Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/d5b1a7-466d-471c-a70c-2fb25abfdc53/1/687sqYJ6HU3PepZAy6Ir8PpZnAs.roa
File: 687sqYJ6HU3PepZAy6Ir8PpZnAs.roa (raw, json)
Hash identifier: rKWyMpU/oBB5ctAzpeKx9C58tx8SYxtSdNB/TFompRk=
Subject key identifier: EB:CE:EC:A9:82:7A:1D:4D:CF:7A:96:40:CB:A2:2B:F0:FA:59:9C:0B
Certificate issuer: /CN=8cdcf26f74860588cac6bae17f99de22dbc49ae6
Certificate serial: 0185F4C3C135DC5F70FC292C96A1E1A37861
Authority key identifier: 8C:DC:F2:6F:74:86:05:88:CA:C6:BA:E1:7F:99:DE:22:DB:C4:9A:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jNzyb3SGBYjKxrrhf5neItvEmuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/d5b1a7-466d-471c-a70c-2fb25abfdc53/1/687sqYJ6HU3PepZAy6Ir8PpZnAs.roa
Signing time: Fri 27 Jan 2023 19:45:47 +0000
ROA not before: Fri 27 Jan 2023 19:45:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41114
IP address blocks: 31.11.40.0/21 maxlen: 24
45.151.16.0/22 maxlen: 22
147.78.164.0/22 maxlen: 22
193.148.80.0/22 maxlen: 22
45.157.248.0/22 maxlen: 22
185.98.64.0/22 maxlen: 22
62.192.140.0/22 maxlen: 22
213.226.72.0/22 maxlen: 22
2a0a:7980::/32 maxlen: 32
2a0d:e6c0::/32 maxlen: 48
2a09:4380::/32 maxlen: 32
2a09:26c0::/32 maxlen: 32
2a00:7aa0::/32 maxlen: 32
2a0f:d00::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:f4:c3:c1:35:dc:5f:70:fc:29:2c:96:a1:e1:a3:78:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8cdcf26f74860588cac6bae17f99de22dbc49ae6
Validity
Not Before: Jan 27 19:45:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ebceeca9827a1d4dcf7a9640cba22bf0fa599c0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b2:fc:fd:bb:3e:c6:dd:41:3b:b5:2f:df:44:
cf:9b:cb:6d:3c:8c:97:ca:aa:fb:30:2d:81:05:f0:
53:eb:83:1a:c7:5e:09:13:4b:97:59:36:71:da:73:
d2:c0:d9:8f:98:44:6d:c3:b3:1c:78:f8:de:c6:26:
50:c9:84:f9:57:58:b8:29:0e:fc:78:88:38:e7:6e:
a6:cd:4e:5d:4d:76:9e:5f:b4:fc:56:0e:dc:75:99:
14:a8:f1:64:94:c4:ef:9f:94:de:f0:09:1f:c7:5f:
de:21:61:3e:75:0b:39:8b:4f:4a:f0:ec:da:32:ba:
5f:53:92:55:81:a1:b0:b4:be:df:07:98:e1:67:e7:
76:b6:ca:ae:d4:7c:4e:b5:a4:64:89:e6:9a:da:2d:
5c:57:5b:52:78:cb:29:97:2f:7b:88:90:8b:56:5d:
cb:6a:a8:cf:8c:cb:32:47:53:b1:38:fd:08:4c:4b:
80:86:a8:8a:e7:ba:94:e6:3b:93:31:35:c3:26:cc:
66:8c:70:d9:4e:f8:84:ee:19:e7:cd:b7:a8:94:70:
10:ef:9d:ea:3f:81:b1:a2:54:e3:79:30:d3:e3:9b:
31:c2:24:6f:78:5e:2f:0e:c7:8e:03:d5:63:c7:92:
34:bc:e2:b5:73:97:bb:c2:07:f2:f1:f5:05:43:fe:
e6:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:CE:EC:A9:82:7A:1D:4D:CF:7A:96:40:CB:A2:2B:F0:FA:59:9C:0B
X509v3 Authority Key Identifier:
keyid:8C:DC:F2:6F:74:86:05:88:CA:C6:BA:E1:7F:99:DE:22:DB:C4:9A:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jNzyb3SGBYjKxrrhf5neItvEmuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/d5b1a7-466d-471c-a70c-2fb25abfdc53/1/687sqYJ6HU3PepZAy6Ir8PpZnAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/d5b1a7-466d-471c-a70c-2fb25abfdc53/1/jNzyb3SGBYjKxrrhf5neItvEmuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.40.0/21
45.151.16.0/22
45.157.248.0/22
62.192.140.0/22
147.78.164.0/22
185.98.64.0/22
193.148.80.0/22
213.226.72.0/22
IPv6:
2a00:7aa0::/32
2a09:26c0::/32
2a09:4380::/32
2a0a:7980::/32
2a0d:e6c0::/32
2a0f:d00::/32
Signature Algorithm: sha256WithRSAEncryption
a8:97:d3:98:78:b9:d3:59:80:dd:f7:a2:f3:9d:cd:51:c4:9a:
bd:c0:0f:4c:34:b3:52:4e:bd:16:23:b7:39:16:52:ec:66:b2:
62:ea:21:06:ab:b4:42:ee:a8:99:b6:11:62:60:df:46:c0:e5:
06:76:46:88:54:f9:f8:2e:2c:f7:f4:44:58:c9:81:48:56:bc:
7b:32:e0:13:ab:b7:86:6d:8e:74:82:af:75:d7:d3:05:03:d3:
b1:29:4d:51:83:28:92:f9:dd:6e:23:a5:cd:d5:03:9a:44:b3:
91:90:95:ab:a4:8c:77:c4:c9:62:db:87:c3:18:55:8d:1c:d2:
db:36:f7:35:98:42:af:96:0b:ba:34:57:76:1d:af:f8:16:ab:
5e:0d:bb:6b:fb:8a:da:d6:d6:75:7a:66:ee:0a:05:55:b4:d5:
d5:9e:7a:06:4b:4b:46:66:39:5e:60:7d:e5:2e:76:6f:ff:c5:
8e:8a:5c:07:2b:bd:79:71:78:27:8c:a9:d2:bd:36:7a:4e:98:
2e:cc:df:d9:c3:d4:fc:61:dd:f2:f4:5d:92:5a:b8:ac:c3:e8:
11:24:37:b8:77:30:b1:07:d5:98:bc:62:b5:c2:fb:95:7d:4c:
e4:50:ce:12:5d:4e:c1:e0:32:8f:09:a5:b7:9f:12:64:97:a6:
85:64:6a:41
-----BEGIN CERTIFICATE-----
MIIFWTCCBEGgAwIBAgISAYX0w8E13F9w/CkslqHho3hhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhjZGNmMjZmNzQ4NjA1ODhjYWM2YmFlMTdmOTlkZTIyZGJj
NDlhZTYwHhcNMjMwMTI3MTk0NTQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYmNlZWNhOTgyN2ExZDRkY2Y3YTk2NDBjYmEyMmJmMGZhNTk5YzBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq7L8/bs+xt1BO7Uv30TPm8ttPIyX
yqr7MC2BBfBT64Max14JE0uXWTZx2nPSwNmPmERtw7McePjexiZQyYT5V1i4KQ78
eIg4526mzU5dTXaeX7T8Vg7cdZkUqPFklMTvn5Te8Akfx1/eIWE+dQs5i09K8Oza
MrpfU5JVgaGwtL7fB5jhZ+d2tsqu1HxOtaRkieaa2i1cV1tSeMsply97iJCLVl3L
aqjPjMsyR1OxOP0ITEuAhqiK57qU5juTMTXDJsxmjHDZTviE7hnnzbeolHAQ753q
P4GxolTjeTDT45sxwiRveF4vDseOA9Vjx5I0vOK1c5e7wgfy8fUFQ/7mwQIDAQAB
o4ICZTCCAmEwHQYDVR0OBBYEFOvO7KmCeh1Nz3qWQMuiK/D6WZwLMB8GA1UdIwQY
MBaAFIzc8m90hgWIysa64X+Z3iLbxJrmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvak56eWIzU0dCWWpLeHJyaGY1bmVJdHZFbXVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9kNWIxYTctNDY2ZC00NzFjLWE3MGMt
MmZiMjVhYmZkYzUzLzEvNjg3c3FZSjZIVTNQZXBaQXk2SXI4UHBabkFzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy9kNWIxYTctNDY2ZC00NzFjLWE3MGMtMmZiMjVhYmZkYzUz
LzEvak56eWIzU0dCWWpLeHJyaGY1bmVJdHZFbXVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHsGCCsGAQUFBwEHAQH/BGwwajA2BAIAATAwAwQDHwsoAwQC
LZcQAwQCLZ34AwQCPsCMAwQCk06kAwQCuWJAAwQCwZRQAwQC1eJIMDAEAgACMCoD
BQAqAHqgAwUAKgkmwAMFACoJQ4ADBQAqCnmAAwUAKg3mwAMFACoPDQAwDQYJKoZI
hvcNAQELBQADggEBAKiX05h4udNZgN33ovOdzVHEmr3AD0w0s1JOvRYjtzkWUuxm
smLqIQartELuqJm2EWJg30bA5QZ2RohU+fguLPf0RFjJgUhWvHsy4BOrt4ZtjnSC
r3XX0wUD07EpTVGDKJL53W4jpc3VA5pEs5GQlaukjHfEyWLbh8MYVY0c0ts29zWY
Qq+WC7o0V3Ydr/gWq14Nu2v7itrW1nV6Zu4KBVW01dWeegZLS0ZmOV5gfeUudm//
xY6KXAcrvXlxeCeMqdK9NnpOmC7M39nD1Pxh3fL0XZJauKzD6BEkN7h3MLEH1Zi8
YrXC+5V9TORQzhJdTsHgMo8JpbefEmSXpoVkakE=
-----END CERTIFICATE-----
Generated at Tue Nov 14 16:13:37 2023 by rpki-client on console-fra.rpki-client.org