Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/670d1b-5129-4146-be5b-78c04bcedad3/1/q4yGVue27VTExe4rwT5V7nmWmF0.roa
File: q4yGVue27VTExe4rwT5V7nmWmF0.roa (raw, json)
Hash identifier: SwGx0AF+CXk0yeHw90oRb2yEaZ92m/3SvFGTGwO1wfg=
Subject key identifier: AB:8C:86:56:E7:B6:ED:54:C4:C5:EE:2B:C1:3E:55:EE:79:96:98:5D
Certificate issuer: /CN=c05074877f78dbf49bd37a215491e69a0f8b6e43
Certificate serial: 018BAE35B51E463BB2675EA29E38DD56EAEC
Authority key identifier: C0:50:74:87:7F:78:DB:F4:9B:D3:7A:21:54:91:E6:9A:0F:8B:6E:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wFB0h3942_Sb03ohVJHmmg-LbkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/670d1b-5129-4146-be5b-78c04bcedad3/1/q4yGVue27VTExe4rwT5V7nmWmF0.roa
Signing time: Wed 08 Nov 2023 09:13:57 +0000
ROA not before: Wed 08 Nov 2023 09:13:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49183
IP address blocks: 94.231.176.0/24 maxlen: 24
94.231.179.0/24 maxlen: 24
94.231.178.0/24 maxlen: 24
94.231.177.0/24 maxlen: 24
94.231.186.0/24 maxlen: 24
94.231.185.0/24 maxlen: 24
94.231.180.0/24 maxlen: 24
94.231.183.0/24 maxlen: 24
94.231.182.0/24 maxlen: 24
94.231.181.0/24 maxlen: 24
94.231.187.0/24 maxlen: 24
94.231.190.0/24 maxlen: 24
94.231.189.0/24 maxlen: 24
94.231.188.0/24 maxlen: 24
94.231.191.0/24 maxlen: 24
46.173.173.0/24 maxlen: 24
46.173.175.0/24 maxlen: 24
46.173.164.0/24 maxlen: 24
46.173.166.0/24 maxlen: 24
46.173.165.0/24 maxlen: 24
46.173.164.0/22 maxlen: 22
46.173.160.0/24 maxlen: 24
46.173.160.0/22 maxlen: 22
46.173.163.0/24 maxlen: 24
46.173.162.0/24 maxlen: 24
46.173.161.0/24 maxlen: 24
46.173.167.0/24 maxlen: 24
46.173.168.0/22 maxlen: 22
46.173.172.0/24 maxlen: 24
2001:678:d94::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 08 Nov 2023 10:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ae:35:b5:1e:46:3b:b2:67:5e:a2:9e:38:dd:56:ea:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c05074877f78dbf49bd37a215491e69a0f8b6e43
Validity
Not Before: Nov 8 09:13:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab8c8656e7b6ed54c4c5ee2bc13e55ee7996985d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c7:76:0c:dc:36:09:70:0e:a9:2e:dc:86:a0:
62:cf:31:49:34:51:16:18:4d:05:bf:df:e9:08:e1:
3b:c7:64:b8:77:ea:6c:e5:67:9a:47:07:09:27:97:
04:4f:02:31:2c:b4:70:b4:37:e8:54:b9:f3:90:b4:
78:f6:c1:f1:70:69:90:17:1e:6b:93:00:fc:53:e7:
e5:cf:6e:3b:3d:e2:96:3f:40:65:69:5f:5c:f8:ff:
c2:46:98:30:3f:40:99:58:e9:ca:26:5d:36:87:9a:
ef:cd:1c:0c:f8:01:60:96:4f:da:62:1d:ae:13:02:
11:81:69:f3:c1:8b:e1:51:4c:c6:13:e4:47:b3:1b:
e6:eb:91:26:65:81:0c:d2:7e:d4:c0:cb:ba:6a:1f:
68:0e:ee:33:cd:75:37:47:db:ec:5d:7a:74:49:d6:
d2:72:72:99:f5:be:35:62:e3:8e:47:81:d0:83:4f:
97:c0:a5:6e:97:05:68:dd:15:16:9e:73:92:fb:b6:
84:f0:25:da:ef:e5:86:6c:07:e1:34:fa:e4:ae:28:
2a:e5:cf:40:1f:3d:72:e4:b5:8e:da:69:9e:df:53:
8e:0e:c7:b3:00:86:85:2c:69:fa:e3:19:60:c7:8a:
11:d4:27:84:02:59:cd:c4:c3:3c:4c:3a:ee:dd:7b:
6a:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:8C:86:56:E7:B6:ED:54:C4:C5:EE:2B:C1:3E:55:EE:79:96:98:5D
X509v3 Authority Key Identifier:
keyid:C0:50:74:87:7F:78:DB:F4:9B:D3:7A:21:54:91:E6:9A:0F:8B:6E:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wFB0h3942_Sb03ohVJHmmg-LbkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/670d1b-5129-4146-be5b-78c04bcedad3/1/q4yGVue27VTExe4rwT5V7nmWmF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/670d1b-5129-4146-be5b-78c04bcedad3/1/wFB0h3942_Sb03ohVJHmmg-LbkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.173.160.0-46.173.173.255
46.173.175.0/24
94.231.176.0/21
94.231.185.0-94.231.191.255
IPv6:
2001:678:d94::/48
Signature Algorithm: sha256WithRSAEncryption
46:86:ca:2e:d8:d6:ed:0f:74:0d:eb:fe:3b:a5:c5:15:f4:d2:
5d:5f:ce:9a:4a:bc:44:30:38:22:94:8b:44:f7:3a:d8:9d:52:
84:5a:ba:21:b6:6c:6e:34:2b:c5:8a:6c:c8:19:48:b8:6f:6f:
38:d0:55:a1:f0:a5:42:8d:35:8d:d5:fd:0a:5a:0e:3d:49:08:
6c:8f:47:02:46:f8:de:a7:fa:eb:0a:f0:27:50:0d:e9:58:dc:
92:88:c4:36:26:93:1b:54:35:12:33:80:a0:52:43:5b:a5:5d:
79:38:c4:e2:e9:5f:9a:d1:fa:b8:06:34:8f:4b:4c:81:f7:de:
50:0d:bd:8e:40:62:39:54:82:6e:72:ca:3e:d9:b1:f4:91:06:
e6:e3:39:8b:7b:7e:f1:9a:67:1f:ee:32:40:ed:c9:38:05:e4:
34:ee:25:ec:bf:48:a8:b4:96:98:0e:04:8e:3c:85:51:f9:05:
20:b0:8a:96:b0:82:f8:a8:09:3b:ca:64:5f:a6:a9:36:4a:73:
d5:cc:1f:66:a8:3e:2d:02:01:da:93:2f:b3:29:1c:ee:34:c3:
d4:82:1f:5f:01:40:5f:9c:0b:63:9c:b3:99:37:f6:b7:b1:fa:
03:69:9e:52:90:66:24:71:be:99:94:24:0b:b8:1e:3f:61:a7:
38:5b:ec:78
-----BEGIN CERTIFICATE-----
MIIFMDCCBBigAwIBAgISAYuuNbUeRjuyZ16injjdVursMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMwNTA3NDg3N2Y3OGRiZjQ5YmQzN2EyMTU0OTFlNjlhMGY4
YjZlNDMwHhcNMjMxMTA4MDkxMzU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYjhjODY1NmU3YjZlZDU0YzRjNWVlMmJjMTNlNTVlZTc5OTY5ODVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAssd2DNw2CXAOqS7chqBizzFJNFEW
GE0Fv9/pCOE7x2S4d+ps5WeaRwcJJ5cETwIxLLRwtDfoVLnzkLR49sHxcGmQFx5r
kwD8U+flz247PeKWP0BlaV9c+P/CRpgwP0CZWOnKJl02h5rvzRwM+AFglk/aYh2u
EwIRgWnzwYvhUUzGE+RHsxvm65EmZYEM0n7UwMu6ah9oDu4zzXU3R9vsXXp0SdbS
cnKZ9b41YuOOR4HQg0+XwKVulwVo3RUWnnOS+7aE8CXa7+WGbAfhNPrkrigq5c9A
Hz1y5LWO2mme31OODsezAIaFLGn64xlgx4oR1CeEAlnNxMM8TDru3XtqgQIDAQAB
o4ICPDCCAjgwHQYDVR0OBBYEFKuMhlbntu1UxMXuK8E+Ve55lphdMB8GA1UdIwQY
MBaAFMBQdId/eNv0m9N6IVSR5poPi25DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd0ZCMGgzOTQyX1NiMDNvaFZKSG1tZy1MYmtNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS82NzBkMWItNTEyOS00MTQ2LWJlNWIt
NzhjMDRiY2VkYWQzLzEvcTR5R1Z1ZTI3VlRFeGU0cndUNVY3bm1XbUYwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS82NzBkMWItNTEyOS00MTQ2LWJlNWItNzhjMDRiY2VkYWQz
LzEvd0ZCMGgzOTQyX1NiMDNvaFZKSG1tZy1MYmtNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAuBAIAATAoMAwDBAUuraAD
BAEurawDBAAura8DBANe57AwDAMEAF7nuQMEBl7ngDAPBAIAAjAJAwcAIAEGeA2U
MA0GCSqGSIb3DQEBCwUAA4IBAQBGhsou2NbtD3QN6/47pcUV9NJdX86aSrxEMDgi
lItE9zrYnVKEWrohtmxuNCvFimzIGUi4b2840FWh8KVCjTWN1f0KWg49SQhsj0cC
Rvjep/rrCvAnUA3pWNySiMQ2JpMbVDUSM4CgUkNbpV15OMTi6V+a0fq4BjSPS0yB
995QDb2OQGI5VIJucso+2bH0kQbm4zmLe37xmmcf7jJA7ck4BeQ07iXsv0iotJaY
DgSOPIVR+QUgsIqWsIL4qAk7ymRfpqk2SnPVzB9mqD4tAgHaky+zKRzuNMPUgh9f
AUBfnAtjnLOZN/a3sfoDaZ5SkGYkcb6ZlCQLuB4/Yac4W+x4
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:03 2024 by rpki-client on console-fra.rpki-client.org