Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/gFnA2ZY3QXhWekETpRJO-Wq3v-E.roa
File: gFnA2ZY3QXhWekETpRJO-Wq3v-E.roa (raw, json)
Hash identifier: q6sexUIyIFDrs8+osMQrW2/FKazsH5j2wiiRgP3Bm/I=
Subject key identifier: 80:59:C0:D9:96:37:41:78:56:7A:41:13:A5:12:4E:F9:6A:B7:BF:E1
Certificate issuer: /CN=b155daddb871b9d6a53cd6b47f776250837f7774
Certificate serial: 01856DDD28925A55D8FAE6CC73D0E72541EC
Authority key identifier: B1:55:DA:DD:B8:71:B9:D6:A5:3C:D6:B4:7F:77:62:50:83:7F:77:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVXa3bhxudalPNa0f3diUIN_d3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/gFnA2ZY3QXhWekETpRJO-Wq3v-E.roa
Signing time: Sun 01 Jan 2023 15:04:48 +0000
ROA not before: Sun 01 Jan 2023 15:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19905
IP address blocks: 212.95.96.0/19 maxlen: 24
92.252.0.0/17 maxlen: 24
212.6.64.0/18 maxlen: 24
212.68.64.0/19 maxlen: 24
85.16.0.0/16 maxlen: 24
95.33.0.0/16 maxlen: 24
85.8.64.0/18 maxlen: 24
213.252.128.0/18 maxlen: 24
37.138.0.0/16 maxlen: 24
82.149.160.0/19 maxlen: 24
90.153.0.0/17 maxlen: 24
89.166.128.0/17 maxlen: 24
213.168.192.0/19 maxlen: 24
80.66.0.0/19 maxlen: 24
62.89.160.0/19 maxlen: 24
213.183.160.0/19 maxlen: 24
91.96.0.0/15 maxlen: 24
31.150.0.0/16 maxlen: 24
80.228.0.0/16 maxlen: 24
87.245.0.0/18 maxlen: 24
89.233.64.0/19 maxlen: 24
31.184.0.0/18 maxlen: 24
91.248.0.0/15 maxlen: 24
213.182.96.0/19 maxlen: 24
31.187.112.0/20 maxlen: 24
213.170.160.0/19 maxlen: 24
178.142.0.0/16 maxlen: 24
188.118.128.0/18 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Mar 2023 09:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:28:92:5a:55:d8:fa:e6:cc:73:d0:e7:25:41:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155daddb871b9d6a53cd6b47f776250837f7774
Validity
Not Before: Jan 1 15:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8059c0d996374178567a4113a5124ef96ab7bfe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:9b:96:7c:3c:c4:cf:8d:35:80:84:fa:c6:49:
b4:e7:8f:ce:fb:83:28:04:ac:95:51:8f:6c:df:c3:
35:69:b1:76:49:a7:85:3a:3d:be:a7:09:3d:95:ac:
27:61:fd:2b:9e:af:49:c9:19:a5:eb:46:1a:da:a5:
d3:06:1e:bc:27:c7:f1:e3:80:41:46:45:ae:ae:ca:
e7:a0:43:78:00:ee:0b:e4:4c:7a:c5:af:c4:be:44:
94:53:5f:bf:0d:7b:80:c2:28:6e:c3:ec:0c:54:3f:
86:70:c1:ac:d5:67:64:20:0b:57:c2:10:a4:66:2d:
77:c2:01:48:8b:f2:56:f1:49:cd:9a:ce:11:d6:97:
f1:0c:82:7b:bf:2b:c8:45:95:e4:f5:8b:6c:6e:43:
7c:70:f7:7a:d8:8f:b0:f7:f2:ce:f2:f1:ed:6b:aa:
a4:1d:49:c8:e1:f6:5d:a0:31:52:46:ed:b0:cd:ae:
f7:2b:45:0a:a5:43:d1:1e:d1:b6:ee:34:72:07:85:
f2:78:ae:34:48:22:11:e7:79:0d:13:3f:cb:68:e3:
8e:0e:97:ad:52:24:76:b6:bd:d4:7e:07:da:10:a7:
a1:4c:a0:b3:ab:3f:f4:0b:1f:1b:1e:e4:f0:30:72:
c2:69:c2:dc:9d:f7:e7:a5:14:71:5e:b2:91:ef:3c:
84:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:59:C0:D9:96:37:41:78:56:7A:41:13:A5:12:4E:F9:6A:B7:BF:E1
X509v3 Authority Key Identifier:
keyid:B1:55:DA:DD:B8:71:B9:D6:A5:3C:D6:B4:7F:77:62:50:83:7F:77:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVXa3bhxudalPNa0f3diUIN_d3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/gFnA2ZY3QXhWekETpRJO-Wq3v-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/sVXa3bhxudalPNa0f3diUIN_d3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.150.0.0/16
31.184.0.0/18
31.187.112.0/20
37.138.0.0/16
62.89.160.0/19
80.66.0.0/19
80.228.0.0/16
82.149.160.0/19
85.8.64.0/18
85.16.0.0/16
87.245.0.0/18
89.166.128.0/17
89.233.64.0/19
90.153.0.0/17
91.96.0.0/15
91.248.0.0/15
92.252.0.0/17
95.33.0.0/16
178.142.0.0/16
188.118.128.0/18
212.6.64.0/18
212.68.64.0/19
212.95.96.0/19
213.168.192.0/19
213.170.160.0/19
213.182.96.0/19
213.183.160.0/19
213.252.128.0/18
Signature Algorithm: sha256WithRSAEncryption
51:82:36:64:38:f4:0d:b8:68:73:fd:c1:f8:50:4f:72:05:6a:
08:95:d9:b0:ed:c9:0b:66:65:5d:e7:1b:9d:b2:1b:40:80:5b:
7f:66:61:aa:cc:9b:8b:7f:d7:7b:a7:ba:f2:c6:18:b4:2d:6c:
51:20:6a:26:9b:ee:7d:e3:e8:58:ff:8d:d9:69:10:2e:f6:88:
fc:a9:6a:54:63:5b:e7:a4:4b:46:c5:07:7b:4c:cb:a9:14:9b:
0f:11:29:7d:31:10:9f:6f:9e:94:8b:37:83:7f:e1:b0:a1:e6:
26:af:aa:8c:3f:de:fc:07:7e:1e:d6:c1:e3:68:bf:aa:7e:53:
fd:dc:b1:c8:cf:37:b8:27:dc:6f:8f:58:01:87:e5:bd:89:59:
26:51:68:bd:a6:31:43:8a:b2:09:c8:63:49:8b:30:3c:98:9a:
f5:38:9d:6c:45:a3:00:2f:ce:f2:35:7f:9b:49:f0:6a:b8:48:
97:41:b2:bf:26:ad:04:0b:28:17:ce:c7:c2:e2:b1:57:8b:d9:
d1:ad:28:bf:3c:7e:f4:80:47:6e:68:6c:35:de:6d:b6:cd:af:
23:96:fb:03:93:2b:c6:1a:26:3a:0d:b1:9c:e4:bc:53:ce:4b:
55:f6:63:ac:a9:2e:7a:72:11:f5:4b:8f:79:7e:4c:34:e1:0a:
c6:cf:3c:74
-----BEGIN CERTIFICATE-----
MIIFnDCCBISgAwIBAgISAYVt3SiSWlXY+ubMc9DnJUHsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNTVkYWRkYjg3MWI5ZDZhNTNjZDZiNDdmNzc2MjUwODM3
Zjc3NzQwHhcNMjMwMTAxMTUwNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MDU5YzBkOTk2Mzc0MTc4NTY3YTQxMTNhNTEyNGVmOTZhYjdiZmUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmpuWfDzEz401gIT6xkm054/O+4Mo
BKyVUY9s38M1abF2SaeFOj2+pwk9lawnYf0rnq9JyRml60Ya2qXTBh68J8fx44BB
RkWursrnoEN4AO4L5Ex6xa/EvkSUU1+/DXuAwihuw+wMVD+GcMGs1WdkIAtXwhCk
Zi13wgFIi/JW8UnNms4R1pfxDIJ7vyvIRZXk9YtsbkN8cPd62I+w9/LO8vHta6qk
HUnI4fZdoDFSRu2wza73K0UKpUPRHtG27jRyB4XyeK40SCIR53kNEz/LaOOODpet
UiR2tr3UfgfaEKehTKCzqz/0Cx8bHuTwMHLCacLcnffnpRRxXrKR7zyE6QIDAQAB
o4ICqDCCAqQwHQYDVR0OBBYEFIBZwNmWN0F4VnpBE6USTvlqt7/hMB8GA1UdIwQY
MBaAFLFV2t24cbnWpTzWtH93YlCDf3d0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1ZYYTNiaHh1ZGFsUE5hMGYzZGlVSU5fZDNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS84ZmQ2ZTctNDk2Zi00N2NmLTgwZmIt
NTQ2OGIyY2YwYTc3LzEvZ0ZuQTJaWTNRWGhXZWtFVHBSSk8tV3Ezdi1FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS84ZmQ2ZTctNDk2Zi00N2NmLTgwZmItNTQ2OGIyY2YwYTc3
LzEvc1ZYYTNiaHh1ZGFsUE5hMGYzZGlVSU5fZDNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG9BggrBgEFBQcBBwEB/wSBrTCBqjCBpwQCAAEwgaADAwAf
lgMEBh+4AAMEBB+7cAMDACWKAwQFPlmgAwQFUEIAAwMAUOQDBAVSlaADBAZVCEAD
AwBVEAMEBlf1AAMEB1mmgAMEBVnpQAMEB1qZAAMDAVtgAwMBW/gDBAdc/AADAwBf
IQMDALKOAwQGvHaAAwQG1AZAAwQF1ERAAwQF1F9gAwQF1ajAAwQF1aqgAwQF1bZg
AwQF1begAwQG1fyAMA0GCSqGSIb3DQEBCwUAA4IBAQBRgjZkOPQNuGhz/cH4UE9y
BWoIldmw7ckLZmVd5xudshtAgFt/ZmGqzJuLf9d7p7ryxhi0LWxRIGomm+594+hY
/43ZaRAu9oj8qWpUY1vnpEtGxQd7TMupFJsPESl9MRCfb56UizeDf+GwoeYmr6qM
P978B34e1sHjaL+qflP93LHIzze4J9xvj1gBh+W9iVkmUWi9pjFDirIJyGNJizA8
mJr1OJ1sRaMAL87yNX+bSfBquEiXQbK/Jq0ECygXzsfC4rFXi9nRrSi/PH70gEdu
aGw13m22za8jlvsDkyvGGiY6DbGc5LxTzktV9mOsqS56chH1S495fkw04QrGzzx0
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:06 2024 by rpki-client on console-ams.rpki-client.org