Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/08900f-b361-47ad-893f-7351f869b42b/1/m4DAnPzM4v_MSfr8r5MxmCdedrQ.roa
File: m4DAnPzM4v_MSfr8r5MxmCdedrQ.roa (raw, json)
Hash identifier: tq4+65o48sozIzH7qy8o2st/777T3OHrOgHJ/Sc+U8o=
Subject key identifier: 9B:80:C0:9C:FC:CC:E2:FF:CC:49:FA:FC:AF:93:31:98:27:5E:76:B4
Certificate issuer: /CN=6090cdd31d3a71da1ce4a4bd85f1987e3ca4eafa
Certificate serial: 018572DEDFA697FA21B1C4D5E1FB1134FD9D
Authority key identifier: 60:90:CD:D3:1D:3A:71:DA:1C:E4:A4:BD:85:F1:98:7E:3C:A4:EA:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJDN0x06cdoc5KS9hfGYfjyk6vo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/08900f-b361-47ad-893f-7351f869b42b/1/m4DAnPzM4v_MSfr8r5MxmCdedrQ.roa
Signing time: Mon 02 Jan 2023 14:24:46 +0000
ROA not before: Mon 02 Jan 2023 14:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21453
IP address blocks: 80.84.112.0/20 maxlen: 20
178.167.0.0/18 maxlen: 18
178.167.0.0/17 maxlen: 17
212.7.224.0/19 maxlen: 19
94.253.0.0/18 maxlen: 18
94.253.0.0/17 maxlen: 17
178.167.96.0/19 maxlen: 19
80.252.128.0/19 maxlen: 19
94.253.96.0/19 maxlen: 19
178.167.64.0/19 maxlen: 19
185.5.148.0/22 maxlen: 22
88.84.192.0/19 maxlen: 19
95.183.64.0/18 maxlen: 18
178.57.224.0/19 maxlen: 19
94.253.64.0/20 maxlen: 20
2a01:4200::/32 maxlen: 32
2a01:4200::/30 maxlen: 30
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:de:df:a6:97:fa:21:b1:c4:d5:e1:fb:11:34:fd:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6090cdd31d3a71da1ce4a4bd85f1987e3ca4eafa
Validity
Not Before: Jan 2 14:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b80c09cfccce2ffcc49fafcaf933198275e76b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:8f:e4:20:d1:44:46:78:98:ab:27:22:a2:5b:
5b:97:20:7f:7b:d6:bb:ef:33:59:96:c5:c6:20:25:
10:38:9a:3d:a9:33:d4:4f:34:0c:86:65:a5:bb:03:
49:09:ad:9f:ab:45:68:57:b0:9c:64:67:93:b7:44:
8b:ab:07:e3:54:8e:cd:92:fd:ba:36:55:d9:af:6a:
8d:b6:84:84:04:a6:c6:33:3c:77:c6:4c:d8:48:e5:
34:c9:53:cb:2b:94:3b:27:f3:32:d1:46:89:c2:be:
02:3d:b4:7c:31:df:97:8c:ea:b6:d1:e0:34:83:f6:
90:b7:23:bc:ad:36:11:2a:b0:ff:c2:03:1e:79:48:
26:4e:84:7f:52:47:fb:50:e0:53:b9:8d:e3:69:7e:
d5:33:f9:e8:69:4a:4f:4c:dd:ef:b5:8a:79:52:bf:
ca:84:a3:92:96:62:f3:31:3c:1e:d7:b8:3d:91:f9:
2d:06:6e:5c:c4:1a:d4:c3:52:c5:4d:d9:9c:6e:c8:
ab:05:92:c7:29:72:95:fb:de:34:95:a4:ac:95:b1:
ee:05:5e:cd:39:8d:d4:67:fb:12:5d:ac:ff:1c:07:
b4:0c:13:82:73:36:2c:d2:49:50:6b:73:24:70:9b:
01:d4:78:6f:cc:82:87:8a:14:d7:bb:e4:37:56:12:
51:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:80:C0:9C:FC:CC:E2:FF:CC:49:FA:FC:AF:93:31:98:27:5E:76:B4
X509v3 Authority Key Identifier:
keyid:60:90:CD:D3:1D:3A:71:DA:1C:E4:A4:BD:85:F1:98:7E:3C:A4:EA:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJDN0x06cdoc5KS9hfGYfjyk6vo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/08900f-b361-47ad-893f-7351f869b42b/1/m4DAnPzM4v_MSfr8r5MxmCdedrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/08900f-b361-47ad-893f-7351f869b42b/1/YJDN0x06cdoc5KS9hfGYfjyk6vo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.84.112.0/20
80.252.128.0/19
88.84.192.0/19
94.253.0.0/17
95.183.64.0/18
178.57.224.0/19
178.167.0.0/17
185.5.148.0/22
212.7.224.0/19
IPv6:
2a01:4200::/30
Signature Algorithm: sha256WithRSAEncryption
13:21:a0:70:31:4e:7a:f5:a3:f4:b7:59:a7:37:03:0b:73:1d:
6b:fd:29:49:0a:34:18:5d:49:b4:32:89:49:00:44:c5:d4:7a:
67:45:b6:56:4f:42:73:bc:b6:ce:cb:4c:55:8b:65:99:1d:0f:
13:d0:7b:e2:07:5b:64:5a:a0:48:54:42:c2:61:1b:31:3e:e6:
e3:bb:42:d8:3f:2b:8d:95:ff:ae:c3:a4:98:6e:02:e0:ce:88:
84:d5:e8:6d:dd:bf:01:94:30:e1:dd:d0:80:35:65:dc:f4:d6:
70:de:6b:ce:1c:ba:07:e2:32:e0:32:e5:f2:6d:01:4a:3c:e8:
77:cb:2b:ac:71:39:c2:c8:b0:99:76:9d:cd:7b:87:93:47:6b:
65:df:bb:2b:55:27:83:74:90:28:89:f6:70:b9:bc:ac:21:85:
66:c6:83:61:e1:e5:22:f9:be:2f:e9:52:12:d6:c5:4f:1b:e7:
6b:51:95:d7:3d:d7:af:9f:2b:45:a6:19:ad:67:82:ca:85:ec:
f6:e5:03:92:a1:31:4b:72:61:a1:2c:ad:94:c0:73:83:53:31:
84:ce:37:5f:98:71:7f:7f:e8:66:b4:4c:6c:97:8a:e8:91:9a:
1c:c3:8e:40:8f:22:4f:7c:0a:de:3e:60:95:9a:d0:73:08:40:
28:0e:73:06
-----BEGIN CERTIFICATE-----
MIIFPDCCBCSgAwIBAgISAYVy3t+ml/ohscTV4fsRNP2dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwOTBjZGQzMWQzYTcxZGExY2U0YTRiZDg1ZjE5ODdlM2Nh
NGVhZmEwHhcNMjMwMTAyMTQyNDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YjgwYzA5Y2ZjY2NlMmZmY2M0OWZhZmNhZjkzMzE5ODI3NWU3NmI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjY/kINFERniYqycioltblyB/e9a7
7zNZlsXGICUQOJo9qTPUTzQMhmWluwNJCa2fq0VoV7CcZGeTt0SLqwfjVI7Nkv26
NlXZr2qNtoSEBKbGMzx3xkzYSOU0yVPLK5Q7J/My0UaJwr4CPbR8Md+XjOq20eA0
g/aQtyO8rTYRKrD/wgMeeUgmToR/Ukf7UOBTuY3jaX7VM/noaUpPTN3vtYp5Ur/K
hKOSlmLzMTwe17g9kfktBm5cxBrUw1LFTdmcbsirBZLHKXKV+940laSslbHuBV7N
OY3UZ/sSXaz/HAe0DBOCczYs0klQa3MkcJsB1HhvzIKHihTXu+Q3VhJRFQIDAQAB
o4ICSDCCAkQwHQYDVR0OBBYEFJuAwJz8zOL/zEn6/K+TMZgnXna0MB8GA1UdIwQY
MBaAFGCQzdMdOnHaHOSkvYXxmH48pOr6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUpETjB4MDZjZG9jNUtTOWhmR1lmanlrNnZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8wODkwMGYtYjM2MS00N2FkLTg5M2Yt
NzM1MWY4NjliNDJiLzEvbTREQW5Qek00dl9NU2ZyOHI1TXhtQ2RlZHJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8wODkwMGYtYjM2MS00N2FkLTg5M2YtNzM1MWY4NjliNDJi
LzEvWUpETjB4MDZjZG9jNUtTOWhmR1lmanlrNnZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMF4GCCsGAQUFBwEHAQH/BE8wTTA8BAIAATA2AwQEUFRwAwQF
UPyAAwQFWFTAAwQHXv0AAwQGX7dAAwQFsjngAwQHsqcAAwQCuQWUAwQF1AfgMA0E
AgACMAcDBQIqAUIAMA0GCSqGSIb3DQEBCwUAA4IBAQATIaBwMU569aP0t1mnNwML
cx1r/SlJCjQYXUm0MolJAETF1HpnRbZWT0JzvLbOy0xVi2WZHQ8T0HviB1tkWqBI
VELCYRsxPubju0LYPyuNlf+uw6SYbgLgzoiE1eht3b8BlDDh3dCANWXc9NZw3mvO
HLoH4jLgMuXybQFKPOh3yyuscTnCyLCZdp3Ne4eTR2tl37srVSeDdJAoifZwubys
IYVmxoNh4eUi+b4v6VIS1sVPG+drUZXXPdevnytFphmtZ4LKhez25QOSoTFLcmGh
LK2UwHODUzGEzjdfmHF/f+hmtExsl4rokZocw45AjyJPfArePmCVmtBzCEAoDnMG
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:11 2024 by rpki-client on console-fra.rpki-client.org