Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/tLHOyDvlf2RUPR0u6emG0v7CLT8.roa
File: tLHOyDvlf2RUPR0u6emG0v7CLT8.roa (raw, json)
Hash identifier: OCLnLN2LF7OQHxe0Jb7+dhrs+npvnbqGkpVH3KNozWo=
Subject key identifier: B4:B1:CE:C8:3B:E5:7F:64:54:3D:1D:2E:E9:E9:86:D2:FE:C2:2D:3F
Certificate issuer: /CN=49596cecc21dd02677a727ef37f0689546ea5097
Certificate serial: 018848F5225981B47FA63EAA455D295E63EF
Authority key identifier: 49:59:6C:EC:C2:1D:D0:26:77:A7:27:EF:37:F0:68:95:46:EA:50:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SVls7MId0CZ3pyfvN_BolUbqUJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/tLHOyDvlf2RUPR0u6emG0v7CLT8.roa
Signing time: Tue 23 May 2023 14:13:24 +0000
ROA not before: Tue 23 May 2023 14:13:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5390
IP address blocks: 83.119.0.0/19 maxlen: 24
83.119.0.0/21 maxlen: 24
85.148.0.0/15 maxlen: 16
83.119.8.0/21 maxlen: 24
83.119.16.0/20 maxlen: 24
83.119.14.0/24 maxlen: 24
83.118.224.0/22 maxlen: 24
85.150.0.0/16 maxlen: 16
2a02:2500::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:48:f5:22:59:81:b4:7f:a6:3e:aa:45:5d:29:5e:63:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49596cecc21dd02677a727ef37f0689546ea5097
Validity
Not Before: May 23 14:13:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4b1cec83be57f64543d1d2ee9e986d2fec22d3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:0a:99:ca:9a:dc:19:6e:26:6b:53:2b:c1:e6:
00:66:3e:e7:00:c8:66:25:61:3d:05:fa:e7:47:ed:
9d:83:91:99:b0:f8:ef:a6:b2:0a:40:25:5c:f9:03:
bb:de:f9:14:0f:33:aa:aa:6b:3e:d5:7d:67:ca:07:
a1:d8:b9:35:fc:f9:09:ad:b2:0a:9b:26:80:7f:0b:
7f:47:a4:3c:30:a0:b3:80:d8:6f:22:31:73:d9:75:
61:bd:63:bb:64:0b:a0:9f:f7:79:f9:5b:94:4f:5c:
11:35:d1:bc:5a:23:2d:59:6d:cb:d2:65:f3:28:59:
94:5f:42:5b:85:40:be:26:aa:14:2a:cf:9e:ac:ff:
b0:22:52:43:90:0a:d5:d6:17:7c:5f:25:b3:a7:cf:
a8:9e:76:98:24:8f:fe:73:74:e3:93:7a:e9:5f:93:
7e:c6:44:87:f2:68:e7:ab:17:83:41:a9:32:e7:8c:
ab:f3:96:9e:85:18:01:5f:bc:f6:ba:26:ba:6d:84:
20:c7:d2:60:e1:54:0c:3a:57:11:15:b9:3a:ee:3d:
2e:56:97:6a:e7:2f:d2:0d:20:35:4e:a3:a1:e5:89:
73:1e:80:97:ce:cb:72:df:91:5a:fd:5f:9a:a5:ee:
5a:6b:a8:da:fd:03:e5:78:04:2b:36:92:50:de:e5:
51:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:B1:CE:C8:3B:E5:7F:64:54:3D:1D:2E:E9:E9:86:D2:FE:C2:2D:3F
X509v3 Authority Key Identifier:
keyid:49:59:6C:EC:C2:1D:D0:26:77:A7:27:EF:37:F0:68:95:46:EA:50:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SVls7MId0CZ3pyfvN_BolUbqUJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/tLHOyDvlf2RUPR0u6emG0v7CLT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/e7bd01-432f-4bf9-80c5-897d00977ff2/1/SVls7MId0CZ3pyfvN_BolUbqUJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.118.224.0/22
83.119.0.0/19
85.148.0.0-85.150.255.255
IPv6:
2a02:2500::/32
Signature Algorithm: sha256WithRSAEncryption
6f:71:38:e9:ab:7b:23:df:e5:0b:b7:ff:cf:cf:c2:a4:03:a6:
75:cf:af:63:ef:ee:88:e9:9a:2f:a4:e0:ef:be:57:1e:aa:bd:
f8:f1:b4:93:f5:de:fe:02:e7:99:6d:92:9e:9d:71:f7:f9:93:
25:68:73:fe:54:fc:38:4d:60:55:21:91:d2:d2:14:17:ca:27:
72:18:e4:9b:ff:b0:e5:f8:a4:d7:f7:84:e9:36:39:4c:6a:b3:
1e:ac:23:e2:3f:36:f1:d9:ca:f3:71:a6:e0:09:62:32:61:28:
27:0c:93:c3:41:f8:3a:69:27:a3:d5:35:a8:f8:98:ce:a2:74:
b6:a6:6b:6c:3c:45:81:9f:05:f1:5d:68:d9:e5:e1:41:d9:42:
9a:dd:c0:eb:6c:8b:4b:40:8f:53:6f:45:65:69:64:6f:4f:20:
a3:c3:a4:30:98:7b:74:91:56:d7:f3:44:6a:1d:01:44:08:6a:
a7:91:91:81:a9:ae:59:c9:65:ad:d6:1c:da:a0:6e:dc:0a:db:
1e:e8:99:ba:85:b6:99:12:4b:65:2c:fc:40:58:cd:9d:b8:1b:
be:dc:61:2d:54:5b:88:5d:c7:bd:58:e1:3e:17:aa:c3:36:29:
c7:0b:ab:5a:95:e6:b6:64:a8:3d:76:64:57:66:5a:67:c0:61:
3a:2b:e8:de
-----BEGIN CERTIFICATE-----
MIIFHjCCBAagAwIBAgISAYhI9SJZgbR/pj6qRV0pXmPvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5NTk2Y2VjYzIxZGQwMjY3N2E3MjdlZjM3ZjA2ODk1NDZl
YTUwOTcwHhcNMjMwNTIzMTQxMzI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNGIxY2VjODNiZTU3ZjY0NTQzZDFkMmVlOWU5ODZkMmZlYzIyZDNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmQqZyprcGW4ma1MrweYAZj7nAMhm
JWE9BfrnR+2dg5GZsPjvprIKQCVc+QO73vkUDzOqqms+1X1nygeh2Lk1/PkJrbIK
myaAfwt/R6Q8MKCzgNhvIjFz2XVhvWO7ZAugn/d5+VuUT1wRNdG8WiMtWW3L0mXz
KFmUX0JbhUC+JqoUKs+erP+wIlJDkArV1hd8XyWzp8+onnaYJI/+c3Tjk3rpX5N+
xkSH8mjnqxeDQaky54yr85aehRgBX7z2uia6bYQgx9Jg4VQMOlcRFbk67j0uVpdq
5y/SDSA1TqOh5YlzHoCXzsty35Fa/V+ape5aa6ja/QPleAQrNpJQ3uVR3QIDAQAB
o4ICKjCCAiYwHQYDVR0OBBYEFLSxzsg75X9kVD0dLunphtL+wi0/MB8GA1UdIwQY
MBaAFElZbOzCHdAmd6cn7zfwaJVG6lCXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU1ZsczdNSWQwQ1ozcHlmdk5fQm9sVWJxVUpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9lN2JkMDEtNDMyZi00YmY5LTgwYzUt
ODk3ZDAwOTc3ZmYyLzEvdExIT3lEdmxmMlJVUFIwdTZlbUcwdjdDTFQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi9lN2JkMDEtNDMyZi00YmY5LTgwYzUtODk3ZDAwOTc3ZmYy
LzEvU1ZsczdNSWQwQ1ozcHlmdk5fQm9sVWJxVUpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQCU3bgAwQF
U3cAMAoDAwJVlAMDAFWWMA0EAgACMAcDBQAqAiUAMA0GCSqGSIb3DQEBCwUAA4IB
AQBvcTjpq3sj3+ULt//Pz8KkA6Z1z69j7+6I6ZovpODvvlceqr348bST9d7+AueZ
bZKenXH3+ZMlaHP+VPw4TWBVIZHS0hQXyidyGOSb/7Dl+KTX94TpNjlMarMerCPi
Pzbx2crzcabgCWIyYSgnDJPDQfg6aSej1TWo+JjOonS2pmtsPEWBnwXxXWjZ5eFB
2UKa3cDrbItLQI9Tb0VlaWRvTyCjw6QwmHt0kVbX80RqHQFECGqnkZGBqa5ZyWWt
1hzaoG7cCtse6Jm6hbaZEktlLPxAWM2duBu+3GEtVFuIXce9WOE+F6rDNinHC6ta
lea2ZKg9dmRXZlpnwGE6K+je
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:07 2024 by rpki-client on console-fra.rpki-client.org