxSvwwmQn
S6a3xPUr0ja4jnudGGDRhKH+nFL+u4z/OF8fusJcO4d3qUMpgNCVsRlp5GNOIOT/
UpPdrIleRhzcByItEsJ890kIhhFfnBea+7rrIwE0ZZrPvi/GT9AtNw2/3Ye+Bhh+
YqsWQEJ8M13r0nJOwI30lTm9jmH8fVsZs3hrG9Sukfwd1c/U2h5uGc6+qF7+NHpn
mo19Nzi5h9XNYooZ9weJkaVPaSwWlLaZQQs+NQQGtqo0NCeFGcFAzZrOcQIDAQAB
o4IC0zCCAs8wHQYDVR0OBBYEFKEuUj3Ibbtyusmrn26kPFiBccPdMB8GA1UdIwQY
MBaAFOhbg8h8Sj2DFQJTefcph1ILtdBGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNkZ1RHlIeEtQWU1WQWxONTl5bUhVZ3UxMEVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8zMzk0ZTMtNzM2ZS00ODc5LWI4ZGIt
ODlhYWVhMzYyODVlLzEvb1M1U1BjaHR1M0s2eWF1ZmJxUThXSUZ4dzkwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC8zMzk0ZTMtNzM2ZS00ODc5LWI4ZGItODlhYWVhMzYyODVl
LzEvNkZ1RHlIeEtQWU1WQWxONTl5bUhVZ3UxMEVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHoBggrBgEFBQcBBwEB/wSB2DCB1TCBtQQCAAEwga4DBAMl
lKgDBAU+VAADBAY+zcADBAdNJoADBAVPhEADBARQ/tADBARQ/+ADBAVVc2ADBAVV
6qADBAdX4gADBAVZEsADBAVZv2ADBAdZyQADBARbe0ADBARbjgADBAVbvCADBAZd
scADBAdeHoADBAVtbgADBAeIqQADBAK5B+wDBAO8QLADBAa8cIADBAXDPoADBATD
9IADBAXVtGADBATZGEADBATZxuADBAXZx2AwGwQCAAIwFQMFAyoAkAADBQMqAPSg
AwUDKgNnQDANBgkqhkiG9w0BAQsFAAOCAQEATCC+n+nygbpsIZNkS+NOS+hipboI
5aq4nAJp4zDL7vMiV8MUdDreL3floEop3+RJdg4oUKBNAWLFhE8q9m1gVfS1OMZr
a+B7jzzrLAr8flL8dcf1oafxHnby5fX/6P1u9NDxDlhTLlB7zOMTkoUsH56sEsU/
p0prAvvkJniwO9JPrYMVehUY747jSjtOyRVqdt7CuyBKsis3hreDOBUtXSAKFDOq
zBaU0kZlhU4muPNvZLpBkmauhC4QzjbVx6JZgcXiwkbYrFGGHJTn9kC7ffK+jOKB
+K2nld8ni35g3U5doLt8wJHZjlizfq3u9+96yppZfN8If1y7PeghrkfOkQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:47 2023 by rpki-client on console-ams.rpki-client.org