Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/031818-0463-4bab-bb56-51485fe222db/1/vvsasHEwXB_a8UJkSqi4EFKMskU.roa
File: vvsasHEwXB_a8UJkSqi4EFKMskU.roa (raw, json)
Hash identifier: oG4MYettK5zB7JMXCe+9HwlOStRDy0nBbIPP9vLlxnc=
Subject key identifier: BE:FB:1A:B0:71:30:5C:1F:DA:F1:42:64:4A:A8:B8:10:52:8C:B2:45
Certificate issuer: /CN=07d08df8bc7a383e976dbb03d2a0eb9fe0d786e7
Certificate serial: 0187D17076E78BB7A0020CD896D0EEF35AEF
Authority key identifier: 07:D0:8D:F8:BC:7A:38:3E:97:6D:BB:03:D2:A0:EB:9F:E0:D7:86:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9CN-Lx6OD6XbbsD0qDrn-DXhuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/031818-0463-4bab-bb56-51485fe222db/1/vvsasHEwXB_a8UJkSqi4EFKMskU.roa
Signing time: Sun 30 Apr 2023 09:13:41 +0000
ROA not before: Sun 30 Apr 2023 09:13:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8856
IP address blocks: 195.214.192.0/24 maxlen: 24
195.214.192.0/23 maxlen: 23
195.214.194.0/23 maxlen: 23
195.214.194.0/24 maxlen: 24
195.214.193.0/24 maxlen: 24
195.214.195.0/24 maxlen: 24
212.42.79.0/24 maxlen: 24
212.42.81.0/24 maxlen: 24
212.42.80.0/22 maxlen: 22
212.42.80.0/24 maxlen: 24
212.42.82.0/23 maxlen: 23
212.42.84.0/24 maxlen: 24
212.42.85.0/24 maxlen: 24
212.42.89.0/24 maxlen: 24
212.42.93.0/24 maxlen: 24
212.42.92.0/24 maxlen: 24
212.42.95.0/24 maxlen: 24
212.42.94.0/23 maxlen: 23
212.42.94.0/24 maxlen: 24
212.42.64.0/24 maxlen: 24
212.42.64.0/22 maxlen: 22
212.42.64.0/23 maxlen: 23
212.42.65.0/24 maxlen: 24
212.42.66.0/23 maxlen: 23
212.42.74.0/23 maxlen: 23
212.42.73.0/24 maxlen: 24
212.42.76.0/24 maxlen: 24
212.42.76.0/23 maxlen: 23
212.42.77.0/24 maxlen: 24
212.42.78.0/23 maxlen: 23
212.42.78.0/24 maxlen: 24
212.42.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d1:70:76:e7:8b:b7:a0:02:0c:d8:96:d0:ee:f3:5a:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07d08df8bc7a383e976dbb03d2a0eb9fe0d786e7
Validity
Not Before: Apr 30 09:13:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=befb1ab071305c1fdaf142644aa8b810528cb245
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e5:f2:e2:d9:ef:f4:6b:72:f4:86:f0:db:da:
b4:93:71:8f:f9:c0:b7:79:a1:d9:61:c2:dd:28:4b:
e7:78:56:b2:a9:ac:56:ae:a7:f9:d1:02:cc:a2:51:
f5:9e:5f:ba:d7:25:2f:30:57:b5:71:b5:17:d9:b9:
21:08:72:74:58:55:9a:64:43:76:dd:fc:b5:10:70:
a5:4f:dc:b5:88:4e:8a:66:04:e9:77:67:3e:a3:3f:
be:e7:38:98:fe:27:5a:14:43:d9:4c:6c:60:45:43:
b8:d0:4a:58:18:93:97:18:bd:15:ac:cd:2b:01:f3:
11:ec:f6:12:69:5f:92:86:32:dd:31:c8:85:df:c7:
b4:6a:4e:da:3f:35:eb:9e:b4:c8:ed:20:5d:71:08:
98:68:4c:88:aa:39:d1:b2:84:4d:03:75:3d:24:3f:
10:3c:55:ac:12:9f:60:82:30:32:d8:59:f0:af:01:
bf:58:10:cb:60:36:ad:4e:e4:a5:c6:6a:0e:9b:30:
43:3d:4f:6b:19:b4:18:15:17:1c:be:7d:76:c9:e3:
d4:9d:dc:8e:61:c7:72:f9:a2:b8:47:0c:b1:91:cf:
fd:3c:95:50:7c:25:80:b2:e9:bf:c6:3c:db:65:08:
f2:ca:66:8f:a5:2a:80:66:fa:9d:df:e8:28:53:26:
97:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:FB:1A:B0:71:30:5C:1F:DA:F1:42:64:4A:A8:B8:10:52:8C:B2:45
X509v3 Authority Key Identifier:
keyid:07:D0:8D:F8:BC:7A:38:3E:97:6D:BB:03:D2:A0:EB:9F:E0:D7:86:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9CN-Lx6OD6XbbsD0qDrn-DXhuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/031818-0463-4bab-bb56-51485fe222db/1/vvsasHEwXB_a8UJkSqi4EFKMskU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/031818-0463-4bab-bb56-51485fe222db/1/B9CN-Lx6OD6XbbsD0qDrn-DXhuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.214.192.0/22
212.42.64.0/22
212.42.72.0-212.42.85.255
212.42.89.0/24
212.42.92.0/22
Signature Algorithm: sha256WithRSAEncryption
86:fa:f5:80:87:66:16:d6:68:ae:45:00:99:bd:61:b8:e9:c8:
3c:29:49:df:3f:c6:4c:0c:86:46:00:ff:74:5f:e4:6b:bb:a8:
1f:7b:fc:6b:96:b4:50:8b:1a:3c:42:64:6a:62:24:ea:47:61:
45:48:69:00:70:9c:fe:45:95:d1:17:3c:82:32:76:36:df:60:
bd:ab:af:23:dc:ed:8a:53:3c:35:d2:b1:78:6c:68:6a:63:dd:
bd:c7:1e:4a:3f:18:98:56:49:9a:5d:d0:cf:61:79:10:7c:7d:
8e:c3:18:68:bf:37:00:00:f1:0a:b5:b7:c0:74:6e:53:0a:59:
c0:6c:fd:b9:c5:50:58:40:65:ef:96:ca:6b:94:ac:64:17:1d:
91:af:48:42:93:21:7a:dc:4b:8d:63:45:91:3d:eb:76:7c:7c:
9c:2a:be:e2:cb:87:85:dc:b6:05:b2:29:7d:99:0a:ef:bd:8d:
c2:a2:b8:2f:ec:cc:f7:50:cb:8f:3c:7e:fd:13:61:1d:60:1a:
6d:f6:30:ad:80:11:49:aa:ac:ed:cf:8f:23:b5:30:53:aa:cf:
82:0d:dc:d6:07:18:f9:9a:f8:87:6a:2b:c2:2f:64:1c:6e:8d:
25:85:32:98:06:8d:8f:49:dc:08:8c:64:2f:92:e9:7d:87:c9:
f4:2f:b4:16
-----BEGIN CERTIFICATE-----
MIIFHTCCBAWgAwIBAgISAYfRcHbni7egAgzYltDu81rvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3ZDA4ZGY4YmM3YTM4M2U5NzZkYmIwM2QyYTBlYjlmZTBk
Nzg2ZTcwHhcNMjMwNDMwMDkxMzQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZWZiMWFiMDcxMzA1YzFmZGFmMTQyNjQ0YWE4YjgxMDUyOGNiMjQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo+Xy4tnv9Gty9Ibw29q0k3GP+cC3
eaHZYcLdKEvneFayqaxWrqf50QLMolH1nl+61yUvMFe1cbUX2bkhCHJ0WFWaZEN2
3fy1EHClT9y1iE6KZgTpd2c+oz++5ziY/idaFEPZTGxgRUO40EpYGJOXGL0VrM0r
AfMR7PYSaV+ShjLdMciF38e0ak7aPzXrnrTI7SBdcQiYaEyIqjnRsoRNA3U9JD8Q
PFWsEp9ggjAy2FnwrwG/WBDLYDatTuSlxmoOmzBDPU9rGbQYFRccvn12yePUndyO
Ycdy+aK4Rwyxkc/9PJVQfCWAsum/xjzbZQjyymaPpSqAZvqd3+goUyaXpQIDAQAB
o4ICKTCCAiUwHQYDVR0OBBYEFL77GrBxMFwf2vFCZEqouBBSjLJFMB8GA1UdIwQY
MBaAFAfQjfi8ejg+l227A9Kg65/g14bnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQjlDTi1MeDZPRDZYYmJzRDBxRHJuLURYaHVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC8wMzE4MTgtMDQ2My00YmFiLWJiNTYt
NTE0ODVmZTIyMmRiLzEvdnZzYXNIRXdYQl9hOFVKa1NxaTRFRktNc2tVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC8wMzE4MTgtMDQ2My00YmFiLWJiNTYtNTE0ODVmZTIyMmRi
LzEvQjlDTi1MeDZPRDZYYmJzRDBxRHJuLURYaHVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjAsBAIAATAmAwQCw9bAAwQC
1CpAMAwDBAPUKkgDBAHUKlQDBADUKlkDBALUKlwwDQYJKoZIhvcNAQELBQADggEB
AIb69YCHZhbWaK5FAJm9YbjpyDwpSd8/xkwMhkYA/3Rf5Gu7qB97/GuWtFCLGjxC
ZGpiJOpHYUVIaQBwnP5FldEXPIIydjbfYL2rryPc7YpTPDXSsXhsaGpj3b3HHko/
GJhWSZpd0M9heRB8fY7DGGi/NwAA8Qq1t8B0blMKWcBs/bnFUFhAZe+WymuUrGQX
HZGvSEKTIXrcS41jRZE963Z8fJwqvuLLh4XctgWyKX2ZCu+9jcKiuC/szPdQy488
fv0TYR1gGm32MK2AEUmqrO3PjyO1MFOqz4IN3NYHGPma+IdqK8IvZBxujSWFMpgG
jY9J3AiMZC+S6X2HyfQvtBY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:26 2024 by rpki-client on console-fra.rpki-client.org