Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/031818-0463-4bab-bb56-51485fe222db/1/wF3qcwmz9hD4yi0f04Ulsbom4bs.roa
File: wF3qcwmz9hD4yi0f04Ulsbom4bs.roa (raw, json)
Hash identifier: S9nrHy84ZrZv9/kbYti3gtEUEEng+J0RMoiL6HU0HO4=
Subject key identifier: C0:5D:EA:73:09:B3:F6:10:F8:CA:2D:1F:D3:85:25:B1:BA:26:E1:BB
Certificate issuer: /CN=07d08df8bc7a383e976dbb03d2a0eb9fe0d786e7
Certificate serial: 01856D5D08D95CEE5E4747132B2CD138A29B
Authority key identifier: 07:D0:8D:F8:BC:7A:38:3E:97:6D:BB:03:D2:A0:EB:9F:E0:D7:86:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9CN-Lx6OD6XbbsD0qDrn-DXhuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/031818-0463-4bab-bb56-51485fe222db/1/wF3qcwmz9hD4yi0f04Ulsbom4bs.roa
Signing time: Sun 01 Jan 2023 12:44:51 +0000
ROA not before: Sun 01 Jan 2023 12:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8856
IP address blocks: 195.214.192.0/24 maxlen: 24
195.214.194.0/24 maxlen: 24
195.214.193.0/24 maxlen: 24
195.214.195.0/24 maxlen: 24
212.42.81.0/24 maxlen: 24
212.42.80.0/22 maxlen: 22
212.42.80.0/24 maxlen: 24
212.42.82.0/23 maxlen: 23
212.42.84.0/24 maxlen: 24
212.42.85.0/24 maxlen: 24
212.42.89.0/24 maxlen: 24
212.42.93.0/24 maxlen: 24
212.42.92.0/24 maxlen: 24
212.42.95.0/24 maxlen: 24
212.42.94.0/24 maxlen: 24
212.42.64.0/22 maxlen: 22
212.42.64.0/23 maxlen: 23
212.42.66.0/23 maxlen: 23
212.42.74.0/23 maxlen: 23
212.42.73.0/24 maxlen: 24
212.42.76.0/24 maxlen: 24
212.42.76.0/23 maxlen: 23
212.42.77.0/24 maxlen: 24
212.42.78.0/23 maxlen: 23
212.42.78.0/24 maxlen: 24
212.42.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Feb 2023 04:54:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:5d:08:d9:5c:ee:5e:47:47:13:2b:2c:d1:38:a2:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07d08df8bc7a383e976dbb03d2a0eb9fe0d786e7
Validity
Not Before: Jan 1 12:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c05dea7309b3f610f8ca2d1fd38525b1ba26e1bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:f7:f5:49:36:d3:a0:b0:86:4d:88:d4:3f:c7:
9e:4d:b1:ef:cb:29:ce:a3:5d:33:da:a7:2c:97:04:
f7:a9:45:c8:b3:40:a3:92:ea:6c:17:79:28:f7:73:
4e:9a:c7:7d:0d:0e:73:fd:27:ef:07:99:97:6f:ca:
a7:8f:fb:bb:2f:88:ac:db:61:db:50:0a:d4:86:07:
4c:ae:a9:49:d5:03:05:19:d5:28:df:58:c8:27:ca:
0d:0d:3b:92:9b:23:f5:0c:75:f7:fa:bc:ed:10:71:
0c:57:3b:24:11:87:41:39:95:b4:f5:8d:eb:47:36:
ec:44:3e:03:5c:7f:fd:a7:6a:40:b5:fb:01:4c:20:
7c:64:5e:fb:64:57:53:8f:70:ca:06:6b:67:f9:5c:
ec:d9:80:68:e6:cd:65:e8:34:32:36:fc:ea:e6:df:
de:f7:59:7a:8b:40:fa:99:34:4b:ba:96:6c:37:3b:
71:92:18:e9:70:52:c0:2e:8c:24:a9:28:b4:8c:73:
41:53:35:8b:0d:27:d2:93:96:bc:8e:2a:24:de:a0:
4e:46:10:b1:67:54:4b:2a:03:da:95:4f:5f:98:65:
c8:d1:59:36:11:1c:06:92:c2:a0:33:36:4c:86:c6:
92:13:10:d6:2b:97:22:14:ff:e1:e1:95:f5:68:38:
ca:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:5D:EA:73:09:B3:F6:10:F8:CA:2D:1F:D3:85:25:B1:BA:26:E1:BB
X509v3 Authority Key Identifier:
keyid:07:D0:8D:F8:BC:7A:38:3E:97:6D:BB:03:D2:A0:EB:9F:E0:D7:86:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9CN-Lx6OD6XbbsD0qDrn-DXhuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/031818-0463-4bab-bb56-51485fe222db/1/wF3qcwmz9hD4yi0f04Ulsbom4bs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/031818-0463-4bab-bb56-51485fe222db/1/B9CN-Lx6OD6XbbsD0qDrn-DXhuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.214.192.0/22
212.42.64.0/22
212.42.72.0-212.42.85.255
212.42.89.0/24
212.42.92.0/22
Signature Algorithm: sha256WithRSAEncryption
90:95:7e:4f:d6:56:79:a5:75:38:d7:c9:9f:8c:43:9f:8b:f3:
d5:f5:3c:6e:8f:c9:e3:1a:6e:8c:2c:b7:09:85:45:62:be:28:
2d:50:6a:2c:71:b4:c8:a0:02:fe:82:a8:9a:c7:f2:83:0f:8e:
c6:bf:3a:5a:a9:6d:40:39:9f:60:91:07:e6:c6:29:0c:e9:a5:
91:93:3d:24:c0:ab:c0:4d:f7:d7:9e:ff:b7:36:78:33:28:d0:
68:d6:15:c0:b1:b0:fd:10:1b:f3:ed:b7:38:70:70:d4:cf:70:
13:7b:55:84:e5:a9:ca:01:a2:dd:31:bd:5c:f8:85:78:f2:97:
8e:57:54:f8:12:c2:e8:bb:d4:91:d3:2b:31:8a:45:5f:a0:40:
f4:9b:be:7a:d2:0a:4d:85:6f:b8:29:54:6a:94:fb:d6:82:17:
95:3a:b4:3a:8c:10:fb:09:dd:2d:64:0b:09:83:ad:f5:10:d3:
fa:a3:49:4b:52:58:a1:e4:77:dc:53:19:10:e9:45:3b:c2:ba:
f8:16:88:86:0b:dd:68:35:1e:dd:0b:c4:59:ea:cd:de:20:89:
ed:6d:a7:9f:01:2f:39:d3:51:af:2d:00:fa:fc:a9:7c:ef:9e:
e9:ef:58:46:24:1c:71:f4:05:2f:48:25:03:31:27:dd:e2:4b:
60:94:39:71
-----BEGIN CERTIFICATE-----
MIIFHTCCBAWgAwIBAgISAYVtXQjZXO5eR0cTKyzROKKbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3ZDA4ZGY4YmM3YTM4M2U5NzZkYmIwM2QyYTBlYjlmZTBk
Nzg2ZTcwHhcNMjMwMTAxMTI0NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMDVkZWE3MzA5YjNmNjEwZjhjYTJkMWZkMzg1MjViMWJhMjZlMWJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlff1STbToLCGTYjUP8eeTbHvyynO
o10z2qcslwT3qUXIs0CjkupsF3ko93NOmsd9DQ5z/SfvB5mXb8qnj/u7L4is22Hb
UArUhgdMrqlJ1QMFGdUo31jIJ8oNDTuSmyP1DHX3+rztEHEMVzskEYdBOZW09Y3r
RzbsRD4DXH/9p2pAtfsBTCB8ZF77ZFdTj3DKBmtn+Vzs2YBo5s1l6DQyNvzq5t/e
91l6i0D6mTRLupZsNztxkhjpcFLALowkqSi0jHNBUzWLDSfSk5a8jiok3qBORhCx
Z1RLKgPalU9fmGXI0Vk2ERwGksKgMzZMhsaSExDWK5ciFP/h4ZX1aDjKmQIDAQAB
o4ICKTCCAiUwHQYDVR0OBBYEFMBd6nMJs/YQ+MotH9OFJbG6JuG7MB8GA1UdIwQY
MBaAFAfQjfi8ejg+l227A9Kg65/g14bnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQjlDTi1MeDZPRDZYYmJzRDBxRHJuLURYaHVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC8wMzE4MTgtMDQ2My00YmFiLWJiNTYt
NTE0ODVmZTIyMmRiLzEvd0YzcWN3bXo5aEQ0eWkwZjA0VWxzYm9tNGJzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC8wMzE4MTgtMDQ2My00YmFiLWJiNTYtNTE0ODVmZTIyMmRi
LzEvQjlDTi1MeDZPRDZYYmJzRDBxRHJuLURYaHVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjAsBAIAATAmAwQCw9bAAwQC
1CpAMAwDBAPUKkgDBAHUKlQDBADUKlkDBALUKlwwDQYJKoZIhvcNAQELBQADggEB
AJCVfk/WVnmldTjXyZ+MQ5+L89X1PG6PyeMabowstwmFRWK+KC1QaixxtMigAv6C
qJrH8oMPjsa/OlqpbUA5n2CRB+bGKQzppZGTPSTAq8BN99ee/7c2eDMo0GjWFcCx
sP0QG/PttzhwcNTPcBN7VYTlqcoBot0xvVz4hXjyl45XVPgSwui71JHTKzGKRV+g
QPSbvnrSCk2Fb7gpVGqU+9aCF5U6tDqMEPsJ3S1kCwmDrfUQ0/qjSUtSWKHkd9xT
GRDpRTvCuvgWiIYL3Wg1Ht0LxFnqzd4gie1tp58BLznTUa8tAPr8qXzvnunvWEYk
HHH0BS9IJQMxJ93iS2CUOXE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:49 2024 by rpki-client on console-ams.rpki-client.org