Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/1-Vw0TQwZgp-V8JM3IePv-lER2GI.roa
File: 1-Vw0TQwZgp-V8JM3IePv-lER2GI.roa (raw, json)
Hash identifier: FNs+MNHIucBq1geVnnY7rdlPH2R0J8iBEdBUdgBuycY=
Subject key identifier: F9:5C:34:4D:0C:19:82:9F:95:F0:93:37:21:E3:EF:FA:51:11:D8:62
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018CAA06C0489B515C5E148E9E1CEA532A4D
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/1-Vw0TQwZgp-V8JM3IePv-lER2GI.roa
Signing time: Wed 27 Dec 2023 06:46:58 +0000
ROA not before: Wed 27 Dec 2023 06:46:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 193.30.241.0/24 maxlen: 24
77.83.39.0/24 maxlen: 24
85.209.120.0/23 maxlen: 24
193.57.41.0/24 maxlen: 24
45.94.170.0/24 maxlen: 24
45.94.171.0/24 maxlen: 24
195.177.95.0/24 maxlen: 24
45.88.139.0/24 maxlen: 24
146.19.125.0/24 maxlen: 24
45.81.115.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:aa:06:c0:48:9b:51:5c:5e:14:8e:9e:1c:ea:53:2a:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Dec 27 06:46:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f95c344d0c19829f95f0933721e3effa5111d862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:62:9a:25:ed:86:a6:65:42:2a:2f:ba:51:bc:
ec:de:a6:1a:d7:2b:3d:53:e9:2e:d5:39:f4:15:56:
32:d8:4e:38:b4:2f:ab:0e:96:16:ee:b6:1a:0c:06:
5a:1b:65:ad:2f:e1:70:1f:7d:76:61:95:47:d3:2a:
09:87:ff:e9:40:00:4a:c3:31:c5:43:e8:01:f7:1e:
ed:41:26:e3:d0:93:18:3b:85:b4:fa:41:46:d7:1f:
7b:fd:3d:04:34:4b:8d:db:a6:29:f9:7b:1d:2f:aa:
13:63:c1:25:cd:fa:55:aa:2f:83:1a:91:a8:84:4a:
64:1d:4c:09:6e:bc:de:f6:24:2d:7d:a2:db:a0:cc:
27:2b:2c:13:b2:4e:b7:30:d1:73:81:10:22:c8:b2:
26:08:1d:66:54:1f:40:d5:89:8d:b4:d3:37:f8:af:
8f:11:4f:74:25:10:3f:f9:56:ae:21:cd:e7:51:65:
5a:d6:0d:d3:02:77:62:72:a0:8d:9c:8a:04:f4:88:
64:51:6b:0a:9a:92:2b:3f:b3:b9:e4:93:d7:1a:66:
7a:8e:ac:c5:e7:0d:67:4f:40:37:14:5f:5c:92:5a:
fc:cd:ce:9c:13:81:b6:8b:5e:d2:b1:3f:29:14:ed:
bf:ca:6f:ee:46:73:84:da:af:1b:1b:f3:c9:73:40:
fc:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:5C:34:4D:0C:19:82:9F:95:F0:93:37:21:E3:EF:FA:51:11:D8:62
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/1-Vw0TQwZgp-V8JM3IePv-lER2GI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.115.0/24
45.88.139.0/24
45.94.170.0/23
77.83.39.0/24
85.209.120.0/23
146.19.125.0/24
193.30.241.0/24
193.57.41.0/24
195.177.95.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:ba:a8:59:6d:92:02:3a:bf:18:eb:76:cf:95:21:07:95:d3:
12:53:d5:b2:d3:c5:f1:33:16:a1:2a:91:c5:92:a0:12:c5:ae:
31:8f:20:9b:a5:d1:fc:fb:ac:0b:6a:2f:b0:81:a5:8b:af:06:
43:a5:ed:a6:d7:af:91:f1:df:d3:40:7f:73:ce:bd:54:d6:1e:
a7:70:4f:1a:a3:d7:a2:4c:c3:60:dd:c5:9d:28:a9:ad:47:b7:
f5:40:a6:00:04:1e:b6:cf:f4:91:29:ee:c4:22:d6:c4:18:4b:
8d:f7:23:20:2d:1b:7a:1b:5e:8c:fe:6b:ec:b1:a7:0f:9b:d1:
10:5f:c8:5a:cf:4d:76:07:f5:01:63:2d:9a:ca:bc:d3:20:0a:
3b:0e:78:bc:6f:83:2f:54:47:10:9d:81:a2:09:aa:10:26:b0:
09:54:e6:52:36:2a:4b:62:ea:a9:e9:2a:44:4e:fd:40:4b:27:
14:53:03:9c:e7:74:e1:84:95:45:8c:d4:ce:b5:60:0c:cd:09:
37:40:22:61:c2:f4:c3:64:2f:f5:30:19:e1:01:b6:27:84:8a:
e0:6f:ff:a0:93:af:2d:aa:e0:d8:86:a2:60:b3:bb:f5:8e:a7:
b0:94:8b:bc:3f:30:b4:22:6f:85:42:fd:59:4b:a2:b2:0e:ee:
98:8f:f8:2e
-----BEGIN CERTIFICATE-----
MIIFLjCCBBagAwIBAgISAYyqBsBIm1FcXhSOnhzqUypNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMmE0NzhiYjBiMDhlNjYxYjBiMmY5ZmJlODkzNWJjOWMy
YTI4YTEwHhcNMjMxMjI3MDY0NjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOTVjMzQ0ZDBjMTk4MjlmOTVmMDkzMzcyMWUzZWZmYTUxMTFkODYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj2KaJe2GpmVCKi+6Ubzs3qYa1ys9
U+ku1Tn0FVYy2E44tC+rDpYW7rYaDAZaG2WtL+FwH312YZVH0yoJh//pQABKwzHF
Q+gB9x7tQSbj0JMYO4W0+kFG1x97/T0ENEuN26Yp+XsdL6oTY8ElzfpVqi+DGpGo
hEpkHUwJbrze9iQtfaLboMwnKywTsk63MNFzgRAiyLImCB1mVB9A1YmNtNM3+K+P
EU90JRA/+VauIc3nUWVa1g3TAndicqCNnIoE9IhkUWsKmpIrP7O55JPXGmZ6jqzF
5w1nT0A3FF9cklr8zc6cE4G2i17SsT8pFO2/ym/uRnOE2q8bG/PJc0D8/QIDAQAB
o4ICOjCCAjYwHQYDVR0OBBYEFPlcNE0MGYKflfCTNyHj7/pREdhiMB8GA1UdIwQY
MBaAFJ0qR4uwsI5mGwsvn76JNbycKiihMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMt
ZWVmMzUxMWY2YzYwLzEvMS1WdzBUUXdaZ3AtVjhKTTNJZVB2LWxFUjJHSS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMTYvNjYzZGY1LTU4MGMtNGYyYy1hNjZjLWVlZjM1MTFmNmM2
MC8xL25TcEhpN0N3am1ZYkN5LWZ2b2sxdkp3cUtLRS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjBPBggrBgEFBQcBBwEB/wRAMD4wPAQCAAEwNgMEAC1RcwME
AC1YiwMEAS1eqgMEAE1TJwMEAVXReAMEAJITfQMEAMEe8QMEAME5KQMEAMOxXzAN
BgkqhkiG9w0BAQsFAAOCAQEAi7qoWW2SAjq/GOt2z5UhB5XTElPVstPF8TMWoSqR
xZKgEsWuMY8gm6XR/PusC2ovsIGli68GQ6XtptevkfHf00B/c869VNYep3BPGqPX
okzDYN3FnSiprUe39UCmAAQets/0kSnuxCLWxBhLjfcjIC0behtejP5r7LGnD5vR
EF/IWs9Ndgf1AWMtmsq80yAKOw54vG+DL1RHEJ2BogmqECawCVTmUjYqS2Lqqekq
RE79QEsnFFMDnOd04YSVRYzUzrVgDM0JN0AiYcL0w2Qv9TAZ4QG2J4SK4G//oJOv
Larg2IaiYLO79Y6nsJSLvD8wtCJvhUL9WUuisg7umI/4Lg==
-----END CERTIFICATE-----
Generated at Sun Dec 31 12:31:25 2023 by rpki-client on console-ams.rpki-client.org